r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash adb43321efa5cd1662993b701ff25fa4
1299dcea7e9c59d9f22f39d69025484fe71098c1
2c25a6717245be3746f1412af9dd1c351e12dbb93e8e08c3ddcdacf35e419514
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2C25A6717245BE3746F1412AF9DD1C351E12DBB93E8E08C3DDCDACF35E419514"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3749
Expires: Mon, 19 Sep 2022 00:03:43 GMT
Date: Sun, 18 Sep 2022 23:01:14 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 18 Sep 2022 22:12:25 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: nKxcs2gQEwAcXmXTDh-bAw1cWcvJg87OmeoieuaoTVfTxfH5bD0NqA==
Age: 2929
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 18 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JmxUMx71079EHBAQ3N9JqkOk7VGAblkoAFLkts_A8TqCcLxiBZGljg==
age: 66361
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 18 Sep 2022 23:01:14 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sun, 18 Sep 2022 22:03:22 GMT
Cache-Control: max-age=3600
Expires: Sun, 18 Sep 2022 22:09:38 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: eCaGESR_Aly9TKgGOApYiSizaskXXA0308GXBsEuWignPbb0T4h49Q==
Age: 3472
heartofvegas698.blogspot.com/?m=1
142.250.74.161301 Moved Permanently 187 B URL HTTP/1.1 heartofvegas698.blogspot.com/?m=1
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 6b2772be57642c1d85e744567ad4e640
e454ff4bfcf07f0748fadfc3c42b662eb5fcde37
cac2f6193923700a06382824a2338a6889a6f66541879a33d575ea2823c063e6
GET /?m=1 HTTP/1.1
Host: heartofvegas698.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://heartofvegas698.blogspot.com/?m=1
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Sun, 18 Sep 2022 23:01:14 GMT
Expires: Sun, 18 Sep 2022 23:01:14 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 187
Server: GSE
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 07566e7f0afe22aa412420cd4521193c
0d7ad3ad7187052880bd11576a49d5ce88faaf6a
f33d32e8d07bd001bf1205deadf439ea3009de7341719f33c1798d41faa71876
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 23:01:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5fd1174f35b25298fc44a6de1af3f3d6
d45a47995ec34c7df480b3efafb13f55d9df7eb8
f60573eff255ef3d7603ca813f410c30588931b4018ffa0e07fa0bb2653c47af
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5219
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 23:01:14 GMT
Last-Modified: Sun, 18 Sep 2022 21:34:15 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
heartofvegas698.blogspot.com/?m=1
142.250.74.161200 OK 12 kB URL HTTP/2 heartofvegas698.blogspot.com/?m=1
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1971)
Hash e5daf965004ebf2a1bc48634c27e75ba
a05c8250beb5369a73d56aeba26211e86fb4ff25
d7c951d298ee56f2606aae82c42be2fb283c728a76402d139b09ad8ed275c348
GET /?m=1 HTTP/1.1
Host: heartofvegas698.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Sun, 18 Sep 2022 23:01:15 GMT
date: Sun, 18 Sep 2022 23:01:15 GMT
cache-control: private, max-age=0
last-modified: Wed, 20 Jul 2022 03:01:11 GMT
etag: W/"c900b901d1f66f9373b6b741211036b5fc973886f246628069596e621468f76f"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 12245
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 07566e7f0afe22aa412420cd4521193c
0d7ad3ad7187052880bd11576a49d5ce88faaf6a
f33d32e8d07bd001bf1205deadf439ea3009de7341719f33c1798d41faa71876
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 23:01:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
heartofvegas698.blogspot.com/js/cookienotice.js
142.250.74.161200 OK 2.0 kB URL HTTP/2 heartofvegas698.blogspot.com/js/cookienotice.js
IP 142.250.74.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
Analyzer Verdict Alert fortinet Phishing
GET /js/cookienotice.js HTTP/1.1
Host: heartofvegas698.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heartofvegas698.blogspot.com/?m=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 18 Sep 2022 23:00:29 GMT
expires: Sun, 25 Sep 2022 23:00:29 GMT
cache-control: public, max-age=604800
last-modified: Sun, 18 Sep 2022 18:51:06 GMT
content-type: text/javascript
age: 46
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eaa8b4aa123f9dd7237c5c51d2f848d9
1082f5f6ef7229ec76f94f3d236f273b26294563
d1ad33dae2fcab5c7d66875f0e7a01cc30e0b3a031606917fa5448c54f84e20d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 23:01:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
54.148.228.200101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.228.200:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Z7XgDsM0n4gigBMkLWgUUQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: vhjNQ8eZqh6rNCSs3GUFTOQwOoY=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eaa8b4aa123f9dd7237c5c51d2f848d9
1082f5f6ef7229ec76f94f3d236f273b26294563
d1ad33dae2fcab5c7d66875f0e7a01cc30e0b3a031606917fa5448c54f84e20d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 23:01:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eaa8b4aa123f9dd7237c5c51d2f848d9
1082f5f6ef7229ec76f94f3d236f273b26294563
d1ad33dae2fcab5c7d66875f0e7a01cc30e0b3a031606917fa5448c54f84e20d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 23:01:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
images.clickfunnels.com/9c/d401c04dd611e8980d75a6bf3090be/wood-back.jpg
104.16.12.194200 OK 182 kB URL HTTP/2 images.clickfunnels.com/9c/d401c04dd611e8980d75a6bf3090be/wood-back.jpg
IP 104.16.12.194:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 2000x1272, components 3\012- data
