Overview

URLmoxons.andrewmaughan.com/wp-content/themes/minus/thrive-dashboard/inc/auto-responder/classes/Connection/expect.html
IP 104.21.69.193 ()
ASN#13335 CLOUDFLARENET
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-24 22:21:19 UTC
StatusLoading report..
IDS alerts0
Blocklist alert59
urlquery alerts No alerts detected
Tags None

Domain Summary (11)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-24 05:36:55 UTC 34.102.187.140
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
moxons.andrewmaughan.com (1) 0 2019-06-16 17:43:39 UTC 2022-11-24 19:21:02 UTC 172.67.212.101 Unknown ranking
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 44.242.41.15
img-getpocket.cdn.mozilla.net (6) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
r3.o.lencr.org (8) 344 No data No data 23.36.76.226
ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-24 05:30:55 UTC 34.117.237.239
progreatdiscount.com (89) 0 2022-06-17 10:58:56 UTC 2022-11-23 10:17:04 UTC 185.92.151.141 Unknown ranking
ocsp.pki.goog (2) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.3
www.googletagmanager.com (1) 75 2013-05-22 02:07:37 UTC 2022-11-24 08:35:27 UTC 142.250.74.168

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-24 2 moxons.andrewmaughan.com/wp-content/themes/minus/thrive-dashboard/inc/auto- (...) Phishing
2022-11-24 2 progreatdiscount.com/?cp=zvnr2gh1 Phishing
2022-11-24 2 progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669114486 Phishing
2022-11-24 2 progreatdiscount.com/themes/506/assets/css/base.min.css?v=1669114486 Phishing
2022-11-24 2 progreatdiscount.com/themes/506/assets/css/banners.min.css?v=1669114486 Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/bactrim.webp Phishing
2022-11-24 2 progreatdiscount.com/themes/common/js/jquery-3.3.1.min.js?v=1669114486 Phishing
2022-11-24 2 progreatdiscount.com/themes/common/js/common.min.js?v=1669114486 Phishing
2022-11-24 2 progreatdiscount.com/themes/506/assets/js/quick-search.min.js?v=1669114486 Phishing
2022-11-24 2 progreatdiscount.com/themes/506/assets/js/coupon.min.js?v=1669114486 Phishing
2022-11-24 2 progreatdiscount.com/themes/common/js/cookie-alert.min.js?v=1669114486 Phishing
2022-11-24 2 progreatdiscount.com/themes/common/js/events.min.js?v=1669114486 Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/super_active_discou (...) Phishing
2022-11-24 2 progreatdiscount.com/themes/506/assets/js/slider.min.js?v=1669114486 Phishing
2022-11-24 2 progreatdiscount.com/themes/common/fonts/roboto-regular.woff2 Phishing
2022-11-24 2 progreatdiscount.com/themes/common/fonts/roboto-bold.woff2 Phishing
2022-11-24 2 progreatdiscount.com/themes/common/fonts/raleway-bold.woff2 Phishing
2022-11-24 2 progreatdiscount.com/themes/common/fonts/roboto-black.woff2 Phishing
2022-11-24 2 progreatdiscount.com/themes/common/fonts/raleway-heavy.woff2 Phishing
2022-11-24 2 progreatdiscount.com/themes/common/fonts/raleway-medium.woff2 Phishing
2022-11-24 2 progreatdiscount.com/themes/common/fonts/roboto-medium.woff2 Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/zithromax.webp Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/viagra_professional.webp Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/trial_brand_pack.webp Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/viagra-cialis-levit (...) Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/viagra.webp Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/cialis.webp Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/abhigra_brand.webp Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/priligy.webp Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/zovirax.webp Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/tadalista_brand.webp Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/super_discount_pack.webp Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/viagra-cialis_trial (...) Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/active_discount_pac (...) Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/cialis_super_active.webp Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/viagra_super_active.webp Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/kamagra_brand_gold.webp Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/celebrex.webp Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/vpxl.webp Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/ventolin_inhaler.webp Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/augmentin.webp Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/doxycycline.webp Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/vyfat_brand.webp Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/prednisone.webp Phishing
2022-11-24 2 progreatdiscount.com/themes/506/assets/img/i-cross-modal.svg Phishing
2022-11-24 2 progreatdiscount.com/themes/506/assets/img/i-plus.svg Phishing
2022-11-24 2 progreatdiscount.com/themes/506/assets/img/i-minus.svg Phishing
2022-11-24 2 progreatdiscount.com/themes/506/assets/img/i-remove-hover.svg Phishing
2022-11-24 2 progreatdiscount.com/themes/506/assets/img/i-unapply-coupon-hover.svg Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/cialis_black.webp Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/viagra_super_force.webp Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/cialis_pack.webp Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/viagra_brand.webp Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/viagra_pack.webp Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/levitra_brand.webp Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/strattera.webp Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/neurontin.webp Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/azithromycin_dt.webp Phishing
2022-11-24 2 progreatdiscount.com/img/products_webp/original/150x150/propecia.webp Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 104.21.69.193
Date UQ / IDS / BL URL IP
2023-01-14 01:32:21 +0000 0 - 2 - 2 wtg.lytly.top/ 104.21.69.193
2022-11-24 22:21:19 +0000 0 - 0 - 59 moxons.andrewmaughan.com/wp-content/themes/mi (...) 104.21.69.193
2022-09-25 10:23:58 +0000 0 - 0 - 3 sparkasse.de-checking-3025.xyz/de/Kontrolle/spark/ 104.21.69.193
2022-09-08 18:34:41 +0000 0 - 0 - 4 yourmoviess.xyz/tvshows/the-good-doctor/ 104.21.69.193
2022-09-01 12:05:31 +0000 0 - 0 - 4 yourmoviess.xyz/tvshows/how-i-met-your-mother 104.21.69.193


Last 5 reports on ASN: CLOUDFLARENET
Date UQ / IDS / BL URL IP
2023-02-07 11:53:50 +0000 0 - 2 - 0 harolddcummins.icu/ 104.21.12.181
2023-02-07 11:53:24 +0000 0 - 1 - 0 eldoradocasino-016.buzz/ 172.67.168.34
2023-02-07 11:53:18 +0000 0 - 2 - 2 hnljkdds.cf/ 188.114.97.1
2023-02-07 11:52:48 +0000 0 - 2 - 0 thebettarinc.icu/ 172.67.204.93
2023-02-07 11:51:55 +0000 0 - 6 - 0 zeroupload.com/46567fb56ab17f8d/Autodesk_Maya (...) 188.114.96.1


Last 1 reports on domain: andrewmaughan.com
Date UQ / IDS / BL URL IP
2022-11-24 22:21:19 +0000 0 - 0 - 59 moxons.andrewmaughan.com/wp-content/themes/mi (...) 104.21.69.193


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2022-12-10 23:29:35 +0000 0 - 0 - 23 veewsoo.blogspot.com/%22%7D 172.217.21.161
2022-11-25 09:35:22 +0000 0 - 0 - 58 san.iglesialaboyera.com/js/core/field.html 160.153.133.208
2022-11-24 22:33:57 +0000 0 - 0 - 58 spinneret.press/images/books/ChromeOSGuide/AO (...) 104.171.127.2
2022-11-24 21:19:11 +0000 0 - 0 - 59 deadline.frameover.com/wp-content/plugins/adv (...) 164.138.210.46
2022-11-24 19:47:18 +0000 0 - 0 - 53 coyotaco.fr/wp-content/plugins/wpforms-lite/l (...) 185.61.154.211

