{"report_id":"95c7823a-4a0f-4704-9a69-3b16e58f0bed","version":6,"status":"done","tags":[],"date":"2026-01-06T13:33:49Z","url":{"schema":"http","addr":"checker-brevis.network","fqdn":"checker-brevis.network","domain":"checker-brevis.network","tld":"network"},"ip":{"addr":"172.67.172.207","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"checker-brevis.network/","fqdn":"checker-brevis.network","domain":"checker-brevis.network","tld":"network"},"title":"Brevis Airdrop Registration Portal","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"checker-brevis.network","fqdn":"checker-brevis.network","domain":"checker-brevis.network","tld":"network"},"ip":{"addr":"172.67.172.207","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-02-10T13:33:49Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null},"summary":[{"fqdn":"checker-brevis.network","ip":{"addr":"172.67.172.207","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-01-06T13:33:50.116105Z","last_seen":"2026-01-06T13:33:50.116105Z","alert_count":36,"request_count":18,"received_data":6515149,"sent_data":8520,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"checker-brevis.network/","fqdn":"checker-brevis.network","domain":"checker-brevis.network","tld":"network"},"ip":{"addr":"172.67.172.207","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"4149341b7e248d6c12e9d7f0f3592e52","sha1":"86358e7fe78337c2468bb62a19d75b416e9f2184","sha256":"fa494689bbe3c8af08e10010b89e72c90d1e195526574868700dfc9a083bb962","sha512":"6b74ebc423dcc758bdd1d92da41708bfb6141491026fa29b0b2bbbc9951d767261cb191f40dedf60cd4a587ef184be1e58c87ec0a680e003a24d278371660d66","ssdeep":"","tlshash":"3401f65d27f332b9627f2162d2038489be50506370dadc49741c91894fd6e6464de69a","size":713,"data":"","first_seen":"2025-08-31T03:07:46.728338Z","last_seen":"2026-02-14T02:56:08.979808Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"checker-brevis.network/04f3a295-52e8-4d11-bf63-e5fd20828522","fqdn":"checker-brevis.network","domain":"checker-brevis.network","tld":"network"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"ec26a722169cb2cef03353fcf8dd144a","sha1":"6eec6673abcde3d29547796a38361256d9efde1c","sha256":"01861fcd47bc63bb7be76c480bad4c6cc987c8996ab0e023a4e692b68c94b05c","sha512":"c885e5d94bd96fa4a573524356e0ca7398b1489f5a39fc1120cf7f4e469950630ad3e9f48dd0392acd36da390c27a4be1e81da943d1d9ecd48890d1691e416cf","ssdeep":"6144:Ufg7z90bnvLZqnWTI9esVTMuyEvtzXNglxQP92L:VzBe6kEdOxQoL","tlshash":"bf740980b261b07247da24e10477540af339e96c744a40acf6a8d8fb7dbd589957ff38","size":357754,"data":"","first_seen":"2025-07-12T22:38:09.13306Z","last_seen":"2026-04-11T18:00:32.049047Z","times_seen":5077,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"checker-brevis.network/","fqdn":"checker-brevis.network","domain":"checker-brevis.network","tld":"network"},"ip":{"addr":"172.67.172.207","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"28633931a8fe317e17a243486c27f20d","sha1":"b59183e94b7ea6d4fa0a7d52053b1aea81a0c4e6","sha256":"2795a6440e4d391a65885a28da0fb29c3ee633bb9f0fce4a516318a72104f290","sha512":"6127d2a48b8ba706153b34ce7ff3a99cb3b7a7ebbf627d492e0f8f37e6fe56e80190a5dacc5308d2301ea86bccc100f318588f06e81ffaefced46870235890d7","ssdeep":"768:9uhLtc0f9psasVbGoy7pM5vRjVUjIL/cJCqYUJ4izVIc6ETsbccQcAcUcjc9cycD:M9yGbe33sdtThRK8s9","tlshash":"3f8360d9a91bd0d58e5220ced477e809e4280963cdacf1a3b92ceed1745df62c44b27b","size":82248,"data":"","first_seen":"2025-12-31T16:20:29.60055Z","last_seen":"2026-02-22T23:08:24.40305Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"checker-brevis.network/orion.js","fqdn":"checker-brevis.network","domain":"checker-brevis.network","tld":"network"},"ip":{"addr":"172.67.172.207","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"4ef784c5f77fd85a3faf1aced393f438","sha1":"7d56a9e40e763f22051cffd86dfee583d6c4affe","sha256":"ab3c953f398dbf5a37fba7164faf9a2a13f7870ca9d88869456946d6c900e6fa","sha512":"06cbc54a5d338c3d4405099cab32324a9f0cede4df6ccece9800f382e691c60fba9096939a324c6bcad984dd676fa7a62ca52f29b69360ff2703e8a02c24f062","ssdeep":"768:MGhL9c6PhJQaginy+8NhdhxWI68EHjWUGUCKeMcijODHcrsqYUJ4izlKc6mls5gB:LhQina7dPWI68EHJ6KaA3nlTRKQmi","tlshash":"1a8341da590bd0d68e5210ced477fc09e4680963cdacf1a3aa6cddc6b45ef62844723b","size":85337,"data":"","first_seen":"2025-12-31T16:20:29.545264Z","last_seen":"2026-02-22T23:08:24.35442Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"checker-brevis.network/walletWhite.e2a44706.svg","fqdn":"checker-brevis.network","domain":"checker-brevis.network","tld":"network"},"ip":{"addr":"172.67.172.207","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://checker-brevis.network/","date":"2026-01-06T13:33:26.877Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-brevis.network","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 08:56:20 GMT","end":"Sun, 29 Mar 2026 09:55:07 GMT"},"fingerprint":{"sha1":"F9:95:06:CE:E2:AF:30:C3:72:6F:95:E0:EA:F2:F8:0E:B7:90:58:D8","sha256":"57:D3:B6:93:83:17:E3:B7:53:86:EC:80:00:EB:28:D2:5B:8A:C4:75:C2:E7:F0:B9:38:8E:AB:8D:F2:B2:6B:FB"}}},"request":{"raw":"GET /walletWhite.e2a44706.svg HTTP/1.1\r\nHost: checker-brevis.network\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://checker-brevis.network/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 06 Jan 2026 13:33:26 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\nlast-modified: Mon, 29 Dec 2025 10:44:36 