{"report_id":"c11879a8-12ab-4b72-a94e-4904adb91348","version":6,"status":"done","tags":[],"date":"2026-04-07T04:24:59Z","url":{"schema":"https","addr":"valoq.at/","fqdn":"valoq.at","domain":"valoq.at","tld":"at"},"ip":{"addr":"186.2.171.13","port":0,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"final":{"url":{"schema":"https","addr":"valoq.at/","fqdn":"valoq.at","domain":"valoq.at","tld":"at"},"title":"VALORANT VCT Champions Giveaway","dom":{"size":34964,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"8589927c6eb0ac9d7de41516242c78ec","sha1":"63e56463051b6208df98e7718e1add45348bf35b","sha256":"ffc3ac83e3bbd665e7fff21ddd9eb4ee1a5ccd47155d836a96a62537931d8b61","sha512":"4c97ae2e3424658ca28b8a63a497b3562f8e43f25ee7cc8b2362a556a0e206bd5baff9b4cab82044c6e6b7edb56b2a0698298058c36c2793b15feff0d27d2e19","ssdeep":"768:T79JuENl0fdEOyPWqXEjqMhS5b2mLOhS5b2mLOhS5b2mLOhS5b2mLOhS5b2mLOha:n9JuEN0dEOyPDXwhS5b2mLOhS5b2mLO0","tlshash":"1df24f716294412fb5a3b9c0bea3098dea789117fc1bd40132fc2f804f55edade5662e","dom_hash":"domhashe1ea721fb7ffc305f1e46ecbe8712099","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"valoq.at/","fqdn":"valoq.at","domain":"valoq.at","tld":"at"},"ip":{"addr":"186.2.171.13","port":0,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-12T04:24:59Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":6}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"valoq.at","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"valoq.at","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"valoq.at","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"valoq.at","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"valoq.at","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"valoq.at","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"valoq.at","ip":{"addr":"186.2.171.13","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-02-06T07:04:04.81183Z","last_seen":"2026-02-06T07:04:04.81183Z","alert_count":24,"request_count":4,"received_data":25849,"sent_data":2104,"comment":"","tags":null,"fingerprints":[{"name":"Express","description":"Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs.","website":"https://expressjs.com","common_platform_enumeration":"cpe:2.3:a:expressjs:express:*:*:*:*:*:*:*:*","icon":"Express.svg","categories":["Web frameworks","Web servers"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}]},{"fqdn":"files.bo3.gg","ip":{"addr":"172.67.75.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2023-01-20","domain_rank":5308900,"first_seen":"2023-08-02T11:29:08Z","last_seen":"2026-03-25T13:00:46.960859Z","alert_count":0,"request_count":1,"received_data":46672,"sent_data":483,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-04-05T22:20:18.514512Z","alert_count":0,"request_count":1,"received_data":14048,"sent_data":498,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"static.wikia.nocookie.net","ip":{"addr":"162.159.142.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2007-10-19","domain_rank":62708,"first_seen":"2014-02-27T12:31:06Z","last_seen":"2026-04-02T04:08:14.777554Z","alert_count":0,"request_count":8,"received_data":160989,"sent_data":3812,"comment":"","tags":null,"fingerprints":[{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-04-05T22:16:34.770209Z","alert_count":0,"request_count":5,"received_data":214507,"sent_data":2725,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"valoq.at/apiNew.js","fqdn":"valoq.at","domain":"valoq.at","tld":"at"},"ip":{"addr":"186.2.171.13","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"scriptElement","is_inline":false,"md5":"da5100100b58409aa8cd53f4eb8d6a1c","sha1":"ec5b3c83d7db32d4049d4fa91789c7e1621ec5ff","sha256":"ac7aa3828f1d294a09835a44ea1cefb5cb90666f5d863e9e7ea964efbab200d3","sha512":"1c705d496961de0edb3da7c6525fe4c4041b8409568b23e80a75bf2a666c2d78be39690f795a2ab6ad807d1700615b7a8e36bba6bf596d2c06beef714dd1c89f","ssdeep":"","tlshash":"aa41309a99f231a92653209a6613d20462375407754be4a0f98e26082f9df3f7376aec","size":2043,"data":"","first_seen":"2026-02-12T19:57:05.704877Z","last_seen":"2026-04-07T04:25:31.377715Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"valoq.at/","fqdn":"valoq.at","domain":"valoq.at","tld":"at"},"ip":{"addr":"186.2.171.13","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"scriptElement","is_inline":true,"md5":"c68681a26fef32799bf99c8c7dc0156f","sha1":"c3e0cbffbed3aac3772aca4bc4fde7952fb3af70","sha256":"c587148c7e00c18f0e6668d8c4ce85b55296093da1a1fdc93777c9c9dcefd125","sha512":"efcf7a1848d426ae328a003060e373177468ed645e4efa75521402424059eb650f507a56117282c2f7022b6f647af56a765bd6f2b101610d43c5019abdae96d5","ssdeep":"96:/jLMjljIjlijYvYjzjsjRMjIjlijYvYjzjsjO6lbq8t4GT/C8ZwNP0Oq023LYAyU:/jgjljIjlijVjzjsjWjIjlijVjzjsjOw","tlshash":"23918469a1d259bb967371dc6db31a0cfa380022bc5ec042b75d9f402f10e5ad7a297f","size":4566,"data":"","first_seen":"2026-01-04T16:06:12.731525Z","last_seen":"2026-04-07T04:25:31.387155Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"static.wikia.nocookie.net/valorant/images/a/a9/Champions_2021_Karambit.png","fqdn":"static.wikia.nocookie.net","domain":"nocookie.net","tld":"net"},"ip":{"addr":"162.159.142.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://valoq.at/","date":"2026-04-07T04:24:38.268Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"wikia.nocookie.net","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Mar 2026 16:13:28 GMT","end":"Sat, 13 Jun 2026 16:13:27 GMT"},"fingerprint":{"sha1":"95:3A:47:C2:51:B8:5D:8B:3D:70:79:4F:E2:62:96:33:39:7D:48:FA","sha256":"D0:6A:DB:0C:49:57:F6:11:94:3E:70:24:17:FE:3A:47:43:53:7A:41:11:90:5D:23:C5:96:E0:BF:A2:FB:4A:47"}}},"request":{"raw":"GET /valorant/images/a/a9/Champions_2021_Karambit.png HTTP/1.1\r\nHost: static.wikia.nocookie.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://valoq.at/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 04:24:38 GMT\r\ncontent-type: image/webp\r\ncontent-length: 31454\r\ncf-ray: 9e864387df0a23eb-OSL\r\nsurrogate-key: c2ca146c165a865cda4673bdadb34e3722a9ba89 wiki-valorant thumblr original v:5dd5d7a9\r\ncontent-disposition: inline; filename=\"Champions_2021_Karambit.webp\"; filename*=UTF-8''Champions_2021_Karambit.webp\r\netag: \"xlL8XM5rz1Xyu7mQrxvQ4Q==\"\r\nx-thumbnailer: Thumblr\r\nvary: Accept, Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Range\r\nx-cache-hits: ORIGIN\r\nx-cache: ORIGIN\r\nx-served-by: thumblr-7ccdb8dff4-vfqct\r\ncontent-security-policy: default-src 'none'; script-src 'none'; img-src 'self'; media-src 'self'; style-src 'unsafe-inline'; sandbox; report-uri https://services.fandom.com/csp-logger/csp/thumblr\r\ncache-control: public, max-age=31536000\r\nnel: {\"report_to\":\"nel\",\"max_age\":604800,\"failure_fraction\":0.01}\r\nreport-to: {\"group\":\"nel\",\"endpoints\":[{\"url\":\"https://services.fandom.com/browser-errors/report\"}],\"max_age\":604800,\"include_subdomains\":true}\r\nx-envoy-upstream-service-time: 88\r\ncf-cache-status: HIT\r\nage: 4611\r\naccept-ranges: bytes\r\nset-cookie: __cf_bm=d9TcBQMX21tUZle3tFqiVK.1x3ZNv2rF1T.hxatwib8-1775535878-1.0.1.1-baZDOVE8_S0ccx9mYa3uB4rvLP8JxOX7fNPO4mizoPFtDq6JNleMqudc7UtV9iWAxRaJvoJpalVmpwjIif_eiPZ8PySzDrQt6na2FXvtCHw; path=/; expires=Tue, 07-Apr-26 04:54:38 GMT; domain=.nocookie.net; HttpOnly; Secure; SameSite=None\r\ntiming-allow-origin: *\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]}],"data":{"size":31454,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"c652fc5cce6bcf55f2bbb990af1bd0e1","sha1":"a544f76ec674dbe6df3f9966026d7e442d5b119d","sha256":"9070e2eaf3d1e5dfb6d04a5716f3806ce65c7afb5a5a3ad8359efe156dc1faec","sha512":"20086e24233cee9fc0cc62b36caaafe54e3ec61e4d0d059ee31f6a36bd0b509b6fb7af40f755be27609436df9f791cc276847846f3ae0c3cfd152a36a15ec8b6","ssdeep":"768:fncajF91/18hWvT09WPBEI8EDBX6J4lUD5ODV5s0DRfX2:1Ft8iT09SEWX6JWUlO7sMv2","tlshash":"f3e2f1e281c07cf000bd997806917fdda8e50f5a225eadb625b2c917a885ff17f7b052","first_seen":"2023-10-21T05:08:18Z","last_seen":"2026-04-07T04:25:31.38023Z","times_seen":7,"resource_available":false,"data":null}},"time_used":123,"timings":{"blocked":101,"dns":0,"connect":0,"send":0,"wait":19,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"static.wikia.nocookie.net/valorant/images/1/19/Champions_2021_Vandal.png","fqdn":"static.wikia.nocookie.net","domain":"nocookie.net","tld":"net"},"ip":{"addr":"162.159.142.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://valoq.at/","date":"2026-04-07T04:24:38.275Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"wikia.nocookie.net","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Mar 2026 16:13:28 GMT","end":"Sat, 13 Jun 2026 16:13:27 GMT"},"fingerprint":{"sha1":"95:3A:47:C2:51:B8:5D:8B:3D:70:79:4F:E2:62:96:33:39:7D:48:FA","sha256":"D0:6A:DB:0C:49:57:F6:11:94:3E:70:24:17:FE:3A:47:43:53:7A:41:11:90:5D:23:C5:96:E0:BF:A2:FB:4A:47"}}},"request":{"raw":"GET /valorant/images/1/19/Champions_2021_Vandal.png HTTP/1.1\r\nHost: static.wikia.nocookie.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://valoq.at/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 04:24:38 GMT\r\ncontent-type: image/webp\r\ncontent-length: 19676\r\ncf-ray: 9e864387df0d23eb-OSL\r\nsurrogate-key: f31b8436f47aca764b0380ce577fa8414d87fc0a wiki-valorant thumblr original v:5dd5d7a9\r\ncontent-disposition: inline; filename=\"Champions_2021_Vandal.webp\"; filename*=UTF-8''Champions_2021_Vandal.webp\r\netag: \"6JSIo0aUEhMQ1C0cqRn4vA==\"\r\nx-thumbnailer: Thumblr\r\nvary: Accept, Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Range\r\nx-cache-hits: ORIGIN\r\nx-cache: ORIGIN\r\nx-served-by: thumblr-5d7669df84-7rxdf\r\ncontent-security-policy: default-src 'none'; script-src 'none'; img-src 'self'; media-src 'self'; style-src 'unsafe-inline'; sandbox; report-uri https://services.fandom.com/csp-logger/csp/thumblr\r\ncache-control: public, max-age=31536000\r\nnel: {\"report_to\":\"nel\",\"max_age\":604800,\"failure_fraction\":0.01}\r\nreport-to: {\"group\":\"nel\",\"endpoints\":[{\"url\":\"https://services.fandom.com/browser-errors/report\"}],\"max_age\":604800,\"include_subdomains\":true}\r\nx-envoy-upstream-service-time: 139\r\ncf-cache-status: HIT\r\nage: 4611\r\naccept-ranges: bytes\r\nset-cookie: __cf_bm=Xs3hmO4xi7jekfI_5mOzuW.kSlkOBn8jAd2a6jbx57w-1775535878-1.0.1.1-5YjTK64roco6cXuDXA78Q4RMu49_Qwj0dPLVhNhH4pwdnTddQQEYJmGo5wxopHLLLJ24lu_FK8u_rDm6dBeRHcovWYuOnq6ybqZ1byt1TuI; path=/; expires=Tue, 07-Apr-26 04:54:38 GMT; domain=.nocookie.net; HttpOnly; Secure; SameSite=None\r\ntiming-allow-origin: *\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]}],"data":{"size":19676,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"e89488a34694121310d42d1ca919f8bc","sha1":"1b9621e279bd97805bf41d4582acd7f26e84f7ec","sha256":"74ed28828ec6e2fae14adc224ea6f2af2db00ab752240561b48649ef0fc44bb2","sha512":"fba50609a6f86082e249902629418b8649d43c63c14686ad37ba5b8790ef671ec25e05c1169b40f630cc298c7af55a764956d2598d723806bf57ea0f0f5ed012","ssdeep":"384:elnSmsiDVc9okSVXWMMMNOAkWUkWQcruFKUGmPDzqxmRtTs7/Wkgy9V:elFi9okkh0A5UuE58quTs7eOf","tlshash":"ab92d058808bd38aee9106b91159cf66170bb86c43c47e59ff2f1235e29e6037e76cc2","first_seen":"2023-10-21T05:08:18Z","last_seen":"2026-04-07T04:25:31.385321Z","times_seen":5,"resource_available":false,"data":null}},"time_used":117,"timings":{"blocked":95,"dns":0,"connect":0,"send":0,"wait":21,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/montserrat/v31/JTUSjIg1_i6t8kCHKm459WlhyyTn89ddpQ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://valoq.at/","date":"2026-04-07T04:24:38.325Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:40 GMT","end":"Mon, 08 Jun 2026 08:38:39 GMT"},"fingerprint":{"sha1":"93:71:51:4C:A3:35:66:7B:96:98:73:5F:8A:D5:61:38:29:33:E3:58","sha256":"A7:C2:55:50:7A:01:61:98:C7:16:8F:8D:72:97:DD:77:B2:9D:D8:18:29:80:41:DE:61:95:42:E5:0F:79:FE:EF"}}},"request":{"raw":"GET /s/montserrat/v31/JTUSjIg1_i6t8kCHKm459WlhyyTn89ddpQ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://valoq.at\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 37756\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 04 Apr 2026 02:00:50 GMT\r\nexpires: Sun, 04 Apr 2027 02:00:50 GMT\r\ncache-control: public, max-age=31536000\r\nage: 267828\r\nlast-modified: Thu, 04 Sep 2025 17:09:21 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":37756,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 37756, version 1.0","md5":"8a6a885dd57e60ddd85f3190737fa209","sha1":"dbca56b7fe8ee5e4bfb648d639fc6a3bfc5c6e85","sha256":"b9b102f608e8252e3c1e7287309832b16af7dcc6e788651fa503a3faacd7fb2f","sha512":"2bd785869777dc57dbb5934d4c6915b66f89746dd79897820eb4bbd0d262b2612bafdfb07c1e092658ad819f582a97e6a196531f74187d8a0b0bbd07fcbba56a","ssdeep":"768:sqRKhgpCf9U72WeD4A/5IqtBr0ikGvEaQh38/LBu3Emdc043RpgZKMqjkEfO1m:jKgp+9U7Ve8A/7Ai9Et3EBKEUE3RqMMu","tlshash":"3e030130df5884edcc0ba371fdeea81fc7a332a594c0b3368297af1b80111499d99e49","first_seen":"2025-09-05T00:25:10.258656Z","last_seen":"2026-04-07T09:20:40.416127Z","times_seen":314010,"resource_available":false,"data":null}},"time_used":265,"timings":{"blocked":-1,"dns":1,"connect":44,"send":0,"wait":18,"receive":7,"ssl":181},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/montserrat/v31/JTUSjIg1_i6t8kCHKm459WlhyyTn89ddpQ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://valoq.at/","date":"2026-04-07T04:24:38.292Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:40 GMT","end":"Mon, 08 Jun 2026 08:38:39 GMT"},"fingerprint":{"sha1":"93:71:51:4C:A3:35:66:7B:96:98:73:5F:8A:D5:61:38:29:33:E3:58","sha256":"A7:C2:55:50:7A:01:61:98:C7:16:8F:8D:72:97:DD:77:B2:9D:D8:18:29:80:41:DE:61:95:42:E5:0F:79:FE:EF"}}},"request":{"raw":"GET /s/montserrat/v31/JTUSjIg1_i6t8kCHKm459WlhyyTn89ddpQ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://valoq.at\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 37756\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 04 Apr 2026 02:00:50 GMT\r\nexpires: Sun, 04 Apr 2027 02:00:50 GMT\r\ncache-control: public, max-age=31536000\r\nage: 267828\r\nlast-modified: Thu, 04 Sep 2025 17:09:21 