JavaScript

Executed Scripts (19)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (114)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6419
Expires: Fri, 25 Nov 2022 00:08:06 GMT
Date: Thu, 24 Nov 2022 22:21:07 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5129
Cache-Control: max-age=135333
Date: Thu, 24 Nov 2022 22:21:07 GMT
Etag: "637f47ef-1d7"
Expires: Sat, 26 Nov 2022 11:56:40 GMT
Last-Modified: Thu, 24 Nov 2022 10:31:11 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 22:19:00 GMT
cache-control: public,max-age=3600
age: 128
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    d130218d0e2841f39c99610fe1a2ab90
Sha1:   29fbe1e177ee55c7a61ae0a206afff271cf5f945
Sha256: 6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "141AC47ACC3800E5D35A82012FA4B044277ABAD3A95DC24415F66FB72C972AE6"
Last-Modified: Wed, 23 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3997
Expires: Thu, 24 Nov 2022 23:27:45 GMT
Date: Thu, 24 Nov 2022 22:21:08 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: rquKCaoBbOZF2FeF+KjUDS3DnFv/ui7G16diI112NfCZlOkcWEBfGpBVueLYYfyJua7sW77D4rEB4HRs/blCsA==
x-amz-request-id: 7XKA6HZJ886T3ME4
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 24 Nov 2022 21:43:34 GMT
age: 2254
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 24 Nov 2022 22:21:08 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /wp-content/themes/minus/thrive-dashboard/inc/auto-responder/classes/Connection/expect.html HTTP/1.1 
Host: moxons.andrewmaughan.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         172.67.212.101
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Thu, 24 Nov 2022 22:21:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Wed, 31 Oct 2018 14:06:07 GMT
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f1Ftl5FJx%2BvrGdalveZeHtyhDGt1MbvGFw%2FXjbQecDuWq7jsUwuKCX40PF1vOkwDzPbV95bdakQP0tEXW7EP0hEoMVmWPUbZVv2VeegIBk6zQA%2FFJ3pZIApLDvQuFfmLziWO5dh36gcTnv4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76f5892b7ab41c0a-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document, ASCII text, with no line terminators
Size:   112
Md5:    940e04771a02704660ee429406b76eb9
Sha1:   2aea831a7eded3575e6aa4559b12441d8b0388d1
Sha256: c01c4d35b7bf92f49eb7e70b07f655fbd7abce3286e275b72d828a1db7090da4

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 22:11:11 GMT
cache-control: public,max-age=3600
age: 597
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4704
Cache-Control: 'max-age=158059'
Date: Thu, 24 Nov 2022 22:21:08 GMT
Last-Modified: Thu, 24 Nov 2022 21:02:44 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1A009312F2A42C2030ED72F5F917A3B1E35495A91ED984110CED59960035B474"
Last-Modified: Thu, 24 Nov 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17841
Expires: Fri, 25 Nov 2022 03:18:29 GMT
Date: Thu, 24 Nov 2022 22:21:08 GMT
Connection: keep-alive

                                        
                                            GET /?cp=zvnr2gh1 HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://moxons.andrewmaughan.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98; expires=Fri, 25-Nov-2022 22:21:08 GMT; Max-Age=86400; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (4069)
Size:   29423
Md5:    31f274da0a6a6097b68ab61f1c251bca
Sha1:   9e387ae6a23a876d52cf0a20601ede4615da2242
Sha256: 6d157ce0996a6021742761efd33656f8f52782465216273ff5296881a6377304

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /themes/506/assets/css/fonts.min.css?v=1669114486 HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-1070"
Expires: Fri, 24 Nov 2023 12:50:38 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  ASCII text, with very long lines (4208), with no line terminators
Size:   500
Md5:    8f78b43a7e06a43145eb7c7c10196786
Sha1:   bfd1a2ab2f535db0cad01a6be7880645683a1997
Sha256: 6b36879c314f8190958a4fe1df41100cc67fb8fc568ea0cd38ce12adba45daae
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: j07rRDw9Hrr/J8QuGnFH7w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         44.242.41.15
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 6fHnjebA5ycAfdNAj/1Ryqo3s6Q=

                                        
                                            GET /themes/506/assets/css/common.min.css?v=1669114486 HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-56f2b"
Expires: Fri, 24 Nov 2023 12:50:38 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   65961
Md5:    89b9812ebd9bb8ab2c86d439bcae618f
Sha1:   9b92a099c99b2245a7fbec4b86e244a2129c361c
Sha256: f8130bd840209cdc469c0d4c1ef459f09e945c853a94327dc254011d5d8c12e8

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /themes/506/assets/css/base.min.css?v=1669114486 HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-b826"
Expires: Fri, 24 Nov 2023 12:50:38 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  ASCII text, with very long lines (47142), with no line terminators
Size:   9880
Md5:    943ac314214af7fbbb27f1cd9973c664
Sha1:   c96fd0df41d80425b0c8dca42f6af9707fb8eb85
Sha256: 4bc7d6dab6c81204c48450f1e702e50fd16a6ea281aaab2afb4d5751c1058706

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /themes/506/assets/css/banners.min.css?v=1669114486 HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-140b0"
Expires: Fri, 24 Nov 2023 12:50:38 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   13900
Md5:    ca33e9c351403d0883e61c47006243ea
Sha1:   c96d43683c47182fd92e1b2bf39aa316ae74ac73
Sha256: cca9b82158bfa987153250e2ed870813f4b680943fcf0660260a31033b88b6e4

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /img/products_webp/original/150x150/bactrim.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Content-Length: 1548
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-60c"
Expires: Fri, 25 Nov 2022 22:21:09 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   1548
Md5:    b76281af2490d62db640df93674cd003
Sha1:   6630c46a9d44aee24491dd9fe8de752b252eb0ff
Sha256: 82c542e22cdcf97ee4034c9c1bb02c0419a8c408f12d625e330571513913ae2a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /themes/506/assets/img/all-in-one-pack-mobile.png HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Content-Length: 82422
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-141f6"
Expires: Fri, 25 Nov 2022 10:56:27 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 324 x 256, 8-bit/color RGBA, non-interlaced\012- data
Size:   82422
Md5:    e8be3f3864c94fc62733c1bc4bcbe6c9
Sha1:   8c94e9e6ae2c6ac7c8ba091a640138555377a857
Sha256: b2d2b1b6882c58ed5755fbae58d849d5443d72ce5097a85d5dc4247ed2880962
                                        
                                            GET /themes/common/js/jquery-3.3.1.min.js?v=1669114486 HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-1538f"
Expires: Fri, 24 Nov 2023 12:10:38 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  ASCII text, with very long lines (65451)
Size:   35358
Md5:    83a94c0e4dce1975b10bee48bf41267b
Sha1:   8ae39295f64d891e367e49a0ff54e80067085bc9
Sha256: ee39efe9eba01b524accd2ac9af7a458fecce60e1479df06b22dd4be6f6f5d28

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /themes/common/js/common.min.js?v=1669114486 HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-12d0"
Expires: Fri, 24 Nov 2023 12:10:38 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  ASCII text, with very long lines (4816), with no line terminators
Size:   2095
Md5:    b01af2e2435fbee121d7fa34e7b72b95
Sha1:   a5c65769843cbba8912afd4904edfce651626680
Sha256: 278d812e7d1c4846f8673083989f4ce779c49557b0e94068883e36020d3e297b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /themes/506/assets/js/quick-search.min.js?v=1669114486 HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-13ca"
Expires: Fri, 24 Nov 2023 12:18:27 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (5062), with no line terminators
Size:   1954
Md5:    da8edd4421402a835cd54868831181da
Sha1:   3987d36ea9e9e98effc20b1753196e7c94d48279
Sha256: 0ebd260096cc1f9954211a414be2e804e3d190861c0928a3194729d7971d3fb8

