Domain duro-custom.com
CLOUDFLARENET
Software information

cloudflare cloudflare

tcp/443 tcp/80 tcp/8443

  • GraphQL introspection is enabled.
    First seen 2025-11-25 09:47
    Last seen 2026-02-01 19:23
    Open for 68 days

    • Severity: medium
      Fingerprint: c2db3a1c40d490db1a0bbaa3fd865c711016aef32679fdc1e2ada4b513fae8ed

      GraphQL introspection enabled at /graphql
Types: 501 (by kind: ENUM: 48, INPUT_OBJECT: 116, INTERFACE: 26, OBJECT: 306, SCALAR: 5)
Operations:
- Query: Query | fields: allCartRules, allCatalogRules, allCustomerGroups, attributesForm, attributesList
- Mutation: Mutation | fields: addBundleProductsToCart, addCommentToPost, addConfigurableProductsToCart, addDownloadableProductsToCart, addProductsToCart
Directives: deprecated, include, oneOf, skip (total: 4)
      Found on 2026-02-01 19:23
      915.1 kBytes

    • Severity: medium
      Fingerprint: c2db3a1c40d490db1a0bbaa3fd865c711016aef32679fdc1e2ada4b5791cc3b0

      GraphQL introspection enabled at /graphql
Types: 501 (by kind: ENUM: 48, INPUT_OBJECT: 116, INTERFACE: 26, OBJECT: 306, SCALAR: 5)
Operations:
- Query: Query | fields: allCartRules, allCatalogRules, allCustomerGroups, attributesForm, attributesList
- Mutation: Mutation | fields: addBundleProductsToCart, addCommentToPost, addConfigurableProductsToCart, addDownloadableProductsToCart, addProductsToCart
Directives: deprecated, include, oneOf, skip (total: 4)

Detected: Magento
      Found on 2026-01-23 10:50
      915.1 kBytes

    • Severity: medium
      Fingerprint: c2db3a1c40d490db1a0bbaa3c2b2090fe4c1b11d764d4d73d0797f335b1e91bb

      GraphQL introspection enabled at /graphql
Types: 504 (by kind: ENUM: 48, INPUT_OBJECT: 119, INTERFACE: 26, OBJECT: 306, SCALAR: 5)
Operations:
- Query: Query | fields: allCartRules, allCatalogRules, allCustomerGroups, attributesForm, attributesList
- Mutation: Mutation | fields: addBundleProductsToCart, addCommentToPost, addConfigurableProductsToCart, addDownloadableProductsToCart, addProductsToCart
Directives: deprecated, include, oneOf, skip (total: 4)
      Found on 2025-12-01 15:14
      937.9 kBytes
    Create report

  • Open service 2606:4700:20::681a:989:8443 · duro-custom.com

    2026-01-23 10:50 

    HTTP/1.1 522 <none>
Date: Fri, 23 Jan 2026 10:50:31 GMT
Content-Length: 0
Connection: close
Server: cloudflare
Cache-Control: private, no-store
cf-cache-status: DYNAMIC
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
set-cookie: cf_use_ob=8443; Expires=Fri, 23 Jan 2026 10:51:01 GMT
set-cookie: cf_ob_info=522:9c26ba91bc713d98:SIN; Expires=Fri, 23 Jan 2026 10:51:01 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Content-Type-Options: nosniff
Speculation-Rules: "/cdn-cgi/speculation"
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=19540,cfOrigin;dur=0
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=bb4335fLIxkf8ykpHg345MGIvQDG8AyNVGo5bEEvOGz%2FPszg75WVGDD5kfreRHY31SNPVRawYuozncTh6XsVkX01kknP%2FKIR6YTxzYsb%2FvoVHqSZRu3HShCI"}]}
CF-RAY: 9c26ba91bc713d98-SIN
alt-svc: h3=":8443"; ma=86400
    Found 2026-01-23 by HttpPlugin
    Create report

  • Open service 2606:4700:20::681a:889:80 · duro-custom.com

    2026-01-23 10:50 

    HTTP/1.1 301 Moved Permanently
Date: Fri, 23 Jan 2026 10:50:11 GMT
Content-Length: 0
Connection: close
Location: https://duro-custom.com/
X-Content-Type-Options: nosniff
Speculation-Rules: "/cdn-cgi/speculation"
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=hIi1a5bLPVlJwNKw6sdZt9rTU937RtFfP%2FbVGAbBQrfpeCpTuDiqsQcidgsruhbXExxcJAXJtlCopdJ%2BzY9VZ%2BGoQIpb2e0oJuuoel39gf2aPm4TP5AbokkX"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server-Timing: cfEdge;dur=12,cfOrigin;dur=0
Server: cloudflare
CF-RAY: 9c26ba8b6e7ceffe-SJC
alt-svc: h3=":443"; ma=86400
    Found 2026-01-23 by HttpPlugin
    Create report

