deadline.frameover.com/wp-content/plugins/advanced-custom-fields/core/fields/date_picker/default.html
164.138.210.46200 OK 106 B URL HTTP/1.1 deadline.frameover.com/wp-content/plugins/advanced-custom-fields/core/fields/date_picker/default.html
IP 164.138.210.46:0
ASN #198968 Cyberneticos Hosting SL
File type HTML document, ASCII text, with no line terminators
Hash 39b929bb711c8d223405574e3bf2385e
59cd50442eaf331a75c81a349646798c76d517c8
85108ba3e9a8871ed941550802d5606529db1da28f79a19bca77a83cf5d34ccb
GET /wp-content/plugins/advanced-custom-fields/core/fields/date_picker/default.html HTTP/1.1
Host: deadline.frameover.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 21:19:00 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sat, 19 Nov 2022 20:13:55 GMT
ETag: "61-5edd8762e06c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 106
Keep-Alive: timeout=2, max=100
Content-Type: text/html
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7c60904d097cde276e4e5632cef1b9f1
4f805026462589345d85e8df2d18eafba6237504
12af026999398f4976749e320667d43da3f99b7a2e8254aca7a410a964a106aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10160
Expires: Fri, 25 Nov 2022 00:08:20 GMT
Date: Thu, 24 Nov 2022 21:19:00 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash af40a2fcf8debb90c3608002da6c907a
3c75d6c0b557a3bd8d5db50155b8d896e852c145
555617a51ee3077552545a29a3baf0b43e8a82367e4c08110ee480ebedc8b523
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5758
Cache-Control: max-age=139689
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 21:19:00 GMT
Etag: "637f47ef-1d7"
Expires: Sat, 26 Nov 2022 12:07:09 GMT
Last-Modified: Thu, 24 Nov 2022 10:31:11 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8c63b226725ca6e92e3ef586ac19e603
d21ae42a1927501e5293ff3564f52b49f6b0decc
141ac47acc3800e5d35a82012fa4b044277abad3a95dc24415f66fb72c972ae6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "141AC47ACC3800E5D35A82012FA4B044277ABAD3A95DC24415F66FB72C972AE6"
Last-Modified: Wed, 23 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7722
Expires: Thu, 24 Nov 2022 23:27:42 GMT
Date: Thu, 24 Nov 2022 21:19:00 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 21:19:00 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 0
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: nwxucuF2G3uucYn4oZj5OCNBYt1IeFOi/ZE/WgQezWvpxLQHsjVllkVp5fp3KDtu5LrIpgP3YjU=
x-amz-request-id: H9BBTWJRMTMRBX83
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 24 Nov 2022 20:40:32 GMT
age: 2308
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 21:19:00 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 475bcb33b9f4b32c42e11375020c4e8a
5e3e76da74492c8194b8dbd793109a9c91a25179
1a009312f2a42c2030ed72f5f917a3b1e35495a91ed984110ced59960035b474
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1A009312F2A42C2030ED72F5F917A3B1E35495A91ED984110CED59960035B474"
Last-Modified: Thu, 24 Nov 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21587
Expires: Fri, 25 Nov 2022 03:18:47 GMT
Date: Thu, 24 Nov 2022 21:19:00 GMT
Connection: keep-alive
progreatdiscount.com/?cp=zvnr2gh1
185.92.151.141200 OK 29 kB URL HTTP/1.1 progreatdiscount.com/?cp=zvnr2gh1
IP 185.92.151.141:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (4069)
Hash 13b788639fde0e4ace688cc5b7f5344c
ee3e5d776b4d443ba0271ae60fdd3931cdaaaf6e
ef906e2312b35bd1c428cc627d78390e4be990a75e40ab8bdee8232e6ada2bf2
Analyzer Verdict Alert fortinet Phishing
GET /?cp=zvnr2gh1 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://deadline.frameover.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt; expires=Fri, 25-Nov-2022 21:19:01 GMT; Max-Age=86400; path=/
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/css/fonts.min.css?v=1669114486
185.92.151.141200 OK 500 B URL HTTP/1.1 progreatdiscount.com/themes/506/assets/css/fonts.min.css?v=1669114486
IP 185.92.151.141:0
File type ASCII text, with very long lines (4208), with no line terminators
Hash 8f78b43a7e06a43145eb7c7c10196786
bfd1a2ab2f535db0cad01a6be7880645683a1997
6b36879c314f8190958a4fe1df41100cc67fb8fc568ea0cd38ce12adba45daae
GET /themes/506/assets/css/fonts.min.css?v=1669114486 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-1070"
Expires: Fri, 24 Nov 2023 11:26:42 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669114486
185.92.151.141200 OK 66 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669114486
IP 185.92.151.141:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 89b9812ebd9bb8ab2c86d439bcae618f
9b92a099c99b2245a7fbec4b86e244a2129c361c
f8130bd840209cdc469c0d4c1ef459f09e945c853a94327dc254011d5d8c12e8
Analyzer Verdict Alert fortinet Phishing
GET /themes/506/assets/css/common.min.css?v=1669114486 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-56f2b"
Expires: Fri, 24 Nov 2023 11:26:42 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 21:11:11 GMT
cache-control: public,max-age=3600
age: 470
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
progreatdiscount.com/themes/506/assets/css/base.min.css?v=1669114486
185.92.151.141200 OK 9.9 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/css/base.min.css?v=1669114486
IP 185.92.151.141:0
File type ASCII text, with very long lines (47142), with no line terminators
Hash 943ac314214af7fbbb27f1cd9973c664
c96fd0df41d80425b0c8dca42f6af9707fb8eb85
4bc7d6dab6c81204c48450f1e702e50fd16a6ea281aaab2afb4d5751c1058706
Analyzer Verdict Alert fortinet Phishing
GET /themes/506/assets/css/base.min.css?v=1669114486 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-b826"
Expires: Fri, 24 Nov 2023 11:26:42 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/css/banners.min.css?v=1669114486
185.92.151.141200 OK 14 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/css/banners.min.css?v=1669114486
IP 185.92.151.141:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash ca33e9c351403d0883e61c47006243ea
c96d43683c47182fd92e1b2bf39aa316ae74ac73
cca9b82158bfa987153250e2ed870813f4b680943fcf0660260a31033b88b6e4
Analyzer Verdict Alert fortinet Phishing
GET /themes/506/assets/css/banners.min.css?v=1669114486 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-140b0"
Expires: Fri, 24 Nov 2023 11:26:42 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/common/js/jquery-3.3.1.min.js?v=1669114486
185.92.151.141200 OK 35 kB URL HTTP/1.1 progreatdiscount.com/themes/common/js/jquery-3.3.1.min.js?v=1669114486
IP 185.92.151.141:0
File type ASCII text, with very long lines (65451)
Hash 83a94c0e4dce1975b10bee48bf41267b
8ae39295f64d891e367e49a0ff54e80067085bc9
ee39efe9eba01b524accd2ac9af7a458fecce60e1479df06b22dd4be6f6f5d28
Analyzer Verdict Alert fortinet Phishing
GET /themes/common/js/jquery-3.3.1.min.js?v=1669114486 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-1538f"
Expires: Fri, 24 Nov 2023 11:22:09 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/common/js/common.min.js?v=1669114486
185.92.151.141200 OK 2.1 kB URL HTTP/1.1 progreatdiscount.com/themes/common/js/common.min.js?v=1669114486
IP 185.92.151.141:0
File type ASCII text, with very long lines (4816), with no line terminators
Hash b01af2e2435fbee121d7fa34e7b72b95
a5c65769843cbba8912afd4904edfce651626680
278d812e7d1c4846f8673083989f4ce779c49557b0e94068883e36020d3e297b
Analyzer Verdict Alert fortinet Phishing
GET /themes/common/js/common.min.js?v=1669114486 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-12d0"
Expires: Fri, 24 Nov 2023 11:22:09 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/js/quick-search.min.js?v=1669114486
185.92.151.141200 OK 2.0 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/js/quick-search.min.js?v=1669114486
IP 185.92.151.141:0
File type Unicode text, UTF-8 text, with very long lines (5062), with no line terminators
Hash da8edd4421402a835cd54868831181da
3987d36ea9e9e98effc20b1753196e7c94d48279
0ebd260096cc1f9954211a414be2e804e3d190861c0928a3194729d7971d3fb8
Analyzer Verdict Alert fortinet Phishing
GET /themes/506/assets/js/quick-search.min.js?v=1669114486 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-13ca"
Expires: Fri, 24 Nov 2023 11:26:42 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/js/main.min.js?v=1669114486
185.92.151.141200 OK 1.5 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/js/main.min.js?v=1669114486
IP 185.92.151.141:0
File type ASCII text, with very long lines (3536), with no line terminators
Hash 1d435de9fab2e77db80f2eedb7f6f397
d2e25195a1c7aaeb5cb7467f3204a860664d256c
285830134fd9fdf90fcc5c3def40590126639095167f17d821bf2339f9c9680e
GET /themes/506/assets/js/main.min.js?v=1669114486 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-dd0"