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":37756,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 37756, version 1.0","md5":"8a6a885dd57e60ddd85f3190737fa209","sha1":"dbca56b7fe8ee5e4bfb648d639fc6a3bfc5c6e85","sha256":"b9b102f608e8252e3c1e7287309832b16af7dcc6e788651fa503a3faacd7fb2f","sha512":"2bd785869777dc57dbb5934d4c6915b66f89746dd79897820eb4bbd0d262b2612bafdfb07c1e092658ad819f582a97e6a196531f74187d8a0b0bbd07fcbba56a","ssdeep":"768:sqRKhgpCf9U72WeD4A/5IqtBr0ikGvEaQh38/LBu3Emdc043RpgZKMqjkEfO1m:jKgp+9U7Ve8A/7Ai9Et3EBKEUE3RqMMu","tlshash":"3e030130df5884edcc0ba371fdeea81fc7a332a594c0b3368297af1b80111499d99e49","first_seen":"2025-09-05T00:25:10.258656Z","last_seen":"2026-04-07T09:20:40.416127Z","times_seen":314010,"resource_available":false,"data":null}},"time_used":264,"timings":{"blocked":-1,"dns":0,"connect":24,"send":0,"wait":10,"receive":5,"ssl":208},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"valoq.at/","fqdn":"valoq.at","domain":"valoq.at","tld":"at"},"ip":{"addr":"186.2.171.13","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-07T04:24:37.079Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"valoq.at","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 22:44:39 GMT","end":"Wed, 06 May 2026 22:44:38 GMT"},"fingerprint":{"sha1":"D4:9C:01:E7:20:B2:90:F5:6E:A2:17:1B:68:4F:88:13:F6:03:1E:01","sha256":"BF:26:9B:AD:7A:9D:D3:FE:CF:C5:BB:53:6D:5D:02:00:45:98:18:EE:7B:A6:DB:65:56:0E:36:B7:27:7F:0A:85"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: valoq.at\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=djuz4JgJp59UBVQn; Domain=.valoq.at; Path=/; Expires=Tue, 07-Apr-2026 04:44:37 GMT\n__ddg10_=1775535877; Domain=.valoq.at; Path=/; Expires=Tue, 07-Apr-2026 04:44:37 GMT\n__ddg9_=91.90.42.154; Domain=.valoq.at; Path=/; Expires=Tue, 07-Apr-2026 04:44:37 GMT\n__ddg1_=KJoFT1qnilk4rh7CoiDk; Domain=.valoq.at; HttpOnly; Path=/; Expires=Wed, 07-Apr-2027 04:24:37 GMT\r\nstrict-transport-security: max-age=31536000\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Tue, 07 Apr 2026 04:24:37 GMT\r\ncontent-type: text/html; charset=utf-8\r\nx-powered-by: Express\r\naccess-control-allow-origin: *\r\netag: W/\"513c-PKjKldN6Xfc55vWNUQch+To97hU\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Express","description":"Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs.","website":"https://expressjs.com","common_platform_enumeration":"cpe:2.3:a:expressjs:express:*:*:*:*:*:*:*:*","icon":"Express.svg","categories":["Web frameworks","Web servers"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":20796,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with CRLF line terminators","md5":"af0e6cd4cdba52ea26f94507a94e6fd0","sha1":"3ca8ca95d37a5df739e6f58d510721f93a3dee15","sha256":"d17d159302159005d6f7edaace531bc4d6e197dde2874f4b3247517bbd91c671","sha512":"0b535b1eef734578bcf031e811101509bf0a1e8eaa97551c2f6282212076b00ea5bb53179351d1215bd1d3055234e77ddf76efa0f801e6f34d1399e0ac3a7af0","ssdeep":"384:lFfIOx5B/cPAbPFy8qNgaV6jFjsjJjlj0jijhj8jJjlj0jijhjMd2DO:/IOx5B1biNgaV6jFjsjJjlj0jijhj8j8","tlshash":"6292e8a42640482da573dea4bfe3568ceaf80402dc0b4316bbf85549ffe16f18796e1c","first_seen":"2026-01-04T16:06:12.715393Z","last_seen":"2026-04-07T04:25:31.385939Z","times_seen":3,"resource_available":true,"data":null}},"time_used":1421,"timings":{"blocked":608,"dns":95,"connect":19,"send":0,"wait":201,"receive":0,"ssl":495},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"valoq.at","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"valoq.at","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"valoq.at","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"valoq.at","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"valoq.at","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"valoq.at","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"static.wikia.nocookie.net/valorant/images/4/4c/Champions_2023_Vandal.png","fqdn":"static.wikia.nocookie.net","domain":"nocookie.net","tld":"net"},"ip":{"addr":"162.159.142.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://valoq.at/","date":"2026-04-07T04:24:38.259Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"wikia.nocookie.net","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Mar 2026 16:13:28 GMT","end":"Sat, 13 Jun 2026 16:13:27 GMT"},"fingerprint":{"sha1":"95:3A:47:C2:51:B8:5D:8B:3D:70:79:4F:E2:62:96:33:39:7D:48:FA","sha256":"D0:6A:DB:0C:49:57:F6:11:94:3E:70:24:17:FE:3A:47:43:53:7A:41:11:90:5D:23:C5:96:E0:BF:A2:FB:4A:47"}}},"request":{"raw":"GET /valorant/images/4/4c/Champions_2023_Vandal.png HTTP/1.1\r\nHost: static.wikia.nocookie.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://valoq.at/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 04:24:38 GMT\r\ncontent-type: image/webp\r\ncontent-length: 16524\r\ncf-ray: 9e864387ef2323eb-OSL\r\nsurrogate-key: ae773f28f656d8c3a03b277c6bf3bdd6c2057a65 wiki-valorant thumblr original v:6d8a6499\r\ncontent-disposition: inline; filename=\"Champions_2023_Vandal.webp\"; filename*=UTF-8''Champions_2023_Vandal.webp\r\netag: \"ORFzvLT12k5xCXsPpLLJhA==\"\r\nx-thumbnailer: Thumblr\r\nvary: Accept, Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Range\r\nx-cache-hits: ORIGIN\r\nx-cache: ORIGIN\r\nx-served-by: thumblr-7ccdb8dff4-7k99c\r\ncontent-security-policy: default-src 'none'; script-src 'none'; img-src 'self'; media-src 'self'; style-src 'unsafe-inline'; sandbox; report-uri https://services.fandom.com/csp-logger/csp/thumblr\r\ncache-control: public, max-age=31536000\r\nnel: {\"report_to\":\"nel\",\"max_age\":604800,\"failure_fraction\":0.01}\r\nreport-to: {\"group\":\"nel\",\"endpoints\":[{\"url\":\"https://services.fandom.com/browser-errors/report\"}],\"max_age\":604800,\"include_subdomains\":true}\r\nx-envoy-upstream-service-time: 143\r\ncf-cache-status: HIT\r\nage: 4611\r\naccept-ranges: bytes\r\nset-cookie: __cf_bm=fRu7j9au05ipB5HNYQ6lfg004zVJZGW0E8ETIjkZ98Q-1775535878-1.0.1.1-hJYmIYgHaIuLY3f3EwmA1VxljQs2rIAnS1Bq2Tdg64z2cjyj4qYfuWQnrKP3n2n1W07FbmCOMZEC0UVXUjdIqAVqr2bmw6RORn6U6Y8sneU; path=/; expires=Tue, 07-Apr-26 04:54:38 GMT; domain=.nocookie.net; HttpOnly; Secure; SameSite=None\r\ntiming-allow-origin: *\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]}],"data":{"size":16524,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"391173bcb4f5da4e71097b0fa4b2c984","sha1":"d6377c2f1689f90abdb555c67ba6e0f7de4b54f0","sha256":"98d063aeadf0403ce5e3230e54fa714d76cd00eb53c811e7c1cae9d5801fb519","sha512":"dc1780e1fbd0731a18d788258e5c6045c7bd04f335c5e092be25f1e2ba16ec8c7bf5fc8a7ea0b428e8224e819fbafd85f80a250e2916e339fbff1c848c8db45b","ssdeep":"384:kCdxXSM4LNs1bLFKGaCWMbEVRJVxa3NXAqK6snkaTi:HPXIq1NXjQxa3NXsrnkaTi","tlshash":"7272c04d534cbd2a687317d4a641afc93633ad3847679f6cc2e9218e40d243fb916dca","first_seen":"2026-04-07T04:25:02.769652Z","last_seen":"2026-04-07T04:25:31.386539Z","times_seen":2,"resource_available":false,"data":null}},"time_used":250,"timings":{"blocked":118,"dns":35,"connect":9,"send":0,"wait":15,"receive":1,"ssl":49},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"static.wikia.nocookie.net/valorant/images/1/13/Champions_2022_Butterfly_Knife.png","fqdn":"static.wikia.nocookie.net","domain":"nocookie.net","tld":"net"},"ip":{"addr":"162.159.142.