  • Open service 172.67.74.75:8443 · duro-custom.com

    2026-01-23 10:50 

    HTTP/1.1 522 <none>
Date: Fri, 23 Jan 2026 10:50:31 GMT
Content-Length: 0
Connection: close
Server: cloudflare
Cache-Control: private, no-store
cf-cache-status: DYNAMIC
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
set-cookie: cf_use_ob=8443; Expires=Fri, 23 Jan 2026 10:51:01 GMT
set-cookie: cf_ob_info=522:9c26ba914fcaaab6:YYZ; Expires=Fri, 23 Jan 2026 10:51:01 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Content-Type-Options: nosniff
Speculation-Rules: "/cdn-cgi/speculation"
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=19350,cfOrigin;dur=0
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=h%2Fyj1LhEG7AV7vXm2TTRQ8ExAsrPnkc3y98fkJdjeEXMiIeu%2Fn1olFTxsK3ZZQQkHbrAa%2FqxQH%2BtQIVaKKREwqkXw9cXsHnGHrqqa2KG"}]}
CF-RAY: 9c26ba914fcaaab6-YYZ
alt-svc: h3=":8443"; ma=86400
    Found 2026-01-23 by HttpPlugin
    Create report

  • Open service 2606:4700:20::ac43:4a4b:443 · duro-custom.com

    2026-01-23 10:50 

    HTTP/1.1 200 OK
Date: Fri, 23 Jan 2026 10:50:11 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Server: cloudflare
vary: Accept-Encoding
Set-Cookie: PHPSESSID=umj74mpr50bfrig22n81qsbri1; expires=Fri, 23 Jan 2026 11:50:11 GMT; Max-Age=3600; path=/; domain=duro-custom.com; secure; HttpOnly; SameSite=Lax
pragma: no-cache
Cache-Control: max-age=0, must-revalidate, no-cache, no-store
expires: Thu, 23 Jan 2025 03:07:28 GMT
content-security-policy: font-src www.paypalobjects.com fonts.gstatic.com use.typekit.net *.typekit.net *.gstatic.com *.alothemes.com *.magepow.com *.packlink.com 'self' data: data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.paypal.com *.ipg-online.com 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com www.paypalobjects.com player.vimeo.com https://www.google.com/recaptcha/ *.braintreegateway.com *.paypal.com google.com *.google.com www.facebook.com *.weltpixel.com 'self' 'unsafe-inline'; img-src data: assets.adobedtm.com amcglobal.sc.omtrdc.net dpm.demdex.net cm.everesttech.net *.adobe.com widgets.magentocommerce.com www.googleadservices.com *.google-analytics.com googleads.g.doubleclick.net www.google.com bid.g.doubleclick.net *.analytics.google.com www.googletagmanager.com *.ftcdn.net *.behance.net t.paypal.com www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com i.ytimg.com *.youtube.com p.typekit.net *.paypal.com *.typekit.net *.gstatic.com validator.swagger.io magefan.com cm.magefan.com *.disqus.com *.alothemes.com *.magepow.com *.packlink.com 'self' data: data: 'self' 'unsafe-inline'; script-src assets.adobedtm.com *.adobe.com www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com *.commerce-payment-services.com www.paypal.com www.sandbox.paypal.com www.paypalobjects.com t.paypal.com s.ytimg.com www.googleapis.com vimeo.com www.vimeo.com *.vimeocdn.com *.youtube.com https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ amcglobal.sc.omtrdc.net *.magento-ds.com use.typekit.net *.typekit.net google.com *.google.com *.cdn-apple.com *.braintreegateway.com *.disqus.com *.alothemes.com *.magepow.com *.gstatic.com connect.facebook.net 'self' 'unsafe-inline' 'unsafe-eval'; style-src *.adobe.com fonts.googleapis.com *.alothemes.com *.magepow.com *.packlink.com *.googleapis.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src *.adobe.com 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src dpm.demdex.net amcglobal.sc.omtrdc.net *.google-analytics.com www.googleadservices.com *.analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net vimeo.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.sandbox.paypal.com www.paypalobjects.com www.paypal.com pilot-payflowlink.paypal.com *.adobe.io performance.typekit.net *.sentry.io *.paypal.com google.com *.google.com *.braintreegateway.com *.braintree-api.com *.alothemes.com *.magepow.com 'self' 'unsafe-inline'; child-src http: https: blob: 'self' 'unsafe-inline'; default-src 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline';
content-security-policy: default-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google.com https://www.gstatic.com https://cdnjs.cloudflare.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' data: https:; connect-src 'self' https:; frame-src 'self' https://www.google.com; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'self';
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains; preload
referrer-policy: strict-origin-when-cross-origin
x-permitted-cross-domain-policies: none
permissions-policy: geolocation=(), microphone=(), camera=(), payment=(), usb=(), magnetometer=(), gyroscope=(), speaker=(), vibrate=(), fullscreen=(self), autoplay=(self)
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=%2BRXnPNdVxxmzmf%2Fc4TSHR984p9YxBrGOfNj5ODJ4HEAD218Bda8EzhFOviudhKxgpdY2MGKzewu6AVQNYWEtbGkXCCe3dP1k3UNWdfXyt5a21dKBchaBpqNQ"}]}
cf-cache-status: DYNAMIC
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Speculation-Rules: "/cdn-cgi/speculation"
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=29,cfOrigin;dur=172
CF-RAY: 9c26ba8bb89b0bea-AMS
alt-svc: h3=":443"; ma=86400
    Found 2026-01-23 by HttpPlugin
    Create report