Expires: Fri, 24 Nov 2023 11:26:42 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/js/coupon.min.js?v=1669114486
185.92.151.141200 OK 1.2 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/js/coupon.min.js?v=1669114486
IP 185.92.151.141:0
File type ASCII text, with very long lines (3763), with no line terminators
Hash 6969232db7c94fa1c9a3d230bd19582f
3b6d21dc2c59368f8e20bf7bfa0579deba5d6957
b61be2a2e62324eb363e18eb80319d18b5db6963cca14048112fa8b6abc520b4
Analyzer Verdict Alert fortinet Phishing
GET /themes/506/assets/js/coupon.min.js?v=1669114486 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-eb3"
Expires: Fri, 24 Nov 2023 11:26:42 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/common/js/cookie-alert.min.js?v=1669114486
185.92.151.141200 OK 177 B URL HTTP/1.1 progreatdiscount.com/themes/common/js/cookie-alert.min.js?v=1669114486
IP 185.92.151.141:0
File type ASCII text, with no line terminators
Hash 34970616827edeb46b61eed18cdd8225
987b02759eeb49017e5f7e19ef5609cdbd33a79d
ab647afd5967781c6d0dd0aa75974944e4f8d8f25f6048077342cf07f3317cfc
Analyzer Verdict Alert fortinet Phishing
GET /themes/common/js/cookie-alert.min.js?v=1669114486 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-f5"
Expires: Fri, 24 Nov 2023 11:22:09 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/js/scripts.min.js?v=1669114486
185.92.151.141200 OK 14 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/js/scripts.min.js?v=1669114486
IP 185.92.151.141:0
File type Unicode text, UTF-8 text, with very long lines (31981)
Hash bb5c555ed54ab753dc283e6acbbe31b2
14117417ac9bcaa924515b93c802a431da72d62b
dac7596310100901afa34e8439db523aaf9c406b3b711554ed9add4492a8fa8b
GET /themes/506/assets/js/scripts.min.js?v=1669114486 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-d038"
Expires: Fri, 24 Nov 2023 11:26:42 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/common/js/autofill-event.min.js?v=1669114486
185.92.151.141200 OK 2.4 kB URL HTTP/1.1 progreatdiscount.com/themes/common/js/autofill-event.min.js?v=1669114486
IP 185.92.151.141:0
File type ASCII text, with very long lines (5249), with no line terminators
Hash 52659bcbb35f081d709a2918c6b86f5b
b36f4257785db120bd8fdd10c6523051308de6fe
d02a26b0329d791a1798bed357e4ee9bfd748b62be244cd7fdc96f15ec67b23b
GET /themes/common/js/autofill-event.min.js?v=1669114486 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-1481"
Expires: Fri, 24 Nov 2023 11:22:09 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/common/js/events.min.js?v=1669114486
185.92.151.141200 OK 2.2 kB URL HTTP/1.1 progreatdiscount.com/themes/common/js/events.min.js?v=1669114486
IP 185.92.151.141:0
File type ASCII text, with very long lines (9530), with no line terminators
Hash 5d6fa7168636ac4dbba18160d227a1cd
4562357a94aae9cc0a284e7a42a12171746b24d9
49597e8a6a00853c74a5c4604fa1366fa25809bd1d524ad534e1c511a18efa05
Analyzer Verdict Alert fortinet Phishing
GET /themes/common/js/events.min.js?v=1669114486 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-253a"
Expires: Fri, 24 Nov 2023 11:22:09 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/common/js/common-shop.min.js?v=1669114486
185.92.151.141200 OK 444 B URL HTTP/1.1 progreatdiscount.com/themes/common/js/common-shop.min.js?v=1669114486
IP 185.92.151.141:0
File type ASCII text, with very long lines (811), with no line terminators
Hash e7b9b405c741b96dc0c766ad9ac95d86
58dfb56333c2408457a30928aa6f7c2759c7abad
5779c4dbfb66d1ac0b74734de49d76be87828582210675f874f36be4e837bc34
GET /themes/common/js/common-shop.min.js?v=1669114486 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-32b"
Expires: Fri, 24 Nov 2023 11:26:43 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dd0dd96ca622aa07354fabdd0da767bf
a29eaa02a81dabed2c12be20a89d65a5a0417524
6a670e9031ec8c94bdc91c47a2d6a4ca2bd95fe032fec28888a8e6d7dc163cb4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 21:19:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
progreatdiscount.com/themes/common/js/slick.min.js?v=1669114486
185.92.151.141200 OK 12 kB URL HTTP/1.1 progreatdiscount.com/themes/common/js/slick.min.js?v=1669114486
IP 185.92.151.141:0
File type ASCII text, with very long lines (32012)
Hash 0c1277c917da098787521edee85e2eda
cdd3101a133679bd1506ba88c3ebebb4c80d8534
8895378666f702351636346d5c5c4a18bba76cd2c94f63ba70e088abe6bcd02f
GET /themes/common/js/slick.min.js?v=1669114486 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-9c88"
Expires: Fri, 24 Nov 2023 11:22:09 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/js/slider.min.js?v=1669114486
185.92.151.141200 OK 492 B URL HTTP/1.1 progreatdiscount.com/themes/506/assets/js/slider.min.js?v=1669114486
IP 185.92.151.141:0
File type ASCII text, with very long lines (1137), with no line terminators
Hash 6066a1e897ef651f969ddd03e5a32326
cb0250a39200b33cc408175ab330bd09e242c4e0
8cd5f903e899067c2ca72223be58d6e34c414e224cf7f3e7ba0de173659f8f74
Analyzer Verdict Alert fortinet Phishing
GET /themes/506/assets/js/slider.min.js?v=1669114486 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-471"
Expires: Fri, 24 Nov 2023 11:26:43 GMT
Cache-Control: max-age=31536000, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/img/categories/pain_relief_64.png
185.92.151.141200 OK 2.1 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/categories/pain_relief_64.png
IP 185.92.151.141:0
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash 51b1310ed4e5f14b6c009b3ee6424f67
71af07560197cdbf6b10bfe10bd77c412d6717c7
2e9bbded6224bbb6846d098890bc2bdf3cff0b2c7c8115edecf13a5ce28d02eb
GET /themes/506/assets/img/categories/pain_relief_64.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: image/png
Content-Length: 2071
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-817"
Expires: Fri, 25 Nov 2022 10:47:50 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/img/products_webp/original/150x150/trial_brand_pack.webp
185.92.151.141200 OK 13 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/trial_brand_pack.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 8a0bbfa81eab717d28e215e7d7289881
0ae8e7b4d726dd7c434805422417056f5d4ce80f
59524af9145cfdab571cb308fddd6623ee4d2a431f32ac000c57c56c0e0961e7
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/trial_brand_pack.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: image/webp
Content-Length: 12626
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-3152"
Expires: Fri, 25 Nov 2022 21:19:01 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
www.googletagmanager.com/gtag/js?id=UA-68773835-15
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-68773835-15
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 28700d5e66ed8c8505716f5f314815c8
8edd16c9bec7b514e7971f1b344e316e93594bcb
08dc66134bdfe2f61c7c3439ad1930be4b15a53c3ecda34258d9240122fe6ee5
GET /gtag/js?id=UA-68773835-15 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 24 Nov 2022 21:19:01 GMT
expires: Thu, 24 Nov 2022 21:19:01 GMT
cache-control: private, max-age=900
last-modified: Thu, 24 Nov 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43682
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fb6949e7abaa473393f7c604691de14f
599681bba3947709baa603bbae2dd7afd04059a4
36c5165526ea9d34de14d36655ed494d0cffaa11ca3271ee47824ac11246ba13
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6542
Cache-Control: max-age=135410
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 21:19:01 GMT
Etag: "637f3429-1d7"
Expires: Sat, 26 Nov 2022 10:55:51 GMT
Last-Modified: Thu, 24 Nov 2022 09:06:49 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
progreatdiscount.com/themes/common/fonts/raleway-medium.woff2
185.92.151.141200 OK 23 kB URL HTTP/1.1 progreatdiscount.com/themes/common/fonts/raleway-medium.woff2
IP 185.92.151.141:0
File type Web Open Font Format (Version 2), TrueType, length 22736, version 2.66\012- data
Hash 9ff42184ec6b88ada2d15793036bac37
d60a55de33b84c6ac45e7ca2ba18155578869942
640636bdf0d9cf1824b80cda175987d2a773cf57cb3e1e2100ca5398783ec162
Analyzer Verdict Alert fortinet Phishing
GET /themes/common/fonts/raleway-medium.woff2 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/fonts.min.css?v=1669114486
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: application/octet-stream
Content-Length: 22736
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-58d0"
Expires: Fri, 25 Nov 2022 19:22:20 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/506/assets/img/product_promo_image_bg_1.png
185.92.151.141200 OK 223 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/product_promo_image_bg_1.png
IP 185.92.151.141:0
File type PNG image data, 780 x 690, 8-bit colormap, non-interlaced\012- data
