{"report_id":"7d721db2-8aab-4b58-bf86-5a26f7da23ea","version":6,"status":"done","tags":[],"date":"2026-02-05T00:50:36Z","url":{"schema":"http","addr":"kokorashi.com","fqdn":"kokorashi.com","domain":"kokorashi.com","tld":"com"},"ip":{"addr":"162.43.122.65","port":0,"asn":131965,"as":"Xserver Inc.","country":"Japan","country_code":"JP"},"final":{"url":{"schema":"https","addr":"kokorashi.com/","fqdn":"kokorashi.com","domain":"kokorashi.com","tld":"com"},"title":"KOKORASHI AI","dom":{"size":117956,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (19126)","md5":"252d1260f744224bd8ce88f063ea8bcd","sha1":"26ee693b43633e037f421537e94b0707142f613d","sha256":"7daa8d90b0a618d4578701ca2f0d3e8319b495c1ef23d8e021f4de55e51a7fb0","sha512":"1a9b0a847f919270cc3abe6f212232b27f4c2b80598f4ac0fc6dce86d9991cbf06dcec22b14bfb05b5c6e7eaecc88b8e7e2dff6ddadb8c1d07ea6e028b1650d3","ssdeep":"1536:aReJ0GLaZmskNypIWsierXNS9LuJxoVtYYgzs/0c4xcVgc7HHqCTcakUd7Ylml:aReJLoeWcRhcVlg3Ud7Ylo","tlshash":"e7b30a6213a248fe3bdf97a8562cb70872499842ca8557ddf17ac05873ccfd948f271a","dom_hash":"domhash865936d8d573086428f9cffef6234f52","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"kokorashi.com","fqdn":"kokorashi.com","domain":"kokorashi.com","tld":"com"},"ip":{"addr":"162.43.122.65","port":0,"asn":131965,"as":"Xserver Inc.","country":"Japan","country_code":"JP"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-12T00:50:36Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-05","alert":"Sinkholed","trigger":"kokorashi.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-05","alert":"Sinkholed","trigger":"kokorashi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-02-01T22:17:46.954894Z","alert_count":0,"request_count":1,"received_data":11856,"sent_data":465,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":1222,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2026-02-01T22:25:39.559997Z","alert_count":0,"request_count":3,"received_data":287861,"sent_data":1567,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"s.w.org","ip":{"addr":"192.0.77.48","port":443,"asn":2635,"as":"AUTOMATTIC","country":"United States","country_code":"US"},"domain_registered":"1993-12-01","domain_rank":27695,"first_seen":"2017-01-30T04:56:16Z","last_seen":"2026-02-02T01:44:40.090265Z","alert_count":0,"request_count":2,"received_data":2563,"sent_data":905,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.74.3","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-02-01T22:14:44.580478Z","alert_count":0,"request_count":1,"received_data":40963,"sent_data":548,"comment":"","tags":null,"fingerprints":null},{"fqdn":"kokorashi.com","ip":{"addr":"162.43.122.65","port":443,"asn":131965,"as":"Xserver Inc.","country":"Japan","country_code":"JP"},"domain_registered":"2023-10-15","domain_rank":0,"first_seen":"2026-01-20T01:17:55.185898Z","last_seen":"2026-02-05T00:24:38.773983Z","alert_count":30,"request_count":15,"received_data":4498305,"sent_data":7143,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"WordPress","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"jQuery Migrate:3.4.1","description":"Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.","website":"https://github.com/jquery/jquery-migrate","common_platform_enumeration":"","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Slick","description":"","website":"https://kenwheeler.github.io/slick","common_platform_enumeration":"","icon":"Slick.svg","categories":["JavaScript libraries"]},{"name":"WordPress Block Editor","description":"Sites using the WordPress Block Editor, also known as Gutenberg.","website":"https://wordpress.org/gutenberg/","common_platform_enumeration":"","icon":"WordPress.svg","categories":["Page builders"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"kokorashi.com/jquery-js-after","fqdn":"kokorashi.com","domain":"kokorashi.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"9a8773474d2619032d8d8090d7ad0027","sha1":"f953e647f22bb55822bcad51133ff9ea21537bb2","sha256":"9e0afcb10a2913e09fd8f973fadd80031efeebe66f87bbd6b31d47a04dd515f5","sha512":"7f44dc21b4e415dacaa5ee9eb0feaabf3ed34ac0ba318b5e927bc5c45001f87fe2246d647eb01ef5f65c5c13e1a2d7d778fb052ae243b287335edf135ec2fadb","ssdeep":"","tlshash":"e1f05ceed44559eb3e33c07413d4664521661ccdc160980c64b195953f2bcd064bb259","size":534,"data":"","first_seen":"2026-02-05T00:24:41.263277Z","last_seen":"2026-02-05T00:50:38.508021Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kokorashi.com/remodal-js-js-after","fqdn":"kokorashi.com","domain":"kokorashi.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"93d65e73fccca97fb21603643edfce90","sha1":"9ef23bda0c3a2eaaa372fae600c25a2c75afd8ea","sha256":"d633bb0689fac7caf0654b36ccc3860399372109f8a3e60331834650737b10c2","sha512":"0545629fea111d78d9b4d10b9cf5a5fa30d198f6c9154074f5d050240399b61409e76bc327df4f803aee83748122f5edd7e9b5081c9c59cf12cb55ab82e6e3fd","ssdeep":"","tlshash":"79212b6ff1a5387108f6627b22bfb7ca55626041ec121402182b84941eb6d83b8e5d4e","size":1142,"data":"","first_seen":"2026-02-05T00:24:41.259997Z","last_seen":"2026-02-05T00:50:38.508867Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kokorashi.com/wp-content/themes/jstork19/js/scripts.js","fqdn":"kokorashi.com","domain":"kokorashi.com","tld":"com"},"ip":{"addr":"162.43.122.65","port":443,"asn":131965,"as":"Xserver Inc.","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":false,"md5":"c39ef3d9a9cafa77d2308c86a639986f","sha1":"669ec746d48fe7a0b8cca93cd59d0eafc1f51632","sha256":"fd2ec0f71087c44261623b4732fb7bfdeaf8babbe8a49eb5aff72e5ad0cb2fc8","sha512":"f3205114ae79cfe303ea78a394cfcddd9942d1b5fd1175a4b0fd45ca57349e4299c844adea4b75777f34c9a56235c9fbe219065cb02921b31dd42989348fec8c","ssdeep":"","tlshash":"1ea0021f64586298897621637cf7211c1895a508bf5d74d4155490c086a27792615a1f","size":64,"data":"","first_seen":"2023-08-20T22:32:01Z","last_seen":"2026-05-13T21:35:23.83846Z","times_seen":29,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kokorashi.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1","fqdn":"kokorashi.com","domain":"kokorashi.com","tld":"com"},"ip":{"addr":"162.43.122.65","port":443,"asn":131965,"as":"Xserver Inc.","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":false,"md5":"826eb77e86b02ab7724fe3d0141ff87c","sha1":"79cd3587d565afe290076a8d36c31c305a573d18","sha256":"cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf","sha512":"fc79fdb76763025dc39fac045a215ff155ef2f492a0e9640079d6f089fa6218af2b3ab7c6eaf636827dee9294e6939a95ab24554e870c976679c25567ad6374c","ssdeep":"1536:0RUX9uDgwxcy2KVBNwchN6SLaHEk2BSrBESp+a/IEk4aAocVi8SMBQ47GKO:sHNwcv9VBQpLl88SMBQ47GKO","tlshash":"7483f8df77ca702247ab30b9006f550bf276199d684d4400f159d8e9bcb8a4a827bf7e","size":87553,"data":"","first_seen":"2023-11-03T09:26:43Z","last_seen":"2026-06-08T11:34:14.724958Z","times_seen":895345,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kokorashi.com/","fqdn":"kokorashi.com","domain":"kokorashi.com","tld":"com"},"ip":{"addr":"162.43.122.65","port":443,"asn":131965,"as":"Xserver Inc.","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":true,"md5":"13162fb9b4ad611cc6d53d3b12092ab4","sha1":"7974a1b48e15df5c1c7383ed8199ff372d9c551d","sha256":"5a8fe18ce20e4cd1f1089b8492e120d94f34eaefdd8066eaaeed4c790886aa55","sha512":"b4ec29d67b933cb7f7185683bc642fe6d1382f04138bee37011ce773c572a2ca61556dfcb8621d1c0b029189fc9c596ef7e2d7c9c9243f5a9666badbd08e9830","ssdeep":"","tlshash":"0ae055ee944569eb3e33c09423a4a648212a1ccec260980c68b095a53f2bcd064bb299","size":420,"data":"","first_seen":"2025-12-03T18:00:55.53844Z","last_seen":"2026-06-05T02:14:54.861234Z","times_seen":40,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kokorashi.com/","fqdn":"kokorashi.com","domain":"kokorashi.com","tld":"com"},"ip":{"addr":"162.43.122.65","port":443,"asn":131965,"as":"Xserver Inc.","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":true,"md5":"628fbc9a577ac36533178b82a1efa8da","sha1":"f812d5b44b41a5f79d3f4ff8716e471fb42659b7","sha256":"e0b268db19821cfd03ccfb0ac8069d48e289dc1711f8405430b5c776dfe712bf","sha512":"85d9043773c2ac9f6bce4bdc8baa6bb15312eb95b51599770010213c8074af4274efdb501e4f897d1e8d80c0395fea5163782de615b332163ba90b6be1ddc50c","ssdeep":"","tlshash":"ec1148803cbab8ff58451ae7481206a6ab5500f5f07311e60dec6deb29c25276f0299b","size":925,"data":"","first_seen":"2023-03-13T11:04:16Z","last_seen":"2026-05-24T13:55:28.6365Z","times_seen":72,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kokorashi.com/slick-js-js-after","fqdn":"kokorashi.com","domain":"kokorashi.