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69525b94-738\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=AVyKyt5kxawSdQ5Ly%2FlQ9iIkqqgtGvWtjfRRQNq7RQlGnKkBNoUX8%2Fmmdy%2FBaiuQC5WndtcK5rY1rpzu4yCeFRevMdm%2FXJIL2IwaT6%2F5WikPI4485q8%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9b9b9652df024c11-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1848,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"d7740f599b2de3b5232944be548f31a2","sha1":"31f5715cbf82c667238575dbfc14d01dddc0ce84","sha256":"d241b9902084eb43e6b235a3716a1bb4de88349c7e50930fc1dc571a653cf46e","sha512":"ed7126c1fc46f4cc935ee455689282845dbaef74eaf3c495be6f0062e214ac3760971560dc0fe40f3ebde5478307c78b0aacee69360db35801d4e693e5605ab9","ssdeep":"","tlshash":"e03122f7d2d435e0e643d76a9728d074f67230fcbb6d4b068230fad2624415bdaad885","first_seen":"2025-12-31T12:29:56.272951Z","last_seen":"2026-01-22T01:33:10.063097Z","times_seen":7,"resource_available":false,"data":null}},"time_used":96,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":96,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"checker-brevis.network/discordBtn.3b399ec4.svg","fqdn":"checker-brevis.network","domain":"checker-brevis.network","tld":"network"},"ip":{"addr":"172.67.172.207","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://checker-brevis.network/","date":"2026-01-06T13:33:26.879Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-brevis.network","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 08:56:20 GMT","end":"Sun, 29 Mar 2026 09:55:07 GMT"},"fingerprint":{"sha1":"F9:95:06:CE:E2:AF:30:C3:72:6F:95:E0:EA:F2:F8:0E:B7:90:58:D8","sha256":"57:D3:B6:93:83:17:E3:B7:53:86:EC:80:00:EB:28:D2:5B:8A:C4:75:C2:E7:F0:B9:38:8E:AB:8D:F2:B2:6B:FB"}}},"request":{"raw":"GET /discordBtn.3b399ec4.svg HTTP/1.1\r\nHost: checker-brevis.network\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://checker-brevis.network/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 06 Jan 2026 13:33:27 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\nlast-modified: Mon, 29 Dec 2025 10:44:36 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69525b94-276be\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=QkcFtTgdtBAm4PKux0xMnx8c74thcowyufsYbIIchc%2FP8FAT48Tzg%2FZLaQ0fe8LKxsPjCwEWgyHjzRORCFhd5%2BfNPLqsuX9AQkoNMc6ojoBGx2jpMxs%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9b9b9652df034c11-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":161470,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"4c3e8e1adbf62f0b3dde614132af7d7b","sha1":"ad48b07ef4723f7e24e56fabe0c8f7c5db4b19ad","sha256":"91a71e853a03a81d63a0d3e314ae562a732840088dbf7bd8b88b8b6e65cc6ea2","sha512":"1a767ca1c69e1f3c931ee0ef391047de33b58182ae96593d661ccf941adac6eb6b003a2a8bed98b022fcaba897adac149dc8848197777c8bc5d4177decc99125","ssdeep":"1536:WKk1kPUAIYYsltyHw1JHUIPJdgC04dtsBJPC7Rlkg7FIkYC:JQTrsltewrH7TfdtCC7Rlkg72kYC","tlshash":"67f3052a4c4c7b5e3b331c2fcb07247e3f9a65eda24990cf299e70e9d226050d665de4","first_seen":"2026-01-06T13:33:54.613153Z","last_seen":"2026-01-13T14:56:10.217446Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1234,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1141,"receive":93,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"checker-brevis.network/s2Discord.14658582.svg","fqdn":"checker-brevis.network","domain":"checker-brevis.network","tld":"network"},"ip":{"addr":"172.67.172.207","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://checker-brevis.network/","date":"2026-01-06T13:33:26.891Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-brevis.network","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 08:56:20 GMT","end":"Sun, 29 Mar 2026 09:55:07 GMT"},"fingerprint":{"sha1":"F9:95:06:CE:E2:AF:30:C3:72:6F:95:E0:EA:F2:F8:0E:B7:90:58:D8","sha256":"57:D3:B6:93:83:17:E3:B7:53:86:EC:80:00:EB:28:D2:5B:8A:C4:75:C2:E7:F0:B9:38:8E:AB:8D:F2:B2:6B:FB"}}},"request":{"raw":"GET /s2Discord.14658582.svg HTTP/1.1\r\nHost: checker-brevis.network\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://checker-brevis.network/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 06 Jan 2026 13:33:26 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\nlast-modified: Mon, 29 Dec 2025 10:44:36 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69525b94-d14\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=NCwh7mML%2Fu4DwC5eMrRfl1Q1CAAyR%2BZ98BDUo30L0RROMNanuOG5XkLkn8Qm0N8JB%2F%2Fn6PwsvG293yl53BNF3BDxznnO7R%2BwgGPRwz8UD4n7pRipPUM%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9b9b9652ef064c11-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3348,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"51b14ed89f65baa28648ebb131c3b3a0","sha1":"e51896193eefc4368c343c1bba3bf57b2ac805c6","sha256":"224b60547bf5e30769c4aa4618e0cda1c5a1fb302fcf6f8b4dd08c3113c760ad","sha512":"d4d038c8b00e99c2112a38098eb4e9d6c424c61c3f55eeba3f7bcfce849d62d045fa08550e35fb4dc340ec710600552256d92ff4da15eeb394e8bf51341841b5","ssdeep":"","tlshash":"146100e596d4b3f4a14bebe8d438c461baf330fabb95ca8542517990fe1245889cdcc4","first_seen":"2025-09-12T04:21:12.703059Z","last_seen":"2026-02-03T16:33:39.737711Z","times_seen":19,"resource_available":false,"data":null}},"time_used":102,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":102,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"checker-brevis.network/HKNova-Medium.otf","fqdn":"checker-brevis.network","domain":"checker-brevis.network","tld":"network"},"ip":{"addr":"172.67.172.207","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://checker-brevis.network/","date":"2026-01-06T13:33:26.847Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-brevis.network","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 08:56:20 GMT","end":"Sun, 29 Mar 2026 09:55:07 GMT"},"fingerprint":{"sha1":"F9:95:06:CE:E2:AF:30:C3:72:6F:95:E0:EA:F2:F8:0E:B7:90:58:D8","sha256":"57:D3:B6:93:83:17:E3:B7:53:86:EC:80:00:EB:28:D2:5B:8A:C4:75:C2:E7:F0:B9:38:8E:AB:8D:F2:B2:6B:FB"}}},"request":{"raw":"GET /HKNova-Medium.otf HTTP/1.1\r\nHost: checker-brevis.network\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://checker-brevis.network/163713f09061c298.