Looks like this one is looking for SoftCart.exe in HTTP request but doesn't pay attention if it is GET field or other field (e.g Referer:).
For example will react on payload below:
Payload: peg, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, application/x-shockwave-flash, */* Referer: http://www.latoys.com/cgi-bin/SoftCart.exe/lego/lego_dinosaurs.html?E+scstore Accept-Language: en-ca Connection: Keep-Alive