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"6fbdeeed9449d08cfd14efb5fafcdf6b","sha1":"e155321daa0e8ca1aae4df50f08421951c414a12","sha256":"08ce54ff5ad1ebe19e44ef44d670886c79aaa2cfbad5da2fcbc3cbb2210ffe29","sha512":"f6ab119699d162544abf103cd45cefc4b291cd11c8ab2f482ac69ac80061003c3c57e0f3926ab816dbffb27d692b94e2c71e2802aa2ccec867ea42f963754265","ssdeep":"","tlshash":"57212b27c989658309eb5330e673e68ad7867620c26921e592c646261f9f01686d439c","size":1127,"data":"","first_seen":"2026-02-05T00:24:41.258884Z","last_seen":"2026-02-05T00:50:38.510742Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kokorashi.com/wp-content/themes/jstork19/js/slick.min.js?ver=1.5.9","fqdn":"kokorashi.com","domain":"kokorashi.com","tld":"com"},"ip":{"addr":"162.43.122.65","port":443,"asn":131965,"as":"Xserver Inc.","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":false,"md5":"c060082afd659b6d588028470584fcb3","sha1":"4f87ccc4980d9ae4d105500ec1b0de8d5457ee4b","sha256":"13a544aa577df51cc73aed19ec64eecadf07ba4b1495a6b2c8f164e22aa98c34","sha512":"53b7edf747005509b629e91ea5d4817427a70b949116744c7c38ac93fa4bcddc5bfeee1281612cd8e799f5031a9074797ed2d72e4afd7428ca631b836300bb1b","ssdeep":"768:WrkkX123A5YHi6pWzYdlNWYcx16nnYdXRRMd2KYCQCsPShb1ez7RFmYH:uPrYdlNixEePiYH","tlshash":"5b13a649d204276285d721e62105c40eb3f7fb3cba22c0e435c9d3ea656ec4896d7bfa","size":43252,"data":"","first_seen":"2023-03-10T13:06:31Z","last_seen":"2026-05-31T18:59:08.581928Z","times_seen":95,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kokorashi.com/wp-content/themes/jstork19/js/remodal.min.js?ver=1.1.1","fqdn":"kokorashi.com","domain":"kokorashi.com","tld":"com"},"ip":{"addr":"162.43.122.65","port":443,"asn":131965,"as":"Xserver Inc.","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":false,"md5":"27766f7f253c55e082376b092bcf2f1e","sha1":"8e527f81ca9309a3227758bec8d71e3a561e5939","sha256":"b51edfcf67c27b272a23dfd5f262fd9f24dce25235e24836426eb3647baea711","sha512":"6bf2b05d950cb8dd0dd9aa93fe7baf629ea6835cca83c39fbe8bdb2258780722f0f81278b03ac9c1033f89239de7aee0c7ec92d29422c40e049f10651e0acbe8","ssdeep":"192:hefOxOVO4OrOIBQdFIcNC3pbkMMZz3+r+xvew4S6EBTTRjD8+vBFsnBMn:hosW3StBQxNCZAtT+6EEVVZPsn6n","tlshash":"e0f173c9fb30315986af0536607f5405573158b9a90d08a8b1bdd8da2e38add2773f3b","size":7821,"data":"","first_seen":"2023-03-07T01:14:40Z","last_seen":"2026-06-08T10:41:10.422711Z","times_seen":1015,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kokorashi.com/main-js-js-after","fqdn":"kokorashi.com","domain":"kokorashi.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"69ce2e032ebe1b4a49713b195d9b3760","sha1":"641cc3ae1f1a2cdc9af73a3fe79b3c02f102652f","sha256":"19a938f86f1e76180a536eed17ea20b016623fe4e84aa66869031d6275689cbd","sha512":"48cab45b2afdf411a0cec9fcc5e623899e429ad525a41a38bd05916c5607613493b92e151b5e0491d7a2a3563a8bc00f33891e06cbcb0ebf81028543e539186a","ssdeep":"","tlshash":"7a21ab2df380349d8226bb7a957f2507132b2101dcaac00b8988c34e09a9390e40bea9","size":1137,"data":"","first_seen":"2026-02-05T00:24:41.264146Z","last_seen":"2026-02-05T00:50:38.51124Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kokorashi.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1","fqdn":"kokorashi.com","domain":"kokorashi.com","tld":"com"},"ip":{"addr":"162.43.122.65","port":443,"asn":131965,"as":"Xserver Inc.","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":false,"md5":"9ffeb32e2d9efbf8f70caabded242267","sha1":"3ad0c10e501ac2a9bfa18f9cd7e700219b378738","sha256":"5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89","sha512":"8d6be545508a1c38278b8ad780c3758ae48a25e4e12eee443375aa56031d9b356f8c90f22d4f251140fa3f65603af40523165e33cae2e2d62fc78ec106e3d731","ssdeep":"192:5rprDN+sag6ifKIUpQI99P1tLm9kdgyq1+J3aCJQ+h4MPLORq:5rprxaefKI0LP19m4q1WW+h4Mjp","tlshash":"9952c8adb56679724eb721b8f03bd24f71b205de560d8940d19cc4f6282dc6e812bf78","size":13577,"data":"","first_seen":"2023-05-09T19:21:05Z","last_seen":"2026-06-08T11:34:14.749323Z","times_seen":825240,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kokorashi.com/","fqdn":"kokorashi.com","domain":"kokorashi.com","tld":"com"},"ip":{"addr":"162.43.122.65","port":443,"asn":131965,"as":"Xserver Inc.","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":true,"md5":"e068374d96d24e31d126cbd706be68f9","sha1":"ffddd0b31e17c18c982c12cce9c04c0d5b23dd01","sha256":"e959156b22a19380a8edf79509981ed9c0c618a69b040c9b900da485b7902747","sha512":"2a218b258053db354ec3b70080a4d2ed0c39f36c2ed3409338bd32d7e9d4bd9327070e3ecdc31ae3198b240751ffe46c9a84f9a33315ae2880436328fb480f44","ssdeep":"","tlshash":"98e07d201060c63f086e17db79f103d07a2800cbfc1611b140bc7a8e2f6649346522c7","size":324,"data":"","first_seen":"2023-03-13T11:04:16Z","last_seen":"2026-05-12T22:20:25.059319Z","times_seen":23,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kokorashi.com/wp-includes/js/wp-emoji-loader.min.js","fqdn":"kokorashi.com","domain":"kokorashi.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"77a5a0232830e4c860fdb32ef7d996b9","sha1":"77029fca176075afba0d1ecb9802150bacf578dc","sha256":"9c545b8e4d36e0b69de2d8a20048b9466b1d41695c7658a2feabcca994c9e34d","sha512":"5f98a3a5c6abefd8dfcd34b38f019777e2ebbea75957fc340b2fd4bf234826156b627bcf7a7781bc76ee7682a3c72302626561a5fc1df855dda7e8405ccf76e5","ssdeep":"","tlshash":"10718696e77638dbb2f900f2697a0d47eb614435d6c8d438c9bda3141cb5893c274b46","size":3743,"data":"","first_seen":"2026-02-05T00:24:41.261007Z","last_seen":"2026-02-05T00:50:38.512433Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kokorashi.com/wp-includes/js/wp-emoji-release.min.js?ver=6.9.1","fqdn":"kokorashi.com","domain":"kokorashi.com","tld":"com"},"ip":{"addr":"162.43.122.65","port":443,"asn":131965,"as":"Xserver Inc.","country":"Japan","country_code":"JP"},"introduction_type":"scriptElement","is_inline":false,"md5":"f0cc9ba5cf46af0cd73d521803e3b07e","sha1":"7d2a74f87dc70a39eccce3bae1d4cc404cb134f4","sha256":"fd59b0ebf6282ed71647bf2f6e0d1925bbfd1f270865a832079ebb60259aabca","sha512":"7ec44f08676c195547a623504c7105ef3d0acea5839675599598043f3e0b5a3386452e3db6fbea90722f7be9e6effdae1b89c49e2b05b22b8c415616e07d471d","ssdeep":"384:WzevzApRZTbXU/3o//bEPhXgA5POkpJTX:Wsk9XU/3o//YpXgAs+hX","tlshash":"7fa2959ba33a4e8f343e3bd78d968f4dc9da555321c0e079dbefb6c169a00568274c80","size":22762,"data":"","first_seen":"2025-11-10T19:52:32.864936Z","last_seen":"2026-06-08T11:36:15.645679Z","times_seen":263070,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"kokorashi.com/wp-content/themes/jstork19/style.css?ver=4.9","fqdn":"kokorashi.com","domain":"kokorashi.com","tld":"com"},"ip":{"addr":"162.43.122.65","port":443,"asn":131965,"as":"Xserver Inc.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://kokorashi.com/","date":"2026-02-05T00:50:14.928Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.kokorashi.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 08 Dec 2025 03:34:01 GMT","end":"Sun, 08 Mar 2026 03:34:00 GMT"},"fingerprint":{"sha1":"9C:9B:CB:A0:3B:69:CA:3A:C8:1D:81:44:16:66:E5:23:0E:0D:37:26","sha256":"C7:8E:E4:ED:7E:4F:2B:D8:32:B4:59:01:A6:19:9E:99:43:76:F1:59:80:D3:FC:9A:AC:A9:69:81:1A:6E:43:E8"}}},"request":{"raw":"GET /wp-content/themes/jstork19/style.css?ver=4.9 HTTP/1.1\r\nHost: kokorashi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kokorashi.