Size 182 kB (181655 bytes)
Hash d061e0ee35a6a30184bcdc53cb763464
5f92f55fbb4626ca7e0887b9264fbb79195abd8b
e22a004518cc431fc864ed0993cdd748019db57ce259b7c3191ed512fddeff18
GET /9c/d401c04dd611e8980d75a6bf3090be/wood-back.jpg HTTP/1.1
Host: images.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heartofvegas698.blogspot.com/
Cookie: __cf_bm=efvO.8Xkuz3dHNCH5RrhkxW8Xa9TZc5v8eX36eZDGvQ-1663542075-0-ARoaJwEjU5DBjo4ps+yohAI2oqUofXBe7lg1tAYcmQEiPXGI1UHCppraV59dqTDcINBPAJ75nxZAo2tlTwKZf1268EqXsCGvZsQQPpM4/2tw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 23:01:15 GMT
content-type: image/jpeg
content-length: 181655
cf-bgj: imgq:85,h2pri
cf-polished: status=not_needed
etag: "d061e0ee35a6a30184bcdc53cb763464"
last-modified: Wed, 02 May 2018 07:01:21 GMT
x-amz-id-2: aUq2VQ2gq0z+QnxOzkp3v7zCNg2XDhi/PJ2ywmqP50mHodPQ1Z4OPZTQ2ffcu4wkptA1wrCrfP0=
x-amz-request-id: W6TAZDA69E5EXFNX
cf-cache-status: HIT
age: 46
expires: Wed, 12 Oct 2022 23:01:15 GMT
cache-control: public, max-age=2073600
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cdb3d2becc1c16-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a9323cf0781cad0d5ac23f0c81c105b1
772d0218be53da9f875bb96a287c904976c296da
5c808b03cd8dd26275f12a850d8a36b467246c1461ea65a4c717acb04f2ca722
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 23:01:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/oxygen/v15/2sDfZG1Wl4LcnbuKjk0m.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/oxygen/v15/2sDfZG1Wl4LcnbuKjk0m.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 16348, version 1.0\012- data
Hash 8dc707b4818131fab44d482b1db5d458
8a0ff82b12fa25391ce17a6ae069d7fe5002f12d
9e64f128d5352d04ea5c87031e4cf1ad204b72a0afb003ece52eeb997d28a570
GET /s/oxygen/v15/2sDfZG1Wl4LcnbuKjk0m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://heartofvegas698.blogspot.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16348
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Sep 2022 21:34:22 GMT
expires: Tue, 12 Sep 2023 21:34:22 GMT
cache-control: public, max-age=31536000
age: 523613
last-modified: Mon, 09 May 2022 18:31:32 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a9323cf0781cad0d5ac23f0c81c105b1
772d0218be53da9f875bb96a287c904976c296da
5c808b03cd8dd26275f12a850d8a36b467246c1461ea65a4c717acb04f2ca722
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 23:01:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://heartofvegas698.blogspot.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:34:08 GMT
expires: Thu, 14 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 358027
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://heartofvegas698.blogspot.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:34:08 GMT
expires: Thu, 14 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 358027
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
d26b395fwzu5fz.cloudfront.net/keen-tracking-1.0.3.min.js
54.230.245.147200 OK 9.0 kB URL HTTP/1.1 d26b395fwzu5fz.cloudfront.net/keen-tracking-1.0.3.min.js
IP 54.230.245.147:0
File type ASCII text, with very long lines (20564)
Hash a6acb97120359c326c8f7775a5514f5d
db0ba6a113b2bf753933f2b5d3451e55d7184c2d
bc1391ed0a7a70a24988c0464202bcf2f8f1a5f4d1465c8d5552471b13b90fba
GET /keen-tracking-1.0.3.min.js HTTP/1.1
Host: d26b395fwzu5fz.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heartofvegas698.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 8994
Connection: keep-alive
Date: Wed, 15 Jun 2022 12:20:28 GMT
Last-Modified: Thu, 31 Mar 2016 04:24:33 GMT
ETag: "a6acb97120359c326c8f7775a5514f5d"
Cache-Control: max-age=31536000000, public
Content-Encoding: gzip
Expires: Fri, 31 Mar 2017 04:24:29 GMT
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: A5FOuWgK-Oq9FM-vl-PqNUa8Ze3xTP_7oDsObKmCJftHsrEc8Oq58A==
Age: 8246448
app.clickfunnels.com/userevents/?funnel_id=SHFKSXpmMzk5ZlNpS2k2bVNrNGNxZz09LS1hb2RtQklQS3NwQkUrT3NWR2pEVEpBPT0%3D--41448796011bbd66a4182b310f27ce2a9abbee46&page_id=TmdjUlA0WGUwT1d4OE1OK29sR0xJZz09LS0rd0hvOEZmOFZMQldkYjJsUUhBNFFBPT0%3D--b5e7a1ec793bc0d7ccac4ae8b2d7a6d1480f6e5d&funnel_step_id=VytzVE4wVDJGQVZkZ2pxUktzMThOUT09LS0zdjUrTXRtK1FKVlBLMHlKQVlROXpnPT0%3D--05bf44efadb4280addba7ddb0bc9896a82cd578d&user_id=YVp3WWhYd1JuSThvTlduN0V3ajEvZz09LS1ya1BjZUI5ZXZRZW1MQ1hNL0xOV2x3PT0%3D--75373777a5a2745bfea30877f3a7a1cea06fc5ba&account_id=dk5qeXpEcWZKMmY2QXdIalNheFM1dz09LS14SFFXK0FKYm1TN2dGR0FEY0lrbzhRPT0%3D--4d806c48a196296b29cba4bebe4568145d308975&page_code=NTM1NTQ4ODg%3D&mode_id=1&time_zone=America%2FChicago&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::PageviewsCreatedSummary&nonce=84a4181e-652c-44d3-8544-4ad2a8ebae9e&url=https%3A%2F%2Fheartofvegas698.blogspot.com%2F%3Fm%3D1
104.16.12.194202 Accepted 1.2 kB URL HTTP/2 app.clickfunnels.com/userevents/?funnel_id=SHFKSXpmMzk5ZlNpS2k2bVNrNGNxZz09LS1hb2RtQklQS3NwQkUrT3NWR2pEVEpBPT0%3D--41448796011bbd66a4182b310f27ce2a9abbee46&page_id=TmdjUlA0WGUwT1d4OE1OK29sR0xJZz09LS0rd0hvOEZmOFZMQldkYjJsUUhBNFFBPT0%3D--b5e7a1ec793bc0d7ccac4ae8b2d7a6d1480f6e5d&funnel_step_id=VytzVE4wVDJGQVZkZ2pxUktzMThOUT09LS0zdjUrTXRtK1FKVlBLMHlKQVlROXpnPT0%3D--05bf44efadb4280addba7ddb0bc9896a82cd578d&user_id=YVp3WWhYd1JuSThvTlduN0V3ajEvZz09LS1ya1BjZUI5ZXZRZW1MQ1hNL0xOV2x3PT0%3D--75373777a5a2745bfea30877f3a7a1cea06fc5ba&account_id=dk5qeXpEcWZKMmY2QXdIalNheFM1dz09LS14SFFXK0FKYm1TN2dGR0FEY0lrbzhRPT0%3D--4d806c48a196296b29cba4bebe4568145d308975&page_code=NTM1NTQ4ODg%3D&mode_id=1&time_zone=America%2FChicago&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::PageviewsCreatedSummary&nonce=84a4181e-652c-44d3-8544-4ad2a8ebae9e&url=https%3A%2F%2Fheartofvegas698.blogspot.com%2F%3Fm%3D1