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /themes/506/assets/js/main.min.js?v=1669114486 HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-dd0"
Expires: Fri, 24 Nov 2023 12:18:27 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  ASCII text, with very long lines (3536), with no line terminators
Size:   1499
Md5:    1d435de9fab2e77db80f2eedb7f6f397
Sha1:   d2e25195a1c7aaeb5cb7467f3204a860664d256c
Sha256: 285830134fd9fdf90fcc5c3def40590126639095167f17d821bf2339f9c9680e
                                        
                                            GET /themes/506/assets/js/scripts.min.js?v=1669114486 HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-d038"
Expires: Fri, 24 Nov 2023 12:18:27 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (31981)
Size:   14477
Md5:    bb5c555ed54ab753dc283e6acbbe31b2
Sha1:   14117417ac9bcaa924515b93c802a431da72d62b
Sha256: dac7596310100901afa34e8439db523aaf9c406b3b711554ed9add4492a8fa8b
                                        
                                            GET /themes/506/assets/img/product_promo_image_bg_2.png HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Content-Length: 215637
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-34a55"
Expires: Fri, 25 Nov 2022 22:21:09 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 954 x 691, 8-bit colormap, non-interlaced\012- data
Size:   215637
Md5:    0eee632fe6a5caafcbcaae4e355284c4
Sha1:   3c6e57b345e72a71a2c246f9e78786f96f4cc03e
Sha256: 9500339c5d711f4148a6412fd46c325dd85ef0afbf043de59fc02d158d9065ec
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 22:21:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /themes/506/assets/js/coupon.min.js?v=1669114486 HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-eb3"
Expires: Fri, 24 Nov 2023 12:18:27 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  ASCII text, with very long lines (3763), with no line terminators
Size:   1247
Md5:    6969232db7c94fa1c9a3d230bd19582f
Sha1:   3b6d21dc2c59368f8e20bf7bfa0579deba5d6957
Sha256: b61be2a2e62324eb363e18eb80319d18b5db6963cca14048112fa8b6abc520b4

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /themes/common/js/cookie-alert.min.js?v=1669114486 HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-f5"
Expires: Fri, 24 Nov 2023 12:10:38 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   177
Md5:    34970616827edeb46b61eed18cdd8225
Sha1:   987b02759eeb49017e5f7e19ef5609cdbd33a79d
Sha256: ab647afd5967781c6d0dd0aa75974944e4f8d8f25f6048077342cf07f3317cfc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /themes/common/js/autofill-event.min.js?v=1669114486 HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-1481"
Expires: Fri, 24 Nov 2023 12:10:38 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  ASCII text, with very long lines (5249), with no line terminators
Size:   2390
Md5:    52659bcbb35f081d709a2918c6b86f5b
Sha1:   b36f4257785db120bd8fdd10c6523051308de6fe
Sha256: d02a26b0329d791a1798bed357e4ee9bfd748b62be244cd7fdc96f15ec67b23b
                                        
                                            GET /themes/common/js/events.min.js?v=1669114486 HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-253a"
Expires: Fri, 24 Nov 2023 12:10:38 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  ASCII text, with very long lines (9530), with no line terminators
Size:   2238
Md5:    5d6fa7168636ac4dbba18160d227a1cd
Sha1:   4562357a94aae9cc0a284e7a42a12171746b24d9
Sha256: 49597e8a6a00853c74a5c4604fa1366fa25809bd1d524ad534e1c511a18efa05

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /gtag/js?id=UA-68773835-15 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 24 Nov 2022 22:21:09 GMT
expires: Thu, 24 Nov 2022 22:21:09 GMT
cache-control: private, max-age=900
last-modified: Thu, 24 Nov 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43682
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1921)
Size:   43682
Md5:    a69f0d33331dd29f65dd90d44a2ec8c4
Sha1:   94d5f37eeed0a99bdec616295da1ceb8b84146dc
Sha256: 81ca09635d14cea8b023ff917d866e51babfb6ad3128be559b7569a7cae701bf
                                        
                                            GET /themes/common/js/common-shop.min.js?v=1669114486 HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-32b"
Expires: Fri, 24 Nov 2023 12:18:27 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  ASCII text, with very long lines (811), with no line terminators
Size:   444
Md5:    e7b9b405c741b96dc0c766ad9ac95d86
Sha1:   58dfb56333c2408457a30928aa6f7c2759c7abad
Sha256: 5779c4dbfb66d1ac0b74734de49d76be87828582210675f874f36be4e837bc34
                                        
                                            GET /img/products_webp/original/150x150/super_active_discount_pack.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Content-Length: 11208
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-2bc8"
Expires: Fri, 25 Nov 2022 22:21:09 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   11208
Md5:    df992503795ddca7084767eab9621404
Sha1:   f74d78a7544b718f5f5ede85af270ae60f9c0960
Sha256: 070e09b438e9accc1f048eca5a081fd52ea1eb25b69e55f6770a3b41a9f64a2d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /themes/506/assets/js/slider.min.js?v=1669114486 HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-471"
Expires: Fri, 24 Nov 2023 12:18:27 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  ASCII text, with very long lines (1137), with no line terminators
Size:   492
Md5:    6066a1e897ef651f969ddd03e5a32326
Sha1:   cb0250a39200b33cc408175ab330bd09e242c4e0
Sha256: 8cd5f903e899067c2ca72223be58d6e34c414e224cf7f3e7ba0de173659f8f74

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /themes/common/fonts/roboto-regular.woff2 HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/fonts.min.css?v=1669114486
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Content-Length: 64692
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-fcb4"
Expires: Fri, 25 Nov 2022 21:20:44 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 64692, version 1.0\012- data
Size:   64692
Md5:    8fa8a82f0969cd7d7027c1171ca08061
Sha1:   bf4da7aa5737d5567f826fb83e000db8d171ab16
Sha256: 4b9f4b6894c43b1ad68c54790e1b7d0f3aa0947b3fff960452ea6d8e172b4683

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /themes/common/fonts/roboto-bold.woff2 HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/fonts.min.css?v=1669114486
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Content-Length: 64532
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-fc14"
Expires: Fri, 25 Nov 2022 21:20:44 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 64532, version 1.0\012- data
Size:   64532
Md5:    1b156057831714265eea89e49591f630
Sha1:   e716ba4bb233c19e35734a150bb320bea400c91f
Sha256: 1ba1d158b3dfd5936e9793954401c547a2a96ec7fd25c2c80ce2f22b7cb90545