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Feb 2026 00:50:15 GMT\r\ncontent-type: text/css\r\nvary: Accept-Encoding\r\nlast-modified: Tue, 16 Jul 2024 12:03:14 GMT\r\netag: W/\"2a5b6-61d5c2162980b\"\r\nexpires: Thu, 12 Feb 2026 00:50:15 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":173494,"size_decoded":0,"mime_type":"text/css","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (314)","md5":"a568b78419c4fa8386cdca0738f11f08","sha1":"b3c97ae44203f659babde4ae6f29b9cbbdcf14ed","sha256":"71d340a945b3f3f889e625c6b259b0b56aad37a2cf7e41aea126eb06a4618f17","sha512":"bff5c1e2976ea8b71b17cd41ed6b4f540bbec941b4546f41b5b39636ae84540ff6070ff3a99d83e0de1b4c108c5bf6cb36e8fdd1d22196f159d537dbf63448b9","ssdeep":"3072:R7gFdOhFIe4SjIP0UsU/REhpuh0tHwPd6LBwzxAE7:sOhFIe4SjIP0UsU/REhpuh0tHwPd6LBw","tlshash":"340493682af509a074af921c699ee6587b5c4041cb4edee9b6f0702c9fcc3ec44b275d","first_seen":"2026-01-20T15:53:37.704539Z","last_seen":"2026-02-05T00:50:38.495392Z","times_seen":3,"resource_available":false,"data":null}},"time_used":262,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":262,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-05","alert":"Sinkholed","trigger":"kokorashi.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-05","alert":"Sinkholed","trigger":"kokorashi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Roboto:wght@500;900\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://kokorashi.com/","date":"2026-02-05T00:50:14.932Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 12 Jan 2026 08:37:56 GMT","end":"Mon, 06 Apr 2026 08:37:55 GMT"},"fingerprint":{"sha1":"DE:3B:B4:94:98:33:3A:CB:2A:A9:96:A1:CB:19:8C:84:B5:8D:23:E9","sha256":"D0:A1:5A:83:80:77:19:74:AA:CB:27:69:4A:C7:2C:F0:DA:06:9C:79:1E:07:77:9A:4D:7B:5D:AA:A2:D2:D4:E9"}}},"request":{"raw":"GET /css2?family=Roboto:wght@500;900\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kokorashi.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Thu, 05 Feb 2026 00:50:15 GMT\r\ndate: Thu, 05 Feb 2026 00:50:15 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11170,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"e0ecca0e335dd84cda59534fe1c03b82","sha1":"ebade7adb15c6bd5936459a1c07b5a78a51a3667","sha256":"f642c2b669e49025876e39d5f4f2dcdc56786bcba2c3e6de73a4272114b5421c","sha512":"847f310ba91d68746de428b8851a77c834c870aee4f5f6ced9b2e7fc60d2bf070aa8d15f6c161d449e114c971d30952b80bcde797b433968ead6be16f810fe0a","ssdeep":"192:dNKfNNKgNKXNKfTNK/qsNKDbqGIwV4qNKINKuvNKwNKfxNKUNKLNKfvNK/qINKD3:zKfDKOKdKBKyaK/qY4QKGKmK+KfnKyKG","tlshash":"ed321fa1041750009b838ce223cebf34fe1f52117142d1b5abfdab6badcbc66526936d","first_seen":"2025-11-19T23:31:33.257086Z","last_seen":"2026-02-05T00:50:38.496157Z","times_seen":10,"resource_available":false,"data":null}},"time_used":326,"timings":{"blocked":146,"dns":0,"connect":10,"send":0,"wait":22,"receive":0,"ssl":145},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kokorashi.com/wp-content/uploads/2023/12/compass-gd96791cf5_1920-1536x1022.jpg","fqdn":"kokorashi.com","domain":"kokorashi.com","tld":"com"},"ip":{"addr":"162.43.122.65","port":443,"asn":131965,"as":"Xserver Inc.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://kokorashi.com/","date":"2026-02-05T00:50:14.940Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.kokorashi.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 08 Dec 2025 03:34:01 GMT","end":"Sun, 08 Mar 2026 03:34:00 GMT"},"fingerprint":{"sha1":"9C:9B:CB:A0:3B:69:CA:3A:C8:1D:81:44:16:66:E5:23:0E:0D:37:26","sha256":"C7:8E:E4:ED:7E:4F:2B:D8:32:B4:59:01:A6:19:9E:99:43:76:F1:59:80:D3:FC:9A:AC:A9:69:81:1A:6E:43:E8"}}},"request":{"raw":"GET /wp-content/uploads/2023/12/compass-gd96791cf5_1920-1536x1022.jpg HTTP/1.1\r\nHost: kokorashi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kokorashi.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Feb 2026 00:50:15 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 410185\r\nlast-modified: Mon, 04 Dec 2023 08:39:10 GMT\r\netag: \"64249-60bab0d4d13bd\"\r\nexpires: Thu, 12 Feb 2026 00:50:15 GMT\r\ncache-control: max-age=604800\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":410185,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1536x1022, components 3","md5":"4c9853d5cb151a391b7a630e0d68b50c","sha1":"af3305fce107f16461961f28fd95e5410103b1fb","sha256":"f65ecf6b679b719f4ace0d87ff494c6f52093146b1d08af606919c13a752587d","sha512":"ca30b3f18abdadbff9067f52043bc4ea86113297941e55ee02ab1bbb5a4b4a8ab9f43d3db221d2a683f558449b63e24448a09cefc58b5ba514c12356a6593abe","ssdeep":"6144:m5+nA17lWdKKmiqHPw/VsDOYpTGSIFj+YQLkwAkMbS7Sw1TTML6SHQTF:u+nAVYdK/VaVsDOYE7QjAklKzQp","tlshash":"719423b2ff842399c53e27282c58a2cc7526920d1b73377eb6f6581f84ed01d349daa4","first_seen":"2026-02-05T00:24:41.253003Z","last_seen":"2026-02-05T00:50:38.496885Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1561,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":515,"receive":1046,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-05","alert":"Sinkholed","trigger":"kokorashi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-05","alert":"Sinkholed","trigger":"kokorashi.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"kokorashi.com/wp-content/uploads/2024/04/%E3%82%B9%E3%82%AF%E3%83%AA%E3%83%BC%E3%83%B3%E3%82%B7%E3%83%A7%E3%83%83%E3%83%88-2024-03-28-18.53.07-1536x865.png","fqdn":"kokorashi.com","domain":"kokorashi.com","tld":"com"},"ip":{"addr":"162.43.122.65","port":443,"asn":131965,"as":"Xserver Inc.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://kokorashi.com/","date":"2026-02-05T00:50:14.942Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.kokorashi.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 08 Dec 2025 03:34:01 GMT","end":"Sun, 08 Mar 2026 03:34:00 GMT"},"fingerprint":{"sha1":"9C:9B:CB:A0:3B:69:CA:3A:C8:1D:81:44:16:66:E5:23:0E:0D:37:26","sha256":"C7:8E:E4:ED:7E:4F:2B:D8:32:B4:59:01:A6:19:9E:99:43:76:F1:59:80:D3:FC:9A:AC:A9:69:81:1A:6E:43:E8"}}},"request":{"raw":"GET /wp-content/uploads/2024/04/%E3%82%B9%E3%82%AF%E3%83%AA%E3%83%BC%E3%83%B3%E3%82%B7%E3%83%A7%E3%83%83%E3%83%88-2024-03-28-18.53.07-1536x865.png HTTP/1.1\r\nHost: kokorashi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kokorashi.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Feb 2026 00:50:15 GMT\r\ncontent-type: image/png\r\ncontent-length: 994387\r\nlast-modified: Tue, 02 Apr 2024 13:22:32 GMT\r\netag: \"f2c53-6151cffa7849e\"\r\nexpires: Thu, 12 Feb 2026 00:50:15 GMT\r\ncache-control: max-age=604800\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":994387,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1536 x 865, 8-bit/color RGBA, non-interlaced","md5":"5406413cdc0b8e4ac0d9ee0cdb159669","sha1":"7b672887ff53d526b7ea9c58545708c934b33b9e","sha256":"f1a726225ba4b8db66f750fe9b79ce5c1ff4f81249879cacd927e2ed6dea94e1","sha512":"31a0899d927d201f72557b6af2aa252808c91037ba194de62146b23784dfa124eaf74e9811be793753b5f6f610c5f171394def30bc82fd5a43be441157293376","ssdeep":"24576:0iWrV6VOb3kgjmNoiwENZP5bmwvr6h94bO:NW8VOLbiwmRmwuhCbO","tlshash":"e12533e5daf1a8f43ce22853410e35bb35785fc191dc4ba6523e943138863be69f0b5a","first_seen":"2026-02-05T00:24:41.257996Z","last_seen":"2026-02-05T00:50:38.497549Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1831,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":517,"receive":1314,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-05","alert":"Sinkholed","trigger":"kokorashi.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-05","alert":"Sinkholed","trigger":"kokorashi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"kokorashi.com/","fqdn":"kokorashi.com","domain":"kokorashi.com","tld":"com"},"ip":{"addr":"162.43.122.65","port":443,"asn":131965,"as":"Xserver Inc.","country":"Japan","country_code":"JP"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-05T00:50:13.634Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.kokorashi.