elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
172.217.21.161404 Not Found 15 kB URL User Request GET HTTP/2 elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
IP 172.217.21.161:443
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint07:E2:99:33:66:25:16:0A:1D:C3:C7:18:D8:82:4A:F0:37:40:E1:5B
ValidityMon, 23 Oct 2023 11:23:28 GMT - Mon, 15 Jan 2024 11:23:27 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (590)
Hash a69a0935a68d7716b398a950a667d2a6
1572cd428e444691d2527218e0cb74c6cfdd1371
cc17959d007fcb5d06830a02b174031131fa10b9a917e8d14c2f5d01b0da1343
NIDS Severity Alert suricata medium ET COINMINER CoinHive In-Browser Miner Detected
GET /http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27, HTTP/1.1
Host: elvisonthemove.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 03 Dec 2023 15:13:21 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 15439
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
172.217.21.161404 Not Found 15 kB URL User Request GET HTTP/2 elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
IP 172.217.21.161:443
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint07:E2:99:33:66:25:16:0A:1D:C3:C7:18:D8:82:4A:F0:37:40:E1:5B
ValidityMon, 23 Oct 2023 11:23:28 GMT - Mon, 15 Jan 2024 11:23:27 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (590)
Hash 78ba3cbaf5d87adc979e05e41b953a30
5b569e9c2255176e0ff7a78d9b99c2bc031d5ec3
3d234521bf1e6ef60cf2930ee19f5d20dfe5be8f3fe75ebb48be0b434ced3905
NIDS Severity Alert suricata medium ET COINMINER CoinHive In-Browser Miner Detected
GET /http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27, HTTP/1.1
Host: elvisonthemove.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Sun, 03 Dec 2023 15:13:22 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 15069
Server: GSE
elvisonthemove.blogspot.com/js/cookienotice.js
172.217.21.161200 OK 2.0 kB URL GET HTTP/1.1 elvisonthemove.blogspot.com/js/cookienotice.js
IP 172.217.21.161:80
Requested by http://elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
Hash a705132a2174f88e196ec3610d68faa8
3bad57a48d973a678fec600d45933010f6edc659
068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568
GET /js/cookienotice.js HTTP/1.1
Host: elvisonthemove.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sun, 03 Dec 2023 14:52:58 GMT
Expires: Sun, 10 Dec 2023 14:52:58 GMT
Cache-Control: public, max-age=604800
Last-Modified: Sun, 03 Dec 2023 13:51:39 GMT
Content-Type: text/javascript
Vary: Accept-Encoding
Age: 1225
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
216.58.207.233200 OK 6.6 kB URL GET HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP 216.58.207.233:443
Requested by http://elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with very long lines (30596)
Hash e3f09df1bc175f411d1ec3dfb5afb17b
3994ec3efe3c2447e7bbfdd97bb7e190dd1658f9
1a2eca9e492e3a21e02dd77ad44d7af45c4091d35ede79e948b7a3f23e5b3617
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://elvisonthemove.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 11:35:32 GMT
expires: Fri, 29 Nov 2024 11:35:32 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 29 Nov 2023 17:00:16 GMT
content-type: text/css
vary: Accept-Encoding
age: 272271
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ateon.fs.googlepages.com/kodescript.js
216.58.207.211301 Moved Permanently 247 B URL GET HTTP/1.1 ateon.fs.googlepages.com/kodescript.js
IP 216.58.207.211:80
Requested by http://elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash b4498d85e6f001f83957ebc5b1770af8
25cae972089420ffbf741ccdbeec8f937446f688
594a2a193a9ac30c70771192c9019ae600d0da182edfb9763505b2e256f1f13c
GET /kodescript.js HTTP/1.1
Host: ateon.fs.googlepages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://elvisonthemove.blogspot.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Location: http://sites.google.com/site/ateonfs/kodescript.js
Date: Sun, 03 Dec 2023 15:13:23 GMT
Content-Type: text/html; charset=UTF-8
Server: ghs
Content-Length: 247
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/js/platform.js
142.250.74.78200 OK 22 kB URL GET HTTP/2 apis.google.com/js/platform.js
IP 142.250.74.78:443
Requested by http://elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
Certificate IssuerGoogle Trust Services LLC
Subject*.apis.google.com
Fingerprint06:87:C0:63:02:21:98:02:BD:FC:A0:11:93:E9:3A:9F:51:21:06:D8
ValidityMon, 23 Oct 2023 11:25:10 GMT - Mon, 15 Jan 2024 11:25:09 GMT
File type ASCII text, with very long lines (2664)
Hash fd67324a3d81895bdf76b073089663b1
5abb1b0a36c645085e31830e6647faa790ad4e91
8eaa06f95fa0ac44c2c186f200874f2f3ebc3aaa92412f0d0c096f517d3581d1
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://elvisonthemove.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-length: 21930
date: Sun, 03 Dec 2023 15:13:23 GMT
expires: Sun, 03 Dec 2023 15:13:23 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "bccfddc1dce4fb76"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
set-cookie: NID=511=B2Zm25KIIjh5nXWXrXjGzhx7TKoMcH30u8txswlQhJ6Na1VEy7r8RgLWtduELRq_quq1QsfCFKQHt6qpcHQ6p8It0YocRtY9_TWzQUkCkQagj182xOBPq0EuMdlwcOBvMTlRfgt5rWmoZxh4QL-6yMoEVrXd0jvopMnULaYxcew; expires=Mon, 03-Jun-2024 15:13:23 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/325989852-widgets.js