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://valoq.at/","date":"2026-04-07T04:24:38.262Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"wikia.nocookie.net","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Mar 2026 16:13:28 GMT","end":"Sat, 13 Jun 2026 16:13:27 GMT"},"fingerprint":{"sha1":"95:3A:47:C2:51:B8:5D:8B:3D:70:79:4F:E2:62:96:33:39:7D:48:FA","sha256":"D0:6A:DB:0C:49:57:F6:11:94:3E:70:24:17:FE:3A:47:43:53:7A:41:11:90:5D:23:C5:96:E0:BF:A2:FB:4A:47"}}},"request":{"raw":"GET /valorant/images/1/13/Champions_2022_Butterfly_Knife.png HTTP/1.1\r\nHost: static.wikia.nocookie.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://valoq.at/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 04:24:38 GMT\r\ncontent-type: image/webp\r\ncontent-length: 12406\r\ncf-ray: 9e864387ef2423eb-OSL\r\nsurrogate-key: 0baa2fc8c4fd06ed0fee7deebf3dc059287506c3 wiki-valorant thumblr original v:5dd5d7a9\r\ncontent-disposition: inline; filename=\"Champions_2022_Butterfly_Knife.webp\"; filename*=UTF-8''Champions_2022_Butterfly_Knife.webp\r\netag: \"tie8Qp9HFhTZaFB/pGNTgQ==\"\r\nx-thumbnailer: Thumblr\r\nvary: Accept, Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Range\r\nx-cache-hits: ORIGIN\r\nx-cache: ORIGIN\r\nx-served-by: thumblr-7ccdb8dff4-hmdqw\r\ncontent-security-policy: default-src 'none'; script-src 'none'; img-src 'self'; media-src 'self'; style-src 'unsafe-inline'; sandbox; report-uri https://services.fandom.com/csp-logger/csp/thumblr\r\ncache-control: public, max-age=31536000\r\nnel: {\"report_to\":\"nel\",\"max_age\":604800,\"failure_fraction\":0.01}\r\nreport-to: {\"group\":\"nel\",\"endpoints\":[{\"url\":\"https://services.fandom.com/browser-errors/report\"}],\"max_age\":604800,\"include_subdomains\":true}\r\nx-envoy-upstream-service-time: 120\r\ncf-cache-status: HIT\r\nage: 4611\r\naccept-ranges: bytes\r\nset-cookie: __cf_bm=MPIMAPly7aBCYtZq4F0gZOFUrXdBmVdV2DDGiCa16C8-1775535878-1.0.1.1-jEgJu_nZ71OC1yplshXSIOt8UijGOnRCkpvnAEW7RhqcLwrae1qn1wt_KZXQ5kViqeOiUr.NDDKhUP8a1YJHQSC.vuSs.T9gBbXKiUYZZw8; path=/; expires=Tue, 07-Apr-26 04:54:38 GMT; domain=.nocookie.net; HttpOnly; Secure; SameSite=None\r\ntiming-allow-origin: *\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]},{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]}],"data":{"size":12406,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"b627bc429f471614d968507fa4635381","sha1":"29aa98efdfc634af2e07c0eac5777dd27b7d05ba","sha256":"b7f91d639f6f6a30b1eaeb5df22b408854aff52fdf9103b1651a1488187e845b","sha512":"e8e4f1a9013d01aa85e865e8ee24be0683bdb4b483cbe8f2a89eea3754efc3c2ef4a8cb33cd78644b87fe51b5424442a4dc36a47e635bcb49cedb072662fe63e","ssdeep":"384:mYOX+7JnPXhzxZ0S6KePO2FrOHOxWKztKF+W:DOO7JnPVYSJelOHOxptq+W","tlshash":"6342d08b7ac01ceaf009e8b0dc11bf1193abb1c003f9608f79453ebb9a6700546ceb54","first_seen":"2026-04-07T04:25:02.771974Z","last_seen":"2026-04-07T04:25:31.378542Z","times_seen":2,"resource_available":false,"data":null}},"time_used":252,"timings":{"blocked":117,"dns":35,"connect":9,"send":0,"wait":15,"receive":1,"ssl":49},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"valoq.at/apiNew.js","fqdn":"valoq.at","domain":"valoq.at","tld":"at"},"ip":{"addr":"186.2.171.13","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://valoq.at/","date":"2026-04-07T04:24:38.087Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"valoq.at","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 22:44:39 GMT","end":"Wed, 06 May 2026 22:44:38 GMT"},"fingerprint":{"sha1":"D4:9C:01:E7:20:B2:90:F5:6E:A2:17:1B:68:4F:88:13:F6:03:1E:01","sha256":"BF:26:9B:AD:7A:9D:D3:FE:CF:C5:BB:53:6D:5D:02:00:45:98:18:EE:7B:A6:DB:65:56:0E:36:B7:27:7F:0A:85"}}},"request":{"raw":"GET /apiNew.js HTTP/1.1\r\nHost: valoq.at\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://valoq.at/\r\nCookie: __ddg8_=djuz4JgJp59UBVQn; __ddg10_=1775535877; __ddg9_=91.90.42.154; __ddg1_=KJoFT1qnilk4rh7CoiDk\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=CHOlR8SsmuCvICPV; Domain=.valoq.at; Path=/; Expires=Tue, 07-Apr-2026 04:44:38 GMT\n__ddg10_=1775535878; Domain=.valoq.at; Path=/; Expires=Tue, 07-Apr-2026 04:44:38 GMT\n__ddg9_=91.90.42.154; Domain=.valoq.at; Path=/; Expires=Tue, 07-Apr-2026 04:44:38 GMT\r\nstrict-transport-security: max-age=31536000\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Tue, 07 Apr 2026 04:24:38 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nx-powered-by: Express\r\naccess-control-allow-origin: *\r\naccept-ranges: bytes\r\ncache-control: public, max-age=0\r\nlast-modified: Sun, 01 Feb 2026 20:16:15 GMT\r\nvary: Accept-Encoding\r\ncontent-encoding: br\r\nddg-cache-status: MISS,MISS\r\netag: W/\"7fb-19c1ad94e98\"\r\nage: 0\r\ncontent-length: 886\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]},{"name":"Express","description":"Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs.","website":"https://expressjs.com","common_platform_enumeration":"cpe:2.3:a:expressjs:express:*:*:*:*:*:*:*:*","icon":"Express.svg","categories":["Web frameworks","Web servers"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]}],"data":{"size":2043,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text","md5":"da5100100b58409aa8cd53f4eb8d6a1c","sha1":"ec5b3c83d7db32d4049d4fa91789c7e1621ec5ff","sha256":"ac7aa3828f1d294a09835a44ea1cefb5cb90666f5d863e9e7ea964efbab200d3","sha512":"1c705d496961de0edb3da7c6525fe4c4041b8409568b23e80a75bf2a666c2d78be39690f795a2ab6ad807d1700615b7a8e36bba6bf596d2c06beef714dd1c89f","ssdeep":"","tlshash":"aa41309a99f231a92653209a6613d20462375407754be4a0f98e26082f9df3f7376aec","first_seen":"2026-02-12T19:57:05.704877Z","last_seen":"2026-04-07T04:25:31.377715Z","times_seen":12,"resource_available":true,"data":null}},"time_used":49,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":48,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"valoq.at","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"valoq.at","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"valoq.at","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"valoq.at","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"valoq.at","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"valoq.at","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/montserrat/v31/JTUSjIg1_i6t8kCHKm459WlhyyTn89ddpQ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://valoq.at/","date":"2026-04-07T04:24:38.285Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:40 GMT","end":"Mon, 08 Jun 2026 08:38:39 GMT"},"fingerprint":{"sha1":"93:71:51:4C:A3:35:66:7B:96:98:73:5F:8A:D5:61:38:29:33:E3:58","sha256":"A7:C2:55:50:7A:01:61:98:C7:16:8F:8D:72:97:DD:77:B2:9D:D8:18:29:80:41:DE:61:95:42:E5:0F:79:FE:EF"}}},"request":{"raw":"GET /s/montserrat/v31/JTUSjIg1_i6t8kCHKm459WlhyyTn89ddpQ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://valoq.at\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 