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 06 Jan 2026 13:33:26 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 60688\r\nlast-modified: Mon, 29 Dec 2025 10:44:36 GMT\r\netag: \"69525b94-ed10\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=dfGl1uDpqJgiovzxam03vl1t4gZWjzlL%2Ff8mmgfLTPlQ07wc3E78zv9Yw2ZbN9BUzDbZndW9h%2B50J4u5xSIdLo6db%2BBnH9yDD0C%2BMYz3DTrPKSmmQno%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: accept-encoding\r\ncf-ray: 9b9b9652cefc4c11-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":60688,"size_decoded":0,"mime_type":"application/octet-stream","magic":"OpenType font data","md5":"6bc1af50b399a19ec028a4039075dcdb","sha1":"ac71be8db68bc8519b2bd4b8cc99ca6a6512a035","sha256":"ddbe49b45b9526d33af3dc7f9c4c4a7efa9a6f9c1aba182b33a5ad21d4b512db","sha512":"39a3c5917a3ada6fa354bc5a8a88dd88fa6629efb65b683bb95fceede889e844d86065e18946d7a9d42707b322cd3b4395fc899257ff53b05a86f5a83187ab67","ssdeep":"1536:sHcq1W1YCj5/exlkyTJo0Ieidduc36TSCL+S7dgwD17N149oRRBUh3ImR:AcY1CNexlzTJlfDL+7x","tlshash":"4e538d53e7c0774ed9468ff138aa870a33329784c61c9b5bd585aa04bc927bc1ca47ce","first_seen":"2025-06-30T04:07:07.919895Z","last_seen":"2026-02-18T14:06:51.263181Z","times_seen":16,"resource_available":false,"data":null}},"time_used":170,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":107,"receive":62,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"checker-brevis.network/register_bg.png","fqdn":"checker-brevis.network","domain":"checker-brevis.network","tld":"network"},"ip":{"addr":"172.67.172.207","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://checker-brevis.network/","date":"2026-01-06T13:33:26.837Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-brevis.network","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 08:56:20 GMT","end":"Sun, 29 Mar 2026 09:55:07 GMT"},"fingerprint":{"sha1":"F9:95:06:CE:E2:AF:30:C3:72:6F:95:E0:EA:F2:F8:0E:B7:90:58:D8","sha256":"57:D3:B6:93:83:17:E3:B7:53:86:EC:80:00:EB:28:D2:5B:8A:C4:75:C2:E7:F0:B9:38:8E:AB:8D:F2:B2:6B:FB"}}},"request":{"raw":"GET /register_bg.png HTTP/1.1\r\nHost: checker-brevis.network\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://checker-brevis.network/565e8dd4e0019135.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 06 Jan 2026 13:33:26 GMT\r\ncontent-type: image/png\r\ncontent-length: 225441\r\nlast-modified: Mon, 29 Dec 2025 10:44:36 GMT\r\netag: \"69525b94-370a1\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=sz%2FB2ie2dDa8rbW%2Fhnu7IRApa37%2F0hqIQxgyyiwT9Yk028hBSuJ0hMxON1fBbSrzPTw7q9nfeK67y662s4FckV1YEXhERjy7kHnjMV6%2BYSSqX5R2dP8%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: accept-encoding\r\ncf-ray: 9b9b9652bef94c11-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":225441,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1440 x 836, 8-bit colormap, non-interlaced","md5":"250306e45cf4a8ffe74052ea70379f6d","sha1":"d8e58b89546da8402d73df9fdca253e31b3699e0","sha256":"c292ff3b44ff1e8937dfa38b0aaa9220b82808fb7998b88453b0ae1588effe0c","sha512":"05ed67e63f11fab01ed64d7eac1450508641034a8d666fc7a62d692b238ba5be3866c027afc2a64652ceaa4d3c1ead67b7044acd60c90cdf998bdae9b1ab6231","ssdeep":"6144:4u0lZCniFTEDpqlheF9xjJuPgfial8FGBkYc3EhNoWvVirG:4u0lUni1+xziaO27us","tlshash":"212423455f0b29515632f4822c274eb6be60ac6f29f09bb4c47be873b6876581e90f70","first_seen":"2025-12-31T12:29:56.284251Z","last_seen":"2026-01-22T01:33:10.092178Z","times_seen":7,"resource_available":false,"data":null}},"time_used":230,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":104,"receive":126,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"checker-brevis.network/HKNova-Regular.otf","fqdn":"checker-brevis.network","domain":"checker-brevis.network","tld":"network"},"ip":{"addr":"172.67.172.207","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://checker-brevis.network/","date":"2026-01-06T13:33:26.840Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-brevis.network","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 08:56:20 GMT","end":"Sun, 29 Mar 2026 09:55:07 GMT"},"fingerprint":{"sha1":"F9:95:06:CE:E2:AF:30:C3:72:6F:95:E0:EA:F2:F8:0E:B7:90:58:D8","sha256":"57:D3:B6:93:83:17:E3:B7:53:86:EC:80:00:EB:28:D2:5B:8A:C4:75:C2:E7:F0:B9:38:8E:AB:8D:F2:B2:6B:FB"}}},"request":{"raw":"GET /HKNova-Regular.otf HTTP/1.1\r\nHost: checker-brevis.network\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://checker-brevis.network/163713f09061c298.