r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3712
Expires: Thu, 01 Dec 2022 23:39:00 GMT
Date: Thu, 01 Dec 2022 22:37:08 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 368
Cache-Control: max-age=129612
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 22:37:08 GMT
Etag: "63888270-1d7"
Expires: Sat, 03 Dec 2022 10:37:20 GMT
Last-Modified: Thu, 01 Dec 2022 10:31:12 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3055
Expires: Thu, 01 Dec 2022 23:28:03 GMT
Date: Thu, 01 Dec 2022 22:37:08 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 22:18:09 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1139
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 85oR+H//NV6YqBoq5Sk6S/5ZzVrLUwjm2F34Tr4Npdha9ZCNuG5eTQqBukgRObnrHfmOqYzenQ3VqxrIv39+IA==
x-amz-request-id: Q5PTRMTTEHJVRFX8
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 21:45:49 GMT
age: 3079
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 22:37:08 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 22:11:15 GMT
cache-control: public,max-age=3600
age: 1554
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 360
Cache-Control: max-age=124540
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 22:37:09 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 09:12:49 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
sistema.calzadossoe.com/includes/excel/lib/PHPExcel/PHPExcel/locale/pt/br/option.html
200.58.111.13200 OK 105 B URL HTTP/1.1 sistema.calzadossoe.com/includes/excel/lib/PHPExcel/PHPExcel/locale/pt/br/option.html
IP 200.58.111.13:0
File type HTML document, ASCII text, with no line terminators
Hash 20f3df9561c18137efbc6aca21d6dd41
b18ef49aa71afbb9c5b9e8474a54c3770c698447
8f3a18fa858ce05cd4bbfc469f7690e695481c54966c4c450bff07ef2bedd717
Analyzer Verdict Alert fortinet Phishing
GET /includes/excel/lib/PHPExcel/PHPExcel/locale/pt/br/option.html HTTP/1.1
Host: sistema.calzadossoe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 22:37:09 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 29 Nov 2021 16:05:59 GMT
ETag: "61-5d1ef9dd627c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 105
Keep-Alive: timeout=10, max=200
Content-Type: text/html
push.services.mozilla.com/
52.38.198.114101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.38.198.114:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ETehrEJbDlD+tn8mpJQ99Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: IZvQYZENO4TzBmpQBJUoBLshY6w=
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3655
Expires: Thu, 01 Dec 2022 23:38:04 GMT
Date: Thu, 01 Dec 2022 22:37:09 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3655
Expires: Thu, 01 Dec 2022 23:38:04 GMT
Date: Thu, 01 Dec 2022 22:37:09 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3655
Expires: Thu, 01 Dec 2022 23:38:04 GMT
Date: Thu, 01 Dec 2022 22:37:09 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3655
Expires: Thu, 01 Dec 2022 23:38:04 GMT
Date: Thu, 01 Dec 2022 22:37:09 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d147ccb10bda82b153a596c3c967cd6a
ffd0763f997e71a8c1458523fc17cafe8849dfdf
1cfeb90a4ba027195f903d938d4a0aac418a1c2f0b52215ec023263f15905971
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7591
x-amzn-requestid: e179862e-f840-4e50-a9dc-09f325479b9a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGgMFRZIAMFl7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e01-676a1571459f2d83488f2765;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: oB5K_ZCWWwCltMx8FQSjDdXRMzSTSyRLSYSLAooQXuCrUxadLUiWkA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:08:56 GMT
etag: "ffd0763f997e71a8c1458523fc17cafe8849dfdf"
content-type: image/jpeg
age: 1693
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe0842726-801f-4648-a54d-c0cb2cf5348a.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe0842726-801f-4648-a54d-c0cb2cf5348a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 89502a302863c914b4de5e8c6a7f6846
898d50ac6e372609656fccee27de3d036bc0281c
9bc1f83d570d70b7e17e5de7a1546885851431ea989d915852ae7130387c422f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe0842726-801f-4648-a54d-c0cb2cf5348a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5675
x-amzn-requestid: a47e049a-6f76-4af4-8064-fd7722bcfb17
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGepGYEIAMFeQw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-09e13afe27c4dc5b44e828be;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: U_3ah2pFrsQl9IVVqm9EVI99FnF79b9zOUFVBGX966JAjkDg6UF--A==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:47:56 GMT
age: 2953
etag: "898d50ac6e372609656fccee27de3d036bc0281c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1c80b8025242ddfcc816ec612456b99e
aa944d10fe4a44b790b01ef62edc0f85a6d558e3
a9f060bc15738a3fe257e0c81a29e4611a89c273bcbb2765ce856d4e854a5f1f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11402
x-amzn-requestid: 20c2c359-1e43-40c0-885d-1c90e76ea12b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGzJHu-IAMFbYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e7a-1d89722e767daa014b174a39;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: OJBnbjJB_kvPuJcePGnno3zI0CTWAzV-Osb2L1hPZZhlNYhFHWmLsA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:51:33 GMT
etag: "aa944d10fe4a44b790b01ef62edc0f85a6d558e3"
content-type: image/jpeg
age: 2736
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F449f29d0-f60b-4dec-8b5b-0a1971bab406.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F449f29d0-f60b-4dec-8b5b-0a1971bab406.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4c7113338bc3310b13d23ca415c177e2
2cb4edc6b161c6d2d5b47aa498ae54e677966466
3a83adce869dd7eb064c583bf7ff93c57fabd7ea2da872f7d1f7d868b8a492e9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F449f29d0-f60b-4dec-8b5b-0a1971bab406.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10270
x-amzn-requestid: ac2d2825-2ec4-435e-9921-3ea6524df1dc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfG1nEvYoAMFliA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e8a-4419423112b5723e3dba46ea;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:37:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NQ21d2_5JO2Ym-LEnDecub9bK6wUyvM2zUf_XpfMGag83fVWlMjT8w==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:50:09 GMT
age: 2820
etag: "2cb4edc6b161c6d2d5b47aa498ae54e677966466"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F092f8542-1ed2-47c2-82aa-d5ef970a77ca.png
34.120.237.76200 OK 3.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F092f8542-1ed2-47c2-82aa-d5ef970a77ca.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 89e1a735e16f55c78fa75ae434294029
6c56f4015305eff04a99cec9758cd40bf4e5f704
26e8b042c0bbef2c7f93f77451563cf6e12af282251ef864652574be2b2c5b15
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F092f8542-1ed2-47c2-82aa-d5ef970a77ca.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3711
x-amzn-requestid: 68772438-16c4-40ab-a40e-860425d8301c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGyhHVsIAMFmsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e76-21d27db6708228002e738938;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JOCSKxy4WUDbS22Gd9BlyN1gmcDsDNlNWnT57KITGlNwfOe_Iaco9g==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:48:59 GMT
age: 2890
etag: "6c56f4015305eff04a99cec9758cd40bf4e5f704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
34.120.237.76200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Fw6nrporwF27NW0-vXpaolW79nDXLF2RyS-lqhhp1osHt7q98VpI3g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:34:47 GMT
age: 3742
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b5a0acde1755b1ce176af0026f12e114
410acc3948a337006fb9837d964a4188db0256dc
92c0895a91e3fa6c0684bde9fb736d6aa60e4200acccc441a17812f8c8ebc61f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "92C0895A91E3FA6C0684BDE9FB736D6AA60E4200ACCCC441A17812F8C8EBC61F"
Last-Modified: Thu, 01 Dec 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21542
Expires: Fri, 02 Dec 2022 04:36:12 GMT
Date: Thu, 01 Dec 2022 22:37:10 GMT
Connection: keep-alive
progreatdiscount.com/?cp=l3apgah0
185.92.151.141200 OK 29 kB URL HTTP/1.1 progreatdiscount.com/?cp=l3apgah0
IP 185.92.151.141:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (3973)
Hash d54ae2f15038c27d0b6233aea988f19a
becaa2a799570325636efa68334b484c57717117
695140f3547929b1f3d751d31982faf37ab28398a8b527a8b03dacc9d04231c5
Analyzer Verdict Alert fortinet Phishing
GET /?cp=l3apgah0 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sistema.calzadossoe.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:10 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7; expires=Fri, 02-Dec-2022 22:37:10 GMT; Max-Age=86400; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/css/fonts.min.css?v=1669904708