37756\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 04 Apr 2026 02:00:50 GMT\r\nexpires: Sun, 04 Apr 2027 02:00:50 GMT\r\ncache-control: public, max-age=31536000\r\nage: 267828\r\nlast-modified: Thu, 04 Sep 2025 17:09:21 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":37756,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 37756, version 1.0","md5":"8a6a885dd57e60ddd85f3190737fa209","sha1":"dbca56b7fe8ee5e4bfb648d639fc6a3bfc5c6e85","sha256":"b9b102f608e8252e3c1e7287309832b16af7dcc6e788651fa503a3faacd7fb2f","sha512":"2bd785869777dc57dbb5934d4c6915b66f89746dd79897820eb4bbd0d262b2612bafdfb07c1e092658ad819f582a97e6a196531f74187d8a0b0bbd07fcbba56a","ssdeep":"768:sqRKhgpCf9U72WeD4A/5IqtBr0ikGvEaQh38/LBu3Emdc043RpgZKMqjkEfO1m:jKgp+9U7Ve8A/7Ai9Et3EBKEUE3RqMMu","tlshash":"3e030130df5884edcc0ba371fdeea81fc7a332a594c0b3368297af1b80111499d99e49","first_seen":"2025-09-05T00:25:10.258656Z","last_seen":"2026-04-07T09:20:40.416127Z","times_seen":314010,"resource_available":false,"data":null}},"time_used":277,"timings":{"blocked":-1,"dns":1,"connect":13,"send":0,"wait":14,"receive":6,"ssl":242},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://valoq.at/","date":"2026-04-07T04:24:38.290Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:40 GMT","end":"Mon, 08 Jun 2026 08:38:39 GMT"},"fingerprint":{"sha1":"93:71:51:4C:A3:35:66:7B:96:98:73:5F:8A:D5:61:38:29:33:E3:58","sha256":"A7:C2:55:50:7A:01:61:98:C7:16:8F:8D:72:97:DD:77:B2:9D:D8:18:29:80:41:DE:61:95:42:E5:0F:79:FE:EF"}}},"request":{"raw":"GET /s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://valoq.at\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48532\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 02 Apr 2026 08:25:52 GMT\r\nexpires: Fri, 02 Apr 2027 08:25:52 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Tue, 09 Sep 2025 18:33:50 GMT\r\ncontent-type: font/woff2\r\nage: 417526\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":48532,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48532, version 1.0","md5":"225835e6e0496c54dc2aca9f3d533892","sha1":"942ef5298bbe74bfe44e445def5f2bfc94027fa8","sha256":"acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087","sha512":"ea2ff96ed5ac965c1846b4b33990beab3d4ced66806fa44321f5dd59d9a29a8ae1a67a5816d40165af8a896677b6a24bb74ea6db53cd5e686080165db9fd62c2","ssdeep":"768:b9tYsJ6BxVEpu8sqEkvfXRGEBqH7KxpxA07hQv2bSokjQx2AOWUVOv7UeFHOpIsR:LsEcy7fXRGqqHmr7qv32UC7UetOGLkF","tlshash":"03230178cf9f85b3d33b153afaf4d20562a9067de76c4a803831051a2a55770b89dc0e","first_seen":"2025-05-29T17:27:56.345238Z","last_seen":"2026-04-07T09:00:43.536477Z","times_seen":135918,"resource_available":false,"data":null}},"time_used":289,"timings":{"blocked":-1,"dns":0,"connect":27,"send":0,"wait":10,"receive":4,"ssl":234},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"valoq.at/favicon.ico","fqdn":"valoq.at","domain":"valoq.at","tld":"at"},"ip":{"addr":"186.2.171.13","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://valoq.at/","date":"2026-04-07T04:24:38.663Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"valoq.at","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 22:44:39 GMT","end":"Wed, 06 May 2026 22:44:38 GMT"},"fingerprint":{"sha1":"D4:9C:01:E7:20:B2:90:F5:6E:A2:17:1B:68:4F:88:13:F6:03:1E:01","sha256":"BF:26:9B:AD:7A:9D:D3:FE:CF:C5:BB:53:6D:5D:02:00:45:98:18:EE:7B:A6:DB:65:56:0E:36:B7:27:7F:0A:85"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: valoq.at\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://valoq.at/\r\nCookie: __ddg8_=CHOlR8SsmuCvICPV; __ddg10_=1775535878; __ddg9_=91.90.42.154; __ddg1_=KJoFT1qnilk4rh7CoiDk\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=92LFly4erhxy7nAh; Domain=.valoq.at; Path=/; Expires=Tue, 07-Apr-2026 04:44:38 GMT\n__ddg10_=1775535878; Domain=.valoq.at; Path=/; Expires=Tue, 07-Apr-2026 04:44:38 GMT\n__ddg9_=91.90.42.154; Domain=.valoq.at; Path=/; Expires=Tue, 07-Apr-2026 04:44:38 GMT\r\nstrict-transport-security: max-age=31536000\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Tue, 07 Apr 2026 04:24:38 GMT\r\ncontent-type: application/json; charset=utf-8\r\nx-powered-by: Express\r\naccess-control-allow-origin: *\r\netag: W/\"4a-/wQpyBpRyI6XDnAW2OqTwoc8sog\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]},{"name":"Express","description":"Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs.","website":"https://expressjs.com","common_platform_enumeration":"cpe:2.3:a:expressjs:express:*:*:*:*:*:*:*:*","icon":"Express.svg","categories":["Web frameworks","Web servers"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]}],"data":{"size":74,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"34f485dbc2aa92ee5a77678814e3dbba","sha1":"ff0429c81a51c88e970e7016d8ea93c2873cb288","sha256":"130f948f814486c133f4d33e2e3482a4bf961ec6cded4453e0ef90d980ca2809","sha512":"396724cadd8abb852b60e2f6e1a2053a59ad43fa834e48cb69ec8da67dddf4a02692d3c0d574a64806b7349e23314aa097a694f395c63783cc2d319d91180530","ssdeep":"","tlshash":"c0a0220c080fbccc2f03cca8b0cc3a30c02288c00eb20c00208f88308a2088ea0c2200","first_seen":"2023-08-17T01:48:34Z","last_seen":"2026-04-07T04:25:31.376861Z","times_seen":347,"resource_available":false,"data":null}},"time_used":39,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":39,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"valoq.at","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"valoq.at","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"valoq.at","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"valoq.at","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"valoq.at","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"valoq.at","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://valoq.at/","date":"2026-04-07T04:24:38.281Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:40 GMT","end":"Mon, 08 Jun 2026 08:38:39 GMT"},"fingerprint":{"sha1":"93:71:51:4C:A3:35:66:7B:96:98:73:5F:8A:D5:61:38:29:33:E3:58","sha256":"A7:C2:55:50:7A:01:61:98:C7:16:8F:8D:72:97:DD:77:B2:9D:D8:18:29:80:41:DE:61:95:42:E5:0F:79:FE:EF"}}},"request":{"raw":"GET /s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://valoq.at\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48532\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 02 Apr 2026 08:25:52 GMT\r\nexpires: Fri, 02 Apr 2027 08:25:52 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Tue, 09 Sep 2025 18:33:50 GMT\r\ncontent-type: font/woff2\r\nage: 417526\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":48532,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48532, version 