Size 223 kB (223359 bytes)
Hash ebe1997fca8115ce4bea815f1cd5e3f4
12e76648e2f71d74b69c9a4c976ad89c3cfbc4a8
e32199b7e09a5bcf2410dc90014591a488b4be8afd5387c6ed4e5c6acbb4458a
GET /themes/506/assets/img/product_promo_image_bg_1.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: image/png
Content-Length: 223359
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-3687f"
Expires: Fri, 25 Nov 2022 10:47:48 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/common/fonts/raleway-bold.woff2
185.92.151.141200 OK 23 kB URL HTTP/1.1 progreatdiscount.com/themes/common/fonts/raleway-bold.woff2
IP 185.92.151.141:0
File type Web Open Font Format (Version 2), TrueType, length 22844, version 2.66\012- data
Hash b05633bc2a7ee76e2158a6d930c5b1bf
492066f3ecfdaaf7f8dd9603dc19a8b623384ee3
e3396f0c933a7b35384b7090a4a9a39ac11826234f1c023e13591f52a9d7562b
Analyzer Verdict Alert fortinet Phishing
GET /themes/common/fonts/raleway-bold.woff2 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/fonts.min.css?v=1669114486
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: application/octet-stream
Content-Length: 22844
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-593c"
Expires: Fri, 25 Nov 2022 19:13:41 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/common/fonts/raleway-heavy.woff2
185.92.151.141200 OK 23 kB URL HTTP/1.1 progreatdiscount.com/themes/common/fonts/raleway-heavy.woff2
IP 185.92.151.141:0
File type Web Open Font Format (Version 2), TrueType, length 22652, version 2.66\012- data
Hash 3dc82360708127724e5a8da27abb4cdc
11372456ae598bbc5e78bcd1c4cf04b5a096f568
b540009ba63d7be0f3231a43f1933cb6b772fb03b1800b98cb2c7e42fee18f12
Analyzer Verdict Alert fortinet Phishing
GET /themes/common/fonts/raleway-heavy.woff2 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/fonts.min.css?v=1669114486
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: application/octet-stream
Content-Length: 22652
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-587c"
Expires: Fri, 25 Nov 2022 19:13:41 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/img/products_webp/original/150x150/super_discount_pack.webp
185.92.151.141200 OK 9.2 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/super_discount_pack.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash fd5229dac93ea9f0931523c09819013f
4530684d9cd23fcf53bc5057412d11fd554d0cbb
83a6ecbefb304e6924519fd4c310c0b5de81e3655a0658f8a0d39117342f817f
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/super_discount_pack.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: image/webp
Content-Length: 9176
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-23d8"
Expires: Fri, 25 Nov 2022 21:19:01 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/common/fonts/roboto-medium.woff2
185.92.151.141200 OK 65 kB URL HTTP/1.1 progreatdiscount.com/themes/common/fonts/roboto-medium.woff2
IP 185.92.151.141:0
File type Web Open Font Format (Version 2), TrueType, length 65264, version 1.0\012- data
Hash c0657dcd5959441f8f23dbba445edba1
70b727d89d496d3f5b687ab8bb5b05f56a70e8a6
64b4e73268acd7bfcbf4a3d6431e5f137a4c4deab6340b04e9d23e5324a2250b
Analyzer Verdict Alert fortinet Phishing
GET /themes/common/fonts/roboto-medium.woff2 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/fonts.min.css?v=1669114486
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: application/octet-stream
Content-Length: 65264
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-fef0"
Expires: Fri, 25 Nov 2022 18:52:19 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/common/fonts/roboto-bold.woff2
185.92.151.141200 OK 64 kB URL HTTP/1.1 progreatdiscount.com/themes/common/fonts/roboto-bold.woff2
IP 185.92.151.141:0
File type Web Open Font Format (Version 2), TrueType, length 64532, version 1.0\012- data
Hash 1b156057831714265eea89e49591f630
e716ba4bb233c19e35734a150bb320bea400c91f
1ba1d158b3dfd5936e9793954401c547a2a96ec7fd25c2c80ce2f22b7cb90545
Analyzer Verdict Alert fortinet Phishing
GET /themes/common/fonts/roboto-bold.woff2 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/fonts.min.css?v=1669114486
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: application/octet-stream
Content-Length: 64532
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-fc14"
Expires: Fri, 25 Nov 2022 18:52:19 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/common/fonts/roboto-black.woff2
185.92.151.141200 OK 66 kB URL HTTP/1.1 progreatdiscount.com/themes/common/fonts/roboto-black.woff2
IP 185.92.151.141:0
File type Web Open Font Format (Version 2), TrueType, length 66148, version 1.0\012- data
Hash 72f6fd218b59c42e804cb543cfc53598
2c4388751874f5aa482c964d7d07fbebe2fcc3b9
026d836bb00b979293032a9221da04e71faf87f79f48b6bb92e3f9935f5315bc
Analyzer Verdict Alert fortinet Phishing
GET /themes/common/fonts/roboto-black.woff2 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/fonts.min.css?v=1669114486
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: application/octet-stream
Content-Length: 66148
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-10264"
Expires: Fri, 25 Nov 2022 09:22:42 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/common/fonts/roboto-regular.woff2
185.92.151.141200 OK 65 kB URL HTTP/1.1 progreatdiscount.com/themes/common/fonts/roboto-regular.woff2
IP 185.92.151.141:0
File type Web Open Font Format (Version 2), TrueType, length 64692, version 1.0\012- data
Hash 8fa8a82f0969cd7d7027c1171ca08061
bf4da7aa5737d5567f826fb83e000db8d171ab16
4b9f4b6894c43b1ad68c54790e1b7d0f3aa0947b3fff960452ea6d8e172b4683
Analyzer Verdict Alert fortinet Phishing
GET /themes/common/fonts/roboto-regular.woff2 HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/fonts.min.css?v=1669114486
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: application/octet-stream
Content-Length: 64692
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-fcb4"
Expires: Fri, 25 Nov 2022 18:52:19 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/img/ukr-shield.png
185.92.151.141200 OK 6.2 kB URL HTTP/1.1 progreatdiscount.com/img/ukr-shield.png
IP 185.92.151.141:0
File type PNG image data, 110 x 124, 8-bit colormap, non-interlaced\012- data
Hash 2259dca5b854059bdfda110e26de43a0
cb005da1b0912fb653251525af2d0ff40f99c95e
6cbb7f10299045c047904e4b284ca28351c5ded956480d40ed0bedbf490f08ef
GET /img/ukr-shield.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669114486
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: image/png
Content-Length: 6183
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:59:14 GMT
ETag: "637cab82-1827"
Expires: Fri, 25 Nov 2022 11:46:40 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/img/cross_base.png
185.92.151.141200 OK 707 B URL HTTP/1.1 progreatdiscount.com/img/cross_base.png
IP 185.92.151.141:0
File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Hash acde11b5b53aa6f6c73b6608f6f6d699
913d77808b83fecc290a9459d2a0dbcc9526cee2
ea99e4f4ac42eb970990371fd73731a6393863ad0ed7b7950cda74467c59fa83
GET /img/cross_base.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669114486
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: image/png
Content-Length: 707
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:59:14 GMT
ETag: "637cab82-2c3"
Expires: Fri, 25 Nov 2022 15:49:22 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
push.services.mozilla.com/
35.164.183.116101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.164.183.116:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3SOTLqzBzD78wbvtwyzR6g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: iHmhYjd9eVNHOoB/vi7WVy1aHi8=
progreatdiscount.com/themes/506/assets/img/sprite-shop-1659020065970.png
185.92.151.141200 OK 39 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/sprite-shop-1659020065970.png
IP 185.92.151.141:0
File type PNG image data, 195 x 4379, 8-bit colormap, non-interlaced\012- data
Hash bc120fa95c13c507a713acce99e5839e
032b15f674d47113388cc3e8d031f75735daa71e
c7c801fda929bd3612ccd78fb3f6731263a304e181da81d80370f09adf9835ba
GET /themes/506/assets/img/sprite-shop-1659020065970.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669114486
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: image/png
Content-Length: 39121
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-98d1"
Expires: Fri, 25 Nov 2022 16:36:33 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dd0dd96ca622aa07354fabdd0da767bf
a29eaa02a81dabed2c12be20a89d65a5a0417524
6a670e9031ec8c94bdc91c47a2d6a4ca2bd95fe032fec28888a8e6d7dc163cb4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 21:19:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