216.58.207.233200 OK 59 kB URL GET HTTP/2 www.blogger.com/static/v1/widgets/325989852-widgets.js
IP 216.58.207.233:443
Requested by http://elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with very long lines (2258)
Hash 2aaaea7286ee481cbc12cfd76e10c0cf
6e8576cb84ac125faa0bc0a5fe5508166cc4eed8
4bfa00cdbc7a40f5dad3dfc3a21dada224e61e358e78d7b262bab098bccbc580
GET /static/v1/widgets/325989852-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://elvisonthemove.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 59316
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 14:08:07 GMT
expires: Fri, 29 Nov 2024 14:08:07 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 29 Nov 2023 05:57:17 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 263116
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
4.bp.blogspot.com/__bTSJsGrheE/Saa-kSSe2YI/AAAAAAAAAZ8/NfU_K1OUxDI/S1600-R/EOTM+with+Captions(277x1000).JPG
142.250.74.161200 OK 49 kB URL GET HTTP/1.1 4.bp.blogspot.com/__bTSJsGrheE/Saa-kSSe2YI/AAAAAAAAAZ8/NfU_K1OUxDI/S1600-R/EOTM+with+Captions(277x1000).JPG
IP 142.250.74.161:80
Requested by http://elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, orientation=upper-left, software=Google], baseline, precision 8, 1000x277, components 3\012- data
Hash 9eb3164dc0fa64dcaafcaa71e1b12252
c6d633793dea3abec8dc5123ffa8d6a5de9fe68b
db722be2377215cdf50a822b020d439be820d2cc992a8603b4d1da0c6a303319
GET /__bTSJsGrheE/Saa-kSSe2YI/AAAAAAAAAZ8/NfU_K1OUxDI/S1600-R/EOTM+with+Captions(277x1000).JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://elvisonthemove.blogspot.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="EOTM with Captions(277x1000).JPG"
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 49018
X-XSS-Protection: 0
Date: Sun, 03 Dec 2023 14:52:58 GMT
Expires: Mon, 04 Dec 2023 14:52:58 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v19f"
Content-Type: image/jpeg
Vary: Origin
Age: 1225
www.linkworth.com/context-ads/context_ads.php?prt_website_id=28221
3.215.235.120200 OK 0 B URL GET HTTP/1.1 www.linkworth.com/context-ads/context_ads.php?prt_website_id=28221
IP 3.215.235.120:80
Requested by http://elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /context-ads/context_ads.php?prt_website_id=28221 HTTP/1.1
Host: www.linkworth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://elvisonthemove.blogspot.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 03 Dec 2023 15:13:23 GMT
Server: Apache
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html
sites.google.com/site/ateonfs/kodescript.js
142.250.74.78302 Found 190 B URL GET HTTP/3 sites.google.com/site/ateonfs/kodescript.js
IP 142.250.74.78:443
Requested by http://elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 45d5e00662ee0df742e6e09bc78c258f
fec12cad615d760acc0aa501bba124d01d2494df
16c227a11d9a31783914190088cb9f31ad9ee967d4add0045198d9953cb7d05f
GET /site/ateonfs/kodescript.js HTTP/1.1
Host: sites.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://elvisonthemove.blogspot.com/
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Location: https://sites.google.com/site/ateonfs/kodescript.js
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Sun, 03 Dec 2023 15:13:23 GMT
Expires: Sun, 03 Dec 2023 15:13:23 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 190
Server: GSE
sites.google.com/site/ateonfs/kodescript.js
142.250.74.78302 Found 224 B URL GET HTTP/3 sites.google.com/site/ateonfs/kodescript.js
IP 142.250.74.78:443
Requested by http://elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 3a68c2c6d20c73abb9406fcb6bf00ed3
52f9fcdb4bf0f2001fffeb1bf74a90d11d18754b
e808390608bdd7ef24b16b2bf3a792421de760c4f8904db72489885498e84657
GET /site/ateonfs/kodescript.js HTTP/1.1
Host: sites.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://elvisonthemove.blogspot.com/
DNT: 1
Connection: keep-alive
Cookie: NID=511=B2Zm25KIIjh5nXWXrXjGzhx7TKoMcH30u8txswlQhJ6Na1VEy7r8RgLWtduELRq_quq1QsfCFKQHt6qpcHQ6p8It0YocRtY9_TWzQUkCkQagj182xOBPq0EuMdlwcOBvMTlRfgt5rWmoZxh4QL-6yMoEVrXd0jvopMnULaYxcew
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
content-type: text/html; charset=UTF-8
location: https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path=%2Fateonfs%2Fkodescript.js
content-encoding: gzip
date: Sun, 03 Dec 2023 15:13:23 GMT
expires: Sun, 03 Dec 2023 15:13:23 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 224
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
sites.google.com/site/sites/system/errors/WebspaceNotFound?path=%2Fateonfs%2Fkodescript.js
142.250.74.78302 Found 288 B URL GET HTTP/3 sites.google.com/site/sites/system/errors/WebspaceNotFound?path=%2Fateonfs%2Fkodescript.js
IP 142.250.74.78:443
Requested by http://elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (339)
Hash ce6fe3b070978c459602a82c1ffcffa5
2a7200ff515a399b06c31068de735e2c9d4c5b67
11e9fef6cff5ea663007c67afdfbdea3cfc91895a37bf360de8ffa30d3b89a46
GET /site/sites/system/errors/WebspaceNotFound?path=%2Fateonfs%2Fkodescript.js HTTP/1.1
Host: sites.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://elvisonthemove.blogspot.com/
DNT: 1
Connection: keep-alive
Cookie: NID=511=B2Zm25KIIjh5nXWXrXjGzhx7TKoMcH30u8txswlQhJ6Na1VEy7r8RgLWtduELRq_quq1QsfCFKQHt6qpcHQ6p8It0YocRtY9_TWzQUkCkQagj182xOBPq0EuMdlwcOBvMTlRfgt5rWmoZxh4QL-6yMoEVrXd0jvopMnULaYxcew
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