IP 104.16.12.194:0
Hash eaf92f4ea86a783806a6abbfe8fef857
9ae413bc6585406a0f51c55d7eef04eedd06f685
4d399d1e93a2876169cf0b579a8b13f7ef033caf0b692cd226958d024852208c
GET /userevents/?funnel_id=SHFKSXpmMzk5ZlNpS2k2bVNrNGNxZz09LS1hb2RtQklQS3NwQkUrT3NWR2pEVEpBPT0%3D--41448796011bbd66a4182b310f27ce2a9abbee46&page_id=TmdjUlA0WGUwT1d4OE1OK29sR0xJZz09LS0rd0hvOEZmOFZMQldkYjJsUUhBNFFBPT0%3D--b5e7a1ec793bc0d7ccac4ae8b2d7a6d1480f6e5d&funnel_step_id=VytzVE4wVDJGQVZkZ2pxUktzMThOUT09LS0zdjUrTXRtK1FKVlBLMHlKQVlROXpnPT0%3D--05bf44efadb4280addba7ddb0bc9896a82cd578d&user_id=YVp3WWhYd1JuSThvTlduN0V3ajEvZz09LS1ya1BjZUI5ZXZRZW1MQ1hNL0xOV2x3PT0%3D--75373777a5a2745bfea30877f3a7a1cea06fc5ba&account_id=dk5qeXpEcWZKMmY2QXdIalNheFM1dz09LS14SFFXK0FKYm1TN2dGR0FEY0lrbzhRPT0%3D--4d806c48a196296b29cba4bebe4568145d308975&page_code=NTM1NTQ4ODg%3D&mode_id=1&time_zone=America%2FChicago&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::PageviewsCreatedSummary&nonce=84a4181e-652c-44d3-8544-4ad2a8ebae9e&url=https%3A%2F%2Fheartofvegas698.blogspot.com%2F%3Fm%3D1 HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://heartofvegas698.blogspot.com
Connection: keep-alive
Referer: https://heartofvegas698.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
date: Sun, 18 Sep 2022 23:01:15 GMT
content-type: text/html
cf-ray: 74cdb3d598101c16-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
pragma: no-cache
status: 202 Accepted
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: ef0b37593cbcb0ea07c40d6ca0d87810
x-runtime: 0.034675
set-cookie: __cf_bm=WwNj4YyoaMruUQ8BpBwdRFSeu4WCMx__F3gJjRto3iw-1663542075-0-AV1VyWg72/AiJPjzgretHVnV84d8K4SPkmnN8p/ifw52u9vYrVsptrnHt0kYtMUTy0tLV9isDcrfP6YsIFaPTynpvEtsFPUKes1UGwlM+UZQ; path=/; expires=Sun, 18-Sep-22 23:31:15 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
images.clickfunnels.com/cdn-cgi/image/fit=scale-down,width=1100,quality=75/https://images.clickfunnels.com/25/359622a0f246f3bf1dc8d5201018fd/rr.png
104.16.12.194200 OK 3.7 kB URL HTTP/2 images.clickfunnels.com/cdn-cgi/image/fit=scale-down,width=1100,quality=75/https://images.clickfunnels.com/25/359622a0f246f3bf1dc8d5201018fd/rr.png
IP 104.16.12.194:0
File type PNG image data, 240 x 190, 8-bit colormap, non-interlaced\012- data
Hash 4d8bee577f468507c3e15ed90af92a23
8684cb91c53ad8fe7887659d876425c44eb4ab92
631af758a847933d10708647a66e4dc0851e450f8a8070e8f3a8843d3595242b
GET /cdn-cgi/image/fit=scale-down,width=1100,quality=75/https://images.clickfunnels.com/25/359622a0f246f3bf1dc8d5201018fd/rr.png HTTP/1.1
Host: images.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heartofvegas698.blogspot.com/
Cookie: __cf_bm=efvO.8Xkuz3dHNCH5RrhkxW8Xa9TZc5v8eX36eZDGvQ-1663542075-0-ARoaJwEjU5DBjo4ps+yohAI2oqUofXBe7lg1tAYcmQEiPXGI1UHCppraV59dqTDcINBPAJ75nxZAo2tlTwKZf1268EqXsCGvZsQQPpM4/2tw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 23:01:16 GMT
content-type: image/png
content-length: 3708
cf-ray: 74cdb3d6f8c41c16-OSL
accept-ranges: bytes
cache-control: max-age=2073600
etag: "cfW87vD1obQE49nC_kifRYlw:33951935a02e1fe912c9730e0fe53157"
last-modified: Sun, 13 Mar 2022 07:13:01 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:100,h2pri
cf-resized: internal=ok/h q=0 n=44 c=12 v=2022.9.4 l=3708
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
images.clickfunnels.com/cdn-cgi/image/fit=scale-down,width=525,quality=75/https://images.clickfunnels.com/e1/01732557a8495dae440ef867ac90d2/750.png
104.16.12.194200 OK 55 kB URL HTTP/2 images.clickfunnels.com/cdn-cgi/image/fit=scale-down,width=525,quality=75/https://images.clickfunnels.com/e1/01732557a8495dae440ef867ac90d2/750.png
IP 104.16.12.194:0
File type PNG image data, 525 x 262, 8-bit colormap, non-interlaced\012- data
Hash e18efe51506b3caee665c0f28c0ac297
2242218edc7644c734f3716c18a226ee28d67336
9bbd336e57798bc0c222eaf76622613b8de5d864e7c0bda82b95d0c6bce913d9
GET /cdn-cgi/image/fit=scale-down,width=525,quality=75/https://images.clickfunnels.com/e1/01732557a8495dae440ef867ac90d2/750.png HTTP/1.1
Host: images.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heartofvegas698.blogspot.com/
Cookie: __cf_bm=efvO.8Xkuz3dHNCH5RrhkxW8Xa9TZc5v8eX36eZDGvQ-1663542075-0-ARoaJwEjU5DBjo4ps+yohAI2oqUofXBe7lg1tAYcmQEiPXGI1UHCppraV59dqTDcINBPAJ75nxZAo2tlTwKZf1268EqXsCGvZsQQPpM4/2tw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 23:01:16 GMT
content-type: image/png
content-length: 55104
cf-ray: 74cdb3d6f8c21c16-OSL
accept-ranges: bytes
cache-control: max-age=2073600
etag: "cfZGyICsUAuOghQjm64aI2ZQ:55e31ea68c70c4a67ee1101514058fd0"
last-modified: Tue, 08 Mar 2022 06:01:59 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:88,h2pri
cf-resized: internal=ok/h q=0 n=39 c=74 v=2022.9.4 l=55104
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=R2F0m4CwvLbzEy24dctJUBLxIz0UI8x2HuXiEix0xsA-1663542076-0-AYrgO5YFWRjnR2la7oIxSJjFrMyDQX8xvw2-GdilkAxL5Kbu2qkbB3EpFWJVOS7EU3XXOnnAKvuiMizG0U2wiB9rSp9LzTfUJsUxAibfN6vr"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=R2F0m4CwvLbzEy24dctJUBLxIz0UI8x2HuXiEix0xsA-1663542076-0-AYrgO5YFWRjnR2la7oIxSJjFrMyDQX8xvw2-GdilkAxL5Kbu2qkbB3EpFWJVOS7EU3XXOnnAKvuiMizG0U2wiB9rSp9LzTfUJsUxAibfN6vr; report-to cf-csp-endpoint
server: cloudflare
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5e0d4379f6517fd75a29a3d94d9199eb