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 08 Dec 2025 03:34:01 GMT","end":"Sun, 08 Mar 2026 03:34:00 GMT"},"fingerprint":{"sha1":"9C:9B:CB:A0:3B:69:CA:3A:C8:1D:81:44:16:66:E5:23:0E:0D:37:26","sha256":"C7:8E:E4:ED:7E:4F:2B:D8:32:B4:59:01:A6:19:9E:99:43:76:F1:59:80:D3:FC:9A:AC:A9:69:81:1A:6E:43:E8"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: kokorashi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Feb 2026 00:50:14 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nlink: \u003chttps://kokorashi.com/wp-json/\u003e; rel=\"https://api.w.org/\", \u003chttps://kokorashi.com/wp-json/wp/v2/pages/50\u003e; rel=\"alternate\"; title=\"JSON\"; type=\"application/json\", \u003chttps://kokorashi.com/\u003e; rel=shortlink\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"WordPress","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"jQuery Migrate:3.4.1","description":"Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.","website":"https://github.com/jquery/jquery-migrate","common_platform_enumeration":"","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Slick","description":"","website":"https://kenwheeler.github.io/slick","common_platform_enumeration":"","icon":"Slick.svg","categories":["JavaScript libraries"]},{"name":"WordPress Block Editor","description":"Sites using the WordPress Block Editor, also known as Gutenberg.","website":"https://wordpress.org/gutenberg/","common_platform_enumeration":"","icon":"WordPress.svg","categories":["Page builders"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}],"data":{"size":117420,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (19126)","md5":"df46b4a7e5e15caf1946ad601eff7e45","sha1":"dc11162bfff4b80792288eea0493fc7d842d6d69","sha256":"19f795b55858e03bbf1c56c7a866f618ae95a27cab76eea47fba7b7b63d74b82","sha512":"847532b0903860972504e9abbc1b496d49991c5cd5e214238a8f373f921432e7477d48d559a0f266e34ea2cb8503a3fd4599d9659a3030344810c811859b13c1","ssdeep":"1536:71eJ0GLaZmUuXypV0hW3je4c+Z9YNCMb2tLYgzHO0zHOcVqrfjUqnXTcakUd7Ylr:71eJBiEWjFacV6g3Ud7Ylr","tlshash":"0eb30a6253a248fe3bdf9b68562cb70872499802ca8557ddf1b9c05873ccfd948f271a","first_seen":"2026-02-05T00:24:41.242086Z","last_seen":"2026-02-05T00:50:38.498317Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1616,"timings":{"blocked":527,"dns":1,"connect":259,"send":0,"wait":562,"receive":0,"ssl":264},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-05","alert":"Sinkholed","trigger":"kokorashi.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-05","alert":"Sinkholed","trigger":"kokorashi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"kokorashi.com/wp-content/themes/jstork19/js/remodal.min.js?ver=1.1.1","fqdn":"kokorashi.com","domain":"kokorashi.com","tld":"com"},"ip":{"addr":"162.43.122.65","port":443,"asn":131965,"as":"Xserver Inc.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://kokorashi.com/","date":"2026-02-05T00:50:14.944Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.kokorashi.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 08 Dec 2025 03:34:01 GMT","end":"Sun, 08 Mar 2026 03:34:00 GMT"},"fingerprint":{"sha1":"9C:9B:CB:A0:3B:69:CA:3A:C8:1D:81:44:16:66:E5:23:0E:0D:37:26","sha256":"C7:8E:E4:ED:7E:4F:2B:D8:32:B4:59:01:A6:19:9E:99:43:76:F1:59:80:D3:FC:9A:AC:A9:69:81:1A:6E:43:E8"}}},"request":{"raw":"GET /wp-content/themes/jstork19/js/remodal.min.js?ver=1.1.1 HTTP/1.1\r\nHost: kokorashi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kokorashi.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Feb 2026 00:50:15 GMT\r\ncontent-type: application/javascript\r\nvary: Accept-Encoding\r\nlast-modified: Tue, 16 Jul 2024 12:03:14 GMT\r\netag: W/\"1e8d-61d5c21623a4b\"\r\nexpires: Thu, 12 Feb 2026 00:50:15 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":7821,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (7543)","md5":"27766f7f253c55e082376b092bcf2f1e","sha1":"8e527f81ca9309a3227758bec8d71e3a561e5939","sha256":"b51edfcf67c27b272a23dfd5f262fd9f24dce25235e24836426eb3647baea711","sha512":"6bf2b05d950cb8dd0dd9aa93fe7baf629ea6835cca83c39fbe8bdb2258780722f0f81278b03ac9c1033f89239de7aee0c7ec92d29422c40e049f10651e0acbe8","ssdeep":"192:hefOxOVO4OrOIBQdFIcNC3pbkMMZz3+r+xvew4S6EBTTRjD8+vBFsnBMn:hosW3StBQxNCZAtT+6EEVVZPsn6n","tlshash":"e0f173c9fb30315986af0536607f5405573158b9a90d08a8b1bdd8da2e38add2773f3b","first_seen":"2023-03-07T01:14:40Z","last_seen":"2026-06-08T10:41:10.422711Z","times_seen":1015,"resource_available":true,"data":null}},"time_used":517,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":517,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-05","alert":"Sinkholed","trigger":"kokorashi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-05","alert":"Sinkholed","trigger":"kokorashi.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.2/webfonts/fa-solid-900.woff2","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://kokorashi.com/","date":"2026-02-05T00:50:15.572Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 13 Jan 2026 22:16:05 GMT","end":"Mon, 13 Apr 2026 23:15:55 GMT"},"fingerprint":{"sha1":"D9:00:47:77:A5:47:66:A1:6F:DA:EB:4B:BB:BF:67:49:BF:2C:A4:75","sha256":"07:A7:3E:4A:B2:9F:0A:07:6C:78:A7:7B:DC:2B:68:A1:84:7A:7F:1B:45:6C:71:8E:5E:79:F3:11:1A:6C:4F:62"}}},"request":{"raw":"GET /ajax/libs/font-awesome/6.5.2/webfonts/fa-solid-900.woff2 HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://kokorashi.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdnjs.cloudflare.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 05 Feb 2026 00:50:15 GMT\r\ncontent-type: application/octet-stream; charset=utf-8\r\ncontent-length: 156400\r\ncf-ray: 9c8e699f7f4c56a5-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\netag: \"660cc074-262f0\"\r\nlast-modified: Wed, 03 Apr 2024 02:35:32 GMT\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/kv\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 1894254\r\nexpires: Tue, 26 Jan 2027 00:50:15 GMT\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=eWuuT4syCuabqByw5AyW1EDSjhEFIMwnDBu0425tA9U%2FnhwA4bAA7LKJJ7419Nl%2B7IwSvX6PkTt6kuN8fq3l2eKLXYSmZAqPtI40RyiCRxurtPuFP4jzFXk3%2F0TrCO%2FvHHtwgKF0\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":156400,"size_decoded":0,"mime_type":"application/octet-stream; charset=utf-8","magic":"Web Open Font Format (Version 2), TrueType, length 156400, version 773.1280","md5":"1ec0ba058c021acf7feaa18081445d63","sha1":"73e7eabf7a8ae9be149a85d196c9f3f26622925b","sha256":"ae17c16afbea216707b2203ea1cf9bdb45b9bfe47d0f4ae3258ddbc6294dd02f","sha512":"16a1b8a067ad4a33dcf4483c8370ca42e32f1385e3c4e717f8d0ce9995ca1f8397b15a63c0cee044c4b0fca96c4b648c850f483eeb1188a20f8b6cbf11d2b208","ssdeep":"3072:T0NNdf7uJ/Q8zfLtuI3m4uTtijwbr+mV+5ZUTRjV:AN7r8jMbgjwvOrU3","tlshash":"b6e3139a9a1f63d89c3cd982f61ef3fb715aadab1f521220193149f9d04f0af5035a4c","first_seen":"2024-04-05T18:44:58Z","last_seen":"2026-06-08T09:39:54.353432Z","times_seen":12080,"resource_available":false,"data":null}},"time_used":37,"timings":{"blocked":12,"dns":0,"connect":0,"send":0,"wait":13,"receive":12,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kokorashi.com/wp-content/uploads/2023/11/cropped-gold-2-32x32.png","fqdn":"kokorashi.com","domain":"kokorashi.com","tld":"com"},"ip":{"addr":"162.43.122.65","port":443,"asn":131965,"as":"Xserver Inc.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://kokorashi.com/","date":"2026-02-05T00:50:16.231Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.kokorashi.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 08 Dec 2025 03:34:01 GMT","end":"Sun, 08 Mar 2026 03:34:00 GMT"},"fingerprint":{"sha1":"9C:9B:CB:A0:3B:69:CA:3A:C8:1D:81:44:16:66:E5:23:0E:0D:37:26","sha256":"C7:8E:E4:ED:7E:4F:2B:D8:32:B4:59:01:A6:19:9E:99:43:76:F1:59:80:D3:FC:9A:AC:A9:69:81:1A:6E:43:E8"}}},"request":{"raw":"GET /wp-content/uploads/2023/11/cropped-gold-2-32x32.png HTTP/1.1\r\nHost: kokorashi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kokorashi.