last-modified: Wed, 15 Nov 2023 21:51:43 GMT
etag: "1700085103000|#public|0|en|||0|-509351017|582789506"
location: https://accounts.google.com/ServiceLogin?service=jotspot&passive=1209600&continue=https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path%3D/ateonfs/kodescript.js&followup=https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path%3D/ateonfs/kodescript.js
content-encoding: gzip
date: Sun, 03 Dec 2023 15:13:23 GMT
expires: Sun, 03 Dec 2023 15:13:23 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 288
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
accounts.google.com/ServiceLogin?service=jotspot&passive=1209600&continue=https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path%3D/ateonfs/kodescript.js&followup=https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path%3D/ateonfs/kodescript.js
64.233.164.84302 Found 0 B URL GET HTTP/2 accounts.google.com/ServiceLogin?service=jotspot&passive=1209600&continue=https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path%3D/ateonfs/kodescript.js&followup=https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path%3D/ateonfs/kodescript.js
IP 64.233.164.84:443
Requested by http://elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint1E:A9:E1:96:78:1D:08:FC:96:C8:C2:34:4F:02:D3:3D:FA:9A:D2:6B
ValidityMon, 23 Oct 2023 11:25:04 GMT - Mon, 15 Jan 2024 11:25:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ServiceLogin?service=jotspot&passive=1209600&continue=https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path%3D/ateonfs/kodescript.js&followup=https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path%3D/ateonfs/kodescript.js HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://elvisonthemove.blogspot.com/
DNT: 1
Connection: keep-alive
Cookie: NID=511=B2Zm25KIIjh5nXWXrXjGzhx7TKoMcH30u8txswlQhJ6Na1VEy7r8RgLWtduELRq_quq1QsfCFKQHt6qpcHQ6p8It0YocRtY9_TWzQUkCkQagj182xOBPq0EuMdlwcOBvMTlRfgt5rWmoZxh4QL-6yMoEVrXd0jvopMnULaYxcew
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:yI-TWpN18oPKU3jGIhFJEEcQO6eh_A:zJoXp40D2wVgX8Ew; Expires=Tue, 02-Dec-2025 15:13:23 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 03 Dec 2023 15:13:23 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path%3D/ateonfs/kodescript.js&followup=https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path%3D/ateonfs/kodescript.js&passive=1209600&service=jotspot&ifkv=ASKXGp0aOYS4grS37WRJ9nhap2uTLB2MuuLqHzqEk7IOR1PrIgoseovNhRvJS2QyrqnJnz0DO7B7fA
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy: unsafe-none
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: script-src 'nonce-3fUAMaRTmGF3u0iZvumPpg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
accounts.google.com/InteractiveLogin?continue=https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path%3D/ateonfs/kodescript.js&followup=https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path%3D/ateonfs/kodescript.js&passive=1209600&service=jotspot&ifkv=ASKXGp0aOYS4grS37WRJ9nhap2uTLB2MuuLqHzqEk7IOR1PrIgoseovNhRvJS2QyrqnJnz0DO7B7fA
64.233.164.84302 Found 447 B URL GET HTTP/2 accounts.google.com/InteractiveLogin?continue=https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path%3D/ateonfs/kodescript.js&followup=https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path%3D/ateonfs/kodescript.js&passive=1209600&service=jotspot&ifkv=ASKXGp0aOYS4grS37WRJ9nhap2uTLB2MuuLqHzqEk7IOR1PrIgoseovNhRvJS2QyrqnJnz0DO7B7fA
IP 64.233.164.84:443
Requested by http://elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint1E:A9:E1:96:78:1D:08:FC:96:C8:C2:34:4F:02:D3:3D:FA:9A:D2:6B
ValidityMon, 23 Oct 2023 11:25:04 GMT - Mon, 15 Jan 2024 11:25:03 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (586)
Hash 5e453cd9fe4b56ff2726b016df817810
286f663b6c72d782ea5886b77d7f5ec22c7e27e8
bd4c12027b6d73c3d1452a889e53092272206506d70341bda17426f796f3e141
GET /InteractiveLogin?continue=https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path%3D/ateonfs/kodescript.js&followup=https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path%3D/ateonfs/kodescript.js&passive=1209600&service=jotspot&ifkv=ASKXGp0aOYS4grS37WRJ9nhap2uTLB2MuuLqHzqEk7IOR1PrIgoseovNhRvJS2QyrqnJnz0DO7B7fA HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://elvisonthemove.blogspot.com/
DNT: 1
Connection: keep-alive
Cookie: NID=511=B2Zm25KIIjh5nXWXrXjGzhx7TKoMcH30u8txswlQhJ6Na1VEy7r8RgLWtduELRq_quq1QsfCFKQHt6qpcHQ6p8It0YocRtY9_TWzQUkCkQagj182xOBPq0EuMdlwcOBvMTlRfgt5rWmoZxh4QL-6yMoEVrXd0jvopMnULaYxcew
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:pG0Y3C5jw5O-b0hMWHSLJEStbIUrrQ:O_OGCyCqkOe8ie5H;Path=/;Expires=Tue, 02-Dec-2025 15:13:23 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 03 Dec 2023 15:13:23 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fsites.google.com%2Fsite%2Fsites%2Fsystem%2Ferrors%2FWebspaceNotFound%3Fpath%3D%2Fateonfs%2Fkodescript.js&followup=https%3A%2F%2Fsites.google.com%2Fsite%2Fsites%2Fsystem%2Ferrors%2FWebspaceNotFound%3Fpath%3D%2Fateonfs%2Fkodescript.js&ifkv=ASKXGp2gHAiZKdlDktnLe5Da7ldAvey1W9Nf1AWwqJVF90kE1phZU0MeXlxLpgGM6GWrUk9Lf-QgEQ&passive=1209600&service=jotspot&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S688415090%3A1701616403902335&theme=glif
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-security-policy: script-src 'nonce-pjaEqNu3AI_jBE43Y9uPhw' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 447