185.92.151.141200 OK 500 B URL HTTP/1.1 progreatdiscount.com/themes/506/assets/css/fonts.min.css?v=1669904708
IP 185.92.151.141:0
File type ASCII text, with very long lines (4208), with no line terminators
Hash 8f78b43a7e06a43145eb7c7c10196786
bfd1a2ab2f535db0cad01a6be7880645683a1997
6b36879c314f8190958a4fe1df41100cc67fb8fc568ea0cd38ce12adba45daae
GET /themes/506/assets/css/fonts.min.css?v=1669904708 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:10 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: W/"6388b944-1070"
Expires: Fri, 01 Dec 2023 14:25:36 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/css/base.min.css?v=1669904708
185.92.151.141200 OK 9.9 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/css/base.min.css?v=1669904708
IP 185.92.151.141:0
File type ASCII text, with very long lines (47142), with no line terminators
Hash 943ac314214af7fbbb27f1cd9973c664
c96fd0df41d80425b0c8dca42f6af9707fb8eb85
4bc7d6dab6c81204c48450f1e702e50fd16a6ea281aaab2afb4d5751c1058706
Analyzer Verdict Alert fortinet Phishing
GET /themes/506/assets/css/base.min.css?v=1669904708 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:10 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: W/"6388b944-b826"
Expires: Fri, 01 Dec 2023 14:25:36 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/css/banners.min.css?v=1669904708
185.92.151.141200 OK 14 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/css/banners.min.css?v=1669904708
IP 185.92.151.141:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash ca33e9c351403d0883e61c47006243ea
c96d43683c47182fd92e1b2bf39aa316ae74ac73
cca9b82158bfa987153250e2ed870813f4b680943fcf0660260a31033b88b6e4
Analyzer Verdict Alert fortinet Phishing
GET /themes/506/assets/css/banners.min.css?v=1669904708 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:10 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: W/"6388b944-140b0"
Expires: Fri, 01 Dec 2023 14:25:36 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/common/js/jquery-3.3.1.min.js?v=1669904708
185.92.151.141200 OK 35 kB URL HTTP/1.1 progreatdiscount.com/themes/common/js/jquery-3.3.1.min.js?v=1669904708
IP 185.92.151.141:0
File type ASCII text, with very long lines (65451)
Hash 83a94c0e4dce1975b10bee48bf41267b
8ae39295f64d891e367e49a0ff54e80067085bc9
ee39efe9eba01b524accd2ac9af7a458fecce60e1479df06b22dd4be6f6f5d28
Analyzer Verdict Alert fortinet Phishing
GET /themes/common/js/jquery-3.3.1.min.js?v=1669904708 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:10 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: W/"6388b944-1538f"
Expires: Fri, 01 Dec 2023 14:26:52 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/js/quick-search.min.js?v=1669904708
185.92.151.141200 OK 2.0 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/js/quick-search.min.js?v=1669904708
IP 185.92.151.141:0
File type Unicode text, UTF-8 text, with very long lines (5062), with no line terminators
Hash da8edd4421402a835cd54868831181da
3987d36ea9e9e98effc20b1753196e7c94d48279
0ebd260096cc1f9954211a414be2e804e3d190861c0928a3194729d7971d3fb8
Analyzer Verdict Alert fortinet Phishing
GET /themes/506/assets/js/quick-search.min.js?v=1669904708 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:10 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: W/"6388b944-13ca"
Expires: Fri, 01 Dec 2023 14:29:58 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/common/js/common.min.js?v=1669904708
185.92.151.141200 OK 2.1 kB URL HTTP/1.1 progreatdiscount.com/themes/common/js/common.min.js?v=1669904708
IP 185.92.151.141:0
File type ASCII text, with very long lines (4816), with no line terminators
Hash b01af2e2435fbee121d7fa34e7b72b95
a5c65769843cbba8912afd4904edfce651626680
278d812e7d1c4846f8673083989f4ce779c49557b0e94068883e36020d3e297b
Analyzer Verdict Alert fortinet Phishing
GET /themes/common/js/common.min.js?v=1669904708 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:10 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: W/"6388b944-12d0"
Expires: Fri, 01 Dec 2023 14:30:18 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/js/main.min.js?v=1669904708
185.92.151.141200 OK 1.5 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/js/main.min.js?v=1669904708
IP 185.92.151.141:0
File type ASCII text, with very long lines (3536), with no line terminators
Hash 1d435de9fab2e77db80f2eedb7f6f397
d2e25195a1c7aaeb5cb7467f3204a860664d256c
285830134fd9fdf90fcc5c3def40590126639095167f17d821bf2339f9c9680e
GET /themes/506/assets/js/main.min.js?v=1669904708 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:10 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: W/"6388b944-dd0"
Expires: Fri, 01 Dec 2023 14:30:18 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 188c50963e7939b1f26a31dbcb8c8200
859416e6148ea6618584e53604efcf072bb989cc
3a313cd3c1693a886bfbf6ffc6fbac78f87e6ded2b9a7749553444ada65ce36e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 22:37:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669904708
185.92.151.141200 OK 66 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669904708
IP 185.92.151.141:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 67abc39ff215d3304ab5012c148d09a6
7539b758e9f1b06be5b58e1a966c9d4a003e9df4
206dd7a7f41ee3fdf740d45a5d46e787d5c17202a68e4a68e8070cff89bf1310
Analyzer Verdict Alert fortinet Phishing
GET /themes/506/assets/css/common.min.css?v=1669904708 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:10 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: W/"6388b944-56f57"
Expires: Fri, 01 Dec 2023 14:25:36 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/js/coupon.min.js?v=1669904708
185.92.151.141200 OK 1.2 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/js/coupon.min.js?v=1669904708
IP 185.92.151.141:0
File type ASCII text, with very long lines (3763), with no line terminators
Hash 6969232db7c94fa1c9a3d230bd19582f
3b6d21dc2c59368f8e20bf7bfa0579deba5d6957
b61be2a2e62324eb363e18eb80319d18b5db6963cca14048112fa8b6abc520b4
Analyzer Verdict Alert fortinet Phishing
GET /themes/506/assets/js/coupon.min.js?v=1669904708 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:10 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: W/"6388b944-eb3"
Expires: Fri, 01 Dec 2023 14:30:05 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/common/js/cookie-alert.min.js?v=1669904708
185.92.151.141200 OK 177 B URL HTTP/1.1 progreatdiscount.com/themes/common/js/cookie-alert.min.js?v=1669904708
IP 185.92.151.141:0
File type ASCII text, with no line terminators
Hash 34970616827edeb46b61eed18cdd8225
987b02759eeb49017e5f7e19ef5609cdbd33a79d
ab647afd5967781c6d0dd0aa75974944e4f8d8f25f6048077342cf07f3317cfc
Analyzer Verdict Alert fortinet Phishing
GET /themes/common/js/cookie-alert.min.js?v=1669904708 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:10 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: W/"6388b944-f5"
Expires: Fri, 01 Dec 2023 14:30:18 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/common/js/autofill-event.min.js?v=1669904708
185.92.151.141200 OK 2.4 kB URL HTTP/1.1 progreatdiscount.com/themes/common/js/autofill-event.min.js?v=1669904708
IP 185.92.151.141:0
File type ASCII text, with very long lines (5249), with no line terminators
Hash 52659bcbb35f081d709a2918c6b86f5b
b36f4257785db120bd8fdd10c6523051308de6fe
d02a26b0329d791a1798bed357e4ee9bfd748b62be244cd7fdc96f15ec67b23b
GET /themes/common/js/autofill-event.min.js?v=1669904708 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:10 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: W/"6388b944-1481"
Expires: Fri, 01 Dec 2023 14:26:52 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/common/js/events.min.js?v=1669904708
185.92.151.141200 OK 2.4 kB URL HTTP/1.1 progreatdiscount.com/themes/common/js/events.min.js?v=1669904708
IP 185.92.151.141:0
File type ASCII text, with very long lines (10318), with no line terminators
Hash 81085df96e9255a3400fae070857b2e7
439ed10c5219e7eab7b8cc74ca748162a15d1522
b87976e648975cd0ee6a296cc963ed8d93a8a12c0c9402aa6cf4e75e55edebf9
Analyzer Verdict Alert fortinet Phishing
GET /themes/common/js/events.min.js?v=1669904708 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:10 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: W/"6388b944-284e"
Expires: Fri, 01 Dec 2023 14:26:53 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
www.googletagmanager.com/gtag/js?id=UA-68773835-15
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-68773835-15
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 120264702053e26fc10b2aa876ec322c
b67cd64ea954c7dfeee73f5da5d6f86f30c3d17a
622fe2706d6968eda8552c3f072cef6f10a23bd32ff2259c63a205db8b5614c2
GET /gtag/js?id=UA-68773835-15 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 01 Dec 2022 22:37:10 GMT