0d383b811ebe839400f04333d16a5c9d4d78f802
e64c0c03925bdfaa2520d90339c90d1f8d98c432441adb771dfe1e818220f06f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E64C0C03925BDFAA2520D90339C90D1F8D98C432441ADB771DFE1E818220F06F"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12099
Expires: Mon, 19 Sep 2022 02:22:55 GMT
Date: Sun, 18 Sep 2022 23:01:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5e0d4379f6517fd75a29a3d94d9199eb
0d383b811ebe839400f04333d16a5c9d4d78f802
e64c0c03925bdfaa2520d90339c90d1f8d98c432441adb771dfe1e818220f06f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E64C0C03925BDFAA2520D90339C90D1F8D98C432441ADB771DFE1E818220F06F"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12099
Expires: Mon, 19 Sep 2022 02:22:55 GMT
Date: Sun, 18 Sep 2022 23:01:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5e0d4379f6517fd75a29a3d94d9199eb
0d383b811ebe839400f04333d16a5c9d4d78f802
e64c0c03925bdfaa2520d90339c90d1f8d98c432441adb771dfe1e818220f06f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E64C0C03925BDFAA2520D90339C90D1F8D98C432441ADB771DFE1E818220F06F"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12099
Expires: Mon, 19 Sep 2022 02:22:55 GMT
Date: Sun, 18 Sep 2022 23:01:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5e0d4379f6517fd75a29a3d94d9199eb
0d383b811ebe839400f04333d16a5c9d4d78f802
e64c0c03925bdfaa2520d90339c90d1f8d98c432441adb771dfe1e818220f06f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E64C0C03925BDFAA2520D90339C90D1F8D98C432441ADB771DFE1E818220F06F"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12099
Expires: Mon, 19 Sep 2022 02:22:55 GMT
Date: Sun, 18 Sep 2022 23:01:16 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6582596-5079-44f5-a869-65c8766f7d1a.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6582596-5079-44f5-a869-65c8766f7d1a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash da8b8819fc21dcfb224ce0e7ecdc6772
e460ad4376cd118a6fe8b6b050af9398117d9531
9d0cf5fe17040e6c494d1596c24f01501babff37c95caa47d048b5e1aefa7697
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6582596-5079-44f5-a869-65c8766f7d1a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9901
x-amzn-requestid: e1792a3b-1893-48a6-8d01-463050259dc2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YiGMYE3IoAMFgvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6323ea4f-42ab13411e65943538101b11;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 03:15:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: XmcyJv7bahHB4wMjFmgvh2fEkJJYLPhRrISZ_DczSErdEQjXIxWUvg==
via: 1.1 0800f067ff646622f3e8e507cb9b52e8.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 07:49:08 GMT
age: 54728
etag: "e460ad4376cd118a6fe8b6b050af9398117d9531"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=sans-serif%7CQuattrocento%7Csans-serif%7CQuattrocento%7Csans-serif%7COxygen%7C%7C
142.250.74.10200 OK 3.9 kB URL HTTP/2 fonts.googleapis.com/css?family=sans-serif%7CQuattrocento%7Csans-serif%7CQuattrocento%7Csans-serif%7COxygen%7C%7C
IP 142.250.74.10:0
Hash f0a5089ac0e8be49543c5466dab7020e
b1f0fec32484fa93e90c9bf7bf6150ba432deca9
83e13f73bbdf30ae4db84bc1a5996730c6654258cf6926ca6cb54cfafde1f7c9
GET /css?family=sans-serif%7CQuattrocento%7Csans-serif%7CQuattrocento%7Csans-serif%7COxygen%7C%7C HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heartofvegas698.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 18 Sep 2022 23:01:15 GMT
date: Sun, 18 Sep 2022 23:01:15 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F779fe432-124a-4d1a-8abf-cfb5054b48fd.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F779fe432-124a-4d1a-8abf-cfb5054b48fd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 87bddc1f919e51c976d5377040861ea6
f5bf6c28f20414c7dd3ac1098defc46d3d68fd99
28541ca828b6358c8e6081e9f2022e7ad18a8adcb3df09a3fa079f32c08fcda6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F779fe432-124a-4d1a-8abf-cfb5054b48fd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10721
x-amzn-requestid: fadb4327-7392-42be-9167-16dd28876400
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeIqeEg2IAMF-XA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632254a9-45261b545b58382717b63418;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:24:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: WPR4iIPTDBsXF2F8yHkM2G-M9w6V0ykDHY017kKgEjsBNciMxYqo5A==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 03:43:01 GMT
age: 69495
etag: "f5bf6c28f20414c7dd3ac1098defc46d3d68fd99"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba617391-badf-49a7-8b58-f6b0e934e0f2.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba617391-badf-49a7-8b58-f6b0e934e0f2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 77b03ce2b3a9013719879589aec6f9d3
91391b256ed587b935247499c1450dd08a0df081
ae5752fc136df7a15d4d75fc4589b33177286ad52219125fbfc255d39039f68c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba617391-badf-49a7-8b58-f6b0e934e0f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7646
x-amzn-requestid: 2e786bb2-21ed-4df7-82ba-a62ec39b5d82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yj92PEi5oAMFQsg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324a9c1-1ace3c2027cbb6b95cb575de;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 16:52:17 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: lyMXGa6Hzrqc-9nHgx5ULcKCkO9703QvL2ky1aii9U4WIHUHU1yzfg==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 00:59:11 GMT