progreatdiscount.com/themes/506/assets/img/flashsale-pattern.png
185.92.151.141200 OK 5.2 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/flashsale-pattern.png
IP 185.92.151.141:0
File type PNG image data, 281 x 281, 8-bit colormap, non-interlaced\012- data
Hash c8556d1070178bbc80055efacdc8ecc6
01c653ff00263d46c583b389b7330b86c1f4bc1b
2995ace23798da51fa48f8d60b07f4597186acbcf69ec799b450a0ab0b6d3735
GET /themes/506/assets/img/flashsale-pattern.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/banners.min.css?v=1669114486
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: image/png
Content-Length: 5213
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-145d"
Expires: Fri, 25 Nov 2022 19:57:30 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/506/assets/img/viagra.png
185.92.151.141200 OK 69 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/viagra.png
IP 185.92.151.141:0
File type PNG image data, 888 x 394, 8-bit colormap, non-interlaced\012- data
Hash 0d788c4bfb71a3a4841f8a991e86a43d
f1ce058a3768ab21225d2d89acbe6ed0edf87231
fc6e8aac1afa8117a84111214e0af1b58b41db296650c4d73dc8d9a27aa6d422
GET /themes/506/assets/img/viagra.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: image/png
Content-Length: 69444
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-10f44"
Expires: Fri, 25 Nov 2022 10:47:48 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/img/products_webp/original/150x150/cialis_super_active.webp
185.92.151.141200 OK 2.5 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/cialis_super_active.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash b19d8b0e0e70fcf9948738b28de1dc9c
00c6ece5d05ccbcdd9fc6e946d6c3d16df8256bb
64cc508dd4bd9c2f04da463fe1fcc97716b8ca05598f15d702946bc06467e0cb
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/cialis_super_active.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: image/webp
Content-Length: 2544
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-9f0"
Expires: Fri, 25 Nov 2022 21:19:01 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/viagra_super_active.webp
185.92.151.141200 OK 2.6 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/viagra_super_active.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 90e686086655d1bfa2581c58513c14bc
e2bddb73b0e3b540a79b5a58f9db8bc71887d142
5c4dbae63108c49ccbceeb2c0aaa3f4fd2f7623ddf8ac6c83d51bf66810cadd1
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/viagra_super_active.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:02 GMT
Content-Type: image/webp
Content-Length: 2618
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-a3a"
Expires: Fri, 25 Nov 2022 21:19:02 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/vpxl.webp
185.92.151.141200 OK 2.4 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/vpxl.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 51a31fbc307c1a4e128be9e21fd53956
43c086161211e4ea9f1daccbca75317e7ed98d03
7d570b96116921aa677f2222e2c43c370b81c964740c7a992b831cfba5b8cc58
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/vpxl.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:02 GMT
Content-Type: image/webp
Content-Length: 2404
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-964"
Expires: Fri, 25 Nov 2022 21:19:02 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/viagra-cialis-levitra_trial_pack.webp
185.92.151.141200 OK 9.5 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/viagra-cialis-levitra_trial_pack.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 5875160de9f47b29590e24f21e2bb01b
752ea7859de5e84ffe21ee5f9dee036ea538d71f
648a4425c1e61177b8e86c3b2067f0b87603e1614ddc414dcb070a359445356e
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/viagra-cialis-levitra_trial_pack.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:02 GMT
Content-Type: image/webp
Content-Length: 9522
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-2532"
Expires: Fri, 25 Nov 2022 21:19:02 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/viagra.webp
185.92.151.141200 OK 2.9 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/viagra.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 36a93e2e3a91571f6a4dd26412cf57fa
c71124c4371a242c41d2229319e067dd20a89cd3
8bf22fe34f830d756b6226cc92bf06dc13bc0c3106c1e17161aeed5ebea26d06
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/viagra.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:02 GMT
Content-Type: image/webp
Content-Length: 2930
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-b72"
Expires: Fri, 25 Nov 2022 21:19:02 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/img/categories/erectile_dysfunction_64.png
185.92.151.141200 OK 2.1 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/categories/erectile_dysfunction_64.png
IP 185.92.151.141:0
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash 26e7312c0d6dcd795c22683f8ebecd25
e086230f0209c1c9f6f0f0aa1495553dac1a2665
05b2b7ac41c5722eb3157b2ac8f76c82446852f5917d9c37f59deb3c8fd9ecd2
GET /themes/506/assets/img/categories/erectile_dysfunction_64.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:02 GMT
Content-Type: image/png
Content-Length: 2114
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-842"
Expires: Fri, 25 Nov 2022 10:47:49 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/506/assets/img/categories/antibiotics_64.png
185.92.151.141200 OK 1.7 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/categories/antibiotics_64.png
IP 185.92.151.141:0
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash 2bf79b456385231bb719f57da43bf261
e39601fe25c9da7313b35053ce85d1631c8f2e7d
4b31833fb3c4edeca83fa10884f3d6228d785f3527eaafac450468f75b1a2171
GET /themes/506/assets/img/categories/antibiotics_64.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:02 GMT
Content-Type: image/png
Content-Length: 1697
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-6a1"
Expires: Fri, 25 Nov 2022 09:22:39 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/506/assets/img/categories/anti-allergicasthma_64.png
185.92.151.141200 OK 2.0 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/categories/anti-allergicasthma_64.png
IP 185.92.151.141:0
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash 3c15bb8058ff009d6057a370ec48fe60
2874f8524b504cc3a3ff38c220a35590626c2d09
6745c4d76641e7669253003cc0060ba655b5073d92a288c4175e1a2f72e34e43
GET /themes/506/assets/img/categories/anti-allergicasthma_64.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:02 GMT
Content-Type: image/png
Content-Length: 1960
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-7a8"
Expires: Fri, 25 Nov 2022 10:47:49 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/img/products_webp/original/150x150/cialis.webp
185.92.151.141200 OK 2.5 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/cialis.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash cb21084af1252e8aa2dbc5056d839836
9e6ba5ba6b4badb21c93348aa94bf134ea6a55a5
39aa33d01bbb94f56c0b7e1956fdaef38f80cf6863f5438ae2fee0a5e770ee53
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/cialis.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:02 GMT
Content-Type: image/webp
Content-Length: 2520
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-9d8"
Expires: Fri, 25 Nov 2022 21:19:02 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/abhigra_brand.webp
185.92.151.141200 OK 2.7 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/abhigra_brand.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash f5a057801ffae4112d0952b63a302f57
c644d9fd5ad630fdcbbcbecfbcf4027116c55d6b
2611b30f86699f3b9bdd86803fc6ef10a7b75075275f732fe23b532cf9fd9806
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/abhigra_brand.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:03 GMT
Content-Type: image/webp
Content-Length: 2670
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-a6e"
Expires: Fri, 25 Nov 2022 21:19:03 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/img/view-all-packs.png
185.92.151.141200 OK 69 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/view-all-packs.png
IP 185.92.151.141:0
File type PNG image data, 330 x 550, 8-bit/color RGBA, non-interlaced\012- data
Hash ffaa573166da6e32bbe3c5c78b8b6bcd
b4f0709e2d10ab3545d427cf4075014d00e1ac40
0bc83be4804c1dca69d725a863c1d5f87f77fde5e9effd817c5bca9957026167
GET /themes/506/assets/img/view-all-packs.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669114486
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:03 GMT
Content-Type: image/png
Content-Length: 69351
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-10ee7"