1.0","md5":"225835e6e0496c54dc2aca9f3d533892","sha1":"942ef5298bbe74bfe44e445def5f2bfc94027fa8","sha256":"acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087","sha512":"ea2ff96ed5ac965c1846b4b33990beab3d4ced66806fa44321f5dd59d9a29a8ae1a67a5816d40165af8a896677b6a24bb74ea6db53cd5e686080165db9fd62c2","ssdeep":"768:b9tYsJ6BxVEpu8sqEkvfXRGEBqH7KxpxA07hQv2bSokjQx2AOWUVOv7UeFHOpIsR:LsEcy7fXRGqqHmr7qv32UC7UetOGLkF","tlshash":"03230178cf9f85b3d33b153afaf4d20562a9067de76c4a803831051a2a55770b89dc0e","first_seen":"2025-05-29T17:27:56.345238Z","last_seen":"2026-04-07T09:00:43.536477Z","times_seen":135918,"resource_available":false,"data":null}},"time_used":185,"timings":{"blocked":-1,"dns":1,"connect":10,"send":0,"wait":10,"receive":12,"ssl":151},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"files.bo3.gg/uploads/image/68905/image/webp-f81b0f5465818546bee4658c47c7b500.webp","fqdn":"files.bo3.gg","domain":"bo3.gg","tld":"gg"},"ip":{"addr":"172.67.75.79","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://valoq.at/","date":"2026-04-07T04:24:38.225Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bo3.gg","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Mar 2026 20:22:47 GMT","end":"Sun, 21 Jun 2026 21:22:46 GMT"},"fingerprint":{"sha1":"4A:6D:B1:0E:86:35:BA:DF:5C:AB:88:72:5C:64:8A:25:C2:CF:D5:22","sha256":"F9:46:24:3C:9A:2B:D6:F6:04:37:61:F2:18:EC:CE:CF:84:03:F1:E4:86:F4:80:9B:A1:CB:AE:74:25:5A:F5:C8"}}},"request":{"raw":"GET /uploads/image/68905/image/webp-f81b0f5465818546bee4658c47c7b500.webp HTTP/1.1\r\nHost: files.bo3.gg\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://valoq.at/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 04:24:38 GMT\r\ncontent-type: image/webp\r\ncontent-length: 45652\r\naccept-ranges: bytes\r\ncontent-disposition: inline; filename=\"image_processing20250111-1-i8i8fh.webp\"; filename*=UTF-8''image_processing20250111-1-i8i8fh.webp\r\ncontent-security-policy: block-all-mixed-content\r\netag: \"511059ef6f2601baf625f1956061296b\"\r\nlast-modified: Sat, 11 Jan 2025 11:06:56 GMT\r\nvary: Origin\r\nx-amz-request-id: 18A3F447EDB0407C\r\nx-xss-protection: 1; mode=block\r\ncache-control: public, max-age=31536000\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nage: 4610\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=mrm%2BEO48dMBWDUrZTvG7rie3wlZMHDVLDT8%2BC0ImX8WcsEwpKaqpuVTGP1vx9Q8v5aFg%2BcWFT7fcmS%2FZAmIZVsBexf367g8CdUDgrhBot7%2B6F%2BHp6LXVDFZZvMod%2Fw%3D%3D\"}]}\r\nserver: cloudflare\r\ncf-ray: 9e8643873c240afe-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":45652,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 2400x1440, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"511059ef6f2601baf625f1956061296b","sha1":"c6054fb5bb4e1e35e56837616be0ff5e09d0767f","sha256":"e0d21b76e2464085218702950953897f666c62276853e904a77d1c297ff65769","sha512":"e150630c653db06166a8efcb923956f93402f5b72bd097a604fce9e0d21eb8a15a378721e035190463996ef7c81f4ed98fd3cc97db378800aafae5b9f0381f11","ssdeep":"768:0MhYE9UZFDWBDzipAQ1YbJqNskJK2u7EZTNMFd1DOzLICqsZrOP7nzbMHAj:0MOEmgBDzG0NDZOT0ZOzLKsFb6","tlshash":"ff2301a32ca73953a8c423af6b7a7907d446262a7fa9814d032de9d5df54dc030e3bc5","first_seen":"2026-01-04T16:06:12.722193Z","last_seen":"2026-04-07T04:25:31.382532Z","times_seen":3,"resource_available":false,"data":null}},"time_used":105,"timings":{"blocked":45,"dns":21,"connect":1,"send":0,"wait":12,"receive":3,"ssl":19},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"static.wikia.nocookie.net/valorant/images/5/5e/Champions_2025_Butterfly_Knife.png","fqdn":"static.wikia.nocookie.net","domain":"nocookie.net","tld":"net"},"ip":{"addr":"162.159.142.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://valoq.at/","date":"2026-04-07T04:24:38.246Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"wikia.nocookie.net","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Mar 2026 16:13:28 GMT","end":"Sat, 13 Jun 2026 16:13:27 GMT"},"fingerprint":{"sha1":"95:3A:47:C2:51:B8:5D:8B:3D:70:79:4F:E2:62:96:33:39:7D:48:FA","sha256":"D0:6A:DB:0C:49:57:F6:11:94:3E:70:24:17:FE:3A:47:43:53:7A:41:11:90:5D:23:C5:96:E0:BF:A2:FB:4A:47"}}},"request":{"raw":"GET /valorant/images/5/5e/Champions_2025_Butterfly_Knife.png HTTP/1.1\r\nHost: static.wikia.nocookie.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://valoq.at/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 04:24:38 GMT\r\ncontent-type: image/webp\r\ncontent-length: 22636\r\ncf-ray: 9e864387ef2123eb-OSL\r\nsurrogate-key: 41ef1e66ae4cb0d8c292115e0af8809856780762 wiki-valorant thumblr original v:4e591e1e\r\ncontent-disposition: inline; filename=\"Champions_2025_Butterfly_Knife.webp\"; filename*=UTF-8''Champions_2025_Butterfly_Knife.webp\r\netag: \"CYjY8JqZDsUCQmBA7fvwHQ==\"\r\nx-thumbnailer: Thumblr\r\nvary: Accept, Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Range\r\nx-cache-hits: ORIGIN\r\nx-cache: ORIGIN\r\nx-served-by: thumblr-5d7669df84-9cs48\r\ncontent-security-policy: default-src 'none'; script-src 'none'; img-src 'self'; media-src 'self'; style-src 'unsafe-inline'; sandbox; report-uri https://services.fandom.com/csp-logger/csp/thumblr\r\ncache-control: public, max-age=31536000\r\nnel: {\"report_to\":\"nel\",\"max_age\":604800,\"failure_fraction\":0.01}\r\nreport-to: {\"group\":\"nel\",\"endpoints\":[{\"url\":\"https://services.fandom.com/browser-errors/report\"}],\"max_age\":604800,\"include_subdomains\":true}\r\nx-envoy-upstream-service-time: 128\r\ncf-cache-status: HIT\r\nage: 501585\r\naccept-ranges: bytes\r\nset-cookie: __cf_bm=DBA.dXeoaf0x0tAMnAvlejnOi3RBXbvmSgqBgxuBToE-1775535878-1.0.1.1-p_VlaDNQrcti4SoSx29aKvMXOf0K77GhmcXlXsg784EbEQpGUyl.jRoQt67PeC6HfRmUT_LCbML06.3o9K.a50FI11zuNh7C8bKD4a4BOsU; path=/; expires=Tue, 07-Apr-26 04:54:38 GMT; domain=.nocookie.net; HttpOnly; Secure; SameSite=None\r\ntiming-allow-origin: *\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]},{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":22636,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"0988d8f09a990ec502426040edfbf01d","sha1":"d19e6df591cefbe8c161990667cf074a77abbe35","sha256":"4df774d97f49e2e6ad643c4e75ff8d3b240278d89bbb4987569b11748e19ab86","sha512":"1edcf067890b36b2f4ac9f9f1f02c5716168e7345e229911f66371de95271886570521c617b191f2580ca12b1c5a39ed20553055a1559b49663f5fd3aa927eca","ssdeep":"384:fUtd45EkUQ4x9Y6ppcljEC4HJgwlU90H9yxrT/FF9rCgFuv2pk2:1EjQ4xppZhE0Eh/dbw25","tlshash":"86a2e1b5458d230e0c20e013996984b19d780b6fe52f7164bd35c5e067d2b83ebe9afd","first_seen":"2026-04-07T04:25:02.781059Z","last_seen":"2026-04-07T04:25:31.383043Z","times_seen":2,"resource_available":false,"data":null}},"time_used":279,"timings":{"blocked":128,"dns":50,"connect":1,"send":0,"wait":21,"receive":1,"ssl":67},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"static.wikia.nocookie.net/valorant/images/6/6a/Champions_2025_Vandal.png","fqdn":"static.wikia.nocookie.net","domain":"nocookie.net","tld":"net"},"ip":{"addr":"162.159.142.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://valoq.at/","date":"2026-04-07T04:24:38.250Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"wikia.nocookie.net","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Mar 2026 16:13:28 GMT","end":"Sat, 13 Jun 2026 16:13:27 GMT"},"fingerprint":{"sha1":"95:3A:47:C2:51:B8:5D:8B:3D:70:79:4F:E2:62:96:33:39:7D:48:FA","sha256":"D0:6A:DB:0C:49:57:F6:11:94:3E:70:24:17:FE:3A:47:43:53:7A:41:11:90:5D:23:C5:96:E0:BF:A2:FB:4A:47"}}},"request":{"raw":"GET /valorant/images/6/6a/Champions_2025_Vandal.png HTTP/1.1\r\nHost: static.wikia.nocookie.