  • Open service 172.67.74.75:443 · duro-custom.com

    2026-01-23 10:50 

    HTTP/1.1 200 OK
Date: Fri, 23 Jan 2026 10:50:11 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Server: cloudflare
vary: Accept-Encoding
Set-Cookie: PHPSESSID=il9h89rshib2gk06jgev01us66; expires=Fri, 23 Jan 2026 11:50:11 GMT; Max-Age=3600; path=/; domain=duro-custom.com; secure; HttpOnly; SameSite=Lax
pragma: no-cache
Cache-Control: max-age=0, must-revalidate, no-cache, no-store
expires: Thu, 23 Jan 2025 03:07:28 GMT
content-security-policy: font-src www.paypalobjects.com fonts.gstatic.com use.typekit.net *.typekit.net *.gstatic.com *.alothemes.com *.magepow.com *.packlink.com 'self' data: data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.paypal.com *.ipg-online.com 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com www.paypalobjects.com player.vimeo.com https://www.google.com/recaptcha/ *.braintreegateway.com *.paypal.com google.com *.google.com www.facebook.com *.weltpixel.com 'self' 'unsafe-inline'; img-src data: assets.adobedtm.com amcglobal.sc.omtrdc.net dpm.demdex.net cm.everesttech.net *.adobe.com widgets.magentocommerce.com www.googleadservices.com *.google-analytics.com googleads.g.doubleclick.net www.google.com bid.g.doubleclick.net *.analytics.google.com www.googletagmanager.com *.ftcdn.net *.behance.net t.paypal.com www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com i.ytimg.com *.youtube.com p.typekit.net *.paypal.com *.typekit.net *.gstatic.com validator.swagger.io magefan.com cm.magefan.com *.disqus.com *.alothemes.com *.magepow.com *.packlink.com 'self' data: data: 'self' 'unsafe-inline'; script-src assets.adobedtm.com *.adobe.com www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com *.commerce-payment-services.com www.paypal.com www.sandbox.paypal.com www.paypalobjects.com t.paypal.com s.ytimg.com www.googleapis.com vimeo.com www.vimeo.com *.vimeocdn.com *.youtube.com https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ amcglobal.sc.omtrdc.net *.magento-ds.com use.typekit.net *.typekit.net google.com *.google.com *.cdn-apple.com *.braintreegateway.com *.disqus.com *.alothemes.com *.magepow.com *.gstatic.com connect.facebook.net 'self' 'unsafe-inline' 'unsafe-eval'; style-src *.adobe.com fonts.googleapis.com *.alothemes.com *.magepow.com *.packlink.com *.googleapis.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src *.adobe.com 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src dpm.demdex.net amcglobal.sc.omtrdc.net *.google-analytics.com www.googleadservices.com *.analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net vimeo.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.sandbox.paypal.com www.paypalobjects.com www.paypal.com pilot-payflowlink.paypal.com *.adobe.io performance.typekit.net *.sentry.io *.paypal.com google.com *.google.com *.braintreegateway.com *.braintree-api.com *.alothemes.com *.magepow.com 'self' 'unsafe-inline'; child-src http: https: blob: 'self' 'unsafe-inline'; default-src 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline';
content-security-policy: default-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google.com https://www.gstatic.com https://cdnjs.cloudflare.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' data: https:; connect-src 'self' https:; frame-src 'self' https://www.google.com; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'self';
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains; preload
referrer-policy: strict-origin-when-cross-origin
x-permitted-cross-domain-policies: none
permissions-policy: geolocation=(), microphone=(), camera=(), payment=(), usb=(), magnetometer=(), gyroscope=(), speaker=(), vibrate=(), fullscreen=(self), autoplay=(self)
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=%2FtjkD27lgLktc2EymsNoVHm%2BRqZ5tMOWYU7Jkm6UMdovvABm7CKuMKEQCz7fYhs9ZWjNVzUL3bmCOQqduG5MmTF0ML%2FNHA9%2FIDDr5g%3D%3D"}]}
cf-cache-status: DYNAMIC
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Speculation-Rules: "/cdn-cgi/speculation"
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=12,cfOrigin;dur=385
CF-RAY: 9c26ba8d38cc114c-EWR
alt-svc: h3=":443"; ma=86400
    Found 2026-01-23 by HttpPlugin
    Create report

  • Open service 172.67.74.75:80 · duro-custom.com

    2026-01-23 10:50 

    HTTP/1.1 301 Moved Permanently
Date: Fri, 23 Jan 2026 10:50:11 GMT
Content-Length: 0
Connection: close
Location: https://duro-custom.com/
X-Content-Type-Options: nosniff
Speculation-Rules: "/cdn-cgi/speculation"
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=jMrPOf2JiJF6iRdtQJgvT5XqdyB8bYVxoE7dv3KWk3gAFbIYVKhnCWfEvcTOz7BMHX3e5I%2F8PXtfMVZl0wOdmz4RBQWE1IZwYeAyInld"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server-Timing: cfEdge;dur=14,cfOrigin;dur=0
Server: cloudflare
CF-RAY: 9c26ba8aab3e55e7-FRA
alt-svc: h3=":443"; ma=86400
    Found 2026-01-23 by HttpPlugin
    Create report