age: 79325
etag: "91391b256ed587b935247499c1450dd08a0df081"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70eaf97a-8ffa-4ca6-b5fd-5160d2e46b50.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70eaf97a-8ffa-4ca6-b5fd-5160d2e46b50.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dc30aa54bd83aca794c4b70b1b0bf934
81ed341fd14cc18a295ebff428a207127439cb92
0efb907719d4cfd7524043348550fb39addd8e4b16f866e3fd6e9b3be35b8f20
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70eaf97a-8ffa-4ca6-b5fd-5160d2e46b50.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6559
x-amzn-requestid: a1b19d40-e086-4fdc-b3a3-7d9ced591a97
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YrOU5GnKoAMF6nw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632790eb-2e134a7048f6800f61defb78;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 21:43:07 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: AesLN8aQ7nDePicOsyRUaQ9occYueZ847Gr9ON3J_EgMTiAVoOUxMw==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 21:57:01 GMT
etag: "81ed341fd14cc18a295ebff428a207127439cb92"
content-type: image/jpeg
age: 3855
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
app.clickfunnels.com/userevents/?funnel_id=SHFKSXpmMzk5ZlNpS2k2bVNrNGNxZz09LS1hb2RtQklQS3NwQkUrT3NWR2pEVEpBPT0%3D--41448796011bbd66a4182b310f27ce2a9abbee46&page_id=TmdjUlA0WGUwT1d4OE1OK29sR0xJZz09LS0rd0hvOEZmOFZMQldkYjJsUUhBNFFBPT0%3D--b5e7a1ec793bc0d7ccac4ae8b2d7a6d1480f6e5d&funnel_step_id=VytzVE4wVDJGQVZkZ2pxUktzMThOUT09LS0zdjUrTXRtK1FKVlBLMHlKQVlROXpnPT0%3D--05bf44efadb4280addba7ddb0bc9896a82cd578d&user_id=YVp3WWhYd1JuSThvTlduN0V3ajEvZz09LS1ya1BjZUI5ZXZRZW1MQ1hNL0xOV2x3PT0%3D--75373777a5a2745bfea30877f3a7a1cea06fc5ba&account_id=dk5qeXpEcWZKMmY2QXdIalNheFM1dz09LS14SFFXK0FKYm1TN2dGR0FEY0lrbzhRPT0%3D--4d806c48a196296b29cba4bebe4568145d308975&page_code=NTM1NTQ4ODg%3D&mode_id=1&time_zone=America%2FChicago&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniqueVisitorsCreatedSummary&nonce=3461311e-d1c3-494d-94ce-29927a720a7a&url=https%3A%2F%2Fheartofvegas698.blogspot.com%2F%3Fm%3D1
104.16.12.194202 Accepted 11 kB URL HTTP/2 app.clickfunnels.com/userevents/?funnel_id=SHFKSXpmMzk5ZlNpS2k2bVNrNGNxZz09LS1hb2RtQklQS3NwQkUrT3NWR2pEVEpBPT0%3D--41448796011bbd66a4182b310f27ce2a9abbee46&page_id=TmdjUlA0WGUwT1d4OE1OK29sR0xJZz09LS0rd0hvOEZmOFZMQldkYjJsUUhBNFFBPT0%3D--b5e7a1ec793bc0d7ccac4ae8b2d7a6d1480f6e5d&funnel_step_id=VytzVE4wVDJGQVZkZ2pxUktzMThOUT09LS0zdjUrTXRtK1FKVlBLMHlKQVlROXpnPT0%3D--05bf44efadb4280addba7ddb0bc9896a82cd578d&user_id=YVp3WWhYd1JuSThvTlduN0V3ajEvZz09LS1ya1BjZUI5ZXZRZW1MQ1hNL0xOV2x3PT0%3D--75373777a5a2745bfea30877f3a7a1cea06fc5ba&account_id=dk5qeXpEcWZKMmY2QXdIalNheFM1dz09LS14SFFXK0FKYm1TN2dGR0FEY0lrbzhRPT0%3D--4d806c48a196296b29cba4bebe4568145d308975&page_code=NTM1NTQ4ODg%3D&mode_id=1&time_zone=America%2FChicago&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniqueVisitorsCreatedSummary&nonce=3461311e-d1c3-494d-94ce-29927a720a7a&url=https%3A%2F%2Fheartofvegas698.blogspot.com%2F%3Fm%3D1
IP 104.16.12.194:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 83b8fc3c907a9376f388cdd41eb30de3
227691093684ffbda302b03e47a2da98d7223080
c44a8ab222a9bfb2d9d3f3d5b77518677ce71267176687ed83c582a0a90b2668
GET /userevents/?funnel_id=SHFKSXpmMzk5ZlNpS2k2bVNrNGNxZz09LS1hb2RtQklQS3NwQkUrT3NWR2pEVEpBPT0%3D--41448796011bbd66a4182b310f27ce2a9abbee46&page_id=TmdjUlA0WGUwT1d4OE1OK29sR0xJZz09LS0rd0hvOEZmOFZMQldkYjJsUUhBNFFBPT0%3D--b5e7a1ec793bc0d7ccac4ae8b2d7a6d1480f6e5d&funnel_step_id=VytzVE4wVDJGQVZkZ2pxUktzMThOUT09LS0zdjUrTXRtK1FKVlBLMHlKQVlROXpnPT0%3D--05bf44efadb4280addba7ddb0bc9896a82cd578d&user_id=YVp3WWhYd1JuSThvTlduN0V3ajEvZz09LS1ya1BjZUI5ZXZRZW1MQ1hNL0xOV2x3PT0%3D--75373777a5a2745bfea30877f3a7a1cea06fc5ba&account_id=dk5qeXpEcWZKMmY2QXdIalNheFM1dz09LS14SFFXK0FKYm1TN2dGR0FEY0lrbzhRPT0%3D--4d806c48a196296b29cba4bebe4568145d308975&page_code=NTM1NTQ4ODg%3D&mode_id=1&time_zone=America%2FChicago&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniqueVisitorsCreatedSummary&nonce=3461311e-d1c3-494d-94ce-29927a720a7a&url=https%3A%2F%2Fheartofvegas698.blogspot.com%2F%3Fm%3D1 HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://heartofvegas698.blogspot.com
Connection: keep-alive
Referer: https://heartofvegas698.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
date: Sun, 18 Sep 2022 23:01:15 GMT
content-type: text/html
cf-ray: 74cdb3d598171c16-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
pragma: no-cache
status: 202 Accepted
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: 8bd9a9693c1d64ca9235de08d2f3c5e4
x-runtime: 0.032030
set-cookie: __cf_bm=XdblXwIk29hdiqmuraSvf2Mnb3z2XP5aXrhrvIqiIXI-1663542075-0-AXJhEEnAYjzF1Wy7+gzQCiGZyApFCobJcJ970NNM3c44kAv2I70FgVVVh6nHdxuwUqrcCmsemkTmYUtGw88G68w93V3Z5GJuNFm8ltzq1dZZ; path=/; expires=Sun, 18-Sep-22 23:31:15 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 31f84db1c2b8b888d10d213c4eb0cf30
adf03ed562d3f5f2c914a73b8d8b877dc0c0810b
3c776536ac77fc3f6e1c4f56cd68257dcf79f03b9cb4d7db0d26d44bcb901d42
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 18 Sep 2022 23:01:16 GMT
Last-Modified: Sun, 18 Sep 2022 22:11:02 GMT
Server: ECS (nyb/1D12)
X-Cache: Miss from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: XswzsvA4HRhczLUEOaNcLk_E-FMdP0R1vQL968bN53h8-0kUsPKgzw==
Age: 3014