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 06 Jan 2026 13:33:26 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 59824\r\nlast-modified: Mon, 29 Dec 2025 10:44:36 GMT\r\netag: \"69525b94-e9b0\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=4QsrNuHdlr3MFX28us0r%2BrtWP9WrkAoGWSbv2TxwLxW4OA6ueOqYiJ%2F6PfSDQB9xr4G2oLQ0o3Qd53A5ZaA66rMXpXSFOd%2FmBywivEOfJSTQPd8uwRU%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: accept-encoding\r\ncf-ray: 9b9b9652befa4c11-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":59824,"size_decoded":0,"mime_type":"application/octet-stream","magic":"OpenType font data","md5":"9bbb28fc6e240832f855d8eabc048cce","sha1":"3fcfbbcb4596e7baced43896e8f86c76c2c3592c","sha256":"36e2fe3a4653c3bed058641b2e6c9279b7c9fe458b0120bb39655a4571f31a7f","sha512":"0a17a3076d1d8cc7e77b37c963eb58a20b324691a378bbaf1069985786054a91d859ae1f3007e886b9fc8bde4772ac4ef37471a1ba1530ee1d00cd626e2a7cef","ssdeep":"1536:kl3FoQ1u4RLhbjR5jfWsiGbmzvCc84n8G++zmR:8FoH411vjfWoZc848W4","tlshash":"2f439e45fb152b08e6224f302cba830d3378e65dcb2ad757bcc94655dcc2be819952cb","first_seen":"2023-07-12T05:59:24Z","last_seen":"2026-02-18T14:06:51.331907Z","times_seen":20,"resource_available":false,"data":null}},"time_used":168,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":105,"receive":63,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"checker-brevis.network/logoSmall.5c66ec06.svg","fqdn":"checker-brevis.network","domain":"checker-brevis.network","tld":"network"},"ip":{"addr":"172.67.172.207","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://checker-brevis.network/","date":"2026-01-06T13:33:26.871Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-brevis.network","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 08:56:20 GMT","end":"Sun, 29 Mar 2026 09:55:07 GMT"},"fingerprint":{"sha1":"F9:95:06:CE:E2:AF:30:C3:72:6F:95:E0:EA:F2:F8:0E:B7:90:58:D8","sha256":"57:D3:B6:93:83:17:E3:B7:53:86:EC:80:00:EB:28:D2:5B:8A:C4:75:C2:E7:F0:B9:38:8E:AB:8D:F2:B2:6B:FB"}}},"request":{"raw":"GET /logoSmall.5c66ec06.svg HTTP/1.1\r\nHost: checker-brevis.network\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://checker-brevis.network/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 06 Jan 2026 13:33:26 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\nlast-modified: Mon, 29 Dec 2025 10:44:36 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69525b94-ee7\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=8q6tOc8CGf%2FUZ1LEYugA9iOvfBVOfnzscHAT78pEA0QthNX6kbqxj72D4ke7PVg1qKZf3NSFwvYiD3g061pH4%2BtIhmjgETRmrZeZuZPKtQeavk9Saq8%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9b9b9652deff4c11-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3815,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"224962cb13eb3047e1b9da867ddc138e","sha1":"586fa70d74c664ebc5f681330212db6d2631ebe4","sha256":"5004570e955f503f325d5e74624ab09de85c9fbf44914cb12a1467ac764a24a6","sha512":"e9196371577b89e283ff06e4647861adc723911b6ca81a9f199a2358dcd5210acec95ebd9c8de2f3dc5b78202e0a624d0f27effc19cb1ee4d954910105fe7456","ssdeep":"","tlshash":"1c71b89473f1e2f4f048dbdc4625b5727a3334e73661919e83510d64f63549d88d58f1","first_seen":"2025-12-31T12:29:56.266777Z","last_seen":"2026-02-03T16:33:39.753728Z","times_seen":9,"resource_available":false,"data":null}},"time_used":103,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":103,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"checker-brevis.network/bgBottom.19634489.svg","fqdn":"checker-brevis.network","domain":"checker-brevis.network","tld":"network"},"ip":{"addr":"172.67.172.207","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://checker-brevis.network/","date":"2026-01-06T13:33:26.874Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-brevis.network","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 08:56:20 GMT","end":"Sun, 29 Mar 2026 09:55:07 GMT"},"fingerprint":{"sha1":"F9:95:06:CE:E2:AF:30:C3:72:6F:95:E0:EA:F2:F8:0E:B7:90:58:D8","sha256":"57:D3:B6:93:83:17:E3:B7:53:86:EC:80:00:EB:28:D2:5B:8A:C4:75:C2:E7:F0:B9:38:8E:AB:8D:F2:B2:6B:FB"}}},"request":{"raw":"GET /bgBottom.19634489.svg HTTP/1.1\r\nHost: checker-brevis.network\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://checker-brevis.network/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 06 Jan 2026 13:33:26 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\nlast-modified: Mon, 29 Dec 2025 10:44:36 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69525b94-b70\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=AewGdEgOGkhd4sJuqxtpaJHAr20Xdz1jrz4E%2BEAxP2pREGTWwLDXqGuSzYh1A3JzUkhRQjY85Vj9Zudri8mRMaWpEoxkNurNneDj1RBHqd0ltj%2FoBAI%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9b9b9652df014c11-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2928,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"afb7bc1ba9a305b4f20947bf1d556812","sha1":"f4080c4ff0599e4683012df0f1f143b871af8da0","sha256":"b84d0eb4f91263b3b526d86971036a4fedaed6b1f2bed2dc08df8df69968c466","sha512":"e51c893c72564c72b55e1e99544b920d643ae97ea3f9368aac423e8901c2d5a31fbab743c7802161f4c558e2879830fb87771b5a7756476ba1e8a4cc45357bc3","ssdeep":"","tlshash":"7c5133b9f1bdec1fa5d58274fbd2851114598096c480836ad09eff2f322a9c1f91f2d4","first_seen":"2025-12-31T12:29:56.270464Z","last_seen":"2026-01-22T01:33:10.094739Z","times_seen":7,"resource_available":false,"data":null}},"time_used":108,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":108,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"checker-brevis.network/xBtn.a986b1fa.svg","fqdn":"checker-brevis.network","domain":"checker-brevis.network","tld":"network"},"ip":{"addr":"172.67.172.207","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://checker-brevis.network/","date":"2026-01-06T13:33:26.887Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-brevis.network","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 