Expires: Fri, 25 Nov 2022 20:39:05 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/img/products_webp/original/150x150/priligy.webp
185.92.151.141200 OK 2.1 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/priligy.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash c89bd239db81c20894e345ef40c7d184
1e3dbb8c71ff163232870874a666dc47b6cb9f6b
b993ea301456cf720dd75c5ec8c3a654f57daa843a8d7d50b145689a9de2b926
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/priligy.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:03 GMT
Content-Type: image/webp
Content-Length: 2134
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-856"
Expires: Fri, 25 Nov 2022 21:19:03 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4881
Expires: Thu, 24 Nov 2022 22:40:24 GMT
Date: Thu, 24 Nov 2022 21:19:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4881
Expires: Thu, 24 Nov 2022 22:40:24 GMT
Date: Thu, 24 Nov 2022 21:19:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4881
Expires: Thu, 24 Nov 2022 22:40:24 GMT
Date: Thu, 24 Nov 2022 21:19:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4881
Expires: Thu, 24 Nov 2022 22:40:24 GMT
Date: Thu, 24 Nov 2022 21:19:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4881
Expires: Thu, 24 Nov 2022 22:40:24 GMT
Date: Thu, 24 Nov 2022 21:19:03 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0856fdb55f19f03a1bec38b3d6e0ac77
89accd230fba95fe0049678070817b36ead015fa
17c6e6f9bb8f4261fff2dc2a43ed994986418761624b8afead768e89927594f2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5070
x-amzn-requestid: d86d95ad-9b78-4047-82e7-04e83a97e330
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwViF1GIAMF_PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9423-10809ba1634776171cf79cb8;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:03 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rrs7G6Wto6iY0rT6KsKwKAOPJjehXqD0jHZrR_eaiqpepQILFr7Dtw==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:49:07 GMT
age: 84596
etag: "89accd230fba95fe0049678070817b36ead015fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d9d93b2a6875d446c3467eb49767eef5
303c571b13b05fcf27ee1159d8fdf6369aaef0a2
2a2345a925e0187979930a7f2de8548957ad9f2baae77364dcb157286e2b3fcf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6789
x-amzn-requestid: 4d94ce1b-d18f-43b8-bb4d-e7093f9bea42
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvd2G9UIAMFrEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5f2-64a570135be59b83031811da;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:04:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JygkDI7XSvlgurUTot874ZAXlOIqnv4cntMQ55IvHVqw93JBcksZjQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:10:24 GMT
age: 50919
etag: "303c571b13b05fcf27ee1159d8fdf6369aaef0a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: j_8oVo464QMWMnmkxQJIDRhaIVmwhzCTHe4A57OdmaUr9HcyTtBUjg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 2750b94b402c92287d764b5fa115a042.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 05:04:28 GMT
age: 58475
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 92c78302bcce1568eb6a5563100b932c
43d1dec7fc06879988c9c3cadd800cc8145df988
0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YJuHCuUgkLuFFiQUlrPWgv9grHznufMTU08hi4ZMpQTBmou6BGWrhQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:47:52 GMT
age: 84671
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 64d79191f005c9876b952c5f948aa0f7
1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a
00fb36c3d322e8302c5ce202d6d4119d637510cd6f3b63e1347781ec3bb9d7fc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13882
x-amzn-requestid: 9022b0b3-31d5-4149-a969-02514f11b95a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvzNHjMoAMFWMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9347-0e8354a02bef623644714e31;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: DYBcunpyI0FBJsJGh1kKpFI3X8kzCkO3mCxzUtWnaMKBT-Bv-zkq3Q==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:59:18 GMT
age: 83985
etag: "1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b4157f2c5c3c77ce699324ecb08f47c7
a7d9135f9d01ba13c3cdaf8b038c70212f159297
2305f7afee95bb34d9e8dbff571c6b146ba7b694be96e9e925c32d1f41785916
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7462
x-amzn-requestid: 1f6fb14d-83e0-43d3-9dab-5bc83af1a7c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwV3HV9oAMFs9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9425-634d43db6308e0be596aa5a0;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GW5UTfY7-TwPWTno9z1e21a2cA9fmU7GfHFYWdL-zQvMLxeq-S9Trg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 22:08:16 GMT
age: 83447
etag: "a7d9135f9d01ba13c3cdaf8b038c70212f159297"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
progreatdiscount.com/img/products_webp/original/150x150/zovirax.webp
185.92.151.141200 OK 2.1 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/zovirax.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 73324a4c46433a33e503970d1cdc2459
d359ceef3f91e1b0e50b5ee4150144e9cb3261de
32eb8dc98539c1433b250c943fb3ca228ce0adafe486975e4680d7c6f32eb343
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/zovirax.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:03 GMT
Content-Type: image/webp
Content-Length: 2118
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-846"
Expires: Fri, 25 Nov 2022 21:19:03 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/tadalista_brand.webp
185.92.151.141200 OK 2.1 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/tadalista_brand.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash a331b9901b7c3a2760a54c5b11a775f2
ed8ae73f38a16ab7cfe248d0ecf3b3b3788a26f7
69113b9122bd87235b91a1e5dbda788a114c2d40d86cae6e9152d97dbb8c9285
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/tadalista_brand.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:03 GMT
Content-Type: image/webp
Content-Length: 2052
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-804"
Expires: Fri, 25 Nov 2022 21:19:03 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/viagra-cialis_trial_pack.webp
185.92.151.141200 OK 8.1 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/viagra-cialis_trial_pack.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 24d66c7ce572d297caa8df64e1ae2cc2
6a1f48c5113af2cc87b8261d21e281a7d8aaf87e
1e939749e2665cd602246449dc7f49e67751eb4559b94528079997a72fbb97fe
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/viagra-cialis_trial_pack.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:03 GMT
Content-Type: image/webp
Content-Length: 8138
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-1fca"
Expires: Fri, 25 Nov 2022 21:19:03 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/active_discount_pack.webp
185.92.151.141200 OK 9.7 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/active_discount_pack.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 13de4413f0d79b6aeb410be1d21e88bb
f6e03bce55be28a224641fc74c8c8429df2d9e51
4d4aec070cb7034ce9f9c6ec31b2c0f65580ccb1267e0038a08ae8f9e7818810
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/active_discount_pack.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:04 GMT
Content-Type: image/webp
Content-Length: 9710
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-25ee"
Expires: Fri, 25 Nov 2022 21:19:04 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/viagra_professional.webp
185.92.151.141200 OK 3.1 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/viagra_professional.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 7feb824ec6799dd41505b563074d824a
b936d0ea4cf8621d189c6df0555490d180a40048
e1bf64316048c53064bc4ec80a9587d68e3a85572180abbc161c88360a91c7e4
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/viagra_professional.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:04 GMT
Content-Type: image/webp
Content-Length: 3058
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-bf2"
Expires: Fri, 25 Nov 2022 21:19:04 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/kamagra_brand_gold.webp
185.92.151.141200 OK 2.2 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/kamagra_brand_gold.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 2114713a8643dd36368b65c7e7d297d5
c81c38cb8913c6e06693dd7731d9f0cbfa75dbcf
39080e3ecbeecb6e852413da7782a6bd13000842b2d7d7230ba643d1f4690d95
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/kamagra_brand_gold.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:04 GMT
Content-Type: image/webp
Content-Length: 2170
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-87a"
Expires: Fri, 25 Nov 2022 21:19:04 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/celebrex.webp