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /themes/common/fonts/raleway-bold.woff2 HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/fonts.min.css?v=1669114486
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Content-Length: 22844
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-593c"
Expires: Fri, 25 Nov 2022 22:21:09 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 22844, version 2.66\012- data
Size:   22844
Md5:    b05633bc2a7ee76e2158a6d930c5b1bf
Sha1:   492066f3ecfdaaf7f8dd9603dc19a8b623384ee3
Sha256: e3396f0c933a7b35384b7090a4a9a39ac11826234f1c023e13591f52a9d7562b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /themes/common/fonts/roboto-black.woff2 HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/fonts.min.css?v=1669114486
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Content-Length: 66148
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-10264"
Expires: Fri, 25 Nov 2022 22:21:09 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 66148, version 1.0\012- data
Size:   66148
Md5:    72f6fd218b59c42e804cb543cfc53598
Sha1:   2c4388751874f5aa482c964d7d07fbebe2fcc3b9
Sha256: 026d836bb00b979293032a9221da04e71faf87f79f48b6bb92e3f9935f5315bc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /themes/common/fonts/raleway-heavy.woff2 HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/fonts.min.css?v=1669114486
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Content-Length: 22652
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-587c"
Expires: Fri, 25 Nov 2022 22:21:09 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 22652, version 2.66\012- data
Size:   22652
Md5:    3dc82360708127724e5a8da27abb4cdc
Sha1:   11372456ae598bbc5e78bcd1c4cf04b5a096f568
Sha256: b540009ba63d7be0f3231a43f1933cb6b772fb03b1800b98cb2c7e42fee18f12

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /themes/common/fonts/raleway-medium.woff2 HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/fonts.min.css?v=1669114486
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Content-Length: 22736
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-58d0"
Expires: Fri, 25 Nov 2022 21:21:59 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 22736, version 2.66\012- data
Size:   22736
Md5:    9ff42184ec6b88ada2d15793036bac37
Sha1:   d60a55de33b84c6ac45e7ca2ba18155578869942
Sha256: 640636bdf0d9cf1824b80cda175987d2a773cf57cb3e1e2100ca5398783ec162

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /themes/common/fonts/roboto-medium.woff2 HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/fonts.min.css?v=1669114486
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Content-Length: 65264
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-fef0"
Expires: Fri, 25 Nov 2022 22:21:09 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 65264, version 1.0\012- data
Size:   65264
Md5:    c0657dcd5959441f8f23dbba445edba1
Sha1:   70b727d89d496d3f5b687ab8bb5b05f56a70e8a6
Sha256: 64b4e73268acd7bfcbf4a3d6431e5f137a4c4deab6340b04e9d23e5324a2250b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /img/ukr-shield.png HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669114486
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Content-Length: 6183
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:59:14 GMT
ETag: "637cab82-1827"
Expires: Fri, 25 Nov 2022 15:39:14 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 110 x 124, 8-bit colormap, non-interlaced\012- data
Size:   6183
Md5:    2259dca5b854059bdfda110e26de43a0
Sha1:   cb005da1b0912fb653251525af2d0ff40f99c95e
Sha256: 6cbb7f10299045c047904e4b284ca28351c5ded956480d40ed0bedbf490f08ef
                                        
                                            GET /img/cross_base.png HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669114486
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Content-Length: 707
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:59:14 GMT
ETag: "637cab82-2c3"
Expires: Fri, 25 Nov 2022 11:46:28 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Size:   707
Md5:    acde11b5b53aa6f6c73b6608f6f6d699
Sha1:   913d77808b83fecc290a9459d2a0dbcc9526cee2
Sha256: ea99e4f4ac42eb970990371fd73731a6393863ad0ed7b7950cda74467c59fa83
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 22:21:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /themes/506/assets/img/sprite-shop-1659020065970.png HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669114486
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Content-Length: 39121
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-98d1"
Expires: Fri, 25 Nov 2022 15:28:06 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 195 x 4379, 8-bit colormap, non-interlaced\012- data
Size:   39121
Md5:    bc120fa95c13c507a713acce99e5839e
Sha1:   032b15f674d47113388cc3e8d031f75735daa71e
Sha256: c7c801fda929bd3612ccd78fb3f6731263a304e181da81d80370f09adf9835ba
                                        
                                            GET /themes/506/assets/img/flashsale-pattern.png HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/banners.min.css?v=1669114486
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Content-Length: 5213
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-145d"
Expires: Fri, 25 Nov 2022 22:21:09 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 281 x 281, 8-bit colormap, non-interlaced\012- data
Size:   5213
Md5:    c8556d1070178bbc80055efacdc8ecc6
Sha1:   01c653ff00263d46c583b389b7330b86c1f4bc1b
Sha256: 2995ace23798da51fa48f8d60b07f4597186acbcf69ec799b450a0ab0b6d3735
                                        
                                            GET /img/products_webp/original/150x150/zithromax.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Content-Length: 2354
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-932"
Expires: Fri, 25 Nov 2022 22:21:09 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   2354
Md5:    40558417825b9bd181078c7668103297
Sha1:   1f19419153f63a4952b46f2f54ab06e9f4ded24d
Sha256: 3599023f6ce269b2af0402ae665a6240fbf74015194684996f7963bc61cd2bd6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /themes/506/assets/img/viagra.png HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Content-Length: 69444
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-10f44"
Expires: Fri, 25 Nov 2022 22:21:09 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 888 x 394, 8-bit colormap, non-interlaced\012- data
Size:   69444
Md5:    0d788c4bfb71a3a4841f8a991e86a43d
Sha1:   f1ce058a3768ab21225d2d89acbe6ed0edf87231
Sha256: fc6e8aac1afa8117a84111214e0af1b58b41db296650c4d73dc8d9a27aa6d422
                                        
                                            GET /img/products_webp/original/150x150/viagra_professional.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Content-Length: 3058
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-bf2"
Expires: Fri, 25 Nov 2022 22:21:09 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   3058
Md5:    7feb824ec6799dd41505b563074d824a
Sha1:   b936d0ea4cf8621d189c6df0555490d180a40048
Sha256: e1bf64316048c53064bc4ec80a9587d68e3a85572180abbc161c88360a91c7e4

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /img/products_webp/original/150x150/trial_brand_pack.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Content-Length: 12626
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-3152"
Expires: Fri, 25 Nov 2022 22:21:09 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   12626
Md5:    8a0bbfa81eab717d28e215e7d7289881
Sha1:   0ae8e7b4d726dd7c434805422417056f5d4ce80f
Sha256: 59524af9145cfdab571cb308fddd6623ee4d2a431f32ac000c57c56c0e0961e7

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /img/products_webp/original/150x150/viagra-cialis-levitra_trial_pack.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:10 GMT
Content-Length: 9522
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-2532"
Expires: Fri, 25 Nov 2022 22:21:10 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   9522
Md5:    5875160de9f47b29590e24f21e2bb01b
Sha1:   752ea7859de5e84ffe21ee5f9dee036ea538d71f
Sha256: 648a4425c1e61177b8e86c3b2067f0b87603e1614ddc414dcb070a359445356e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6009
Expires: Fri, 25 Nov 2022 00:01:19 GMT
Date: Thu, 24 Nov 2022 22:21:10 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6009
Expires: Fri, 25 Nov 2022 00:01:19 GMT
Date: Thu, 24 Nov 2022 22:21:10 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6009
Expires: Fri, 25 Nov 2022 00:01:19 GMT
Date: Thu, 24 Nov 2022 22:21:10 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6009
Expires: Fri, 25 Nov 2022 00:01:19 GMT
Date: Thu, 24 Nov 2022 22:21:10 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6009
Expires: Fri, 25 Nov 2022 00:01:19 GMT
Date: Thu, 24 Nov 2022 22:21:10 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7YSXUV-LZpsI7vciFhuqt1EVr6YRkhxcOgMg8z8bxLcOE01_baf6Gg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:47:08 GMT
age: 2042
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7993
Md5:    92c78302bcce1568eb6a5563100b932c
Sha1:   43d1dec7fc06879988c9c3cadd800cc8145df988
Sha256: 0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5070
x-amzn-requestid: d86d95ad-9b78-4047-82e7-04e83a97e330
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwViF1GIAMF_PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9423-10809ba1634776171cf79cb8;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:03 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ox9avQZ9Y6A9Lxmh5KTfvyhia9DMwfy-0eP-8AaMffegrLYUhAwzoQ==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:57:20 GMT
age: 1430
etag: "89accd230fba95fe0049678070817b36ead015fa"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5070
Md5:    0856fdb55f19f03a1bec38b3d6e0ac77
Sha1:   89accd230fba95fe0049678070817b36ead015fa
Sha256: 17c6e6f9bb8f4261fff2dc2a43ed994986418761624b8afead768e89927594f2
                                        