expires: Thu, 01 Dec 2022 22:37:10 GMT
cache-control: private, max-age=900
last-modified: Thu, 01 Dec 2022 22:13:37 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43577
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
progreatdiscount.com/themes/506/assets/js/scripts.min.js?v=1669904708
185.92.151.141200 OK 15 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/js/scripts.min.js?v=1669904708
IP 185.92.151.141:0
File type Unicode text, UTF-8 text, with very long lines (31993)
Hash 10a9d8c737a958f2b8be2f47f1cc3a7d
ead539be96e72edbaa9936163ca20faecdbc268b
cdf97a2ef6949edb4150f15543962376a9ded45a0f5bc89c48458f545059c98a
GET /themes/506/assets/js/scripts.min.js?v=1669904708 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:10 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: W/"6388b944-d1d0"
Expires: Fri, 01 Dec 2023 14:30:04 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/common/js/slick.min.js?v=1669904708
185.92.151.141200 OK 12 kB URL HTTP/1.1 progreatdiscount.com/themes/common/js/slick.min.js?v=1669904708
IP 185.92.151.141:0
File type ASCII text, with very long lines (32012)
Hash 0c1277c917da098787521edee85e2eda
cdd3101a133679bd1506ba88c3ebebb4c80d8534
8895378666f702351636346d5c5c4a18bba76cd2c94f63ba70e088abe6bcd02f
GET /themes/common/js/slick.min.js?v=1669904708 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:10 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: W/"6388b944-9c88"
Expires: Fri, 01 Dec 2023 14:30:18 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/js/slider.min.js?v=1669904708
185.92.151.141200 OK 492 B URL HTTP/1.1 progreatdiscount.com/themes/506/assets/js/slider.min.js?v=1669904708
IP 185.92.151.141:0
File type ASCII text, with very long lines (1137), with no line terminators
Hash 6066a1e897ef651f969ddd03e5a32326
cb0250a39200b33cc408175ab330bd09e242c4e0
8cd5f903e899067c2ca72223be58d6e34c414e224cf7f3e7ba0de173659f8f74
Analyzer Verdict Alert fortinet Phishing
GET /themes/506/assets/js/slider.min.js?v=1669904708 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:10 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: W/"6388b944-471"
Expires: Fri, 01 Dec 2023 14:30:06 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/super_active_discount_pack.webp
185.92.151.141200 OK 11 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/super_active_discount_pack.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash df992503795ddca7084767eab9621404
f74d78a7544b718f5f5ede85af270ae60f9c0960
070e09b438e9accc1f048eca5a081fd52ea1eb25b69e55f6770a3b41a9f64a2d
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/super_active_discount_pack.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:10 GMT
Content-Type: image/webp
Content-Length: 11208
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:07 GMT
ETag: "6388b943-2bc8"
Expires: Fri, 02 Dec 2022 22:37:10 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 188c50963e7939b1f26a31dbcb8c8200
859416e6148ea6618584e53604efcf072bb989cc
3a313cd3c1693a886bfbf6ffc6fbac78f87e6ded2b9a7749553444ada65ce36e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 22:37:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
progreatdiscount.com/themes/506/assets/img/viagra.png
185.92.151.141200 OK 69 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/viagra.png
IP 185.92.151.141:0
File type PNG image data, 888 x 394, 8-bit colormap, non-interlaced\012- data
Hash 0d788c4bfb71a3a4841f8a991e86a43d
f1ce058a3768ab21225d2d89acbe6ed0edf87231
fc6e8aac1afa8117a84111214e0af1b58b41db296650c4d73dc8d9a27aa6d422
GET /themes/506/assets/img/viagra.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:10 GMT
Content-Type: image/png
Content-Length: 69444
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: "6388b944-10f44"
Expires: Fri, 02 Dec 2022 15:13:33 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/506/assets/img/product_promo_image_bg_1.png
185.92.151.141200 OK 223 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/product_promo_image_bg_1.png
IP 185.92.151.141:0
File type PNG image data, 780 x 690, 8-bit colormap, non-interlaced\012- data
Size 223 kB (223359 bytes)
Hash ebe1997fca8115ce4bea815f1cd5e3f4
12e76648e2f71d74b69c9a4c976ad89c3cfbc4a8
e32199b7e09a5bcf2410dc90014591a488b4be8afd5387c6ed4e5c6acbb4458a
GET /themes/506/assets/img/product_promo_image_bg_1.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:10 GMT
Content-Type: image/png
Content-Length: 223359
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: "6388b944-3687f"
Expires: Fri, 02 Dec 2022 15:13:33 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/common/fonts/roboto-regular.woff2
185.92.151.141200 OK 65 kB URL HTTP/1.1 progreatdiscount.com/themes/common/fonts/roboto-regular.woff2
IP 185.92.151.141:0
File type Web Open Font Format (Version 2), TrueType, length 64692, version 1.0\012- data
Hash 8fa8a82f0969cd7d7027c1171ca08061
bf4da7aa5737d5567f826fb83e000db8d171ab16
4b9f4b6894c43b1ad68c54790e1b7d0f3aa0947b3fff960452ea6d8e172b4683
Analyzer Verdict Alert fortinet Phishing
GET /themes/common/fonts/roboto-regular.woff2 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/fonts.min.css?v=1669904708
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:10 GMT
Content-Type: application/octet-stream
Content-Length: 64692
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 08:52:00 GMT
ETag: "6385c830-fcb4"
Expires: Fri, 02 Dec 2022 11:50:41 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/common/fonts/roboto-bold.woff2
185.92.151.141200 OK 64 kB URL HTTP/1.1 progreatdiscount.com/themes/common/fonts/roboto-bold.woff2
IP 185.92.151.141:0
File type Web Open Font Format (Version 2), TrueType, length 64532, version 1.0\012- data
Hash 1b156057831714265eea89e49591f630
e716ba4bb233c19e35734a150bb320bea400c91f
1ba1d158b3dfd5936e9793954401c547a2a96ec7fd25c2c80ce2f22b7cb90545
Analyzer Verdict Alert fortinet Phishing
GET /themes/common/fonts/roboto-bold.woff2 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/fonts.min.css?v=1669904708
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:10 GMT
Content-Type: application/octet-stream
Content-Length: 64532
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 08:52:00 GMT
ETag: "6385c830-fc14"
Expires: Fri, 02 Dec 2022 11:34:47 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/common/fonts/raleway-bold.woff2
185.92.151.141200 OK 23 kB URL HTTP/1.1 progreatdiscount.com/themes/common/fonts/raleway-bold.woff2
IP 185.92.151.141:0
File type Web Open Font Format (Version 2), TrueType, length 22844, version 2.66\012- data
Hash b05633bc2a7ee76e2158a6d930c5b1bf
492066f3ecfdaaf7f8dd9603dc19a8b623384ee3
e3396f0c933a7b35384b7090a4a9a39ac11826234f1c023e13591f52a9d7562b
Analyzer Verdict Alert fortinet Phishing
GET /themes/common/fonts/raleway-bold.woff2 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/fonts.min.css?v=1669904708
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:10 GMT
Content-Type: application/octet-stream
Content-Length: 22844
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 08:52:00 GMT
ETag: "6385c830-593c"
Expires: Fri, 02 Dec 2022 12:55:39 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/img/products_webp/original/150x150/zithromax.webp
185.92.151.141200 OK 2.4 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/zithromax.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 40558417825b9bd181078c7668103297
1f19419153f63a4952b46f2f54ab06e9f4ded24d
3599023f6ce269b2af0402ae665a6240fbf74015194684996f7963bc61cd2bd6
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/zithromax.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:10 GMT
Content-Type: image/webp
Content-Length: 2354
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:07 GMT
ETag: "6388b943-932"
Expires: Fri, 02 Dec 2022 22:37:10 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/common/fonts/roboto-black.woff2
185.92.151.141200 OK 66 kB URL HTTP/1.1 progreatdiscount.com/themes/common/fonts/roboto-black.woff2
IP 185.92.151.141:0
File type Web Open Font Format (Version 2), TrueType, length 66148, version 1.0\012- data
Hash 72f6fd218b59c42e804cb543cfc53598
2c4388751874f5aa482c964d7d07fbebe2fcc3b9
026d836bb00b979293032a9221da04e71faf87f79f48b6bb92e3f9935f5315bc
Analyzer Verdict Alert fortinet Phishing
GET /themes/common/fonts/roboto-black.woff2 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/fonts.min.css?v=1669904708
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:10 GMT
Content-Type: application/octet-stream
Content-Length: 66148
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 08:52:00 GMT
ETag: "6385c830-10264"
Expires: Fri, 02 Dec 2022 12:54:58 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/common/fonts/raleway-heavy.woff2