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://valoq.at/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 04:24:38 GMT\r\ncontent-type: image/webp\r\ncontent-length: 16890\r\ncf-ray: 9e864387ef1f23eb-OSL\r\nsurrogate-key: 4c647d7defe417979f4047393c43a675601b5608 wiki-valorant thumblr original v:4e591e1e\r\ncontent-disposition: inline; filename=\"Champions_2025_Vandal.webp\"; filename*=UTF-8''Champions_2025_Vandal.webp\r\netag: \"ZL9lHulJw6+rMxTUEvcGNw==\"\r\nx-thumbnailer: Thumblr\r\nvary: Accept, Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Range\r\nx-cache-hits: ORIGIN\r\nx-cache: ORIGIN\r\nx-served-by: thumblr-7ccdb8dff4-w9v7w\r\ncontent-security-policy: default-src 'none'; script-src 'none'; img-src 'self'; media-src 'self'; style-src 'unsafe-inline'; sandbox; report-uri https://services.fandom.com/csp-logger/csp/thumblr\r\ncache-control: public, max-age=31536000\r\nnel: {\"report_to\":\"nel\",\"max_age\":604800,\"failure_fraction\":0.01}\r\nreport-to: {\"group\":\"nel\",\"endpoints\":[{\"url\":\"https://services.fandom.com/browser-errors/report\"}],\"max_age\":604800,\"include_subdomains\":true}\r\nx-envoy-upstream-service-time: 90\r\naccept-ranges: bytes\r\nage: 6431794\r\ncf-cache-status: HIT\r\nset-cookie: __cf_bm=8gk7mUROokG8qJymY1hP5XMbWWLCs.6kqdFG5MlBnPM-1775535878-1.0.1.1-H1Qu7gcGFDgUxTpLU_W35R.tonniwzl7tBvxiULXAzM6nnwSFtza3dL9fGXqFK.odw0f12EdsnBlV_dm3BD_uAGLC4DOzL7T1qwrcJx7QKQ; path=/; expires=Tue, 07-Apr-26 04:54:38 GMT; domain=.nocookie.net; HttpOnly; Secure; SameSite=None\r\ntiming-allow-origin: *\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]},{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]}],"data":{"size":16890,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"64bf651ee949c3afab3314d412f70637","sha1":"a5b43f8cc77e4918c861e6f0f9f26087c38e6783","sha256":"b3e627a531d7e0293c575f6d684b7d59dad0c30f851da2705ad705edffcdb685","sha512":"67c8182fd615b92d3eb2d9f7c37df3acb6552b4f027615b2f1636dd607e29a5d914b9d00cdccfeccc591a991456b5e19d86c3ed1eed89d3be48e3bc9979ce623","ssdeep":"384:kkwLBVi9ae5bo9PJ6KtH5b35KFVRvJzUkOexeZrIbb:kHBVTeol535KlvlZeW","tlshash":"d972d05e0bd72b26cc7bad2df1a3287ed3fb809438515d2858b6e748435e6931001ce3","first_seen":"2026-04-07T04:25:02.782912Z","last_seen":"2026-04-07T04:25:31.379457Z","times_seen":2,"resource_available":false,"data":null}},"time_used":265,"timings":{"blocked":121,"dns":44,"connect":1,"send":0,"wait":25,"receive":0,"ssl":67},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"static.wikia.nocookie.net/valorant/images/1/10/Champions_2023_Kunai.png","fqdn":"static.wikia.nocookie.net","domain":"nocookie.net","tld":"net"},"ip":{"addr":"162.159.142.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://valoq.at/","date":"2026-04-07T04:24:38.251Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"wikia.nocookie.net","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Mar 2026 16:13:28 GMT","end":"Sat, 13 Jun 2026 16:13:27 GMT"},"fingerprint":{"sha1":"95:3A:47:C2:51:B8:5D:8B:3D:70:79:4F:E2:62:96:33:39:7D:48:FA","sha256":"D0:6A:DB:0C:49:57:F6:11:94:3E:70:24:17:FE:3A:47:43:53:7A:41:11:90:5D:23:C5:96:E0:BF:A2:FB:4A:47"}}},"request":{"raw":"GET /valorant/images/1/10/Champions_2023_Kunai.png HTTP/1.1\r\nHost: static.wikia.nocookie.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://valoq.at/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 04:24:38 GMT\r\ncontent-type: image/webp\r\ncontent-length: 16242\r\ncf-ray: 9e864387df0923eb-OSL\r\nsurrogate-key: c734a4a294954696c3e7a68722bb5b863e252ed1 wiki-valorant thumblr original v:6d8a6499\r\ncontent-disposition: inline; filename=\"Champions_2023_Kunai.webp\"; filename*=UTF-8''Champions_2023_Kunai.webp\r\netag: \"+G3YSyQsFWJ6Qlk+Sm7qhg==\"\r\nx-thumbnailer: Thumblr\r\nvary: Accept, Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Range\r\nx-cache-hits: ORIGIN\r\nx-cache: ORIGIN\r\nx-served-by: thumblr-7ccdb8dff4-kcn6l\r\ncontent-security-policy: default-src 'none'; script-src 'none'; img-src 'self'; media-src 'self'; style-src 'unsafe-inline'; sandbox; report-uri https://services.fandom.com/csp-logger/csp/thumblr\r\ncache-control: public, max-age=31536000\r\nnel: {\"report_to\":\"nel\",\"max_age\":604800,\"failure_fraction\":0.01}\r\nreport-to: {\"group\":\"nel\",\"endpoints\":[{\"url\":\"https://services.fandom.com/browser-errors/report\"}],\"max_age\":604800,\"include_subdomains\":true}\r\nx-envoy-upstream-service-time: 61\r\ncf-cache-status: HIT\r\nage: 4611\r\naccept-ranges: bytes\r\nset-cookie: __cf_bm=li5fhFHfdqu7Nd56xywe4LCL8G__KNLJqGFz4bdduqo-1775535878-1.0.1.1-EGG5YLtZxO3p5s2jpl9P.g2O3P1APZvKrzECK3YOfbDUK_sStWLCVodSWxLaDSpPN8Pe4WfB1Gf.J2oKa.vcyMU75GRL9DUWgF9e._rLbSk; path=/; expires=Tue, 07-Apr-26 04:54:38 GMT; domain=.nocookie.net; HttpOnly; Secure; SameSite=None\r\ntiming-allow-origin: *\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]}],"data":{"size":16242,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"f86dd84b242c15627a42593e4a6eea86","sha1":"47a788af19cdfbf8be9de60271d3a74d0fbe8ff3","sha256":"d28657e9e4cc499cb1a8b20c72d543310ce5f1f055535a6fe72dc79b0e53f905","sha512":"2dc931e044c39be31db83e9a4ba78bbc04945faca13e0fb15a4419f39e15e422ed59ae0479b0b64c2a5ab9012b2d2a060c7206e828830f4c44e6f2509d3f237d","ssdeep":"384:zJNbJq3XN4FwfXaTsNrXiBFSRAFkjLQsoKimRtAO:zJbAXNsRscrIQ2bh","tlshash":"9372df8d07204be6fa6e95c521d54805f0a23fe260b895dc6ec5b939e9f9cf730bda00","first_seen":"2026-04-07T04:25:02.785443Z","last_seen":"2026-04-07T04:25:31.383669Z","times_seen":2,"resource_available":false,"data":null}},"time_used":253,"timings":{"blocked":117,"dns":44,"connect":1,"send":0,"wait":18,"receive":1,"ssl":69},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"static.wikia.nocookie.net/valorant/images/d/d6/Champions_2022_Phantom.png","fqdn":"static.wikia.nocookie.net","domain":"nocookie.net","tld":"net"},"ip":{"addr":"162.159.142.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://valoq.at/","date":"2026-04-07T04:24:38.266Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"wikia.nocookie.net","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 15 Mar 2026 16:13:28 GMT","end":"Sat, 13 Jun 2026 16:13:27 GMT"},"fingerprint":{"sha1":"95:3A:47:C2:51:B8:5D:8B:3D:70:79:4F:E2:62:96:33:39:7D:48:FA","sha256":"D0:6A:DB:0C:49:57:F6:11:94:3E:70:24:17:FE:3A:47:43:53:7A:41:11:90:5D:23:C5:96:E0:BF:A2:FB:4A:47"}}},"request":{"raw":"GET /valorant/images/d/d6/Champions_2022_Phantom.png HTTP/1.1\r\nHost: static.wikia.nocookie.