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs
142.250.74.78200 OK 61 kB URL GET HTTP/3 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs
IP 142.250.74.78:443
Requested by http://elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (1505)
Hash 71aaa92f748ba3c48d6edfb40204d614
ad1ca8c338494256d564ee7857707f758e03948b
215f3b01f5decd286eb88ac2dc56b997e6cd2ce8f47998dfa9e2917f8b890982
GET /_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://elvisonthemove.blogspot.com/
Cookie: NID=511=B2Zm25KIIjh5nXWXrXjGzhx7TKoMcH30u8txswlQhJ6Na1VEy7r8RgLWtduELRq_quq1QsfCFKQHt6qpcHQ6p8It0YocRtY9_TWzQUkCkQagj182xOBPq0EuMdlwcOBvMTlRfgt5rWmoZxh4QL-6yMoEVrXd0jvopMnULaYxcew
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 60962
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 02:45:42 GMT
expires: Fri, 29 Nov 2024 02:45:42 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 Nov 2023 22:37:21 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 304062
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
142.250.74.130200 OK 67 B URL GET HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 142.250.74.130:80
Requested by http://elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
Hash 7f5f2be159837d73b72a4b37616bce44
c93d7f25b530b05c26440d3352213b683d03dcc3
ccecd185ac16ba0a538840f37701053fbb861f7fbbdd86039c7415fcd924d1f2
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://elvisonthemove.blogspot.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Sat, 02 Dec 2023 21:48:53 GMT
Expires: Sat, 16 Dec 2023 21:48:53 GMT
Cache-Control: public, max-age=1209600
Age: 62671
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
Vary: Accept-Encoding
4.bp.blogspot.com/_kMUpUqMmduA/SUoAO7PMo9I/AAAAAAAAAnQ/4X-qK6Yz3PA/s1600/blue4.png
142.250.74.161200 OK 517 B URL GET HTTP/1.1 4.bp.blogspot.com/_kMUpUqMmduA/SUoAO7PMo9I/AAAAAAAAAnQ/4X-qK6Yz3PA/s1600/blue4.png
IP 142.250.74.161:80
Requested by http://elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
File type PNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced\012- data
Hash 45c92d3a41e3b4457a6b44c8ee560968
14e80d6c91a19e27a78c59c05439f2c91c27a0fd
bb6c83c0542bef02b2cb129e1b9ba555b16637e1a17a093afe1dda6518212bfe
GET /_kMUpUqMmduA/SUoAO7PMo9I/AAAAAAAAAnQ/4X-qK6Yz3PA/s1600/blue4.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://elvisonthemove.blogspot.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="blue4.png"
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 517
X-XSS-Protection: 0
Date: Sun, 03 Dec 2023 14:53:00 GMT
Expires: Mon, 04 Dec 2023 14:53:00 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v274"
Content-Type: image/png
Vary: Origin
Age: 1224
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fsites.google.com%2Fsite%2Fsites%2Fsystem%2Ferrors%2FWebspaceNotFound%3Fpath%3D%2Fateonfs%2Fkodescript.js&followup=https%3A%2F%2Fsites.google.com%2Fsite%2Fsites%2Fsystem%2Ferrors%2FWebspaceNotFound%3Fpath%3D%2Fateonfs%2Fkodescript.js&ifkv=ASKXGp2gHAiZKdlDktnLe5Da7ldAvey1W9Nf1AWwqJVF90kE1phZU0MeXlxLpgGM6GWrUk9Lf-QgEQ&passive=1209600&service=jotspot&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S688415090%3A1701616403902335&theme=glif
64.233.164.84403 Forbidden 829 B URL GET HTTP/3 accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fsites.google.com%2Fsite%2Fsites%2Fsystem%2Ferrors%2FWebspaceNotFound%3Fpath%3D%2Fateonfs%2Fkodescript.js&followup=https%3A%2F%2Fsites.google.com%2Fsite%2Fsites%2Fsystem%2Ferrors%2FWebspaceNotFound%3Fpath%3D%2Fateonfs%2Fkodescript.js&ifkv=ASKXGp2gHAiZKdlDktnLe5Da7ldAvey1W9Nf1AWwqJVF90kE1phZU0MeXlxLpgGM6GWrUk9Lf-QgEQ&passive=1209600&service=jotspot&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S688415090%3A1701616403902335&theme=glif
IP 64.233.164.84:443
Requested by http://elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (1644)
Hash 5f5ddd4e39eb8d21554b9c14636dbb07
8efae093038d4461477c075febcf44d1ef6a62c2
214e6efc39fd2369649317babea86f92fe988e80f7d686344ab1906ba4718d3b
GET /v3/signin/identifier?continue=https%3A%2F%2Fsites.google.com%2Fsite%2Fsites%2Fsystem%2Ferrors%2FWebspaceNotFound%3Fpath%3D%2Fateonfs%2Fkodescript.js&followup=https%3A%2F%2Fsites.google.com%2Fsite%2Fsites%2Fsystem%2Ferrors%2FWebspaceNotFound%3Fpath%3D%2Fateonfs%2Fkodescript.js&ifkv=ASKXGp2gHAiZKdlDktnLe5Da7ldAvey1W9Nf1AWwqJVF90kE1phZU0MeXlxLpgGM6GWrUk9Lf-QgEQ&passive=1209600&service=jotspot&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S688415090%3A1701616403902335&theme=glif HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://elvisonthemove.blogspot.com/
DNT: 1
Connection: keep-alive
Cookie: NID=511=B2Zm25KIIjh5nXWXrXjGzhx7TKoMcH30u8txswlQhJ6Na1VEy7r8RgLWtduELRq_quq1QsfCFKQHt6qpcHQ6p8It0YocRtY9_TWzQUkCkQagj182xOBPq0EuMdlwcOBvMTlRfgt5rWmoZxh4QL-6yMoEVrXd0jvopMnULaYxcew
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 03 Dec 2023 15:13:23 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
content-security-policy: script-src 'nonce-gb0Us6Y9zUeB2djTuWm-XA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
2.bp.blogspot.com/_kMUpUqMmduA/SUoAPCvpmgI/AAAAAAAAAno/nMGxA1LugYU/s1600/linkbar.png
142.250.74.129200 OK 299 B URL GET HTTP/1.1 2.bp.blogspot.com/_kMUpUqMmduA/SUoAPCvpmgI/AAAAAAAAAno/nMGxA1LugYU/s1600/linkbar.png
IP 142.250.74.129:80