185.92.151.141200 OK 23 kB URL HTTP/1.1 progreatdiscount.com/themes/common/fonts/raleway-heavy.woff2
IP 185.92.151.141:0
File type Web Open Font Format (Version 2), TrueType, length 22652, version 2.66\012- data
Hash 3dc82360708127724e5a8da27abb4cdc
11372456ae598bbc5e78bcd1c4cf04b5a096f568
b540009ba63d7be0f3231a43f1933cb6b772fb03b1800b98cb2c7e42fee18f12
Analyzer Verdict Alert fortinet Phishing
GET /themes/common/fonts/raleway-heavy.woff2 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/fonts.min.css?v=1669904708
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:10 GMT
Content-Type: application/octet-stream
Content-Length: 22652
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 08:52:00 GMT
ETag: "6385c830-587c"
Expires: Fri, 02 Dec 2022 12:55:40 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/common/fonts/roboto-medium.woff2
185.92.151.141200 OK 65 kB URL HTTP/1.1 progreatdiscount.com/themes/common/fonts/roboto-medium.woff2
IP 185.92.151.141:0
File type Web Open Font Format (Version 2), TrueType, length 65264, version 1.0\012- data
Hash c0657dcd5959441f8f23dbba445edba1
70b727d89d496d3f5b687ab8bb5b05f56a70e8a6
64b4e73268acd7bfcbf4a3d6431e5f137a4c4deab6340b04e9d23e5324a2250b
Analyzer Verdict Alert fortinet Phishing
GET /themes/common/fonts/roboto-medium.woff2 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/fonts.min.css?v=1669904708
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:10 GMT
Content-Type: application/octet-stream
Content-Length: 65264
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 08:52:00 GMT
ETag: "6385c830-fef0"
Expires: Fri, 02 Dec 2022 12:55:39 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/common/fonts/raleway-medium.woff2
185.92.151.141200 OK 23 kB URL HTTP/1.1 progreatdiscount.com/themes/common/fonts/raleway-medium.woff2
IP 185.92.151.141:0
File type Web Open Font Format (Version 2), TrueType, length 22736, version 2.66\012- data
Hash 9ff42184ec6b88ada2d15793036bac37
d60a55de33b84c6ac45e7ca2ba18155578869942
640636bdf0d9cf1824b80cda175987d2a773cf57cb3e1e2100ca5398783ec162
Analyzer Verdict Alert fortinet Phishing
GET /themes/common/fonts/raleway-medium.woff2 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/fonts.min.css?v=1669904708
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:10 GMT
Content-Type: application/octet-stream
Content-Length: 22736
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 08:52:00 GMT
ETag: "6385c830-58d0"
Expires: Fri, 02 Dec 2022 11:50:41 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/img/products_webp/original/150x150/viagra_professional.webp
185.92.151.141200 OK 3.1 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/viagra_professional.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 7feb824ec6799dd41505b563074d824a
b936d0ea4cf8621d189c6df0555490d180a40048
e1bf64316048c53064bc4ec80a9587d68e3a85572180abbc161c88360a91c7e4
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/viagra_professional.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:10 GMT
Content-Type: image/webp
Content-Length: 3058
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:07 GMT
ETag: "6388b943-bf2"
Expires: Fri, 02 Dec 2022 22:37:10 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/ukr-shield.png
185.92.151.141200 OK 6.2 kB URL HTTP/1.1 progreatdiscount.com/img/ukr-shield.png
IP 185.92.151.141:0
File type PNG image data, 110 x 124, 8-bit colormap, non-interlaced\012- data
Hash 2259dca5b854059bdfda110e26de43a0
cb005da1b0912fb653251525af2d0ff40f99c95e
6cbb7f10299045c047904e4b284ca28351c5ded956480d40ed0bedbf490f08ef
GET /img/ukr-shield.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669904708
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:10 GMT
Content-Type: image/png
Content-Length: 6183
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:34:29 GMT
ETag: "6388bb75-1827"
Expires: Fri, 02 Dec 2022 16:37:09 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/img/cross_base.png
185.92.151.141200 OK 707 B URL HTTP/1.1 progreatdiscount.com/img/cross_base.png
IP 185.92.151.141:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash acde11b5b53aa6f6c73b6608f6f6d699
913d77808b83fecc290a9459d2a0dbcc9526cee2
ea99e4f4ac42eb970990371fd73731a6393863ad0ed7b7950cda74467c59fa83
GET /img/cross_base.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669904708
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:10 GMT
Content-Type: image/png
Content-Length: 707
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 08:51:58 GMT
ETag: "6385c82e-2c3"
Expires: Fri, 02 Dec 2022 13:14:16 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/506/assets/img/sprite-shop-1659020065970.png
185.92.151.141200 OK 39 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/sprite-shop-1659020065970.png
IP 185.92.151.141:0
File type PNG image data, 195 x 4379, 8-bit colormap, non-interlaced\012- data
Hash bc120fa95c13c507a713acce99e5839e
032b15f674d47113388cc3e8d031f75735daa71e
c7c801fda929bd3612ccd78fb3f6731263a304e181da81d80370f09adf9835ba
GET /themes/506/assets/img/sprite-shop-1659020065970.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669904708
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:10 GMT
Content-Type: image/png
Content-Length: 39121
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: "6388b944-98d1"
Expires: Fri, 02 Dec 2022 18:24:05 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/506/assets/img/flashsale-pattern.png
185.92.151.141200 OK 5.2 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/flashsale-pattern.png
IP 185.92.151.141:0
File type PNG image data, 281 x 281, 8-bit colormap, non-interlaced\012- data
Hash c8556d1070178bbc80055efacdc8ecc6
01c653ff00263d46c583b389b7330b86c1f4bc1b
2995ace23798da51fa48f8d60b07f4597186acbcf69ec799b450a0ab0b6d3735
GET /themes/506/assets/img/flashsale-pattern.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/banners.min.css?v=1669904708
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:10 GMT
Content-Type: image/png
Content-Length: 5213
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 08:52:00 GMT
ETag: "6385c830-145d"
Expires: Fri, 02 Dec 2022 12:54:58 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/img/products_webp/original/150x150/cialis_super_active.webp
185.92.151.141200 OK 2.5 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/cialis_super_active.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash b19d8b0e0e70fcf9948738b28de1dc9c
00c6ece5d05ccbcdd9fc6e946d6c3d16df8256bb
64cc508dd4bd9c2f04da463fe1fcc97716b8ca05598f15d702946bc06467e0cb
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/cialis_super_active.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:11 GMT
Content-Type: image/webp
Content-Length: 2544
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:07 GMT
ETag: "6388b943-9f0"
Expires: Fri, 02 Dec 2022 22:37:11 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/viagra_super_active.webp
185.92.151.141200 OK 2.6 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/viagra_super_active.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 90e686086655d1bfa2581c58513c14bc
e2bddb73b0e3b540a79b5a58f9db8bc71887d142
5c4dbae63108c49ccbceeb2c0aaa3f4fd2f7623ddf8ac6c83d51bf66810cadd1
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/viagra_super_active.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:11 GMT
Content-Type: image/webp
Content-Length: 2618
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:07 GMT
ETag: "6388b943-a3a"
Expires: Fri, 02 Dec 2022 22:37:11 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/kamagra_brand_gold.webp
185.92.151.141200 OK 2.2 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/kamagra_brand_gold.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 2114713a8643dd36368b65c7e7d297d5
c81c38cb8913c6e06693dd7731d9f0cbfa75dbcf
39080e3ecbeecb6e852413da7782a6bd13000842b2d7d7230ba643d1f4690d95
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/kamagra_brand_gold.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:11 GMT
Content-Type: image/webp
Content-Length: 2170
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:07 GMT
ETag: "6388b943-87a"
Expires: Fri, 02 Dec 2022 22:37:11 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/trial_brand_pack.webp
185.92.151.141200 OK 13 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/trial_brand_pack.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 8a0bbfa81eab717d28e215e7d7289881
0ae8e7b4d726dd7c434805422417056f5d4ce80f
59524af9145cfdab571cb308fddd6623ee4d2a431f32ac000c57c56c0e0961e7
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/trial_brand_pack.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:11 GMT
Content-Type: image/webp
Content-Length: 12626
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:07 GMT