                                            GET /img/products_webp/original/150x150/viagra.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:10 GMT
Content-Length: 2930
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-b72"
Expires: Fri, 25 Nov 2022 22:21:10 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   2930
Md5:    36a93e2e3a91571f6a4dd26412cf57fa
Sha1:   c71124c4371a242c41d2229319e067dd20a89cd3
Sha256: 8bf22fe34f830d756b6226cc92bf06dc13bc0c3106c1e17161aeed5ebea26d06

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13882
x-amzn-requestid: 9022b0b3-31d5-4149-a969-02514f11b95a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvzNHjMoAMFWMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9347-0e8354a02bef623644714e31;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ve4q5FDkwMGhPK6ZVVVCZtoBTaGaz43r_PwINzwS5Nx5tcZeQkVIfw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:49:48 GMT
age: 1882
etag: "1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13882
Md5:    64d79191f005c9876b952c5f948aa0f7
Sha1:   1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a
Sha256: 00fb36c3d322e8302c5ce202d6d4119d637510cd6f3b63e1347781ec3bb9d7fc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4309
x-amzn-requestid: a22b4d7e-e208-4bda-81c2-d13e6463380e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: blE0hGNioAMF_Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371e81c-1b13846866f56a0e47675e56;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 07:02:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0sYKpJWi2Tv9Atz3PYXm5j7kmncAOxjcLcK4hgAkJ5b4pNMDmjdB6g==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:14:07 GMT
age: 54423
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4309
Md5:    841a4b110022a99ddea6f7bf66df0fa1
Sha1:   126771b86638108050cf57c0d12faa27f80f0edb
Sha256: 240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7462
x-amzn-requestid: 1f6fb14d-83e0-43d3-9dab-5bc83af1a7c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwV3HV9oAMFs9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9425-634d43db6308e0be596aa5a0;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: i-SR0Oc5IyCfMI-jrAMnnicCIZEQOL6BXBFWvEShF2TZo1DgqBUdwg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 22:03:56 GMT
age: 1034
etag: "a7d9135f9d01ba13c3cdaf8b038c70212f159297"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7462
Md5:    b4157f2c5c3c77ce699324ecb08f47c7
Sha1:   a7d9135f9d01ba13c3cdaf8b038c70212f159297
Sha256: 2305f7afee95bb34d9e8dbff571c6b146ba7b694be96e9e925c32d1f41785916
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6789
x-amzn-requestid: 4d94ce1b-d18f-43b8-bb4d-e7093f9bea42
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvd2G9UIAMFrEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5f2-64a570135be59b83031811da;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:04:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JygkDI7XSvlgurUTot874ZAXlOIqnv4cntMQ55IvHVqw93JBcksZjQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:15:22 GMT
age: 54348
etag: "303c571b13b05fcf27ee1159d8fdf6369aaef0a2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6789
Md5:    d9d93b2a6875d446c3467eb49767eef5
Sha1:   303c571b13b05fcf27ee1159d8fdf6369aaef0a2
Sha256: 2a2345a925e0187979930a7f2de8548957ad9f2baae77364dcb157286e2b3fcf
                                        
                                            GET /themes/506/assets/img/categories/erectile_dysfunction_64.png HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:10 GMT
Content-Length: 2114
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-842"
Expires: Fri, 25 Nov 2022 10:56:27 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Size:   2114
Md5:    26e7312c0d6dcd795c22683f8ebecd25
Sha1:   e086230f0209c1c9f6f0f0aa1495553dac1a2665
Sha256: 05b2b7ac41c5722eb3157b2ac8f76c82446852f5917d9c37f59deb3c8fd9ecd2
                                        
                                            GET /themes/506/assets/img/categories/antibiotics_64.png HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:10 GMT
Content-Length: 1697
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-6a1"
Expires: Fri, 25 Nov 2022 22:21:10 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Size:   1697
Md5:    2bf79b456385231bb719f57da43bf261
Sha1:   e39601fe25c9da7313b35053ce85d1631c8f2e7d
Sha256: 4b31833fb3c4edeca83fa10884f3d6228d785f3527eaafac450468f75b1a2171
                                        
                                            GET /themes/506/assets/img/categories/anti-allergicasthma_64.png HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:10 GMT
Content-Length: 1960
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-7a8"
Expires: Fri, 25 Nov 2022 22:21:10 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Size:   1960
Md5:    3c15bb8058ff009d6057a370ec48fe60
Sha1:   2874f8524b504cc3a3ff38c220a35590626c2d09
Sha256: 6745c4d76641e7669253003cc0060ba655b5073d92a288c4175e1a2f72e34e43
                                        
                                            GET /themes/506/assets/img/categories/pain_relief_64.png HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:10 GMT
Content-Length: 2071
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-817"
Expires: Fri, 25 Nov 2022 22:21:10 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Size:   2071
Md5:    51b1310ed4e5f14b6c009b3ee6424f67
Sha1:   71af07560197cdbf6b10bfe10bd77c412d6717c7
Sha256: 2e9bbded6224bbb6846d098890bc2bdf3cff0b2c7c8115edecf13a5ce28d02eb
                                        
                                            GET /img/products_webp/original/150x150/cialis.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:10 GMT
Content-Length: 2520
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-9d8"
Expires: Fri, 25 Nov 2022 22:21:10 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   2520
Md5:    cb21084af1252e8aa2dbc5056d839836
Sha1:   9e6ba5ba6b4badb21c93348aa94bf134ea6a55a5
Sha256: 39aa33d01bbb94f56c0b7e1956fdaef38f80cf6863f5438ae2fee0a5e770ee53

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /img/products_webp/original/150x150/abhigra_brand.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:10 GMT
Content-Length: 2670
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-a6e"
Expires: Fri, 25 Nov 2022 22:21:10 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   2670
Md5:    f5a057801ffae4112d0952b63a302f57
Sha1:   c644d9fd5ad630fdcbbcbecfbcf4027116c55d6b
Sha256: 2611b30f86699f3b9bdd86803fc6ef10a7b75075275f732fe23b532cf9fd9806

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /img/products_webp/original/150x150/priligy.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:10 GMT
Content-Length: 2134
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-856"
Expires: Fri, 25 Nov 2022 22:21:10 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   2134
Md5:    c89bd239db81c20894e345ef40c7d184
Sha1:   1e3dbb8c71ff163232870874a666dc47b6cb9f6b
Sha256: b993ea301456cf720dd75c5ec8c3a654f57daa843a8d7d50b145689a9de2b926