  • Open service 2606:4700:20::ac43:4a4b:8443 · duro-custom.com

    2026-01-23 10:50 

    HTTP/1.1 522 <none>
Date: Fri, 23 Jan 2026 10:50:31 GMT
Content-Length: 0
Connection: close
Server: cloudflare
Cache-Control: private, no-store
cf-cache-status: DYNAMIC
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
set-cookie: cf_use_ob=8443; Expires=Fri, 23 Jan 2026 10:51:01 GMT
set-cookie: cf_ob_info=522:9c26ba90ada419a3:LHR; Expires=Fri, 23 Jan 2026 10:51:01 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Content-Type-Options: nosniff
Speculation-Rules: "/cdn-cgi/speculation"
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=19340,cfOrigin;dur=0
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Cz1TK62PDAWalOFtN2Ovyt9TdONTRd8t6b%2F8qs1JDg5K3ro6adJsKIGdATwj2vqrLM1Vfm56sMyRWrzMO%2BqgespgpXRlyYQcwcX1340AX14em2zcFAWlQzfB"}]}
CF-RAY: 9c26ba90ada419a3-LHR
alt-svc: h3=":8443"; ma=86400
    Found 2026-01-23 by HttpPlugin
    Create report

  • Open service 2606:4700:20::ac43:4a4b:80 · duro-custom.com

    2026-01-23 10:50 

    HTTP/1.1 301 Moved Permanently
Date: Fri, 23 Jan 2026 10:50:10 GMT
Content-Length: 0
Connection: close
Location: https://duro-custom.com/
X-Content-Type-Options: nosniff
Speculation-Rules: "/cdn-cgi/speculation"
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=c61ItkL3RIqGQUIJml27fsgPXOKm2%2FcQ75arF%2FN1bz71KWuAwTjvOD5gUhxpg%2FMlltCKnPSK9ehdHXGcddq0mooacVyEJbykUgh%2Bsx%2FjR55LWyufIv9tH0fU"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server-Timing: cfEdge;dur=11,cfOrigin;dur=0
Server: cloudflare
CF-RAY: 9c26ba8a88ed1512-EWR
alt-svc: h3=":443"; ma=86400
    Found 2026-01-23 by HttpPlugin
    Create report

  • Open service 104.26.9.137:80 · duro-custom.com

    2026-01-23 10:50 

    HTTP/1.1 301 Moved Permanently
Date: Fri, 23 Jan 2026 10:50:10 GMT
Content-Length: 0
Connection: close
Location: https://duro-custom.com/
X-Content-Type-Options: nosniff
Speculation-Rules: "/cdn-cgi/speculation"
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=JmCBNFsx3hkfolSeDFwt9gcqWp%2F%2BNLywrZkHC6lO9QM2GWLQDAJoQJzs7fCO8hvN14IG8VSGPhpZyZgAATWeWDOfEbkqoUerzCfQ5DR2"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server-Timing: cfEdge;dur=16,cfOrigin;dur=0
Server: cloudflare
CF-RAY: 9c26ba8a79c066a8-AMS
alt-svc: h3=":443"; ma=86400
    Found 2026-01-23 by HttpPlugin
    Create report

  • Open service 104.26.9.137:8443 · duro-custom.com

    2026-01-23 10:50 

    HTTP/1.1 522 <none>
Date: Fri, 23 Jan 2026 10:50:31 GMT
Content-Length: 0
Connection: close
Server: cloudflare
Cache-Control: private, no-store
cf-cache-status: DYNAMIC
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
set-cookie: cf_use_ob=8443; Expires=Fri, 23 Jan 2026 10:51:01 GMT
set-cookie: cf_ob_info=522:9c26ba908adc8e2b:AMS; Expires=Fri, 23 Jan 2026 10:51:01 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Content-Type-Options: nosniff
Speculation-Rules: "/cdn-cgi/speculation"
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=19496,cfOrigin;dur=0
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Humpf6UjacK8uAAy3v59iUlhVXf7rYqmws%2B776jisldJhYbRlwBBxSKELPsuEI880wrZ1jOOAAaYlNn6qp9%2FggSt2sPkkiIfPOjOyGWn"}]}
CF-RAY: 9c26ba908adc8e2b-AMS
alt-svc: h3=":8443"; ma=86400
    Found 2026-01-23 by HttpPlugin
    Create report