Requested by http://elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
File type PNG image data, 100 x 33, 8-bit/color RGB, non-interlaced\012- data
Hash 09b763411291591694520e3e123b5d6a
a9a04d9c0a2e43e3bf1b63183c1199ca208354cc
e5eb251a22a4c0bc7a3b61236cbbc25b566a1b40304a1c853580ba8e01251c70
GET /_kMUpUqMmduA/SUoAPCvpmgI/AAAAAAAAAno/nMGxA1LugYU/s1600/linkbar.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://elvisonthemove.blogspot.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="linkbar.png"
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 299
X-XSS-Protection: 0
Date: Sun, 03 Dec 2023 14:53:00 GMT
Expires: Mon, 04 Dec 2023 14:53:00 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v27a"
Content-Type: image/png
Vary: Origin
Age: 1224
i535.photobucket.com/albums/ee355/elvisglazier/Blogger/EOTM277x1000lores.jpg
143.204.55.106200 OK 16 kB URL GET HTTP/1.1 i535.photobucket.com/albums/ee355/elvisglazier/Blogger/EOTM277x1000lores.jpg
IP 143.204.55.106:80
Requested by http://elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
File type RIFF (little-endian) data, Web/P image\012- data
Hash 330da4781fbc4ac0a3da977f39521f5c
466da15962dd412cdcf149710bc5bb8a145ae578
f3e210ef69c270ee787d3c6635eb69d84fd68b0f09ae7390166c7199a118a493
GET /albums/ee355/elvisglazier/Blogger/EOTM277x1000lores.jpg HTTP/1.1
Host: i535.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://elvisonthemove.blogspot.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/webp
Content-Length: 15494
Connection: keep-alive
Date: Sun, 03 Dec 2023 14:53:00 GMT
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Cache-Control: max-age=31536000, public
Content-Disposition: inline; filename="EOTM277x1000lores.webp"
Content-Security-Policy: script-src 'none'
Expires: Mon, 02 Dec 2024 14:53:00 GMT
Server: photobucket
X-Amzn-Trace-Id: Root=1-656c964b-149409352748d4a36a788b35
X-Request-Id: Rx7bRyQuo5XEg_wC2o0b_
Vary: Accept
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: CvqnwLBqiyPonaHIxk8QMYvR2GdyaFtKj70QtBmPHWNHSDFJP06K-w==
Age: 1224
farm4.static.flickr.com/3014/2347442400_bc2a895c25_o.png
143.204.48.75200 OK 167 B URL GET HTTP/2 farm4.static.flickr.com/3014/2347442400_bc2a895c25_o.png
IP 143.204.48.75:443
Requested by http://elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
Certificate IssuerAmazon
Subjectstatic.flickr.com
FingerprintB7:FC:2C:15:BB:C9:CF:45:BD:07:E2:9B:55:CA:4F:BE:AC:65:5E:C8
ValidityMon, 13 Nov 2023 00:00:00 GMT - Tue, 10 Dec 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /3014/2347442400_bc2a895c25_o.png HTTP/1.1
Host: farm4.static.flickr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://elvisonthemove.blogspot.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Sun, 03 Dec 2023 15:13:24 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://farm4.static.flickr.com/3014/2347442400_bc2a895c25_o.png
X-Cache: Redirect from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5gbnfOemU6fnzJBSPA5fGnPckKNo7QbnMAHQyOS-2Lr3jaGiCp1fsQ==
1.bp.blogspot.com/_kMUpUqMmduA/SUoAPAIYoII/AAAAAAAAAng/VyhhJGvEMHE/s1600/favicon.png
142.250.74.161200 OK 1.5 kB URL GET HTTP/1.1 1.bp.blogspot.com/_kMUpUqMmduA/SUoAPAIYoII/AAAAAAAAAng/VyhhJGvEMHE/s1600/favicon.png
IP 142.250.74.161:80
Requested by http://elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash ed405a490558867412b83cd7070cf140
7d618e5ad3ae9a7c73fb2507be704a3ee20417b4
65d8ea3c1cbf18c311945074ec8eed2222fbec7550583c91855446e299900527
GET /_kMUpUqMmduA/SUoAPAIYoII/AAAAAAAAAng/VyhhJGvEMHE/s1600/favicon.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://elvisonthemove.blogspot.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="favicon.png"
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1546
X-XSS-Protection: 0
Date: Sun, 03 Dec 2023 14:53:00 GMT
Expires: Mon, 04 Dec 2023 14:53:00 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v278"
Content-Type: image/png
Vary: Origin
Age: 1224
farm4.static.flickr.com/3014/2347442400_bc2a895c25_o.png
143.204.48.75200 OK 1.2 kB URL GET HTTP/2 farm4.static.flickr.com/3014/2347442400_bc2a895c25_o.png
IP 143.204.48.75:443
Requested by http://elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
Certificate IssuerAmazon
Subjectstatic.flickr.com
FingerprintB7:FC:2C:15:BB:C9:CF:45:BD:07:E2:9B:55:CA:4F:BE:AC:65:5E:C8
ValidityMon, 13 Nov 2023 00:00:00 GMT - Tue, 10 Dec 2024 23:59:59 GMT
File type PNG image data, 145 x 25, 8-bit colormap, interlaced\012- data
Hash 6f3fb23d306ee5a22a4924f049deedfe
6fe2f47149c565f9d306b6ba1208883159d26369
681336c129b891f7fdcead05f8bafdee13c3d1e12b9cb80f9c2c2930322ae343
GET /3014/2347442400_bc2a895c25_o.png HTTP/1.1
Host: farm4.static.flickr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://elvisonthemove.blogspot.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
content-length: 1222
date: Sun, 03 Dec 2023 14:53:00 GMT
edge-control: public, max-age=31536000
surrogate-control: public, max-age=31536000
cache-control: public, max-age=31536000
expires: Mon, 02 Dec 2024 14:53:00 GMT
imagewidth: 145
imageheight: 25
content-md5: bz+yPTBu5aIqSSTwSd7t/g==
etag: "6f3fb23d306ee5a22a4924f049deedfe"
last-modified: Sun, 03 Mar 2019 11:44:27 GMT
streaming: false
origintype: S
server: Jubilee
quote: "I'm not a kid anymore, I'm one of you, one of the X-Men. It means more to me than anything in the world."
