{"report_id":"eadf70b8-341a-4d21-a698-d66156c7ec36","version":6,"status":"done","tags":[],"date":"2026-06-01T20:39:35Z","url":{"schema":"http","addr":"fifa.gold","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":0,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"title":"FIFA World Cup 2026™ Tickets | Host Cities, Dates, Teams, Tickets","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"fifa.gold","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":0,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-06T20:39:35Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"digitalhub.fifa.com","ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"1995-08-09","domain_rank":754164,"first_seen":"2021-02-28T16:29:46Z","last_seen":"2026-05-29T20:50:02.371367Z","alert_count":0,"request_count":48,"received_data":1975602,"sent_data":25101,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}]},{"fqdn":"fifa.gold","ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-06-01T20:38:35.029092Z","last_seen":"2026-06-01T20:38:35.029092Z","alert_count":120,"request_count":60,"received_data":3858491,"sent_data":30220,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"React","description":"React is an open-source JavaScript library for building user interfaces or UI components.","website":"https://reactjs.org","common_platform_enumeration":"cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*","icon":"React.svg","categories":["JavaScript frameworks"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}]},{"fqdn":"www.gstatic.com","ip":{"addr":"142.250.178.67","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":146047,"first_seen":"2012-05-29T15:36:17Z","last_seen":"2026-05-31T22:53:30.955311Z","alert_count":0,"request_count":3,"received_data":25241,"sent_data":1612,"comment":"","tags":null,"fingerprints":null},{"fqdn":"translate.googleapis.com","ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":6317,"first_seen":"2012-05-31T07:21:21Z","last_seen":"2026-06-01T13:20:41.941114Z","alert_count":0,"request_count":4,"received_data":863133,"sent_data":2214,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.178.42","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-05-31T22:21:48.210615Z","alert_count":0,"request_count":1,"received_data":6879,"sent_data":460,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"play.fifa.com","ip":{"addr":"2.22.225.51","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"domain_registered":"1995-08-09","domain_rank":107066,"first_seen":"2022-04-01T09:36:30Z","last_seen":"2026-05-29T20:50:02.497059Z","alert_count":0,"request_count":1,"received_data":134622,"sent_data":421,"comment":"","tags":null,"fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":1222,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2026-05-31T22:37:14.287473Z","alert_count":0,"request_count":2,"received_data":254127,"sent_data":1007,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"flo.uri.sh","ip":{"addr":"104.18.43.42","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2016-09-19","domain_rank":170491,"first_seen":"2020-03-31T11:20:27Z","last_seen":"2026-06-01T18:50:48.205735Z","alert_count":0,"request_count":1,"received_data":3415,"sent_data":442,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}]},{"fqdn":"public.flourish.studio","ip":{"addr":"104.18.32.174","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2016-05-18","domain_rank":151586,"first_seen":"2018-02-26T13:41:30Z","last_seen":"2026-06-01T06:11:01.551832Z","alert_count":0,"request_count":4,"received_data":220524,"sent_data":2020,"comment":"","tags":null,"fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-05-31T22:18:21.058888Z","alert_count":0,"request_count":2,"received_data":26520,"sent_data":1027,"comment":"","tags":null,"fingerprints":null},{"fqdn":"translate.google.com","ip":{"addr":"142.250.178.78","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":609,"first_seen":"2012-05-30T01:30:32Z","last_seen":"2026-06-01T18:27:06.444097Z","alert_count":0,"request_count":2,"received_data":154532,"sent_data":910,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"16b585e55c22527195425758e2519608","sha1":"369e807adeb4584cbde2daa60ce16f89ae434eb6","sha256":"62ab4458fcea5cbf7b068dafd03e16af772e816fc1eb33e9db22f2eb6aea1213","sha512":"8599a3e17a39e2897fb8d2757a98cf055679dfdbad0fc1aebfba858ea6e6f67ddc5f2015574271681120891d7af52e2878771792659f84068fb67d257dac999c","ssdeep":"","tlshash":"04e0c22afba52b3016f7713e62afe388353350472d01cd0b3f1c4a841f50e9004f6985","size":333,"data":"","first_seen":"2026-03-21T17:37:13.763429Z","last_seen":"2026-06-04T18:55:39.028137Z","times_seen":44,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"a1a2047dbd359066dd51128a3324181a","sha1":"c0708b5aa04c545e30d3764fbac81311af8fb883","sha256":"ace221059eaa13a5d4f9d7b9a45d26e4833aae89d9c78cad08ffd59bd495463d","sha512":"0398b67a07284e052b1bd7b36d3c294ba459044ce1335f82b36e0692658baf34ab89c15e0b9fdefd51e7f515fc861f0fd8c76cf17428445e82a6f340ab25713e","ssdeep":"96:AHtDLRhaOKf3M6QJ4p8sqxlFTAhUqOCeMGhSf:AVthaOKf3M6m4KlxlFMhUXCezhSf","tlshash":"9d91ba6a61f7383546ebf03a33aff210713100a33408ed48b96d4b811f89e5269b27e5","size":4626,"data":"","first_seen":"2026-05-29T20:50:08.734816Z","last_seen":"2026-06-01T20:39:41.112301Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/common_main.js","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"a30026102d2b82e400b848316ab3e6fd","sha1":"5cd6b45b058e10336bc0fb3f17f17c14c6da9953","sha256":"88c17f68d793079228a685f8217fae95d6df28f2efa92eb3654c0d847386dc55","sha512":"c909e9143e165bbf6e1d11476b896fa3a486098f19dcaeb70c916c30cf16b874c91579939cc64437ef987998073e417acd9fa262b8a2ea6700d4efe818827dc8","ssdeep":"192:RXGwG1iHWTcimpd3ujzO2UfUmURI9jp2Ea50zKDJ0zn9tQte0:RDWmiAlQCWRNE9tQp","tlshash":"ef325128b4f311b4107faa3a4b5f6d04389699234607df04f90cfae90fd565a47eab9c","size":11842,"data":"","first_seen":"2026-03-21T17:37:13.615233Z","last_seen":"2026-06-04T18:55:38.891723Z","times_seen":43,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/host.html?id=123","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"29bdccd53fc1c1bc474ef2476ff7b4dc","sha1":"8069235a3ec9889905fe1bb6ab873a2f346fd59a","sha256":"dd109048a90d97ed74e899dae6f5cf18971b5d67c8bd775b2761ee920798aeca","sha512":"3390254b4bfebfe9ef3318e3e15d6395630bc6309f06f999359193adafa3089fe96765a1eb05cd607765364c6d6b5909d2650a4708f2db03425d105520ce063b","ssdeep":"96:/Za4sDZirxJvFRYCTMTYOm+HUgAYqundSzPExeOx/+fYWgIKixZxtolwBhxZ7yMt:xCDorx3QkOVBZUP6AYWgIKixZfd1cRuj","tlshash":"1322c9769a7d00276383b52c9dfc9a5eb212f2cc438ddead2f99c51952acc62f151328","size":9978,"data":"","first_seen":"2026-03-21T17:37:13.773433Z","last_seen":"2026-06-04T18:55:39.038863Z","times_seen":42,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"0cbc261ff59d31c1cdfc6018b0f5c3bc","sha1":"caa632e7db6a586b5846b4c9f81e6539b999cfe3","sha256":"c097a228db662963a2666c08790d141b792491fe1c3bc9a4df440463cd27771f","sha512":"86730685faacd2a23db64eae8fcff45c3a3bf99982910af901154bd4b8e9efe0d6311fb00d09c3b8ce7282bee765c92aff2dbb9463393ae8f58a9396a8a418bd","ssdeep":"","tlshash":"7c510e6b663b30464c42b0bf6b99690971d481074958cc0a7b0f13006faad399aed7ff","size":2587,"data":"","first_seen":"2026-03-21T17:37:13.764975Z","last_seen":"2026-06-04T18:55:39.03661Z","times_seen":42,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/host.html?id=123","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"introduction_type":"Function","is_inline":false,"md5":"8d53890e66cbe58ad21734d7d2bf3290","sha1":"8d4299c2ed016d166c388501e99c6c83e540f76f","sha256":"252f14d7fbbcf0b8d38c5bc7dc4021b17e428d4e29a287c1d716d66960b9924e","sha512":"c46d1e1cbde8a6a2b293482554d100f218b0e08e0d292c6b10ecd7ed9a56406a68c2ec80bc3ff881f27d68b40132d9f7aa22d0fc71a306b14db97b9065a8a75b","ssdeep":"","tlshash":"84416354bae11630a7138f9d21df76019367da128bf40b0a376ddbb387d107d49a2ee4","size":2409,"data":"","first_seen":"2026-03-21T17:37:13.775104Z","last_seen":"2026-06-04T18:55:39.031084Z","times_seen":44,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.At_bO3I1zGE.O/am=BBAAJw/d=1/exm=el_conf/ed=1/rs=AN8SPfrqhSXc48uTB4GOOkwyFIyhVfs_ag/m=el_main","fqdn":"translate.googleapis.com","domain":"translate.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"5028b9b37c26d71af54a3477060d78c2","sha1":"6ae7c662f2cffa93b43d28fa2ea8f887e8fc8fe5","sha256":"d3e56fa28fc557be2bac8354c3c6784c7fc051e1bb18fa34307e80e88675a092","sha512":"dddca915aa3bf871302a91fcbecb6d5245b6dca94c5d4f5693144fc3e76d45fc6a4ff670264ac3baa1ec544fb55b0f0e0f3651b8e30a44d9b6cfd74235519a44","ssdeep":"3072:B7qR9H2ia2b0Ogx3cH8JCHrE+72WveDiFoCsVL4JiMD8uiaolCATOLdzsmXnj9BG:OYjVzeJClhKdzsKJBG","tlshash":"1c94d9cab3a378529262f8a1a47f0147b93dac57b44c4c6cb189d8db2eb08154573f7b","size":430175,"data":"","first_seen":"2026-06-01T18:39:28.559421Z","last_seen":"2026-06-04T20:11:34.902366Z","times_seen":615,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.At_bO3I1zGE.O/am=BBAAJw/d=1/exm=el_conf/ed=1/rs=AN8SPfrqhSXc48uTB4GOOkwyFIyhVfs_ag/m=el_main","fqdn":"translate.googleapis.com","domain":"translate.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"5028b9b37c26d71af54a3477060d78c2","sha1":"6ae7c662f2cffa93b43d28fa2ea8f887e8fc8fe5","sha256":"d3e56fa28fc557be2bac8354c3c6784c7fc051e1bb18fa34307e80e88675a092","sha512":"dddca915aa3bf871302a91fcbecb6d5245b6dca94c5d4f5693144fc3e76d45fc6a4ff670264ac3baa1ec544fb55b0f0e0f3651b8e30a44d9b6cfd74235519a44","ssdeep":"3072:B7qR9H2ia2b0Ogx3cH8JCHrE+72WveDiFoCsVL4JiMD8uiaolCATOLdzsmXnj9BG:OYjVzeJClhKdzsKJBG","tlshash":"1c94d9cab3a378529262f8a1a47f0147b93dac57b44c4c6cb189d8db2eb08154573f7b","size":430175,"data":"","first_seen":"2026-06-01T18:39:28.559421Z","last_seen":"2026-06-04T20:11:34.902366Z","times_seen":615,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"e2abd20d0d3b00d0c122dbd5f58a4800","sha1":"544799ec0423deb370a712a7dfa892a08020f053","sha256":"ad01b10c50f51e61757660bb099912cba602a6b6d6764b9c180619da69cfa431","sha512":"b6253d5c9e4dc288856eff095284bf85af24912be5719e5e37c9dca1abb33bd926becbe141d6bc50618f0fe3773a31caa1f8146f88ee579c51ade9f3b68a2297","ssdeep":"","tlshash":"3511af5453b344f4a51b147a27db2394783520abb046ee083b4d47400fc6bb895d2adf","size":1036,"data":"","first_seen":"2026-03-21T17:37:13.766476Z","last_seen":"2026-06-04T18:55:39.037362Z","times_seen":42,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"042e5c8072b88e2e928c5fab0859e7cb","sha1":"35d919371d7558267c1c5575398968c7b99e747f","sha256":"9635e264acbeeab3d8ea144baf93001917d8b3707b4c0b04200d99a264516946","sha512":"00209bedb637f2c4f9ae5ca792ec378754e5a357417f9c93ba39a12f0d52227c04eb8908876d5ea7da163018b69fe8a2ed96d667e4b14af48ba3c7801ad0bd46","ssdeep":"","tlshash":"20f0a35d3c66b05737fd3538c223ca7b3355070175c35525c649cc3478544c61846d4d","size":445,"data":"","first_seen":"2026-05-29T20:50:08.741161Z","last_seen":"2026-06-01T20:39:41.116776Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"public.flourish.studio/resources/v3/embedded.js","fqdn":"public.flourish.studio","domain":"flourish.studio","tld":"studio"},"ip":{"addr":"104.18.32.174","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"b04ce7b359ad30b1b9eea0ba09ffe7b6","sha1":"e75f44d79987c4c732f3773c601f0017823e84b0","sha256":"e01435d31d6e69ab49ba17e66a526fa00fd334eec80e94819a4a78f6ad989b74","sha512":"8455a82ce5ff7cd98c03f7987137f6d966a01640787ad0adb6b0f76734c39b03f1286123fadc08c12e576818665d128fc86eb715b4918ee02ff8608c81bc066f","ssdeep":"768:wfe5dRov88Ma+3zPQVNEYW1IkBIfcdlsFQAIb3FSQc/OXI5Eks0pXFKUos4KtjAO:w0nM8mzEYW/Igb3FSi2ZaUoMNY7GyqFn","tlshash":"ddf23b1a7d6174311bee41e9647f2b0e7178111e700cc4a0f2d9dca928b5d9be12bf6e","size":34568,"data":"","first_seen":"2026-05-01T18:56:58.797127Z","last_seen":"2026-06-05T17:16:09.08662Z","times_seen":116,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"0cbc261ff59d31c1cdfc6018b0f5c3bc","sha1":"caa632e7db6a586b5846b4c9f81e6539b999cfe3","sha256":"c097a228db662963a2666c08790d141b792491fe1c3bc9a4df440463cd27771f","sha512":"86730685faacd2a23db64eae8fcff45c3a3bf99982910af901154bd4b8e9efe0d6311fb00d09c3b8ce7282bee765c92aff2dbb9463393ae8f58a9396a8a418bd","ssdeep":"","tlshash":"7c510e6b663b30464c42b0bf6b99690971d481074958cc0a7b0f13006faad399aed7ff","size":2587,"data":"","first_seen":"2026-03-21T17:37:13.764975Z","last_seen":"2026-06-04T18:55:39.03661Z","times_seen":42,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/layui/layui/layui.js","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"210a8b1c979a8ff8d8036c3bab6e3b46","sha1":"40ed39b8c127b1f1307c142e94cc8f9e0c36e31b","sha256":"fef3fe945718e6caef2f72dc7c89080374cfd74e59576746e477de017c1ef0ad","sha512":"988287dccd9b465232846e2d0446c9f1d9fcb7c24594d254d8d5e525e3e0a50ef608ae23018b19c821857004911ad3c16dc010873ebb293900d49c3a2a2ce4f6","ssdeep":"3072:ISEhRFLdTQpFan+Z+mhOubux3e7tqUghc+qViI0kdJ+0Ch5VlmUMbL:ohRFLdTUan+YgOpxtUghxqHZNCh5VlJC","tlshash":"db54399d7185746322b330b5405f990eb177093eaa0a8064f166e8fa3dbdc49127bf6f","size":291146,"data":"","first_seen":"2023-03-07T13:02:52Z","last_seen":"2026-06-04T18:55:38.917506Z","times_seen":294,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"e2abd20d0d3b00d0c122dbd5f58a4800","sha1":"544799ec0423deb370a712a7dfa892a08020f053","sha256":"ad01b10c50f51e61757660bb099912cba602a6b6d6764b9c180619da69cfa431","sha512":"b6253d5c9e4dc288856eff095284bf85af24912be5719e5e37c9dca1abb33bd926becbe141d6bc50618f0fe3773a31caa1f8146f88ee579c51ade9f3b68a2297","ssdeep":"","tlshash":"3511af5453b344f4a51b147a27db2394783520abb046ee083b4d47400fc6bb895d2adf","size":1036,"data":"","first_seen":"2026-03-21T17:37:13.766476Z","last_seen":"2026-06-04T18:55:39.037362Z","times_seen":42,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/_/translate_http/_/js/k=translate_http.tr.no.At_bO3I1zGE.O/am=BBAAJw/d=1/rs=AN8SPfrqhSXc48uTB4GOOkwyFIyhVfs_ag/m=el_conf","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"634fbdd46dfc790a23a08047f5b71a61","sha1":"e9c217aaf0e0d046025d9448986fb16de1e3e6b6","sha256":"1f98a0ea4a649f2e7840e5f0bad3e4b663e1eb3c39ef6541e29ea0f040a2de42","sha512":"02195f7dd49d6424af355665b2acfe4b131675c34c90238fbbc99004ebb84cbc21263fcfd75bfcb3f5823fe368a9b4a8c796b386e0366f25777b56ef3d0a3fdf","ssdeep":"1536:Xe5Lywm+/O8J73SHJKIYULQ4Zu3KrGOU3/WeOXXHxi9wNWib:XqPSHIaZQKr23OzxiMb","tlshash":"2373b7ccb6a574658353f5a5412f000eb23f69aef8084cacb298d8e1adf5949413bf7d","size":76706,"data":"","first_seen":"2026-06-01T20:11:33.083086Z","last_seen":"2026-06-01T20:49:47.049733Z","times_seen":37,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/jquery.min.js","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"a09e13ee94d51c524b7e2a728c7d4039","sha1":"0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae","sha256":"160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef","sha512":"f8da8f95b6ed33542a88af19028e18ae3d9ce25350a06bfc3fbf433ed2b38fefa5e639cddfdac703fc6caa7f3313d974b92a3168276b3a016ceb28f27db0714a","ssdeep":"1536:jLiBdiaWLOczCmZx6+VWuGzQNOzdn6x2RZd9SEnk9HB96c9Yo/NWLbVj3kC6t3:5kn6x2xe9NK6nC69","tlshash":"748319dd72c6b06247ab71ba00bf550bf2361999684d4410f129e4eabc74b4e823bf7d","size":86927,"data":"","first_seen":"2023-03-07T01:02:02Z","last_seen":"2026-06-06T23:15:55.827934Z","times_seen":133648,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/_/translate_http/_/js/k=translate_http.tr.no.At_bO3I1zGE.O/am=BBAAJw/d=1/rs=AN8SPfrqhSXc48uTB4GOOkwyFIyhVfs_ag/m=el_conf","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"634fbdd46dfc790a23a08047f5b71a61","sha1":"e9c217aaf0e0d046025d9448986fb16de1e3e6b6","sha256":"1f98a0ea4a649f2e7840e5f0bad3e4b663e1eb3c39ef6541e29ea0f040a2de42","sha512":"02195f7dd49d6424af355665b2acfe4b131675c34c90238fbbc99004ebb84cbc21263fcfd75bfcb3f5823fe368a9b4a8c796b386e0366f25777b56ef3d0a3fdf","ssdeep":"1536:Xe5Lywm+/O8J73SHJKIYULQ4Zu3KrGOU3/WeOXXHxi9wNWib:XqPSHIaZQKr23OzxiMb","tlshash":"2373b7ccb6a574658353f5a5412f000eb23f69aef8084cacb298d8e1adf5949413bf7d","size":76706,"data":"","first_seen":"2026-06-01T20:11:33.083086Z","last_seen":"2026-06-01T20:49:47.049733Z","times_seen":37,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"play.fifa.com/components/main.bundle.js","fqdn":"play.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"2.22.225.51","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":false,"md5":"1ba5b39f200c989f09dd2e851275dca3","sha1":"b90f4765cfd55c35e3559af6d5ab5d0c8c87b302","sha256":"7a94da6c88ddb3e2e660a31996c60f0514f68934a1709b1464bb4a6f4af1eff4","sha512":"043eec1e9633a738ad6de85279d1c00324d392f1485e07a78c7f7dc6ab6925c3495dabfcc7b73d06ad36215caad2512dfee9e7839701f12a67d301b063a74fad","ssdeep":"3072:S3hHZ9hHZSx6kAKeeLpBm5VfyMN2pvz9fO:ehHZ9hHZSxVDVBQ4MEpvz5O","tlshash":"ddd3d5d939d2b036476364f100af098bf23a7e14689c9244f598f8ea3e7c51da573f68","size":133661,"data":"","first_seen":"2026-03-18T23:14:20.552687Z","last_seen":"2026-06-04T18:55:38.970643Z","times_seen":53,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"about","addr":"about:srcdoc#225","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"888a21ab7fc56d220a59dd25a83b18b6","sha1":"3bc9b8d495cf8e016aadf7e2bba091f2bd8b7188","sha256":"18c0d112e350349ca7390bc25c50a5fc92e9dc9b63416147c7e57851d105237e","sha512":"3dd8c3099c3300b3f74ffbe65e93e383d5c31087fb362f08bb241107c1061ef7dc8b61113851723a8588b54465c38056721341402f6a0072adce178ed3daf86e","ssdeep":"","tlshash":"b73147cdbbb7e0554272209a992f860bf17a2577981cd050e555ccd0fc70e9b447de14","size":1713,"data":"","first_seen":"2025-06-11T00:07:11.79824Z","last_seen":"2026-06-06T23:45:10.338578Z","times_seen":36845,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"about","addr":"about:srcdoc#227","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"888a21ab7fc56d220a59dd25a83b18b6","sha1":"3bc9b8d495cf8e016aadf7e2bba091f2bd8b7188","sha256":"18c0d112e350349ca7390bc25c50a5fc92e9dc9b63416147c7e57851d105237e","sha512":"3dd8c3099c3300b3f74ffbe65e93e383d5c31087fb362f08bb241107c1061ef7dc8b61113851723a8588b54465c38056721341402f6a0072adce178ed3daf86e","ssdeep":"","tlshash":"b73147cdbbb7e0554272209a992f860bf17a2577981cd050e555ccd0fc70e9b447de14","size":1713,"data":"","first_seen":"2025-06-11T00:07:11.79824Z","last_seen":"2026-06-06T23:45:10.338578Z","times_seen":36845,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"translate.google.com/translate_a/element.js?cb=googleTranslateElementInit","fqdn":"translate.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.178.78","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.035Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:51:36 GMT","end":"Thu, 30 Jul 2026 15:51:35 GMT"},"fingerprint":{"sha1":"E5:96:47:77:13:A6:29:CD:FF:81:1B:F8:39:BC:A7:BB:8F:64:3A:E7","sha256":"0F:2D:F7:5D:E8:A1:BF:0D:8E:B8:3A:AC:9A:9D:1B:82:66:8F:C2:E9:77:F6:7C:BD:32:3F:86:9C:97:9C:2D:5C"}}},"request":{"raw":"GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1\r\nHost: translate.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/javascript; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":76706,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (2113)","md5":"634fbdd46dfc790a23a08047f5b71a61","sha1":"e9c217aaf0e0d046025d9448986fb16de1e3e6b6","sha256":"1f98a0ea4a649f2e7840e5f0bad3e4b663e1eb3c39ef6541e29ea0f040a2de42","sha512":"02195f7dd49d6424af355665b2acfe4b131675c34c90238fbbc99004ebb84cbc21263fcfd75bfcb3f5823fe368a9b4a8c796b386e0366f25777b56ef3d0a3fdf","ssdeep":"1536:Xe5Lywm+/O8J73SHJKIYULQ4Zu3KrGOU3/WeOXXHxi9wNWib:XqPSHIaZQKr23OzxiMb","tlshash":"2373b7ccb6a574658353f5a5412f000eb23f69aef8084cacb298d8e1adf5949413bf7d","first_seen":"2026-06-01T20:11:33.083086Z","last_seen":"2026-06-01T20:49:47.049733Z","times_seen":37,"resource_available":true,"data":null}},"time_used":615,"timings":{"blocked":277,"dns":1,"connect":28,"send":0,"wait":56,"receive":0,"ssl":251},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/m/1570c011d3c35d8a/original/p26-grid-kan.avif","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/fifa/host.html?id=123","date":"2026-06-01T20:39:13.637Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /m/1570c011d3c35d8a/original/p26-grid-kan.avif HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/octet-stream\r\ncontent-length: 99918\r\ndate: Mon, 01 Jun 2026 04:45:20 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=86400, stale-while-revalidate=600, stale-if-error=3600\r\ncontent-disposition: inline; filename=\"p26-grid-kan.avif\"; filename*=UTF-8''p26-grid-kan.avif\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:a85d90bf-f196-45dd-b57e-a58ddfecd55a\r\nx-robots-tag: none\r\nx-api-correlation-id: cbf36937-27ea-19cf-e611-3256e34cfc99\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: 1NzTTCwSDiOwWQYj8GZYtK9th5ntyg1OvyBLXf26m0lLlfXbaR-q0A==\r\nage: 57233\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":99918,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image Sequence","md5":"3e41d57c876a616751785e5e3cb95808","sha1":"4102233c181ff6be4260aa6af862c74bd91542d7","sha256":"46c422713478d23272342881873f282f243b58039f8e968a470ea2ac15eb248b","sha512":"a0bc47108e8a5c2e1505ff1a1501c65594ae85dd09cb092c03c34f37588bbe856ca5605c4cfb04b7f824ac85d138c22e35b9d3bc64c0d40b6ed702ebdaf3eb92","ssdeep":"1536:8tg3GJHmXfEpCnV3xeX9f2ko3P0pQ/suK/dBG3r3X7SwhcUx2mhObLPg:MLGXfyCj0N2gpnFBaDLSwhtObLPg","tlshash":"e6a31249b3a1514be5ea1e3d5cb89377a4e02dab920cdf8a1f03710c858646ccee3e5c","first_seen":"2026-03-21T17:37:13.617571Z","last_seen":"2026-06-04T18:55:38.960633Z","times_seen":44,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/media/noto-sans-regular.bfa96228235216443a93.woff2","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:13.772Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /media/noto-sans-regular.bfa96228235216443a93.woff2 HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/fifa/9795.1a29b9ec.chunk.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:13 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-06T23:09:59.003831Z","times_seen":523450,"resource_available":true,"data":null}},"time_used":241,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":241,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"play.fifa.com/components/main.bundle.js","fqdn":"play.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"2.22.225.51","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fifa.gold/fifa/logos.html","date":"2026-06-01T20:39:13.134Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"play.fifa.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 13 Apr 2026 08:27:26 GMT","end":"Sun, 12 Jul 2026 08:27:25 GMT"},"fingerprint":{"sha1":"11:54:F7:33:F5:A4:20:60:6C:A3:30:F7:05:AA:18:08:9A:4D:A1:1F","sha256":"84:59:1F:F5:EA:C8:62:2A:1A:44:36:53:E9:EE:EB:2B:D1:35:B0:A0:81:03:64:0B:9A:61:F2:69:9D:87:E2:92"}}},"request":{"raw":"GET /components/main.bundle.js HTTP/1.1\r\nHost: play.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/javascript\r\nlast-modified: Mon, 09 Mar 2026 12:38:25 GMT\r\ncontent-encoding: gzip\r\netag: W/\"1ba5b39f200c989f09dd2e851275dca3\"\r\nx-amz-cf-pop: ARN56-P1\r\nx-amz-cf-id: ea5dGQ4vChS-rsHzdm8oiR0ezubLh8Pi6jvVB1DEF4hFCJ1akNBkcQ==\r\nx-xss-protection: 1; mode=block\r\nreferrer-policy: no-referrer\r\ncontent-security-policy: default-src https: blob: 'unsafe-eval' 'unsafe-inline'; object-src 'self'; img-src 'self' blob: data: https:; font-src 'self' https: data:; worker-src blob: https:;\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\npermissions-policy: accelerometer=(self), camera=(), geolocation=(self), gyroscope=(), magnetometer=(), microphone=()\r\ncontent-length: 43501\r\ndate: Mon, 01 Jun 2026 20:39:13 GMT\r\nvary: Accept-Encoding\r\nx-fifa-current-age: 0\r\nx-fifa-internal-ttl: 0\r\naccess-control-allow-origin: *\r\nakamai-grn: 0.2fe11602.1780346353.94a1f39\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":133661,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65271)","md5":"1ba5b39f200c989f09dd2e851275dca3","sha1":"b90f4765cfd55c35e3559af6d5ab5d0c8c87b302","sha256":"7a94da6c88ddb3e2e660a31996c60f0514f68934a1709b1464bb4a6f4af1eff4","sha512":"043eec1e9633a738ad6de85279d1c00324d392f1485e07a78c7f7dc6ab6925c3495dabfcc7b73d06ad36215caad2512dfee9e7839701f12a67d301b063a74fad","ssdeep":"3072:S3hHZ9hHZSx6kAKeeLpBm5VfyMN2pvz9fO:ehHZ9hHZSxVDVBQ4MEpvz5O","tlshash":"ddd3d5d939d2b036476364f100af098bf23a7e14689c9244f598f8ea3e7c51da573f68","first_seen":"2026-03-18T23:14:20.552687Z","last_seen":"2026-06-04T18:55:38.970643Z","times_seen":53,"resource_available":true,"data":null}},"time_used":82,"timings":{"blocked":7,"dns":19,"connect":1,"send":0,"wait":36,"receive":2,"ssl":10},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/media/noto-sans-regular.bfa96228235216443a93.woff2","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:13.777Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /media/noto-sans-regular.bfa96228235216443a93.woff2 HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/fifa/main.c56d670b.