  • Open service 104.26.8.137:443 · duro-custom.com

    2026-01-23 10:50 

    HTTP/1.1 200 OK
Date: Fri, 23 Jan 2026 10:50:11 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Server: cloudflare
vary: Accept-Encoding
Set-Cookie: PHPSESSID=rv8euek7h2tddtsq004hc6fjcs; expires=Fri, 23 Jan 2026 11:50:11 GMT; Max-Age=3600; path=/; domain=duro-custom.com; secure; HttpOnly; SameSite=Lax
pragma: no-cache
Cache-Control: max-age=0, must-revalidate, no-cache, no-store
expires: Thu, 23 Jan 2025 03:07:28 GMT
content-security-policy: font-src www.paypalobjects.com fonts.gstatic.com use.typekit.net *.typekit.net *.gstatic.com *.alothemes.com *.magepow.com *.packlink.com 'self' data: data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.paypal.com *.ipg-online.com 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com www.paypalobjects.com player.vimeo.com https://www.google.com/recaptcha/ *.braintreegateway.com *.paypal.com google.com *.google.com www.facebook.com *.weltpixel.com 'self' 'unsafe-inline'; img-src data: assets.adobedtm.com amcglobal.sc.omtrdc.net dpm.demdex.net cm.everesttech.net *.adobe.com widgets.magentocommerce.com www.googleadservices.com *.google-analytics.com googleads.g.doubleclick.net www.google.com bid.g.doubleclick.net *.analytics.google.com www.googletagmanager.com *.ftcdn.net *.behance.net t.paypal.com www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com i.ytimg.com *.youtube.com p.typekit.net *.paypal.com *.typekit.net *.gstatic.com validator.swagger.io magefan.com cm.magefan.com *.disqus.com *.alothemes.com *.magepow.com *.packlink.com 'self' data: data: 'self' 'unsafe-inline'; script-src assets.adobedtm.com *.adobe.com www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com *.commerce-payment-services.com www.paypal.com www.sandbox.paypal.com www.paypalobjects.com t.paypal.com s.ytimg.com www.googleapis.com vimeo.com www.vimeo.com *.vimeocdn.com *.youtube.com https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ amcglobal.sc.omtrdc.net *.magento-ds.com use.typekit.net *.typekit.net google.com *.google.com *.cdn-apple.com *.braintreegateway.com *.disqus.com *.alothemes.com *.magepow.com *.gstatic.com connect.facebook.net 'self' 'unsafe-inline' 'unsafe-eval'; style-src *.adobe.com fonts.googleapis.com *.alothemes.com *.magepow.com *.packlink.com *.googleapis.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src *.adobe.com 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src dpm.demdex.net amcglobal.sc.omtrdc.net *.google-analytics.com www.googleadservices.com *.analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net vimeo.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.sandbox.paypal.com www.paypalobjects.com www.paypal.com pilot-payflowlink.paypal.com *.adobe.io performance.typekit.net *.sentry.io *.paypal.com google.com *.google.com *.braintreegateway.com *.braintree-api.com *.alothemes.com *.magepow.com 'self' 'unsafe-inline'; child-src http: https: blob: 'self' 'unsafe-inline'; default-src 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline';
content-security-policy: default-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google.com https://www.gstatic.com https://cdnjs.cloudflare.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' data: https:; connect-src 'self' https:; frame-src 'self' https://www.google.com; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'self';
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains; preload
referrer-policy: strict-origin-when-cross-origin
x-permitted-cross-domain-policies: none
permissions-policy: geolocation=(), microphone=(), camera=(), payment=(), usb=(), magnetometer=(), gyroscope=(), speaker=(), vibrate=(), fullscreen=(self), autoplay=(self)
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Q6af5T0sYyRddKqJiYoZ8a7iOGXxYZY5Et4UkMZ8DR55rUjtdFNZIS6zABQReapLv%2BeX5ZTed8RF1BfmFP%2BQVrSOV6r%2FhK3w3%2FFe3eCc"}]}
cf-cache-status: DYNAMIC
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Speculation-Rules: "/cdn-cgi/speculation"
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=10,cfOrigin;dur=143
CF-RAY: 9c26ba8b79e7aa31-AMS
alt-svc: h3=":443"; ma=86400
    Found 2026-01-23 by HttpPlugin
    Create report

  • Open service 2606:4700:20::681a:889:443 · duro-custom.com

    2026-01-23 10:50 

    HTTP/1.1 200 OK
Date: Fri, 23 Jan 2026 10:50:11 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Server: cloudflare
vary: Accept-Encoding
Set-Cookie: PHPSESSID=28tn2963s6vi77617vosejvk57; expires=Fri, 23 Jan 2026 11:50:11 GMT; Max-Age=3600; path=/; domain=duro-custom.com; secure; HttpOnly; SameSite=Lax
pragma: no-cache
Cache-Control: max-age=0, must-revalidate, no-cache, no-store
expires: Thu, 23 Jan 2025 03:07:28 GMT
content-security-policy: font-src www.paypalobjects.com fonts.gstatic.com use.typekit.net *.typekit.net *.gstatic.com *.alothemes.com *.magepow.com *.packlink.com 'self' data: data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.paypal.com *.ipg-online.com 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com www.paypalobjects.com player.vimeo.com https://www.google.com/recaptcha/ *.braintreegateway.com *.paypal.com google.com *.google.com www.facebook.com *.weltpixel.com 'self' 'unsafe-inline'; img-src data: assets.adobedtm.com amcglobal.sc.omtrdc.net dpm.demdex.net cm.everesttech.net *.adobe.com widgets.magentocommerce.com www.googleadservices.com *.google-analytics.com googleads.g.doubleclick.net www.google.com bid.g.doubleclick.net *.analytics.google.com www.googletagmanager.com *.ftcdn.net *.behance.net t.paypal.com www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com i.ytimg.com *.youtube.com p.typekit.net *.paypal.com *.typekit.net *.gstatic.com validator.swagger.io magefan.com cm.magefan.com *.disqus.com *.alothemes.com *.magepow.com *.packlink.com 'self' data: data: 'self' 'unsafe-inline'; script-src assets.adobedtm.com *.adobe.com www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com *.commerce-payment-services.com www.paypal.com www.sandbox.paypal.com www.paypalobjects.com t.paypal.com s.ytimg.com www.googleapis.com vimeo.com www.vimeo.com *.vimeocdn.com *.youtube.com https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ amcglobal.sc.omtrdc.net *.magento-ds.com use.typekit.net *.typekit.net google.com *.google.com *.cdn-apple.com *.braintreegateway.com *.disqus.com *.alothemes.com *.magepow.com *.gstatic.com connect.facebook.net 'self' 'unsafe-inline' 'unsafe-eval'; style-src *.adobe.com fonts.googleapis.com *.alothemes.com *.magepow.com *.packlink.com *.googleapis.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src *.adobe.com 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src dpm.demdex.net amcglobal.sc.omtrdc.net *.google-analytics.com www.googleadservices.com *.analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net vimeo.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.sandbox.paypal.com www.paypalobjects.com www.paypal.com pilot-payflowlink.paypal.com *.adobe.io performance.typekit.net *.sentry.io *.paypal.com google.com *.google.com *.braintreegateway.com *.braintree-api.com *.alothemes.com *.magepow.com 'self' 'unsafe-inline'; child-src http: https: blob: 'self' 'unsafe-inline'; default-src 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline';
content-security-policy: default-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google.com https://www.gstatic.com https://cdnjs.cloudflare.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' data: https:; connect-src 'self' https:; frame-src 'self' https://www.google.com; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'self';
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains; preload
referrer-policy: strict-origin-when-cross-origin
x-permitted-cross-domain-policies: none
permissions-policy: geolocation=(), microphone=(), camera=(), payment=(), usb=(), magnetometer=(), gyroscope=(), speaker=(), vibrate=(), fullscreen=(self), autoplay=(self)
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=p45kmra4SjdfVEqgMAaZXtjb8RXQKD0vtJdy7%2Blovam9if885fRsbgbmE6QGscUi4LhiSQj5t23iqys6H2nU5yRhzDfMcG8Y2Sb9JVs7erIfXqBWNLVVWWmB"}]}
cf-cache-status: DYNAMIC
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Speculation-Rules: "/cdn-cgi/speculation"
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=17,cfOrigin;dur=170
CF-RAY: 9c26ba8b9e27366b-FRA
alt-svc: h3=":443"; ma=86400
    Found 2026-01-23 by HttpPlugin
    Create report