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /themes/506/assets/img/view-all-packs.png HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669114486
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:10 GMT
Content-Length: 69351
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-10ee7"
Expires: Fri, 25 Nov 2022 15:49:56 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 330 x 550, 8-bit/color RGBA, non-interlaced\012- data
Size:   69351
Md5:    ffaa573166da6e32bbe3c5c78b8b6bcd
Sha1:   b4f0709e2d10ab3545d427cf4075014d00e1ac40
Sha256: 0bc83be4804c1dca69d725a863c1d5f87f77fde5e9effd817c5bca9957026167
                                        
                                            GET /img/products_webp/original/150x150/zovirax.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:11 GMT
Content-Length: 2118
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-846"
Expires: Fri, 25 Nov 2022 22:21:11 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   2118
Md5:    73324a4c46433a33e503970d1cdc2459
Sha1:   d359ceef3f91e1b0e50b5ee4150144e9cb3261de
Sha256: 32eb8dc98539c1433b250c943fb3ca228ce0adafe486975e4680d7c6f32eb343

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /img/products_webp/original/150x150/tadalista_brand.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:11 GMT
Content-Length: 2052
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-804"
Expires: Fri, 25 Nov 2022 22:21:11 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   2052
Md5:    a331b9901b7c3a2760a54c5b11a775f2
Sha1:   ed8ae73f38a16ab7cfe248d0ecf3b3b3788a26f7
Sha256: 69113b9122bd87235b91a1e5dbda788a114c2d40d86cae6e9152d97dbb8c9285

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /img/products_webp/original/150x150/super_discount_pack.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:11 GMT
Content-Length: 9176
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-23d8"
Expires: Fri, 25 Nov 2022 22:21:11 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   9176
Md5:    fd5229dac93ea9f0931523c09819013f
Sha1:   4530684d9cd23fcf53bc5057412d11fd554d0cbb
Sha256: 83a6ecbefb304e6924519fd4c310c0b5de81e3655a0658f8a0d39117342f817f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /img/products_webp/original/150x150/viagra-cialis_trial_pack.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:11 GMT
Content-Length: 8138
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-1fca"
Expires: Fri, 25 Nov 2022 22:21:11 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   8138
Md5:    24d66c7ce572d297caa8df64e1ae2cc2
Sha1:   6a1f48c5113af2cc87b8261d21e281a7d8aaf87e
Sha256: 1e939749e2665cd602246449dc7f49e67751eb4559b94528079997a72fbb97fe

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /img/products_webp/original/150x150/active_discount_pack.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:11 GMT
Content-Length: 9710
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-25ee"
Expires: Fri, 25 Nov 2022 22:21:11 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   9710
Md5:    13de4413f0d79b6aeb410be1d21e88bb
Sha1:   f6e03bce55be28a224641fc74c8c8429df2d9e51
Sha256: 4d4aec070cb7034ce9f9c6ec31b2c0f65580ccb1267e0038a08ae8f9e7818810

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /img/products_webp/original/150x150/cialis_super_active.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:12 GMT
Content-Length: 2544
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-9f0"
Expires: Fri, 25 Nov 2022 22:21:12 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   2544
Md5:    b19d8b0e0e70fcf9948738b28de1dc9c
Sha1:   00c6ece5d05ccbcdd9fc6e946d6c3d16df8256bb
Sha256: 64cc508dd4bd9c2f04da463fe1fcc97716b8ca05598f15d702946bc06467e0cb

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /img/products_webp/original/150x150/viagra_super_active.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:12 GMT
Content-Length: 2618
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-a3a"
Expires: Fri, 25 Nov 2022 22:21:12 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   2618
Md5:    90e686086655d1bfa2581c58513c14bc
Sha1:   e2bddb73b0e3b540a79b5a58f9db8bc71887d142
Sha256: 5c4dbae63108c49ccbceeb2c0aaa3f4fd2f7623ddf8ac6c83d51bf66810cadd1

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /img/products_webp/original/150x150/kamagra_brand_gold.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:12 GMT
Content-Length: 2170
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-87a"
Expires: Fri, 25 Nov 2022 22:21:12 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   2170
Md5:    2114713a8643dd36368b65c7e7d297d5
Sha1:   c81c38cb8913c6e06693dd7731d9f0cbfa75dbcf
Sha256: 39080e3ecbeecb6e852413da7782a6bd13000842b2d7d7230ba643d1f4690d95

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /img/products_webp/original/150x150/celebrex.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:12 GMT
Content-Length: 3106
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-c22"
Expires: Fri, 25 Nov 2022 22:21:12 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   3106
Md5:    4bd2f7a901a05546f7f89143a34de6f6
Sha1:   a7fb823fdc83e1f836d543828df38da43458324a
Sha256: 49a93b400a8492bae496126a5e0ebb4126cdb11b5444744f3b800db7179bd754

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /img/products_webp/original/150x150/vpxl.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:12 GMT
Content-Length: 2404
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-964"
Expires: Fri, 25 Nov 2022 22:21:12 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   2404
Md5:    51a31fbc307c1a4e128be9e21fd53956
Sha1:   43c086161211e4ea9f1daccbca75317e7ed98d03
Sha256: 7d570b96116921aa677f2222e2c43c370b81c964740c7a992b831cfba5b8cc58

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /themes/506/assets/img/three_cell_blue.png HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/banners.min.css?v=1669114486
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:12 GMT
Content-Length: 177389
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-2b4ed"
Expires: Fri, 25 Nov 2022 17:20:07 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 1110 x 368, 8-bit colormap, non-interlaced\012- data
Size:   177389
Md5:    95ec183c4c08198699342897d19a68ad
Sha1:   c1a5f34c91242ab4e38e9138727b388c56ca1493
Sha256: e9cefcd31844336144b9a1665c79a4deeb588a2fb24b563821fe13469692bfbf
                                        
                                            GET /themes/506/assets/img/three_cell_green.png HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/banners.min.css?v=1669114486
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:12 GMT
Content-Length: 81942
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-14016"
Expires: Fri, 25 Nov 2022 17:11:04 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 1110 x 368, 8-bit colormap, non-interlaced\012- data
Size:   81942
Md5:    632ea0486f1d0efc481b466976b48091
Sha1:   fc3e0cabf9824c93b9404b9f4e15167aa22dcee6
Sha256: 0d428b221df36ede8d64165d4094a14d300eb252829245f9597af153fbc74fee
                                        
                                            GET /themes/506/assets/img/img-final-coupon.png HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669114486
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:13 GMT
Content-Length: 9606
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-2586"
Expires: Fri, 25 Nov 2022 15:28:05 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 218 x 146, 8-bit/color RGBA, interlaced\012- data
Size:   9606
Md5:    ddf34d85827fc3ed4efd1c8c95b4066a
Sha1:   f4a26bfbde8ff50b65b9d23e7b3e0588a34fb1c1
Sha256: c554ad39982647b8bb90fa7aa32ead4ef5aa230d3cfac01d0e7eeef17f63c71d
                                        