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:13 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-06T23:09:59.003831Z","times_seen":523450,"resource_available":true,"data":null}},"time_used":228,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":227,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/layui/layui/layui.js","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.038Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /layui/layui/layui.js HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"696ed7f6-4714a\"\r\nexpires: Tue, 02 Jun 2026 08:39:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":291146,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"210a8b1c979a8ff8d8036c3bab6e3b46","sha1":"40ed39b8c127b1f1307c142e94cc8f9e0c36e31b","sha256":"fef3fe945718e6caef2f72dc7c89080374cfd74e59576746e477de017c1ef0ad","sha512":"988287dccd9b465232846e2d0446c9f1d9fcb7c24594d254d8d5e525e3e0a50ef608ae23018b19c821857004911ad3c16dc010873ebb293900d49c3a2a2ce4f6","ssdeep":"3072:ISEhRFLdTQpFan+Z+mhOubux3e7tqUghc+qViI0kdJ+0Ch5VlmUMbL:ohRFLdTUan+YgOpxtUghxqHZNCh5VlJC","tlshash":"db54399d7185746322b330b5405f990eb177093eaa0a8064f166e8fa3dbdc49127bf6f","first_seen":"2023-03-07T13:02:52Z","last_seen":"2026-06-04T18:55:38.917506Z","times_seen":294,"resource_available":true,"data":null}},"time_used":385,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":385,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/8896.9caaf2db.chunk.css","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:11.986Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /fifa/8896.9caaf2db.chunk.css HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"696ed7f6-192e\"\r\nexpires: Tue, 02 Jun 2026 08:39:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6446,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (6446), with no line terminators","md5":"fb35ed91bb3c0d8c45e2c8971f828c72","sha1":"c712c3fa4d254138930e7977e2bd480de7a2bb9f","sha256":"0e92aff59d6cc1da465aaca38653f5afa2a6ac68bf8f6859bc1792fc6de53dc5","sha512":"b955e7f14781e292bc07a7cdbbe34cdc24e3fb58f54fd5b81c7693da9a187fb3796f2735e462569ca49acc2d1c896285bf4b949202dbdca758e3089d2098c563","ssdeep":"96:nXvD/cPJKwFiyC3vDvyp7ReHt+l7J7hNMqzaXJvNr+JcPJKR:Xv7cswFcDA7JVmBd+JcsR","tlshash":"fbd149b53f00bc75516b023fbd9278f85aac817fcf31e01e223ab8d56fb165445125aa","first_seen":"2026-03-21T17:37:13.753294Z","last_seen":"2026-06-04T18:55:38.995977Z","times_seen":45,"resource_available":false,"data":null}},"time_used":456,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":456,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/3745.c1cf113f.chunk.css","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.004Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /fifa/3745.c1cf113f.chunk.css HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: text/css\r\ncontent-length: 574\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\netag: \"696ed7f6-23e\"\r\nexpires: Tue, 02 Jun 2026 08:39:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":574,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (574), with no line terminators","md5":"50b3e3221b20b9c865e19717e80d0eb8","sha1":"35c46646e442eda07a6dee8d8fbfb55e53c6169b","sha256":"a0d3945f493d3d23c7e9357c3a89073c42c8874e1d2fc339eb8e1ba462e3592e","sha512":"d3e36ce7c28f6e2309aaa5fa68bd09c5903ec0174c094fde496ff2679d3e334f61f63e9ea4495f11354d4102bc00fdf30e6cb0e5069e5f9774932bb6af58dfa6","ssdeep":"","tlshash":"d9f081953d8be01c7017d8af144135d4963c1cab92b71fa970b9ad1d76c3b442253ccd","first_seen":"2026-03-21T17:37:13.658008Z","last_seen":"2026-06-04T18:55:39.026692Z","times_seen":50,"resource_available":false,"data":null}},"time_used":552,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":447,"receive":105,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/m/1a33060ce1c1c4d6/original/WC26_Logo.png","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.008Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /m/1a33060ce1c1c4d6/original/WC26_Logo.png HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 23418\r\ndate: Mon, 01 Jun 2026 05:08:13 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=86400, stale-while-revalidate=600, stale-if-error=3600\r\ncontent-disposition: inline; filename=\"WC26_Logo.png\"; filename*=UTF-8''WC26_Logo.png\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:157d23bf-7e13-4d7b-949e-5d27d340987e\r\nx-robots-tag: none\r\nx-api-correlation-id: b85beea8-7828-0a39-e9b7-388f31db926b\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: s1hbp3yEZknCu3EYX94QnfnqESR48QJ79dzCZaQ6bY59plCvcaHWyg==\r\nage: 55859\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":23418,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 157 x 235, 8-bit/color RGBA, non-interlaced","md5":"d5dc3470a2fa5e5bccc94b982325a337","sha1":"a1668a06a9d559775792d46be235c4b87a42039f","sha256":"20240db8466279d66fe8cbea29ec8ac7533c555de25ad2281103a4cd8909dbf5","sha512":"02c55ccb2c421692d6a9e8a97f163c18c5bad070aea36aea47e47c90819c933bc5fa1d809c1d70c8244b902350e40b292324534fea870f30bb4b4f896033fb18","ssdeep":"384:w+9YweU2ZNq1V6NMXYlV8CFySs1Sec71ZLORR/Z3r/rxJVVqOwUjRPpihtTexI:wweU2ZNo6NMXoV8CFxSv4zUFqOwUjRUN","tlshash":"aab2e1d5b2977548126e869b391e9f14d49b17efd6ab43be134cc061fbcca3081d0928","first_seen":"2026-03-21T17:37:13.65986Z","last_seen":"2026-06-04T18:55:38.952521Z","times_seen":45,"resource_available":false,"data":null}},"time_used":66,"timings":{"blocked":11,"dns":5,"connect":8,"send":0,"wait":16,"receive":1,"ssl":22},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/transform/144216e9-4bc7-415c-8832-aaa9e123d9f6/FIC-2025_FIFA-com_1570x1178px_-Tournament-Logo-01?\u0026io=transform:fill,aspectratio:4x3,width:2094\u0026quality=75","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.022Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /transform/144216e9-4bc7-415c-8832-aaa9e123d9f6/FIC-2025_FIFA-com_1570x1178px_-Tournament-Logo-01?\u0026io=transform:fill,aspectratio:4x3,width:2094\u0026quality=75 HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 55002\r\ndate: Mon, 01 Jun 2026 20:24:44 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=15552000\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:144216e9-4bc7-415c-8832-aaa9e123d9f6\r\ncontent-disposition: inline; filename=\"FIC-2025_FIFA-com_1570x1178px_-Tournament-Logo-01.avif\"; filename*=UTF-8''FIC-2025_FIFA-com_1570x1178px_-Tournament-Logo-01.avif\r\nx-api-correlation-id: aaad8d95-af18-90af-c7b0-0a6182c1a318\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: ZFDIZMeHMNLqA-H1eIIrbAhOu7Ms35yFj18jTaLUFB2hbhmV27ompA==\r\nage: 868\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":55002,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"67af05395e84896be29fadbb5ae27bac","sha1":"9d170b735a0e8b0e6e59cadad6e65d4a973e6563","sha256":"31f0547188c8f5fc77186f9ac786292d5ae6fb7e7d6aa64e8c79e9588dafc60e","sha512":"559cccabe264b0f63b6eed9ff75de8b156812313eb49d6737ebbfae27a14d80b3ef6534c89bfdfcd8efb7302c01662fcb89ad558663bb162a292876af9a74320","ssdeep":"1536:cKur2QOr6oJTu7M86ftZJZCSC4xWnh8pr:cKPeoc7OZCSSnhe","tlshash":"7733f2f5e9c6c5ede56de7bc3899a32cba46352407f6ced23fa9c16810102c548cac17","first_seen":"2026-03-21T17:37:13.637478Z","last_seen":"2026-06-04T18:55:38.85943Z","times_seen":43,"resource_available":false,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":30,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/css/all.min.css","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.033Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 May 2026 03:46:57 GMT","end":"Mon, 10 Aug 2026 04:46:42 GMT"},"fingerprint":{"sha1":"95:12:1E:0A:F6:69:8B:FC:A0:08:DA:67:1A:A4:D1:9D:87:F5:E9:07","sha256":"F3:4A:39:63:C7:6A:CE:66:1A:B4:62:2C:E9:92:82:9A:81:78:1B:CC:3F:D5:2D:0A:6D:D6:89:D9:F6:66:7B:BC"}}},"request":{"raw":"GET /ajax/libs/font-awesome/6.4.0/css/all.min.css HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: text/css; charset=utf-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\nlast-modified: Mon, 27 Mar 2023 17:46:59 GMT\r\nvary: Accept-Encoding\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/r2\r\nx-cdnjs-cache: HIT\r\ncf-cache-status: HIT\r\nage: 441316\r\nexpires: Sat, 22 May 2027 20:39:12 GMT\r\nstrict-transport-security: max-age=15780000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=10Nya7J2tfbPiH451dolJVSG3o6%2BzRsaZbvrgP0Q4mYliYU8hphDxZWdVLyeifTLE00%2BngEImp9pAuL7qxqWeQHuvEegWmffpzadNB9QdwpwwG8om8CSLVTLee9RgxqKkMwrV%2Fzs\"}]}\r\ncf-ray: a05106bc4cd5b512-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":102025,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (52276)","md5":"ded1c367363e8b20bdc6a19b8350a737","sha1":"8c06d82739d14b094ff6d9036021a252bd1d985d","sha256":"1edb1725a9ea8ca4dcf2f5508cee183218aa1685e47c1b23056717f754f58ebf","sha512":"89e71d2e66ac925ec2564aa45cd43f647fd72e5bd664e2728fb632eed71e9e6a43d72a404a8ce9993fc4d223ed985201e3a66676d01cf5e341bc7d07fd9a6207","ssdeep":"1536:OwMCMPMCMjMCM4MCMwMCM3sVMX709gbPMfjSFOTyPGuZprfZCl:S709gMGFiyPGuZpfZCl","tlshash":"2ea3a7f9e44c05d97732c44bab95b37c65b6f738d5810ca9f02f580c1ad26a822c6f7a","first_seen":"2023-04-06T15:05:25Z","last_seen":"2026-06-06T23:46:54.4521Z","times_seen":50913,"resource_available":false,"data":null}},"time_used":47,"timings":{"blocked":13,"dns":1,"connect":1,"send":0,"wait":17,"receive":0,"ssl":12},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/transform/157d23bf-7e13-4d7b-949e-5d27d340987e/WC26_Logo?\u0026io=transform:fill\u0026quality=75","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.037Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /transform/157d23bf-7e13-4d7b-949e-5d27d340987e/WC26_Logo?\u0026io=transform:fill\u0026quality=75 HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 7109\r\ndate: Fri, 29 May 2026 15:57:31 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=15552000\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:157d23bf-7e13-4d7b-949e-5d27d340987e\r\ncontent-disposition: inline; filename=\"WC26_Logo.avif\"; filename*=UTF-8''WC26_Logo.avif\r\nx-api-correlation-id: 7d1e674f-b211-0682-5759-b34e0ec9c511\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: urViK1ZG8IGMTetaAoy9x05ncy0aSo0kz6GfA85ZxJA5RPVsMBn_8g==\r\nage: 276101\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":7109,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"b191ec08e7731fb20c8b307f760139a2","sha1":"63275186941de0b2f9ee31e5326306941169c467","sha256":"38c58d447852dac161e18aff6d075f2d63116ffae172c941637b8143da9ec710","sha512":"3bcb8970a485137e95cdecafb414fb454e5d664c4592c288404480ae4d9c1c7826367c0b26f59fd08604098dbf938bfb269e74cbc9bd3910df4aff9b80fc92b2","ssdeep":"96:+E25N26MT0D5MdtbZPAVwzVtZ3CvRg8sO/3AI93dlNzGFFRMsS7frCUkj:+hoYNMtKw7Z3CvTt93oasOfrCU0","tlshash":"13e16ebad7bba967ed2ad37818f23ff1b1a1373de3632949a108b61441486c14b4d4c5","first_seen":"2026-03-21T17:37:13.558561Z","last_seen":"2026-06-04T18:55:38.914412Z","times_seen":43,"resource_available":false,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/transform/ae163a41-adc8-4ab5-a0d3-594c5dac761b/Alex-Freeman-USA?focuspoint=0.48,0.02\u0026io=transform:fill,aspectratio:1x1,width:1536\u0026quality=75","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.826Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /transform/ae163a41-adc8-4ab5-a0d3-594c5dac761b/Alex-Freeman-USA?focuspoint=0.48,0.02\u0026io=transform:fill,aspectratio:1x1,width:1536\u0026quality=75 HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 125723\r\ndate: Mon, 01 Jun 2026 20:35:37 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=15552000\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:ae163a41-adc8-4ab5-a0d3-594c5dac761b\r\ncontent-disposition: inline; filename=\"Alex-Freeman-USA.avif\"; filename*=UTF-8''Alex-Freeman-USA.avif\r\nx-api-correlation-id: b0cbb90e-d471-ad08-b7ac-50e100a5d195\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: EY3Tzt8YCKS4oQY9sVe1fWdOAQP-9h-OPcYeRWYrvZy07actu3ldPw==\r\nage: 215\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":125723,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"c83f50f260b2db62e49b865fba7cc722","sha1":"a2ba9d820dae4086ada00072d6ad7844d0853159","sha256":"4835cc4fdb05e07f2ab262a9680880be1921494e71bcac7ea85f44fe0eb5324e","sha512":"3feb67b910d6b8b3be99f2287f117f4083362e2de087e9099d465a7d82ede5f8de69ce7adf62ec0eb8110858a4e4a4b913e7a0a0b1852815ea595e3afb42fc5e","ssdeep":"3072:Pw01KxJbrCFA8rZqJ+FkfrbhD42ZMyaaFML0mj:tKxJ3CfqYalDZMy/FIj","tlshash":"64c31222db4487c5e61ae13605bf065ed39be136c61522cc424eba78efce9d410bda4f","first_seen":"2026-05-29T20:50:08.724549Z","last_seen":"2026-06-01T20:39:41.025097Z","times_seen":5,"resource_available":false,"data":null}},"time_used":40,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":35,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/580.1ce16dde.chunk.css","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:11.979Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /fifa/580.1ce16dde.chunk.css HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"696ed7f6-45ca\"\r\nexpires: Tue, 02 Jun 2026 08:39:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":17866,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (17866), with no line terminators","md5":"7a8158f1a2d8d300f36e985c9fa6bf63","sha1":"d69eac27ebb996a81a0f4c634125b76ffb207c35","sha256":"96ed6a554b2f360282ea934b3f43d6e252fc4ee5507c50184d3642157c862d22","sha512":"cf5e550d1f5b6c50b17f59cbc89f0a56623a59bdef36d04e3ae0a377a473ebb3781354c4ee5f3d8a52b87e6812d61b6869b3c89c392b01a759185594fdb766c5","ssdeep":"192:Z2BrjUoNFtb05bV3PQMbqTUNE3EhXWP2p1J54GYnZgZ+ITox1byW:ejjdb05ezl3a31JrYC7TonbyW","tlshash":"d582ee4a3755873b9c528b1911e82768752c7c248b17317a88f3bb2c87cbe8b167de5c","first_seen":"2026-03-21T17:37:13.551508Z","last_seen":"2026-06-04T18:55:38.919734Z","times_seen":45,"resource_available":false,"data":null}},"time_used":457,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":457,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/index.css","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:11.981Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /fifa/index.css HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"696ed7f6-48e1a\"\r\nexpires: Tue, 02 Jun 2026 08:39:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":298522,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"28f958c67a01f4a8281ade9b3d5a0a0a","sha1":"7e8d39a784b493b58e4cf60c84d04e76e9c11ca8","sha256":"eaed7a1ef3d0de3ae8544da58d40193fd40bbe3a7abc7a3356673079e2d91430","sha512":"388621c92f9f7225c2d6094102e78788e0691437f85783ffc72a576d4cc7f83124585f8486e4cad956cf8fa23278af9392ef5953f11c5b31bfb151e07555bac0","ssdeep":"6144:QuIyDnEwuhDchWJ4AwB6EzA9Ggq2z8NZN/AQZeRflHc6lBzL3uKJBtNk0tA5lQ6Q:QujDnEwuhDchWJ4AwB6EzA9Ggq2z8NZC","tlshash":"2c54314b2da3150d998ba23c5b9726802161e407ed7bcc9cfb4da374cf4d7ea4a5138e","first_seen":"2026-03-21T17:37:13.717954Z","last_seen":"2026-06-04T18:55:38.894721Z","times_seen":42,"resource_available":false,"data":null}},"time_used":457,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":457,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/logos.html","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.669Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /fifa/logos.html HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: text/html\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"696ed7f6-2c17\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11287,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (4827)","md5":"a17ccb0279e70c1512ca86b3486b7aac","sha1":"b0b6a63ab8ce41f525362d13381bbef8549cdd9f","sha256":"0a7fd9f69e11f8454c151ca8cd833594c9e49b72947f8a20db31e260eef5b208","sha512":"090aaade3e004e5167b9c6a397deea8a99bf6ece44a1c222378b977f1a1b5e10e0943acee388ff66f451efd81201aef99518df8a6a311dc72e685c9a2b0b3227","ssdeep":"192:PyxWm+En+H0HMHjlH7lHlHFFhHDHNHSHWHhlHFRHlHWHbH4HMHFHFTdHcof1fFG+:3UsDlblFljty2Blbl27YslPpf1Fw0oM","tlshash":"4932bdf234da313b6d1751bd2a6f8f6d6471911b8faaef4d78ec2156cf0892189326c0","first_seen":"2026-03-21T17:37:13.703865Z","last_seen":"2026-06-04T18:55:38.941994Z","times_seen":42,"resource_available":false,"data":null}},"time_used":173,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":173,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/FIFA_Logo_White_Generic.png","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.824Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /fifa/FIFA_Logo_White_Generic.png HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"696ed7f6-6b3a\"\r\nexpires: Wed, 01 Jul 2026 20:39:12 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":27450,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1178 x 388, 8-bit/color RGBA, non-interlaced","md5":"ef4dbdcf1480dda7b4075f5f73250838","sha1":"4f580577bbe9d9e6dea77bccd36d47423de7294c","sha256":"3b4612e13870880d7bfa9c811adac608085d83962d250da129f0d39f8d96d828","sha512":"26ebd28834888e3119d66892c0dbadf70ce5d3eb00baa216359ea3f965a5943e8962fa593022de8717eef32cc12da460d0c225e98b85df59a3a532e66f5b2fd5","ssdeep":"768:dwiH6iH/EuJCrY0/rZOqMjASmq326reEg2W:HnssCM0/lOfjAq3Xrg2W","tlshash":"c1c28c03dcc4725f14966a69a3bb70d0f5b92463706b2f6f0f2951366c17ad2f934c92","first_seen":"2026-03-21T17:37:13.713013Z","last_seen":"2026-06-04T18:55:38.954056Z","times_seen":44,"resource_available":false,"data":null}},"time_used":149,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":149,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/m/35ae815257b9ecf3/webimage-fifa_sp_hisense_dbgr.png","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/fifa/logos.html","date":"2026-06-01T20:39:13.161Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /m/35ae815257b9ecf3/webimage-fifa_sp_hisense_dbgr.png HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 3414\r\ndate: Mon, 01 Jun 2026 06:26:18 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=86400, stale-while-revalidate=600, stale-if-error=3600\r\ncontent-disposition: inline; filename=\"fifa_sp_hisense_dbgr.png\"; filename*=UTF-8''fifa_sp_hisense_dbgr.png\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:f509e5a5-b534-46c5-aa78-85361eedca39\r\nx-robots-tag: none\r\nx-api-correlation-id: f1101e06-8181-867b-6f31-5d5739d786b6\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: Vpnmi_jIHkij1-wOclV7Pft1bBIKA1-AF2p5iaFx5PCppOtOOzcADw==\r\nage: 51175\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":3414,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 279 x 161, 8-bit colormap, non-interlaced","md5":"3e71bc3be256ac79e106a518bd8635b6","sha1":"de9d1996c4460c1f8375503e7c1468b1f1e11b2b","sha256":"650b76fbeec747e33c567b168ca2eee74d97c7832c8f0d46333860c1425a49ae","sha512":"3fe2d61235827f09f3bcb0a554a75cbb8679e069f900bc0c02cc57bc2684b0c616501c363ccca56e4a877da554705c676cadedee4510b96d882f085d73e6fb52","ssdeep":"","tlshash":"77612a6fd3f9667dddc2b133bc9ce6508328965f4182256e4440f4521cc907ca5afb8b","first_seen":"2026-05-29T20:50:08.608181Z","last_seen":"2026-06-04T18:55:39.005945Z","times_seen":37,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/media/noto-sans-regular.19dce59526bdb47b8e52.ttf","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:14.218Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /media/noto-sans-regular.19dce59526bdb47b8e52.ttf HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/fifa/9795.1a29b9ec.chunk.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:14 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-06T23:09:59.003831Z","times_seen":523450,"resource_available":true,"data":null}},"time_used":179,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":179,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/5219.994a7798.chunk.css","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:11.984Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /fifa/5219.994a7798.chunk.css HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"696ed7f6-c6cb\"\r\nexpires: Tue, 02 Jun 2026 08:39:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":50891,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (50891), with no line terminators","md5":"01f4ff50a406818b767a88a31110b1ae","sha1":"c24754798452c5737128cda2ece11cc128ee2c32","sha256":"25fa6d33f895c5e53e0002d77273b4939d3063e54e3359ab19a282edbd5f78ce","sha512":"d32a8c82660ffa7e61072c0d6ff2bc0bc32b2ab675b1743b1014d643ac0ee966cbc011fd3f5c9076b75c95b19fded3a320afe82faaaf20b981c01f1dda350ef2","ssdeep":"384:K69kCV/yRMeBFlq3pmRTcR8VQf0GvCzj9rmexFEifw:BkCV/afRcR8U0ueG","tlshash":"643302aeb720b126d4f7283e3b879e4d950af90b8e0396fed202d75468c3b5314b95d4","first_seen":"2025-11-29T04:32:24.193193Z","last_seen":"2026-06-04T18:55:38.993046Z","times_seen":51,"resource_available":false,"data":null}},"time_used":456,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":456,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/m/39eacec45668b079/webimage-fifa_fp_qatar-airways_co_dbgr.png","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/fifa/logos.html","date":"2026-06-01T20:39:13.157Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /m/39eacec45668b079/webimage-fifa_fp_qatar-airways_co_dbgr.png HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 8313\r\ndate: Mon, 01 Jun 2026 11:09:38 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=86400, stale-while-revalidate=600, stale-if-error=3600\r\ncontent-disposition: inline; filename=\"fifa_fp_qatar-airways_co_dbgr.png\"; filename*=UTF-8''fifa_fp_qatar-airways_co_dbgr.png\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:2c368f9a-1ae7-4e1a-b34f-97b167056c33\r\nx-robots-tag: none\r\nx-api-correlation-id: 7bdd46c6-a8c7-a43a-f58b-7454b6e6129d\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: e2XclvYHwn44XebpN3J76b-bYJteYnJX90YiUlQiqQXREjtFIMlUTQ==\r\nage: 34175\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8313,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 358 x 200, 8-bit colormap, non-interlaced","md5":"8a6c1e70d40cb3f0ff95e53b8257d2e3","sha1":"ac8a1ef3af89e5513c2b5509a4cb9cfeb1b895d8","sha256":"9b220b4d1652d742240d271605a96f0f6926be2994b953fd4fbe8a91f642a01b","sha512":"90d8da8668f8fd740c1afc5d3415260c9405db408b49b8f81281da91e2b599cfd810be64acfc2640a480f1a1fc5d648a98ac7861e3e70d28012c98d98059ee6c","ssdeep":"192:h2k3Vp+AqKJFvNjpBMDJH0085Hn1SC23NNBVnyvHYYqBXZl:B3oEvNpiJUZ5HY3NdnyvHYHX7","tlshash":"8b02bfb5ca0391b11a4ecda5fcea6902c8323191d5c131af47b49972852fb43d602fda","first_seen":"2026-05-29T20:50:08.606475Z","last_seen":"2026-06-04T18:55:38.905311Z","times_seen":37,"resource_available":false,"data":null}},"time_used":21,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/m/177eb15b0cae9c7a/webimage-fifa_sp_mengniu_dbgr.png","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/fifa/logos.html","date":"2026-06-01T20:39:13.163Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /m/177eb15b0cae9c7a/webimage-fifa_sp_mengniu_dbgr.png HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 4671\r\ndate: Mon, 01 Jun 2026 07:59:25 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=86400, stale-while-revalidate=600, stale-if-error=3600\r\ncontent-disposition: inline; filename=\"fifa_sp_mengniu_dbgr.png\"; filename*=UTF-8''fifa_sp_mengniu_dbgr.png\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:fd084c98-f5c3-4680-b2f0-a31b880ad0c3\r\nx-robots-tag: none\r\nx-api-correlation-id: 0e60d7de-ac4a-bc12-0b26-04d36a37a650\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: UoA9Sn0xeU62apBMYFS1MOy9RzeBEXxgT7ZQEOeFmYhD99cACS7KzA==\r\nage: 45588\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":4671,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 279 x 161, 8-bit colormap, non-interlaced","md5":"42af86cff1b375d6ab63442cd2452aec","sha1":"3d33ea6605ca3b0bcb73b5a55181822227ac7837","sha256":"77fe9e36379547da1af683f1245ea32543459d73b6dedaa809608178eaba7adb","sha512":"fc109741f2d589f421b49bcd4597b7bd20b55b00020ccf87f8d5bdbf03231fedb82f330cd6ef6bff33f3365648380ede1e5b9bd660fdaed3a5e3bf58188ec058","ssdeep":"96:jYWsTMQhW8NNoaMIItJTCDYy03vLKF4yi2RroLtxaAiIA4:jFs5hPNNoaytU4Kqyi3trm4","tlshash":"e0a17d4bf0da3f59e08074318b21491b1755e2993ab72f2b617dbefd96a8ec9400c167","first_seen":"2026-05-29T20:50:08.610389Z","last_seen":"2026-06-04T18:55:38.905734Z","times_seen":37,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/transform/0a7bc04d-8c49-4937-816d-f6bb8be6b6d3/FAC-2025-Tournament-Logo-Thumbnail?\u0026io=transform:fill,aspectratio:4x3,width:1570\u0026quality=75","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.021Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /transform/0a7bc04d-8c49-4937-816d-f6bb8be6b6d3/FAC-2025-Tournament-Logo-Thumbnail?\u0026io=transform:fill,aspectratio:4x3,width:1570\u0026quality=75 HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 19264\r\ndate: Mon, 01 Jun 2026 20:24:44 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=15552000\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:0a7bc04d-8c49-4937-816d-f6bb8be6b6d3\r\ncontent-disposition: inline; filename=\"FAC-2025-Tournament-Logo-Thumbnail.avif\"; filename*=UTF-8''FAC-2025-Tournament-Logo-Thumbnail.avif\r\nx-api-correlation-id: 1ff9c27e-263d-0a36-40ee-bde6e6026fc5\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: 2qq4sS-3TQPNx2lx1HpX2aX1nFATupaUhM1T75Oj05C8klwXn9iSHg==\r\nage: 868\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":19264,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"f24f143df55b2e4c3068d4b5355263cf","sha1":"4a966498e9c6642b5aedb5444619651185179ca8","sha256":"7edf31001ba4ba4638d1c4a6b50de376a99baee7de3c55e44c9465c0cf19bdb3","sha512":"b196538dabffb0dfc82c05a7c224edfe6eefd88f6aae9f496ed2a6d38e5ea20e91a8360caf211b45a37a5286975ae56dff2f66c9cd296d9860b549eb2ef25ee4","ssdeep":"384:cYNg7jM3m2bz+awdgCYYHrrkUAkTa0dPVJVeTf1t8HHGlKk2m:cYy8ZizYAmoPfVeTf1t8HH1k3","tlshash":"7782d07aef945f72d768677534207f5ce2a1e228d763ba8388c96f2103911c12e8f11d","first_seen":"2026-03-21T17:37:13.756646Z","last_seen":"2026-06-04T18:55:38.974288Z","times_seen":43,"resource_available":false,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"flo.uri.sh/template/79177/v10/static/style.css","fqdn":"flo.uri.sh","domain":"uri.sh","tld":"sh"},"ip":{"addr":"104.18.43.42","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fifa.gold/fifa/host.html?id=123","date":"2026-06-01T20:39:13.065Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uri.sh","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 11 May 2026 17:43:57 GMT","end":"Sun, 09 Aug 2026 18:43:55 GMT"},"fingerprint":{"sha1":"1A:05:CB:17:59:A9:55:62:36:B8:B7:86:E0:7B:13:0C:2F:9B:8E:5B","sha256":"7A:86:67:A2:E7:66:02:F1:75:36:CF:91:88:C2:5F:27:43:3B:E5:F7:DE:87:AA:0E:25:B8:59:55:21:70:64:2C"}}},"request":{"raw":"GET /template/79177/v10/static/style.css HTTP/1.1\r\nHost: flo.uri.sh\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 01 Jun 2026 20:39:13 GMT\r\ncontent-type: text/css\r\nx-amz-id-2: 54LgjGsAvS/fSYj/jdtu8s5ABsHoeiCMTFGWybIvWYFiHVW1N5V2OIQCGdH8OxRLQDg18J0pHdbSCPn9GqXzgxU/Vga8/Int\r\nx-amz-request-id: E956AXPZR48W3P8Q\r\ncache-control: max-age=31536000, immutable\r\nlast-modified: Mon, 10 Feb 2025 12:40:22 GMT\r\nx-amz-version-id: qpPECG0byv6ODNF2nRLp94Y9mFy7Q1aL\r\ncf-cache-status: HIT\r\nserver: cloudflare\r\nage: 1751759\r\netag: W/\"bb0c2990cbf7bb80f27edc980467aaba\"\r\ncontent-encoding: gzip\r\ncf-ray: a05106c29ffd5693-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2875,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (2875), with no line terminators","md5":"bb0c2990cbf7bb80f27edc980467aaba","sha1":"f83c58b675cd024517b5450b73e1fe11b00928c3","sha256":"bf4d41405a91e392ca581607a1267581ecd08372786ae34e6f66b19fc0bdc292","sha512":"90dd7fb1e81b1866cd8bafa9021e5d2c6b2ce104e65a1ade4683d25fd07a5dcad9a26d955536d4e811cae0bbd1cd5b87253c4ab1444abaab268643091dc84e5f","ssdeep":"","tlshash":"cb513435e662263ce7e3431be7c33bac3514637547230aae6025aeb4435ac89137871c","first_seen":"2025-06-19T01:22:47.535076Z","last_seen":"2026-06-04T18:55:38.914872Z","times_seen":55,"resource_available":false,"data":null}},"time_used":48,"timings":{"blocked":-1,"dns":1,"connect":1,"send":0,"wait":12,"receive":0,"ssl":30},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/media/poppins-regular.80ad975e8fb5131f927c.woff2","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:13.416Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /media/poppins-regular.80ad975e8fb5131f927c.woff2 HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/fifa/9795.1a29b9ec.chunk.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:13 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-06T23:09:59.003831Z","times_seen":523450,"resource_available":true,"data":null}},"time_used":238,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":237,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/media/noto-sans-regular.bfa96228235216443a93.woff2","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:13.439Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /media/noto-sans-regular.bfa96228235216443a93.woff2 HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/fifa/9795.1a29b9ec.chunk.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:13 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-06T23:09:59.003831Z","times_seen":523450,"resource_available":true,"data":null}},"time_used":217,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":217,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/media/FIFASans-Regular.753e37a8db21a26c1959.woff2","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:13.415Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /media/FIFASans-Regular.753e37a8db21a26c1959.woff2 HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/fifa/main.c56d670b.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:13 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-06T23:09:59.003831Z","times_seen":523450,"resource_available":true,"data":null}},"time_used":249,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":249,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/media/FIFASans-Regular.753e37a8db21a26c1959.woff2","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:13.539Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /media/FIFASans-Regular.753e37a8db21a26c1959.woff2 HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/fifa/9795.1a29b9ec.chunk.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:13 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-06T23:09:59.003831Z","times_seen":523450,"resource_available":true,"data":null}},"time_used":167,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":167,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/transform/aedda9bb-276d-49d4-92e8-294903503419/Design-ohne-Titel-1","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.594Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /transform/aedda9bb-276d-49d4-92e8-294903503419/Design-ohne-Titel-1 HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 6165\r\ndate: Mon, 01 Jun 2026 20:24:45 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=15552000\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:aedda9bb-276d-49d4-92e8-294903503419\r\ncontent-disposition: inline; filename=\"Design-ohne-Titel-1.avif\"; filename*=UTF-8''Design-ohne-Titel-1.avif\r\nx-api-correlation-id: 1234af7f-ccf7-b240-73be-6c18e1e61d84\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: 8Hk00uITIFldmlw0b6rDtSB-GbxEXkGvQ3W8aYOlNIu85NuGZL0INA==\r\nage: 867\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":6165,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"6cfcf6730c0df2042c1f0a0a54baf301","sha1":"83305b505a597116baf1649248902bd9a7fe2dde","sha256":"2948bc0d7db5cc7949fa49a7fb8a79813c8f533d2d8573ac1295b487ea48a4a6","sha512":"04ce407dbc83a6c780780016196790dc96d33be74a10b2c30eafddc41e206515dc34d7aa235e7ffa99a04cbc95e63d7fd66da080a6509655a4eb4b5fbb378bb7","ssdeep":"96:+TGQ6hN26MT0D5MdtbZPAVwzVLlBYMCrzZXP12n/V4CqaL6P3zIZRYv:+T6QYNMtKwjmMAdiV4RauP3sZRQ","tlshash":"fdd16b36aaa2a303d964c23854f577ba71e3712ce3723a0e7a38731905250e85f8f089","first_seen":"2026-03-21T17:37:13.609331Z","last_seen":"2026-06-04T18:55:38.993594Z","times_seen":42,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.B7Dih9Jyjnw.L.F4.O/am=BBAAJw/d=0/rs=AN8SPfow65MVwWyUrqhRcgF8bzAeNnSj_A/m=el_main_css","fqdn":"www.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.67","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.863Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:53:13 GMT","end":"Thu, 30 Jul 2026 15:53:12 GMT"},"fingerprint":{"sha1":"6C:B9:FE:19:9C:7C:AA:5D:D2:39:3A:16:2C:50:FB:C8:59:C8:CC:A8","sha256":"FC:4C:0C:6E:AB:D1:82:30:1F:A9:46:DF:FA:38:02:9F:06:56:FF:98:E0:8D:AB:9A:26:C3:2A:97:C5:CF:A6:1C"}}},"request":{"raw":"GET /_/translate_http/_/ss/k=translate_http.tr.B7Dih9Jyjnw.L.F4.O/am=BBAAJw/d=0/rs=AN8SPfow65MVwWyUrqhRcgF8bzAeNnSj_A/m=el_main_css HTTP/1.1\r\nHost: www.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"rosetta\"\r\nreport-to: {\"group\":\"rosetta\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/rosetta\"}]}\r\ncontent-length: 3967\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 28 May 2026 19:15:59 GMT\r\nexpires: Fri, 28 May 2027 19:15:59 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Thu, 09 Apr 2026 01:12:55 GMT\r\ncontent-type: text/css; charset=UTF-8\r\nvary: Accept-Encoding\r\nage: 350594\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":20284,"size_decoded":0,"mime_type":"text/css; charset=UTF-8","magic":"ASCII text, with very long lines (20284), with no line terminators","md5":"fde4f72b90fe807270db3c332dd058df","sha1":"7ef4d70af01c38a7f80a7650be25f63aff4ba751","sha256":"ab31c9be358d2107fc1158434c7aeaaf15f82e3e405ed67ab236b5ac232ed159","sha512":"9bef39350af557afeb10cb71068426ab28befaf5295359954787be06a5ce0993d69e8f5018a5a17c44311d294dd1a87a6f82edd0f5743df0149b8e4e53061695","ssdeep":"192:nvqx/EhZINcrXsfg0SgG8CqA3uku9SJFzvQVMbnUIfIxIVVpTrecfzPtcmt4v78l:gMF8Sb3i0JFzourUqWMVpTrdfzPtcBG","tlshash":"c492872057aed01967efa82364d36dff71d444db90123eeaaf5a7352cd821f231ea214","first_seen":"2026-04-13T20:43:22.641436Z","last_seen":"2026-06-06T23:09:22.921523Z","times_seen":10164,"resource_available":false,"data":null}},"time_used":286,"timings":{"blocked":122,"dns":3,"connect":28,"send":0,"wait":29,"receive":1,"ssl":99},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/m/1b8d7de6b9df12/webimage-fifa_sp_abi_dbgr.png","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/fifa/logos.html","date":"2026-06-01T20:39:13.159Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /m/1b8d7de6b9df12/webimage-fifa_sp_abi_dbgr.png HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 4880\r\ndate: Mon, 01 Jun 2026 11:09:38 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=86400, stale-while-revalidate=600, stale-if-error=3600\r\ncontent-disposition: inline; filename=\"fifa_sp_abi_dbgr.png\"; filename*=UTF-8''fifa_sp_abi_dbgr.png\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:a1625694-47ad-4524-b9e0-379c3019bbc9\r\nx-robots-tag: none\r\nx-api-correlation-id: 4c057ac0-2ad0-562b-babc-c03f1687e339\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: 7pbWc_JKSV-mbSHSUZjURA4bs5K5NhPGEiJH5_Ou6IpAOInRoSzmxw==\r\nage: 34175\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":4880,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 279 x 161, 8-bit colormap, non-interlaced","md5":"de626610858c505f54e6193ed67aef87","sha1":"c11dacd1c0321921d9c12042b4525d66aca8f6bb","sha256":"984b819f576e14e00081a87afd317bf5fcbdee8ba506774ace7e3e8039ec8730","sha512":"180ec2fb29670e9f0c3c05b6a974abecc4eaaac195eaeedcb0147807ecf5cc5f932b27518f2307632de17b8843ddbddb6d05210b1b18e274cba2438284195e0c","ssdeep":"96:Ulpz8B2dV39VdYXllKl3OyF4+9M/bJ3AdN0Yuer7q:UkS9WlEEy4+WdAwYugq","tlshash":"93a16c998478dc6ac5f0019192d18861eba4f13b5119d3461affc633646c4f90a1fbca","first_seen":"2026-05-29T20:50:08.663501Z","last_seen":"2026-06-04T18:55:38.939581Z","times_seen":37,"resource_available":false,"data":null}},"time_used":21,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":19,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/transform/76721157-f618-4f2f-a996-817164611eca/Volunteers-2026-Video-Thumbnail?\u0026io=transform:fill,aspectratio:4x3,width:1921\u0026quality=75","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.012Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /transform/76721157-f618-4f2f-a996-817164611eca/Volunteers-2026-Video-Thumbnail?\u0026io=transform:fill,aspectratio:4x3,width:1921\u0026quality=75 HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 26735\r\ndate: Mon, 01 Jun 2026 20:24:44 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=15552000\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:76721157-f618-4f2f-a996-817164611eca\r\ncontent-disposition: inline; filename=\"Volunteers-2026-Video-Thumbnail.avif\"; filename*=UTF-8''Volunteers-2026-Video-Thumbnail.avif\r\nx-api-correlation-id: 6ad206f9-db33-6a08-adde-921f26e50a30\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: nmJBebbkM1Dq4NKHnV1fCX-VlPdk9bBajJ-fa3K5PpNpTT9cbPHesA==\r\nage: 868\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":26735,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"1a3b57365f8cb860f77416bd7cc27289","sha1":"1ae84ea93cf13a005550a3d9d2709ee0b6a518ef","sha256":"57bce00e43e3bb5a65eaeff44f94303deec5016be3cf65069a5eefad9657a0b4","sha512":"032c70470758f17f1d4b1fcc0fc58965449e3b19c4493c52e1c07548872cf41d039f2910a6764cd16655e741420fc9981a5cee5ab3a8d3d8c0dc12f701f08b59","ssdeep":"384:UYNg7jupgiPSbEV/Whi+/Nje3v1KdM+ZdSDvsCuydRaxXvJNZL9TXy2q2:UYyepm6ehi+/Nje3v1eM+ZVcAxXvHJHX","tlshash":"62c2e1948fb235a3d2f2d77c974adbaca1f6f33862f20f4762e9316014340e2595da25","first_seen":"2026-03-21T17:37:13.755002Z","last_seen":"2026-06-04T18:55:39.01927Z","times_seen":43,"resource_available":false,"data":null}},"time_used":82,"timings":{"blocked":12,"dns":0,"connect":9,"send":0,"wait":35,"receive":3,"ssl":20},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/transform/107c1031-9347-44b1-b33f-889630c41738/FIFA_FWWC2025_Tournament-Thumbnail_1024x768?\u0026io=transform:fill,aspectratio:4x3,width:1024\u0026quality=75","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.016Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /transform/107c1031-9347-44b1-b33f-889630c41738/FIFA_FWWC2025_Tournament-Thumbnail_1024x768?\u0026io=transform:fill,aspectratio:4x3,width:1024\u0026quality=75 HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 18592\r\ndate: Mon, 01 Jun 2026 20:24:44 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=15552000\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:107c1031-9347-44b1-b33f-889630c41738\r\ncontent-disposition: inline; filename=\"FIFA_FWWC2025_Tournament-Thumbnail_1024x768.avif\"; filename*=UTF-8''FIFA_FWWC2025_Tournament-Thumbnail_1024x768.avif\r\nx-api-correlation-id: f2322571-274e-bad5-d022-611536f610a1\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: MCdEY_rBTSr2bDkAUsdvz_jH4bKLTjjg9Zo4aJ4df7WC9D3Eq0zsYg==\r\nage: 868\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":18592,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"3c6c16f94ba84082d46fe56b6d69e650","sha1":"72df68af5d29461c3844b1e88e4a1eab0ad03a82","sha256":"e8a6b8508a59e1ae0398eca952b2bafdb5fa45b8fcdf5981f2fe9a2450e6ba6f","sha512":"c814273003a18a2e831e242408f0d11f4c4ad8fa80b7c4d424bf97d9e25c4b24b080fd522ea1550ea1674ed7cc8f8da0a6bf35745066addcc875377dbba62961","ssdeep":"384:WYNg7jUwUQa7w8cx5KGJUKeG5Gy+nnEW2yS6l+SWfUjc6:WYyPUQa7ex5KGJr1Ey+nnERyS6cJ16","tlshash":"5382c07bfbca937bc4718cb145d30b4e27c7b1e6cb52165272113daca021488bb9e481","first_seen":"2026-03-21T17:37:13.589689Z","last_seen":"2026-06-04T18:55:39.015227Z","times_seen":43,"resource_available":false,"data":null}},"time_used":27,"timings":{"blocked":4,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/media/poppins-regular.80ad975e8fb5131f927c.woff2","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:13.740Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /media/poppins-regular.80ad975e8fb5131f927c.woff2 HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/fifa/9795.1a29b9ec.chunk.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:13 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-06T23:09:59.003831Z","times_seen":523450,"resource_available":true,"data":null}},"time_used":227,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":227,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/layui/layui/css/layui.css","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:11.974Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /layui/layui/css/layui.css HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"696ed7f6-14153\"\r\nexpires: Tue, 02 Jun 2026 08:39:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":82259,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"3f301374d385c19214a4b3e17c815422","sha1":"4b82ec3e4fc883d6331063fa19ccc94e2a0b970c","sha256":"7e90b7ced175894e5737acf791e4f77d2d3223e85d15c81b2485f1c525730987","sha512":"49217e3810ce0d64d222a3a2bd804ec8e290f773c10debe2a49114116b6451b4ede2fdf8ae680f7025dc04ca25c5920972ea1b71daa66099689e350111b3b337","ssdeep":"768:R/nEWwcY/8zYgFc6lDj1JpZ9rwyQaIYKNR3zdVhl09Tr1BpRBeisZSY3xswRZh2b:qWwcY/8nYGwrff9E5bB","tlshash":"4783a632e6112c68762bc215a1ccbebda0789512ea634e6df3513b1bc7858871073f6f","first_seen":"2023-04-14T00:55:30Z","last_seen":"2026-06-04T18:55:38.902978Z","times_seen":187,"resource_available":false,"data":null}},"time_used":173,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":173,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/8605.df19a8af.chunk.css","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:11.989Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /fifa/8605.df19a8af.chunk.css HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"696ed7f6-749e\"\r\nexpires: Tue, 02 Jun 2026 08:39:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":29854,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (29854), with no line terminators","md5":"a7104f3016054f06fd8b9ab749aa9431","sha1":"3512bee0c8b793646f300005ffedea91431ed552","sha256":"e7cf27f5af35dc4a0e15fcbf5d14ab66b5e3e99a676715fff63944fec5fd747b","sha512":"2e9d60ff637e042f87912c56ea9c190a51c58161c2ba4321b07b07de094740bfa554e9994a41343f687b9de0f30f7b927abc0a2a6975ff7dfdef5d0731920aeb","ssdeep":"384:k9SxFlNlO6ELu1rn1mSRCxhw8XNQcUlAUUnU:kcFPf1r/xNpx","tlshash":"9fd2b77d3388e1b4bca78946a4142aca1a1f691bdb13d7bcf46bb49857cb3cc1921c5c","first_seen":"2026-03-21T17:37:13.72258Z","last_seen":"2026-06-04T18:55:38.887827Z","times_seen":45,"resource_available":false,"data":null}},"time_used":454,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":454,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/m/1f95073924b11b7f/webimage-fifa_fp_aramco_dbgr.png","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/fifa/logos.html","date":"2026-06-01T20:39:13.156Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /m/1f95073924b11b7f/webimage-fifa_fp_aramco_dbgr.png HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 4210\r\ndate: Mon, 01 Jun 2026 11:09:37 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=86400, stale-while-revalidate=600, stale-if-error=3600\r\ncontent-disposition: inline; filename=\"fifa_fp_aramco_dbgr.png\"; filename*=UTF-8''fifa_fp_aramco_dbgr.png\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:0a5fc31f-67d3-4520-a30f-3315ef92d57a\r\nx-robots-tag: none\r\nx-api-correlation-id: 4bb41b90-66fc-a348-d14a-5656f5e8edf5\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: lxHlmJxMxZRccUnyKS3kJ-t53Vy_TiMr9dd4sidbxLnzG4V3A_nf5w==\r\nage: 34176\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":4210,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 358 x 200, 8-bit colormap, non-interlaced","md5":"03b94411cd11766688559f0e2c08acaa","sha1":"979f336a085ba262df411348ea21d26018376d8c","sha256":"7fab2f536d6e50cbe67912fb883ce24de33204c64f00cc5780d6221827d660ec","sha512":"5baa0479fcef38a313e0e868134e0660cd33a273cbfeeaa146fc8ad5922ffe9a381517911203d424bfd9aec5b1c68e8b6835a12dbb86b5d626365287b2a5fa19","ssdeep":"96:2uP4AriRDn/Uxkz0mH117EDesu13yCHLe4E8eHOa1arp2n3P0e:NPGN86zt6mtZLeHhGc/","tlshash":"de916da7a31dcef1d21122b7520ba7c584fa57baea3194988d2d30a0213e334b835581","first_seen":"2026-05-29T20:50:08.648934Z","last_seen":"2026-06-04T18:55:39.016709Z","times_seen":37,"resource_available":false,"data":null}},"time_used":20,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/host.html?id=123","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.666Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /fifa/host.html?id=123 HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: text/html\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"696ed7f6-6e19e\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":450974,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (34137)","md5":"8b0ff060aaab15e12ab1a157af52ac13","sha1":"941462e3331afab8fe8c88768e4840a78a78eee4","sha256":"cdb0501e83ddfa03364f70c006cde3feec4755394ed10cf563c5793a04e55497","sha512":"7139ea11eea62bff328daa178d8b4510dc4fad219d3c151958a658c944c1fb9a99df0442d538c76a30f656ff47171cf445fda983c6d8674e0605c6a22e4746d1","ssdeep":"12288:28jCbVQ3/5t2EixL/lWWiZlsK6JP9qEDA5kfhIcEpG8CrDwrnB6MC6kC1dWxRWOS:RCbVQ3/5t2EixL/lHiZlsK6R9qEDA5kW","tlshash":"9ca4941833d57639824bf070ac9ecc49b738a97c538a844dba1cc4e59968838977edfd","first_seen":"2026-03-21T17:37:13.664936Z","last_seen":"2026-06-04T18:55:38.983755Z","times_seen":42,"resource_available":false,"data":null}},"time_used":151,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":151,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/3598.9d058b68.chunk.css","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:11.978Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /fifa/3598.9d058b68.chunk.css HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"696ed7f6-a915\"\r\nexpires: Tue, 02 Jun 2026 08:39:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":43285,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (43285), with no line terminators","md5":"d408be4097024a4a67fe62db6d8568b6","sha1":"3f5182e83123a2a94e417181ff62128d84d9ea33","sha256":"e22c173bef8fb03d1a873f0fc9734379d67d4d9e9d839148d793775b40d00e2c","sha512":"f43ee26dd7b9b80d4247208d57bf23a9fbb47568d9bc227aa5c1a3c618d51de4aeab8e11115231ae5b961f630e406b968748b21b185344fe827bf03fa4b29100","ssdeep":"384:x7/aGDk+eHvdeyf1G8twklOZTlBEba4c7T1ptuX2c:xzkO4baVO","tlshash":"5f134361e7c17b39b82bc0e6add1e1e96d2d083756e74afe60672d5c8b8d2c01027d8d","first_seen":"2026-03-21T17:37:13.741349Z","last_seen":"2026-06-04T18:55:38.938849Z","times_seen":45,"resource_available":false,"data":null}},"time_used":457,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":457,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/m/6b6b5fea410741d0/original/p26-grid-bos.avif","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/fifa/host.html?id=123","date":"2026-06-01T20:39:13.617Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /m/6b6b5fea410741d0/original/p26-grid-bos.avif HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/octet-stream\r\ncontent-length: 191571\r\ndate: Mon, 01 Jun 2026 04:02:57 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=86400, stale-while-revalidate=600, stale-if-error=3600\r\ncontent-disposition: inline; filename=\"boston.avif\"; filename*=UTF-8''boston.avif\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:c6ee9f5e-2a09-44da-bb5a-bd71b8c5dbe2\r\nx-robots-tag: none\r\nx-api-correlation-id: 82616622-c724-c159-088f-afcc8c26fb3c\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: SUtW4pQaGMZCghd0E2Ii5Ac6Xa9u6NYEq8rMixGfmU3bbPXfb7zbFw==\r\nage: 59776\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":191571,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image Sequence","md5":"605ad02a76be76921251c0d6653d55c8","sha1":"4c30635a62919000e95992867fff480df701bef4","sha256":"ea2dc64e362d679222423742526e83a5e07e6f53fc777bad6664a12a40be06d3","sha512":"99877d1b26770742fa1aa31fc7f94d19be291f8f8c47fc79b619762f6de793dc92873842cbd9ed38e5231e5fb706e8cddd1fd49e7822d5fe13208f248840e0e0","ssdeep":"3072:HMGn8UKupfUx8dEQcMm4QT4tW1fHCh7D9fAYqa8NwQ4zWocQ1inVhbiokDRNQm71:s4PNpfUmdsD4tWOP9jEwQOJcoinVYHFt","tlshash":"821412488be1b625e8b0a97c7822faec2b3ce1dfe5dc35dd905476612b1943dde4b021","first_seen":"2026-03-21T17:37:13.661593Z","last_seen":"2026-06-04T18:55:39.008066Z","times_seen":44,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/4776.d36db36f.chunk.css","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:11.985Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /fifa/4776.d36db36f.chunk.css HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"696ed7f6-16c89\"\r\nexpires: Tue, 02 Jun 2026 08:39:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":93321,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"19c43ae390cdbdcac11820024cd8405c","sha1":"165cc8bfc484e792485b4af7161f75799194c4ae","sha256":"8df8c1ced20aa5e286ebd4830a64b8b5bd595ee91ca0cbda0facafc4c5c120ef","sha512":"bfd1845a772c1a7fcd7b0c7efed2859635afb663a0f690c30b0a5006fa159a1c5a59f561ace43a7eb42f8c275888648efee8f86c537f0e70063441c3eefd33ba","ssdeep":"1536:9eMBZIcttazkg2LRTTtfpWf67+ZAf4rlVgFy6dcVaeD:1u","tlshash":"1f93a5643b0875f9b8b7056b716232c81b2e4837af22c52eb5b7385c2bd22c91537e5d","first_seen":"2025-11-29T04:32:24.223939Z","last_seen":"2026-06-04T18:55:38.862179Z","times_seen":46,"resource_available":false,"data":null}},"time_used":456,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":456,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"public.flourish.studio/fonts/c40dc338-1e11-4bfa-b656-419eb2c70122/FIFASans-Regular.woff2","fqdn":"public.flourish.studio","domain":"flourish.studio","tld":"studio"},"ip":{"addr":"104.18.32.174","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://fifa.gold/fifa/host.html?id=123","date":"2026-06-01T20:39:13.357Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"public.flourish.studio","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 30 Apr 2026 20:30:38 GMT","end":"Wed, 29 Jul 2026 21:30:35 GMT"},"fingerprint":{"sha1":"71:C2:37:69:32:F2:09:94:A5:4F:05:6B:18:65:61:6C:1C:E9:85:D2","sha256":"3B:AD:76:DE:E8:08:BA:F7:11:26:BF:6C:F7:1E:5E:2A:7A:34:8A:67:95:C9:A3:72:AD:D4:9D:A5:C2:BF:35:49"}}},"request":{"raw":"GET /fonts/c40dc338-1e11-4bfa-b656-419eb2c70122/FIFASans-Regular.woff2 HTTP/1.1\r\nHost: public.flourish.studio\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://fifa.gold\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://public.flourish.studio/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 01 Jun 2026 20:39:13 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 89584\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: POST, GET, HEAD, PUT\r\naccess-control-max-age: 3000\r\ncache-control: public, max-age=31536000\r\nlast-modified: Tue, 11 Feb 2025 13:54:38 GMT\r\nx-amz-version-id: 9oyu8FO.V1kzvs2kHvqv3eLJ.fM5gnpk\r\netag: \"1ea6af7f692951b2796431ab9c1d1559\"\r\nserver: cloudflare\r\nvary: Access-Control-Request-Headers,Access-Control-Request-Method\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 8a3a3a2a882e7ef5f22324ec35388686.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: WAW51-P6\r\nx-amz-cf-id: 2ZuWe-V7YN7ylKJOHupnNhoqaw6PrMriVPRrq2dtcQyMEn-RdiARLQ==\r\naccept-ranges: bytes\r\nage: 180231\r\nexpires: Tue, 01 Jun 2027 20:39:13 GMT\r\ncf-cache-status: HIT\r\ncf-ray: a05106c4487f1525-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":89584,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 89584, version 1.0","md5":"1ea6af7f692951b2796431ab9c1d1559","sha1":"3db88929af2519b12dbd60504e27810a76dafea6","sha256":"1f3b82992e28c1d956eda4b94da16733de0a35686be9037b0a413cf2f39150e9","sha512":"3c4137cd521067c7b7065c930ebb7e17d19e6212c5f335c956a4040fa13525ce34cfc904f644a68ebe57a092617aced1a738852657f4e5e9e1c580f7d231713c","ssdeep":"1536:eZRge1Uj+/IFtmdtOydoocTcAkRlItyyw79ABkvqYMA1/lGRzg7kG2:Jj+AFtugTPkRlIgABoHUdgAh","tlshash":"2d9302b80860436c6b1dc8f21d79a8959e894855f64e280c9bf434b973dba4373b5bc3","first_seen":"2026-03-21T17:37:13.623649Z","last_seen":"2026-06-04T18:55:38.994124Z","times_seen":45,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/m/6aee880405fc91d1/original/p26-grid-gua.avif","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/fifa/host.html?id=123","date":"2026-06-01T20:39:13.629Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /m/6aee880405fc91d1/original/p26-grid-gua.avif HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/octet-stream\r\ncontent-length: 143318\r\ndate: Mon, 01 Jun 2026 02:07:32 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=86400, stale-while-revalidate=600, stale-if-error=3600\r\ncontent-disposition: inline; filename=\"p26-grid-gua.avif\"; filename*=UTF-8''p26-grid-gua.avif\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:df354beb-7286-46ce-aa7c-e5b20543fde0\r\nx-robots-tag: none\r\nx-api-correlation-id: c4ff86d9-597e-80a0-aaf8-a2da43f7b330\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: Cg11pdGwE0kzEon2ojQPM5spBBJpO1gGJu2KtaWBLAuEeLVJ9pFv0g==\r\nage: 66701\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":143318,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image Sequence","md5":"ce0677718093365949d927cbba56da89","sha1":"4ca83d6b39a33bd37ef732a2c4305dd2352192d9","sha256":"9f2fd93a18c055318deaffc638597d0640f4d135aac71dfb171fe228e1a0a90d","sha512":"08d8b042193fd76e37c1b279ba81701e35d0f8844270c7896944e25a9a3bcdb321f55899ef51846065ab5cde2e6e096a48098055c656cd23929f5ab761c10b82","ssdeep":"3072:f7/qb8oQ1r5ipYiza/UVXzflpBLYEKA0rphYkna:L+cr5AacVD5+A0rpha","tlshash":"e5e312c1445f4936f487b2f693771274b1f2c7a728b674fa46d90068fbfca2822426c9","first_seen":"2026-03-21T17:37:13.75058Z","last_seen":"2026-06-04T18:55:39.000841Z","times_seen":44,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/media/poppins-500.655c38fc055e06d4ea24.ttf","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:14.032Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /media/poppins-500.655c38fc055e06d4ea24.ttf HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/fifa/9795.1a29b9ec.chunk.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:14 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-06T23:09:59.003831Z","times_seen":523450,"resource_available":true,"data":null}},"time_used":167,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":167,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/8993.dc0c7e0b.chunk.css","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:11.987Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /fifa/8993.dc0c7e0b.chunk.css HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"696ed7f6-6778\"\r\nexpires: Tue, 02 Jun 2026 08:39:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":26488,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (26488), with no line terminators","md5":"0f4b2f916566e7b6c9769ba9fb679277","sha1":"d7d77041df2eb4f1121d689d79137fedb0bb163a","sha256":"d7c6960db2ed99642dc1f28fd8759038338ef12700cfbac401d5257428606d02","sha512":"9db799c85375d56b5dceb16cb51976bf36fb829b58a8fc659b93fb6f87be5cf6b0096cfda84c6157369df154bb309de6d3e9f5183272b0648d2d9c9d0ddcde5c","ssdeep":"192:mbFw/TUC1Bu1DyOUDaC4hKBHc1K8pM2lv5WoybAVZuCyyawC8IPhWtReqhVou4IB:51BLDDc1K8+2FsCyya17gN1nC//Yp","tlshash":"82c2413a0b15a738a47bce2a2c5e7f44592b5a2477067b2dd9d2fd2c13c2797037298c","first_seen":"2025-06-13T20:56:07.303779Z","last_seen":"2026-06-04T18:55:38.904839Z","times_seen":48,"resource_available":false,"data":null}},"time_used":455,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":455,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/transform/46a7fe11-1d37-4fa0-853e-96d65c84594c/The-Best-FIFA-Football-AwardsTM-2025?\u0026io=transform:fill,aspectratio:4x3,width:1920\u0026quality=75","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.024Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /transform/46a7fe11-1d37-4fa0-853e-96d65c84594c/The-Best-FIFA-Football-AwardsTM-2025?\u0026io=transform:fill,aspectratio:4x3,width:1920\u0026quality=75 HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 28975\r\ndate: Mon, 01 Jun 2026 20:24:48 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=15552000\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:46a7fe11-1d37-4fa0-853e-96d65c84594c\r\ncontent-disposition: inline; filename=\"The-Best-FIFA-Football-AwardsTM-2025.avif\"; filename*=UTF-8''The-Best-FIFA-Football-AwardsTM-2025.avif\r\nx-api-correlation-id: 4a8fbf1c-01c5-de55-7c77-2cafc4f15d82\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: xAH-_3ypSYZsgzKZxs_jXwRgedFoNVQ9tZrTvR4aHgHdvhDWeuuNYQ==\r\nage: 864\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":28975,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"3946d2c2b61ade97cad16a3743f0e0e5","sha1":"19f68e1cfc2900c2bddd063fd5bb21a4fa4c340f","sha256":"dc5bbf596d38234b56f5cfb83126825048f9dd5112e46e8ea755b7956860a337","sha512":"2b53b709b91c55225fa2903e9249b6056d6a6b29307bb83cfbca7b257d68437a7791a958a3eaed76b4227a7896479d7de77f550a6337fcf74a52e4d8fb956630","ssdeep":"768:nYyCGnEOWUrepdIIv2XCkYc87oY7ohC+/f:nW5k8IIsN88YO","tlshash":"26d2f13ed70865bbc621d87c08676fccd2a2b744ee0316e3b3ecaf45140a68eb566194","first_seen":"2026-03-21T17:37:13.607635Z","last_seen":"2026-06-04T18:55:38.901153Z","times_seen":43,"resource_available":false,"data":null}},"time_used":34,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/transform/7b282777-2732-42e5-a123-7726a048390a/Alain-Giresse-celebrates-scoring-for-France-against-West-Germany-in-the-1982-FIFA-World-Cup-Spain-semi-finals?\u0026io=transform:fill,aspectratio:4x3,width:240\u0026quality=75","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.846Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /transform/7b282777-2732-42e5-a123-7726a048390a/Alain-Giresse-celebrates-scoring-for-France-against-West-Germany-in-the-1982-FIFA-World-Cup-Spain-semi-finals?\u0026io=transform:fill,aspectratio:4x3,width:240\u0026quality=75 HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 9349\r\ndate: Mon, 01 Jun 2026 20:35:36 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=15552000\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:7b282777-2732-42e5-a123-7726a048390a\r\ncontent-disposition: inline; filename=\"Alain-Giresse-celebrates-scoring-for-France-against-West-Germany-in-the-1982-FIFA-World-Cup-Spain-semi-finals.avif\"; filename*=UTF-8''Alain-Giresse-celebrates-scoring-for-France-against-West-Germany-in-the-1982-FIFA-World-Cup-Spain-semi-finals.avif\r\nx-api-correlation-id: e999833f-b410-8b7c-51bb-7a797b7414be\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: RSwq5QUzHXRn2zioQ9FvjWe4r5uJYIPekZ013zfeCHUWioULGUJt4Q==\r\nage: 216\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":9349,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"5b35b58a50660b80933adad8ba57c4e4","sha1":"346c2383ebc6dc57fb1250044756675edcd3b256","sha256":"43165887b73b87c08bcaa507badf07c7ab6c9508f9334c946e8c520c0d8dc0d1","sha512":"15f112e4ebb4857156640c4aad54475bdd18b71f81b88b3de1003802b19f199e737d1e1c4d669e782be19f983be665d008492cc507119a3996523204b07ee3e6","ssdeep":"192:+ThoYNMtKwjViFci/uX/ll5bsVcT+TZSVDs9:tYNg7jYVuvll6uCTZuDA","tlshash":"6b12bf61fb46438add2a95782ca01b58f6fe66bac34339c774240f3521c9884fdce557","first_seen":"2026-05-29T20:50:08.690239Z","last_seen":"2026-06-01T20:39:41.050249Z","times_seen":5,"resource_available":false,"data":null}},"time_used":41,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":41,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/m/10283894dab59542/webimage-fifa_ts_aaaramco-valvoline_dbgr.png","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/fifa/logos.html","date":"2026-06-01T20:39:13.167Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /m/10283894dab59542/webimage-fifa_ts_aaaramco-valvoline_dbgr.png HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 2997\r\ndate: Mon, 01 Jun 2026 11:09:37 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=86400, stale-while-revalidate=600, stale-if-error=3600\r\ncontent-disposition: inline; filename=\"fifa_ts_aaaramco-valvoline_dbgr.png\"; filename*=UTF-8''fifa_ts_aaaramco-valvoline_dbgr.png\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:78c9b281-e607-414a-b144-7f3f1fc0efd7\r\nx-robots-tag: none\r\nx-api-correlation-id: 8a52b15e-075b-70dc-d120-da2f2c669ac8\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: puY_SgBSrt5GxrWjIwnmLTa8jPYqRKclIuXXdegmSAVIT-EFlip29A==\r\nage: 34176\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2997,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 239 x 141, 8-bit colormap, non-interlaced","md5":"f5a0a111be76dd55437828b984488748","sha1":"647d3d2240edfe68d279e59cfad4e8ad3c404818","sha256":"ac000915baf735a2ce61e9076a17f28ffb13c2f672db7fd053afcfa79d71b988","sha512":"7157557d4579336790eb998eaada5db1358bba40e4406f26d3b29bca4c59389b7654c4eee32552930758af99ae5684decae55f4b3abe1b1c359b4eaee05d6e98","ssdeep":"","tlshash":"a0513b03e0b99dfbe4b3c1b202502601b7babd8241430e182293bd4e957ee7b5623641","first_seen":"2026-05-29T20:50:08.721751Z","last_seen":"2026-06-04T18:55:38.940404Z","times_seen":37,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-01T20:39:11.052Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:11 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncache-control: no-cache,must-revalidate\r\nlocation: /en/tournaments/mens/worldcup/canadamexicousa2026\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":423412,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-06T23:09:45.281132Z","times_seen":16194959,"resource_available":true,"data":null}},"time_used":752,"timings":{"blocked":297,"dns":1,"connect":146,"send":0,"wait":157,"receive":0,"ssl":149},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/media/FIFASans-Regular.753e37a8db21a26c1959.woff2","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:13.774Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /media/FIFASans-Regular.753e37a8db21a26c1959.woff2 HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/fifa/main.c56d670b.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:13 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-06T23:09:59.003831Z","times_seen":523450,"resource_available":true,"data":null}},"time_used":201,"timings":{"blocked":3,"dns":0,"connect":0,"send":0,"wait":198,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/media/poppins-regular.80ad975e8fb5131f927c.woff2","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:14.428Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /media/poppins-regular.80ad975e8fb5131f927c.woff2 HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/fifa/main.c56d670b.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:14 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-06T23:09:59.003831Z","times_seen":523450,"resource_available":true,"data":null}},"time_used":166,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":166,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/media/FIFASans-Regular.753e37a8db21a26c1959.woff2","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.608Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /media/FIFASans-Regular.753e37a8db21a26c1959.woff2 HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/fifa/9795.1a29b9ec.chunk.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-06T23:09:59.003831Z","times_seen":523450,"resource_available":true,"data":null}},"time_used":168,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":168,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/transform/cd308b75-53bb-4f20-9752-f6f0116e0f95/Arjen-Robben-celebrates-scoring-for-the-Netherlands-against-Spain-at-the-Arena-Fonte-Nova-in-Salvador-in-Group-B-of-the-2014-FIFA-World-Cup-Brazil?focuspoint=0.46,0.37\u0026io=transform:fill,aspectratio:4x3,width:240\u0026quality=75","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.847Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /transform/cd308b75-53bb-4f20-9752-f6f0116e0f95/Arjen-Robben-celebrates-scoring-for-the-Netherlands-against-Spain-at-the-Arena-Fonte-Nova-in-Salvador-in-Group-B-of-the-2014-FIFA-World-Cup-Brazil?focuspoint=0.46,0.37\u0026io=transform:fill,aspectratio:4x3,width:240\u0026quality=75 HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 9744\r\ndate: Mon, 01 Jun 2026 20:35:36 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=15552000\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:cd308b75-53bb-4f20-9752-f6f0116e0f95\r\ncontent-disposition: inline; filename=\"Arjen-Robben-celebrates-scoring-for-the-Netherlands-against-Spain-at-the-Arena-Fonte-Nova-in-Salvador-in-Group-B-of-the-2014-FIFA-World-Cup-Brazil.avif\"; filename*=UTF-8''Arjen-Robben-celebrates-scoring-for-the-Netherlands-against-Spain-at-the-Arena-Fonte-Nova-in-Salvador-in-Group-B-of-the-2014-FIFA-World-Cup-Brazil.avif\r\nx-api-correlation-id: 382298bf-75b1-a925-8bd7-74d268a1f871\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: ExVE-nkTsMvWByXgxt3hojItr16UHwqT-oQaixytGoIRYUEgihGo0g==\r\nage: 216\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":9744,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"bc6ddec66e269d27215573fbf21a9e10","sha1":"44d14ed549e5d680b30252c6ee03a254127ba3db","sha256":"d7685b3efd59a1a956c2d250087a9b9ccbdbc7d333f0f3f9b02cd995408a5cd0","sha512":"4d6aec27d05debe57346ccfaacb1d44c13be58f1378038c57a40d070ced52e2f27f5f9bc218282c30689d20a5a9a99bedca96540b4849bd0f8639e80dbee565e","ssdeep":"192:+TKoYNMtKwj/bRZESnMAX04CWCERGgTbOCCvLJs:gYNg7jT5MAXwWChwbeLi","tlshash":"16129f656a3eff20f954bb7444f16b81b9a37538dbb53f063458f22009862c1df4a099","first_seen":"2026-05-29T20:50:08.71465Z","last_seen":"2026-06-01T20:39:41.053405Z","times_seen":5,"resource_available":false,"data":null}},"time_used":34,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":34,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/m/1eef9c7fe5e61474/webimage-fifa_sp_verizon_dbgr.png","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/fifa/logos.html","date":"2026-06-01T20:39:13.166Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /m/1eef9c7fe5e61474/webimage-fifa_sp_verizon_dbgr.png HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 3152\r\ndate: Mon, 01 Jun 2026 07:59:25 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=86400, stale-while-revalidate=600, stale-if-error=3600\r\ncontent-disposition: inline; filename=\"fifa_sp_verizon_dbgr.png\"; filename*=UTF-8''fifa_sp_verizon_dbgr.png\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:a6b1d46d-8967-47d2-b698-f3c8df87eb1c\r\nx-robots-tag: none\r\nx-api-correlation-id: 850d67b5-878a-a009-0b9c-7254390fb579\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: FINlvbLQiTvkFKc3nfUg-eJvwW8A7lVqJrDMGcIP2NCnDZqVbG5Nzg==\r\nage: 45588\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":3152,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 279 x 161, 8-bit colormap, non-interlaced","md5":"1ef0b0b1d7ff5ee09b4f7d57267b876c","sha1":"8af0d272a47d9f102eaa3eeb72956eb42c9ea3ac","sha256":"12013e520d9e01944c6747d1acdfbaaa91cbcc315712a4043b419d8f08eb0e42","sha512":"a7d7f6e703339e378ecd3472e2b774528a5a91afcf92a59b1ff44cc1f7e6e6326211278edded82dd72082674aaa6f42039f38e299a18317f76dce1e58fda00b3","ssdeep":"","tlshash":"6f513b8dc3f05e1beed5843b16a0b2925b620e2b4150505d306db60125f6cbf77ee527","first_seen":"2026-05-29T20:50:08.65266Z","last_seen":"2026-06-04T18:55:38.916148Z","times_seen":37,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/m/48b7f1f7e192d6ea/original/p26-grid-dal.avif","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/fifa/host.html?id=123","date":"2026-06-01T20:39:13.622Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /m/48b7f1f7e192d6ea/original/p26-grid-dal.avif HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/octet-stream\r\ncontent-length: 145977\r\ndate: Mon, 01 Jun 2026 03:21:28 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=86400, stale-while-revalidate=600, stale-if-error=3600\r\ncontent-disposition: inline; filename=\"dallas2.avif\"; filename*=UTF-8''dallas2.avif\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:58d996ff-93af-4efe-b613-eeb6d6d45dc7\r\nx-robots-tag: none\r\nx-api-correlation-id: b8ede609-e81a-fa52-d6e3-eb1e3dac458a\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: 74fJtMcFNzS_D2XuYQinAzKIXI74X_I4xRhpiv8DeNmzti2EGNP14Q==\r\nage: 62265\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":145977,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image Sequence","md5":"3fc30f16083d14d1b67c5987b6db6852","sha1":"a554674f1cfa55600b5fc2fd44087493896632db","sha256":"db4363e49edf49019c1a87a2afcf0bbfe1f193334ae56da623b037e20a841592","sha512":"bb0d732cdcad855a1e6376ff91f3c7ec154eff2b12a3c9f7e2fd8a5c47cd018a48b9017e7bdb34143c64b4681bf0ea268bfd566ccaf08336526b663bbc630e0e","ssdeep":"3072:jyo6LdwTygB0jp96RcST5buaVtUfOz0gkMD1o0txJaIvuvNAT:jyo7TRWspSnuBk0HJrvQ2T","tlshash":"9de31272be174bd1ed9581f24da21654cd81f68b22daa7067d8330da08cf05dbf8027b","first_seen":"2026-03-21T17:37:13.730952Z","last_seen":"2026-06-04T18:55:38.863324Z","times_seen":44,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/media/FIFASans-Regular.a1b09a8bab345645c480.ttf","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:13.780Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /media/FIFASans-Regular.a1b09a8bab345645c480.ttf HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/fifa/9795.1a29b9ec.chunk.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:13 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-06T23:09:59.003831Z","times_seen":523450,"resource_available":true,"data":null}},"time_used":194,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":194,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"translate.google.com/translate_a/element.js?cb=googleTranslateElementInit","fqdn":"translate.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.178.78","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.908Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:51:36 GMT","end":"Thu, 30 Jul 2026 15:51:35 GMT"},"fingerprint":{"sha1":"E5:96:47:77:13:A6:29:CD:FF:81:1B:F8:39:BC:A7:BB:8F:64:3A:E7","sha256":"0F:2D:F7:5D:E8:A1:BF:0D:8E:B8:3A:AC:9A:9D:1B:82:66:8F:C2:E9:77:F6:7C:BD:32:3F:86:9C:97:9C:2D:5C"}}},"request":{"raw":"GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1\r\nHost: translate.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/javascript; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":76706,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (2113)","md5":"634fbdd46dfc790a23a08047f5b71a61","sha1":"e9c217aaf0e0d046025d9448986fb16de1e3e6b6","sha256":"1f98a0ea4a649f2e7840e5f0bad3e4b663e1eb3c39ef6541e29ea0f040a2de42","sha512":"02195f7dd49d6424af355665b2acfe4b131675c34c90238fbbc99004ebb84cbc21263fcfd75bfcb3f5823fe368a9b4a8c796b386e0366f25777b56ef3d0a3fdf","ssdeep":"1536:Xe5Lywm+/O8J73SHJKIYULQ4Zu3KrGOU3/WeOXXHxi9wNWib:XqPSHIaZQKr23OzxiMb","tlshash":"2373b7ccb6a574658353f5a5412f000eb23f69aef8084cacb298d8e1adf5949413bf7d","first_seen":"2026-06-01T20:11:33.083086Z","last_seen":"2026-06-01T20:49:47.049733Z","times_seen":37,"resource_available":true,"data":null}},"time_used":73,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":56,"receive":17,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/m/4f361a12607a0d16/webimage-fifa_sp_lays_dbgr.png","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/fifa/logos.html","date":"2026-06-01T20:39:13.162Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /m/4f361a12607a0d16/webimage-fifa_sp_lays_dbgr.png HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 6765\r\ndate: Mon, 01 Jun 2026 01:53:24 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=86400, stale-while-revalidate=600, stale-if-error=3600\r\ncontent-disposition: inline; filename=\"fifa_sp_lays_dbgr.png\"; filename*=UTF-8''fifa_sp_lays_dbgr.png\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:edd3ca2a-7772-45ba-a68c-29ec1624b4fa\r\nx-robots-tag: none\r\nx-api-correlation-id: 04262410-c18d-cafe-3599-99f21fa4c76b\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: 3QMGxcJ0zioqpiYzUYl-SMfxoItVKcsl4cATVLf35n7SkhbsEkeoWg==\r\nage: 67549\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":6765,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 279 x 161, 8-bit colormap, non-interlaced","md5":"4467c1971dc421c94781bb9e07f3dfa7","sha1":"e809667950d5f3149cbbf590ad870543728d79b2","sha256":"c8bf78c90afa9cf912cf0a24e818858a7491f61f73d012a453b9c67c2f836b7f","sha512":"587f3c4626ccb8bbb8000faf548d2e0cb3698bc1e48551dcb1960b66814eeb780f3d5902ebeebadeede9d7a589f6d6762c0d8dd19b2e785a9c420137715aa001","ssdeep":"96:/IzR2aquJdTbWnCz2xFL4HeQcfIcRohJDFs4Gcqe5afcYeckTz5MbfTqzB2Ce:2RrquJhCiQ4HHztsiTcVkTSMa","tlshash":"c4d1cfcfde504d2d50bc28a4a0ccb1852d9a2ea32093d59d22e726c3d1d377043aeecb","first_seen":"2026-05-29T20:50:08.590705Z","last_seen":"2026-06-04T18:55:39.017446Z","times_seen":37,"resource_available":false,"data":null}},"time_used":19,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/m/6c22c901d1a6e10e/webimage-fifa_sp_mcdonalds_dbgr.png","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/fifa/logos.html","date":"2026-06-01T20:39:13.163Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /m/6c22c901d1a6e10e/webimage-fifa_sp_mcdonalds_dbgr.png HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 3664\r\ndate: Mon, 01 Jun 2026 11:09:37 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=86400, stale-while-revalidate=600, stale-if-error=3600\r\ncontent-disposition: inline; filename=\"fifa_sp_mcdonalds_dbgr.png\"; filename*=UTF-8''fifa_sp_mcdonalds_dbgr.png\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:246d6a29-e33e-4e0d-aeca-1fdf269287fa\r\nx-robots-tag: none\r\nx-api-correlation-id: b0568b4a-6f61-4141-6807-e3ac8be4e47d\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: Q_ppDJHLNFuXZzp4ntJtc4ksgNnkDnhnfDzQb7h4vNhMuNqBDBV3pw==\r\nage: 34176\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":3664,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 279 x 161, 8-bit colormap, non-interlaced","md5":"9bc175878bc425c56dd4fe209ad8fcd4","sha1":"e68a76e224f20d4122d155f9218386e17c76aa82","sha256":"329153f68951094e577179206d0fae8ccf227a9ac92a41bd9befd9515eedf1b8","sha512":"08b63bde0d1ee497285d6d194eb6dcede14c5ae319b67686735dc8a425410f209d0d459d22241deb181a8234aaa6fe8013b5442bca82001b01c7ec839a82018e","ssdeep":"","tlshash":"fa715ea495fad43ccb457473c3f584be5fa41c41715894265c23bf50a2fb4ad4426f47","first_seen":"2026-05-29T20:50:08.638599Z","last_seen":"2026-06-04T18:55:39.006546Z","times_seen":37,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/media/noto-sans-regular.bfa96228235216443a93.woff2","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:13.442Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /media/noto-sans-regular.bfa96228235216443a93.woff2 HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/fifa/main.c56d670b.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:13 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-06T23:09:59.003831Z","times_seen":523450,"resource_available":true,"data":null}},"time_used":236,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":236,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.At_bO3I1zGE.O/am=BBAAJw/d=1/exm=el_conf/ed=1/rs=AN8SPfrqhSXc48uTB4GOOkwyFIyhVfs_ag/m=el_main","fqdn":"translate.googleapis.com","domain":"translate.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:13.726Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:53:15 GMT","end":"Thu, 30 Jul 2026 15:53:14 GMT"},"fingerprint":{"sha1":"19:42:B0:56:3A:E4:79:BF:8B:69:E2:50:F4:76:BF:1E:A9:D7:7A:49","sha256":"D7:FF:C1:46:95:F3:5F:08:04:B0:E1:A8:FE:14:FC:60:19:58:D6:C7:D3:6E:82:B3:64:07:E9:E1:CB:9A:27:8C"}}},"request":{"raw":"GET /_/translate_http/_/js/k=translate_http.tr.no.At_bO3I1zGE.O/am=BBAAJw/d=1/exm=el_conf/ed=1/rs=AN8SPfrqhSXc48uTB4GOOkwyFIyhVfs_ag/m=el_main HTTP/1.1\r\nHost: translate.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"rosetta\"\r\nreport-to: {\"group\":\"rosetta\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/rosetta\"}]}\r\ncontent-length: 123991\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Mon, 01 Jun 2026 18:31:20 GMT\r\nexpires: Tue, 01 Jun 2027 18:31:20 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Sat, 30 May 2026 01:08:58 GMT\r\ncontent-type: text/javascript; charset=UTF-8\r\nvary: Accept-Encoding\r\nage: 7673\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":430175,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (2481)","md5":"5028b9b37c26d71af54a3477060d78c2","sha1":"6ae7c662f2cffa93b43d28fa2ea8f887e8fc8fe5","sha256":"d3e56fa28fc557be2bac8354c3c6784c7fc051e1bb18fa34307e80e88675a092","sha512":"dddca915aa3bf871302a91fcbecb6d5245b6dca94c5d4f5693144fc3e76d45fc6a4ff670264ac3baa1ec544fb55b0f0e0f3651b8e30a44d9b6cfd74235519a44","ssdeep":"3072:B7qR9H2ia2b0Ogx3cH8JCHrE+72WveDiFoCsVL4JiMD8uiaolCATOLdzsmXnj9BG:OYjVzeJClhKdzsKJBG","tlshash":"1c94d9cab3a378529262f8a1a47f0147b93dac57b44c4c6cb189d8db2eb08154573f7b","first_seen":"2026-06-01T18:39:28.559421Z","last_seen":"2026-06-04T20:11:34.902366Z","times_seen":615,"resource_available":true,"data":null}},"time_used":223,"timings":{"blocked":67,"dns":20,"connect":15,"send":0,"wait":54,"receive":14,"ssl":48},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/media/poppins-500.323014b9ce03a905066b.woff2","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:13.769Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /media/poppins-500.323014b9ce03a905066b.woff2 HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/fifa/main.c56d670b.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:13 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-06T23:09:59.003831Z","times_seen":523450,"resource_available":true,"data":null}},"time_used":233,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":233,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png","fqdn":"www.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.67","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:14.029Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:53:13 GMT","end":"Thu, 30 Jul 2026 15:53:12 GMT"},"fingerprint":{"sha1":"6C:B9:FE:19:9C:7C:AA:5D:D2:39:3A:16:2C:50:FB:C8:59:C8:CC:A8","sha256":"FC:4C:0C:6E:AB:D1:82:30:1F:A9:46:DF:FA:38:02:9F:06:56:FF:98:E0:8D:AB:9A:26:C3:2A:97:C5:CF:A6:1C"}}},"request":{"raw":"GET /images/branding/googlelogo/1x/googlelogo_color_42x16dp.png HTTP/1.1\r\nHost: www.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"static-on-bigtable\"\r\nreport-to: {\"group\":\"static-on-bigtable\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/static-on-bigtable\"}]}\r\ncontent-length: 910\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sun, 31 May 2026 10:07:38 GMT\r\nexpires: Mon, 31 May 2027 10:07:38 GMT\r\ncache-control: public, max-age=31536000\r\nage: 124296\r\nlast-modified: Thu, 02 Nov 2023 22:48:00 GMT\r\ncontent-type: image/png\r\nvary: Origin\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":910,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 42 x 16, 8-bit/color RGBA, non-interlaced","md5":"efa6bb2bfe459bc6f4bdafa3db0383f6","sha1":"52d15ce52fe50643e542c17812de43f4ed1b6ee0","sha256":"6318394f737c66f0e2ccfcd88e3935c6667633a1b95fa29fba2b75431d55eef2","sha512":"e23c04d8997f5c2f92070e09261b7ee50d9df8753f45cf66f604f0874ffa8d99e947c97c528ec02a2c3fbe8e43d840b343a7d0225532980d5da95031216415b7","ssdeep":"","tlshash":"491184a73cd1dc6854a47a87aa91b864ec250f1b91a220981237b42277313444fdc8f7","first_seen":"2023-04-05T07:39:29Z","last_seen":"2026-06-06T23:14:46.256578Z","times_seen":48851,"resource_available":false,"data":null}},"time_used":30,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":30,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/2043.73d9dc21.chunk.css","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:11.992Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /fifa/2043.73d9dc21.chunk.css HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"696ed7f6-16da\"\r\nexpires: Tue, 02 Jun 2026 08:39:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5850,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (5850), with no line terminators","md5":"1cd6603bb1020b3c3fd3474ae58e215d","sha1":"8501c24a52c87c32fdb408883e800801f724def4","sha256":"3ffadb6817efa2945d9467a1c1cd92e412c47e5e9bb791a197e95c10c14149d7","sha512":"744d313f57484c358ae346149ac539a3cce48dedeec106b25d7dffc784a0c003a90defa84842b61bb56ab02dad660e39594fa8455c4df1c1b6b2f2f5b60b9c43","ssdeep":"96:ndUVu05PKT5qgjVhD2p1hwC8IPhugUPAdmsGY9+:SdWP2p1hwC8IPhugY++","tlshash":"e6c1546d15a592fea8b3d91a04aa2f6408375adfeb026b6df253bd6841c3fc03513c58","first_seen":"2025-06-13T20:56:07.402569Z","last_seen":"2026-06-04T18:55:38.996508Z","times_seen":48,"resource_available":false,"data":null}},"time_used":453,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":453,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/8199.ba27fe9e.chunk.css","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:11.993Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /fifa/8199.ba27fe9e.chunk.css HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"696ed7f6-2324\"\r\nexpires: Tue, 02 Jun 2026 08:39:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":8996,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (8996), with no line terminators","md5":"d384dec09d2a3559a082e29548fe8b04","sha1":"53138566300c1f7340f60d6c60d88e048917e9b6","sha256":"13ded8bfb2f47d7f52287f817c0a94834b5494a3e76e5e382089cc1b90e75c35","sha512":"acd2b00e2ef10c7b337f62df62181e0d561d6531c3397e6de74bd872b5d8ed3e7f8167c6a19c6de2dfce2387e1b4e47c1109d504462d2ee2db2e813ae37256d2","ssdeep":"96:TEhXnGpo2qgjVhD2p1tEET54DKart5Fn4mxVuDZ+jEwG34x1byW:TEhXWP2p1J54GYnZgZ+ITox1byW","tlshash":"6502e28d7661523fbc435b1901e027e8b51c7d68c723152b48f3aa6dcbcbe86112ee5c","first_seen":"2026-03-21T17:37:13.5751Z","last_seen":"2026-06-04T18:55:38.95706Z","times_seen":45,"resource_available":false,"data":null}},"time_used":452,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":452,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/transform/efbff237-43dc-40d5-b53a-dc43a21956c7/FWC26_PA2_Article_Hero_Slider?\u0026io=transform:fill,aspectratio:1x1,width:1536\u0026quality=75","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.843Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /transform/efbff237-43dc-40d5-b53a-dc43a21956c7/FWC26_PA2_Article_Hero_Slider?\u0026io=transform:fill,aspectratio:1x1,width:1536\u0026quality=75 HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 19300\r\ndate: Mon, 01 Jun 2026 20:32:21 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=15552000\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:efbff237-43dc-40d5-b53a-dc43a21956c7\r\ncontent-disposition: inline; filename=\"FWC26_PA2_Article_Hero_Slider.avif\"; filename*=UTF-8''FWC26_PA2_Article_Hero_Slider.avif\r\nx-api-correlation-id: b09300cf-1f32-245f-de5d-de0195befaa5\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: U_j8L8tlz33NOiDrFVfXfoxU9amJvLga7mXrldSHQS64fG6FunhtDg==\r\nage: 411\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":19300,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"68d985fc5ee98eb90cdd8e421877216f","sha1":"82c49907e2f115df3faf9513fd2941a9f6c6043f","sha256":"c0b2d101793b722d4b1c04d2d4eb6fd9ac5c93dfb084f09080ceebe78960651a","sha512":"755e8459b34d8936c76330058a09a16e1579e4aee57c29c3305e5857d475f5418a066bd9ead61af0e0ba03b55d9feab735cd9ec409d3d608e945f8ae1cf8060f","ssdeep":"384:bYNg7jAbRmosewDbvMVdxFdQU44C8SlM+EoPQukJdnQ6Ov:bYywbRUbkrDbJ5tPiQukJjC","tlshash":"4382c0f8976aeb67e17a96b0ec95fb2263207e37d31034546034c71c190c8d19e9e18d","first_seen":"2026-03-21T17:37:13.627486Z","last_seen":"2026-06-04T17:47:29.170377Z","times_seen":14,"resource_available":false,"data":null}},"time_used":43,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":42,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/media/noto-sans-regular.19dce59526bdb47b8e52.ttf","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:14.207Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /media/noto-sans-regular.19dce59526bdb47b8e52.ttf HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/fifa/main.c56d670b.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:14 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-06T23:09:59.003831Z","times_seen":523450,"resource_available":true,"data":null}},"time_used":191,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":191,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"translate.googleapis.com/element/log?format=json\u0026hasfast=true\u0026authuser=0","fqdn":"translate.googleapis.com","domain":"translate.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:24.225Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:53:15 GMT","end":"Thu, 30 Jul 2026 15:53:14 GMT"},"fingerprint":{"sha1":"19:42:B0:56:3A:E4:79:BF:8B:69:E2:50:F4:76:BF:1E:A9:D7:7A:49","sha256":"D7:FF:C1:46:95:F3:5F:08:04:B0:E1:A8:FE:14:FC:60:19:58:D6:C7:D3:6E:82:B3:64:07:E9:E1:CB:9A:27:8C"}}},"request":{"raw":"POST /element/log?format=json\u0026hasfast=true\u0026authuser=0 HTTP/1.1\r\nHost: translate.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://fifa.gold/\r\nX-Goog-AuthUser: 0\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 848\r\nOrigin: https://fifa.gold\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":848,"data":"[[1,null,null,null,null,null,null,null,null,null,[null,null,null,null,\"en\",null,\"TE_20260531\",null,null,[4,0]]],1871,[[1780346354163,null,null,null,null,null,null,\"[null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,\\\"no\\\",null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,[1,\\\"te\\\",\\\"7857D0CB-90E7-4A47-AEDF-A2C04F4D60A4\\\"]]\",null,null,1,null,null,null,0,null,null,null,null,null,1]],1780346364166]"}},"response":{"raw":"HTTP/3 200 OK\r\naccess-control-allow-origin: https://fifa.gold\r\ncross-origin-resource-policy: cross-origin\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: X-Playlog-Web\r\ncontent-type: text/plain; charset=UTF-8\r\ncontent-encoding: gzip\r\ndate: Mon, 01 Jun 2026 20:39:24 GMT\r\nserver: Playlog\r\ncontent-length: 131\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":131,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"JSON text data","md5":"ca0b7e866005f6774d284b9f438ebfd2","sha1":"53644f5ee3640189bdb223473ba6a2d46606c556","sha256":"502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358","sha512":"939c4526c623db033ad40bfdc6c8848a1dcd0ca797f17fbbd89fbec1b49dededc16e89084b3759e62fa0ffc8fe896980b10a1ff8daee22736a70b08f1ee13e2f","ssdeep":"","tlshash":"58c08c50330469e1080e82c8c0026858228c903b46708cf10bbd68125d3234a1004854","first_seen":"2023-04-05T03:14:56Z","last_seen":"2026-06-06T23:09:22.909214Z","times_seen":555215,"resource_available":false,"data":null}},"time_used":61,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":61,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-01T20:39:11.510Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /en/tournaments/mens/worldcup/canadamexicousa2026 HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:11 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"React","description":"React is an open-source JavaScript library for building user interfaces or UI components.","website":"https://reactjs.org","common_platform_enumeration":"cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*","icon":"React.svg","categories":["JavaScript frameworks"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}],"data":{"size":423412,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (26971)","md5":"172c2dcef2115d1aab307c6e512bb8c6","sha1":"ea508af638eccbad97785c46843d354a146f5207","sha256":"07a9762af1d9921f0d459c7befcd9fac902f5f48ce43df5561131f1bd45bf0c3","sha512":"af423865e6dfc4f239dd201b52329a0bf82aac6ccc08b361eba1eea5ca9600c8244c8bb98d0bc422409329ced88bdd6731f934a142db6cd9e6412db27bc48a0d","ssdeep":"3072:ZEryf+X9xsjTDoWIPxU/RmzYSsnhN40g4kDg8n9AgdTcrKZ/lYSf2q7pDwGqTwp1:ZEryBjTDoWIP8Ru48cZFxGc3bMD7iLWl","tlshash":"9d94c930e292783740bbe5d2772adaefe0c19717c7170c74babd85858bb7f81a805916","first_seen":"2026-05-29T20:50:08.623302Z","last_seen":"2026-06-01T20:39:41.062604Z","times_seen":5,"resource_available":true,"data":null}},"time_used":287,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":287,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/main.c56d670b.css","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:11.975Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /fifa/main.c56d670b.css HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"696ed7f6-1262c5\"\r\nexpires: Tue, 02 Jun 2026 08:39:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1204933,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (65448), with no line terminators","md5":"75260d2f9022980bd75c5746d88c3f03","sha1":"9b822e8eb9ab681d17c2343d506cdd2d7b99e5a6","sha256":"9e65379ae74470fc6a96610a6bbd4454969868f8e8864bcb5ecec916686a20b0","sha512":"e82ee92d058d9306cb8d23745f6a22767c46888c3982f6e5c034fe0acb4936858a2e5e67b1c89e1c8c5901072baa11d9dd69fb9ff9963f368abc79c4294fab38","ssdeep":"6144:ARuDWAfXYb1yEp/IBcoUqmuHzM8s6U2twpje60I4DFBMP22i6SgGPJmG1RFJFjAx:g/WjAEzQLN2K8EV5z1b","tlshash":"cc25a487fec02d3dc66a4262d1d97afcda3f964bd6058deee1076ba946ca2c701d140c","first_seen":"2026-03-21T17:37:13.611876Z","last_seen":"2026-06-04T18:55:38.981517Z","times_seen":43,"resource_available":false,"data":null}},"time_used":199,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":199,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/transform/4e4717fc-7f87-4ea4-b989-7f5730ec94ae/General-Graphic-3840-x-2160-8?\u0026io=transform:fill,aspectratio:1x1,width:1536\u0026quality=75","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.841Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /transform/4e4717fc-7f87-4ea4-b989-7f5730ec94ae/General-Graphic-3840-x-2160-8?\u0026io=transform:fill,aspectratio:1x1,width:1536\u0026quality=75 HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 27844\r\ndate: Mon, 01 Jun 2026 20:39:13 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=15552000\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:4e4717fc-7f87-4ea4-b989-7f5730ec94ae\r\ncontent-disposition: inline; filename=\"General-Graphic-3840-x-2160-8.avif\"; filename*=UTF-8''General-Graphic-3840-x-2160-8.avif\r\nx-api-correlation-id: 6d0dee5f-ec84-101b-ce6f-60f53b1691c2\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: E87NNsIjp2xv8NvKFezJSyET8j-ZB4AgEokIYciBa3mOHmmXieMlpw==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":27844,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"dc0e7f0cea0ce254cc4ad2e667d4a7dc","sha1":"7afc7e29d89f91669618cada32458f78328805b7","sha256":"5b6b3002909514e53dccaeae028dec7fd90f876c2f1fe73713ee0b7a833da6b4","sha512":"201af89032cf28459f2d314eade0fb61d0d2b7c8b2b4c3aa7b0fb44db344ccd220168dc3ddd8c842917c2c0ffb0fa2ed2781c35513aadf78883fd0ab7712da9e","ssdeep":"384:lYNg7jXU1lRoSjUpV/w1/KcFEmAU77Hpv577T+Zvs0XZyqortkZM1dLXGKz6H0P:lYyUlSSUfYYc+sX77TqPohqM1Pz","tlshash":"40c2e075df386f4eea46bb7d42a2fb50605766aecb321819b814e3007ae10d47fd8319","first_seen":"2025-11-29T04:32:24.278331Z","last_seen":"2026-06-04T17:47:29.15021Z","times_seen":15,"resource_available":false,"data":null}},"time_used":526,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":525,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/m/61d5210539dcf25e/webimage-fifa_fp_hyundai-kia_dbgr.png","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/fifa/logos.html","date":"2026-06-01T20:39:13.155Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /m/61d5210539dcf25e/webimage-fifa_fp_hyundai-kia_dbgr.png HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 4230\r\ndate: Mon, 01 Jun 2026 05:30:59 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=86400, stale-while-revalidate=600, stale-if-error=3600\r\ncontent-disposition: inline; filename=\"fifa_fp_hyundai-kia_dbgr.png\"; filename*=UTF-8''fifa_fp_hyundai-kia_dbgr.png\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:9d169473-5372-45d9-afc1-2176a9183dc9\r\nx-robots-tag: none\r\nx-api-correlation-id: e6240328-020f-7e55-1e3f-0fd772308637\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: dcIlmBdQ8ip_QwtuO4xACnIMPuZs-IithO6IRVWXBxVZoP6o1ppq5w==\r\nage: 54494\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":4230,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 358 x 200, 8-bit colormap, non-interlaced","md5":"071f81edb253b09eb55b5faa46ca10d4","sha1":"9951f61f155c3a4e30396af4edd4085352003c16","sha256":"dbf34f0b3f69d2fda9beaadc1498562d2b2c7395df3f56a8f4f2f640fc37462e","sha512":"350e201c23e24ada43f24deab2a1035410e50ac3b8540342891fb65d8dd9814a94e0440d978fa7156300115c0fd6fc051423e3a8721f2aeb8f75a20411dc9d37","ssdeep":"96:sHzNNEoCqwzCVcbwxHZMczzNSYnuZrCCnrn3c:sHzSqwWib2HbzTuZGWzs","tlshash":"9c919eb0b2d08dc3ef6b49bdde33a36b59b0c8bf29420603759ef24702712569c20818","first_seen":"2026-05-29T20:50:08.677337Z","last_seen":"2026-06-04T18:55:38.901615Z","times_seen":37,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/m/32b98794efb0aed2/webimage-fifa_sp_bank-america_dbgr.png","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/fifa/logos.html","date":"2026-06-01T20:39:13.160Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /m/32b98794efb0aed2/webimage-fifa_sp_bank-america_dbgr.png HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 4550\r\ndate: Mon, 01 Jun 2026 08:05:20 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=86400, stale-while-revalidate=600, stale-if-error=3600\r\ncontent-disposition: inline; filename=\"fifa_sp_bank-america_dbgr.png\"; filename*=UTF-8''fifa_sp_bank-america_dbgr.png\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:4720b1bd-a660-4b60-8381-208b236d6f8b\r\nx-robots-tag: none\r\nx-api-correlation-id: ad6add9a-67d8-729e-5dd1-ac5db501665c\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: KZoj_4yL_Hax5ifu5hzNAqddBTSNgp9nYKhUfT0dESq_CnN2fdxirQ==\r\nage: 45233\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":4550,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 279 x 161, 8-bit colormap, non-interlaced","md5":"757b208cd7543deb09c8295981b79383","sha1":"be528923a0733da42c578bb0a45a1121718a000c","sha256":"604336ef91f87339da07933fa3c2141dd45b50a7100c8bfc45805124e7acc6fb","sha512":"95b1df57853911a5766f6f4ef8a77f7729aabfc331a196f23e1b10b6a7f18f37f8616a9dfe4cadb2d8faa42086496bcf9c1aaa1ad5f19a1ac833195ef7701532","ssdeep":"96:DLZqPgscYvXHMwuDg9JxKiboKTpDwQVQ4IjCHOpnc/mLNL3MqiSpB:PkPg6XHpuiJ6KqEHmK8eY","tlshash":"a3917ee1c1505a80c7134a715e69c1b1437ee2fee5cde92df485d87ed6b903353d6281","first_seen":"2026-05-29T20:50:08.617464Z","last_seen":"2026-06-04T18:55:38.897326Z","times_seen":37,"resource_available":false,"data":null}},"time_used":21,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":19,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/media/poppins-500.323014b9ce03a905066b.woff2","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:13.420Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /media/poppins-500.323014b9ce03a905066b.woff2 HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/fifa/9795.1a29b9ec.chunk.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:13 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-06T23:09:59.003831Z","times_seen":523450,"resource_available":true,"data":null}},"time_used":218,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":218,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.gstatic.com/images/branding/product/2x/translate_24dp.png","fqdn":"www.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.67","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:14.403Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:53:13 GMT","end":"Thu, 30 Jul 2026 15:53:12 GMT"},"fingerprint":{"sha1":"6C:B9:FE:19:9C:7C:AA:5D:D2:39:3A:16:2C:50:FB:C8:59:C8:CC:A8","sha256":"FC:4C:0C:6E:AB:D1:82:30:1F:A9:46:DF:FA:38:02:9F:06:56:FF:98:E0:8D:AB:9A:26:C3:2A:97:C5:CF:A6:1C"}}},"request":{"raw":"GET /images/branding/product/2x/translate_24dp.png HTTP/1.1\r\nHost: www.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.B7Dih9Jyjnw.L.F4.O/am=BBAAJw/d=0/rs=AN8SPfow65MVwWyUrqhRcgF8bzAeNnSj_A/m=el_main_css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"static-on-bigtable\"\r\nreport-to: {\"group\":\"static-on-bigtable\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/static-on-bigtable\"}]}\r\ncontent-length: 1842\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sun, 31 May 2026 10:06:39 GMT\r\nexpires: Mon, 31 May 2027 10:06:39 GMT\r\ncache-control: public, max-age=31536000\r\nage: 124355\r\nlast-modified: Thu, 14 Oct 2021 09:08:00 GMT\r\ncontent-type: image/png\r\nvary: Origin\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1842,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced","md5":"c69c796362406f9e11c7f4bf5bb628da","sha1":"e489ce95ab56208090868882113d7416abf46775","sha256":"4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82","sha512":"d3ad560ed0fd29be7d2cc434694f09e5a6fbea8b29c0611aecb54a1b73b4d722c53f42a19dae9e3d5d358444e50fb8fffbc39d67ce751bdbc8c861f6f95d3162","ssdeep":"","tlshash":"4e31f9fd129220437101ade72165eef798347c15f412da60ce65ba389c9fe20ed9a619","first_seen":"2023-04-05T07:39:29Z","last_seen":"2026-06-06T23:45:10.300996Z","times_seen":64881,"resource_available":false,"data":null}},"time_used":29,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/m/5a0b12afe6f4cb80/webimage-fifa_sp_unilever-dove_dbgr.png","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/fifa/logos.html","date":"2026-06-01T20:39:13.165Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /m/5a0b12afe6f4cb80/webimage-fifa_sp_unilever-dove_dbgr.png HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 4824\r\ndate: Mon, 01 Jun 2026 08:05:19 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=86400, stale-while-revalidate=600, stale-if-error=3600\r\ncontent-disposition: inline; filename=\"fifa_sp_unilever-dove_dbgr.png\"; filename*=UTF-8''fifa_sp_unilever-dove_dbgr.png\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:3f5f90b4-5d42-4990-ae68-099f8477934a\r\nx-robots-tag: none\r\nx-api-correlation-id: c27740b6-161a-c7c9-0d83-30e501c784d6\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: p30ea-EVjsQW2Te8t9siph_TY9l1MxDjnOt51cJ-xRyzx9vNccQjCA==\r\nage: 45234\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":4824,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 279 x 161, 8-bit colormap, non-interlaced","md5":"e8a7f7fa18cf130157bd58de6975d1b9","sha1":"cb5ffee72e3e05eb0b9ee36c735e2d85d2028574","sha256":"128f7f65e41c103b570c12a3723f4d72b61e5e1bb6df38965106cb6d4d7414bc","sha512":"ec2a44916642070c85f1cffc86ea2cafbbe54d35c1719929503c797bb3391406d1108331bdb702ef8553596ceb6111a63d24a80240cf76c29e4f32269d058737","ssdeep":"96:rAs+62w8z/m5jfZos5bqUn2KoYiMYK/3pFkBhdLlBBo0EV8g8:3+6265jR1bqwW3MfX6pl9u8","tlshash":"25a17e7f77d5dd29c8f33495c88918d1efb9123a123f1943baad3c44926e29b0ca8457","first_seen":"2026-05-29T20:50:08.650434Z","last_seen":"2026-06-04T18:55:38.930246Z","times_seen":37,"resource_available":false,"data":null}},"time_used":19,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/transform/c2fc788a-9a8c-4f52-bdde-c9736cc94d6a/FIFA_FWC26_Ticketing-Thumbnail-4-3?\u0026io=transform:fill,aspectratio:4x3,width:1024\u0026quality=75","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.010Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /transform/c2fc788a-9a8c-4f52-bdde-c9736cc94d6a/FIFA_FWC26_Ticketing-Thumbnail-4-3?\u0026io=transform:fill,aspectratio:4x3,width:1024\u0026quality=75 HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 13263\r\ndate: Mon, 01 Jun 2026 20:24:44 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=15552000\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:c2fc788a-9a8c-4f52-bdde-c9736cc94d6a\r\ncontent-disposition: inline; filename=\"FIFA_FWC26_Ticketing-Thumbnail-4-3.avif\"; filename*=UTF-8''FIFA_FWC26_Ticketing-Thumbnail-4-3.avif\r\nx-api-correlation-id: 4ad1cc9d-82f1-e57b-1d6e-b1c2e9c8b65f\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: dU7iIftYPzSiCiwgGUmaUw6_-0aNidQUO0VA1_QdZ5uRDPUpp8Wdsw==\r\nage: 868\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":13263,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"d0bff28dbd7036ac1aff4b84e50f4a29","sha1":"1baa962464e7647f994666ff4954b8a32f8a4383","sha256":"dd373db56010d3d95ee25a48bc9a3008253bea5adac7eb41a1eee92329644cb3","sha512":"3e3d7d945faa7d3cbee81afed412eabef403b4e7cc6aa41d09e6111035cea421a9a68f95ea561f03372fddf978f121f0f5f7a24a7506d9abd47ee41fe629b85b","ssdeep":"384:TYNg7jcQPevqviK7vNUIClbynTPoyHNVGe:TYyVBBFU1ebo+Pf","tlshash":"f852cf77f697d283e972c27c90b2ab42b1b17a2ecf52b64a340eed698154485efcc054","first_seen":"2026-03-21T17:37:13.570135Z","last_seen":"2026-06-04T18:55:38.953243Z","times_seen":43,"resource_available":false,"data":null}},"time_used":96,"timings":{"blocked":11,"dns":13,"connect":8,"send":0,"wait":37,"receive":0,"ssl":20},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/transform/959df1a7-59f0-483e-b02c-3f8b58e06125/GettyImages-2246884181?focuspoint=0.49,0.38\u0026io=transform:fill,aspectratio:4x3,width:240\u0026quality=75","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.852Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /transform/959df1a7-59f0-483e-b02c-3f8b58e06125/GettyImages-2246884181?focuspoint=0.49,0.38\u0026io=transform:fill,aspectratio:4x3,width:240\u0026quality=75 HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 6456\r\ndate: Mon, 01 Jun 2026 20:35:37 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=15552000\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:959df1a7-59f0-483e-b02c-3f8b58e06125\r\ncontent-disposition: inline; filename=\"GettyImages-2246884181.avif\"; filename*=UTF-8''GettyImages-2246884181.avif\r\nx-api-correlation-id: 3e6ed48b-8744-da3e-cbd3-4a2fa8753a97\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: OJ7QaW2bTjsl7X9GahE06KQEsoYt567UmnIxBwD6gOVESO1jyhTYkA==\r\nage: 215\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6456,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"c45a43f3fe618158496c4910f2b7b709","sha1":"99228b63fa29e1262afb6d0c820bef908d9930ba","sha256":"66ba70b9d4f0039b8b56094ce356e1c2f42d3a18cb91f3e530feee776b1fd7f4","sha512":"1ceae6f2cf0f87077347b635c8f92df1249306b819fa0437fb45c027e8b91a928b85aeb9f105fde346f878c97e23d7522a2fdd1561bd74f3341a8dec0083e8bd","ssdeep":"96:+TGe35N26MT0D5MdtbZPAVwzVLlfj19Rz0Or4BRCnH2ZXWXBAu:+TB3oYNMtKwjb19tSOyWF","tlshash":"e3d16d32b779a691d976cb7898e05bf071f3733c93b696c57454ab0804845d0ef0d48a","first_seen":"2026-05-29T20:50:08.630255Z","last_seen":"2026-06-01T20:39:41.069435Z","times_seen":5,"resource_available":false,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Open+Sans:wght@600\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.42","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fifa.gold/fifa/logos.html","date":"2026-06-01T20:39:13.135Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:53:15 GMT","end":"Thu, 30 Jul 2026 15:53:14 GMT"},"fingerprint":{"sha1":"19:42:B0:56:3A:E4:79:BF:8B:69:E2:50:F4:76:BF:1E:A9:D7:7A:49","sha256":"D7:FF:C1:46:95:F3:5F:08:04:B0:E1:A8:FE:14:FC:60:19:58:D6:C7:D3:6E:82:B3:64:07:E9:E1:CB:9A:27:8C"}}},"request":{"raw":"GET /css2?family=Open+Sans:wght@600\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Mon, 01 Jun 2026 20:39:13 GMT\r\ndate: Mon, 01 Jun 2026 20:39:13 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6193,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"70db43195b9f51d6cfd4ebf2dce5e187","sha1":"1ea9f455d0f0f510edf26465211101ba951284be","sha256":"28f41775ffb9bdd366f82e38f7ccf33e06d4ebe506babd35a1ddd2fc0b52d432","sha512":"5d6f3b64b2e7f473b13dff1f87e732c127577490523def4e490cfd48ae9885f783deaad7d48936e3a6c2c4943c3607b161ee1e330d61db760e3591a3b54f6c2f","ssdeep":"96:ZOxMba5JOxMbaqvFZ8OxMbakOxMbaRYOxMbaVOxMbaJy+aZjzBrWOxMbavubqGIM:c5Mqh5RNoJqDmbqGIwV4p/JGV","tlshash":"9ad11b9000175450ab071ce227cfbe34ee1fa2616040c07a6bfd8b8aeedbda5a37531d","first_seen":"2025-09-21T15:13:42.630115Z","last_seen":"2026-06-06T08:46:45.671573Z","times_seen":892,"resource_available":false,"data":null}},"time_used":346,"timings":{"blocked":135,"dns":0,"connect":28,"send":0,"wait":46,"receive":0,"ssl":135},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/m/695dab04642059e2/original/p26-grid-la.avif","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/fifa/host.html?id=123","date":"2026-06-01T20:39:13.643Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /m/695dab04642059e2/original/p26-grid-la.avif HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/octet-stream\r\ncontent-length: 125090\r\ndate: Mon, 01 Jun 2026 03:51:51 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=86400, stale-while-revalidate=600, stale-if-error=3600\r\ncontent-disposition: inline; filename=\"p26-grid-la.avif\"; filename*=UTF-8''p26-grid-la.avif\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:d3939c73-1d36-4264-8bd0-6387344ad3f7\r\nx-robots-tag: none\r\nx-api-correlation-id: bfcdc37b-e9e4-9c45-1f8e-699ff1a33b12\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: 0LWSjof55k4xpdTnqzablS-wjIo-KIG7mXhuGI-yE_ui5hweg5y8TA==\r\nage: 60442\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":125090,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image Sequence","md5":"bc55501956c5754bfed5e09e59e153fd","sha1":"fdf90197dbe29e74b5d04d488bdc45de5d9d1d30","sha256":"cd1dd26227bf678bd8a19392c886833f7af3b5f7767b2c4927af114e64afcb6b","sha512":"f05b58ec22386c68d905a807f7a48ded88c4854ea09486144f19ddaed2e15bcd35984415daae54c6bc5e6cc88b01dd6ac8afa1b5afd04d023a6dd6459f9efd8d","ssdeep":"3072:y2OIePeXpL+uGGSD0Nh+OTpR94XCIuJoY9wULEKK8jiUI9:dOIM0+uGG+I++pLoPurjEft","tlshash":"2ac312d767e4c61fc5e9d4388c4e9b1c83afa2415bc662d27b0d8d21297c043996fa1e","first_seen":"2026-03-21T17:37:13.758382Z","last_seen":"2026-06-04T18:55:38.89574Z","times_seen":44,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/media/poppins-500.323014b9ce03a905066b.woff2","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:13.738Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /media/poppins-500.323014b9ce03a905066b.woff2 HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/fifa/9795.1a29b9ec.chunk.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:13 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-06T23:09:59.003831Z","times_seen":523450,"resource_available":true,"data":null}},"time_used":205,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":205,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/2869.5871a311.chunk.css","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:11.988Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /fifa/2869.5871a311.chunk.css HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"696ed7f6-d766\"\r\nexpires: Tue, 02 Jun 2026 08:39:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":55142,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (55142), with no line terminators","md5":"ec6536e4a93cebb1eaf5f4a17141a318","sha1":"16d3b88561c87e9f6ebf83060a21c9236e5ed26d","sha256":"c63a48bd257e817a1e2261743c66258612b0398c35071e1c4d87568412a6b3d9","sha512":"3095dad8cd82e39efe9b4e5e882094843e391ffda3808bfd8535720703c35442a6d539cca7d8f63f7d7b928cfb910c0cd06bfcdb71a67c64044a954eb0e7d44d","ssdeep":"768:X+Rv8cefp0sJofUmXE/MooGlC+89jGtaKUkjPo0VY:uRv8cefpeKUkzVY","tlshash":"4b43567426a42c3864f3c379e9a8edf52c9e350eca03d9f9f93a546d43c3a9a6500f45","first_seen":"2026-03-21T17:37:13.581443Z","last_seen":"2026-06-04T18:55:38.973044Z","times_seen":45,"resource_available":false,"data":null}},"time_used":455,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":455,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/media/poppins-regular.8c1b062fe68a9f24ad7a.ttf","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:14.605Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /media/poppins-regular.8c1b062fe68a9f24ad7a.ttf HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/fifa/main.c56d670b.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:14 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-06T23:09:59.003831Z","times_seen":523450,"resource_available":true,"data":null}},"time_used":174,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/transform/ea8c73aa-4e5e-4ab2-9d26-df385629f02f/1024_768?focuspoint=0.5,0.46\u0026io=transform:fill,aspectratio:4x3,width:1024\u0026quality=75","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.015Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /transform/ea8c73aa-4e5e-4ab2-9d26-df385629f02f/1024_768?focuspoint=0.5,0.46\u0026io=transform:fill,aspectratio:4x3,width:1024\u0026quality=75 HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 18313\r\ndate: Mon, 01 Jun 2026 20:24:44 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=15552000\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:ea8c73aa-4e5e-4ab2-9d26-df385629f02f\r\ncontent-disposition: inline; filename=\"1024_768.avif\"; filename*=UTF-8''1024_768.avif\r\nx-api-correlation-id: d035d032-0809-0a46-4c84-ff3120c6fd1a\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: xS-BzhLo-CPRHx93sXN4770NSvS2jUddvc0zm21VB0dGHmfAM44X0w==\r\nage: 868\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":18313,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"397413eacbe89d29f19cdee485b7edb4","sha1":"a1142c8989818c7126dc49c706f9f234f4d78bde","sha256":"8776123a046dc1420821ecbaa0a58c571b5439a15547076cf119c780c9e983f3","sha512":"e92de7ae5438bc996044ca8e379d464142a6b67bb33d07280083eee905a113dc9e328b63cfbff88c72207c0fb8a22589a7b30ed4f6ed18e769c0440023587ff6","ssdeep":"384:kYNg7U4EZUm8cZoHg0x/JrE8MWU3X84fe7f5h:kYyb0VM/RNMWQ8jh","tlshash":"8682c0b1763e343adc3c973484d9bba1f7c6a6643682ba41f108b73291959807e8f13d","first_seen":"2026-03-21T17:37:13.678786Z","last_seen":"2026-06-04T18:55:38.997089Z","times_seen":43,"resource_available":false,"data":null}},"time_used":21,"timings":{"blocked":5,"dns":0,"connect":0,"send":0,"wait":16,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/jquery.min.js","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.039Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /fifa/jquery.min.js HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"696ed7f6-1538f\"\r\nexpires: Tue, 02 Jun 2026 08:39:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":86927,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65451)","md5":"a09e13ee94d51c524b7e2a728c7d4039","sha1":"0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae","sha256":"160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef","sha512":"f8da8f95b6ed33542a88af19028e18ae3d9ce25350a06bfc3fbf433ed2b38fefa5e639cddfdac703fc6caa7f3313d974b92a3168276b3a016ceb28f27db0714a","ssdeep":"1536:jLiBdiaWLOczCmZx6+VWuGzQNOzdn6x2RZd9SEnk9HB96c9Yo/NWLbVj3kC6t3:5kn6x2xe9NK6nC69","tlshash":"748319dd72c6b06247ab71ba00bf550bf2361999684d4410f129e4eabc74b4e823bf7d","first_seen":"2023-03-07T01:02:02Z","last_seen":"2026-06-06T23:15:55.827934Z","times_seen":133648,"resource_available":true,"data":null}},"time_used":385,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":385,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"public.flourish.studio/resources/v3/embedded.js","fqdn":"public.flourish.studio","domain":"flourish.studio","tld":"studio"},"ip":{"addr":"104.18.32.174","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fifa.gold/fifa/host.html?id=123","date":"2026-06-01T20:39:13.131Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"public.flourish.studio","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 30 Apr 2026 20:30:38 GMT","end":"Wed, 29 Jul 2026 21:30:35 GMT"},"fingerprint":{"sha1":"71:C2:37:69:32:F2:09:94:A5:4F:05:6B:18:65:61:6C:1C:E9:85:D2","sha256":"3B:AD:76:DE:E8:08:BA:F7:11:26:BF:6C:F7:1E:5E:2A:7A:34:8A:67:95:C9:A3:72:AD:D4:9D:A5:C2:BF:35:49"}}},"request":{"raw":"GET /resources/v3/embedded.js HTTP/1.1\r\nHost: public.flourish.studio\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 01 Jun 2026 20:39:13 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: POST, GET, HEAD, PUT\r\naccess-control-max-age: 3000\r\ncache-control: public, max-age=14400\r\nlast-modified: Fri, 01 May 2026 12:29:22 GMT\r\nx-amz-version-id: D4Uh.E.ma6FTWdpI8sU_Xc4Gmg9zXgCq\r\netag: W/\"b04ce7b359ad30b1b9eea0ba09ffe7b6\"\r\nserver: cloudflare\r\ncontent-encoding: gzip\r\nvary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 b2cce02625c5889edc8a318206b8678c.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: IST52-P2\r\nx-amz-cf-id: NIAnE6FVPFpHY9Lwk7HswjvcVIAAutsjciZnFVe3hYMFHwxolj3rmQ==\r\nage: 36\r\nexpires: Tue, 02 Jun 2026 00:39:13 GMT\r\ncf-cache-status: HIT\r\ncf-ray: a05106c2daca1525-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":34568,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (32641)","md5":"b04ce7b359ad30b1b9eea0ba09ffe7b6","sha1":"e75f44d79987c4c732f3773c601f0017823e84b0","sha256":"e01435d31d6e69ab49ba17e66a526fa00fd334eec80e94819a4a78f6ad989b74","sha512":"8455a82ce5ff7cd98c03f7987137f6d966a01640787ad0adb6b0f76734c39b03f1286123fadc08c12e576818665d128fc86eb715b4918ee02ff8608c81bc066f","ssdeep":"768:wfe5dRov88Ma+3zPQVNEYW1IkBIfcdlsFQAIb3FSQc/OXI5Eks0pXFKUos4KtjAO:w0nM8mzEYW/Igb3FSi2ZaUoMNY7GyqFn","tlshash":"ddf23b1a7d6174311bee41e9647f2b0e7178111e700cc4a0f2d9dca928b5d9be12bf6e","first_seen":"2026-05-01T18:56:58.797127Z","last_seen":"2026-06-05T17:16:09.08662Z","times_seen":116,"resource_available":true,"data":null}},"time_used":8,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/apple-touch-icon.png?v=a087933e3cf148cb71a96095c8aa2dac","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:13.733Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /fifa/apple-touch-icon.png?v=a087933e3cf148cb71a96095c8aa2dac HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:13 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"696ed7f6-543\"\r\nexpires: Wed, 01 Jul 2026 20:39:13 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1347,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit colormap, non-interlaced","md5":"a087933e3cf148cb71a96095c8aa2dac","sha1":"227d141ec26d0a4c6cd8b89d413cb317d792cb50","sha256":"85f1ab76cd1af5c823ab268ca2fec917e6750e5263cb4487be736ea722909f2f","sha512":"555f03dd5f962b9b8c1cbf3506c07f43b60cacb1eb397ab197f6e6b5c6610a90618ee8f3b4341e0c12172af080131931634a81f028653a31aaed9651d986c8ff","ssdeep":"","tlshash":"d5212b8adc15f66dc4431573424a4b89357e441f8b833c2da8f8ebb26c4072470d5dbb","first_seen":"2023-06-29T19:27:13Z","last_seen":"2026-06-04T18:55:39.020011Z","times_seen":60,"resource_available":false,"data":null}},"time_used":146,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":146,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:14.014Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:53:13 GMT","end":"Thu, 30 Jul 2026 15:53:12 GMT"},"fingerprint":{"sha1":"6C:B9:FE:19:9C:7C:AA:5D:D2:39:3A:16:2C:50:FB:C8:59:C8:CC:A8","sha256":"FC:4C:0C:6E:AB:D1:82:30:1F:A9:46:DF:FA:38:02:9F:06:56:FF:98:E0:8D:AB:9A:26:C3:2A:97:C5:CF:A6:1C"}}},"request":{"raw":"GET /s/i/productlogos/translate/v14/24px.svg HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ncontent-length: 3340\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sun, 31 May 2026 10:07:40 GMT\r\nexpires: Mon, 31 May 2027 10:07:40 GMT\r\ncache-control: public, max-age=31536000\r\nage: 124294\r\nlast-modified: Wed, 20 Apr 2022 14:24:23 GMT\r\ncontent-type: image/svg+xml\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":6225,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"2bd5c073a88b83ed74db88282a56ddfb","sha1":"d0ebfc376f8c6a44a8d4cd216817dcd7d0c33650","sha256":"ab5c23a05e39deed14d9d8262b0dce9f024f86105a27196cad37d14a3f516e09","sha512":"5c6c4a92e93fc0f6a675658cc84f6187fdebd3eee94efd07e24658736cba598f3bc7156b19834b13fb44c1d43fcb7df9fcca7f0a453037e30da76ba8f4b23b89","ssdeep":"96:+R2K3Z4n7tyVwip82hezk6227gLFoXhu1XuE20ot+pVY3YptWDzOzgXK3Zx:ql3KnxyGGMzb7noR20NTww33","tlshash":"c1d1e6f19309d815cd6a83d8cd9b8002aa1f25ddd50ac6cc7639fb3bd1a50eb1d2d7a4","first_seen":"2023-04-06T21:34:37Z","last_seen":"2026-06-06T23:16:10.095355Z","times_seen":69324,"resource_available":false,"data":null}},"time_used":29,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":29,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/layui/layui/css/modules/layer/default/layer.css?v=3.5.1","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.901Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /layui/layui/css/modules/layer/default/layer.css?v=3.5.1 HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"696ed7f6-37f3\"\r\nexpires: Tue, 02 Jun 2026 08:39:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":14323,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (14323), with no line terminators","md5":"9bc0bb378b16f6d3d94b945b8a12de7f","sha1":"b3a3a2788fa3cfab78191f3c2f9ac3dfac1192a4","sha256":"452d67901461bc418452e139ce517ca82971744bb128aedf6aeae16091574681","sha512":"a82bf1274d6328e08872136737720c2b584f5186191ea925c58f93c103f9435871ca89a0a1a24cc1edcd0d1063d0553bea3da1d03a49113c09e427a363eee803","ssdeep":"96:T+Ntha8qNEp+wRY1vUPXo029LPD2OtLzAyPHL/LzntJDzyv2OQ7KGxV7ld2/TWUc:WyLr2Otzrzzt42OQ7KGxV7+WUq4S3IU","tlshash":"5a5253e144911289b0278721d6dc7eba32f88d43e5630cbef257381f874c6dba2b6647","first_seen":"2023-04-07T21:52:09Z","last_seen":"2026-06-05T20:54:51.135966Z","times_seen":532,"resource_available":false,"data":null}},"time_used":148,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":148,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/favicon-16x16.png?v=7ee355e68b687435c3e5f74e2e831325","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:13.734Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /fifa/favicon-16x16.png?v=7ee355e68b687435c3e5f74e2e831325 HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:13 GMT\r\ncontent-type: image/png\r\ncontent-length: 674\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\netag: \"696ed7f6-2a2\"\r\nexpires: Wed, 01 Jul 2026 20:39:13 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":674,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 16 x 16, 8-bit colormap, non-interlaced","md5":"7ee355e68b687435c3e5f74e2e831325","sha1":"eb730c20bf35a204dc3cd2456cd58056064ffdd8","sha256":"2e57347bdf5f32950fb02330c08d6ea33bc46c9f71c407e30af357c33d7d1f07","sha512":"e13aeeb42758f8ad2b39c6b451c1c3a09aaf04c216ab87663bc8bce9671896515db11c477c7a1234cfa1c58e5603ceb7773ededd7be7459393c09837e8dc9dec","ssdeep":"","tlshash":"cc0123cbfa346ffdd0ca25a918c12354ee3481af29810d1dbb08f7c90824d89d53db8a","first_seen":"2023-06-02T00:31:12Z","last_seen":"2026-06-04T18:55:38.892183Z","times_seen":61,"resource_available":false,"data":null}},"time_used":146,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":146,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/transform/598a1d22-62b6-486b-849c-e8bf55894179/FIFA_FWC26_Tournament-Thumbnail-4-3?\u0026io=transform:fill,aspectratio:4x3,width:1024\u0026quality=75","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.013Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /transform/598a1d22-62b6-486b-849c-e8bf55894179/FIFA_FWC26_Tournament-Thumbnail-4-3?\u0026io=transform:fill,aspectratio:4x3,width:1024\u0026quality=75 HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 12808\r\ndate: Mon, 01 Jun 2026 20:24:44 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=15552000\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:598a1d22-62b6-486b-849c-e8bf55894179\r\ncontent-disposition: inline; filename=\"FIFA_FWC26_Tournament-Thumbnail-4-3.avif\"; filename*=UTF-8''FIFA_FWC26_Tournament-Thumbnail-4-3.avif\r\nx-api-correlation-id: 952f6754-c551-f860-c61d-9bbfeffa1ed1\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: ucQDAK2r78TTkEbq8Xcs7u0exqhLmoxpEO8ZrSnzKGGBwmcN9B6PHw==\r\nage: 868\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":12808,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"e3b42285522c3ca5b2f408811ee790a8","sha1":"84c157b4526f0d308a396c2edb5b11887fe3e734","sha256":"338f64590b10a3ad0e8affbceef3a941414c28467d75b34e0d8434fc931fdd32","sha512":"06de3e7774de108a6b4dbf6e5513c38213f8cb3ee84e52c172bd051042b4913f918155ce73c9e6012affab5f0fea72e342710669bbd486d13ee5302f641ae6c5","ssdeep":"192:+TILYNMtKwjBT7wrr3J/63aV5o4GjUh166EC44TAH0VVj7weJZ5nCwEUmikNLvYu:VYNg7jEI3wo4GjA1CL4TI0VlUE5hHxC","tlshash":"3c42afa5e275a772eea6e33805e23bd8f1b7a318e370f091a104f69c41416e1bb1c56d","first_seen":"2026-03-21T17:37:13.603329Z","last_seen":"2026-06-04T18:55:38.865662Z","times_seen":43,"resource_available":false,"data":null}},"time_used":80,"timings":{"blocked":14,"dns":5,"connect":8,"send":0,"wait":35,"receive":0,"ssl":14},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/transform/31266396-d124-42c4-9291-5d0942d03888/The-Norway-players-celebrate-their-2-1-victory-over-Brazil-at-the-Stade-Velodrome-in-Marseille-in-Group-A-of-the-1998-FIFA-World-Cup-France?focuspoint=0.51,0.46\u0026io=transform:fill,aspectratio:1x1,width:1536\u0026quality=75","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.835Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /transform/31266396-d124-42c4-9291-5d0942d03888/The-Norway-players-celebrate-their-2-1-victory-over-Brazil-at-the-Stade-Velodrome-in-Marseille-in-Group-A-of-the-1998-FIFA-World-Cup-France?focuspoint=0.51,0.46\u0026io=transform:fill,aspectratio:1x1,width:1536\u0026quality=75 HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 165458\r\ndate: Mon, 01 Jun 2026 20:35:37 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=15552000\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:31266396-d124-42c4-9291-5d0942d03888\r\ncontent-disposition: inline; filename=\"The-Norway-players-celebrate-their-2-1-victory-over-Brazil-at-the-Stade-Velodrome-in-Marseille-in-Group-A-of-the-1998-FIFA-World-Cup-France.avif\"; filename*=UTF-8''The-Norway-players-celebrate-their-2-1-victory-over-Brazil-at-the-Stade-Velodrome-in-Marseille-in-Group-A-of-the-1998-FIFA-World-Cup-France.avif\r\nx-api-correlation-id: f338ec40-b7e7-2159-81ec-af74c6c81d50\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: 1lFX4Q6rFLOJIYpivFzkU66BlkWjiyhJ71E0lXrgk_5zpT4fuBrXUQ==\r\nage: 215\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":165458,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"f7828e2684a7e6b75f26be23f3903320","sha1":"64e28d660234cdc0ba2cdff7454af3d3fd4d1cf7","sha256":"9065ef4ffd8f174db0aff0e6718c69bd59f23a2853028c4257b259692dd5c273","sha512":"87fe5553b696016c01791406ebdd5f2405333dabfc9e5bd1187b4b017f8f4edd814fc2e4b1dfab66a209094ef4959811f9dd74c7c66d19bced6ecf477a711b2c","ssdeep":"3072:kGjn38qhKV74ib+zirjoGs5VOeEPpRRXwtfGomgIJBy93oLdWDhsIrenO+N:PjnGiib+OrjPReEPprkGomgIGEdyhsms","tlshash":"58f3130cfb3ba3bff22d233df98aa555e5dba31ad4603381f460da5bc664081856711e","first_seen":"2026-05-29T20:50:08.670441Z","last_seen":"2026-06-01T20:39:41.079628Z","times_seen":5,"resource_available":false,"data":null}},"time_used":43,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":10,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/transform/32583a36-c6c1-437e-8a5a-7189acf36401/Japan-team-profile-4x3?\u0026io=transform:fill,aspectratio:4x3,width:240\u0026quality=75","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.854Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /transform/32583a36-c6c1-437e-8a5a-7189acf36401/Japan-team-profile-4x3?\u0026io=transform:fill,aspectratio:4x3,width:240\u0026quality=75 HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 9035\r\ndate: Mon, 01 Jun 2026 20:35:39 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=15552000\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:32583a36-c6c1-437e-8a5a-7189acf36401\r\ncontent-disposition: inline; filename=\"Japan-team-profile-4x3.avif\"; filename*=UTF-8''Japan-team-profile-4x3.avif\r\nx-api-correlation-id: 7d514c98-ae27-63d0-d861-f27186c4b9ef\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: 0w0--hZx80UnLPNcG972KYJFGtNkQR7afzf0IJTvaca-TNk2Xbuwog==\r\nage: 213\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":9035,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"e47cc8029e011ba5d00c46c5b42eec40","sha1":"f926ec17abeead3242e895c6a39ecda299cee465","sha256":"81c15c8362f68157b4b67558daa5da5b19a2e3dca35e756fd54e39d64c8e3850","sha512":"1f02766af02bbdbaf5eeba09f84047adbf808c7c28cb88abcd5d974381f209d6041f3f36a40da7f44587ba7b522d1beb9813103361ef3c9da41e4962f3ac0567","ssdeep":"192:+TAoYNMtKwjHxL2qJHdLJ8gjoOvkg+Nyldp794zIdpGQT:uYNg7jHxS6HdL+gj9M7Qh+zepHT","tlshash":"4c12aff5af69e297d5b3e3b805f06bd6e1a36f34c7a13644a4249f25184c6c0cd8d283","first_seen":"2026-05-29T20:50:08.668628Z","last_seen":"2026-06-01T20:39:41.080453Z","times_seen":5,"resource_available":false,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/m/567b5b475a882c5b/webimage-fifa_fp_lenovo_dbgr.png","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/fifa/logos.html","date":"2026-06-01T20:39:13.156Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /m/567b5b475a882c5b/webimage-fifa_fp_lenovo_dbgr.png HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 4262\r\ndate: Mon, 01 Jun 2026 06:31:47 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=86400, stale-while-revalidate=600, stale-if-error=3600\r\ncontent-disposition: inline; filename=\"fifa_fp_lenovo_dbgr.png\"; filename*=UTF-8''fifa_fp_lenovo_dbgr.png\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:9bf5417f-c673-4317-b144-992587d01037\r\nx-robots-tag: none\r\nx-api-correlation-id: ac6e2e9c-6642-40ad-7639-30f7bd546939\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: YfKBIciKUibMg0I6W_mg8apG37zAHVMGTJOPvftyfnDcdKi5jkzOQw==\r\nage: 50846\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":4262,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 357 x 200, 8-bit colormap, non-interlaced","md5":"34ec6751cb58bf1a0b6c243d01d287e5","sha1":"bad2969d80057e402b7072f7eb7467a885a8d67e","sha256":"5e92b0267957d82079348f13bd9f79995ab71e6926aebb8e9c55bf3e4125c075","sha512":"1469b8d4760a6f8a07166a73527fb7d4764cebd48196649ca5acfc5ddb6f323af7a1cd90146bb8d10f84b9267f376b5348ba6af2e30417da23ac16065c85bb31","ssdeep":"96:mV8AOtpeC9LfSciaaafMIhqbb5w1mpgi4+axuJnXXYO:LZppNScuavCWQDaoJnXXv","tlshash":"fb916d7372a9d7d0ee5a053624080f25fe7764ea11e27591a105fc7e9ddcc32237990a","first_seen":"2026-05-29T20:50:08.700273Z","last_seen":"2026-06-04T18:55:38.921509Z","times_seen":37,"resource_available":false,"data":null}},"time_used":21,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/media/FIFASans-Regular.a1b09a8bab345645c480.ttf","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:14.189Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /media/FIFASans-Regular.a1b09a8bab345645c480.ttf HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/fifa/main.c56d670b.