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Feb 2026 00:50:16 GMT\r\ncontent-type: image/png\r\ncontent-length: 1571\r\nlast-modified: Wed, 08 May 2024 11:46:35 GMT\r\netag: \"623-617efdac38d7e\"\r\nexpires: Thu, 12 Feb 2026 00:50:16 GMT\r\ncache-control: max-age=604800\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1571,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"2a99152cc70f895c9c54b10d96040a0f","sha1":"8eb209f0450bae2125e45c92d13c8be6dfcb4e33","sha256":"b501703ffff96eee068f7c7a7944e2ab396eaaded76d789f455a323cf7e5295a","sha512":"d2fefbe271c61edb9dfa8a4ac8af0f6c3eed7be2592527df892d04b9569ecf602a8abcb315909adbe24ab4aded5b44b4f1b5a6f0500ae9075fb6ccf9c60a45fc","ssdeep":"","tlshash":"48310c69459fd624c02b23e193d4f0e75de70b6c05106df862b1ca69e030e6f1600f49","first_seen":"2026-01-20T15:53:37.703098Z","last_seen":"2026-02-05T00:50:38.500059Z","times_seen":3,"resource_available":false,"data":null}},"time_used":551,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":550,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-05","alert":"Sinkholed","trigger":"kokorashi.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-05","alert":"Sinkholed","trigger":"kokorashi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"s.w.org/images/core/emoji/17.0.2/svg/2705.svg","fqdn":"s.w.org","domain":"w.org","tld":"org"},"ip":{"addr":"192.0.77.48","port":443,"asn":2635,"as":"AUTOMATTIC","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://kokorashi.com/","date":"2026-02-05T00:50:16.520Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s.w.org","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 19:44:42 GMT","end":"Wed, 25 Mar 2026 19:44:41 GMT"},"fingerprint":{"sha1":"8F:9B:8F:03:41:B5:80:0E:25:D1:4E:CC:17:8F:AE:CC:07:2D:12:90","sha256":"9C:0E:06:15:FA:81:A9:AD:A3:69:4C:1F:54:C7:64:DA:9D:26:0F:E5:D6:E2:77:5E:AC:1D:27:17:D0:CC:E5:9C"}}},"request":{"raw":"GET /images/core/emoji/17.0.2/svg/2705.svg HTTP/1.1\r\nHost: s.w.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kokorashi.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Feb 2026 00:50:16 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 482\r\nlast-modified: Fri, 07 Nov 2025 05:21:38 GMT\r\nx-frame-options: SAMEORIGIN\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\naccess-control-allow-methods: GET, HEAD\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-nc: HIT arn 10\r\nserver-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=0.0\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":482,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"212e30e47232be03033a87dc58edaa95","sha1":"4d69c4a3dc57503e08b76c774135bfe83e8b1f51","sha256":"1f026beb67630abcdbc341651b1c17591aa76261296a9fb118793765964eb4e9","sha512":"13f153263dbf35f91793e8f3fe7249ce87c4854620c2d97f79646c70bbb2f71c5c3759496ffd101fbc6ef9657b19595fe782200649a96473becd1ad7dae1f72e","ssdeep":"","tlshash":"22f00e24a37296804862c2487ff439e1280923b9110014ba6507971ce08f1ab700a888","first_seen":"2023-04-17T01:55:30Z","last_seen":"2026-06-08T07:19:58.989556Z","times_seen":7162,"resource_available":false,"data":null}},"time_used":73,"timings":{"blocked":31,"dns":1,"connect":7,"send":0,"wait":8,"receive":1,"ssl":21},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kokorashi.com/wp-content/themes/jstork19/js/scripts.js","fqdn":"kokorashi.com","domain":"kokorashi.com","tld":"com"},"ip":{"addr":"162.43.122.65","port":443,"asn":131965,"as":"Xserver Inc.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://kokorashi.com/","date":"2026-02-05T00:50:14.969Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.kokorashi.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 08 Dec 2025 03:34:01 GMT","end":"Sun, 08 Mar 2026 03:34:00 GMT"},"fingerprint":{"sha1":"9C:9B:CB:A0:3B:69:CA:3A:C8:1D:81:44:16:66:E5:23:0E:0D:37:26","sha256":"C7:8E:E4:ED:7E:4F:2B:D8:32:B4:59:01:A6:19:9E:99:43:76:F1:59:80:D3:FC:9A:AC:A9:69:81:1A:6E:43:E8"}}},"request":{"raw":"GET /wp-content/themes/jstork19/js/scripts.js HTTP/1.1\r\nHost: kokorashi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kokorashi.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Feb 2026 00:50:15 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 64\r\nlast-modified: Tue, 16 Jul 2024 12:03:14 GMT\r\netag: \"40-61d5c21623a4b\"\r\nexpires: Thu, 12 Feb 2026 00:50:15 GMT\r\ncache-control: max-age=604800\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":64,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"c39ef3d9a9cafa77d2308c86a639986f","sha1":"669ec746d48fe7a0b8cca93cd59d0eafc1f51632","sha256":"fd2ec0f71087c44261623b4732fb7bfdeaf8babbe8a49eb5aff72e5ad0cb2fc8","sha512":"f3205114ae79cfe303ea78a394cfcddd9942d1b5fd1175a4b0fd45ca57349e4299c844adea4b75777f34c9a56235c9fbe219065cb02921b31dd42989348fec8c","ssdeep":"","tlshash":"1ea0021f64586298897621637cf7211c1895a508bf5d74d4155490c086a27792615a1f","first_seen":"2023-08-20T22:32:01Z","last_seen":"2026-05-13T21:35:23.83846Z","times_seen":29,"resource_available":true,"data":null}},"time_used":516,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":516,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-05","alert":"Sinkholed","trigger":"kokorashi.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-05","alert":"Sinkholed","trigger":"kokorashi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"kokorashi.com/wp-content/themes/jstork19/css/slick.min.css","fqdn":"kokorashi.com","domain":"kokorashi.com","tld":"com"},"ip":{"addr":"162.43.122.65","port":443,"asn":131965,"as":"Xserver Inc.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://kokorashi.com/","date":"2026-02-05T00:50:14.935Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.kokorashi.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 08 Dec 2025 03:34:01 GMT","end":"Sun, 08 Mar 2026 03:34:00 GMT"},"fingerprint":{"sha1":"9C:9B:CB:A0:3B:69:CA:3A:C8:1D:81:44:16:66:E5:23:0E:0D:37:26","sha256":"C7:8E:E4:ED:7E:4F:2B:D8:32:B4:59:01:A6:19:9E:99:43:76:F1:59:80:D3:FC:9A:AC:A9:69:81:1A:6E:43:E8"}}},"request":{"raw":"GET /wp-content/themes/jstork19/css/slick.min.css HTTP/1.1\r\nHost: kokorashi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kokorashi.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Feb 2026 00:50:15 GMT\r\ncontent-type: text/css\r\nvary: Accept-Encoding\r\nlast-modified: Tue, 16 Jul 2024 12:03:14 GMT\r\netag: W/\"1799-61d5c21622aab\"\r\nexpires: Thu, 12 Feb 2026 00:50:15 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6041,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (6031), with no line terminators","md5":"a121004423567a3ef2108bccc2240629","sha1":"bc4d4fb3a56b9547a0b69744a76a19f607d3769b","sha256":"7da76980ef8d00043584a12a85d7e12b53bf75feda93de3e6c9d3512cfa05b32","sha512":"eedbd2f5bcc43cd0840fcf8a9a846e1a12e2a5f4e8df7199590b5775259010f13f2c09859b108599f6a779de872a865f824d52ce6d400df942c0a1f7c3aab9d8","ssdeep":"48:4qtKTAUpAU3ijaiYCaoiOi5wGjWDc/j8YBwSrBHuARJwzNIJMvcZjffGD7us6136:xKAyAdmv0Ind138zNIJzZmK13SCzb0Rz","tlshash":"b7c13029a1d25465d0b7c70219a7d1c073dbb882b7358695f9fe8307c6ce3a60aea5cc","first_seen":"2026-02-05T00:24:41.246719Z","last_seen":"2026-02-05T00:50:38.501909Z","times_seen":2,"resource_available":false,"data":null}},"time_used":261,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":261,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-05","alert":"Sinkholed","trigger":"kokorashi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-05","alert":"Sinkholed","trigger":"kokorashi.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"kokorashi.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1","fqdn":"kokorashi.com","domain":"kokorashi.com","tld":"com"},"ip":{"addr":"162.43.122.65","port":443,"asn":131965,"as":"Xserver Inc.