08:56:20 GMT","end":"Sun, 29 Mar 2026 09:55:07 GMT"},"fingerprint":{"sha1":"F9:95:06:CE:E2:AF:30:C3:72:6F:95:E0:EA:F2:F8:0E:B7:90:58:D8","sha256":"57:D3:B6:93:83:17:E3:B7:53:86:EC:80:00:EB:28:D2:5B:8A:C4:75:C2:E7:F0:B9:38:8E:AB:8D:F2:B2:6B:FB"}}},"request":{"raw":"GET /xBtn.a986b1fa.svg HTTP/1.1\r\nHost: checker-brevis.network\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://checker-brevis.network/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 06 Jan 2026 13:33:26 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\nlast-modified: Mon, 29 Dec 2025 10:44:36 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69525b94-2ec8\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=maZ5adCk%2F4FT4cAZDdodvkU1SuxFoXRXOXM5vQDVVR5%2BGeF1kyx7Cp5mOGRS0kFavA9LO8bkHkXbFjf9thwty23jME6KP5tFn1oXoDu7sISUZ8pj4jg%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9b9b9652ef044c11-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":11976,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"2199cfcdc10543ec859f60e306c962c3","sha1":"6b1ba80767b26e1c90326cd5464125dddd814232","sha256":"55e3a97b9f4017fd9abd4ff5758aa9f77d97057463b33c06df4b261d1b91310d","sha512":"b178a7329671049484101c2de1fd24b4bc98d6fc44f9b2891dcad90cee334f5625e6748efea2afe75f6c12451e61a3baebf746b2d32a7f5ba8a6f57f913a2026","ssdeep":"192:UieeD7yyMEVk18DFvvsU05VvhCa2e69Y0MzfVlM24q2xCPes/1F:U4/yyQ1YvkU0Hh5691gdUXx9K1F","tlshash":"c132af258a4ae75fe4470a64a0e4a802dc6db797c0c89f8bdda1f834dc14c4454a9fda","first_seen":"2026-01-06T13:33:54.62247Z","last_seen":"2026-01-13T14:56:10.210003Z","times_seen":2,"resource_available":false,"data":null}},"time_used":125,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":96,"receive":29,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"checker-brevis.network/s2twitter.5d0b01d6.svg","fqdn":"checker-brevis.network","domain":"checker-brevis.network","tld":"network"},"ip":{"addr":"172.67.172.207","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://checker-brevis.network/","date":"2026-01-06T13:33:26.889Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-brevis.network","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 08:56:20 GMT","end":"Sun, 29 Mar 2026 09:55:07 GMT"},"fingerprint":{"sha1":"F9:95:06:CE:E2:AF:30:C3:72:6F:95:E0:EA:F2:F8:0E:B7:90:58:D8","sha256":"57:D3:B6:93:83:17:E3:B7:53:86:EC:80:00:EB:28:D2:5B:8A:C4:75:C2:E7:F0:B9:38:8E:AB:8D:F2:B2:6B:FB"}}},"request":{"raw":"GET /s2twitter.5d0b01d6.svg HTTP/1.1\r\nHost: checker-brevis.network\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://checker-brevis.network/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 06 Jan 2026 13:33:27 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\nlast-modified: Mon, 29 Dec 2025 10:44:36 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69525b94-146\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=hNLVe5ALGA8ea7kn%2BYMJ6WDHliPufcFzIYD1QNuBG08d7CxELAt9T4lXPyqupNmBhfhcANiaLlfuOZ9QU%2FYiu2qjhGTRYIUa18MwNuNNF%2BxnDiPkykk%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9b9b9652ef054c11-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":326,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a02e753df6b33f626d6610fc2463a094","sha1":"bf5c50660e79ec123dd5bc8ea00db2bb3c0025ae","sha256":"9681dfdd1c5facfe8dc259c5a20e50242145ed21e0eb542e96aaf0b0b8b7b1b3","sha512":"e68ed108e7a3ca90de63e8e1916dbb7312b444a5fc8d35d2932999e138ddfed735b285fabf9fa7c86aae5c18341dd324571badc0ac96e1c5db1ead701f8de708","ssdeep":"","tlshash":"04e07da6c1d8c00ced00c754757d983545572ab2d7bd529cf453620cac4e9d78c5f998","first_seen":"2025-09-12T04:21:12.722314Z","last_seen":"2026-02-03T16:33:39.758415Z","times_seen":19,"resource_available":false,"data":null}},"time_used":1128,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1128,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"checker-brevis.network/","fqdn":"checker-brevis.network","domain":"checker-brevis.network","tld":"network"},"ip":{"addr":"172.67.172.207","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-06T13:33:25.141Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-brevis.network","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 08:56:20 GMT","end":"Sun, 29 Mar 2026 09:55:07 GMT"},"fingerprint":{"sha1":"F9:95:06:CE:E2:AF:30:C3:72:6F:95:E0:EA:F2:F8:0E:B7:90:58:D8","sha256":"57:D3:B6:93:83:17:E3:B7:53:86:EC:80:00:EB:28:D2:5B:8A:C4:75:C2:E7:F0:B9:38:8E:AB:8D:F2:B2:6B:FB"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: checker-brevis.network\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 06 Jan 2026 13:33:25 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nlast-modified: Mon, 29 Dec 2025 10:44:36 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=q4O2oTYf23cvwUD7Ctt5oR0MYXzV6Hnaiqq2BN%2FQuyl0mweVYdYNpEJxMJiaXkH3jIkoTOkV7Kbb%2Bwe5gxS9na58AvQmeFAUU4orrIZA768iRCOtI8U%3D\"}]}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9b9b96488ebb2efa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6936,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with CRLF line