185.92.151.141200 OK 3.1 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/celebrex.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 4bd2f7a901a05546f7f89143a34de6f6
a7fb823fdc83e1f836d543828df38da43458324a
49a93b400a8492bae496126a5e0ebb4126cdb11b5444744f3b800db7179bd754
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/celebrex.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:04 GMT
Content-Type: image/webp
Content-Length: 3106
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-c22"
Expires: Fri, 25 Nov 2022 21:19:04 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/img/three_cell_blue.png
185.92.151.141200 OK 177 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/three_cell_blue.png
IP 185.92.151.141:0
File type PNG image data, 1110 x 368, 8-bit colormap, non-interlaced\012- data
Size 177 kB (177389 bytes)
Hash 95ec183c4c08198699342897d19a68ad
c1a5f34c91242ab4e38e9138727b388c56ca1493
e9cefcd31844336144b9a1665c79a4deeb588a2fb24b563821fe13469692bfbf
GET /themes/506/assets/img/three_cell_blue.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/banners.min.css?v=1669114486
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:04 GMT
Content-Type: image/png
Content-Length: 177389
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-2b4ed"
Expires: Fri, 25 Nov 2022 15:23:22 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/506/assets/img/three_cell_green.png
185.92.151.141200 OK 82 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/three_cell_green.png
IP 185.92.151.141:0
File type PNG image data, 1110 x 368, 8-bit colormap, non-interlaced\012- data
Hash 632ea0486f1d0efc481b466976b48091
fc3e0cabf9824c93b9404b9f4e15167aa22dcee6
0d428b221df36ede8d64165d4094a14d300eb252829245f9597af153fbc74fee
GET /themes/506/assets/img/three_cell_green.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/banners.min.css?v=1669114486
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:04 GMT
Content-Type: image/png
Content-Length: 81942
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-14016"
Expires: Fri, 25 Nov 2022 12:07:39 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/506/assets/img/img-final-coupon.png
185.92.151.141200 OK 9.6 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/img-final-coupon.png
IP 185.92.151.141:0
File type PNG image data, 218 x 146, 8-bit/color RGBA, interlaced\012- data
Hash ddf34d85827fc3ed4efd1c8c95b4066a
f4a26bfbde8ff50b65b9d23e7b3e0588a34fb1c1
c554ad39982647b8bb90fa7aa32ead4ef5aa230d3cfac01d0e7eeef17f63c71d
GET /themes/506/assets/img/img-final-coupon.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669114486
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:04 GMT
Content-Type: image/png
Content-Length: 9606
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-2586"
Expires: Fri, 25 Nov 2022 12:58:34 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/img/products_webp/original/150x150/ventolin_inhaler.webp
185.92.151.141200 OK 2.9 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/ventolin_inhaler.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 53072088b14602f86c8e13b04943a221
4e5ca1da70a49959d861e0f8df01eda72c359ed1
6828b36747a37d0fecd05330021b7b43c37b19190b801c5c62ad4d8c25fe53b6
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/ventolin_inhaler.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:04 GMT
Content-Type: image/webp
Content-Length: 2878
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-b3e"
Expires: Fri, 25 Nov 2022 21:19:04 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/img/product_promo_image_bg_3.png
185.92.151.141200 OK 182 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/product_promo_image_bg_3.png
IP 185.92.151.141:0
File type PNG image data, 985 x 659, 8-bit colormap, non-interlaced\012- data
Size 182 kB (181588 bytes)
Hash cfd12c24f0951a02e528dcf5ba517ad0
33355c6cbe5bca210cac1094cc3f6b666248de50
34676aacc848140cac7d784e78c7fe4bbccadfb8dc3c6f380773e7860df31ce4
GET /themes/506/assets/img/product_promo_image_bg_3.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:04 GMT
Content-Type: image/png
Content-Length: 181588
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-2c554"
Expires: Fri, 25 Nov 2022 10:47:48 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/506/assets/img/img-bottom-certificate-0.png
185.92.151.141200 OK 20 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/img-bottom-certificate-0.png
IP 185.92.151.141:0
File type PNG image data, 198 x 104, 8-bit/color RGBA, interlaced\012- data
Hash 9ccee1573c264cb8af43d8bb4cb22bef
11108e5ef50c53aa7ce16a10100f9641c4e789ea
0f67f0c4f9e8384786a1a873ed8f63856ea3c6ec7c876eee9f22c27135842edd
GET /themes/506/assets/img/img-bottom-certificate-0.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:04 GMT
Content-Type: image/png
Content-Length: 20014
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-4e2e"
Expires: Fri, 25 Nov 2022 17:46:24 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/506/assets/img/img-bottom-certificate-1.png
185.92.151.141200 OK 14 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/img-bottom-certificate-1.png
IP 185.92.151.141:0
File type PNG image data, 182 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash e0e015edb01932bd92a090e6c1c69fb3
9c9fcc2026d11bf762f73c1478c59c9d9e0f80fc
0bcd60a0db33494184cef031e0938fec4224dbaa83febbfb8140689a6a7cbc6f
GET /themes/506/assets/img/img-bottom-certificate-1.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:04 GMT
Content-Type: image/png
Content-Length: 14510
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-38ae"
Expires: Fri, 25 Nov 2022 19:13:42 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/506/assets/img/all-in-one-pack.png
185.92.151.141200 OK 48 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/all-in-one-pack.png
IP 185.92.151.141:0
File type PNG image data, 536 x 228, 8-bit colormap, non-interlaced\012- data
Hash 8658cd0e8e4de31b2506ae0b7bb49517
b0387fcf92674da7ba1e6d6ae32f1db8899c2df8
d6439d0c5c3d7b9513cbe8fa017cc939a5f5ff036f32fbf9005de7caf72b3674
GET /themes/506/assets/img/all-in-one-pack.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:04 GMT
Content-Type: image/png
Content-Length: 48196
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-bc44"
Expires: Fri, 25 Nov 2022 19:57:30 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/506/assets/img/super-discount-pack.png
185.92.151.141200 OK 54 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/super-discount-pack.png
IP 185.92.151.141:0
File type PNG image data, 478 x 262, 8-bit colormap, non-interlaced\012- data
Hash 38823cccbb61c16e96d6b44975f653f8
8903b66d4dee8b4d46a9a796101d7141f276029c
b5e9d355309a52de5d6f4bb233fbd4ca1d9ed990c14e3e7112b70bb5195db206
GET /themes/506/assets/img/super-discount-pack.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:05 GMT
Content-Type: image/png
Content-Length: 53482
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-d0ea"
Expires: Fri, 25 Nov 2022 09:22:38 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/506/assets/img/img-certificate-0.png
185.92.151.141200 OK 21 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/img-certificate-0.png
IP 185.92.151.141:0
File type PNG image data, 132 x 86, 8-bit/color RGBA, non-interlaced\012- data
Hash 474102292ba0b45bfb8c29eceefcb44a
3b4b0f9b7dc7cbb200887e1419c1d2312347340c
3f7a9eff47a5be960a3509d9e93e5f782befa90cd0646ef860b63212f0ff5773
GET /themes/506/assets/img/img-certificate-0.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:05 GMT
Content-Type: image/png
Content-Length: 20800
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-5140"
Expires: Fri, 25 Nov 2022 19:13:42 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/themes/506/assets/img/img-certificate-1.png
185.92.151.141200 OK 29 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/img-certificate-1.png
IP 185.92.151.141:0
File type PNG image data, 140 x 84, 8-bit/color RGBA, non-interlaced\012- data
Hash aa561d017a4d34adab56aa3aec2d6843
bdd0587570c72b786413f5980a6da19b61da3621
6cee04baf8bc48668c83b4e79589173596696acab871f2357c96ffc54b1a5942
GET /themes/506/assets/img/img-certificate-1.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:05 GMT
Content-Type: image/png
Content-Length: 28780
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-706c"
Expires: Fri, 25 Nov 2022 21:11:01 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/img/products_webp/original/150x150/augmentin.webp
185.92.151.141200 OK 2.7 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/augmentin.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash fbf8d032752efa8fba8255a6f1f5fd80