api.keen.io/3.0/projects/58a35e6f8db53dfda8a87a67/events/survey_data_collector?api_key=E844E116CB12000A6B72AA691F8A2108E6BEBC97A05786370C6703C31E3A5FD4EDC7CC8012418A997621F11C2CFD95A9C1D64E6EF1850AFCC2B76E360F7BA3BC3BE6AEFCCFAAD87B19E1309B88378181E69436B7E01A38447184F2886A9D7AF9&data=eyJzdXJ2ZXlfaWQiOiI1MzU1NDg4OF90bXBfc3VydmV5LTg4ODI3IiwicGlkIjoicGFydGljaXBhbnRfd202ZGUiLCJ0eXBlIjoic3RhcnRlZCJ9&modified=1663542057373&jsonp=keenJSONPCallback1663542057374
54.190.125.207200 OK 50 B URL HTTP/2 api.keen.io/3.0/projects/58a35e6f8db53dfda8a87a67/events/survey_data_collector?api_key=E844E116CB12000A6B72AA691F8A2108E6BEBC97A05786370C6703C31E3A5FD4EDC7CC8012418A997621F11C2CFD95A9C1D64E6EF1850AFCC2B76E360F7BA3BC3BE6AEFCCFAAD87B19E1309B88378181E69436B7E01A38447184F2886A9D7AF9&data=eyJzdXJ2ZXlfaWQiOiI1MzU1NDg4OF90bXBfc3VydmV5LTg4ODI3IiwicGlkIjoicGFydGljaXBhbnRfd202ZGUiLCJ0eXBlIjoic3RhcnRlZCJ9&modified=1663542057373&jsonp=keenJSONPCallback1663542057374
IP 54.190.125.207:0
File type ASCII text, with no line terminators
Hash 3ea9bbf7a5673533e057bc2d7bc52771
0807e737583aba6bbb5320779765112720423619
a488e77c47c34f4369c785bed2b88eceb9d3355e8c29061ce3987ef8ec9c5f25
GET /3.0/projects/58a35e6f8db53dfda8a87a67/events/survey_data_collector?api_key=E844E116CB12000A6B72AA691F8A2108E6BEBC97A05786370C6703C31E3A5FD4EDC7CC8012418A997621F11C2CFD95A9C1D64E6EF1850AFCC2B76E360F7BA3BC3BE6AEFCCFAAD87B19E1309B88378181E69436B7E01A38447184F2886A9D7AF9&data=eyJzdXJ2ZXlfaWQiOiI1MzU1NDg4OF90bXBfc3VydmV5LTg4ODI3IiwicGlkIjoicGFydGljaXBhbnRfd202ZGUiLCJ0eXBlIjoic3RhcnRlZCJ9&modified=1663542057373&jsonp=keenJSONPCallback1663542057374 HTTP/1.1
Host: api.keen.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heartofvegas698.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Sep 2022 23:01:16 GMT
content-type: application/json
content-length: 50
disposition: inline
expires: Sat, 01 Jan 2000 01:01:01 GMT
vary: Accept-Encoding
server: TornadoServer/4.5.1
pragma: no-cache
cache-control: private, no-cache, no-cache=Set-Cookie, max-age=0, s-maxage=0
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, user-agent, keen-compute-source, keen-sdk, X-Keen-Discoveries-Token
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c4bd4cc-8de2-4b7d-a032-51bb3bb2b62b.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c4bd4cc-8de2-4b7d-a032-51bb3bb2b62b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 675954666fb740ffa9ac63de5b6ec7a2
372d71d42ba1e17f23f581bd5bba446b642ff194
220d4ec963e30345d7a9ed4a8bc8e0d7583ea030ed56a55b8279c30e0be9b6d4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c4bd4cc-8de2-4b7d-a032-51bb3bb2b62b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 5382
x-amzn-requestid: c8b36b66-6e3d-496a-93b8-af1d74884a34
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YrNeAF2moAMF5iQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63278f8c-3b00fd0a1d25e6032153099b;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 21:37:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: TJ-CRmIAS2E_JIXDmnbqeIzihWP5TuHDy7dtML6ekQVPbrfVJ74Hbw==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 21:53:38 GMT
etag: "372d71d42ba1e17f23f581bd5bba446b642ff194"
content-type: image/jpeg
age: 4065
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
app.clickfunnels.com/v1/track?_unique=0.5455875124080862&_uniqueVisitorID=null&_type=WINDOW&_location=ttps%3A//heartofvegas698.blogspot.com/%3Fm%3D1&_title=Cash%20Grab&_key=zxkf514&_page_key=nyq46n18ktg80yag&_fid=11341740&_fspos=5&_fvrs=1&_funnel_stat=0&_location=https://heartofvegas698.blogspot.com/?m=1&_referrer=
104.16.12.194200 OK 0 B URL HTTP/2 app.clickfunnels.com/v1/track?_unique=0.5455875124080862&_uniqueVisitorID=null&_type=WINDOW&_location=ttps%3A//heartofvegas698.blogspot.com/%3Fm%3D1&_title=Cash%20Grab&_key=zxkf514&_page_key=nyq46n18ktg80yag&_fid=11341740&_fspos=5&_fvrs=1&_funnel_stat=0&_location=https://heartofvegas698.blogspot.com/?m=1&_referrer=
IP 104.16.12.194:0
GET /v1/track?_unique=0.5455875124080862&_uniqueVisitorID=null&_type=WINDOW&_location=ttps%3A//heartofvegas698.blogspot.com/%3Fm%3D1&_title=Cash%20Grab&_key=zxkf514&_page_key=nyq46n18ktg80yag&_fid=11341740&_fspos=5&_fvrs=1&_funnel_stat=0&_location=https://heartofvegas698.blogspot.com/?m=1&_referrer= HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://heartofvegas698.blogspot.com
Connection: keep-alive
Referer: https://heartofvegas698.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 23:01:16 GMT
content-type: text/javascript; charset=utf-8
cf-ray: 74cdb3d708d11c16-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
status: 200 OK
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: d37c6998a5f035f32cd67b14dad2837d
x-runtime: 0.016712
set-cookie: __cf_bm=EsDjf65VOa7eBmg6O43CPqbURtH6RXNPsIY1xwLUbrA-1663542076-0-AW3rdw3Phox0RFTedCN9cNh1Td0EM7VVh/eDvXrzQ9G+dOy5bE58lKajYl3CTQylFG2IDPAdjRmiE+nx81jRzTHckyg0bq6JHimeyS2999PC; path=/; expires=Sun, 18-Sep-22 23:31:16 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
www.clickfunnels.com/assets/userevents/application.js
104.16.12.194200 OK 0 B URL HTTP/2 www.clickfunnels.com/assets/userevents/application.js
IP 104.16.12.194:0
GET /assets/userevents/application.js HTTP/1.1
Host: www.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heartofvegas698.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Sep 2022 23:01:15 GMT
content-type: application/x-javascript
cf-ray: 74cdb3d1fe6b1c16-OSL
access-control-allow-origin: *
age: 645
cache-control: public, max-age=1200
etag: W/"630e9cfc-1353"