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
powered-by: Mutation/1.0
hiring: Change the world of photography with us. https://www.flickr.com/jobs/
ourvalues: Deliver Awesome (#3 of 5)
x-request-id: ca02de79
x-frame-options: DENY
p3p: CP="This is not a P3P policy. We respect your privacy."
x-env: a=live, b=jubilee, c=77f4af62, e=278c78e6352b54bc17e7efacf7ae9f30060b9fd8
x-ttfb: 0.0652
x-ttdb-l: 1222
mib: 2
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: pfLvN2ilprZ2u9tcfcfdXVwQco3rMrUqnnEh7-GzdnwmyyxbUs1ZYg==
age: 1224
X-Firefox-Spdy: h2
elvisonthemove.blogspot.com//http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action%5Cx3dgetFeed%5Cx26widgetId%5Cx3dFeed1%5Cx26widgetType%5Cx3dFeed%5Cx26responseType%5Cx3djs%5Cx26xssi_token%5Cx3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,&action=getFeed&widgetId=Feed1&widgetType=Feed&responseType=js&xssi_token=AOuZoY6iRFmLxuoQ1bkSGBJORLY0c_kPaw%3A1701616402894
172.217.21.161404 Not Found 15 kB URL GET HTTP/1.1 elvisonthemove.blogspot.com//http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action%5Cx3dgetFeed%5Cx26widgetId%5Cx3dFeed1%5Cx26widgetType%5Cx3dFeed%5Cx26responseType%5Cx3djs%5Cx26xssi_token%5Cx3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,&action=getFeed&widgetId=Feed1&widgetType=Feed&responseType=js&xssi_token=AOuZoY6iRFmLxuoQ1bkSGBJORLY0c_kPaw%3A1701616402894
IP 172.217.21.161:80
Requested by http://elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (590)
Hash f7fee3ee44890ff36a18878aac08baa9
028946c927ca1434091af88fd0965a70d0d90326
9b6d561e2c5b0d74291be195bf559f10aafb4ba49cc3d1f48ba11ac17e0c4598
NIDS Severity Alert suricata medium ET COINMINER CoinHive In-Browser Miner Detected
suricata medium ET COINMINER CoinHive In-Browser Miner Detected
GET //http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action%5Cx3dgetFeed%5Cx26widgetId%5Cx3dFeed1%5Cx26widgetType%5Cx3dFeed%5Cx26responseType%5Cx3djs%5Cx26xssi_token%5Cx3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,&action=getFeed&widgetId=Feed1&widgetType=Feed&responseType=js&xssi_token=AOuZoY6iRFmLxuoQ1bkSGBJORLY0c_kPaw%3A1701616402894 HTTP/1.1
Host: elvisonthemove.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Sun, 03 Dec 2023 15:13:24 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 15215
Server: GSE
www.blogger.com/navbar.g?targetBlogID=1151655375009256488&blogName=Elvis+on+the+Move+-+Motorcycle+Advent...&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://elvisonthemove.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://elvisonthemove.blogspot.com/&vt=8346971353125368175&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__
216.58.207.233 2.6 kB URL www.blogger.com/navbar.g?targetBlogID=1151655375009256488&blogName=Elvis+on+the+Move+-+Motorcycle+Advent...&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://elvisonthemove.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://elvisonthemove.blogspot.com/&vt=8346971353125368175&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__
IP 216.58.207.233:0
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3172)
Hash 0d6f0a3ce1314575c41dfb273c3ade59
0451404fd8a62ed0cc3171d43232724660d587cd
4ae1f8d776b00a19f6897508841eb53f442af4fe81b32e8d26b1f3ead68a05ed
GET /navbar.g?targetBlogID=1151655375009256488&blogName=Elvis+on+the+Move+-+Motorcycle+Advent...&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://elvisonthemove.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://elvisonthemove.blogspot.com/&vt=8346971353125368175&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://elvisonthemove.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 03 Dec 2023 15:13:24 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 2608
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
resources.blogblog.com/img/navbar/icons_orange.png
216.58.207.233200 OK 915 B URL GET HTTP/3 resources.blogblog.com/img/navbar/icons_orange.png
IP 216.58.207.233:443
Requested by https://www.blogger.com/navbar.g?targetBlogID=1151655375009256488&blogName=Elvis+on+the+Move+-+Motorcycle+Advent...&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://elvisonthemove.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://elvisonthemove.blogspot.com/&vt=8346971353125368175&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Felvisonthemove.blogspot.com&pfname=&rpctoken=33349854
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type PNG image data, 46 x 20, 8-bit colormap, non-interlaced\012- data
Hash 87f25844d23ac1ee03604e668f5c1797
85d440947d70a78672740ff7e8062f68ce9d99a3
d70c36f2f61b735573caa3dd5a1602e19916701bb88d99ff4527cd2c89fa8b72
GET /img/navbar/icons_orange.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 915
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:00:55 GMT
expires: Thu, 07 Dec 2023 04:00:55 GMT
cache-control: public, max-age=604800
last-modified: Wed, 29 Nov 2023 10:56:25 GMT
content-type: image/png
age: 299550
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
resources.blogblog.com/img/navbar/arrows-blue.png
216.58.207.233200 OK 104 B URL GET HTTP/3 resources.blogblog.com/img/navbar/arrows-blue.png
IP 216.58.207.233:443
Requested by https://www.blogger.com/navbar.g?targetBlogID=1151655375009256488&blogName=Elvis+on+the+Move+-+Motorcycle+Advent...&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://elvisonthemove.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://elvisonthemove.blogspot.com/&vt=8346971353125368175&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Felvisonthemove.blogspot.com&pfname=&rpctoken=33349854