                                            GET /img/products_webp/original/150x150/ventolin_inhaler.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:13 GMT
Content-Length: 2878
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-b3e"
Expires: Fri, 25 Nov 2022 22:21:13 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   2878
Md5:    53072088b14602f86c8e13b04943a221
Sha1:   4e5ca1da70a49959d861e0f8df01eda72c359ed1
Sha256: 6828b36747a37d0fecd05330021b7b43c37b19190b801c5c62ad4d8c25fe53b6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /themes/506/assets/img/product_promo_image_bg_1.png HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:13 GMT
Content-Length: 223359
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-3687f"
Expires: Fri, 25 Nov 2022 22:21:13 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 780 x 690, 8-bit colormap, non-interlaced\012- data
Size:   223359
Md5:    ebe1997fca8115ce4bea815f1cd5e3f4
Sha1:   12e76648e2f71d74b69c9a4c976ad89c3cfbc4a8
Sha256: e32199b7e09a5bcf2410dc90014591a488b4be8afd5387c6ed4e5c6acbb4458a
                                        
                                            GET /themes/506/assets/img/product_promo_image_bg_3.png HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:13 GMT
Content-Length: 181588
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-2c554"
Expires: Fri, 25 Nov 2022 10:56:27 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 985 x 659, 8-bit colormap, non-interlaced\012- data
Size:   181588
Md5:    cfd12c24f0951a02e528dcf5ba517ad0
Sha1:   33355c6cbe5bca210cac1094cc3f6b666248de50
Sha256: 34676aacc848140cac7d784e78c7fe4bbccadfb8dc3c6f380773e7860df31ce4
                                        
                                            GET /themes/506/assets/img/img-bottom-certificate-0.png HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:13 GMT
Content-Length: 20014
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-4e2e"
Expires: Fri, 25 Nov 2022 22:21:13 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 198 x 104, 8-bit/color RGBA, interlaced\012- data
Size:   20014
Md5:    9ccee1573c264cb8af43d8bb4cb22bef
Sha1:   11108e5ef50c53aa7ce16a10100f9641c4e789ea
Sha256: 0f67f0c4f9e8384786a1a873ed8f63856ea3c6ec7c876eee9f22c27135842edd
                                        
                                            GET /themes/506/assets/img/img-bottom-certificate-1.png HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:13 GMT
Content-Length: 14510
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-38ae"
Expires: Fri, 25 Nov 2022 10:46:00 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 182 x 70, 8-bit/color RGBA, non-interlaced\012- data
Size:   14510
Md5:    e0e015edb01932bd92a090e6c1c69fb3
Sha1:   9c9fcc2026d11bf762f73c1478c59c9d9e0f80fc
Sha256: 0bcd60a0db33494184cef031e0938fec4224dbaa83febbfb8140689a6a7cbc6f
                                        
                                            GET /themes/506/assets/img/all-in-one-pack.png HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:13 GMT
Content-Length: 48196
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-bc44"
Expires: Fri, 25 Nov 2022 22:21:13 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 536 x 228, 8-bit colormap, non-interlaced\012- data
Size:   48196
Md5:    8658cd0e8e4de31b2506ae0b7bb49517
Sha1:   b0387fcf92674da7ba1e6d6ae32f1db8899c2df8
Sha256: d6439d0c5c3d7b9513cbe8fa017cc939a5f5ff036f32fbf9005de7caf72b3674
                                        
                                            GET /themes/506/assets/img/super-discount-pack.png HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:13 GMT
Content-Length: 53482
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-d0ea"
Expires: Fri, 25 Nov 2022 21:50:12 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 478 x 262, 8-bit colormap, non-interlaced\012- data
Size:   53482
Md5:    38823cccbb61c16e96d6b44975f653f8
Sha1:   8903b66d4dee8b4d46a9a796101d7141f276029c
Sha256: b5e9d355309a52de5d6f4bb233fbd4ca1d9ed990c14e3e7112b70bb5195db206
                                        
                                            GET /themes/506/assets/img/img-certificate-0.png HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:13 GMT
Content-Length: 20800
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-5140"
Expires: Fri, 25 Nov 2022 10:46:00 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 132 x 86, 8-bit/color RGBA, non-interlaced\012- data
Size:   20800
Md5:    474102292ba0b45bfb8c29eceefcb44a
Sha1:   3b4b0f9b7dc7cbb200887e1419c1d2312347340c
Sha256: 3f7a9eff47a5be960a3509d9e93e5f782befa90cd0646ef860b63212f0ff5773
                                        
                                            GET /img/products_webp/original/150x150/augmentin.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:13 GMT
Content-Length: 2666
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-a6a"
Expires: Fri, 25 Nov 2022 22:21:13 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   2666
Md5:    fbf8d032752efa8fba8255a6f1f5fd80
Sha1:   466523c5d92aabfb8735f7b0c8e8c2f3ee953592
Sha256: 0498dce4bf09377e58d56340cebd8d707945f26eec6688fc20d64d6d840d84a6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /themes/506/assets/img/img-certificate-1.png HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:13 GMT
Content-Length: 28780
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-706c"
Expires: Fri, 25 Nov 2022 10:56:38 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 140 x 84, 8-bit/color RGBA, non-interlaced\012- data
Size:   28780
Md5:    aa561d017a4d34adab56aa3aec2d6843
Sha1:   bdd0587570c72b786413f5980a6da19b61da3621
Sha256: 6cee04baf8bc48668c83b4e79589173596696acab871f2357c96ffc54b1a5942
                                        
                                            GET /themes/506/assets/img/img-certificate-3.png HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:13 GMT
Content-Length: 14530
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-38c2"
Expires: Fri, 25 Nov 2022 17:28:12 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 90 x 90, 8-bit/color RGBA, non-interlaced\012- data
Size:   14530
Md5:    3479939cdd82f554cf8dc0970f4157e1
Sha1:   e066a74d7af7778b3bdde909bb0fe3ee3e62152c
Sha256: fb2635952190e7d0aacd0af4c09beefd74e2f6efa25461cc53bfccdcafdcb85f
                                        
                                            GET /img/products_webp/original/150x150/doxycycline.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:13 GMT
Content-Length: 2482
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-9b2"
Expires: Fri, 25 Nov 2022 22:21:13 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   2482
Md5:    b1f58f671b01d8f3e5dfd76be4126514
Sha1:   163d928e508ff679255ceb85d11b080e1698866f
Sha256: 3c47ada348e03c33d3d345fe53948866d0b47ffdf910f32628536f4df5abc6de

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /img/products_webp/original/150x150/vyfat_brand.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:13 GMT
Content-Length: 2322
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-912"
Expires: Fri, 25 Nov 2022 22:21:13 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   2322
Md5:    178e08bebf898c19ae9dbe5c2f12f581
Sha1:   547a2b218fbaa7bec9756e949de11ccda6e081d4
Sha256: 24919956980aa3a0964dd7ede05844a922fa6fc091cc8d264b735d86496a2ba3

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /img/products_webp/original/150x150/prednisone.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:13 GMT
Content-Length: 2428
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-97c"
Expires: Fri, 25 Nov 2022 22:21:13 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   2428
Md5:    a161de223889cf5dcdc8f8663202330c
Sha1:   c2e7147a972d09a9e11d27569a62e8208cacc096
Sha256: 46241c3c34c724fa72882bff98650494b216deae95178274eb73ef9c37d4e2c9

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /themes/506/assets/img/super-discount-pack-mobile.png HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:13 GMT
Content-Length: 56729
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-dd99"
Expires: Fri, 25 Nov 2022 22:21:13 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 224 x 194, 8-bit/color RGBA, non-interlaced\012- data
Size:   56729
Md5:    d2b83ad23f8aed1ba2c5d54fa2627aaa
Sha1:   ccbbbc103289344839bc0ae6de437a81705766b2
Sha256: 3d51a9b5119c320dd88066546a904d3d5d78b5f562bb0d64e588f854034e1040
                                        