ETag: "6388b943-3152"
Expires: Fri, 02 Dec 2022 22:37:11 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/viagra-cialis-levitra_trial_pack.webp
185.92.151.141200 OK 9.5 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/viagra-cialis-levitra_trial_pack.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 5875160de9f47b29590e24f21e2bb01b
752ea7859de5e84ffe21ee5f9dee036ea538d71f
648a4425c1e61177b8e86c3b2067f0b87603e1614ddc414dcb070a359445356e
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/viagra-cialis-levitra_trial_pack.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:11 GMT
Content-Type: image/webp
Content-Length: 9522
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:07 GMT
ETag: "6388b943-2532"
Expires: Fri, 02 Dec 2022 22:37:11 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/cialis.webp
185.92.151.141200 OK 2.5 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/cialis.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash cb21084af1252e8aa2dbc5056d839836
9e6ba5ba6b4badb21c93348aa94bf134ea6a55a5
39aa33d01bbb94f56c0b7e1956fdaef38f80cf6863f5438ae2fee0a5e770ee53
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/cialis.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:12 GMT
Content-Type: image/webp
Content-Length: 2520
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:07 GMT
ETag: "6388b943-9d8"
Expires: Fri, 02 Dec 2022 22:37:12 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/img/categories/erectile_dysfunction_64.png
185.92.151.141200 OK 2.1 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/categories/erectile_dysfunction_64.png
IP 185.92.151.141:0
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash 26e7312c0d6dcd795c22683f8ebecd25
e086230f0209c1c9f6f0f0aa1495553dac1a2665
05b2b7ac41c5722eb3157b2ac8f76c82446852f5917d9c37f59deb3c8fd9ecd2
GET /themes/506/assets/img/categories/erectile_dysfunction_64.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:12 GMT
Content-Type: image/png
Content-Length: 2114
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: "6388b944-842"
Expires: Fri, 02 Dec 2022 15:13:33 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/506/assets/img/categories/antibiotics_64.png
185.92.151.141200 OK 1.7 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/categories/antibiotics_64.png
IP 185.92.151.141:0
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash 2bf79b456385231bb719f57da43bf261
e39601fe25c9da7313b35053ce85d1631c8f2e7d
4b31833fb3c4edeca83fa10884f3d6228d785f3527eaafac450468f75b1a2171
GET /themes/506/assets/img/categories/antibiotics_64.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:12 GMT
Content-Type: image/png
Content-Length: 1697
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 08:52:00 GMT
ETag: "6385c830-6a1"
Expires: Fri, 02 Dec 2022 12:54:59 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/506/assets/img/categories/anti-allergicasthma_64.png
185.92.151.141200 OK 2.0 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/categories/anti-allergicasthma_64.png
IP 185.92.151.141:0
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash 3c15bb8058ff009d6057a370ec48fe60
2874f8524b504cc3a3ff38c220a35590626c2d09
6745c4d76641e7669253003cc0060ba655b5073d92a288c4175e1a2f72e34e43
GET /themes/506/assets/img/categories/anti-allergicasthma_64.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:12 GMT
Content-Type: image/png
Content-Length: 1960
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 08:52:00 GMT
ETag: "6385c830-7a8"
Expires: Fri, 02 Dec 2022 12:54:59 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/506/assets/img/categories/pain_relief_64.png
185.92.151.141200 OK 2.1 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/categories/pain_relief_64.png
IP 185.92.151.141:0
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash 51b1310ed4e5f14b6c009b3ee6424f67
71af07560197cdbf6b10bfe10bd77c412d6717c7
2e9bbded6224bbb6846d098890bc2bdf3cff0b2c7c8115edecf13a5ce28d02eb
GET /themes/506/assets/img/categories/pain_relief_64.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:12 GMT
Content-Type: image/png
Content-Length: 2071
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: "6388b944-817"
Expires: Fri, 02 Dec 2022 15:13:33 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/img/products_webp/original/150x150/viagra.webp
185.92.151.141200 OK 2.9 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/viagra.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 36a93e2e3a91571f6a4dd26412cf57fa
c71124c4371a242c41d2229319e067dd20a89cd3
8bf22fe34f830d756b6226cc92bf06dc13bc0c3106c1e17161aeed5ebea26d06
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/viagra.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:12 GMT
Content-Type: image/webp
Content-Length: 2930
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:07 GMT
ETag: "6388b943-b72"
Expires: Fri, 02 Dec 2022 22:37:12 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/cialis_black.webp
185.92.151.141200 OK 2.4 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/cialis_black.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 086ef3bbc3b99d64e1ef17373b16147e
0c08a8ed5457db82b27ef729d2d8cd751095a907
3fc09f3f78d6b3ba8e6c1e0fdb0dfb40e12af0e8ba65060ee9daa057be460981
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/cialis_black.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:12 GMT
Content-Type: image/webp
Content-Length: 2370
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:07 GMT
ETag: "6388b943-942"
Expires: Fri, 02 Dec 2022 22:37:12 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/levitra_brand.webp
185.92.151.141200 OK 3.8 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/levitra_brand.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 7c36d95c093b3c76a1cfd4590960b084
d8c470448782006baef16f500b9b13ea5265dae0
3b1c79ab94a34cd7cd16d1a9fbe9638ac3730f0f9e0497cd8faf533887b0a9d0
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/levitra_brand.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:12 GMT
Content-Type: image/webp
Content-Length: 3800
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:07 GMT
ETag: "6388b943-ed8"
Expires: Fri, 02 Dec 2022 22:37:12 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/img/view-all-packs.png
185.92.151.141200 OK 69 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/view-all-packs.png
IP 185.92.151.141:0
File type PNG image data, 330 x 550, 8-bit/color RGBA, non-interlaced\012- data
Hash ffaa573166da6e32bbe3c5c78b8b6bcd
b4f0709e2d10ab3545d427cf4075014d00e1ac40
0bc83be4804c1dca69d725a863c1d5f87f77fde5e9effd817c5bca9957026167
GET /themes/506/assets/img/view-all-packs.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669904708
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:12 GMT
Content-Type: image/png
Content-Length: 69351
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: "6388b944-10ee7"
Expires: Fri, 02 Dec 2022 18:24:04 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/img/products_webp/original/150x150/tadalista_brand.webp
185.92.151.141200 OK 2.1 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/tadalista_brand.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash a331b9901b7c3a2760a54c5b11a775f2
ed8ae73f38a16ab7cfe248d0ecf3b3b3788a26f7
69113b9122bd87235b91a1e5dbda788a114c2d40d86cae6e9152d97dbb8c9285
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/tadalista_brand.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:12 GMT
Content-Type: image/webp
Content-Length: 2052
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:07 GMT
ETag: "6388b943-804"
Expires: Fri, 02 Dec 2022 22:37:12 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/priligy.webp
185.92.151.141200 OK 2.1 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/priligy.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash c89bd239db81c20894e345ef40c7d184
1e3dbb8c71ff163232870874a666dc47b6cb9f6b
b993ea301456cf720dd75c5ec8c3a654f57daa843a8d7d50b145689a9de2b926
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/priligy.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:13 GMT
Content-Type: image/webp
Content-Length: 2134
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:07 GMT
ETag: "6388b943-856"
Expires: Fri, 02 Dec 2022 22:37:13 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/super_discount_pack.webp
185.92.151.141200 OK 9.2 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/super_discount_pack.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash fd5229dac93ea9f0931523c09819013f
4530684d9cd23fcf53bc5057412d11fd554d0cbb
83a6ecbefb304e6924519fd4c310c0b5de81e3655a0658f8a0d39117342f817f
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/super_discount_pack.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:13 GMT