  • Open service 104.26.8.137:80 · duro-custom.com

    2026-01-23 10:50 

    HTTP/1.1 301 Moved Permanently
Date: Fri, 23 Jan 2026 10:50:10 GMT
Content-Length: 0
Connection: close
Location: https://duro-custom.com/
X-Content-Type-Options: nosniff
Speculation-Rules: "/cdn-cgi/speculation"
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=SdvbQe9DI0nNJFD0bKlrY0xZxEJ2gYREBNy4r01hpR0ZQUzD5L3clSA2p%2Fo%2FlObxdzro%2BaQaLdWvNcOS12yksQeUUmv22W6m%2BUwpeVCa"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server-Timing: cfEdge;dur=17,cfOrigin;dur=0
Server: cloudflare
CF-RAY: 9c26ba8a9ebf30e8-FRA
alt-svc: h3=":443"; ma=86400
    Found 2026-01-23 by HttpPlugin
    Create report

  • Open service 2606:4700:20::681a:989:443 · duro-custom.com

    2026-01-23 10:50 

    HTTP/1.1 200 OK
Date: Fri, 23 Jan 2026 10:50:11 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Server: cloudflare
vary: Accept-Encoding
Set-Cookie: PHPSESSID=cto76vspcuq6qqerp8l97kkdat; expires=Fri, 23 Jan 2026 11:50:11 GMT; Max-Age=3600; path=/; domain=duro-custom.com; secure; HttpOnly; SameSite=Lax
pragma: no-cache
Cache-Control: max-age=0, must-revalidate, no-cache, no-store
expires: Thu, 23 Jan 2025 03:07:28 GMT
content-security-policy: font-src www.paypalobjects.com fonts.gstatic.com use.typekit.net *.typekit.net *.gstatic.com *.alothemes.com *.magepow.com *.packlink.com 'self' data: data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.paypal.com *.ipg-online.com 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com www.paypalobjects.com player.vimeo.com https://www.google.com/recaptcha/ *.braintreegateway.com *.paypal.com google.com *.google.com www.facebook.com *.weltpixel.com 'self' 'unsafe-inline'; img-src data: assets.adobedtm.com amcglobal.sc.omtrdc.net dpm.demdex.net cm.everesttech.net *.adobe.com widgets.magentocommerce.com www.googleadservices.com *.google-analytics.com googleads.g.doubleclick.net www.google.com bid.g.doubleclick.net *.analytics.google.com www.googletagmanager.com *.ftcdn.net *.behance.net t.paypal.com www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com i.ytimg.com *.youtube.com p.typekit.net *.paypal.com *.typekit.net *.gstatic.com validator.swagger.io magefan.com cm.magefan.com *.disqus.com *.alothemes.com *.magepow.com *.packlink.com 'self' data: data: 'self' 'unsafe-inline'; script-src assets.adobedtm.com *.adobe.com www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com *.commerce-payment-services.com www.paypal.com www.sandbox.paypal.com www.paypalobjects.com t.paypal.com s.ytimg.com www.googleapis.com vimeo.com www.vimeo.com *.vimeocdn.com *.youtube.com https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ amcglobal.sc.omtrdc.net *.magento-ds.com use.typekit.net *.typekit.net google.com *.google.com *.cdn-apple.com *.braintreegateway.com *.disqus.com *.alothemes.com *.magepow.com *.gstatic.com connect.facebook.net 'self' 'unsafe-inline' 'unsafe-eval'; style-src *.adobe.com fonts.googleapis.com *.alothemes.com *.magepow.com *.packlink.com *.googleapis.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src *.adobe.com 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src dpm.demdex.net amcglobal.sc.omtrdc.net *.google-analytics.com www.googleadservices.com *.analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net vimeo.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.sandbox.paypal.com www.paypalobjects.com www.paypal.com pilot-payflowlink.paypal.com *.adobe.io performance.typekit.net *.sentry.io *.paypal.com google.com *.google.com *.braintreegateway.com *.braintree-api.com *.alothemes.com *.magepow.com 'self' 'unsafe-inline'; child-src http: https: blob: 'self' 'unsafe-inline'; default-src 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline';
content-security-policy: default-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google.com https://www.gstatic.com https://cdnjs.cloudflare.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' data: https:; connect-src 'self' https:; frame-src 'self' https://www.google.com; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'self';
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains; preload
referrer-policy: strict-origin-when-cross-origin
x-permitted-cross-domain-policies: none
permissions-policy: geolocation=(), microphone=(), camera=(), payment=(), usb=(), magnetometer=(), gyroscope=(), speaker=(), vibrate=(), fullscreen=(self), autoplay=(self)
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=dS9mchcYseOCsO8yl4HriMG2a0W6KocZq5pnugJgVmBlK0JsYh26hcOvVM%2Fyq%2BFsa9KuCezH0kCgG6n8x%2FbeqF5%2FWWS72Jab5bIUkhgePTE13CRVXdp%2Bxjs%2F"}]}
cf-cache-status: DYNAMIC
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Speculation-Rules: "/cdn-cgi/speculation"
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=17,cfOrigin;dur=170
CF-RAY: 9c26ba8b4d8c1b56-FRA
alt-svc: h3=":443"; ma=86400
    Found 2026-01-23 by HttpPlugin
    Create report