                                            GET /themes/506/assets/img/i-cross-modal.svg HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669114486
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-303"
Expires: Fri, 25 Nov 2022 10:46:01 GMT
Cache-Control: max-age=86400, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text
Size:   402
Md5:    8586093e840b0f683bc9f142480d7419
Sha1:   0f503bc98849c3a52935b9f61de62b87cf5d38f9
Sha256: 80eafc3b9e02f55ed348016e66d3f4cbd8f40a567c8bc8ef3b22857afb2732ef

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /themes/506/assets/img/i-plus.svg HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669114486
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-369"
Expires: Fri, 25 Nov 2022 22:21:14 GMT
Cache-Control: max-age=86400, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text
Size:   420
Md5:    c672271d56a3654b7b0282b519314619
Sha1:   e1daed8d17eaecf1c90887f471eb830ffad4035c
Sha256: bd3e27455efe3552cf20031b283214d8ea8ef44f5c11b9a2b487bec99a247ad7

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /themes/506/assets/img/i-minus.svg HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669114486
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-1e6"
Expires: Fri, 25 Nov 2022 10:56:39 GMT
Cache-Control: max-age=86400, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text
Size:   311
Md5:    79a798089a0dded6d3f22a031e224e08
Sha1:   66336bea97828bbd59aff2c5eb63566bfa9880f1
Sha256: fd75624647240c731b05682e2df727177b97017b1d21779c315cfb319af0124f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /themes/506/assets/img/i-remove-hover.svg HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669114486
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-48e"
Expires: Fri, 25 Nov 2022 15:28:17 GMT
Cache-Control: max-age=86400, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (418)
Size:   477
Md5:    a9e983cbf5e94d4acda5395b90eb7562
Sha1:   c327a1f202a679dcec75377ff8a0cc8cc4528f17
Sha256: c0ec374136281f2dbbc5b4110708006bfaf311080401dfcf7b4cde3b64ed9257

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /themes/506/assets/img/i-unapply-coupon-hover.svg HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669114486
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-25e"
Expires: Fri, 25 Nov 2022 10:46:01 GMT
Cache-Control: max-age=86400, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text
Size:   338
Md5:    62ba366ae1d4294482bc19b17caaa271
Sha1:   d99c8f7584b854f784ede42b2c71fc764ed5468e
Sha256: e887f91fe8a08a54fa341696cc59309d462b612d2f79f84327e040fe25ce92c7

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /img/products_webp/original/150x150/cialis_black.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:15 GMT
Content-Length: 2370
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-942"
Expires: Fri, 25 Nov 2022 22:21:15 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   2370
Md5:    086ef3bbc3b99d64e1ef17373b16147e
Sha1:   0c08a8ed5457db82b27ef729d2d8cd751095a907
Sha256: 3fc09f3f78d6b3ba8e6c1e0fdb0dfb40e12af0e8ba65060ee9daa057be460981

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /img/products_webp/original/150x150/viagra_super_force.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:15 GMT
Content-Length: 3096
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-c18"
Expires: Fri, 25 Nov 2022 22:21:15 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   3096
Md5:    a2256297f7623fba73e2f4ddffa6ae89
Sha1:   e492bf7cbd147a0a7504d067e4bba879642d75f3
Sha256: 15cd4ea19eff0f54774d84a1361d0857162be2b42b9ea44cddbf3c5fcd4170cf

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /img/products_webp/original/150x150/cialis_pack.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:15 GMT
Content-Length: 9464
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-24f8"
Expires: Fri, 25 Nov 2022 22:21:15 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   9464
Md5:    2d8a9c633ef34b70f187165742b498e3
Sha1:   8fe2c346c62401d2c43cbeb56c209b85e9d4417b
Sha256: dadf8d5f8f576513662708f865639535dfe6a273cbdd112d63664f662eae8c60

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /img/products_webp/original/150x150/viagra_brand.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:15 GMT
Content-Length: 3134
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-c3e"
Expires: Fri, 25 Nov 2022 22:21:15 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   3134
Md5:    16d21989cf0aa70202d5f07a49649a4d
Sha1:   4b6dcccb17350337d983bbb38fe58aff9f40f06a
Sha256: 14bcb63ffed0b604fd2c5a35076919bad88ff41a704cc66b506cd5111fce94ad

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /img/products_webp/original/150x150/viagra_pack.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:15 GMT
Content-Length: 8350
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-209e"
Expires: Fri, 25 Nov 2022 22:21:15 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   8350
Md5:    55840fe3b0c9849004a7a3fd9d8648d2
Sha1:   9485337594d413b3030d13ee72a461986ce58008
Sha256: ff0c53e9c3bc02142c74a5e2b4256673174a56926b3d06764a45d7704953f4a6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /img/products_webp/original/150x150/levitra_brand.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:16 GMT
Content-Length: 3800
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-ed8"
Expires: Fri, 25 Nov 2022 22:21:16 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   3800
Md5:    7c36d95c093b3c76a1cfd4590960b084
Sha1:   d8c470448782006baef16f500b9b13ea5265dae0
Sha256: 3b1c79ab94a34cd7cd16d1a9fbe9638ac3730f0f9e0497cd8faf533887b0a9d0

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /img/products_webp/original/150x150/strattera.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:16 GMT
Content-Length: 3024
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-bd0"
Expires: Fri, 25 Nov 2022 22:21:16 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   3024
Md5:    86f806ca336f68bd06ace724439e5ea5
Sha1:   b90f6c58301685a13b03659122e94bf60d94fd9a
Sha256: e3f870b45f91ead00cd7f9a0b2b0997b20386a6df73b7da69eaf8640ad3d1e18

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /img/products_webp/original/150x150/neurontin.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:16 GMT
Content-Length: 3952
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-f70"
Expires: Fri, 25 Nov 2022 22:21:16 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   3952
Md5:    e2082c5e3bdeebbabf3fd064725985df
Sha1:   8b29fe753994bdcd2edaeee72494bc5dea9cc9c2
Sha256: dc0b4b7ef12a0447d2dde4d9e1bb6ffc67932f11965a085fde5f1a3f4142da45

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /img/products_webp/original/150x150/azithromycin_dt.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:16 GMT
Content-Length: 2150
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-866"
Expires: Fri, 25 Nov 2022 22:21:16 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   2150
Md5:    eaa9e31ffcf12232378cc1b82fac06e2
Sha1:   e50d04b95410b9fd02b59db77f3975873e2783a6
Sha256: 25eae2da8106cb55fc40ef85c2b99a4fcb27b79186b5aafa9ea03ee659a2fdc8

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /img/products_webp/original/150x150/propecia.webp HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:16 GMT
Content-Length: 2420
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-974"
Expires: Fri, 25 Nov 2022 22:21:16 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   2420
Md5:    25be743cd5eb50d10bda146d56723725
Sha1:   f6c9ebbba107e6f29175656e3648034ae7a08284
Sha256: 97d0b4f436a381ad025922f60a943db1238f3b7058b5016d601675362369a9e9

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /themes/common/js/slick.min.js?v=1669114486 HTTP/1.1 
Host: progreatdiscount.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=e4pq9eer0dfmi118kfrehdpg61121v98
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         185.92.151.141
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 24 Nov 2022 22:21:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-9c88"
Expires: Fri, 24 Nov 2023 12:10:40 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests


--- Additional Info ---