expires: Sun, 18 Sep 2022 23:21:15 GMT
last-modified: Tue, 30 Aug 2022 23:27:56 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
set-cookie: __cf_bm=Qm_GMaNapoUv09PZQD7MrYLdJQAdVyiiXirppLckOaw-1663542075-0-AXP/wZICu1FsMuEpBjHnR1Ydp24kx+LUUCOnNbB9jyzh4Ip0NYJVzp5z6LQHLH4uJsSLbeztHc1L2Oxahn3W0FXD2Jcx9RYWtVh0iTCY3V1c; path=/; expires=Sun, 18-Sep-22 23:31:15 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
www.clickfunnels.com/assets/lander.js
104.16.12.194200 OK 0 B URL HTTP/2 www.clickfunnels.com/assets/lander.js
IP 104.16.12.194:0
GET /assets/lander.js HTTP/1.1
Host: www.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heartofvegas698.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Sep 2022 23:01:15 GMT
content-type: application/x-javascript
cf-ray: 74cdb3d20e771c16-OSL
access-control-allow-origin: *
age: 730
cache-control: public, max-age=1200
etag: W/"630e9d40-238fd1"
expires: Sun, 18 Sep 2022 23:21:15 GMT
last-modified: Tue, 30 Aug 2022 23:29:04 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
set-cookie: __cf_bm=slkRfLSGNNf1ZIi17K2tyqw6JkERQaRVhNf9iBX4e9M-1663542075-0-AdIblK97QvIsDUZ+s1XHhhyngpTW3V+qbJKv2oBUBCaWj0bp0rGmBbL6m7NCrkK465XudBqCaDf0IlwFQVbp+FljNSLrrKVfZOy2/CKM9NmE; path=/; expires=Sun, 18-Sep-22 23:31:15 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
app.clickfunnels.com/userevents/?funnel_id=SHFKSXpmMzk5ZlNpS2k2bVNrNGNxZz09LS1hb2RtQklQS3NwQkUrT3NWR2pEVEpBPT0%3D--41448796011bbd66a4182b310f27ce2a9abbee46&page_id=TmdjUlA0WGUwT1d4OE1OK29sR0xJZz09LS0rd0hvOEZmOFZMQldkYjJsUUhBNFFBPT0%3D--b5e7a1ec793bc0d7ccac4ae8b2d7a6d1480f6e5d&funnel_step_id=VytzVE4wVDJGQVZkZ2pxUktzMThOUT09LS0zdjUrTXRtK1FKVlBLMHlKQVlROXpnPT0%3D--05bf44efadb4280addba7ddb0bc9896a82cd578d&user_id=YVp3WWhYd1JuSThvTlduN0V3ajEvZz09LS1ya1BjZUI5ZXZRZW1MQ1hNL0xOV2x3PT0%3D--75373777a5a2745bfea30877f3a7a1cea06fc5ba&account_id=dk5qeXpEcWZKMmY2QXdIalNheFM1dz09LS14SFFXK0FKYm1TN2dGR0FEY0lrbzhRPT0%3D--4d806c48a196296b29cba4bebe4568145d308975&page_code=NTM1NTQ4ODg%3D&mode_id=1&time_zone=America%2FChicago&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniquePageviewsCreatedSummary&nonce=3189e35b-803c-487e-b617-2b3c5b4f1f8f&url=https%3A%2F%2Fheartofvegas698.blogspot.com%2F%3Fm%3D1
104.16.12.194202 Accepted 0 B URL HTTP/2 app.clickfunnels.com/userevents/?funnel_id=SHFKSXpmMzk5ZlNpS2k2bVNrNGNxZz09LS1hb2RtQklQS3NwQkUrT3NWR2pEVEpBPT0%3D--41448796011bbd66a4182b310f27ce2a9abbee46&page_id=TmdjUlA0WGUwT1d4OE1OK29sR0xJZz09LS0rd0hvOEZmOFZMQldkYjJsUUhBNFFBPT0%3D--b5e7a1ec793bc0d7ccac4ae8b2d7a6d1480f6e5d&funnel_step_id=VytzVE4wVDJGQVZkZ2pxUktzMThOUT09LS0zdjUrTXRtK1FKVlBLMHlKQVlROXpnPT0%3D--05bf44efadb4280addba7ddb0bc9896a82cd578d&user_id=YVp3WWhYd1JuSThvTlduN0V3ajEvZz09LS1ya1BjZUI5ZXZRZW1MQ1hNL0xOV2x3PT0%3D--75373777a5a2745bfea30877f3a7a1cea06fc5ba&account_id=dk5qeXpEcWZKMmY2QXdIalNheFM1dz09LS14SFFXK0FKYm1TN2dGR0FEY0lrbzhRPT0%3D--4d806c48a196296b29cba4bebe4568145d308975&page_code=NTM1NTQ4ODg%3D&mode_id=1&time_zone=America%2FChicago&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniquePageviewsCreatedSummary&nonce=3189e35b-803c-487e-b617-2b3c5b4f1f8f&url=https%3A%2F%2Fheartofvegas698.blogspot.com%2F%3Fm%3D1
IP 104.16.12.194:0
GET /userevents/?funnel_id=SHFKSXpmMzk5ZlNpS2k2bVNrNGNxZz09LS1hb2RtQklQS3NwQkUrT3NWR2pEVEpBPT0%3D--41448796011bbd66a4182b310f27ce2a9abbee46&page_id=TmdjUlA0WGUwT1d4OE1OK29sR0xJZz09LS0rd0hvOEZmOFZMQldkYjJsUUhBNFFBPT0%3D--b5e7a1ec793bc0d7ccac4ae8b2d7a6d1480f6e5d&funnel_step_id=VytzVE4wVDJGQVZkZ2pxUktzMThOUT09LS0zdjUrTXRtK1FKVlBLMHlKQVlROXpnPT0%3D--05bf44efadb4280addba7ddb0bc9896a82cd578d&user_id=YVp3WWhYd1JuSThvTlduN0V3ajEvZz09LS1ya1BjZUI5ZXZRZW1MQ1hNL0xOV2x3PT0%3D--75373777a5a2745bfea30877f3a7a1cea06fc5ba&account_id=dk5qeXpEcWZKMmY2QXdIalNheFM1dz09LS14SFFXK0FKYm1TN2dGR0FEY0lrbzhRPT0%3D--4d806c48a196296b29cba4bebe4568145d308975&page_code=NTM1NTQ4ODg%3D&mode_id=1&time_zone=America%2FChicago&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniquePageviewsCreatedSummary&nonce=3189e35b-803c-487e-b617-2b3c5b4f1f8f&url=https%3A%2F%2Fheartofvegas698.blogspot.com%2F%3Fm%3D1 HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://heartofvegas698.blogspot.com
Connection: keep-alive
Referer: https://heartofvegas698.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
date: Sun, 18 Sep 2022 23:01:15 GMT
content-type: text/html
cf-ray: 74cdb3d598141c16-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
pragma: no-cache
status: 202 Accepted
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: df59d17cbf28f2ddcdeeaee95e18a69a
x-runtime: 0.041706
set-cookie: __cf_bm=WTJ.WtdulO2iA5kAW9BHPMKLZbO.JTGy0hTfR6E3YrE-1663542075-0-AdBgayL8GZ7UkoMcWCu1vOSVT3nH7A6b1Ye/UGfAxN+umsfiZDaW5J2DclhtmzGPK/Az20Bi9pYaveYKfhpXF3y/TMaxRoJQurUdX8KxsRMe; path=/; expires=Sun, 18-Sep-22 23:31:15 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.9.0/css/all.css
172.64.196.18200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.9.0/css/all.css
IP 172.64.196.18:0
GET /releases/v5.9.0/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heartofvegas698.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Sep 2022 23:01:15 GMT
content-type: text/css
x-amz-id-2: cIB7RJR8YNkOt3c5odVNIsPWGanLxokh1zS2YvTVv7QSgKdKXNOroM5eyN2MvPjoE855Z9I1sPM=
x-amz-request-id: BCPBKD6BGPB27GGJ
last-modified: Wed, 30 Jun 2021 15:48:06 GMT
etag: W/"dbf9d822cefe851ba6f66e1ad57e8987"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 28309096