terminators","md5":"0b8478b68cf217870aaadfb8ff784308","sha1":"7843a31f94bc2cd184241c9cd9d289378b9fe88d","sha256":"9b3ec0af6f480ccfcfe33a096105bbcab009ed5fea65ef5d31d080f87bc04e75","sha512":"a340a50dbaafda672cbb151090722d3165abc2c05b30aa35662baef48c6cde65a8aa282c56e9af09565ae5e461fe315871b52ced6cb80ba50122893b59550e28","ssdeep":"96:lMhxMpqQ5iebkd2fcOQEzvbVr9lUdjCKb5EQJ:lMhxMpqQ5lkzcbLm1BJ","tlshash":"0de11f30a990251a633706a2b432d20de223e60b9f6619acb7dc91d54ff7de79c220cd","first_seen":"2026-01-06T13:33:54.62455Z","last_seen":"2026-01-13T14:56:10.205267Z","times_seen":2,"resource_available":false,"data":null}},"time_used":251,"timings":{"blocked":68,"dns":50,"connect":1,"send":0,"wait":114,"receive":0,"ssl":15},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"checker-brevis.network/s2telegram.31614e9c.svg","fqdn":"checker-brevis.network","domain":"checker-brevis.network","tld":"network"},"ip":{"addr":"172.67.172.207","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://checker-brevis.network/","date":"2026-01-06T13:33:26.893Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-brevis.network","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 08:56:20 GMT","end":"Sun, 29 Mar 2026 09:55:07 GMT"},"fingerprint":{"sha1":"F9:95:06:CE:E2:AF:30:C3:72:6F:95:E0:EA:F2:F8:0E:B7:90:58:D8","sha256":"57:D3:B6:93:83:17:E3:B7:53:86:EC:80:00:EB:28:D2:5B:8A:C4:75:C2:E7:F0:B9:38:8E:AB:8D:F2:B2:6B:FB"}}},"request":{"raw":"GET /s2telegram.31614e9c.svg HTTP/1.1\r\nHost: checker-brevis.network\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://checker-brevis.network/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 06 Jan 2026 13:33:27 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\nlast-modified: Mon, 29 Dec 2025 10:44:36 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69525b94-54f\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=18gyYfuXiGVndxey7obeEn8C0Qm%2FbQbfmjCbqyDkKhhxTqT5ftXENtvSkeDM45yvMEAtz4Cn9WW0fMOkAcVMWTiRdt0lM2oeKhKbTRpR1psBZJzj4Iw%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9b9b9652ef074c11-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1359,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"0bf692c271697a1ccc9bf83134cab1b2","sha1":"d69d8e0a996a869fae309f0ee219b7fcd99f5b0e","sha256":"d98b65a1287f991644cc6e3abb55fe006a858b73a0344d587ce8ce1f3c98d123","sha512":"4415eda4a4c2694b937017cb63e4397f75e63475622b30d5167c47fccb889a77295744ecddddfef135b19a3794dc5f39d6827038a67f641863072d2dc04f2440","ssdeep":"","tlshash":"7821537337dde5b09109c3b1c27a85a77a6628fc6f6cd34e81902b00b822271940ccd5","first_seen":"2025-09-12T04:21:12.682495Z","last_seen":"2026-01-22T01:33:10.07924Z","times_seen":13,"resource_available":false,"data":null}},"time_used":1120,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1120,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"checker-brevis.network/secureproxy?e=jscdn/getFile","fqdn":"checker-brevis.network","domain":"checker-brevis.network","tld":"network"},"ip":{"addr":"172.67.172.207","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://checker-brevis.network/","date":"2026-01-06T13:33:26.904Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-brevis.network","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 08:56:20 GMT","end":"Sun, 29 Mar 2026 09:55:07 GMT"},"fingerprint":{"sha1":"F9:95:06:CE:E2:AF:30:C3:72:6F:95:E0:EA:F2:F8:0E:B7:90:58:D8","sha256":"57:D3:B6:93:83:17:E3:B7:53:86:EC:80:00:EB:28:D2:5B:8A:C4:75:C2:E7:F0:B9:38:8E:AB:8D:F2:B2:6B:FB"}}},"request":{"raw":"POST /secureproxy?e=jscdn/getFile HTTP/1.1\r\nHost: checker-brevis.network\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://checker-brevis.network/\r\nContent-Type: application/json\r\nContent-Length: 37\r\nOrigin: https://checker-brevis.network\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":37,"data":"{\"permit_key\":\"hucjxxxamlrkzv2nf47v\"}"}},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 06 Jan 2026 13:33:27 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,PATCH,OPTIONS\r\naccess-control-allow-headers: Content-Type, Authorization, Content-Length, X-Requested-With, Accept, Origin\r\naccess-control-allow-credentials: true\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding, origin, access-control-request-method, access-control-request-headers\r\nx-content-type-options: nosniff, nosniff\r\nx-frame-options: DENY\r\nx-xss-protection: 1; mode=block, 1; mode=block\r\nreferrer-policy: strict-origin-when-cross-origin\r\ncontent-security-policy: default-src 'self', frame-ancestors http: https:\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=0FNb6lYNGbseLH%2Byb2KypBv4g5QdqtPLjD6D0QryzcWxyZVACGm7eOclnYH3w4koAGTEBzADAwFtBkQ7rGmyI%2F%2B4SOKM7BO9pydY2sKH45sbrw%3D%3D\"}]}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nalt-svc: h3=\":443\"; ma=86400\r\npriority: u=4,i=?0\r\ncontent-encoding: br\r\ncf-ray: 9b9b96532f0e4c11-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5681506,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"28fb416ce9015715b8627affab67c0bb","sha1":"b188ad0a8c68420b0f57470e34f7219c0c41fbb4","sha256":"ff68cf1e14309a196664a9e1acb80d842daab8603809923a6d29033c5581baa5","sha512":"d511110130b0f191d74e2cabf08dc2925b3ee3696a12e18dcc3f66b1c379d03a92318b6137ee581bbd57872361a7ed1fd0480a156a0b2d4f4650e7077ac54bf1","ssdeep":"24576:NIH5rxNYlEC2WUOhkNJo3Ri/yglkyUnTVtu3:NIH5rjYl37UOhsJo3R0lunTVt6","tlshash":"2e2523e3500aa0e327ad5d77a5f05c69885b40aeafee5f371a44fc80564b271cbd06b3","first_seen":"2026-01-06T13:33:54.626965Z","last_seen":"2026-01-06T13:33:54.626965Z","times_seen":1,"resource_available":false,"data":null}},"time_used":813,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":322,"receive":491,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"checker-brevis.network/163713f09061c298.css","fqdn":"checker-brevis.network","domain":"checker-brevis.network","tld":"network"},"ip":{"addr":"172.67.172.207","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://checker-brevis.network/","date":"2026-01-06T13:33:25.503Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-brevis.network","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 