Content-Type: image/webp
Content-Length: 9176
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:07 GMT
ETag: "6388b943-23d8"
Expires: Fri, 02 Dec 2022 22:37:13 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/viagra-cialis_trial_pack.webp
185.92.151.141200 OK 8.1 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/viagra-cialis_trial_pack.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 24d66c7ce572d297caa8df64e1ae2cc2
6a1f48c5113af2cc87b8261d21e281a7d8aaf87e
1e939749e2665cd602246449dc7f49e67751eb4559b94528079997a72fbb97fe
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/viagra-cialis_trial_pack.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:13 GMT
Content-Type: image/webp
Content-Length: 8138
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:07 GMT
ETag: "6388b943-1fca"
Expires: Fri, 02 Dec 2022 22:37:13 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/active_discount_pack.webp
185.92.151.141200 OK 9.7 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/active_discount_pack.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 13de4413f0d79b6aeb410be1d21e88bb
f6e03bce55be28a224641fc74c8c8429df2d9e51
4d4aec070cb7034ce9f9c6ec31b2c0f65580ccb1267e0038a08ae8f9e7818810
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/active_discount_pack.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:13 GMT
Content-Type: image/webp
Content-Length: 9710
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:07 GMT
ETag: "6388b943-25ee"
Expires: Fri, 02 Dec 2022 22:37:13 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/celebrex.webp
185.92.151.141200 OK 3.1 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/celebrex.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 4bd2f7a901a05546f7f89143a34de6f6
a7fb823fdc83e1f836d543828df38da43458324a
49a93b400a8492bae496126a5e0ebb4126cdb11b5444744f3b800db7179bd754
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/celebrex.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:13 GMT
Content-Type: image/webp
Content-Length: 3106
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:07 GMT
ETag: "6388b943-c22"
Expires: Fri, 02 Dec 2022 22:37:13 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/vpxl.webp
185.92.151.141200 OK 2.4 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/vpxl.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 51a31fbc307c1a4e128be9e21fd53956
43c086161211e4ea9f1daccbca75317e7ed98d03
7d570b96116921aa677f2222e2c43c370b81c964740c7a992b831cfba5b8cc58
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/vpxl.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:14 GMT
Content-Type: image/webp
Content-Length: 2404
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:07 GMT
ETag: "6388b943-964"
Expires: Fri, 02 Dec 2022 22:37:14 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/img/three_cell_blue.png
185.92.151.141200 OK 177 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/three_cell_blue.png
IP 185.92.151.141:0
File type PNG image data, 1110 x 368, 8-bit colormap, non-interlaced\012- data
Size 177 kB (177389 bytes)
Hash 95ec183c4c08198699342897d19a68ad
c1a5f34c91242ab4e38e9138727b388c56ca1493
e9cefcd31844336144b9a1665c79a4deeb588a2fb24b563821fe13469692bfbf
GET /themes/506/assets/img/three_cell_blue.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/banners.min.css?v=1669904708
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:14 GMT
Content-Type: image/png
Content-Length: 177389
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: "6388b944-2b4ed"
Expires: Fri, 02 Dec 2022 19:16:29 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/506/assets/img/three_cell_green.png
185.92.151.141200 OK 82 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/three_cell_green.png
IP 185.92.151.141:0
File type PNG image data, 1110 x 368, 8-bit colormap, non-interlaced\012- data
Hash 632ea0486f1d0efc481b466976b48091
fc3e0cabf9824c93b9404b9f4e15167aa22dcee6
0d428b221df36ede8d64165d4094a14d300eb252829245f9597af153fbc74fee
GET /themes/506/assets/img/three_cell_green.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/banners.min.css?v=1669904708
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:14 GMT
Content-Type: image/png
Content-Length: 81942
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: "6388b944-14016"
Expires: Fri, 02 Dec 2022 20:22:45 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/506/assets/img/img-final-coupon.png
185.92.151.141200 OK 9.6 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/img-final-coupon.png
IP 185.92.151.141:0
File type PNG image data, 218 x 146, 8-bit/color RGBA, interlaced\012- data
Hash ddf34d85827fc3ed4efd1c8c95b4066a
f4a26bfbde8ff50b65b9d23e7b3e0588a34fb1c1
c554ad39982647b8bb90fa7aa32ead4ef5aa230d3cfac01d0e7eeef17f63c71d
GET /themes/506/assets/img/img-final-coupon.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669904708
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:14 GMT
Content-Type: image/png
Content-Length: 9606
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: "6388b944-2586"
Expires: Fri, 02 Dec 2022 20:43:33 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/img/products_webp/original/150x150/ventolin_inhaler.webp
185.92.151.141200 OK 2.9 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/ventolin_inhaler.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 53072088b14602f86c8e13b04943a221
4e5ca1da70a49959d861e0f8df01eda72c359ed1
6828b36747a37d0fecd05330021b7b43c37b19190b801c5c62ad4d8c25fe53b6
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/ventolin_inhaler.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:14 GMT
Content-Type: image/webp
Content-Length: 2878
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:07 GMT
ETag: "6388b943-b3e"
Expires: Fri, 02 Dec 2022 22:37:14 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/img/product_promo_image_bg_2.png
185.92.151.141200 OK 216 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/product_promo_image_bg_2.png
IP 185.92.151.141:0
File type PNG image data, 954 x 691, 8-bit colormap, non-interlaced\012- data
Size 216 kB (215637 bytes)
Hash 0eee632fe6a5caafcbcaae4e355284c4
3c6e57b345e72a71a2c246f9e78786f96f4cc03e
9500339c5d711f4148a6412fd46c325dd85ef0afbf043de59fc02d158d9065ec
GET /themes/506/assets/img/product_promo_image_bg_2.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:14 GMT
Content-Type: image/png
Content-Length: 215637
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 08:52:00 GMT
ETag: "6385c830-34a55"
Expires: Fri, 02 Dec 2022 12:54:58 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/506/assets/img/img-bottom-certificate-0.png
185.92.151.141200 OK 20 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/img-bottom-certificate-0.png
IP 185.92.151.141:0
File type PNG image data, 198 x 104, 8-bit/color RGBA, interlaced\012- data
Hash 9ccee1573c264cb8af43d8bb4cb22bef
11108e5ef50c53aa7ce16a10100f9641c4e789ea
0f67f0c4f9e8384786a1a873ed8f63856ea3c6ec7c876eee9f22c27135842edd
GET /themes/506/assets/img/img-bottom-certificate-0.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:14 GMT
Content-Type: image/png
Content-Length: 20014
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: "6388b944-4e2e"
Expires: Fri, 02 Dec 2022 15:37:31 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/506/assets/img/product_promo_image_bg_3.png
185.92.151.141200 OK 182 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/product_promo_image_bg_3.png
IP 185.92.151.141:0
File type PNG image data, 985 x 659, 8-bit colormap, non-interlaced\012- data
Size 182 kB (181588 bytes)
Hash cfd12c24f0951a02e528dcf5ba517ad0
33355c6cbe5bca210cac1094cc3f6b666248de50
34676aacc848140cac7d784e78c7fe4bbccadfb8dc3c6f380773e7860df31ce4
GET /themes/506/assets/img/product_promo_image_bg_3.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:14 GMT
Content-Type: image/png
Content-Length: 181588
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: "6388b944-2c554"
Expires: Fri, 02 Dec 2022 15:13:33 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/506/assets/img/img-bottom-certificate-1.png
185.92.151.141200 OK 14 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/img-bottom-certificate-1.png
IP 185.92.151.141:0
File type PNG image data, 182 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash e0e015edb01932bd92a090e6c1c69fb3
9c9fcc2026d11bf762f73c1478c59c9d9e0f80fc
0bcd60a0db33494184cef031e0938fec4224dbaa83febbfb8140689a6a7cbc6f
GET /themes/506/assets/img/img-bottom-certificate-1.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:14 GMT
Content-Type: image/png
Content-Length: 14510
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: "6388b944-38ae"
Expires: Fri, 02 Dec 2022 15:37:32 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/506/assets/img/all-in-one-pack.png