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://kokorashi.com/","date":"2026-02-05T00:50:14.938Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.kokorashi.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 08 Dec 2025 03:34:01 GMT","end":"Sun, 08 Mar 2026 03:34:00 GMT"},"fingerprint":{"sha1":"9C:9B:CB:A0:3B:69:CA:3A:C8:1D:81:44:16:66:E5:23:0E:0D:37:26","sha256":"C7:8E:E4:ED:7E:4F:2B:D8:32:B4:59:01:A6:19:9E:99:43:76:F1:59:80:D3:FC:9A:AC:A9:69:81:1A:6E:43:E8"}}},"request":{"raw":"GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1\r\nHost: kokorashi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kokorashi.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Feb 2026 00:50:15 GMT\r\ncontent-type: application/javascript\r\nvary: Accept-Encoding\r\nlast-modified: Wed, 30 Aug 2023 01:31:10 GMT\r\netag: W/\"3509-60419e1d83380\"\r\nexpires: Thu, 12 Feb 2026 00:50:15 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":13577,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (13479)","md5":"9ffeb32e2d9efbf8f70caabded242267","sha1":"3ad0c10e501ac2a9bfa18f9cd7e700219b378738","sha256":"5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89","sha512":"8d6be545508a1c38278b8ad780c3758ae48a25e4e12eee443375aa56031d9b356f8c90f22d4f251140fa3f65603af40523165e33cae2e2d62fc78ec106e3d731","ssdeep":"192:5rprDN+sag6ifKIUpQI99P1tLm9kdgyq1+J3aCJQ+h4MPLORq:5rprxaefKI0LP19m4q1WW+h4Mjp","tlshash":"9952c8adb56679724eb721b8f03bd24f71b205de560d8940d19cc4f6282dc6e812bf78","first_seen":"2023-05-09T19:21:05Z","last_seen":"2026-06-08T11:34:14.749323Z","times_seen":825240,"resource_available":true,"data":null}},"time_used":516,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":516,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-05","alert":"Sinkholed","trigger":"kokorashi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-05","alert":"Sinkholed","trigger":"kokorashi.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"kokorashi.com/wp-content/uploads/2023/12/%E3%82%B9%E3%82%AF%E3%83%AA%E3%83%BC%E3%83%B3%E3%82%B7%E3%83%A7%E3%83%83%E3%83%88-2023-12-04-23.06.31.png","fqdn":"kokorashi.com","domain":"kokorashi.com","tld":"com"},"ip":{"addr":"162.43.122.65","port":443,"asn":131965,"as":"Xserver Inc.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://kokorashi.com/","date":"2026-02-05T00:50:14.941Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.kokorashi.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 08 Dec 2025 03:34:01 GMT","end":"Sun, 08 Mar 2026 03:34:00 GMT"},"fingerprint":{"sha1":"9C:9B:CB:A0:3B:69:CA:3A:C8:1D:81:44:16:66:E5:23:0E:0D:37:26","sha256":"C7:8E:E4:ED:7E:4F:2B:D8:32:B4:59:01:A6:19:9E:99:43:76:F1:59:80:D3:FC:9A:AC:A9:69:81:1A:6E:43:E8"}}},"request":{"raw":"GET /wp-content/uploads/2023/12/%E3%82%B9%E3%82%AF%E3%83%AA%E3%83%BC%E3%83%B3%E3%82%B7%E3%83%A7%E3%83%83%E3%83%88-2023-12-04-23.06.31.png HTTP/1.1\r\nHost: kokorashi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kokorashi.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Feb 2026 00:50:15 GMT\r\ncontent-type: image/png\r\ncontent-length: 2533484\r\nlast-modified: Mon, 04 Dec 2023 14:06:49 GMT\r\netag: \"26a86c-60bafa10d35e6\"\r\nexpires: Thu, 12 Feb 2026 00:50:15 GMT\r\ncache-control: max-age=604800\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2533484,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1446 x 792, 8-bit/color RGBA, non-interlaced","md5":"3fa56c3cf542e279b13317ce40ba36c3","sha1":"c09f2b5cd93883c46ab56e08568db4ad88ccabff","sha256":"183958bdabbb67387ad18c3abea6cf0366d1ed758bc25d067f97a9859e8c4c1f","sha512":"6fde5dc251d3f48ed31648f0b88361530fe6fb60179a6f98b4abebe2c69264dcdac0f39565c7cbf1b272ed5757a9069f65c89e274cc6e2e1c0ffa3aff44f6186","ssdeep":"24576:t/tf6PTQGVvijFUK+3ap2foW95lo1jGVXf3ruuxaMPW3Td:xN6Pb1l9u9W3loVGZf7uuxPWDd","tlshash":"102523e28dce56110dd7cdc29d0f9794b96d928187fa3478e32871f3ea89f9580931c9","first_seen":"2026-02-05T00:24:41.248426Z","last_seen":"2026-02-05T00:50:38.502897Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1895,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":517,"receive":1378,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-05","alert":"Sinkholed","trigger":"kokorashi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-05","alert":"Sinkholed","trigger":"kokorashi.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.2/webfonts/fa-regular-400.woff2","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://kokorashi.com/","date":"2026-02-05T00:50:15.565Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 13 Jan 2026 22:16:05 GMT","end":"Mon, 13 Apr 2026 23:15:55 GMT"},"fingerprint":{"sha1":"D9:00:47:77:A5:47:66:A1:6F:DA:EB:4B:BB:BF:67:49:BF:2C:A4:75","sha256":"07:A7:3E:4A:B2:9F:0A:07:6C:78:A7:7B:DC:2B:68:A1:84:7A:7F:1B:45:6C:71:8E:5E:79:F3:11:1A:6C:4F:62"}}},"request":{"raw":"GET /ajax/libs/font-awesome/6.5.2/webfonts/fa-regular-400.woff2 HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://kokorashi.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdnjs.cloudflare.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 05 Feb 2026 00:50:15 GMT\r\ncontent-type: application/octet-stream; charset=utf-8\r\ncontent-length: 25392\r\ncf-ray: 9c8e699f7f4e56a5-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\netag: \"660cc074-6330\"\r\nlast-modified: Wed, 03 Apr 2024 02:35:32 GMT\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/kv\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 1221759\r\nexpires: Tue, 26 Jan 2027 00:50:15 GMT\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=H7GCQz9QUk7q%2FkjNCdKJ%2FHs7mBi0JsFwVsU5EaYjHkJDZ8TnW1Wkft1HvRqpUBFB3mXJLI5%2Bddv5DeSIXL0oz%2BBTTjAMNC3jZt%2FiOk2jxCUVAARiddlDYs0SVS1i6%2FxrGRdOZ6YF\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":25392,"size_decoded":0,"mime_type":"application/octet-stream; charset=utf-8","magic":"Web Open Font Format (Version 2), TrueType, length 25392, version 773.1280","md5":"aa7c5fa494807f7a9ec907defee083e8","sha1":"8c9331bf363872cd84f2d1089b4d72fc21784cbd","sha256":"c27da6f833431da5aa295c44540bfac0fd8270ba6a3c4346427006d8a7b34b76","sha512":"67762c4dcf59c2e2989d3bd7294b9f80cf61e00b437230a94a30993af60e060fe2ecdc34510a3c37b026c6d16b7151e311a1cce99fffd5c1771b6332f2e0c53f","ssdeep":"768:P4XxqHUwrxhT2ZYg+pQZizxLhcgUlLPpxN:PHbdVxLoVl","tlshash":"16b2e0ce0a4e788bd827853d6ad45d4e9cb3c1c26bad90aedd3f06dd132b388e56d441","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T09:39:54.372612Z","times_seen":3047,"resource_available":false,"data":null}},"time_used":44,"timings":{"blocked":18,"dns":0,"connect":0,"send":0,"wait":11,"receive":15,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v50/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.3","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://kokorashi.com/","date":"2026-02-05T00:50:15.563Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 12 Jan 2026 08:37:55 GMT","end":"Mon, 06 Apr 2026 08:37:54 GMT"},"fingerprint":{"sha1":"C9:11:F3:8A:1F:95:BA:78:F0:71:09:AC:AA:E5:AC:D1:ED:83:E4:04","sha256":"61:45:36:53:9C:8E:E6:E3:72:93:D5:B6:2E:25:31:08:2F:70:5B:C8:FA:43:EA:70:B8:CE:11:BF:74:C7:92:98"}}},"request":{"raw":"GET /s/roboto/v50/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://kokorashi.