08:56:20 GMT","end":"Sun, 29 Mar 2026 09:55:07 GMT"},"fingerprint":{"sha1":"F9:95:06:CE:E2:AF:30:C3:72:6F:95:E0:EA:F2:F8:0E:B7:90:58:D8","sha256":"57:D3:B6:93:83:17:E3:B7:53:86:EC:80:00:EB:28:D2:5B:8A:C4:75:C2:E7:F0:B9:38:8E:AB:8D:F2:B2:6B:FB"}}},"request":{"raw":"GET /163713f09061c298.css HTTP/1.1\r\nHost: checker-brevis.network\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://checker-brevis.network/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 06 Jan 2026 13:33:25 GMT\r\ncontent-type: text/css\r\nvary: accept-encoding\r\nlast-modified: Mon, 29 Dec 2025 10:44:36 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69525b94-14896\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=QbZKkaVg68oWi1FqohRwiGTMOj%2BmV%2BrQz6qH%2FhR1Jv3AG7rc6568jcvbLQa4806jtf%2Fsw17o%2BeuGykbEtgsUsQwZV0z7hNWKU9BWeMSEl85d1wgq6ko%3D\"}]}\r\npriority: u=2,i=?0\r\ncf-ray: 9b9b964a5d874c11-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":84118,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (60042)","md5":"b86ca4cf9ae2005422e5cb9600f1cb6d","sha1":"126f2259cdd868a38fa9b6b0f4f108cf172ab545","sha256":"861fa32806848a2c25a04c1dcbe3d0b3503646c09a8966e4fbdc499f71478ace","sha512":"fe43a99c3eff045f32aafae22e120cb047813ab4e836b3377f7ba61078c09e2785e7865249880c6d29bacc03f17959ba14eaf1369b0a036c8e128b99bdc7ab2d","ssdeep":"1536:x6uNQ4YdPr7ane6f7B9MxkZoPhwh1nAukdDO3Xyr5Ir5eF0dTyRd:+kZswh1nAukdDO3Xyr5Ir5eF0dTyRd","tlshash":"d4836aae4891124990230f679bcd5ea84b2cc66355721cee3356280fcb47fee73da617","first_seen":"2025-12-31T12:29:56.291386Z","last_seen":"2026-01-22T01:33:10.05994Z","times_seen":7,"resource_available":false,"data":null}},"time_used":159,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":104,"receive":55,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"checker-brevis.network/orion.js","fqdn":"checker-brevis.network","domain":"checker-brevis.network","tld":"network"},"ip":{"addr":"172.67.172.207","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://checker-brevis.network/","date":"2026-01-06T13:33:25.505Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-brevis.network","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 08:56:20 GMT","end":"Sun, 29 Mar 2026 09:55:07 GMT"},"fingerprint":{"sha1":"F9:95:06:CE:E2:AF:30:C3:72:6F:95:E0:EA:F2:F8:0E:B7:90:58:D8","sha256":"57:D3:B6:93:83:17:E3:B7:53:86:EC:80:00:EB:28:D2:5B:8A:C4:75:C2:E7:F0:B9:38:8E:AB:8D:F2:B2:6B:FB"}}},"request":{"raw":"GET /orion.js HTTP/1.1\r\nHost: checker-brevis.network\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://checker-brevis.network/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 06 Jan 2026 13:33:25 GMT\r\ncontent-type: application/javascript\r\nvary: accept-encoding\r\nlast-modified: Mon, 29 Dec 2025 10:44:36 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69525b94-14d59\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=f0aRFY5He%2FAlzJCpCEoh1K9YcBlXmFSWmw3uN9Xvej5kV6qFhIHV4stuNLgp9GL8y%2BkUaS4cfG9dx2czneWRVJKmPgsWJnKIqPOTAp%2BJdZsHyB3Q5zI%3D\"}]}\r\npriority: u=2,i=?0\r\ncf-ray: 9b9b964a6d894c11-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":85337,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"4ef784c5f77fd85a3faf1aced393f438","sha1":"7d56a9e40e763f22051cffd86dfee583d6c4affe","sha256":"ab3c953f398dbf5a37fba7164faf9a2a13f7870ca9d88869456946d6c900e6fa","sha512":"06cbc54a5d338c3d4405099cab32324a9f0cede4df6ccece9800f382e691c60fba9096939a324c6bcad984dd676fa7a62ca52f29b69360ff2703e8a02c24f062","ssdeep":"768:MGhL9c6PhJQaginy+8NhdhxWI68EHjWUGUCKeMcijODHcrsqYUJ4izlKc6mls5gB:LhQina7dPWI68EHJ6KaA3nlTRKQmi","tlshash":"1a8341da590bd0d68e5210ced477fc09e4680963cdacf1a3aa6cddc6b45ef62844723b","first_seen":"2025-12-31T16:20:29.545264Z","last_seen":"2026-02-22T23:08:24.35442Z","times_seen":13,"resource_available":true,"data":null}},"time_used":155,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":101,"receive":54,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"checker-brevis.network/565e8dd4e0019135.css","fqdn":"checker-brevis.network","domain":"checker-brevis.network","tld":"network"},"ip":{"addr":"172.67.172.207","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://checker-brevis.network/","date":"2026-01-06T13:33:25.504Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-brevis.network","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 08:56:20 GMT","end":"Sun, 29 Mar 2026 09:55:07 GMT"},"fingerprint":{"sha1":"F9:95:06:CE:E2:AF:30:C3:72:6F:95:E0:EA:F2:F8:0E:B7:90:58:D8","sha256":"57:D3:B6:93:83:17:E3:B7:53:86:EC:80:00:EB:28:D2:5B:8A:C4:75:C2:E7:F0:B9:38:8E:AB:8D:F2:B2:6B:FB"}}},"request":{"raw":"GET /565e8dd4e0019135.css HTTP/1.1\r\nHost: checker-brevis.network\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://checker-brevis.network/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 06 Jan 2026 13:33:26 GMT\r\ncontent-type: text/css\r\nvary: accept-encoding\r\nlast-modified: Mon, 29 Dec 2025 10:44:36 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\netag: W/\"69525b94-4059\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=f%2FSnAjH%2FB71RjvVyXSAok4JQJcKkNxnPHQw3uiqnBMhQmX7azLpWmsyiQ1%2FopAK6U9VALx%2Fa7O892lS2PD64sDKA77QcGf%2FB9Q9h9dTN%2BnP%2BVyD8gaQ%3D\"}]}\r\npriority: u=2,i=?0\r\ncf-ray: 9b9b964a5d884c11-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":16473,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (16473), with no line terminators","md5":"1814c81053d3597f6caee9ba239bab27","sha1":"d853c496dc149ebbd35e922e2d2dcb6ec7a7ab60","sha256":"ee26cda4ba7f0962aebeb071637e783420ec9f99d681bfe41efe672b5da85b3d","sha512":"9f896e0235f5eaa0bb425a31638fbc0bc524f1d51f30330d38471abf41b9a6702dd2f03c3405a598594ed2639e6d1ed28c7a66c8705151f93cf1297a8a1baf19","ssdeep":"192:dMoh02LRuMfUO9Hf6a318R1xmZNZNAGFU7rUM7JG/:tYLw/","tlshash":"407283311209702cf397d3746290b3887b45c88fd6db55aa8cb576ad85ee3a207b23cd","first_seen":"2025-12-31T12:29:56.29288Z","last_seen":"2026-01-22T01:33:10.060723Z","times_seen":7,"resource_available":false,"data":null}},"time_used":1180,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1152,"receive":28,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"checker-brevis.network/favicon.png","fqdn":"checker-brevis.network","domain":"checker-brevis.network","tld":"network"},"ip":{"addr":"172.67.172.207","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://checker-brevis.network/","date":"2026-01-06T13:33:26.826Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-brevis.network","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 08:56:20 GMT","end":"Sun, 29 Mar 2026 09:55:07 GMT"},"fingerprint":{"sha1":"F9:95:06:CE:E2:AF:30:C3:72:6F:95:E0:EA:F2:F8:0E:B7:90:58:D8","sha256":"57:D3:B6:93:83:17:E3:B7:53:86:EC:80:00:EB:28:D2:5B:8A:C4:75:C2:E7:F0:B9:38:8E:AB:8D:F2:B2:6B:FB"}}},"request":{"raw":"GET /favicon.png HTTP/1.1\r\nHost: checker-brevis.network\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://checker-brevis.network/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 06 Jan 2026 13:33:27 GMT\r\ncontent-type: image/png\r\ncontent-length: 31254\r\nlast-modified: Mon, 29 Dec 2025 10:44:36 GMT\r\netag: \"69525b94-7a16\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=3%2FMY%2FXBijOLImcmcDdHvzTUr6e29s5jfiHRf1U59OPjHCtbQ9CJBColUZv%2BHCeqCjPLY8V61MjCUiTuUCv1XVAmTGykqtLGMVgjmbE0v%2B1hi%2Buuyte4%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=6,i=?0\r\nvary: accept-encoding\r\ncf-ray: 9b9b9652aef64c11-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":31254,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 360 x 360, 8-bit/color RGBA, non-interlaced","md5":"e2eeb6a656b4ead49db2cbc4b15cb3a8","sha1":"05cfe3f7c1f14a0753ec7b4c24cf9b9278139ac9","sha256":"0c189a0927f3009fbe6de8d03f6cdf274f059686663e80f5740b2cdb8ec5c1a5","sha512":"a991c35a6546cd372d74f251d8702a79db038d60711eee971c9c975fa1fa24b0e0d1081f02d17f1d3df086467ad9044a87096e92eec68f70fa7be8a21904bc58","ssdeep":"768:NXKjl3tsHgR3XGPfGgUPG2RmFop7atpQf8V:4tOQGNgKFZMy","tlshash":"eae2f1df61024f5578175508025c0e44ecfb927ec43dd6e6422bd9ababc212392fd2e7","first_seen":"2025-12-31T12:29:56.279864Z","last_seen":"2026-02-05T13:55:10.555468Z","times_seen":15,"resource_available":false,"data":null}},"time_used":1183,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1151,"receive":32,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"checker-brevis.network/HKNova-Bold.otf","fqdn":"checker-brevis.network","domain":"checker-brevis.network","tld":"network"},"ip":{"addr":"172.67.172.207","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://checker-brevis.network/","date":"2026-01-06T13:33:26.845Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-brevis.network","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Dec 2025 08:56:20 GMT","end":"Sun, 29 Mar 2026 09:55:07 GMT"},"fingerprint":{"sha1":"F9:95:06:CE:E2:AF:30:C3:72:6F:95:E0:EA:F2:F8:0E:B7:90:58:D8","sha256":"57:D3:B6:93:83:17:E3:B7:53:86:EC:80:00:EB:28:D2:5B:8A:C4:75:C2:E7:F0:B9:38:8E:AB:8D:F2:B2:6B:FB"}}},"request":{"raw":"GET /HKNova-Bold.otf HTTP/1.1\r\nHost: checker-brevis.network\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://checker-brevis.network/163713f09061c298.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Tue, 06 Jan 2026 13:33:27 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 60296\r\nlast-modified: Mon, 29 Dec 2025 10:44:36 GMT\r\netag: \"69525b94-eb88\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ybVE1A2uHnZSrXtgMmq9yTKcwITqU1q%2FWkFjhSgDWWA0VOxuoZUDYDWm8V2LD4EQo%2F0HEwz3I%2FTtREqsKDlRuhoRI5xU%2BQFGbHIXKJnS4nQiitXhj%2BU%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: accept-encoding\r\ncf-ray: 9b9b9652cefb4c11-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":60296,"size_decoded":0,"mime_type":"application/octet-stream","magic":"OpenType font data","md5":"2b7510339c5e8169d013f4b7c6e48b04","sha1":"33856ac1e3d93cce86efaa817cfd4ab9aefb841d","sha256":"bb177ed5373faa3b0faa72a905fefe147afb115edaab7a1586c9f4eb81a218d1","sha512":"ec79dfca274f1a61d9b69cab35da84504a1d53ac668e98ff40a73e8a321e3c202ae94e8647ab439ebc79b10043a647577890a10f687a83112b34a5570579bd76","ssdeep":"1536:aqo05I1LV8p/18V6ZhIGi6NZrzpaprKaY6XBMuAiDSPgcaFX9dctKgQk413ImR:FwE8soQrnN21Ai4gcudctKgQk41x","tlshash":"96439e93eb527b0ed9cb8f30296a831cf76596a8d22d4707d5829210cde27fc05556cf","first_seen":"2023-07-12T05:59:24Z","last_seen":"2026-02-05T13:55:10.575895Z","times_seen":18,"resource_available":false,"data":null}},"time_used":1198,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1142,"receive":56,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-06","alert":"Sinkholed","trigger":"checker-brevis.network","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}