185.92.151.141200 OK 48 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/all-in-one-pack.png
IP 185.92.151.141:0
File type PNG image data, 536 x 228, 8-bit colormap, non-interlaced\012- data
Hash 8658cd0e8e4de31b2506ae0b7bb49517
b0387fcf92674da7ba1e6d6ae32f1db8899c2df8
d6439d0c5c3d7b9513cbe8fa017cc939a5f5ff036f32fbf9005de7caf72b3674
GET /themes/506/assets/img/all-in-one-pack.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:14 GMT
Content-Type: image/png
Content-Length: 48196
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: "6388b944-bc44"
Expires: Fri, 02 Dec 2022 15:13:33 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/506/assets/img/super-discount-pack.png
185.92.151.141200 OK 54 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/super-discount-pack.png
IP 185.92.151.141:0
File type PNG image data, 478 x 262, 8-bit colormap, non-interlaced\012- data
Hash 38823cccbb61c16e96d6b44975f653f8
8903b66d4dee8b4d46a9a796101d7141f276029c
b5e9d355309a52de5d6f4bb233fbd4ca1d9ed990c14e3e7112b70bb5195db206
GET /themes/506/assets/img/super-discount-pack.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:14 GMT
Content-Type: image/png
Content-Length: 53482
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 08:52:00 GMT
ETag: "6385c830-d0ea"
Expires: Fri, 02 Dec 2022 11:50:44 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/506/assets/img/img-certificate-0.png
185.92.151.141200 OK 21 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/img-certificate-0.png
IP 185.92.151.141:0
File type PNG image data, 132 x 86, 8-bit/color RGBA, non-interlaced\012- data
Hash 474102292ba0b45bfb8c29eceefcb44a
3b4b0f9b7dc7cbb200887e1419c1d2312347340c
3f7a9eff47a5be960a3509d9e93e5f782befa90cd0646ef860b63212f0ff5773
GET /themes/506/assets/img/img-certificate-0.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:14 GMT
Content-Type: image/png
Content-Length: 20800
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: "6388b944-5140"
Expires: Fri, 02 Dec 2022 15:37:30 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/506/assets/img/img-certificate-1.png
185.92.151.141200 OK 29 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/img-certificate-1.png
IP 185.92.151.141:0
File type PNG image data, 140 x 84, 8-bit/color RGBA, non-interlaced\012- data
Hash aa561d017a4d34adab56aa3aec2d6843
bdd0587570c72b786413f5980a6da19b61da3621
6cee04baf8bc48668c83b4e79589173596696acab871f2357c96ffc54b1a5942
GET /themes/506/assets/img/img-certificate-1.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:14 GMT
Content-Type: image/png
Content-Length: 28780
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: "6388b944-706c"
Expires: Fri, 02 Dec 2022 15:36:49 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/506/assets/img/img-certificate-3.png
185.92.151.141200 OK 14 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/img-certificate-3.png
IP 185.92.151.141:0
File type PNG image data, 90 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 3479939cdd82f554cf8dc0970f4157e1
e066a74d7af7778b3bdde909bb0fe3ee3e62152c
fb2635952190e7d0aacd0af4c09beefd74e2f6efa25461cc53bfccdcafdcb85f
GET /themes/506/assets/img/img-certificate-3.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:14 GMT
Content-Type: image/png
Content-Length: 14530
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: "6388b944-38c2"
Expires: Fri, 02 Dec 2022 20:08:40 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/img/products_webp/original/150x150/augmentin.webp
185.92.151.141200 OK 2.7 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/augmentin.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash fbf8d032752efa8fba8255a6f1f5fd80
466523c5d92aabfb8735f7b0c8e8c2f3ee953592
0498dce4bf09377e58d56340cebd8d707945f26eec6688fc20d64d6d840d84a6
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/augmentin.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:14 GMT
Content-Type: image/webp
Content-Length: 2666
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:07 GMT
ETag: "6388b943-a6a"
Expires: Fri, 02 Dec 2022 22:37:14 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/doxycycline.webp
185.92.151.141200 OK 2.5 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/doxycycline.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash b1f58f671b01d8f3e5dfd76be4126514
163d928e508ff679255ceb85d11b080e1698866f
3c47ada348e03c33d3d345fe53948866d0b47ffdf910f32628536f4df5abc6de
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/doxycycline.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:14 GMT
Content-Type: image/webp
Content-Length: 2482
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:07 GMT
ETag: "6388b943-9b2"
Expires: Fri, 02 Dec 2022 22:37:14 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/vyfat_brand.webp
185.92.151.141200 OK 2.3 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/vyfat_brand.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 178e08bebf898c19ae9dbe5c2f12f581
547a2b218fbaa7bec9756e949de11ccda6e081d4
24919956980aa3a0964dd7ede05844a922fa6fc091cc8d264b735d86496a2ba3
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/vyfat_brand.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:14 GMT
Content-Type: image/webp
Content-Length: 2322
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:07 GMT
ETag: "6388b943-912"
Expires: Fri, 02 Dec 2022 22:37:14 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/prednisone.webp
185.92.151.141200 OK 2.4 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/prednisone.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash a161de223889cf5dcdc8f8663202330c
c2e7147a972d09a9e11d27569a62e8208cacc096
46241c3c34c724fa72882bff98650494b216deae95178274eb73ef9c37d4e2c9
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/prednisone.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:15 GMT
Content-Type: image/webp
Content-Length: 2428
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:07 GMT
ETag: "6388b943-97c"
Expires: Fri, 02 Dec 2022 22:37:15 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/img/viagra_mobile.png
185.92.151.141200 OK 26 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/viagra_mobile.png
IP 185.92.151.141:0
File type PNG image data, 294 x 230, 8-bit colormap, non-interlaced\012- data
Hash ce456578123c15cdc243b1e7e4beb733
b4469b2181e63fd4020c711669d4b0f887d49c48
070d18547c2d5017e703d959f75dbf02b52ed5693522fe4776cdbeb836227d3b
GET /themes/506/assets/img/viagra_mobile.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:15 GMT
Content-Type: image/png
Content-Length: 25520
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 08:52:00 GMT
ETag: "6385c830-63b0"
Expires: Fri, 02 Dec 2022 12:54:58 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/506/assets/img/all-in-one-pack-mobile.png
185.92.151.141200 OK 82 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/all-in-one-pack-mobile.png
IP 185.92.151.141:0
File type PNG image data, 324 x 256, 8-bit/color RGBA, non-interlaced\012- data
Hash e8be3f3864c94fc62733c1bc4bcbe6c9
8c94e9e6ae2c6ac7c8ba091a640138555377a857
b2d2b1b6882c58ed5755fbae58d849d5443d72ce5097a85d5dc4247ed2880962
GET /themes/506/assets/img/all-in-one-pack-mobile.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:15 GMT
Content-Type: image/png
Content-Length: 82422
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: "6388b944-141f6"
Expires: Fri, 02 Dec 2022 15:13:33 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/506/assets/img/i-cross-modal.svg
185.92.151.141200 OK 402 B URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/i-cross-modal.svg
IP 185.92.151.141:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text
Hash 8586093e840b0f683bc9f142480d7419
0f503bc98849c3a52935b9f61de62b87cf5d38f9
80eafc3b9e02f55ed348016e66d3f4cbd8f40a567c8bc8ef3b22857afb2732ef
Analyzer Verdict Alert fortinet Phishing
GET /themes/506/assets/img/i-cross-modal.svg HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669904708
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:15 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: W/"6388b944-303"
Expires: Fri, 02 Dec 2022 14:25:47 GMT
Cache-Control: max-age=86400, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/img/i-plus.svg
185.92.151.141200 OK 420 B URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/i-plus.svg
IP 185.92.151.141:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text
Hash c672271d56a3654b7b0282b519314619
e1daed8d17eaecf1c90887f471eb830ffad4035c
bd3e27455efe3552cf20031b283214d8ea8ef44f5c11b9a2b487bec99a247ad7
Analyzer Verdict Alert fortinet Phishing
GET /themes/506/assets/img/i-plus.svg HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669904708
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:15 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 08:52:00 GMT
