| r11.o.lencr.org/ |  23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashcc687a19f2854a47020b22f4aa1806ef 9d4058393445f64f6dda190557bf37686e19e7a0 df2db18fa10eeb1d535253183d68a561c6b52b77b539df6a0a36aec736a9da9c
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "DF2DB18FA10EEB1D535253183D68A561C6B52B77B539DF6A0A36AEC736A9DA9C"
Last-Modified: Fri, 23 Aug 2024 14:37:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13077
Expires: Mon, 26 Aug 2024 08:11:28 GMT
Date: Mon, 26 Aug 2024 04:33:31 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.76.226 | | 504 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash5a54df7ab1a35ec424b9be7e9c3c9a4b e7cea7d874319740ce20d0b7c37e99b5e21461ff 38f07545bd30ef0b4adec907deb75c1cb2365d645a54b545486599117707e28b
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "38F07545BD30EF0B4ADEC907DEB75C1CB2365D645A54B545486599117707E28B"
Last-Modified: Fri, 23 Aug 2024 14:34:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11430
Expires: Mon, 26 Aug 2024 07:44:01 GMT
Date: Mon, 26 Aug 2024 04:33:31 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.76.226 | | 504 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashf04a331cae60388b5b3c547bcdd5a8e8 a74ba9ea1965e39a78db26c6568b3524156f0b5c 133a1fe03de9efd148f43efda3cd37d24e4f5cc936d1008a8ce7aacc6653afa3
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "133A1FE03DE9EFD148F43EFDA3CD37D24E4F5CC936D1008A8CE7AACC6653AFA3"
Last-Modified: Fri, 23 Aug 2024 14:38:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11146
Expires: Mon, 26 Aug 2024 07:39:17 GMT
Date: Mon, 26 Aug 2024 04:33:31 GMT
Connection: keep-alive
|
|
| GET affiliates.kanojotoys.com/affiliate |  104.27.203.89 | 301 Moved Permanently | 167 B |
URL User Request GET HTTP/2affiliates.kanojotoys.com/affiliate IP104.27.203.89:443
CertificateIssuerGoogle Trust Services Subjectkanojotoys.com Fingerprint52:C6:DB:50:6E:F7:28:C4:DB:8A:B6:E5:49:C3:BC:96:E2:CF:29:57 ValidityFri, 12 Jul 2024 23:38:42 GMT - Thu, 10 Oct 2024 23:38:41 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
GET /affiliate HTTP/1.1
Host: affiliates.kanojotoys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Mon, 26 Aug 2024 04:33:32 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Mon, 26 Aug 2024 05:33:32 GMT
Location: https://affiliates.kanojotoys.com/affiliate
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DL8MhIl4sCv1nmKTzccNDDheySJkO1dOzfuXmWYByU9RHvyRxrScRbuXU3R9j1oGQOSMg6vDl88mbsYqr5KzsWL9x9zowy%2BSVgpJYVK2SyZjoN6icPMlLnuTbZ87QYsJNY4TEzGvB9ZSU4M%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8b911aaf0b2256cb-OSL
alt-svc: h2=":443"; ma=60
|
|
| GET affiliates.kanojotoys.com/affiliate | 104.27.204.89 | 301 Moved Permanently | 540 B |
URL User Request GET HTTP/2affiliates.kanojotoys.com/affiliate IP104.27.204.89:443
CertificateIssuerGoogle Trust Services Subjectkanojotoys.com Fingerprint52:C6:DB:50:6E:F7:28:C4:DB:8A:B6:E5:49:C3:BC:96:E2:CF:29:57 ValidityFri, 12 Jul 2024 23:38:42 GMT - Thu, 10 Oct 2024 23:38:41 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hashf1cbc5fb46ac71576a8aeba45aca3817 b4642a78395f95cfc5293eb9f839fc102b11d4c5 9886f1b884fcbc05b0c5b0efc9ee9a44dcd68690c1aad0cceb4ccfb4fce6d763
GET /affiliate HTTP/1.1
Host: affiliates.kanojotoys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
date: Mon, 26 Aug 2024 04:33:32 GMT
content-type: text/html; charset=iso-8859-1
location: http://affiliates.kanojotoys.com/affiliate/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nQvEFpqP%2Fpl0xrc7onVPqHkt0HpJU%2BQWldJgF%2BxEUKwwZenX0AeAABgJnZturSMQ7Xla5kxLmOaf0YsCAk%2FRn%2Fsi8o7RmQsx0W1N1v4%2Bg5%2B%2BSnE4q6xS9ImQe6qBwbbT6IhKO%2FvdxInFx1A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b911aaf2a090b69-OSL
X-Firefox-Spdy: h2
|
|
| r11.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash858eda022f9abab07abe65d5db47bdd7 50676984a7c33451e955b30f0c2796d8cbd39b37 d5d1370d54dbc79eef9d826334b31217d5b9823cfd1d012036b1bc4f38b724b4
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "D5D1370D54DBC79EEF9D826334B31217D5B9823CFD1D012036B1BC4F38B724B4"
Last-Modified: Fri, 23 Aug 2024 14:37:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4936
Expires: Mon, 26 Aug 2024 05:55:49 GMT
Date: Mon, 26 Aug 2024 04:33:33 GMT
Connection: keep-alive
|
|
| r11.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash858eda022f9abab07abe65d5db47bdd7 50676984a7c33451e955b30f0c2796d8cbd39b37 d5d1370d54dbc79eef9d826334b31217d5b9823cfd1d012036b1bc4f38b724b4