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iOac4BQe3HaQ7c0RtjXLRhXbQXOiLTcYtCGPO8y%2FYgA6FhaW4fwVcW7jFtS4GPQ4gd79UVE1BHmgYyr1SJNhvxe%2FnSzBHylRmLx9JLCg%2FKUIVXSiWjS4G%2BsHmvBbw70HUNHtNqrV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cdb3d2688c06d9-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.clickfunnels.com/assets/lander.css
104.16.12.194200 OK 0 B URL HTTP/2 www.clickfunnels.com/assets/lander.css
IP 104.16.12.194:0
GET /assets/lander.css HTTP/1.1
Host: www.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heartofvegas698.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Sep 2022 23:01:15 GMT
content-type: text/css
cf-ray: 74cdb3d20e701c16-OSL
access-control-allow-origin: *
age: 730
cache-control: public, max-age=1200
etag: W/"630e9cfc-6a514"
expires: Sun, 18 Sep 2022 23:21:15 GMT
last-modified: Tue, 30 Aug 2022 23:27:56 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
set-cookie: __cf_bm=ym1QjaYCC4IthLxK8TDn4FxjkaL.Wfa5a4k5AOZHnOI-1663542075-0-AYuk+sAkgy7DA+Vk4tf1t39U5bOkBPZoYYQb1Lf0c+YjUEPY0Epa7IpV3lA+C92HvUkVYfeCVpQItJx4Yv9VYfJMEsqS0pF18Asv01ycxQ0A; path=/; expires=Sun, 18-Sep-22 23:31:15 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194
104.18.47.230200 OK 0 B URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194
IP 104.18.47.230:0
GET /beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://heartofvegas698.blogspot.com
Connection: keep-alive
Referer: https://heartofvegas698.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Sep 2022 23:01:15 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2021.12.0
last-modified: Thu, 09 Dec 2021 19:55:17 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cdb3d21c64b4ee-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.9.0/css/v4-shims.css
172.64.196.18200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.9.0/css/v4-shims.css
IP 172.64.196.18:0
GET /releases/v5.9.0/css/v4-shims.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heartofvegas698.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Sep 2022 23:01:15 GMT
content-type: text/css
x-amz-id-2: WpVlr9E4LNAdFsXi6U7ITEvBAF0od/nY8z13ckAJA/I/wFoGHyoSwlXOyhWr8pqbj6dB1MeQp5k=
x-amz-request-id: CN86A7VHSM61Q680
last-modified: Wed, 30 Jun 2021 15:48:06 GMT
etag: W/"e140a7d32f343530f016095df3cc2ae4"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 29435310
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PxenGcXD5EgC%2BNPY1LI7CJRc4kU1LAcs5idtA%2BDABWansmrv4zlIN9CAc4wQsHfH6%2FXQs7MqbKzWp%2FyHTMt3C38%2FLKp97Gd%2FQj7AXyIU0KGX8NP0YvEri7NtbwxlFKKxRvzmHbLK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cdb3d2688806d9-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
app.clickfunnels.com/assets/pushcrew.js
104.16.12.194200 OK 0 B URL HTTP/2 app.clickfunnels.com/assets/pushcrew.js
IP 104.16.12.194:0
GET /assets/pushcrew.js HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heartofvegas698.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Sep 2022 23:01:15 GMT
content-type: application/x-javascript
cf-ray: 74cdb3d20e7c1c16-OSL
access-control-allow-origin: *
age: 919
cache-control: public, max-age=1200
etag: W/"630e9cfb-27d"
expires: Sun, 18 Sep 2022 23:21:15 GMT
last-modified: Tue, 30 Aug 2022 23:27:55 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
set-cookie: __cf_bm=efvO.8Xkuz3dHNCH5RrhkxW8Xa9TZc5v8eX36eZDGvQ-1663542075-0-ARoaJwEjU5DBjo4ps+yohAI2oqUofXBe7lg1tAYcmQEiPXGI1UHCppraV59dqTDcINBPAJ75nxZAo2tlTwKZf1268EqXsCGvZsQQPpM4/2tw; path=/; expires=Sun, 18-Sep-22 23:31:15 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,700%7COswald:400,700%7CDroid+Sans:400,700%7CRoboto:400,700%7CLato:400,700%7CPT+Sans:400,700%7CSource+Sans+Pro:400,600,700%7CNoto+Sans:400,700%7CPT+Sans:400,700%7CUbuntu:400,700%7CBitter:400,700%7CPT+Serif:400,700%7CRokkitt:400,700%7CDroid+Serif:400,700%7CRaleway:400,700%7CInconsolata:400,700
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,700%7COswald:400,700%7CDroid+Sans:400,700%7CRoboto:400,700%7CLato:400,700%7CPT+Sans:400,700%7CSource+Sans+Pro:400,600,700%7CNoto+Sans:400,700%7CPT+Sans:400,700%7CUbuntu:400,700%7CBitter:400,700%7CPT+Serif:400,700%7CRokkitt:400,700%7CDroid+Serif:400,700%7CRaleway:400,700%7CInconsolata:400,700
IP 142.250.74.10:0
GET /css?family=Open+Sans:400,700%7COswald:400,700%7CDroid+Sans:400,700%7CRoboto:400,700%7CLato:400,700%7CPT+Sans:400,700%7CSource+Sans+Pro:400,600,700%7CNoto+Sans:400,700%7CPT+Sans:400,700%7CUbuntu:400,700%7CBitter:400,700%7CPT+Serif:400,700%7CRokkitt:400,700%7CDroid+Serif:400,700%7CRaleway:400,700%7CInconsolata:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heartofvegas698.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 18 Sep 2022 23:01:15 GMT
date: Sun, 18 Sep 2022 23:01:15 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
app.clickfunnels.com/cf.js
104.16.12.194301 Moved Permanently 0 B URL HTTP/2 app.clickfunnels.com/cf.js
IP 104.16.12.194:0
GET /cf.js HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heartofvegas698.blogspot.com/
Cookie: __cf_bm=efvO.8Xkuz3dHNCH5RrhkxW8Xa9TZc5v8eX36eZDGvQ-1663542075-0-ARoaJwEjU5DBjo4ps+yohAI2oqUofXBe7lg1tAYcmQEiPXGI1UHCppraV59dqTDcINBPAJ75nxZAo2tlTwKZf1268EqXsCGvZsQQPpM4/2tw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Sun, 18 Sep 2022 23:01:15 GMT
content-type: text/html
location: https://www.clickfunnels.com/cf.js
cf-ray: 74cdb3d56ff31c16-OSL
access-control-allow-origin: *
age: 418
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
X-Firefox-Spdy: h2