466523c5d92aabfb8735f7b0c8e8c2f3ee953592
0498dce4bf09377e58d56340cebd8d707945f26eec6688fc20d64d6d840d84a6
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/augmentin.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:05 GMT
Content-Type: image/webp
Content-Length: 2666
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-a6a"
Expires: Fri, 25 Nov 2022 21:19:05 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/img/img-certificate-3.png
185.92.151.141200 OK 14 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/img-certificate-3.png
IP 185.92.151.141:0
File type PNG image data, 90 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 3479939cdd82f554cf8dc0970f4157e1
e066a74d7af7778b3bdde909bb0fe3ee3e62152c
fb2635952190e7d0aacd0af4c09beefd74e2f6efa25461cc53bfccdcafdcb85f
GET /themes/506/assets/img/img-certificate-3.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:05 GMT
Content-Type: image/png
Content-Length: 14530
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-38c2"
Expires: Fri, 25 Nov 2022 19:13:42 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/img/products_webp/original/150x150/doxycycline.webp
185.92.151.141200 OK 2.5 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/doxycycline.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash b1f58f671b01d8f3e5dfd76be4126514
163d928e508ff679255ceb85d11b080e1698866f
3c47ada348e03c33d3d345fe53948866d0b47ffdf910f32628536f4df5abc6de
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/doxycycline.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:05 GMT
Content-Type: image/webp
Content-Length: 2482
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-9b2"
Expires: Fri, 25 Nov 2022 21:19:05 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/vyfat_brand.webp
185.92.151.141200 OK 2.3 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/vyfat_brand.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 178e08bebf898c19ae9dbe5c2f12f581
547a2b218fbaa7bec9756e949de11ccda6e081d4
24919956980aa3a0964dd7ede05844a922fa6fc091cc8d264b735d86496a2ba3
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/vyfat_brand.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:05 GMT
Content-Type: image/webp
Content-Length: 2322
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-912"
Expires: Fri, 25 Nov 2022 21:19:05 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/prednisone.webp
185.92.151.141200 OK 2.4 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/prednisone.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash a161de223889cf5dcdc8f8663202330c
c2e7147a972d09a9e11d27569a62e8208cacc096
46241c3c34c724fa72882bff98650494b216deae95178274eb73ef9c37d4e2c9
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/prednisone.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:05 GMT
Content-Type: image/webp
Content-Length: 2428
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-97c"
Expires: Fri, 25 Nov 2022 21:19:05 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/zithromax.webp
185.92.151.141200 OK 2.4 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/zithromax.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 40558417825b9bd181078c7668103297
1f19419153f63a4952b46f2f54ab06e9f4ded24d
3599023f6ce269b2af0402ae665a6240fbf74015194684996f7963bc61cd2bd6
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/zithromax.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:05 GMT
Content-Type: image/webp
Content-Length: 2354
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-932"
Expires: Fri, 25 Nov 2022 21:19:05 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/img/i-cross-modal.svg
185.92.151.141200 OK 402 B URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/i-cross-modal.svg
IP 185.92.151.141:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text
Hash 8586093e840b0f683bc9f142480d7419
0f503bc98849c3a52935b9f61de62b87cf5d38f9
80eafc3b9e02f55ed348016e66d3f4cbd8f40a567c8bc8ef3b22857afb2732ef
Analyzer Verdict Alert fortinet Phishing
GET /themes/506/assets/img/i-cross-modal.svg HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669114486
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:06 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-303"
Expires: Fri, 25 Nov 2022 10:46:01 GMT
Cache-Control: max-age=86400, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/img/i-plus.svg
185.92.151.141200 OK 420 B URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/i-plus.svg
IP 185.92.151.141:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text
Hash c672271d56a3654b7b0282b519314619
e1daed8d17eaecf1c90887f471eb830ffad4035c
bd3e27455efe3552cf20031b283214d8ea8ef44f5c11b9a2b487bec99a247ad7
Analyzer Verdict Alert fortinet Phishing
GET /themes/506/assets/img/i-plus.svg HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669114486
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:06 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-369"
Expires: Fri, 25 Nov 2022 10:15:09 GMT
Cache-Control: max-age=86400, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/img/i-minus.svg
185.92.151.141200 OK 311 B URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/i-minus.svg
IP 185.92.151.141:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text
Hash 79a798089a0dded6d3f22a031e224e08
66336bea97828bbd59aff2c5eb63566bfa9880f1
fd75624647240c731b05682e2df727177b97017b1d21779c315cfb319af0124f
Analyzer Verdict Alert fortinet Phishing
GET /themes/506/assets/img/i-minus.svg HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669114486
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:06 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-1e6"
Expires: Fri, 25 Nov 2022 10:56:39 GMT
Cache-Control: max-age=86400, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/img/i-remove-hover.svg
185.92.151.141200 OK 477 B URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/i-remove-hover.svg
IP 185.92.151.141:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (418)
Hash a9e983cbf5e94d4acda5395b90eb7562
c327a1f202a679dcec75377ff8a0cc8cc4528f17
c0ec374136281f2dbbc5b4110708006bfaf311080401dfcf7b4cde3b64ed9257
Analyzer Verdict Alert fortinet Phishing
GET /themes/506/assets/img/i-remove-hover.svg HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669114486
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:06 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-48e"
Expires: Fri, 25 Nov 2022 15:28:17 GMT
Cache-Control: max-age=86400, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/img/i-unapply-coupon-hover.svg
185.92.151.141200 OK 338 B URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/i-unapply-coupon-hover.svg
IP 185.92.151.141:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text
Hash 62ba366ae1d4294482bc19b17caaa271
d99c8f7584b854f784ede42b2c71fc764ed5468e
e887f91fe8a08a54fa341696cc59309d462b612d2f79f84327e040fe25ce92c7
Analyzer Verdict Alert fortinet Phishing
GET /themes/506/assets/img/i-unapply-coupon-hover.svg HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/themes/506/assets/css/common.min.css?v=1669114486
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:06 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: W/"637caa76-25e"
Expires: Fri, 25 Nov 2022 10:46:01 GMT
Cache-Control: max-age=86400, public, public
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/cialis_black.webp
185.92.151.141200 OK 2.4 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/cialis_black.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 086ef3bbc3b99d64e1ef17373b16147e
0c08a8ed5457db82b27ef729d2d8cd751095a907
3fc09f3f78d6b3ba8e6c1e0fdb0dfb40e12af0e8ba65060ee9daa057be460981
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/cialis_black.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:07 GMT
Content-Type: image/webp
Content-Length: 2370
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-942"
Expires: Fri, 25 Nov 2022 21:19:07 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/viagra_super_force.webp
185.92.151.141200 OK 3.1 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/viagra_super_force.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash a2256297f7623fba73e2f4ddffa6ae89
e492bf7cbd147a0a7504d067e4bba879642d75f3
15cd4ea19eff0f54774d84a1361d0857162be2b42b9ea44cddbf3c5fcd4170cf
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/viagra_super_force.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:07 GMT
Content-Type: image/webp
Content-Length: 3096
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-c18"
Expires: Fri, 25 Nov 2022 21:19:07 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/cialis_pack.webp