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 40128\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 31 Jan 2026 18:37:38 GMT\r\nexpires: Sun, 31 Jan 2027 18:37:38 GMT\r\ncache-control: public, max-age=31536000\r\nage: 367957\r\nlast-modified: Tue, 18 Nov 2025 19:00:07 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40128,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 40128, version 1.0","md5":"9a01b69183a9604ab3a439e388b30501","sha1":"8ed1d59003d0dbe6360481017b44665153665fbe","sha256":"20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2","sha512":"0e6795255b6eea00b5403fd7e3b904d52776d49ac63a31c2778361262883697943aedcb29feee85694ba6f19eaa34dddb9a5bfe7118f4a25b4757e92c331feca","ssdeep":"768:Vce3jkow68wmT4IBX0tXdlSirS61gSjcz0GPwHbP+w2jec56O:VcI/iEEEtXdFJj+0GPwHbP+w5rO","tlshash":"3703023a5e3ccf1a84157a703950f6d9a8481e548e9d143b4f1ac7bf085dde2209b6d4","first_seen":"2025-01-08T22:59:02.845106Z","last_seen":"2026-06-08T11:34:50.298278Z","times_seen":873298,"resource_available":false,"data":null}},"time_used":204,"timings":{"blocked":93,"dns":0,"connect":8,"send":0,"wait":8,"receive":9,"ssl":82},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kokorashi.com/wp-content/uploads/2023/11/cropped-gold-2-192x192.png","fqdn":"kokorashi.com","domain":"kokorashi.com","tld":"com"},"ip":{"addr":"162.43.122.65","port":443,"asn":131965,"as":"Xserver Inc.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://kokorashi.com/","date":"2026-02-05T00:50:16.228Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.kokorashi.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 08 Dec 2025 03:34:01 GMT","end":"Sun, 08 Mar 2026 03:34:00 GMT"},"fingerprint":{"sha1":"9C:9B:CB:A0:3B:69:CA:3A:C8:1D:81:44:16:66:E5:23:0E:0D:37:26","sha256":"C7:8E:E4:ED:7E:4F:2B:D8:32:B4:59:01:A6:19:9E:99:43:76:F1:59:80:D3:FC:9A:AC:A9:69:81:1A:6E:43:E8"}}},"request":{"raw":"GET /wp-content/uploads/2023/11/cropped-gold-2-192x192.png HTTP/1.1\r\nHost: kokorashi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kokorashi.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Feb 2026 00:50:16 GMT\r\ncontent-type: image/png\r\ncontent-length: 17820\r\nlast-modified: Wed, 08 May 2024 11:46:35 GMT\r\netag: \"459c-617efdac33f5e\"\r\nexpires: Thu, 12 Feb 2026 00:50:16 GMT\r\ncache-control: max-age=604800\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":17820,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced","md5":"6d33049138d4855e46019cd25a261a01","sha1":"75cb41105f7c563eb85363e5165bac2d5c7cb162","sha256":"b3fab73d59ca90194032941d3cdd535fa48681d2732a1bc24e99e56a685a0dac","sha512":"54635c7fea2238ec011cd5346ed888c5fffa2a776e45e6512e19abff98d1fb89ea7847576b6dbc503893d32b519d0b1c4f23087d621d70eb7f26b98743105e22","ssdeep":"384:OotFHHzjsA//rF/VYkWmxU2o6vlwwxiFdL+cQ/wqaor5+6i+:OOHPP7skR9wciFN+Tz55","tlshash":"4182cf9407c323b941ec5c96d43b6af4c435bfa29223dfd91386939bae5024307fa04c","first_seen":"2026-01-20T15:53:37.696003Z","last_seen":"2026-02-05T00:50:38.504534Z","times_seen":3,"resource_available":false,"data":null}},"time_used":551,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":550,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-05","alert":"Sinkholed","trigger":"kokorashi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-05","alert":"Sinkholed","trigger":"kokorashi.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"s.w.org/images/core/emoji/17.0.2/svg/1f3af.svg","fqdn":"s.w.org","domain":"w.org","tld":"org"},"ip":{"addr":"192.0.77.48","port":443,"asn":2635,"as":"AUTOMATTIC","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://kokorashi.com/","date":"2026-02-05T00:50:16.524Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s.w.org","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 19:44:42 GMT","end":"Wed, 25 Mar 2026 19:44:41 GMT"},"fingerprint":{"sha1":"8F:9B:8F:03:41:B5:80:0E:25:D1:4E:CC:17:8F:AE:CC:07:2D:12:90","sha256":"9C:0E:06:15:FA:81:A9:AD:A3:69:4C:1F:54:C7:64:DA:9D:26:0F:E5:D6:E2:77:5E:AC:1D:27:17:D0:CC:E5:9C"}}},"request":{"raw":"GET /images/core/emoji/17.0.2/svg/1f3af.svg HTTP/1.1\r\nHost: s.w.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kokorashi.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Feb 2026 00:50:16 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Fri, 07 Nov 2025 05:22:03 GMT\r\nvary: Accept-Encoding\r\nx-frame-options: SAMEORIGIN\r\ncontent-encoding: br\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-methods: GET, HEAD\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-nc: HIT arn 10\r\nserver-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=0.0\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1029,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"90eb8387713284f854d84ae86a5ff811","sha1":"61b30d8748b949a6feeb744f34b454c21e972f43","sha256":"e6c11ef16f86c3c06a36ce4e3af7bd3ec27b7a8f1791f510b0e7a1638edbfca2","sha512":"c83efe74ecfd341c188248756fc31c417aff228cc93ae66ca4316c996ad136b341b2caac893c3f86487e6ed48d86179d663b516584e2f708bdbf0635b4cca269","ssdeep":"","tlshash":"6711a2d6123ce0ca4d8bceac9d5bbc51208950ef472e5bc431d459049c6a6df7662e34","first_seen":"2023-05-23T23:57:14Z","last_seen":"2026-06-08T06:00:08.582303Z","times_seen":1657,"resource_available":false,"data":null}},"time_used":68,"timings":{"blocked":29,"dns":1,"connect":7,"send":0,"wait":8,"receive":0,"ssl":19},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kokorashi.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1","fqdn":"kokorashi.com","domain":"kokorashi.com","tld":"com"},"ip":{"addr":"162.43.122.65","port":443,"asn":131965,"as":"Xserver Inc.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://kokorashi.com/","date":"2026-02-05T00:50:14.936Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.kokorashi.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 08 Dec 2025 03:34:01 GMT","end":"Sun, 08 Mar 2026 03:34:00 GMT"},"fingerprint":{"sha1":"9C:9B:CB:A0:3B:69:CA:3A:C8:1D:81:44:16:66:E5:23:0E:0D:37:26","sha256":"C7:8E:E4:ED:7E:4F:2B:D8:32:B4:59:01:A6:19:9E:99:43:76:F1:59:80:D3:FC:9A:AC:A9:69:81:1A:6E:43:E8"}}},"request":{"raw":"GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1\r\nHost: kokorashi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kokorashi.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Feb 2026 00:50:15 GMT\r\ncontent-type: application/javascript\r\nvary: Accept-Encoding\r\nlast-modified: Wed, 08 Nov 2023 02:09:03 GMT\r\netag: W/\"15601-6099a9244ee4c\"\r\nexpires: Thu, 12 Feb 2026 00:50:15 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":87553,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65447)","md5":"826eb77e86b02ab7724fe3d0141ff87c","sha1":"79cd3587d565afe290076a8d36c31c305a573d18","sha256":"cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf","sha512":"fc79fdb76763025dc39fac045a215ff155ef2f492a0e9640079d6f089fa6218af2b3ab7c6eaf636827dee9294e6939a95ab24554e870c976679c25567ad6374c","ssdeep":"1536:0RUX9uDgwxcy2KVBNwchN6SLaHEk2BSrBESp+a/IEk4aAocVi8SMBQ47GKO:sHNwcv9VBQpLl88SMBQ47GKO","tlshash":"7483f8df77ca702247ab30b9006f550bf276199d684d4400f159d8e9bcb8a4a827bf7e","first_seen":"2023-11-03T09:26:43Z","last_seen":"2026-06-08T11:34:14.724958Z","times_seen":895345,"resource_available":true,"data":null}},"time_used":518,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":518,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-05","alert":"Sinkholed","trigger":"kokorashi.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-05","alert":"Sinkholed","trigger":"kokorashi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"kokorashi.com/wp-content/uploads/2024/07/cropped-logo_KOKORASHI-AI_yellow-1536x307.png","fqdn":"kokorashi.com","domain":"kokorashi.com","tld":"com"},"ip":{"addr":"162.43.122.65","port":443,"asn":131965,"as":"Xserver Inc.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://kokorashi.com/","date":"2026-02-05T00:50:14.939Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.kokorashi.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 08 Dec 2025 03:34:01 GMT","end":"Sun, 08 Mar 2026 03:34:00 GMT"},"fingerprint":{"sha1":"9C:9B:CB:A0:3B:69:CA:3A:C8:1D:81:44:16:66:E5:23:0E:0D:37:26","sha256":"C7:8E:E4:ED:7E:4F:2B:D8:32:B4:59:01:A6:19:9E:99:43:76:F1:59:80:D3:FC:9A:AC:A9:69:81:1A:6E:43:E8"}}},"request":{"raw":"GET /wp-content/uploads/2024/07/cropped-logo_KOKORASHI-AI_yellow-1536x307.png HTTP/1.1\r\nHost: kokorashi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kokorashi.