ETag: W/"6385c830-369"
Expires: Fri, 02 Dec 2022 12:55:09 GMT
Cache-Control: max-age=86400, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/img/i-minus.svg
185.92.151.141200 OK 311 B URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/i-minus.svg
IP 185.92.151.141:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text
Hash 79a798089a0dded6d3f22a031e224e08
66336bea97828bbd59aff2c5eb63566bfa9880f1
fd75624647240c731b05682e2df727177b97017b1d21779c315cfb319af0124f
Analyzer Verdict Alert fortinet Phishing
GET /themes/506/assets/img/i-minus.svg HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669904708
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:15 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: W/"6388b944-1e6"
Expires: Fri, 02 Dec 2022 15:36:54 GMT
Cache-Control: max-age=86400, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/img/i-remove-hover.svg
185.92.151.141200 OK 477 B URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/i-remove-hover.svg
IP 185.92.151.141:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (418)
Hash a9e983cbf5e94d4acda5395b90eb7562
c327a1f202a679dcec75377ff8a0cc8cc4528f17
c0ec374136281f2dbbc5b4110708006bfaf311080401dfcf7b4cde3b64ed9257
Analyzer Verdict Alert fortinet Phishing
GET /themes/506/assets/img/i-remove-hover.svg HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669904708
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:15 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: W/"6388b944-48e"
Expires: Fri, 02 Dec 2022 17:12:11 GMT
Cache-Control: max-age=86400, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/img/i-unapply-coupon-hover.svg
185.92.151.141200 OK 338 B URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/i-unapply-coupon-hover.svg
IP 185.92.151.141:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text
Hash 62ba366ae1d4294482bc19b17caaa271
d99c8f7584b854f784ede42b2c71fc764ed5468e
e887f91fe8a08a54fa341696cc59309d462b612d2f79f84327e040fe25ce92c7
Analyzer Verdict Alert fortinet Phishing
GET /themes/506/assets/img/i-unapply-coupon-hover.svg HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669904708
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:16 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:08 GMT
ETag: W/"6388b944-25e"
Expires: Fri, 02 Dec 2022 14:25:48 GMT
Cache-Control: max-age=86400, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/viagra_super_force.webp
185.92.151.141200 OK 3.1 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/viagra_super_force.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash a2256297f7623fba73e2f4ddffa6ae89
e492bf7cbd147a0a7504d067e4bba879642d75f3
15cd4ea19eff0f54774d84a1361d0857162be2b42b9ea44cddbf3c5fcd4170cf
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/viagra_super_force.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:16 GMT
Content-Type: image/webp
Content-Length: 3096
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:07 GMT
ETag: "6388b943-c18"
Expires: Fri, 02 Dec 2022 22:37:16 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/cialis_pack.webp
185.92.151.141200 OK 9.5 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/cialis_pack.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 2d8a9c633ef34b70f187165742b498e3
8fe2c346c62401d2c43cbeb56c209b85e9d4417b
dadf8d5f8f576513662708f865639535dfe6a273cbdd112d63664f662eae8c60
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/cialis_pack.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:16 GMT
Content-Type: image/webp
Content-Length: 9464
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:07 GMT
ETag: "6388b943-24f8"
Expires: Fri, 02 Dec 2022 22:37:16 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/viagra_brand.webp
185.92.151.141200 OK 3.1 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/viagra_brand.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 16d21989cf0aa70202d5f07a49649a4d
4b6dcccb17350337d983bbb38fe58aff9f40f06a
14bcb63ffed0b604fd2c5a35076919bad88ff41a704cc66b506cd5111fce94ad
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/viagra_brand.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:16 GMT
Content-Type: image/webp
Content-Length: 3134
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:07 GMT
ETag: "6388b943-c3e"
Expires: Fri, 02 Dec 2022 22:37:16 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a5598e9-4752-4e3f-9938-977b517ce347.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a5598e9-4752-4e3f-9938-977b517ce347.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e1372b65928f2addd9d8e44ce63ea0c
795fd611123ebde700aaff1f0dac862f9cad00dc
de9011e1f05fb2f7a202f5a6e6ed7b77a339c0af8d3409e4fc898f2b8c6963ad
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a5598e9-4752-4e3f-9938-977b517ce347.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 5967
x-amzn-requestid: 889cb78c-7f00-4bd5-8f58-16aeae59f384
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGgfFo2IAMF7ig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e02-636955ff357675180ee298ff;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7R1Dono_VzhL0RPOfUBX2GC13dxG0n0buPmhAPencEFJ7WupYOUK8w==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:50:08 GMT
age: 2828
etag: "795fd611123ebde700aaff1f0dac862f9cad00dc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
progreatdiscount.com/img/products_webp/original/150x150/viagra_pack.webp
185.92.151.141200 OK 8.4 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/viagra_pack.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 55840fe3b0c9849004a7a3fd9d8648d2
9485337594d413b3030d13ee72a461986ce58008
ff0c53e9c3bc02142c74a5e2b4256673174a56926b3d06764a45d7704953f4a6
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/viagra_pack.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:16 GMT
Content-Type: image/webp
Content-Length: 8350
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:07 GMT
ETag: "6388b943-209e"
Expires: Fri, 02 Dec 2022 22:37:16 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/strattera.webp
185.92.151.141200 OK 3.0 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/strattera.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 86f806ca336f68bd06ace724439e5ea5
b90f6c58301685a13b03659122e94bf60d94fd9a
e3f870b45f91ead00cd7f9a0b2b0997b20386a6df73b7da69eaf8640ad3d1e18
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/strattera.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:17 GMT
Content-Type: image/webp
Content-Length: 3024
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:07 GMT
ETag: "6388b943-bd0"
Expires: Fri, 02 Dec 2022 22:37:17 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/neurontin.webp
185.92.151.141200 OK 4.0 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/neurontin.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash e2082c5e3bdeebbabf3fd064725985df
8b29fe753994bdcd2edaeee72494bc5dea9cc9c2
dc0b4b7ef12a0447d2dde4d9e1bb6ffc67932f11965a085fde5f1a3f4142da45
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/neurontin.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:17 GMT
Content-Type: image/webp
Content-Length: 3952
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:07 GMT
ETag: "6388b943-f70"
Expires: Fri, 02 Dec 2022 22:37:17 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/azithromycin_dt.webp
185.92.151.141200 OK 2.2 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/azithromycin_dt.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash eaa9e31ffcf12232378cc1b82fac06e2
e50d04b95410b9fd02b59db77f3975873e2783a6
25eae2da8106cb55fc40ef85c2b99a4fcb27b79186b5aafa9ea03ee659a2fdc8
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/azithromycin_dt.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:17 GMT
Content-Type: image/webp
Content-Length: 2150
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:07 GMT
ETag: "6388b943-866"
Expires: Fri, 02 Dec 2022 22:37:17 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/propecia.webp
185.92.151.141200 OK 2.4 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/propecia.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 25be743cd5eb50d10bda146d56723725
f6c9ebbba107e6f29175656e3648034ae7a08284
97d0b4f436a381ad025922f60a943db1238f3b7058b5016d601675362369a9e9
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/propecia.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=l3apgah0
Cookie: CGISID=qkg629ql9b9ug91cshuihbt0trtc07t7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 22:37:17 GMT
Content-Type: image/webp
Content-Length: 2420
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 14:25:07 GMT
ETag: "6388b943-974"
Expires: Fri, 02 Dec 2022 22:37:17 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests