blog.ffps.org/well-known/pi-foblineca/index.php?previewfile=3mail@b.c/
151.101.2.159301 Moved Permanently 0 B URL User Request GET HTTP/2 blog.ffps.org/well-known/pi-foblineca/index.php?previewfile=3mail@b.c/
IP 151.101.2.159:443
Certificate IssuerLet's Encrypt
Subjectblog.ffps.org
FingerprintE3:60:F3:28:48:03:D2:A7:DA:FA:1A:F1:52:63:88:AA:F5:A8:27:FD
ValidityThu, 20 Apr 2023 20:12:07 GMT - Wed, 19 Jul 2023 20:12:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /well-known/pi-foblineca/index.php?previewfile=3mail@b.c/ HTTP/1.1
Host: blog.ffps.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
x-redirect-by: WordPress
x-xss-protection: 1
x-fw-hash: ina5c3kkg9
x-fw-dynamic: TRUE
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
cache-control: no-cache, must-revalidate, max-age=0
x-content-type-options: nosniff
x-fw-server: Flywheel/5.1.0
referrer-policy: no-referrer-when-downgrade
location: https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
server: Flywheel/5.1.0
accept-ranges: bytes
date: Wed, 07 Jun 2023 00:09:59 GMT
x-served-by: cache-bma1648-BMA, cache-bma1633-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1686096599.228226,VS0,VE613
vary: Authorization
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 0
X-Firefox-Spdy: h2
blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
151.101.2.159404 Not Found 6.0 kB URL User Request GET HTTP/2 blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
IP 151.101.2.159:443
Certificate IssuerLet's Encrypt
Subjectblog.ffps.org
FingerprintE3:60:F3:28:48:03:D2:A7:DA:FA:1A:F1:52:63:88:AA:F5:A8:27:FD
ValidityThu, 20 Apr 2023 20:12:07 GMT - Wed, 19 Jul 2023 20:12:06 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381)
Hash a10166871594ed9f18e6b48e72bd3b60
8f498a61dacb65034153bfdd60a58f00a5a5c2c3
4ecd74f206d85f1d77757b28a19e2d518f77e3699da3a11783c82209b2f10018
GET /well-known/pi-foblineca/?previewfile=3mail@b.c/ HTTP/1.1
Host: blog.ffps.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
x-xss-protection: 1
link: <https://blog.ffps.org/wp-json/>; rel="https://api.w.org/"
x-fw-hash: ina5c3kkg9
x-fw-dynamic: TRUE
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
cache-control: no-cache, must-revalidate, max-age=0
content-encoding: gzip
x-fw-server: Flywheel/5.1.0
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
server: Flywheel/5.1.0
x-cacheable: NO:Not Cacheable
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 07 Jun 2023 00:10:00 GMT
x-served-by: cache-bma1660-BMA, cache-bma1633-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1686096600.855957,VS0,VE610
vary: Accept-Encoding
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 5986
X-Firefox-Spdy: h2
blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
151.101.2.159404 Not Found 162 B URL User Request GET HTTP/2 blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
IP 151.101.2.159:443
Certificate IssuerLet's Encrypt
Subjectblog.ffps.org
FingerprintE3:60:F3:28:48:03:D2:A7:DA:FA:1A:F1:52:63:88:AA:F5:A8:27:FD
ValidityThu, 20 Apr 2023 20:12:07 GMT - Wed, 19 Jul 2023 20:12:06 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /well-known/pi-foblineca/?previewfile=3mail@b.c/ HTTP/1.1
Host: blog.ffps.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Connection: keep-alive
Content-Length: 162
x-xss-protection: 1
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ina5c3kkg9
x-fw-version: 5.0.0
location: https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
content-type: text/html
x-content-type-options: nosniff
Server: Flywheel/5.1.0
Accept-Ranges: bytes
Date: Wed, 07 Jun 2023 00:10:01 GMT
X-Served-By: cache-bma1626-BMA, cache-bma1622-BMA
X-Cache: MISS, MISS
X-Cache-Hits: 0, 0
X-Timer: S1686096601.656503,VS0,VE546
Vary: Authorization
X-FW-Serve: TRUE
X-FW-Static: NO
X-FW-Type: VISIT
blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
151.101.2.159404 Not Found 6.0 kB URL User Request GET HTTP/2 blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
IP 151.101.2.159:443
Certificate IssuerLet's Encrypt
Subjectblog.ffps.org
FingerprintE3:60:F3:28:48:03:D2:A7:DA:FA:1A:F1:52:63:88:AA:F5:A8:27:FD
ValidityThu, 20 Apr 2023 20:12:07 GMT - Wed, 19 Jul 2023 20:12:06 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381)
Hash a10166871594ed9f18e6b48e72bd3b60
8f498a61dacb65034153bfdd60a58f00a5a5c2c3
4ecd74f206d85f1d77757b28a19e2d518f77e3699da3a11783c82209b2f10018
GET /well-known/pi-foblineca/?previewfile=3mail@b.c/ HTTP/1.1
Host: blog.ffps.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
x-xss-protection: 1
link: <https://blog.ffps.org/wp-json/>; rel="https://api.w.org/"
x-fw-hash: ina5c3kkg9
x-fw-dynamic: TRUE
x-fw-version: 5.0.0
content-type: text/html; charset=UTF-8
cache-control: no-cache, must-revalidate, max-age=0
content-encoding: gzip
x-fw-server: Flywheel/5.1.0
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
server: Flywheel/5.1.0
x-cacheable: NO:Not Cacheable
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 07 Jun 2023 00:10:01 GMT
x-served-by: cache-bma1660-BMA, cache-bma1633-BMA
x-cache: MISS, HIT
x-cache-hits: 0, 1
x-timer: S1686096601.216105,VS0,VE0
vary: Accept-Encoding
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 5986
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash e658f45faae0edd26f5908c922167f73
33e4e65ccf9cb9b15a7a9f5fd0083f1cebfa7064
5cc8bb25c78320b6cafdc4a6a017081a2c953cb86e1a1dc45c8f8811798adbc5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Jun 2023 00:10:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
blog.ffps.org/wp-content/themes/blank/js/ffps.js?ver=1.1
151.101.2.159200 OK 940 B URL GET HTTP/2 blog.ffps.org/wp-content/themes/blank/js/ffps.js?ver=1.1
IP 151.101.2.159:443
Requested by https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
Certificate IssuerLet's Encrypt
Subjectblog.ffps.org
FingerprintE3:60:F3:28:48:03:D2:A7:DA:FA:1A:F1:52:63:88:AA:F5:A8:27:FD
ValidityThu, 20 Apr 2023 20:12:07 GMT - Wed, 19 Jul 2023 20:12:06 GMT
Hash b6b70b58beddedc1d1b8fd5b3b2340de
b232d17fba440d2d7b82fee43bcd5018a615ba64
3cccb2202e354998bd6cbf8a48a2f4f4ba19ca4aa838060bfcc8a4847e331daf
GET /wp-content/themes/blank/js/ffps.js?ver=1.1 HTTP/1.1
Host: blog.ffps.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-xss-protection: 1
x-fw-hash: ina5c3kkg9
etag: W/"5f5000dd-b4d"
content-type: application/javascript
x-fw-version: 5.0.0
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-server: Flywheel/5.1.0
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Wed, 02 Sep 2020 20:30:21 GMT
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 07 Jun 2023 00:10:01 GMT
x-served-by: cache-bma1673-BMA, cache-bma1633-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1686096601.379527,VS0,VE155
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 940
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash e658f45faae0edd26f5908c922167f73
33e4e65ccf9cb9b15a7a9f5fd0083f1cebfa7064
5cc8bb25c78320b6cafdc4a6a017081a2c953cb86e1a1dc45c8f8811798adbc5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Jun 2023 00:10:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fco.to/Khz0j2
190.115.26.9404 Not Found 0 B IP 190.115.26.9:443
ASN #262254 DDOS-GUARD CORP.
Requested by https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
Certificate IssuerLet's Encrypt
Subjectfco.to
Fingerprint15:CF:D8:7A:93:77:17:4D:8E:3A:D6:19:CB:24:88:1E:07:1D:CB:22
ValidityThu, 11 May 2023 15:49:07 GMT - Wed, 09 Aug 2023 15:49:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /Khz0j2 HTTP/1.1
Host: fco.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.ffps.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddg1_=LY0fZjv50zD2bIfS2AVW; Domain=.fco.to; HttpOnly; Path=/; Expires=Thu, 06-Jun-2024 00:10:01 GMT
date: Wed, 07 Jun 2023 00:10:01 GMT
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
content-length: 0
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2
blog.ffps.org/wp-includes/css/classic-themes.min.css?ver=1
151.101.2.159200 OK 189 B URL GET HTTP/2 blog.ffps.org/wp-includes/css/classic-themes.min.css?ver=1
IP 151.101.2.159:443
Requested by https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
Certificate IssuerLet's Encrypt
Subjectblog.ffps.org
FingerprintE3:60:F3:28:48:03:D2:A7:DA:FA:1A:F1:52:63:88:AA:F5:A8:27:FD
ValidityThu, 20 Apr 2023 20:12:07 GMT - Wed, 19 Jul 2023 20:12:06 GMT
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: blog.ffps.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-xss-protection: 1
x-fw-hash: ina5c3kkg9
etag: W/"646b76b0-d9"
content-type: text/css
x-fw-version: 5.0.0
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-server: Flywheel/5.1.0
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Mon, 22 May 2023 14:05:36 GMT
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 07 Jun 2023 00:10:01 GMT
x-served-by: cache-bma1676-BMA, cache-bma1633-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1686096601.360498,VS0,VE546
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 189
X-Firefox-Spdy: h2
blog.ffps.org/wp-content/themes/blank/css/common.css?ver=1.0.0
151.101.2.159200 OK 4.3 kB URL GET HTTP/2 blog.ffps.org/wp-content/themes/blank/css/common.css?ver=1.0.0
IP 151.101.2.159:443
Requested by https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
Certificate IssuerLet's Encrypt
Subjectblog.ffps.org
FingerprintE3:60:F3:28:48:03:D2:A7:DA:FA:1A:F1:52:63:88:AA:F5:A8:27:FD
ValidityThu, 20 Apr 2023 20:12:07 GMT - Wed, 19 Jul 2023 20:12:06 GMT
Hash 3df11dd73009e09b31677e908fe2a3f7
b5d148f9d229cde9cdd2ccd4a39544951c5b96ec
55c0943d575ea3c8fb30c485a4a2cbb9ad20d7ad505c75f08288432cdf1cc145
GET /wp-content/themes/blank/css/common.css?ver=1.0.0 HTTP/1.1
Host: blog.ffps.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-xss-protection: 1
x-fw-hash: ina5c3kkg9
etag: W/"5f6239c3-37b2"
content-type: text/css
x-fw-version: 5.0.0
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-server: Flywheel/5.1.0
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Wed, 16 Sep 2020 16:13:55 GMT
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 07 Jun 2023 00:10:01 GMT
x-served-by: cache-bma1651-BMA, cache-bma1633-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1686096601.360460,VS0,VE552
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 4333
X-Firefox-Spdy: h2
blog.ffps.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
151.101.2.159200 OK 4.4 kB URL GET HTTP/2 blog.ffps.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 151.101.2.159:443
Requested by https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
Certificate IssuerLet's Encrypt
Subjectblog.ffps.org
FingerprintE3:60:F3:28:48:03:D2:A7:DA:FA:1A:F1:52:63:88:AA:F5:A8:27:FD
ValidityThu, 20 Apr 2023 20:12:07 GMT - Wed, 19 Jul 2023 20:12:06 GMT
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: blog.ffps.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-xss-protection: 1
x-fw-hash: ina5c3kkg9
etag: W/"646b76b0-2bd8"
content-type: application/javascript
x-fw-version: 5.0.0
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-server: Flywheel/5.1.0
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Mon, 22 May 2023 14:05:36 GMT
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 07 Jun 2023 00:10:01 GMT
x-served-by: cache-bma1631-BMA, cache-bma1633-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1686096601.374195,VS0,VE542
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 4405
X-Firefox-Spdy: h2
blog.ffps.org/wp-content/themes/blank/js/intercom.js
151.101.2.159200 OK 435 B URL GET HTTP/2 blog.ffps.org/wp-content/themes/blank/js/intercom.js
IP 151.101.2.159:443
Requested by https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
Certificate IssuerLet's Encrypt
Subjectblog.ffps.org
FingerprintE3:60:F3:28:48:03:D2:A7:DA:FA:1A:F1:52:63:88:AA:F5:A8:27:FD
ValidityThu, 20 Apr 2023 20:12:07 GMT - Wed, 19 Jul 2023 20:12:06 GMT
File type ASCII text, with very long lines (601)
Hash d6740bfffeb38ed82ac45f2bb78d39f5
fd38a96fe022fd9688b2be8e1ef14f49983e38cf
3b8803444bc0f69ccecf7e2d6753142a80b112852ae0eeabdd78336e720a89e1
GET /wp-content/themes/blank/js/intercom.js HTTP/1.1
Host: blog.ffps.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-xss-protection: 1
x-fw-hash: ina5c3kkg9
etag: W/"5f4fff7a-2f1"
content-type: application/javascript
x-fw-version: 5.0.0
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-server: Flywheel/5.1.0
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Wed, 02 Sep 2020 20:24:26 GMT
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 07 Jun 2023 00:10:01 GMT
x-served-by: cache-bma1638-BMA, cache-bma1633-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1686096601.379526,VS0,VE541
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 435
X-Firefox-Spdy: h2
blog.ffps.org/wp-content/themes/blank/images/fb.svg
151.101.2.159200 OK 456 B URL GET HTTP/2 blog.ffps.org/wp-content/themes/blank/images/fb.svg
IP 151.101.2.159:443
Requested by https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
Certificate IssuerLet's Encrypt
Subjectblog.ffps.org
FingerprintE3:60:F3:28:48:03:D2:A7:DA:FA:1A:F1:52:63:88:AA:F5:A8:27:FD
ValidityThu, 20 Apr 2023 20:12:07 GMT - Wed, 19 Jul 2023 20:12:06 GMT
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1f2b9263345ae61151a893e6126b105a
2c7a5f2010e7e6e8c40f7bdbe23a6ca415174ee6
fd446d301d9fc43eeb5097afb97614f94e02043eff638c367cc3841f8199a24a
GET /wp-content/themes/blank/images/fb.svg HTTP/1.1
Host: blog.ffps.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-fw-server: Flywheel/5.1.0
x-xss-protection: 1
x-fw-hash: ina5c3kkg9
content-encoding: gzip
content-type: image/svg+xml
cache-control: public, max-age=31536000
referrer-policy: no-referrer-when-downgrade
x-fw-version: 5.0.0
x-content-type-options: nosniff
last-modified: Thu, 04 Jun 2020 14:55:32 GMT
etag: W/"5ed90b64-295"
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 07 Jun 2023 00:10:01 GMT
x-served-by: cache-bma1646-BMA, cache-bma1633-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1686096601.377715,VS0,VE545
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
access-control-allow-origin: *
x-fw-type: VISIT
content-length: 456
X-Firefox-Spdy: h2
blog.ffps.org/wp-content/themes/blank/images/ffps_logo.jpg
151.101.2.159200 OK 5.5 kB URL GET HTTP/2 blog.ffps.org/wp-content/themes/blank/images/ffps_logo.jpg
IP 151.101.2.159:443
Requested by https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
Certificate IssuerLet's Encrypt
Subjectblog.ffps.org
FingerprintE3:60:F3:28:48:03:D2:A7:DA:FA:1A:F1:52:63:88:AA:F5:A8:27:FD
ValidityThu, 20 Apr 2023 20:12:07 GMT - Wed, 19 Jul 2023 20:12:06 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash 0f747572a9ddd75921656ce66f464a75
ba00d998e7825fd1d7144bd38a0ccf82f87bf6a0
528c87798699cdcf4d951ee0d9fdc32d5c90afb9b94e1a5d9cac7dcbfd4b4f32
GET /wp-content/themes/blank/images/ffps_logo.jpg HTTP/1.1
Host: blog.ffps.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-xss-protection: 1
x-fw-hash: ina5c3kkg9
etag: W/"5f4ffcb8-165a"
content-type: image/jpeg
x-fw-version: 5.0.0
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-server: Flywheel/5.1.0
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Wed, 02 Sep 2020 20:12:40 GMT
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 07 Jun 2023 00:10:01 GMT
x-served-by: cache-bma1670-BMA, cache-bma1633-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1686096601.379283,VS0,VE546
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 5496
X-Firefox-Spdy: h2
blog.ffps.org/wp-content/themes/blank/images/instagram-square.svg
151.101.2.159200 OK 847 B URL GET HTTP/2 blog.ffps.org/wp-content/themes/blank/images/instagram-square.svg
IP 151.101.2.159:443
Requested by https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
Certificate IssuerLet's Encrypt
Subjectblog.ffps.org
FingerprintE3:60:F3:28:48:03:D2:A7:DA:FA:1A:F1:52:63:88:AA:F5:A8:27:FD
ValidityThu, 20 Apr 2023 20:12:07 GMT - Wed, 19 Jul 2023 20:12:06 GMT
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash eeee78e96b4de78077baaa2186207861
61c40a6c27e518ff222a26805d800966e15fb3f8
515c5035f23a1ad7eb31184ba8e89f6312cbda2f91e908958bafcdb1c4742eb0
GET /wp-content/themes/blank/images/instagram-square.svg HTTP/1.1
Host: blog.ffps.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-xss-protection: 1
x-fw-hash: ina5c3kkg9
etag: W/"5ed91af7-63c"
x-fw-version: 5.0.0
content-type: image/svg+xml
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-server: Flywheel/5.1.0
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Thu, 04 Jun 2020 16:01:59 GMT
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 07 Jun 2023 00:10:01 GMT
x-served-by: cache-bma1655-BMA, cache-bma1633-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1686096601.377676,VS0,VE554
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
access-control-allow-origin: *
x-fw-type: VISIT
content-length: 847
X-Firefox-Spdy: h2
blog.ffps.org/wp-includes/js/wp-emoji-release.min.js?ver=6.1.3
151.101.2.159200 OK 5.5 kB URL GET HTTP/2 blog.ffps.org/wp-includes/js/wp-emoji-release.min.js?ver=6.1.3
IP 151.101.2.159:443
Requested by https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
Certificate IssuerLet's Encrypt
Subjectblog.ffps.org
FingerprintE3:60:F3:28:48:03:D2:A7:DA:FA:1A:F1:52:63:88:AA:F5:A8:27:FD
ValidityThu, 20 Apr 2023 20:12:07 GMT - Wed, 19 Jul 2023 20:12:06 GMT
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.3 HTTP/1.1
Host: blog.ffps.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-xss-protection: 1
x-fw-hash: ina5c3kkg9
etag: W/"646b76b0-48b9"
content-type: application/javascript
x-fw-version: 5.0.0
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-server: Flywheel/5.1.0
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Mon, 22 May 2023 14:05:36 GMT
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 07 Jun 2023 00:10:01 GMT
x-served-by: cache-bma1635-BMA, cache-bma1633-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1686096601.400281,VS0,VE544
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 5515
X-Firefox-Spdy: h2
blog.ffps.org/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
151.101.2.159200 OK 34 kB URL GET HTTP/2 blog.ffps.org/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 151.101.2.159:443
Requested by https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
Certificate IssuerLet's Encrypt
Subjectblog.ffps.org
FingerprintE3:60:F3:28:48:03:D2:A7:DA:FA:1A:F1:52:63:88:AA:F5:A8:27:FD
ValidityThu, 20 Apr 2023 20:12:07 GMT - Wed, 19 Jul 2023 20:12:06 GMT
File type ASCII text, with very long lines (65447)
Hash 17738318d61d394f1de8890d589afaec
f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3
cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: blog.ffps.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-xss-protection: 1
x-fw-hash: ina5c3kkg9
etag: W/"646b76b0-15e54"
content-type: application/javascript
x-fw-version: 5.0.0
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-server: Flywheel/5.1.0
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Mon, 22 May 2023 14:05:36 GMT
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 07 Jun 2023 00:10:02 GMT
x-served-by: cache-bma1675-BMA, cache-bma1633-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1686096601.363011,VS0,VE678
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 34161
X-Firefox-Spdy: h2
blog.ffps.org/wp-includes/css/dist/block-library/style.min.css?ver=6.1.3
151.101.2.159200 OK 15 kB URL GET HTTP/2 blog.ffps.org/wp-includes/css/dist/block-library/style.min.css?ver=6.1.3
IP 151.101.2.159:443
Requested by https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
Certificate IssuerLet's Encrypt
Subjectblog.ffps.org
FingerprintE3:60:F3:28:48:03:D2:A7:DA:FA:1A:F1:52:63:88:AA:F5:A8:27:FD
ValidityThu, 20 Apr 2023 20:12:07 GMT - Wed, 19 Jul 2023 20:12:06 GMT
File type ASCII text, with very long lines (47886)
Hash eae67119698a4c352712dd5c50e64c50
d0ab021f361a68aac49a202e642262626421e2c1
b041e7b08a99e947327a5faf96e5ab7aeef39a467c0ef2240710a19857743da3
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.3 HTTP/1.1
Host: blog.ffps.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-fw-server: Flywheel/5.1.0
x-xss-protection: 1
x-fw-hash: ina5c3kkg9
content-encoding: gzip
content-type: text/css
cache-control: public, max-age=31536000
referrer-policy: no-referrer-when-downgrade
x-fw-version: 5.0.0
x-content-type-options: nosniff
last-modified: Mon, 22 May 2023 14:05:36 GMT
etag: W/"646b76b0-1732d"
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 07 Jun 2023 00:10:02 GMT
x-served-by: cache-bma1624-BMA, cache-bma1633-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1686096601.360516,VS0,VE682
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 14933
X-Firefox-Spdy: h2
fco.to/Khz0j2
190.115.26.9404 Not Found 0 B IP 190.115.26.9:443
ASN #262254 DDOS-GUARD CORP.
Requested by https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
Certificate IssuerLet's Encrypt
Subjectfco.to
Fingerprint15:CF:D8:7A:93:77:17:4D:8E:3A:D6:19:CB:24:88:1E:07:1D:CB:22
ValidityThu, 11 May 2023 15:49:07 GMT - Wed, 09 Aug 2023 15:49:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /Khz0j2 HTTP/1.1
Host: fco.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.ffps.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddg1_=bkQn8iRJedQ0cAICbgJ6; Domain=.fco.to; HttpOnly; Path=/; Expires=Thu, 06-Jun-2024 00:10:02 GMT
date: Wed, 07 Jun 2023 00:10:02 GMT
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
content-length: 0
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 82d60e5c89d861bf88494c1b30123a7d
696454de610c86434fca82187d45b770aa712b74
1c270911b4dc1e66edab7b962f92245d40a0725385601f27a4532f216161aa6f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Jun 2023 00:10:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/bitter/v32/rax8HiqOu8IVPmn7f4xp.woff2
216.58.207.227200 OK 31 kB URL GET HTTP/2 fonts.gstatic.com/s/bitter/v32/rax8HiqOu8IVPmn7f4xp.woff2
IP 216.58.207.227:443
Requested by https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 30892, version 1.0\012- data
Hash c912960f49f3f9c15e37161e40937b44
5c27fb92ff5bd3996d00b565f259c484a2601a43
ee034a6cfa166960dac8b3faed99d2f0393468053f3e32d1c80c677d549f38a5
GET /s/bitter/v32/rax8HiqOu8IVPmn7f4xp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://blog.ffps.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30892
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Jun 2023 07:50:23 GMT
expires: Sun, 02 Jun 2024 07:50:23 GMT
cache-control: public, max-age=31536000
age: 317979
last-modified: Wed, 07 Dec 2022 17:46:21 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 82d60e5c89d861bf88494c1b30123a7d
696454de610c86434fca82187d45b770aa712b74
1c270911b4dc1e66edab7b962f92245d40a0725385601f27a4532f216161aa6f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Jun 2023 00:10:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
blog.ffps.org/wp-content/themes/blank/images/ffps_favicon_16.jpg
151.101.2.159200 OK 951 B URL GET HTTP/2 blog.ffps.org/wp-content/themes/blank/images/ffps_favicon_16.jpg
IP 151.101.2.159:443
Requested by https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
Certificate IssuerLet's Encrypt
Subjectblog.ffps.org
FingerprintE3:60:F3:28:48:03:D2:A7:DA:FA:1A:F1:52:63:88:AA:F5:A8:27:FD
ValidityThu, 20 Apr 2023 20:12:07 GMT - Wed, 19 Jul 2023 20:12:06 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=0], baseline, precision 8, 16x15, components 3\012- data
Hash 0afc94bc345ce4cc2af6b147cf83630c
c25f372a0cdcd53194c5b6684beead704705d36e
d7a870a46411bb4584622bc087ed874c8f19fa10cf179f1aebcfbd1a81ed71fa
GET /wp-content/themes/blank/images/ffps_favicon_16.jpg HTTP/1.1
Host: blog.ffps.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-xss-protection: 1
x-fw-hash: ina5c3kkg9
etag: W/"5c2fa84e-67a"
content-type: image/jpeg
x-fw-version: 5.0.0
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-server: Flywheel/5.1.0
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
last-modified: Fri, 04 Jan 2019 18:39:10 GMT
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Wed, 07 Jun 2023 00:10:02 GMT
x-served-by: cache-bma1660-BMA, cache-bma1633-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1686096602.208206,VS0,VE142
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 951
X-Firefox-Spdy: h2
widget.intercom.io/widget/xw15ha1y
54.230.111.86200 OK 2.7 kB URL GET HTTP/2 widget.intercom.io/widget/xw15ha1y
IP 54.230.111.86:443
Requested by https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
Certificate IssuerAmazon
Subject*.intercom.com
Fingerprint27:36:75:E6:21:EC:FC:7E:08:BC:C4:6B:91:C8:C1:2C:22:70:F7:34
ValidityTue, 14 Feb 2023 00:00:00 GMT - Thu, 14 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (6707), with no line terminators
Hash d29e8f751c3ab8c908f5c19157f9a083
7abe84d1938797570697362552e44e9158ae0a26
f819cd995e8ca0ba547ef71087498c7f87a44699ea383fab44ef3a3ba10aed76
GET /widget/xw15ha1y HTTP/1.1
Host: widget.intercom.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.ffps.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 2678
last-modified: Tue, 06 Jun 2023 15:53:12 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: GeiXLRCnhQxRI2FItFvo1fI9LIQZMflC
accept-ranges: bytes
server: AmazonS3
date: Tue, 06 Jun 2023 23:57:49 GMT
cache-control: max-age=900, s-maxage=900, public
etag: "a53bc6547672430a2c8dc628670d197d"
x-cache: Error from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: dhFVam6gGqiHtd0ZqaGQHpWo-FfYrrnk_V0l1Y0vI_bfIa9xfCGvxQ==
age: 735
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
js.intercomcdn.com/frame.d695317b.js
54.230.111.62200 OK 147 kB URL GET HTTP/2 js.intercomcdn.com/frame.d695317b.js
IP 54.230.111.62:443
Requested by https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
Certificate IssuerAmazon
Subject*.intercomcdn.com
FingerprintDB:6C:E3:A6:F4:D6:1C:A4:BF:10:A4:E7:D0:68:FD:26:75:25:70:F4
ValidityTue, 21 Feb 2023 00:00:00 GMT - Mon, 29 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 147 kB (147202 bytes)
Hash c8e3b2e8543bbcc8ee22e719566737eb
e7d112e9b70683f9126491f06d08c196c2e75d43
2a6918ad7323eee38a1ab90014e1cb674a513d6be0f0ce54af0f9e7838589906
GET /frame.d695317b.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.ffps.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 147202
last-modified: Tue, 06 Jun 2023 15:51:26 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: cTjVL_zRlt3H8xhoFQ1roDhm.mck7UHw
accept-ranges: bytes
server: AmazonS3
date: Tue, 06 Jun 2023 23:53:16 GMT
cache-control: max-age=31536000, s-maxage=7200, public
etag: "0e3f13f4cff5374c74f7197436551cb4"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 7mEtMj_Me29t9vBWJdyVN-x-E99pMiuFKu3_4yXLfJskibwjWItQXw==
age: 1007
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
54.230.80.227 471 B URL ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash 0e6bdbf20deb908952ff93b3b528608e
df94f38a12c1bb3419db445cd8eaf46f99a5e262
73e0c846053059b94711e68dc0310bd510c6d9611d288cc1483dcce40b172814
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Wed, 07 Jun 2023 00:10:02 GMT
Last-Modified: Tue, 06 Jun 2023 23:37:14 GMT
Server: ECAcc (bsa/EB26)
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: gRziCuLifBQsCCgxai3REyhO5HUr7jnsaRsSZqq2yiAAJwAYh2thsQ==
Age: 1968
js.intercomcdn.com/vendor.bac34dfa.js
54.230.111.62200 OK 109 kB URL GET HTTP/2 js.intercomcdn.com/vendor.bac34dfa.js
IP 54.230.111.62:443
Requested by https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
Certificate IssuerAmazon
Subject*.intercomcdn.com
FingerprintDB:6C:E3:A6:F4:D6:1C:A4:BF:10:A4:E7:D0:68:FD:26:75:25:70:F4
ValidityTue, 21 Feb 2023 00:00:00 GMT - Mon, 29 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (65463)
Size 109 kB (109366 bytes)
Hash c6a5eaad97f5aa80f9c591e9a77d506e
3e3e3fbc6ce209615535bf71eb6ac8365d212861
0c75523c94d8632fbf5ccc88cef65e3ab2deb024cf346fa55d05892219a73b32
GET /vendor.bac34dfa.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.ffps.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 109366
last-modified: Fri, 02 Jun 2023 13:52:17 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: 1MDgaW3KZrw7KS9b3dgC2OoVi9biX4G5
accept-ranges: bytes
server: AmazonS3
date: Tue, 06 Jun 2023 23:54:01 GMT
cache-control: max-age=31536000, s-maxage=7200, public
etag: "e60b589dab901e6f96929c4ed53692ca"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: OJMUTVcX-aRpH_tmPdGsJL1Id7inec5tX6mQIFWZoz1_8AkhIG7gXA==
age: 962
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
54.230.80.227 471 B URL ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 31d1823d745ff7aba566fefb07b60c9f
1f3cd224a819c50b19bcf0a2dd7f2476d7310bac
9d6de7e681c22e19626ba523ab513b8ab278f6515e7d39eda6fd14ac1a0ba724
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Wed, 07 Jun 2023 00:10:02 GMT
Last-Modified: Tue, 06 Jun 2023 23:47:19 GMT
Server: ECAcc (bsa/EA8F)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: cNY4e68cZ8K4iWrH-b4ca7z76WmkhAE121Uf8RuHkGEZhvYCQAW-EA==
Age: 1363
api-iam.intercom.io/messenger/web/ping
3.208.133.249200 OK 1.9 kB URL POST HTTP/2 api-iam.intercom.io/messenger/web/ping
IP 3.208.133.249:443
Requested by https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
Certificate IssuerAmazon
Subject*.intercom.com
Fingerprint27:36:75:E6:21:EC:FC:7E:08:BC:C4:6B:91:C8:C1:2C:22:70:F7:34
ValidityTue, 14 Feb 2023 00:00:00 GMT - Thu, 14 Mar 2024 23:59:59 GMT
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (4526), with no line terminators
Hash daac8a2adc104f49b1b287511503c584
858b035dd5aaabae9149bdfff8ab51cd0feaf9c2
6a3e42b3f8a53208275da228fbd32425c02106ef1fa2fa5943e6b626232edb2d
POST /messenger/web/ping HTTP/1.1
Host: api-iam.intercom.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 496
Origin: https://blog.ffps.org
DNT: 1
Connection: keep-alive
Referer: https://blog.ffps.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 00:10:03 GMT
content-type: application/json; charset=utf-8
status: 200 OK
cache-control: max-age=0, private, must-revalidate
access-control-allow-origin: https://blog.ffps.org
vary: Accept,Accept-Encoding
strict-transport-security: max-age=31556952; includeSubDomains; preload
x-intercom-version: 4dd77932d4dc9ec3072ef18985a95e094400003d
content-encoding: gzip
x-xss-protection: 1; mode=block
x-request-id: 000g36flnki3ckg0926g
access-control-allow-headers: Content-Type, Idempotency-Key, X-INTERCOM-APP, X-INTERCOM-PAGE-TITLE, X-INTERCOM-USER-DATA
access-control-allow-credentials: true
access-control-allow-methods: POST, GET, OPTIONS
etag: W/"6a3e42b3f8a53208275da228fbd32425"
x-runtime: 0.353408
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
server: nginx
x-ami-version: ami-003164df392dc4134
X-Firefox-Spdy: h2
nexus-websocket-a.intercom.io/pubsub/5-6wK9Xb7EFHv5QrGxKtlNsJ41F7l6m505rkO2BsaL5CjddNOfvsIWTBaehhjDLLlY2OcLaQgHi5ZBLONly_TTd3vTBo8iGjbQrAYw?X-Nexus-New-Client=true&X-Nexus-Version=0.10.0&user_role=undefined
35.174.127.31101 Switching Protocols 0 B URL GET HTTP/1.1 nexus-websocket-a.intercom.io/pubsub/5-6wK9Xb7EFHv5QrGxKtlNsJ41F7l6m505rkO2BsaL5CjddNOfvsIWTBaehhjDLLlY2OcLaQgHi5ZBLONly_TTd3vTBo8iGjbQrAYw?X-Nexus-New-Client=true&X-Nexus-Version=0.10.0&user_role=undefined
IP 35.174.127.31:443
Requested by https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
Certificate IssuerDigiCert Inc
Subject*.intercom.io
Fingerprint7D:97:CA:C7:4E:6B:9C:BB:CA:C7:55:E1:37:9E:1D:0C:D2:D6:4F:9F
ValidityThu, 10 Nov 2022 00:00:00 GMT - Mon, 11 Dec 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pubsub/5-6wK9Xb7EFHv5QrGxKtlNsJ41F7l6m505rkO2BsaL5CjddNOfvsIWTBaehhjDLLlY2OcLaQgHi5ZBLONly_TTd3vTBo8iGjbQrAYw?X-Nexus-New-Client=true&X-Nexus-Version=0.10.0&user_role=undefined HTTP/1.1
Host: nexus-websocket-a.intercom.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://blog.ffps.org
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: XKx+8REBF7md5cP+qfXmgg==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Wed, 07 Jun 2023 00:10:04 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: uTxo6xXcZNyf0DclQIBQDUPADLw=
Sec-WebSocket-Extensions: permessage-deflate; server_no_context_takeover; client_no_context_takeover
fonts.googleapis.com/css?family=Bitter%3A400%2C700&ver=6.1.3
142.250.74.106200 OK 3.3 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Bitter%3A400%2C700&ver=6.1.3
IP 142.250.74.106:443
Requested by https://blog.ffps.org/well-known/pi-foblineca/?previewfile=3mail@b.c/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type ASCII text, with very long lines (3388), with no line terminators
Hash 84438550d8739625e8b293026047708c
c59206f844593ddfcef642b121d1ae915065c683
fdfa7f19630592f90e46d8a49bbf6bc5a0c1721d2711f51d2ec0a268bafa41ac
GET /css?family=Bitter%3A400%2C700&ver=6.1.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.ffps.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Jun 2023 00:10:01 GMT
date: Wed, 07 Jun 2023 00:10:01 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2