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "D5D1370D54DBC79EEF9D826334B31217D5B9823CFD1D012036B1BC4F38B724B4"
Last-Modified: Fri, 23 Aug 2024 14:37:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4936
Expires: Mon, 26 Aug 2024 05:55:49 GMT
Date: Mon, 26 Aug 2024 04:33:33 GMT
Connection: keep-alive
|
|
| GET affiliates.kanojotoys.com/affiliate/ | 104.27.203.89 | 301 Moved Permanently | 1.1 kB |
URL User Request GET HTTP/1.1affiliates.kanojotoys.com/affiliate/ IP104.27.203.89:80
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /affiliate/ HTTP/1.1
Host: affiliates.kanojotoys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Mon, 26 Aug 2024 04:33:32 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Mon, 26 Aug 2024 05:33:32 GMT
Location: https://affiliates.kanojotoys.com/affiliate/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fBLOQXwZDNQhk0XTOI5Xp%2FbxytSdUJrnKS792g9D%2FduETuJUqZXjiiJyDdfX79D%2FcnlG69VuIP3AEdFot4Mnd%2Bb2dNM19BX3BVcAJ34reNsNNt3C86dvVw8j6wG5nCvyV2HXsyOGlEYMvsE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8b911ab04c9956cb-OSL
alt-svc: h2=":443"; ma=60
|
|
| GET affiliates.kanojotoys.com/affiliate/ | 104.27.204.89 | 200 OK | 1.1 kB |
URL User Request GET HTTP/2affiliates.kanojotoys.com/affiliate/ IP104.27.204.89:443
CertificateIssuerGoogle Trust Services Subjectkanojotoys.com Fingerprint52:C6:DB:50:6E:F7:28:C4:DB:8A:B6:E5:49:C3:BC:96:E2:CF:29:57 ValidityFri, 12 Jul 2024 23:38:42 GMT - Thu, 10 Oct 2024 23:38:41 GMT
File typeHTML document, ASCII text, with very long lines (1136), with no line terminators Hash55d32d18804790ea390348742238aed4 c6c9ec3788d0a381b90b448b231dba8e7ee7a266 4ce3204e25c5bbc12a464e7db3c69edd13f71cc5e2aa040c6f6bd86775113663
| Analyzer | Verdict | Alert |
|---|
| urlquery | none | Audit - Open directory |
GET /affiliate/ HTTP/1.1
Host: affiliates.kanojotoys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 26 Aug 2024 04:33:32 GMT
content-type: text/html;charset=ISO-8859-1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GAC6TLQSeUX9r7dUhln2NlZ58xcAU0TdIq4nquRRmRHq12c5zBEs7c4iIlyBzGERiVYXI1x3UdWkTtvtr7H5uHOR%2FmkArkpl39tfU4nQ3M05qanv7gU0HE2zxVhmvB765KhyrntVcqhCOyM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b911ab05b360b69-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| GET affiliates.kanojotoys.com/favicon.ico | 104.27.204.89 | 404 Not Found | 450 B |
URL GET HTTP/2affiliates.kanojotoys.com/favicon.ico IP104.27.204.89:443
Requested byhttps://affiliates.kanojotoys.com/affiliate/ CertificateIssuerGoogle Trust Services Subjectkanojotoys.com Fingerprint52:C6:DB:50:6E:F7:28:C4:DB:8A:B6:E5:49:C3:BC:96:E2:CF:29:57 ValidityFri, 12 Jul 2024 23:38:42 GMT - Thu, 10 Oct 2024 23:38:41 GMT
File typeHTML document, ASCII text, with very long lines (463), with no line terminators Hash157b9382514b8dfadb0ee696f85c2ec3 29d6e24054addca6ec16b41c4528b7893e710af7 4c317e80663476047db9aa14f763962eeb68098fc9cdb5b6566afee4b48e5241
GET /favicon.ico HTTP/1.1
Host: affiliates.kanojotoys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://affiliates.kanojotoys.com/affiliate/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Mon, 26 Aug 2024 04:33:33 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=7200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5qTHzoRsVzWSZl%2BpDGzP6Z%2ByO8vNMDgnJaxI%2Bb28hgV28lLueGQJiPaxvMhWPCZ3pn3gVOk1q58ymiT7SWt4giG5mQYJ6In92NbXS2nWsJc05tvTHtEV6I99XdoTUTs5vzK8FFgwdl9Vnes%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8b911ab46e400b69-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| GET affiliates.kanojotoys.com/ | 104.27.204.89 | 301 Moved Permanently | 1.1 kB |
URL User Request GET HTTP/2affiliates.kanojotoys.com/ IP104.27.204.89:443
CertificateIssuerGoogle Trust Services Subjectkanojotoys.com Fingerprint52:C6:DB:50:6E:F7:28:C4:DB:8A:B6:E5:49:C3:BC:96:E2:CF:29:57 ValidityFri, 12 Jul 2024 23:38:42 GMT - Thu, 10 Oct 2024 23:38:41 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: affiliates.kanojotoys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Mon, 26 Aug 2024 04:33:31 GMT
content-type: text/html; charset=iso-8859-1
location: http://affiliates.kanojotoys.com/affiliate
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=itHj4xV5UGRYETcVZZTQiC0nuGAWw5X5AUlZV52rCCeEwhQ7bULuDKiyGEKlJxJXAK03IEiAZEdKr%2FPIzEg3U36WQ8q539mwTeh%2B0Pok04HIwSZkiauRQg%2B27qBB0zeoy3zEngD6Ug%2B44Mk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b911aacdf840b69-OSL
X-Firefox-Spdy: h2
|
|