185.92.151.141200 OK 9.5 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/cialis_pack.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 2d8a9c633ef34b70f187165742b498e3
8fe2c346c62401d2c43cbeb56c209b85e9d4417b
dadf8d5f8f576513662708f865639535dfe6a273cbdd112d63664f662eae8c60
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/cialis_pack.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:07 GMT
Content-Type: image/webp
Content-Length: 9464
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-24f8"
Expires: Fri, 25 Nov 2022 21:19:07 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/viagra_brand.webp
185.92.151.141200 OK 3.1 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/viagra_brand.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 16d21989cf0aa70202d5f07a49649a4d
4b6dcccb17350337d983bbb38fe58aff9f40f06a
14bcb63ffed0b604fd2c5a35076919bad88ff41a704cc66b506cd5111fce94ad
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/viagra_brand.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:07 GMT
Content-Type: image/webp
Content-Length: 3134
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-c3e"
Expires: Fri, 25 Nov 2022 21:19:07 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/viagra_pack.webp
185.92.151.141200 OK 8.4 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/viagra_pack.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 55840fe3b0c9849004a7a3fd9d8648d2
9485337594d413b3030d13ee72a461986ce58008
ff0c53e9c3bc02142c74a5e2b4256673174a56926b3d06764a45d7704953f4a6
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/viagra_pack.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:07 GMT
Content-Type: image/webp
Content-Length: 8350
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-209e"
Expires: Fri, 25 Nov 2022 21:19:07 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/levitra_brand.webp
185.92.151.141200 OK 3.8 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/levitra_brand.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 7c36d95c093b3c76a1cfd4590960b084
d8c470448782006baef16f500b9b13ea5265dae0
3b1c79ab94a34cd7cd16d1a9fbe9638ac3730f0f9e0497cd8faf533887b0a9d0
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/levitra_brand.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:08 GMT
Content-Type: image/webp
Content-Length: 3800
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-ed8"
Expires: Fri, 25 Nov 2022 21:19:08 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/strattera.webp
185.92.151.141200 OK 3.0 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/strattera.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 86f806ca336f68bd06ace724439e5ea5
b90f6c58301685a13b03659122e94bf60d94fd9a
e3f870b45f91ead00cd7f9a0b2b0997b20386a6df73b7da69eaf8640ad3d1e18
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/strattera.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:08 GMT
Content-Type: image/webp
Content-Length: 3024
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-bd0"
Expires: Fri, 25 Nov 2022 21:19:08 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/neurontin.webp
185.92.151.141200 OK 4.0 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/neurontin.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash e2082c5e3bdeebbabf3fd064725985df
8b29fe753994bdcd2edaeee72494bc5dea9cc9c2
dc0b4b7ef12a0447d2dde4d9e1bb6ffc67932f11965a085fde5f1a3f4142da45
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/neurontin.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:08 GMT
Content-Type: image/webp
Content-Length: 3952
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-f70"
Expires: Fri, 25 Nov 2022 21:19:08 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/azithromycin_dt.webp
185.92.151.141200 OK 2.2 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/azithromycin_dt.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash eaa9e31ffcf12232378cc1b82fac06e2
e50d04b95410b9fd02b59db77f3975873e2783a6
25eae2da8106cb55fc40ef85c2b99a4fcb27b79186b5aafa9ea03ee659a2fdc8
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/azithromycin_dt.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:08 GMT
Content-Type: image/webp
Content-Length: 2150
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-866"
Expires: Fri, 25 Nov 2022 21:19:08 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/propecia.webp
185.92.151.141200 OK 2.4 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/propecia.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 25be743cd5eb50d10bda146d56723725
f6c9ebbba107e6f29175656e3648034ae7a08284
97d0b4f436a381ad025922f60a943db1238f3b7058b5016d601675362369a9e9
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/propecia.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:08 GMT
Content-Type: image/webp
Content-Length: 2420
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-974"
Expires: Fri, 25 Nov 2022 21:19:08 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/female_cialis.webp
185.92.151.141200 OK 1.8 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/female_cialis.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash de9d8e0d873201c9224387d016373182
c222dfd732e494f06fab78e66181d676424bcec8
ba59967862f7879329c82d58ef20eeb30fb2962ff47fb01f1c9a0b3072b739ba
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/female_cialis.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:09 GMT
Content-Type: image/webp
Content-Length: 1778
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-6f2"
Expires: Fri, 25 Nov 2022 21:19:09 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/img/products_webp/original/150x150/amoxil.webp
185.92.151.141200 OK 3.4 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/amoxil.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 2ee9225fa9315586e031dc72b7c986a1
6dc9fedcc9638b16d35e27865ee346c4dcaf5f04
8d0749c7217cc22404ba8d4d7d46b1b3ac7728699fc345e9d249063463b3a591
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/amoxil.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:09 GMT
Content-Type: image/webp
Content-Length: 3434
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-d6a"
Expires: Fri, 25 Nov 2022 21:19:09 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/img/super-discount-pack-mobile.png
185.92.151.141200 OK 57 kB URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/super-discount-pack-mobile.png
IP 185.92.151.141:0
File type PNG image data, 224 x 194, 8-bit/color RGBA, non-interlaced\012- data
Hash d2b83ad23f8aed1ba2c5d54fa2627aaa
ccbbbc103289344839bc0ae6de437a81705766b2
3d51a9b5119c320dd88066546a904d3d5d78b5f562bb0d64e588f854034e1040
GET /themes/506/assets/img/super-discount-pack-mobile.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:09 GMT
Content-Type: image/png
Content-Length: 56729
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-dd99"
Expires: Fri, 25 Nov 2022 09:22:38 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes
progreatdiscount.com/img/products_webp/original/150x150/cialis_brand.webp
185.92.151.141200 OK 4.1 kB URL HTTP/1.1 progreatdiscount.com/img/products_webp/original/150x150/cialis_brand.webp
IP 185.92.151.141:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash cafb0c7fd42f86228a9cf9adac68a247
1e67b59e9dd061625ad8fa11871ed5e8e0f29dc9
a9760c89c93798fe5651517eab7fa076fbdd0f55ecfeb2a24c5a843f8f61c314
Analyzer Verdict Alert fortinet Phishing
GET /img/products_webp/original/150x150/cialis_brand.webp HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:09 GMT
Content-Type: image/webp
Content-Length: 4110
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:45 GMT
ETag: "637caa75-100e"
Expires: Fri, 25 Nov 2022 21:19:09 GMT
Cache-Control: max-age=86400, public
Accept-Ranges: bytes
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
progreatdiscount.com/themes/506/assets/img/product_promo_image_bg_2.png
185.92.151.141200 OK 0 B URL HTTP/1.1 progreatdiscount.com/themes/506/assets/img/product_promo_image_bg_2.png
IP 185.92.151.141:0
GET /themes/506/assets/img/product_promo_image_bg_2.png HTTP/1.1
Host: progreatdiscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://progreatdiscount.com/?cp=zvnr2gh1
Cookie: CGISID=ic8lvbva10ejk33rmrdfbvrtbtk24mtt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 21:19:01 GMT
Content-Type: image/png
Content-Length: 215637
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 10:54:46 GMT
ETag: "637caa76-34a55"
Expires: Fri, 25 Nov 2022 09:22:38 GMT
Cache-Control: max-age=86400, public, public
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: img-src https: data:; upgrade-insecure-requests
Accept-Ranges: bytes