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://valoq.at/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Apr 2026 04:24:38 GMT\r\ncontent-type: image/webp\r\ncontent-length: 13296\r\ncf-ray: 9e864387ef2623eb-OSL\r\nsurrogate-key: 965de9c49b01948a77154fcd5bfeeda872b1d5e8 wiki-valorant thumblr original v:5dd5d7a9\r\ncontent-disposition: inline; filename=\"Champions_2022_Phantom.webp\"; filename*=UTF-8''Champions_2022_Phantom.webp\r\netag: \"1pNc2onYfNtCtsWFcR3lfQ==\"\r\nx-thumbnailer: Thumblr\r\nvary: Accept, Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Range\r\nx-cache-hits: ORIGIN\r\nx-cache: ORIGIN\r\nx-served-by: thumblr-7ccdb8dff4-wmlbm\r\ncontent-security-policy: default-src 'none'; script-src 'none'; img-src 'self'; media-src 'self'; style-src 'unsafe-inline'; sandbox; report-uri https://services.fandom.com/csp-logger/csp/thumblr\r\ncache-control: public, max-age=31536000\r\nnel: {\"report_to\":\"nel\",\"max_age\":604800,\"failure_fraction\":0.01}\r\nreport-to: {\"group\":\"nel\",\"endpoints\":[{\"url\":\"https://services.fandom.com/browser-errors/report\"}],\"max_age\":604800,\"include_subdomains\":true}\r\nx-envoy-upstream-service-time: 73\r\ncf-cache-status: HIT\r\nage: 4611\r\naccept-ranges: bytes\r\nset-cookie: __cf_bm=onn1aTqCaASpBNzKNW.XdC_awHX4A6NgNa85sGkLgDk-1775535878-1.0.1.1-ZzkZdyVBSPeR1q9vgl990DM9pePOMEIE40LAHUWqZou3TgHmQlliuSsh8zoyblPUfM8xp15KPouVBKAHst_CysFxJYI0RIu5lFxK.QhWvBc; path=/; expires=Tue, 07-Apr-26 04:54:38 GMT; domain=.nocookie.net; HttpOnly; Secure; SameSite=None\r\ntiming-allow-origin: *\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]}],"data":{"size":13296,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"d6935cda89d87cdb42b6c585711de57d","sha1":"20b5ac79f08d8bea56d415de6352404ce12388a1","sha256":"7e79132388009ff45d96967a70a4ce9eb17c8f1c58a0a0e7b06d5e74d8f29fe9","sha512":"4d9c27dd66346951d5394d7fb7081cccdc5bf596f9e939693a7e4d6c4ae70cd4e286d4a21a91501ce255c54329cff77821a971fc12e2aabbdcbc8e4a31522aa1","ssdeep":"192:7WzVdzpXUelng6m7TX3WijCtmmovnxXHWHrgUFC7/WFGvb2JoXy4vecMxDASwqZB:aPGelng6QDC4mS2rgUFCCaKCnkx03qZB","tlshash":"ca52bfd05836252dbb70bed41423e65bd6cae4f8282b82bee0451456fe256d33c4bca6","first_seen":"2026-04-07T04:25:02.787858Z","last_seen":"2026-04-07T04:25:31.384634Z","times_seen":2,"resource_available":false,"data":null}},"time_used":258,"timings":{"blocked":116,"dns":41,"connect":9,"send":0,"wait":15,"receive":0,"ssl":48},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"valoq.at/valorant/counter","fqdn":"valoq.at","domain":"valoq.at","tld":"at"},"ip":{"addr":"186.2.171.13","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://valoq.at/","date":"2026-04-07T04:24:39.415Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"valoq.at","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Feb 2026 22:44:39 GMT","end":"Wed, 06 May 2026 22:44:38 GMT"},"fingerprint":{"sha1":"D4:9C:01:E7:20:B2:90:F5:6E:A2:17:1B:68:4F:88:13:F6:03:1E:01","sha256":"BF:26:9B:AD:7A:9D:D3:FE:CF:C5:BB:53:6D:5D:02:00:45:98:18:EE:7B:A6:DB:65:56:0E:36:B7:27:7F:0A:85"}}},"request":{"raw":"POST /valorant/counter HTTP/1.1\r\nHost: valoq.at\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://valoq.at/\r\nContent-Type: application/json\r\nContent-Length: 380\r\nOrigin: https://valoq.at\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __ddg8_=92LFly4erhxy7nAh; __ddg10_=1775535878; __ddg9_=91.90.42.154; __ddg1_=KJoFT1qnilk4rh7CoiDk\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":380,"data":"{\"action\":\"visits\",\"userAgent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"language\":\"en-US\",\"width\":1280,\"height\":1024,\"colorDepth\":24,\"timezone\":\"UTC\",\"hasLocalStorage\":true,\"hasSessionStorage\":true,\"hasWebGL\":true,\"gpuInfo\":{\"vendor\":\"Mesa\",\"renderer\":\"llvmpipe\"},\"hasTouch\":false,\"cpuCores\":48,\"deviceMemory\":\"Unknown\",\"doNotTrack\":\"1\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=f4iJfcuibjrQkaMq; Domain=.valoq.at; Path=/; Expires=Tue, 07-Apr-2026 04:44:39 GMT\n__ddg10_=1775535879; Domain=.valoq.at; Path=/; Expires=Tue, 07-Apr-2026 04:44:39 GMT\n__ddg9_=91.90.42.154; Domain=.valoq.at; Path=/; Expires=Tue, 07-Apr-2026 04:44:39 GMT\r\nstrict-transport-security: max-age=31536000\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Tue, 07 Apr 2026 04:24:39 GMT\r\ncontent-type: application/json; charset=utf-8\r\nx-powered-by: Express\r\naccess-control-allow-origin: *\r\netag: W/\"10-oV4hJxRVSENxc/wX8+mA4/Pe4tA\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]},{"name":"Express","description":"Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs.","website":"https://expressjs.com","common_platform_enumeration":"cpe:2.3:a:expressjs:express:*:*:*:*:*:*:*:*","icon":"Express.svg","categories":["Web frameworks","Web servers"]}],"data":{"size":16,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"7363e85fe9edee6f053a4b319588c086","sha1":"a15e2127145548437173fc17f3e980e3f3dee2d0","sha256":"c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97","sha512":"a2fd24056e3ec2f1628f89eb2f1b36a9fc2437ae58d34190630fe065df2bbedaf9bd8aee5f8949a002070052ca68cc6c0167214dd55df289783cff682b808d85","ssdeep":"","tlshash":"f0600003000000a2c000220002382e202080002280000008800c20088a20000208300a","first_seen":"2023-04-05T04:17:27Z","last_seen":"2026-04-07T09:15:35.183869Z","times_seen":116607,"resource_available":false,"data":null}},"time_used":38,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":38,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"valoq.at","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"valoq.at","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-07","alert":"Phishing Block","trigger":"valoq.at","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"valoq.at","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"valoq.at","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-07","alert":"Sinkholed","trigger":"valoq.at","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Montserrat:wght@600;700;800\u0026family=Inter:wght@400;500;600\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://valoq.at/","date":"2026-04-07T04:24:38.085Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:41 GMT","end":"Mon, 08 Jun 2026 08:38:40 GMT"},"fingerprint":{"sha1":"03:81:A0:0E:E1:9B:80:A3:BC:CD:F9:25:A5:7B:8A:43:07:22:C6:00","sha256":"73:8D:9A:B1:F0:C3:6E:8F:EE:C0:2F:99:C8:89:24:16:9A:DB:D1:9C:27:5D:8A:7A:A8:2B:0E:10:42:28:53:7F"}}},"request":{"raw":"GET /css2?family=Montserrat:wght@600;700;800\u0026family=Inter:wght@400;500;600\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://valoq.at/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Tue, 07 Apr 2026 04:24:38 GMT\r\ndate: Tue, 07 Apr 2026 04:24:38 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":13362,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"c9d5b4a537e0d8544485d84cd279ec32","sha1":"8f3f10dec7a9bd12867dd99296d0378a6e2d4b14","sha256":"ed81132cb28a76525b7af5a59e11975c9670b40e00351d9952416f3438bd1c7d","sha512":"4039377bb5bef7167f07934a5a98d9a328c845c28f32ee924ea6da02f2801c5d7d046b001b4bbf9da0a80783f71c7019e1bd86c6926810084e98688149e38ca0","ssdeep":"192:9NNIxO34OxDENOPCO3/Nx8NNryfO3iExlERS719Ocu6RB7W+OjuTRU7XPOKu8:vXuM0pUajdfMh","tlshash":"a852bb91002be500ab871cc623cf7f3aae8e60957495c5796ffd1cd8aceac26436572d","first_seen":"2025-11-08T17:36:13.757651Z","last_seen":"2026-04-07T04:25:31.381923Z","times_seen":7,"resource_available":false,"data":null}},"time_used":165,"timings":{"blocked":71,"dns":1,"connect":7,"send":0,"wait":20,"receive":0,"ssl":63},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}