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Feb 2026 00:50:15 GMT\r\ncontent-type: image/png\r\ncontent-length: 64139\r\nlast-modified: Tue, 16 Jul 2024 12:28:09 GMT\r\netag: \"fa8b-61d5c7a7c2683\"\r\nexpires: Thu, 12 Feb 2026 00:50:15 GMT\r\ncache-control: max-age=604800\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":64139,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1536 x 307, 8-bit/color RGBA, non-interlaced","md5":"80cbfb74de4a71ce0a64f8a8a67a0522","sha1":"5463e9e84381669feda2eca186b055f493daafe0","sha256":"35162fe1c82f7cbdf8455abf566292ea3d28dad7f82234a60cd00ad59dfd242e","sha512":"14545f6e82c97641041f9576f474afd26668b05db53b11e42a353f393a9bedb773adbaa34c804f2ad12d94def149fad6ac774d512b11b2088b1a3c5792a2f8f4","ssdeep":"1536:QvMWRIPsNg327StqAyx8UQsmNLM7ICprxhWX3Fi:oMWRIPLG7o2hVhyFi","tlshash":"0653e03ccef2d56d8eff5877922181016bb105572505223c2273719fde051beb7a882b","first_seen":"2026-01-20T15:53:37.700995Z","last_seen":"2026-02-05T00:50:38.506012Z","times_seen":3,"resource_available":false,"data":null}},"time_used":777,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":516,"receive":261,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-05","alert":"Sinkholed","trigger":"kokorashi.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-05","alert":"Sinkholed","trigger":"kokorashi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"kokorashi.com/wp-content/themes/jstork19/js/slick.min.js?ver=1.5.9","fqdn":"kokorashi.com","domain":"kokorashi.com","tld":"com"},"ip":{"addr":"162.43.122.65","port":443,"asn":131965,"as":"Xserver Inc.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://kokorashi.com/","date":"2026-02-05T00:50:14.971Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.kokorashi.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 08 Dec 2025 03:34:01 GMT","end":"Sun, 08 Mar 2026 03:34:00 GMT"},"fingerprint":{"sha1":"9C:9B:CB:A0:3B:69:CA:3A:C8:1D:81:44:16:66:E5:23:0E:0D:37:26","sha256":"C7:8E:E4:ED:7E:4F:2B:D8:32:B4:59:01:A6:19:9E:99:43:76:F1:59:80:D3:FC:9A:AC:A9:69:81:1A:6E:43:E8"}}},"request":{"raw":"GET /wp-content/themes/jstork19/js/slick.min.js?ver=1.5.9 HTTP/1.1\r\nHost: kokorashi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kokorashi.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Feb 2026 00:50:15 GMT\r\ncontent-type: application/javascript\r\nvary: Accept-Encoding\r\nlast-modified: Tue, 16 Jul 2024 12:03:14 GMT\r\netag: W/\"a8f4-61d5c21623a4b\"\r\nexpires: Thu, 12 Feb 2026 00:50:15 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":43252,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (42862)","md5":"c060082afd659b6d588028470584fcb3","sha1":"4f87ccc4980d9ae4d105500ec1b0de8d5457ee4b","sha256":"13a544aa577df51cc73aed19ec64eecadf07ba4b1495a6b2c8f164e22aa98c34","sha512":"53b7edf747005509b629e91ea5d4817427a70b949116744c7c38ac93fa4bcddc5bfeee1281612cd8e799f5031a9074797ed2d72e4afd7428ca631b836300bb1b","ssdeep":"768:WrkkX123A5YHi6pWzYdlNWYcx16nnYdXRRMd2KYCQCsPShb1ez7RFmYH:uPrYdlNixEePiYH","tlshash":"5b13a649d204276285d721e62105c40eb3f7fb3cba22c0e435c9d3ea656ec4896d7bfa","first_seen":"2023-03-10T13:06:31Z","last_seen":"2026-05-31T18:59:08.581928Z","times_seen":95,"resource_available":true,"data":null}},"time_used":513,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":513,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-05","alert":"Sinkholed","trigger":"kokorashi.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-05","alert":"Sinkholed","trigger":"kokorashi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"kokorashi.com/wp-includes/js/wp-emoji-release.min.js?ver=6.9.1","fqdn":"kokorashi.com","domain":"kokorashi.com","tld":"com"},"ip":{"addr":"162.43.122.65","port":443,"asn":131965,"as":"Xserver Inc.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://kokorashi.com/","date":"2026-02-05T00:50:15.829Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.kokorashi.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 08 Dec 2025 03:34:01 GMT","end":"Sun, 08 Mar 2026 03:34:00 GMT"},"fingerprint":{"sha1":"9C:9B:CB:A0:3B:69:CA:3A:C8:1D:81:44:16:66:E5:23:0E:0D:37:26","sha256":"C7:8E:E4:ED:7E:4F:2B:D8:32:B4:59:01:A6:19:9E:99:43:76:F1:59:80:D3:FC:9A:AC:A9:69:81:1A:6E:43:E8"}}},"request":{"raw":"GET /wp-includes/js/wp-emoji-release.min.js?ver=6.9.1 HTTP/1.1\r\nHost: kokorashi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kokorashi.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 05 Feb 2026 00:50:15 GMT\r\ncontent-type: application/javascript\r\nvary: Accept-Encoding\r\nlast-modified: Wed, 03 Dec 2025 04:54:28 GMT\r\netag: W/\"58ea-6450501d8dde4\"\r\nexpires: Thu, 12 Feb 2026 00:50:15 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":22762,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (19823)","md5":"f0cc9ba5cf46af0cd73d521803e3b07e","sha1":"7d2a74f87dc70a39eccce3bae1d4cc404cb134f4","sha256":"fd59b0ebf6282ed71647bf2f6e0d1925bbfd1f270865a832079ebb60259aabca","sha512":"7ec44f08676c195547a623504c7105ef3d0acea5839675599598043f3e0b5a3386452e3db6fbea90722f7be9e6effdae1b89c49e2b05b22b8c415616e07d471d","ssdeep":"384:WzevzApRZTbXU/3o//bEPhXgA5POkpJTX:Wsk9XU/3o//YpXgAs+hX","tlshash":"7fa2959ba33a4e8f343e3bd78d968f4dc9da555321c0e079dbefb6c169a00568274c80","first_seen":"2025-11-10T19:52:32.864936Z","last_seen":"2026-06-08T11:36:15.645679Z","times_seen":263070,"resource_available":true,"data":null}},"time_used":667,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":667,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-05","alert":"Sinkholed","trigger":"kokorashi.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-05","alert":"Sinkholed","trigger":"kokorashi.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.2/css/all.min.css","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://kokorashi.com/","date":"2026-02-05T00:50:14.934Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 13 Jan 2026 22:16:05 GMT","end":"Mon, 13 Apr 2026 23:15:55 GMT"},"fingerprint":{"sha1":"D9:00:47:77:A5:47:66:A1:6F:DA:EB:4B:BB:BF:67:49:BF:2C:A4:75","sha256":"07:A7:3E:4A:B2:9F:0A:07:6C:78:A7:7B:DC:2B:68:A1:84:7A:7F:1B:45:6C:71:8E:5E:79:F3:11:1A:6C:4F:62"}}},"request":{"raw":"GET /ajax/libs/font-awesome/6.5.2/css/all.min.css HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kokorashi.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 05 Feb 2026 00:50:14 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 18938\r\ncf-ray: 9c8e699b78590b31-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"660cc074-49fa\"\r\nlast-modified: Wed, 03 Apr 2024 02:35:32 GMT\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/kv\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 1211599\r\nexpires: Tue, 26 Jan 2027 00:50:14 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=Xk3FanJXmzaFkUuTF4vMQLLXtF9RSp3ES3238QmKXrxKYsQRYJaDPEkaguLRdTTfHCN%2Bi%2B3W%2BMpHKp5yhPrnO36IgeYABJFkVVsSBDWLgo09pW1S5vWCz2dsyTjsbdIWmJrriBCf\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":103009,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (52282)","md5":"c325be79a5ecca85d68eb9e5b65a547a","sha1":"f2a96686228994a46961657df4c9405afec8e9c2","sha256":"5ceaaba22d75b58e04150311f596306562a3e595e27ed4b1dfa451b82dda9e50","sha512":"4a71f958af9b67180f1ece38b96217f8b2c9009f7fd8f90f299e508808fa4daf3ac3e7ec6f64e47267d1c955f7a419cc15c57ba103c9925f507af4825abdd6e8","ssdeep":"1536:t1MCMPMCMjMCM4MCMwMCM3sVM3709gbQZMfjSFOlyPG9dXgRM0J:W709gUGGFwyPG9dwRM0J","tlshash":"16a3a7f9e44c05d97732c44bab95b37c65b6f738d5810ca9f02f580c1ad26a822c6f7a","first_seen":"2024-04-05T18:44:57Z","last_seen":"2026-06-08T09:39:54.365628Z","times_seen":10841,"resource_available":true,"data":null}},"time_used":43,"timings":{"blocked":7,"dns":0,"connect":1,"send":0,"wait":14,"receive":2,"ssl":16},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}