  • Open service 104.26.8.137:8443 · duro-custom.com

    2026-01-23 10:50 

    HTTP/1.1 522 <none>
Date: Fri, 23 Jan 2026 10:50:31 GMT
Content-Length: 0
Connection: close
Server: cloudflare
Cache-Control: private, no-store
cf-cache-status: DYNAMIC
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
set-cookie: cf_use_ob=8443; Expires=Fri, 23 Jan 2026 10:51:01 GMT
set-cookie: cf_ob_info=522:9c26ba902c2664e8:FRA; Expires=Fri, 23 Jan 2026 10:51:01 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Content-Type-Options: nosniff
Speculation-Rules: "/cdn-cgi/speculation"
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=19581,cfOrigin;dur=0
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=9dHlUwbVatB4gA8hLWjtulLy6okMWIfSUrvh70l1dOJaW7rIaK%2Fl%2BQ7BGPApWoxNV6eEkCR71WlAEc8wKSLAEKLqc1mvQL429tCyC4ZY"}]}
CF-RAY: 9c26ba902c2664e8-FRA
alt-svc: h3=":8443"; ma=86400
    Found 2026-01-23 by HttpPlugin
    Create report

  • Open service 2606:4700:20::681a:989:80 · duro-custom.com

    2026-01-23 10:50 

    HTTP/1.1 301 Moved Permanently
Date: Fri, 23 Jan 2026 10:50:10 GMT
Content-Length: 0
Connection: close
Location: https://duro-custom.com/
X-Content-Type-Options: nosniff
Speculation-Rules: "/cdn-cgi/speculation"
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=uacq5QKT%2FW7rMS6kTp%2BjS%2BhSorT9rXPX5PKIoJx%2BnIQaw4unDj%2F6orm9wDUjsZfs9DvcvhnYgAhlIt2hCFqDoPUy%2B%2FGxfKi4M5Am9hJN%2FExKNYmhBx%2FhGyad"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server-Timing: cfEdge;dur=32,cfOrigin;dur=0
Server: cloudflare
CF-RAY: 9c26ba89ffe049bb-FRA
alt-svc: h3=":443"; ma=86400
    Found 2026-01-23 by HttpPlugin
    Create report

  • Open service 2606:4700:20::681a:889:8443 · duro-custom.com

    2026-01-23 10:50 

    HTTP/1.1 522 <none>
Date: Fri, 23 Jan 2026 10:50:31 GMT
Content-Length: 0
Connection: close
Server: cloudflare
Cache-Control: private, no-store
cf-cache-status: DYNAMIC
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
set-cookie: cf_use_ob=8443; Expires=Fri, 23 Jan 2026 10:51:01 GMT
set-cookie: cf_ob_info=522:9c26ba90dbb9e570:FRA; Expires=Fri, 23 Jan 2026 10:51:01 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Content-Type-Options: nosniff
Speculation-Rules: "/cdn-cgi/speculation"
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=19267,cfOrigin;dur=0
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=li%2Fjqpk6pfp3IK911JNjGeSXn%2FCCxmQKBtc1jAKpB%2BLaWYDgHo7HzDaSP5oOl5fQow6dyIIPOKdyfL4si1R5E8qZ%2BKSzJelA9Ewgx8crQcZ9EdWNp%2BOYkMbD"}]}
CF-RAY: 9c26ba90dbb9e570-FRA
alt-svc: h3=":8443"; ma=86400
    Found 2026-01-23 by HttpPlugin
    Create report