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type PNG image data, 19 x 4, 8-bit/color RGBA, non-interlaced\012- data
Hash 38c95719e05f4184a301768d8de91e09
d0ed1147d46f2cf592584239a5a101d6f2abb588
259ece79a45ad7ecbcf6fb0669de61aa6a01ebedaba47a7e88283435e0e6b1be
GET /img/navbar/arrows-blue.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 104
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 11:08:39 GMT
expires: Wed, 06 Dec 2023 11:08:39 GMT
cache-control: public, max-age=604800
last-modified: Wed, 29 Nov 2023 07:57:28 GMT
content-type: image/png
age: 360286
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
apis.google.com/js/platform:gapi.iframes.style.common.js
142.250.74.78200 OK 22 kB URL GET HTTP/3 apis.google.com/js/platform:gapi.iframes.style.common.js
IP 142.250.74.78:443
Requested by https://www.blogger.com/navbar.g?targetBlogID=1151655375009256488&blogName=Elvis+on+the+Move+-+Motorcycle+Advent...&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://elvisonthemove.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://elvisonthemove.blogspot.com/&vt=8346971353125368175&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Felvisonthemove.blogspot.com&pfname=&rpctoken=33349854
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (2664)
Hash b970f4ece0f21dae7d57dcbbbe1eb48b
52ab98370d3fc4bfd4c1b23cb3ed5dc1e37d779a
53dbcf2ac8d4a8d0a0fc4d5a15778fd36664923c87a60891a87bf8ec45535a91
GET /js/platform:gapi.iframes.style.common.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Cookie: NID=511=B2Zm25KIIjh5nXWXrXjGzhx7TKoMcH30u8txswlQhJ6Na1VEy7r8RgLWtduELRq_quq1QsfCFKQHt6qpcHQ6p8It0YocRtY9_TWzQUkCkQagj182xOBPq0EuMdlwcOBvMTlRfgt5rWmoZxh4QL-6yMoEVrXd0jvopMnULaYxcew
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 21940
date: Sun, 03 Dec 2023 15:13:25 GMT
expires: Sun, 03 Dec 2023 15:13:25 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "f3d0fc258127dfc5"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
elvisonthemove.blogspot.com//http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action%5Cx3dgetFeed%5Cx26widgetId%5Cx3dFeed1%5Cx26widgetType%5Cx3dFeed%5Cx26responseType%5Cx3djs%5Cx26xssi_token%5Cx3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,&action=getFeed&widgetId=Feed2&widgetType=Feed&responseType=js&xssi_token=AOuZoY6iRFmLxuoQ1bkSGBJORLY0c_kPaw%3A1701616402894
172.217.21.161404 Not Found 15 kB URL GET HTTP/1.1 elvisonthemove.blogspot.com//http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action%5Cx3dgetFeed%5Cx26widgetId%5Cx3dFeed1%5Cx26widgetType%5Cx3dFeed%5Cx26responseType%5Cx3djs%5Cx26xssi_token%5Cx3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,&action=getFeed&widgetId=Feed2&widgetType=Feed&responseType=js&xssi_token=AOuZoY6iRFmLxuoQ1bkSGBJORLY0c_kPaw%3A1701616402894
IP 172.217.21.161:80
Requested by http://elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (590)
Hash 114970a1cb0318e7d4a21d17ba5f4449
852d21fa4df17fbb93c68899e8adcc07df630a8e
618e6128d395a1632f52e4aaaba4c5948db7aecd7c5fbe42b41462578ca25937
NIDS Severity Alert suricata medium ET COINMINER CoinHive In-Browser Miner Detected
suricata medium ET COINMINER CoinHive In-Browser Miner Detected
GET //http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action%5Cx3dgetFeed%5Cx26widgetId%5Cx3dFeed1%5Cx26widgetType%5Cx3dFeed%5Cx26responseType%5Cx3djs%5Cx26xssi_token%5Cx3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,&action=getFeed&widgetId=Feed2&widgetType=Feed&responseType=js&xssi_token=AOuZoY6iRFmLxuoQ1bkSGBJORLY0c_kPaw%3A1701616402894 HTTP/1.1
Host: elvisonthemove.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Sun, 03 Dec 2023 15:13:25 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 15217
Server: GSE
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs
142.250.74.78200 OK 46 kB URL GET HTTP/3 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs
IP 142.250.74.78:443
Requested by https://www.blogger.com/navbar.g?targetBlogID=1151655375009256488&blogName=Elvis+on+the+Move+-+Motorcycle+Advent...&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://elvisonthemove.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://elvisonthemove.blogspot.com/&vt=8346971353125368175&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Felvisonthemove.blogspot.com&pfname=&rpctoken=33349854
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (1505)
Hash a5139ae5276fac825f580dd8b48d0f72
2820e165c330673129cebdc8e7cf806e1620c0a0
2170ad362c9ba9f7ff9b642d2a9d72a263fff1cd47de3664c55d6a7462c4cbc3
GET /_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Cookie: NID=511=B2Zm25KIIjh5nXWXrXjGzhx7TKoMcH30u8txswlQhJ6Na1VEy7r8RgLWtduELRq_quq1QsfCFKQHt6qpcHQ6p8It0YocRtY9_TWzQUkCkQagj182xOBPq0EuMdlwcOBvMTlRfgt5rWmoZxh4QL-6yMoEVrXd0jvopMnULaYxcew
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 45499
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 23:12:04 GMT
expires: Thu, 28 Nov 2024 23:12:04 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 Nov 2023 22:37:21 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 316881
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
elvisonthemove.blogspot.com//http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action%5Cx3dgetFeed%5Cx26widgetId%5Cx3dFeed1%5Cx26widgetType%5Cx3dFeed%5Cx26responseType%5Cx3djs%5Cx26xssi_token%5Cx3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,&action=getFeed&widgetId=Feed1&widgetType=Feed&responseType=js&xssi_token=AOuZoY6iRFmLxuoQ1bkSGBJORLY0c_kPaw%3A1701616402894