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:14 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-06T23:09:59.003831Z","times_seen":523450,"resource_available":true,"data":null}},"time_used":203,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":203,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"translate.googleapis.com/element/log?format=json\u0026hasfast=true\u0026authuser=0","fqdn":"translate.googleapis.com","domain":"translate.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:24.176Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:53:15 GMT","end":"Thu, 30 Jul 2026 15:53:14 GMT"},"fingerprint":{"sha1":"19:42:B0:56:3A:E4:79:BF:8B:69:E2:50:F4:76:BF:1E:A9:D7:7A:49","sha256":"D7:FF:C1:46:95:F3:5F:08:04:B0:E1:A8:FE:14:FC:60:19:58:D6:C7:D3:6E:82:B3:64:07:E9:E1:CB:9A:27:8C"}}},"request":{"raw":"OPTIONS /element/log?format=json\u0026hasfast=true\u0026authuser=0 HTTP/1.1\r\nHost: translate.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: x-goog-authuser\r\nReferer: https://fifa.gold/\r\nOrigin: https://fifa.gold\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 200 OK\r\naccess-control-allow-origin: https://fifa.gold\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-max-age: 86400\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser\r\ncontent-type: text/plain; charset=UTF-8\r\ndate: Mon, 01 Jun 2026 20:39:24 GMT\r\nserver: Playlog\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-06T23:09:45.281132Z","times_seen":16194959,"resource_available":true,"data":null}},"time_used":45,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":44,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/7993.3cb393a4.chunk.css","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.005Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /fifa/7993.3cb393a4.chunk.css HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"696ed7f6-d963\"\r\nexpires: Tue, 02 Jun 2026 08:39:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":55651,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (55651), with no line terminators","md5":"b84d3415d6421401958071a6c29d19f0","sha1":"5b1695f1e746baac32139987837bc8aaac867520","sha256":"c444575c0e7a895784930d5369611ee588e677b11b92a9e2d2b3af1031cfa263","sha512":"cc8f90fe956d3d8161d294c885ac4e4d12dd0e60a6003146c8e2c21825fe84f546de178d3cdc3010024793373734d6c298c3229ba7df587860ee5f05ef461e0c","ssdeep":"768:X+Rv8cefp0sJofUmLc/MooGlC+89jGtaKUkjPdVVV:uRv8cefp4KUkXVV","tlshash":"cd43567426a43c3864f3c379e9a8eef52c9a350ec603d9f9f93a546d43c3a9a6500f45","first_seen":"2025-11-29T04:32:24.195121Z","last_seen":"2026-06-04T18:55:38.865268Z","times_seen":46,"resource_available":false,"data":null}},"time_used":446,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":446,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/5980.71f7dd23.chunk.css","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:11.977Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /fifa/5980.71f7dd23.chunk.css HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"696ed7f6-2621\"\r\nexpires: Tue, 02 Jun 2026 08:39:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9761,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (9761), with no line terminators","md5":"790048c04d8d3e2310d364efa201f537","sha1":"a5a4a67b467f776ae6740a0c694a3e10e4518cde","sha256":"027ffcfe861a0da5e5485bb30651d99258b7ab2aaddffac7a22b5b001fc2cdc7","sha512":"4c7583288f58a58d38e619f7ac9f3881c0d6c3bdd74d53ff4db12c6874e6245caedffdfe86ff395ab9bff6ddbdcf103239f31378d9d902d49676052b99e9460c","ssdeep":"96:dDbNXK1AUyFcbaDBU8sPJKrHka51YUUfh0IFCf9/4/7Ll4xGg7ODN8I0c/NWi70b:9bNaXg9MsbpwdfhySsZB0cs3w","tlshash":"b8126d097f41319c6897113bb53225c92f3d1836db72c16f64f3b9be2b62695042bd8e","first_seen":"2026-03-21T17:37:13.619275Z","last_seen":"2026-06-04T18:55:38.960088Z","times_seen":45,"resource_available":false,"data":null}},"time_used":458,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":458,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/225.888bc23e.chunk.css","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:11.982Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /fifa/225.888bc23e.chunk.css HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"696ed7f6-4213\"\r\nexpires: Tue, 02 Jun 2026 08:39:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":16915,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (16915), with no line terminators","md5":"0832eaff55e04e6daba2dcde20e8649e","sha1":"7f2b9a9b93c1f216f068f1d8e891d6464db58a87","sha256":"0fddba65f793a858de79d182ace621ef4641f6874082efbb93cf70900389d3aa","sha512":"da259410dede670d969a437fdc1408618256f88f4567e956a5d3e29faeb44cbe24061af015cdada1cb72fcc52ce829be11e0e510be778cf11417d208ea781f1e","ssdeep":"384:qjI2ddN2k6qRevAfJhhDHbQwQpKIpKVCZ:mdN24rc","tlshash":"1572de0278625379f0f6825f7793fb241334ea25c9261a9ef156fe2f81ebb951063381","first_seen":"2026-03-21T17:37:13.613475Z","last_seen":"2026-06-04T18:55:38.904365Z","times_seen":45,"resource_available":false,"data":null}},"time_used":456,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":456,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/4520.c6d5ede3.chunk.css","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:11.988Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /fifa/4520.c6d5ede3.chunk.css HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"696ed7f6-50d7\"\r\nexpires: Tue, 02 Jun 2026 08:39:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":20695,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (20695), with no line terminators","md5":"a54a01e12509e17f28d38e31f4d06240","sha1":"8489789beb43f05b9e5ca1e47f6fda4eb84208e9","sha256":"ebf0594c4950065366f32e209e348a182de07d15b53972e5dc1e9e303a40cf43","sha512":"342c1113f6ab424e5c621a0259d96d6fa7bea3b963c15af782483f7c391127ae919fd6ddd2eede8dfafc199bb353b54d7fd15dbd9a4d7c983555fa846c4c6f6f","ssdeep":"192:T8sFMetwSoAt3KXTkD2GQchSNw+agpULPVx0g1sn6pWbtn2oehTCwTUcx720vHEk:T8Bzj4bQfqrVWoLpvHhT/TLOk","tlshash":"b892b37924841038b8db9164167e7ece164f5913ef179bb8f4a3e83463cbbe0032629d","first_seen":"2025-06-13T20:56:07.373077Z","last_seen":"2026-06-04T18:55:38.951757Z","times_seen":50,"resource_available":false,"data":null}},"time_used":455,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":455,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/1340.b11d733e.chunk.css","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:11.998Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /fifa/1340.b11d733e.chunk.css HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"696ed7f6-774\"\r\nexpires: Tue, 02 Jun 2026 08:39:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1908,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1908), with no line terminators","md5":"3a0c25d90771028c7ecb5aad09393c70","sha1":"49be46e6458e8c138570f8c83f754cd7198c7dc0","sha256":"e2a1a6cd4e15e1831add523d23cfbd3dca7a6d2723d68e29bb1de30b16a3a346","sha512":"7360d3df6fa563a780ba1d8913cb0dd39fd3a6ca803dde6acd4ffca3bdadba6827fe852c130a179b8d8ec2843b167d08759c6daf4a06c1e85ab692f180d1802b","ssdeep":"","tlshash":"bc412439206543a45c7b638b5ea1e905217eb0f8b7975b08e8837d3d30fe248457f5e9","first_seen":"2026-03-21T17:37:13.601964Z","last_seen":"2026-06-04T18:55:38.973709Z","times_seen":45,"resource_available":false,"data":null}},"time_used":449,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":449,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/webfonts/fa-solid-900.woff2","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.751Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 May 2026 03:46:57 GMT","end":"Mon, 10 Aug 2026 04:46:42 GMT"},"fingerprint":{"sha1":"95:12:1E:0A:F6:69:8B:FC:A0:08:DA:67:1A:A4:D1:9D:87:F5:E9:07","sha256":"F3:4A:39:63:C7:6A:CE:66:1A:B4:62:2C:E9:92:82:9A:81:78:1B:CC:3F:D5:2D:0A:6D:D6:89:D9:F6:66:7B:BC"}}},"request":{"raw":"GET /ajax/libs/font-awesome/6.4.0/webfonts/fa-solid-900.woff2 HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://fifa.gold\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdnjs.cloudflare.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: application/octet-stream; charset=utf-8\r\ncontent-length: 150124\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\netag: \"6421d693-24a6c\"\r\nlast-modified: Mon, 27 Mar 2023 17:46:59 GMT\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/kv\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 2238633\r\nexpires: Sat, 22 May 2027 20:39:12 GMT\r\naccept-ranges: bytes\r\nstrict-transport-security: max-age=15780000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=INNBGr0eK6wZPyWn0yl3UlwqKBH%2F2wzdbLN6LagK6zq74Fngz%2FPkT%2BhAfZy%2BxrUJv%2FQesUj24E3Dr6%2FJpA1Q4KKX2pPAt6hN66ifYrN8Ju9t5krKtDxecQbG5Si4nOQScfREZYKg\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\ncf-ray: a05106c0cb2e1ae6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":150124,"size_decoded":0,"mime_type":"application/octet-stream; charset=utf-8","magic":"Web Open Font Format (Version 2), TrueType, length 150124, version 772.256","md5":"c64278386c2bbb5e293e11b94ca2f6d1","sha1":"6b99aa650bd12a36caa14e0127435d8f4cd3ba73","sha256":"7152a6933ee3d690ec2af3d09da9d701723d16aa3410a6d80f28ff8866f3b880","sha512":"0ccdc1515510d902c0b4a48b863c48bad86e1f766b1f9c890a64e28d91ee7c6d488241c531fc094d15b29c211da71e092587a987e24ee8e67ef8ea99c284e821","ssdeep":"3072:7sCbk7w0ZXdkN6iMjif3Lr7x7wAtf+D7gDk1feXDLnurWHqrNIuv5n0:7sCbkFZXdC7MaLr9w2mIY1feXXurWyNW","tlshash":"28e3123cf2c6d486735f5aeadb79636894fd0a2e74ecc67d26b982112048f828174d1d","first_seen":"2023-04-09T20:30:06Z","last_seen":"2026-06-06T22:56:56.114667Z","times_seen":37620,"resource_available":false,"data":null}},"time_used":40,"timings":{"blocked":16,"dns":1,"connect":0,"send":0,"wait":12,"receive":11,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/m/6db992f31d19388d/webimage-fifa_fp_cocacola-co_dbgr.png","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/fifa/logos.html","date":"2026-06-01T20:39:13.154Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /m/6db992f31d19388d/webimage-fifa_fp_cocacola-co_dbgr.png HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 8670\r\ndate: Mon, 01 Jun 2026 11:09:37 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=86400, stale-while-revalidate=600, stale-if-error=3600\r\ncontent-disposition: inline; filename=\"fifa_fp_cocacola-co_dbgr.png\"; filename*=UTF-8''fifa_fp_cocacola-co_dbgr.png\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:101fc5a3-6651-47c4-9576-77d9f29128c5\r\nx-robots-tag: none\r\nx-api-correlation-id: 911fdf8a-77db-fd89-10c8-d59d84ed0d29\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: Kfn_whcLu5QsYW35qIgd41TprCf9Ox1jQDz1URMRX9EqoY-8J2-VWw==\r\nage: 34176\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8670,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 358 x 200, 8-bit colormap, non-interlaced","md5":"cd6ec7cade0b16a4a04bf5aa255ebc47","sha1":"7689c72aafc84254d14ac79bf25f6bd35e836877","sha256":"222f8a651ee0dea9158c1246a0eb9952bc83bac8fc6d9df585375ca1b871d774","sha512":"aacf79503bf5914c5e46043f99d461ce28c034c6e3bc2d60f9c3e544d55a11f9622d5f95fd4b1c2c363a5ecfda53950da46ff53e83f87c5b62ea45f7754f403d","ssdeep":"192:6Zy9NgShGuhdQNWd0MZnjdmIY1e1MP7kgXzGXwT:i3K1jdXnjkx1/HXzGX2","tlshash":"5302a0eef3db0d662563d736b2c08d9885ff9239d5a4211e92b9147180127fe9c9b223","first_seen":"2026-05-29T20:50:08.621751Z","last_seen":"2026-06-04T18:55:38.998222Z","times_seen":37,"resource_available":false,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.At_bO3I1zGE.O/am=BBAAJw/d=1/exm=el_conf/ed=1/rs=AN8SPfrqhSXc48uTB4GOOkwyFIyhVfs_ag/m=el_main","fqdn":"translate.googleapis.com","domain":"translate.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:13.727Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:53:15 GMT","end":"Thu, 30 Jul 2026 15:53:14 GMT"},"fingerprint":{"sha1":"19:42:B0:56:3A:E4:79:BF:8B:69:E2:50:F4:76:BF:1E:A9:D7:7A:49","sha256":"D7:FF:C1:46:95:F3:5F:08:04:B0:E1:A8:FE:14:FC:60:19:58:D6:C7:D3:6E:82:B3:64:07:E9:E1:CB:9A:27:8C"}}},"request":{"raw":"GET /_/translate_http/_/js/k=translate_http.tr.no.At_bO3I1zGE.O/am=BBAAJw/d=1/exm=el_conf/ed=1/rs=AN8SPfrqhSXc48uTB4GOOkwyFIyhVfs_ag/m=el_main HTTP/1.1\r\nHost: translate.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"rosetta\"\r\nreport-to: {\"group\":\"rosetta\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/rosetta\"}]}\r\ncontent-length: 123991\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Mon, 01 Jun 2026 18:31:20 GMT\r\nexpires: Tue, 01 Jun 2027 18:31:20 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Sat, 30 May 2026 01:08:58 GMT\r\ncontent-type: text/javascript; charset=UTF-8\r\nvary: Accept-Encoding\r\nage: 7673\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":430175,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (2481)","md5":"5028b9b37c26d71af54a3477060d78c2","sha1":"6ae7c662f2cffa93b43d28fa2ea8f887e8fc8fe5","sha256":"d3e56fa28fc557be2bac8354c3c6784c7fc051e1bb18fa34307e80e88675a092","sha512":"dddca915aa3bf871302a91fcbecb6d5245b6dca94c5d4f5693144fc3e76d45fc6a4ff670264ac3baa1ec544fb55b0f0e0f3651b8e30a44d9b6cfd74235519a44","ssdeep":"3072:B7qR9H2ia2b0Ogx3cH8JCHrE+72WveDiFoCsVL4JiMD8uiaolCATOLdzsmXnj9BG:OYjVzeJClhKdzsKJBG","tlshash":"1c94d9cab3a378529262f8a1a47f0147b93dac57b44c4c6cb189d8db2eb08154573f7b","first_seen":"2026-06-01T18:39:28.559421Z","last_seen":"2026-06-04T20:11:34.902366Z","times_seen":615,"resource_available":true,"data":null}},"time_used":189,"timings":{"blocked":63,"dns":4,"connect":16,"send":0,"wait":16,"receive":40,"ssl":47},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/998.73751382.chunk.css","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:11.990Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /fifa/998.73751382.chunk.css HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"696ed7f6-4d1\"\r\nexpires: Tue, 02 Jun 2026 08:39:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1233,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1233), with no line terminators","md5":"d418cd668b82c01497e0aa9c9e173878","sha1":"d52c69b3ab34f959d9cea9ca1e33b9fbc3176f24","sha256":"415f3bc60066ea5232eb45bb2d93f40105e0c2ac019eb6acd45524506271cd79","sha512":"c2d671d6ee6d85952d48003fb6841b1941f2c621cab6e0d43441df7eabf19490054e98c042aba5ee9ff3d5b126edbe33357843273ae98a73d8e2c8e5f833ea78","ssdeep":"","tlshash":"f92149762b4a10b474ff9607e011f9e85b5fb826ba27c07998677cdc36c49ca0031c5d","first_seen":"2025-06-13T20:56:07.315665Z","last_seen":"2026-06-04T18:55:38.92022Z","times_seen":49,"resource_available":false,"data":null}},"time_used":453,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":453,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/transform/a423d655-87d0-467e-8f71-742f2d03a42a/FIFA_WWC27_Tournament-Thumbnail-4-3?\u0026io=transform:fill,aspectratio:4x3,width:1024\u0026quality=75","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.014Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /transform/a423d655-87d0-467e-8f71-742f2d03a42a/FIFA_WWC27_Tournament-Thumbnail-4-3?\u0026io=transform:fill,aspectratio:4x3,width:1024\u0026quality=75 HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 11208\r\ndate: Fri, 29 May 2026 20:49:35 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=15552000\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:a423d655-87d0-467e-8f71-742f2d03a42a\r\ncontent-disposition: inline; filename=\"FIFA_WWC27_Tournament-Thumbnail-4-3.avif\"; filename*=UTF-8''FIFA_WWC27_Tournament-Thumbnail-4-3.avif\r\nx-api-correlation-id: 9cc74069-f256-26cf-05e8-09a243ed57ae\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: 6qMbFpXpGQodnpAlk16TX6gxhyFCNtmUccaVqgHW7ffE15AurG2vIg==\r\nage: 258577\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":11208,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"aad65a4760fb79eefd3622ccc51f4fe9","sha1":"d8a44b2b92fda32baf92fa104af6f1044b2970a4","sha256":"975944fa16a03059c4ea28b00f928c71640b3d217ea16fe226a327818262ec4d","sha512":"b10ba97790dd75cdea553308fc7ab219d33832306ace7a6b0643c261c712cc98d78ba13fa989a4989fe0a8d8a1e0ba7811b1313a019fa39eeccab2f000abd439","ssdeep":"192:+T1LYNMtKwjv/iNZ2kcjd/rdhXgNSel/lWPgYBQk/FjSN:2YNg7jHieZ/x4ugYFje","tlshash":"af32bf74cf468260cc26c3341cd07fa4a0b7afb4d7b16397f64969148542680ff9a4a9","first_seen":"2026-03-21T17:37:13.761418Z","last_seen":"2026-06-04T18:55:38.941194Z","times_seen":43,"resource_available":false,"data":null}},"time_used":77,"timings":{"blocked":16,"dns":3,"connect":9,"send":0,"wait":32,"receive":0,"ssl":13},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/transform/a29a7e35-3295-45f8-98a7-822f6bb447ce/Chile-celebrate-v-Mexico-2016-Copa-America-Centenario?focuspoint=0.45,0.2\u0026io=transform:fill,aspectratio:1x1,width:1536\u0026quality=75","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.839Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /transform/a29a7e35-3295-45f8-98a7-822f6bb447ce/Chile-celebrate-v-Mexico-2016-Copa-America-Centenario?focuspoint=0.45,0.2\u0026io=transform:fill,aspectratio:1x1,width:1536\u0026quality=75 HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 124924\r\ndate: Mon, 01 Jun 2026 20:35:37 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=15552000\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:a29a7e35-3295-45f8-98a7-822f6bb447ce\r\ncontent-disposition: inline; filename=\"Chile-celebrate-v-Mexico-2016-Copa-America-Centenario.avif\"; filename*=UTF-8''Chile-celebrate-v-Mexico-2016-Copa-America-Centenario.avif\r\nx-api-correlation-id: c77f5941-9898-6bb8-f0d9-053ed43dd7eb\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: z3izIdqo4IAbqeJZKgY0T7Twf8Z8Lj3oa3kJjx7fy9YK6GTgH5sIhw==\r\nage: 215\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":124924,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"0a499e2297a9fa73e565fb1daa4b1702","sha1":"dea31c36f17ce0001aabff6326056699e5efa57f","sha256":"eca4545cb1ba2716338310cc57d4735002baa6830c99dccd3ef0f38af8b7ddd4","sha512":"8f6dc7e3b3e2c8794faf7eaaa1927ee40cfce3778679b35b6ceabbab1cd2dc872ad8b4f21ae9dd9f029855a656521897a78098e5a0ee653481f092ade5840d8c","ssdeep":"3072:qpi1du9SI7FkVpPxwoYn8A6WqQxrFQbxnFwG0G:qXNkVppwh8DUQNn10G","tlshash":"9dc31256c6837f50f9e9e2bc18e1be389c79a52b8851ee401779bc2083d49745d173c8","first_seen":"2026-05-29T20:50:08.646614Z","last_seen":"2026-06-01T20:39:41.089235Z","times_seen":5,"resource_available":false,"data":null}},"time_used":44,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":41,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/transform/5a641907-ffd2-47d0-b51c-be37ec2f0863/Lionel-Messi-in-action-for-Argentina-against-the-Netherlands-in-Frankfurt-in-Group-C-of-the-2006-FIFA-World-Cup-Germany?focuspoint=0.49,0.41\u0026io=transform:fill,aspectratio:4x3,width:960\u0026quality=75","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.845Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /transform/5a641907-ffd2-47d0-b51c-be37ec2f0863/Lionel-Messi-in-action-for-Argentina-against-the-Netherlands-in-Frankfurt-in-Group-C-of-the-2006-FIFA-World-Cup-Germany?focuspoint=0.49,0.41\u0026io=transform:fill,aspectratio:4x3,width:960\u0026quality=75 HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 26205\r\ndate: Mon, 01 Jun 2026 20:35:37 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=15552000\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:5a641907-ffd2-47d0-b51c-be37ec2f0863\r\ncontent-disposition: inline; filename=\"Lionel-Messi-in-action-for-Argentina-against-the-Netherlands-in-Frankfurt-in-Group-C-of-the-2006-FIFA-World-Cup-Germany.avif\"; filename*=UTF-8''Lionel-Messi-in-action-for-Argentina-against-the-Netherlands-in-Frankfurt-in-Group-C-of-the-2006-FIFA-World-Cup-Germany.avif\r\nx-api-correlation-id: 4673291e-b42d-678f-b06f-fa759e219997\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: O1_2ybDlIkymd3alzcRUfl4bo_vducXvFlGePBb_ip0kSp6nk2h_VA==\r\nage: 215\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":26205,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"8070707943c49c819b0ec9b26f08cab2","sha1":"220a666b4b770aecb1c4b0eefc0c58bc13474aa1","sha256":"98f3fd5e8d668114fd1842fc46ff5a2da33ad144130aa70aaa4fdbed828d2c44","sha512":"d75ff808f5630206bc858fe6c40969387b1e4ca143b7c8f1da443814b43d740b3d6a1cbb75aa92917384cfb830f4c458a878ace32d600a16e7cef48732a426a8","ssdeep":"384:JYNg7jwGR2uc5dfAaXO+VuUHthh7pZY5TSfj0wxUiG9VX4WOp2+jueuu+LkD35:JYydAuUdIgOAQ5+fj0lhOEkuuw835","tlshash":"f4c2e17fa79a270ff81640b4dcf13554f166b73183ab16c88848b125caa43f93f9d919","first_seen":"2026-05-29T20:50:08.686612Z","last_seen":"2026-06-01T20:39:41.090033Z","times_seen":5,"resource_available":false,"data":null}},"time_used":110,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":42,"receive":68,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/transform/af068dce-7b46-4332-b3a1-4afb5d4d9915/Hyundai-Fifa_1x1_EN?focuspoint=0.48,0.14\u0026io=transform:fill,aspectratio:1x1,width:1536\u0026quality=75","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.844Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /transform/af068dce-7b46-4332-b3a1-4afb5d4d9915/Hyundai-Fifa_1x1_EN?focuspoint=0.48,0.14\u0026io=transform:fill,aspectratio:1x1,width:1536\u0026quality=75 HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 72496\r\ndate: Mon, 01 Jun 2026 20:32:21 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=15552000\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:af068dce-7b46-4332-b3a1-4afb5d4d9915\r\ncontent-disposition: inline; filename=\"Hyundai-Fifa_1x1_EN.avif\"; filename*=UTF-8''Hyundai-Fifa_1x1_EN.avif\r\nx-api-correlation-id: 41ff2201-78fa-e271-7c44-9b6eacf8e328\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: OdlOhJh9jlc3yFb5fcOGBtSvmP1io5DnAlOktnt5_s9olcuYTK3mIA==\r\nage: 411\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":72496,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"40a9a079359530f49fa422ba1c5b4bc8","sha1":"1bff2a19b505c2f63ef760a37cc885bc029933d1","sha256":"c76c9e7199aad900e6c6abac5b82dce18a31a790922d841fe738351a2b964100","sha512":"6415262aa6c3cace32f486416fff14ff03863e6adce88f602bcb87ceddd76fcba426f27d6c613f293c51ee0481ca9efed2491ad9da37da5252ce76eaa8a388fe","ssdeep":"1536:WiacFC52jGhclZ7V/54Qu+qGQ1ckR1FqJ4KJ3EJEIzZKc:Wiac8cScl//54h+EzsJ4KJ06IdKc","tlshash":"dc6302349306ce25e24eee7c0698ab9cf6520d6dae3c324381705f15cd99171db2e0b6","first_seen":"2026-03-21T17:37:13.745674Z","last_seen":"2026-06-04T17:47:29.210824Z","times_seen":13,"resource_available":false,"data":null}},"time_used":44,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":42,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/layui/layui/css/modules/laydate/default/laydate.css?v=5.3.1","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.895Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /layui/layui/css/modules/laydate/default/laydate.css?v=5.3.1 HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"696ed7f6-1e6b\"\r\nexpires: Tue, 02 Jun 2026 08:39:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":7787,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (7787), with no line terminators","md5":"965ecf4e5b007d28c7813d295310c9f8","sha1":"85850be545bf1b7e5856988633b40184cd776449","sha256":"68e2983e63097dc51336bd69da10365ce29d723d7dfdab3796a29bcfe5aaa335","sha512":"e518324733dd67b1a5c83b5a540b152cecf234d6f4ee5cfc7955479c048d944e95d52f2de03853e58e5b25846d0142cd1d53b58b907551e5a1d2597aff5491d8","ssdeep":"96:Z8Phi4ijCvjG4J7veMcziz6hvVVbmLk58sBE2ru3B:e5fyCLG6WdiKVjfBE2rux","tlshash":"01f1ed71b0542cd4712bc322b4a87dbfaef8dc02caa3165ce5b8621b45c25b7a57d34b","first_seen":"2023-04-07T21:52:09Z","last_seen":"2026-06-04T18:55:38.972151Z","times_seen":498,"resource_available":false,"data":null}},"time_used":149,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":149,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/m/53802ccbec21d06c/original/p26-grid-hou.avif","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/fifa/host.html?id=123","date":"2026-06-01T20:39:13.633Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /m/53802ccbec21d06c/original/p26-grid-hou.avif HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/octet-stream\r\ncontent-length: 126104\r\ndate: Mon, 01 Jun 2026 04:45:20 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=86400, stale-while-revalidate=600, stale-if-error=3600\r\ncontent-disposition: inline; filename=\"p26-grid-hou.avif\"; filename*=UTF-8''p26-grid-hou.avif\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:5b4f2768-7f62-438c-8274-0b2f4fb3065e\r\nx-robots-tag: none\r\nx-api-correlation-id: ae89a32a-298d-edc8-52fb-e26702046be1\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: 9i6KfzSFyplP6dSywEmSqvu3OK7fANiMy9NK2k7s5t7zKJuJNVKTvA==\r\nage: 57233\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":126104,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image Sequence","md5":"a9cd663effb3170f22c2e36722b95669","sha1":"cf6529e61b5ae19d0935a81363ef1056d4766212","sha256":"03443236bc8b244a576f405a7a8eeeb1e18922a33fb6a74303dc6c79b960b382","sha512":"056eda30969b03bc80676df6c84e54efd213b001a1e4e71c2615eaadd48eff646b02295a1da559f29bfcd63bf319316b7d81284e923a458d4f03a22301e70165","ssdeep":"3072:n64f2zVPvZpO0xkK9Mjl6EnydI38d+0Xx:6fpOoE8u3G+0B","tlshash":"48c312b9f5a851adf2d5e53ea4c97c346d5de8e08438bac7965433acda4c04c0ee8e4c","first_seen":"2026-03-21T17:37:13.689414Z","last_seen":"2026-06-04T18:55:38.998988Z","times_seen":44,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/media/poppins-regular.8c1b062fe68a9f24ad7a.ttf","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:14.177Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /media/poppins-regular.8c1b062fe68a9f24ad7a.ttf HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/fifa/9795.1a29b9ec.chunk.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:14 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-06T23:09:59.003831Z","times_seen":523450,"resource_available":true,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":173,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/transform/0fb5716d-d157-4288-aeb0-74e0bfd5e540/FIFA_FWC26_Hospitality-Thumbnail-as-4-3?\u0026io=transform:fill,aspectratio:4x3,width:1024\u0026quality=75","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.011Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /transform/0fb5716d-d157-4288-aeb0-74e0bfd5e540/FIFA_FWC26_Hospitality-Thumbnail-as-4-3?\u0026io=transform:fill,aspectratio:4x3,width:1024\u0026quality=75 HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/avif\r\ncontent-length: 12845\r\ndate: Mon, 01 Jun 2026 20:24:44 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=15552000\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:0fb5716d-d157-4288-aeb0-74e0bfd5e540\r\ncontent-disposition: inline; filename=\"FIFA_FWC26_Hospitality-Thumbnail-as-4-3.avif\"; filename*=UTF-8''FIFA_FWC26_Hospitality-Thumbnail-as-4-3.avif\r\nx-api-correlation-id: a6e5da79-e324-8376-712a-2b02b7e41cc8\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: s_H9Brdz-QSCkkF2i0a98fJVnZ7KjOtZkjodbyZDrZ71MDtXqyOkiw==\r\nage: 868\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":12845,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"066246829ed279e90defe52f712fdfb2","sha1":"48903b2245725a950d8455618320078f1854e364","sha256":"d1e31755eac87ef67b8e69f5795025100ce3e39f81d11d72f09da5b7e15783da","sha512":"9fd74d13af23f968fa4b70cac3279342c65fc121ed53a90acd67978f56b5289fcd397982724bfdbe4269a42998f1def5bf01f37b6a2b3ecf43a66beb86c6504c","ssdeep":"192:+TZLYNMtKwjfaRDuZu5GptU5/HpFUdq5W5E0T2JNhQC6d18nIL/U1sxw:KYNg7jfzu5GpcHpw4tLCl8nIFw","tlshash":"5542cf70d7eae242e12bd43845e91f5230a53632e3a74d81b42ce53816b83f1ce8f12e","first_seen":"2026-03-21T17:37:13.588306Z","last_seen":"2026-06-04T18:55:39.015975Z","times_seen":43,"resource_available":false,"data":null}},"time_used":80,"timings":{"blocked":12,"dns":1,"connect":8,"send":0,"wait":35,"receive":0,"ssl":21},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/layui/layui/css/modules/code.css?v=3","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.905Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /layui/layui/css/modules/code.css?v=3 HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"696ed7f6-6ca\"\r\nexpires: Tue, 02 Jun 2026 08:39:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1738,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1738), with no line terminators","md5":"9e6c47f424536b7039ede0093cc8a153","sha1":"0e994c799db4c0f0de38cef2ea4bda958813cf87","sha256":"e5fa94378e76c854bbf3572f9e090f1fa5d8260c3e93d8a864a74941b540034e","sha512":"c241bde34d90c8c885cddc38ade08df2394dabb2056b7af4419ce3e5b4effde619bd6f8a0719f3cebfef80b9bb26bcd9b94ad6af83204cd783f244fb73da2e3d","ssdeep":"","tlshash":"3c31483d5391212c390bf251b4eeacbc623c72c2a9e60e58ef5167e7d581c54083674f","first_seen":"2023-04-07T21:52:09Z","last_seen":"2026-06-04T18:55:38.944685Z","times_seen":539,"resource_available":false,"data":null}},"time_used":148,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":148,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/1338.158b3ce0.chunk.css","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:11.994Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /fifa/1338.158b3ce0.chunk.css HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"696ed7f6-ccc\"\r\nexpires: Tue, 02 Jun 2026 08:39:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3276,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (3276), with no line terminators","md5":"d56a103f26b81a0cfe445076c7f54884","sha1":"489f19e22b7ff64ce68d1517e648ddd23312f5a4","sha256":"afb20299c3525cd8d4f903ed2af73648b1a1dfca17bde8807c347a8b797e1fac","sha512":"13a342ac19ca22a8b69d4b1c0e7e82e0ca85dad45850c7d4603b8b362c6ac2dbec0d7630056c65e4c783c2796d56eb46f83d838292d0eec8010891fbcd8dbd51","ssdeep":"","tlshash":"ee61efb557ec27e4fafb8068a7887a9996a5cc07ee07c8ed7012a70c87c23b10552759","first_seen":"2026-03-21T17:37:13.672419Z","last_seen":"2026-06-04T18:55:39.005343Z","times_seen":45,"resource_available":false,"data":null}},"time_used":452,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":452,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/media/FIFASans-Regular.a1b09a8bab345645c480.ttf","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.925Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /media/FIFASans-Regular.a1b09a8bab345645c480.ttf HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/fifa/9795.1a29b9ec.chunk.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:13 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-06T23:09:59.003831Z","times_seen":523450,"resource_available":true,"data":null}},"time_used":176,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"public.flourish.studio/fonts/c40dc338-1e11-4bfa-b656-419eb2c70122/stylesheet.css","fqdn":"public.flourish.studio","domain":"flourish.studio","tld":"studio"},"ip":{"addr":"104.18.32.174","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fifa.gold/fifa/host.html?id=123","date":"2026-06-01T20:39:13.068Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"public.flourish.studio","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 30 Apr 2026 20:30:38 GMT","end":"Wed, 29 Jul 2026 21:30:35 GMT"},"fingerprint":{"sha1":"71:C2:37:69:32:F2:09:94:A5:4F:05:6B:18:65:61:6C:1C:E9:85:D2","sha256":"3B:AD:76:DE:E8:08:BA:F7:11:26:BF:6C:F7:1E:5E:2A:7A:34:8A:67:95:C9:A3:72:AD:D4:9D:A5:C2:BF:35:49"}}},"request":{"raw":"GET /fonts/c40dc338-1e11-4bfa-b656-419eb2c70122/stylesheet.css HTTP/1.1\r\nHost: public.flourish.studio\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 01 Jun 2026 20:39:13 GMT\r\ncontent-type: text/css\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: POST, GET, HEAD, PUT\r\naccess-control-max-age: 3000\r\ncache-control: public, max-age=31536000\r\nlast-modified: Tue, 11 Feb 2025 13:51:32 GMT\r\nx-amz-version-id: iHopubIARVra.k9RM6FEFiHOYLupV2Mu\r\netag: W/\"20db0d37b13f225b78976a0697f42207\"\r\nserver: cloudflare\r\ncontent-encoding: gzip\r\nvary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 8ea9a6eb93f7fd49bf84cfddbbf8b7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: FRA56-P15\r\nx-amz-cf-id: Qa39ipD3UTnCRcXXcBpIsts8VB3k7nPllHz-Quoh0Vez407MlePUvw==\r\nage: 1719322\r\nexpires: Tue, 01 Jun 2027 20:39:13 GMT\r\ncf-cache-status: HIT\r\ncf-ray: a05106c299831525-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1844,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"20db0d37b13f225b78976a0697f42207","sha1":"deb77a92f42b5c8ba9a2390c00b7f68b65b1911f","sha256":"3714a26f2aad95a2e18996a5e71756d7b43018f695f732aa3fc6972d1bd8ec4b","sha512":"c95ac47541682db48118756b60d0f3226d5850d7c53c80d7526e66ed74c08fc9decc27e5899c5dd2da45e172a78fddf127fa2ee3e800b2bd2f6765309a0a04cb","ssdeep":"","tlshash":"5931e0a008ebb801f7161c4e33cfdb011a8f243b5101d4293b7e2d00afa7a284370b5d","first_seen":"2026-03-21T17:37:13.59297Z","last_seen":"2026-06-04T18:55:38.895209Z","times_seen":45,"resource_available":false,"data":null}},"time_used":37,"timings":{"blocked":-1,"dns":4,"connect":1,"send":0,"wait":7,"receive":0,"ssl":21},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/m/681a0ca7f3290bb1/webimage-fifa_fp_visa_dbgr.png","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/fifa/logos.html","date":"2026-06-01T20:39:13.158Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /m/681a0ca7f3290bb1/webimage-fifa_fp_visa_dbgr.png HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 5152\r\ndate: Mon, 01 Jun 2026 06:03:53 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=86400, stale-while-revalidate=600, stale-if-error=3600\r\ncontent-disposition: inline; filename=\"fifa_fp_visa_dbgr.png\"; filename*=UTF-8''fifa_fp_visa_dbgr.png\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:cd2a1abe-c351-4fdd-b1da-580da377b1e3\r\nx-robots-tag: none\r\nx-api-correlation-id: 4a2df31f-6869-bd9b-8c0c-836e91878ccb\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: E0sWSNQAvF3h7jQQcGR9qDQfIl3Scq8ct0_Q--tvVfpnL1gmGFlTwg==\r\nage: 52520\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":5152,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 358 x 200, 8-bit colormap, non-interlaced","md5":"ab6946fe4b73c87c9aaebce22e63c193","sha1":"cd67ae4770a7395fc94251a7e15696c1d81054d3","sha256":"581c2b08d9f4de908aaebb52c2b4effdcbd6f2786bba0aa1d61ba609a04f7d51","sha512":"b577cf0f218fe1fbf6e9f3a22dcefa1b023dadc185e0472dae2c82560faf2eb9e8a2cfa9f0edbfc39f3a2129cd407dd5f305d02f91d9f9c1e4aca3d91238c3ab","ssdeep":"96:eBggOlOiRYFl+m/vDKBz8Uh7VIEy0WqT6dH4I3Sr7nqDddAsBG+xVB:K7OwiRYFTvD4hhUtqAYI8Lh+HB","tlshash":"e4b18e83e18f011df4af1a99c991bff22aa50fadef5e1732a4f5f2517361d141e19120","first_seen":"2026-05-29T20:50:08.627337Z","last_seen":"2026-06-04T18:55:39.004791Z","times_seen":37,"resource_available":false,"data":null}},"time_used":20,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/9795.1a29b9ec.chunk.css","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:11.996Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /fifa/9795.1a29b9ec.chunk.css HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"696ed7f6-7d06\"\r\nexpires: Tue, 02 Jun 2026 08:39:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":32006,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (32006), with no line terminators","md5":"dd4c4a3ca48bd55b914802c400d5cc2a","sha1":"2a879a08d4a127ea2d56498a2f4a63f56afe427c","sha256":"83d48101321fd7a785ac6c59dbdb7da581348ec94badf76611e597c24b7e25b2","sha512":"effbb718e5adf88580fc1948945a8a375338baa622b943710e4cdb4362459bc4c45e9da7bd794b31ea84c5a35f5d59a25808c1efa5822180a3f4ae4b0604ef1b","ssdeep":"192:uJwuLjI72H+WeOxm4T86A3+AAnWaX0no1feqJ2wYUlUBzNs5ygpyLyLo4Y7iHkY6:oDAnZY3uBcDIbyaDprkb9U5","tlshash":"11e202279356b208f1a746a2313eefa5ef080c1ea52fe174ecd35e8674d925b0a1774c","first_seen":"2026-03-21T17:37:13.747724Z","last_seen":"2026-06-04T18:55:38.912345Z","times_seen":43,"resource_available":false,"data":null}},"time_used":450,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":450,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/m/2af08fef5011c616/webimage-fifa_fp_adidas-co_dbgr.png","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/fifa/logos.html","date":"2026-06-01T20:39:13.135Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /m/2af08fef5011c616/webimage-fifa_fp_adidas-co_dbgr.png HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 3587\r\ndate: Mon, 01 Jun 2026 04:26:16 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=86400, stale-while-revalidate=600, stale-if-error=3600\r\ncontent-disposition: inline; filename=\"fifa_fp_adidas-co_dbgr.png\"; filename*=UTF-8''fifa_fp_adidas-co_dbgr.png\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:1068dee0-1ec8-4767-adc6-5cdca09aa212\r\nx-robots-tag: none\r\nx-api-correlation-id: 8a7c3bd1-21ad-8bda-93f9-55057be7caa7\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: Ht9HassOf2u_x7BY1uCJ_98mnt2bOMigEzx8mdErj5Hq84NQnvmXoA==\r\nage: 58377\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3587,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 358 x 200, 8-bit colormap, non-interlaced","md5":"b8f3bd9110ce422da15b8b5f3366affc","sha1":"ffdc4d5af4cd1fa5cc3ddd40ad493217d0ea5d98","sha256":"5803851fdccd3589344dd8318ade36bd6e8fdae7683f20af75daf6f8188c77cf","sha512":"dba192817610c88fda930121ed99f513ae64d6773bef47300de25c421f2e27997100df0e172c55ec23478e95c2b1670e747e4c0c378e5742b85b051f675b2713","ssdeep":"","tlshash":"5a714c501421dee0ee21d133623fcaa88937845b0d47d9e8a453f092446ff77a28c172","first_seen":"2026-05-29T20:50:08.620307Z","last_seen":"2026-06-04T18:55:38.89425Z","times_seen":37,"resource_available":false,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/media/poppins-500.323014b9ce03a905066b.woff2","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:13.421Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /media/poppins-500.323014b9ce03a905066b.woff2 HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/fifa/main.c56d670b.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:13 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-06T23:09:59.003831Z","times_seen":523450,"resource_available":true,"data":null}},"time_used":235,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":235,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/4785.5c762ff9.chunk.css","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:11.976Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /fifa/4785.5c762ff9.chunk.css HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"696ed7f6-3b46\"\r\nexpires: Tue, 02 Jun 2026 08:39:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":15174,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (15174), with no line terminators","md5":"707e8d842e1894c491ad13b3672e1607","sha1":"266724bca6b65efe9a9d987879bc374fde78db94","sha256":"3de30ccb1a203f50e24f0b406c9ceb5c6fefaee24cb3b155aa0bc6b82279100a","sha512":"c67a80c2ec474624ccb2e43ca760dec3abe1d512c535aa167f98b7435f8f26f71c8a986ffe5620b2ea8e0f4a4c21115b400abadd2619eceda66d247dbad5a68a","ssdeep":"192:EnPHDZIBq6cseTVMSvGok+cs7csRsNpCvSTIlOv32caicadqca+:EP1IBzle5l7lR4+3i3M3+","tlshash":"8262ee193f0574a9a817063b745321886b3c9c76db37d93eb0fb7bac17a2646052bc8d","first_seen":"2025-06-13T20:56:07.30589Z","last_seen":"2026-06-04T18:55:38.959558Z","times_seen":50,"resource_available":false,"data":null}},"time_used":458,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":458,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/fifa/common_main.js","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:12.039Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /fifa/common_main.js HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:12 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 20 Jan 2026 01:18:46 GMT\r\nvary: Accept-Encoding\r\netag: W/\"696ed7f6-2e42\"\r\nexpires: Tue, 02 Jun 2026 08:39:12 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11842,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"a30026102d2b82e400b848316ab3e6fd","sha1":"5cd6b45b058e10336bc0fb3f17f17c14c6da9953","sha256":"88c17f68d793079228a685f8217fae95d6df28f2efa92eb3654c0d847386dc55","sha512":"c909e9143e165bbf6e1d11476b896fa3a486098f19dcaeb70c916c30cf16b874c91579939cc64437ef987998073e417acd9fa262b8a2ea6700d4efe818827dc8","ssdeep":"192:RXGwG1iHWTcimpd3ujzO2UfUmURI9jp2Ea50zKDJ0zn9tQte0:RDWmiAlQCWRNE9tQp","tlshash":"ef325128b4f311b4107faa3a4b5f6d04389699234607df04f90cfae90fd565a47eab9c","first_seen":"2026-03-21T17:37:13.615233Z","last_seen":"2026-06-04T18:55:38.891723Z","times_seen":43,"resource_available":true,"data":null}},"time_used":385,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":385,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/m/3dd0a43346075c17/original/p26-grid-atl.avif","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/fifa/host.html?id=123","date":"2026-06-01T20:39:13.612Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /m/3dd0a43346075c17/original/p26-grid-atl.avif HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/octet-stream\r\ncontent-length: 71303\r\ndate: Mon, 01 Jun 2026 03:35:56 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=86400, stale-while-revalidate=600, stale-if-error=3600\r\ncontent-disposition: inline; filename=\"p26-grid-atl.avif\"; filename*=UTF-8''p26-grid-atl.avif\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:0d1c99a4-9940-45c6-8a9f-288a36596776\r\nx-robots-tag: none\r\nx-api-correlation-id: bd543187-df1a-978c-9788-2cc403d53bb8\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: RMDXbV8NcGj61pI0-BBmbLFFCiLirsbukOLEPhIagesO5XfrsC697A==\r\nage: 61397\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":71303,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image Sequence","md5":"5aa82ee7bf501e513d501edd51865ec1","sha1":"f912065aa0385c30f2623de75b98995198864857","sha256":"e5326d94fd6823aa47cb2f604d2e8bbdefecc86ea9bd6768197fb7f7363136c4","sha512":"4b41aa416eaff1adfcd931d9478f6f2e0c02593e644e12ae4816682a8ec94ed0ad08896abc371b939e615bb29dc09c23e3a1b90fff38b509e3401f8fad9d6b2b","ssdeep":"1536:szZqXGAAd9zyaqYBmoHj4vx9QbhrrS5/YEnY7LuUbpwa:sz0AzCYBLCx9w4Y8CLrb6a","tlshash":"6163f19dc75525f2f4dc2939c27583f2cbc6ba516a9a233c93d361206c82dc1eaca52d","first_seen":"2026-03-21T17:37:13.591235Z","last_seen":"2026-06-04T18:55:38.994649Z","times_seen":44,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fifa.gold/media/poppins-500.655c38fc055e06d4ea24.ttf","fqdn":"fifa.gold","domain":"fifa.gold","tld":"gold"},"ip":{"addr":"104.225.235.49","port":443,"asn":25820,"as":"IT7NET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://fifa.gold/en/tournaments/mens/worldcup/canadamexicousa2026","date":"2026-06-01T20:39:14.198Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fifa.center","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 21 May 2026 06:00:57 GMT","end":"Wed, 19 Aug 2026 06:00:56 GMT"},"fingerprint":{"sha1":"04:C9:E2:A5:DE:2C:5B:55:8C:E9:1A:C4:D4:87:31:DF:AD:6A:4B:05","sha256":"F9:17:C3:29:1A:71:03:A3:9E:5B:30:83:19:9A:54:ED:9D:32:AE:D8:AC:1D:C5:05:90:25:78:8C:25:49:E8:F6"}}},"request":{"raw":"GET /media/poppins-500.655c38fc055e06d4ea24.ttf HTTP/1.1\r\nHost: fifa.gold\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/fifa/main.c56d670b.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Mon, 01 Jun 2026 20:39:14 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-06T23:09:59.003831Z","times_seen":523450,"resource_available":true,"data":null}},"time_used":177,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":177,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"fifa.gold","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"public.flourish.studio/fonts/c40dc338-1e11-4bfa-b656-419eb2c70122/FIFASans-Bold.woff2","fqdn":"public.flourish.studio","domain":"flourish.studio","tld":"studio"},"ip":{"addr":"104.18.32.174","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://fifa.gold/fifa/host.html?id=123","date":"2026-06-01T20:39:13.448Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"public.flourish.studio","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 30 Apr 2026 20:30:38 GMT","end":"Wed, 29 Jul 2026 21:30:35 GMT"},"fingerprint":{"sha1":"71:C2:37:69:32:F2:09:94:A5:4F:05:6B:18:65:61:6C:1C:E9:85:D2","sha256":"3B:AD:76:DE:E8:08:BA:F7:11:26:BF:6C:F7:1E:5E:2A:7A:34:8A:67:95:C9:A3:72:AD:D4:9D:A5:C2:BF:35:49"}}},"request":{"raw":"GET /fonts/c40dc338-1e11-4bfa-b656-419eb2c70122/FIFASans-Bold.woff2 HTTP/1.1\r\nHost: public.flourish.studio\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://fifa.gold\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://public.flourish.studio/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 01 Jun 2026 20:39:13 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 91196\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: POST, GET, HEAD, PUT\r\naccess-control-max-age: 3000\r\ncache-control: public, max-age=31536000\r\nlast-modified: Tue, 11 Feb 2025 13:52:10 GMT\r\nx-amz-version-id: M04E6.r.SLNQtex6MKH5d8qeK7tb2U1D\r\netag: \"19110eb420ae28b2d54e4e757306d691\"\r\nserver: cloudflare\r\nvary: Access-Control-Request-Headers,Access-Control-Request-Method\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 2ce2e2dbbabc50ee771ee7128c823f30.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: FRA56-P15\r\nx-amz-cf-id: NLXNI67uMePpoKxYPcxgi2GaE8ghAHGh33k-A723Yu6ohLbK-UmXzA==\r\naccept-ranges: bytes\r\nage: 494721\r\nexpires: Tue, 01 Jun 2027 20:39:13 GMT\r\ncf-cache-status: HIT\r\ncf-ray: a05106c50bed1525-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":91196,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 91196, version 1.0","md5":"19110eb420ae28b2d54e4e757306d691","sha1":"4100f2666f21f67f7f66ab666e78f1c9a816de6d","sha256":"1cf974a4ffa46c7b13ad82358164bbf65848db3017726a9813d8819ef3cc402a","sha512":"83867d2abf3f91879930d195cd69acc5cdeef61c5aa69a101c93b3df90f8dbbcb61364a9e2b53fa785d863358e2b9c0cbee3354120806e52ccd608f60fbc2e73","ssdeep":"1536:G4NoGv2VshFn8XXwnKJDFm6QrrPfEVCMWphRWGGChhG2W/Y7EtQSpI56eehBfUk:G3G+OT8XXwnIFErPfEwMWpQCnUdDfd","tlshash":"4e931295bba6baa87fd44c6dc00af4cd8a078c7b6370192150c6721871696eea38f5c7","first_seen":"2026-03-21T17:37:13.632907Z","last_seen":"2026-06-04T18:55:38.974889Z","times_seen":45,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":7,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"digitalhub.fifa.com/m/32a3a79dffac486b/original/p26-grid-mex.avif","fqdn":"digitalhub.fifa.com","domain":"fifa.com","tld":"com"},"ip":{"addr":"13.249.8.48","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fifa.gold/fifa/host.html?id=123","date":"2026-06-01T20:39:13.651Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"digitalhub.fifa.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 06 May 2026 00:00:00 GMT","end":"Thu, 19 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"AA:49:8C:0C:64:D1:DE:A2:25:9D:D9:B0:9A:F0:A8:C3:92:0C:19:E7","sha256":"DD:30:22:1B:66:15:FE:B4:A8:DE:80:D3:58:55:86:C4:D4:82:C0:FF:81:3F:C5:D8:FF:67:85:DF:2D:58:64:F2"}}},"request":{"raw":"GET /m/32a3a79dffac486b/original/p26-grid-mex.avif HTTP/1.1\r\nHost: digitalhub.fifa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fifa.gold/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/octet-stream\r\ncontent-length: 97967\r\ndate: Mon, 01 Jun 2026 03:24:43 GMT\r\npermissions-policy: camera=(), geolocation=(), microphone=()\r\nserver: nginx\r\ncache-control: public, max-age=900, s-maxage=86400, stale-while-revalidate=600, stale-if-error=3600\r\ncontent-disposition: inline; filename=\"p26-grid-mex.avif\"; filename*=UTF-8''p26-grid-mex.avif\r\naccess-control-allow-origin: *\r\namzn-cache-tag: asset:c186dfdf-431c-4c4b-9624-234539f07032\r\nx-robots-tag: none\r\nx-api-correlation-id: 80c10564-bd3c-5170-a89c-58f113bdbde7\r\ncross-origin-resource-policy: cross-origin\r\nstrict-transport-security: max-age=63072000; includeSubdomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 d0411aee07cb02467c92636bd2065412.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P3\r\nx-amz-cf-id: -1i7Ndkjy1JZXb2EL7gDWqZymppRy2J9RRf38cW6gT5YciZkV2juDQ==\r\nage: 62070\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":97967,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image Sequence","md5":"35f3a4e5798412d160b36261a175a658","sha1":"573fd760a228551f8fa3e23d6b44cf209511798b","sha256":"c12e64e31f0cfbf37c73bf96ab76d0e55886dd97e4016a1de8ec019df7bba5c7","sha512":"87786b844a044ff60361e6a229e076dd0e229e76e1a714b9ec9aa84e9e8581bd423d56b672aaf7fcca37f702e96686c16faf343f928c42393e90faad5d5cdde5","ssdeep":"1536:oSFoAkkt4+Uf2DfqYueBLbvLqFR6JqrcZWOytYKlhQK58OKtiZ3NB/4dsHBWN:oSmlG4+Uf2DfLuaLbvLc6UrcNFqh558r","tlshash":"d4a30235a3311998de6a867cf61cb608f3079bf369e766741980134e8d136d32b253ab","first_seen":"2026-03-21T17:37:13.594436Z","last_seen":"2026-06-04T18:55:38.950945Z","times_seen":44,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/opensans/v44/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4gaVI.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://fifa.gold/fifa/logos.html","date":"2026-06-01T20:39:13.725Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:53:13 GMT","end":"Thu, 30 Jul 2026 15:53:12 GMT"},"fingerprint":{"sha1":"6C:B9:FE:19:9C:7C:AA:5D:D2:39:3A:16:2C:50:FB:C8:59:C8:CC:A8","sha256":"FC:4C:0C:6E:AB:D1:82:30:1F:A9:46:DF:FA:38:02:9F:06:56:FF:98:E0:8D:AB:9A:26:C3:2A:97:C5:CF:A6:1C"}}},"request":{"raw":"GET /s/opensans/v44/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4gaVI.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://fifa.gold\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 18620\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sun, 31 May 2026 10:15:01 GMT\r\nexpires: Mon, 31 May 2027 10:15:01 GMT\r\ncache-control: public, max-age=31536000\r\nage: 123852\r\nlast-modified: Mon, 15 Sep 2025 16:29:39 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":18620,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 18620, version 1.0","md5":"a6d99d784ef0c7848fcdcdf7bfc5995a","sha1":"85e192c12df96cc67090c4fdcb0308e64e37bca1","sha256":"a97a6ed7ef9f75c495e9224f5c59b2271d826e4a4345b738b390b0c76cc9f412","sha512":"f65fd5eda1abe29e2a3beac7729c89c556f626ae575ce7b40a0ed282260a6b04f71307b75f34cc0e187fd84ce29fd61d597859a3150ac2ce8d0b0b27387e2bf4","ssdeep":"384:ev5Nh7qVi6ikDYfnp2nze/SOzVJy24OOz3zsD47TlqEfxDn9Uyc8Tz:shx6iIW2qaO/4OI3z97TMEfl3z","tlshash":"b182d1932ffdae10c441a27be56786dc92f5d6f42fd68ab8c01441806663ffc76c1992","first_seen":"2025-09-17T20:12:18.306005Z","last_seen":"2026-06-06T23:27:16.553664Z","times_seen":2149,"resource_available":false,"data":null}},"time_used":158,"timings":{"blocked":67,"dns":1,"connect":15,"send":0,"wait":16,"receive":5,"ssl":52},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}