  • Open service 104.26.9.137:443 · duro-custom.com

    2026-01-23 10:50 

    HTTP/1.1 200 OK
Date: Fri, 23 Jan 2026 10:50:11 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Server: cloudflare
vary: Accept-Encoding
Set-Cookie: PHPSESSID=ahfj9p3ds5l8j2bv1umojbptnd; expires=Fri, 23 Jan 2026 11:50:11 GMT; Max-Age=3600; path=/; domain=duro-custom.com; secure; HttpOnly; SameSite=Lax
pragma: no-cache
Cache-Control: max-age=0, must-revalidate, no-cache, no-store
expires: Thu, 23 Jan 2025 03:07:28 GMT
content-security-policy: font-src www.paypalobjects.com fonts.gstatic.com use.typekit.net *.typekit.net *.gstatic.com *.alothemes.com *.magepow.com *.packlink.com 'self' data: data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.paypal.com *.ipg-online.com 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com www.paypalobjects.com player.vimeo.com https://www.google.com/recaptcha/ *.braintreegateway.com *.paypal.com google.com *.google.com www.facebook.com *.weltpixel.com 'self' 'unsafe-inline'; img-src data: assets.adobedtm.com amcglobal.sc.omtrdc.net dpm.demdex.net cm.everesttech.net *.adobe.com widgets.magentocommerce.com www.googleadservices.com *.google-analytics.com googleads.g.doubleclick.net www.google.com bid.g.doubleclick.net *.analytics.google.com www.googletagmanager.com *.ftcdn.net *.behance.net t.paypal.com www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com i.ytimg.com *.youtube.com p.typekit.net *.paypal.com *.typekit.net *.gstatic.com validator.swagger.io magefan.com cm.magefan.com *.disqus.com *.alothemes.com *.magepow.com *.packlink.com 'self' data: data: 'self' 'unsafe-inline'; script-src assets.adobedtm.com *.adobe.com www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com *.commerce-payment-services.com www.paypal.com www.sandbox.paypal.com www.paypalobjects.com t.paypal.com s.ytimg.com www.googleapis.com vimeo.com www.vimeo.com *.vimeocdn.com *.youtube.com https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ amcglobal.sc.omtrdc.net *.magento-ds.com use.typekit.net *.typekit.net google.com *.google.com *.cdn-apple.com *.braintreegateway.com *.disqus.com *.alothemes.com *.magepow.com *.gstatic.com connect.facebook.net 'self' 'unsafe-inline' 'unsafe-eval'; style-src *.adobe.com fonts.googleapis.com *.alothemes.com *.magepow.com *.packlink.com *.googleapis.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src *.adobe.com 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src dpm.demdex.net amcglobal.sc.omtrdc.net *.google-analytics.com www.googleadservices.com *.analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net vimeo.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.sandbox.paypal.com www.paypalobjects.com www.paypal.com pilot-payflowlink.paypal.com *.adobe.io performance.typekit.net *.sentry.io *.paypal.com google.com *.google.com *.braintreegateway.com *.braintree-api.com *.alothemes.com *.magepow.com 'self' 'unsafe-inline'; child-src http: https: blob: 'self' 'unsafe-inline'; default-src 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline';
content-security-policy: default-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google.com https://www.gstatic.com https://cdnjs.cloudflare.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' data: https:; connect-src 'self' https:; frame-src 'self' https://www.google.com; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'self';
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains; preload
referrer-policy: strict-origin-when-cross-origin
x-permitted-cross-domain-policies: none
permissions-policy: geolocation=(), microphone=(), camera=(), payment=(), usb=(), magnetometer=(), gyroscope=(), speaker=(), vibrate=(), fullscreen=(self), autoplay=(self)
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=%2B6lxsRCqscuIeaZui6K3lr1x86BxYjqkM7dE%2BxXke3%2BR9oDpfctLK%2FZ9g22UgOYVJnrwY84FGR5Ub1L2W5qe2dgvswv1Jwr763lY2Tit"}]}
cf-cache-status: DYNAMIC
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Speculation-Rules: "/cdn-cgi/speculation"
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=13,cfOrigin;dur=153
CF-RAY: 9c26ba8b0af3d39c-FRA
alt-svc: h3=":443"; ma=86400
    Found 2026-01-23 by HttpPlugin
    Create report
duro-custom.com*.duro-custom.com
Fingerprint:
a5a62b8c7e0a39d68db79eb59148cfd1df8fb19c3ce6f85ed9ed3303571a87bd
CN:
duro-custom.com
Key:
ECDSA-256
Issuer:
WE1
Not before:
2026-01-23 09:49
Not after:
2026-04-23 10:49
Domain summary

duro-custom.com 20

1 recorded
IP summary

2606:4700:20::681a:989 1 2606:4700:20::681a:889 1 172.67.74.75 1 2606:4700:20::ac43:4a4b 1 104.26.9.137 1 104.26.8.137 1

6 recorded

© 2026 LeakIX v2.0.49
About LeakIX - Credits - Take-down and blacklist requests - Security issues - Terms and conditions - Cookie policy - Legal notice