172.217.21.161404 Not Found 15 kB URL GET HTTP/1.1 elvisonthemove.blogspot.com//http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action%5Cx3dgetFeed%5Cx26widgetId%5Cx3dFeed1%5Cx26widgetType%5Cx3dFeed%5Cx26responseType%5Cx3djs%5Cx26xssi_token%5Cx3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,&action=getFeed&widgetId=Feed1&widgetType=Feed&responseType=js&xssi_token=AOuZoY6iRFmLxuoQ1bkSGBJORLY0c_kPaw%3A1701616402894
IP 172.217.21.161:80
Requested by http://elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (590)
Hash f7fee3ee44890ff36a18878aac08baa9
028946c927ca1434091af88fd0965a70d0d90326
9b6d561e2c5b0d74291be195bf559f10aafb4ba49cc3d1f48ba11ac17e0c4598
NIDS Severity Alert suricata medium ET COINMINER CoinHive In-Browser Miner Detected
suricata medium ET COINMINER CoinHive In-Browser Miner Detected
GET //http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action%5Cx3dgetFeed%5Cx26widgetId%5Cx3dFeed1%5Cx26widgetType%5Cx3dFeed%5Cx26responseType%5Cx3djs%5Cx26xssi_token%5Cx3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,&action=getFeed&widgetId=Feed1&widgetType=Feed&responseType=js&xssi_token=AOuZoY6iRFmLxuoQ1bkSGBJORLY0c_kPaw%3A1701616402894 HTTP/1.1
Host: elvisonthemove.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Sun, 03 Dec 2023 15:13:25 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 15215
Server: GSE
elvisonthemove.blogspot.com//http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action%5Cx3dgetFeed%5Cx26widgetId%5Cx3dFeed1%5Cx26widgetType%5Cx3dFeed%5Cx26responseType%5Cx3djs%5Cx26xssi_token%5Cx3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,&action=getFeed&widgetId=Feed2&widgetType=Feed&responseType=js&xssi_token=AOuZoY6iRFmLxuoQ1bkSGBJORLY0c_kPaw%3A1701616402894
172.217.21.161404 Not Found 15 kB URL GET HTTP/1.1 elvisonthemove.blogspot.com//http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action%5Cx3dgetFeed%5Cx26widgetId%5Cx3dFeed1%5Cx26widgetType%5Cx3dFeed%5Cx26responseType%5Cx3djs%5Cx26xssi_token%5Cx3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,&action=getFeed&widgetId=Feed2&widgetType=Feed&responseType=js&xssi_token=AOuZoY6iRFmLxuoQ1bkSGBJORLY0c_kPaw%3A1701616402894
IP 172.217.21.161:80
Requested by http://elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (590)
Hash 114970a1cb0318e7d4a21d17ba5f4449
852d21fa4df17fbb93c68899e8adcc07df630a8e
618e6128d395a1632f52e4aaaba4c5948db7aecd7c5fbe42b41462578ca25937
NIDS Severity Alert suricata medium ET COINMINER CoinHive In-Browser Miner Detected
suricata medium ET COINMINER CoinHive In-Browser Miner Detected
GET //http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action%5Cx3dgetFeed%5Cx26widgetId%5Cx3dFeed1%5Cx26widgetType%5Cx3dFeed%5Cx26responseType%5Cx3djs%5Cx26xssi_token%5Cx3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,&action=getFeed&widgetId=Feed2&widgetType=Feed&responseType=js&xssi_token=AOuZoY6iRFmLxuoQ1bkSGBJORLY0c_kPaw%3A1701616402894 HTTP/1.1
Host: elvisonthemove.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Sun, 03 Dec 2023 15:13:25 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 15217
Server: GSE
www.blogger.com/navbar.g?targetBlogID=1151655375009256488&blogName=Elvis+on+the+Move+-+Motorcycle+Advent...&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://elvisonthemove.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://elvisonthemove.blogspot.com/&vt=8346971353125368175&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__
216.58.207.233200 OK 6.7 kB URL GET HTTP/3 www.blogger.com/navbar.g?targetBlogID=1151655375009256488&blogName=Elvis+on+the+Move+-+Motorcycle+Advent...&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://elvisonthemove.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://elvisonthemove.blogspot.com/&vt=8346971353125368175&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__
IP 216.58.207.233:443
Requested by http://elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6918), with no line terminators
Hash 7451936c1cbbf8e40cf4673d5ed096e1
b823f89543eb79f4ebb0fb6e91d5d0dc354b2757
86358383963555a505c7e95e9617d32f90aada608fa70f4ac1e557648b21e9ba
GET /navbar.g?targetBlogID=1151655375009256488&blogName=Elvis+on+the+Move+-+Motorcycle+Advent...&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://elvisonthemove.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://elvisonthemove.blogspot.com/&vt=8346971353125368175&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://elvisonthemove.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 03 Dec 2023 15:13:24 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 2608
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/dyn-css/authorization.css?targetBlogID=1151655375009256488&zx=c443ae39-b886-44fe-9cc9-58c7c74d7b1c
216.58.207.233200 OK 1 B URL GET HTTP/3 www.blogger.com/dyn-css/authorization.css?targetBlogID=1151655375009256488&zx=c443ae39-b886-44fe-9cc9-58c7c74d7b1c
IP 216.58.207.233:443
Requested by http://elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/http:/elvisonthemove.blogspot.com/2008/09/%5Cx27?action\x3dgetFeed\x26widgetId\x3dFeed1\x26widgetType\x3dFeed\x26responseType\x3djs\x26xssi_token\x3dAOuZoY4BYfkV34OEPDJklPGx9Bx1UPMFvw:1659724721203%27,
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with no line terminators
Hash 1d78758685e5e2f4efeeb490f8521abd
ef7e6794ca9c6a06b54b66f279237fb8daaaeea8
a80e516bfb196e1c48a9acbe39da8fceb6bc82e0d991b8a990b8f3239c7efaed
GET /dyn-css/authorization.css?targetBlogID=1151655375009256488&zx=c443ae39-b886-44fe-9cc9-58c7c74d7b1c HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://elvisonthemove.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 03 Dec 2023 15:13:24 GMT
last-modified: Sun, 03 Dec 2023 15:13:24 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000