GET davidandmaraya.com/sub/41194f28695bb7a2e110017963e54fb4/index/web/index.php?cmd=5885d80a13c0db1f22d2300ef60a67593b79a4d03747447e6b625328d36121a1a95941fd4f034999c6311dd160eaff81a95941fd4f034999c6311dd160eaff81/
74.220.199.6200 OK 4.7 kB URL User Request GET HTTP/1.1 davidandmaraya.com/sub/41194f28695bb7a2e110017963e54fb4/index/web/index.php?cmd=5885d80a13c0db1f22d2300ef60a67593b79a4d03747447e6b625328d36121a1a95941fd4f034999c6311dd160eaff81a95941fd4f034999c6311dd160eaff81/
IP 74.220.199.6:80
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with very long lines (493)
Hash 1885d86b9cff73ec494d02ead3a08e08
1dcfa7481049b09cc43dd2069a05010898fbb462
618ab779bc8e449badb5e2577401f78e6ad702d40e78721f88fcd624e2a7978c
GET /sub/41194f28695bb7a2e110017963e54fb4/index/web/index.php?cmd=5885d80a13c0db1f22d2300ef60a67593b79a4d03747447e6b625328d36121a1a95941fd4f034999c6311dd160eaff81a95941fd4f034999c6311dd160eaff81/ HTTP/1.1
Host: davidandmaraya.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 10 Feb 2025 13:21:37 GMT
Server: Apache
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=ISO-8859-1
GET www.bluehost.com/media/shared/info/index/_bh/logo.jpg
104.18.41.208301 Moved Permanently 166 B URL GET HTTP/2 www.bluehost.com/media/shared/info/index/_bh/logo.jpg
IP 104.18.41.208:443
Requested by http://davidandmaraya.com/sub/41194f28695bb7a2e110017963e54fb4/index/web/index.php?cmd=5885d80a13c0db1f22d2300ef60a67593b79a4d03747447e6b625328d36121a1a95941fd4f034999c6311dd160eaff81a95941fd4f034999c6311dd160eaff81/
Certificate IssuerGoogle Trust Services
Subjectbluehost.com
Fingerprint04:CB:B7:C7:05:05:F1:18:D7:1E:CA:A4:D7:02:C0:5D:A8:89:74:23
ValidityThu, 23 Jan 2025 18:02:33 GMT - Wed, 23 Apr 2025 19:02:29 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash 3ea1c8d079b38532a6e01a96216ba5e2
598d3ff91d3e252f1e13df8cf0348b270ff2da3f
87a9323ac85ce28867d5d7ce590c8f29b8d1a999961fca71bb33adef48683691
GET /media/shared/info/index/_bh/logo.jpg HTTP/1.1
Host: www.bluehost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://davidandmaraya.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Mon, 10 Feb 2025 13:21:37 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://www.bluehost.com/media/shared/info/index/_bh/logo.jpg
Strict-Transport-Security: max-age=3600
CF-Cache-Status: HIT
Age: 6163
Vary: Accept-Encoding
src_continent: EU
src_country: NO
Set-Cookie: __cf_bm=J0JrCEZbsoGnLDf1qA6MG.mv_I7tLvMpMySBraylVeM-1739193697-1.0.1.1-wHQgsdOMnU_NFcZ6sTUdv1TxJ0MS8D.Q3I5ax24D7Lb3LzcrzR0lDAuE4z1Wm.XV8QdhQPktP6y7QxATIyZwrw; path=/; expires=Mon, 10-Feb-25 13:51:37 GMT; domain=.bluehost.com; HttpOnly
_cfuvid=oBqMwl8hUzU8Yaf6LEpTcO9K5hUqUD04yfYXVn6UbC0-1739193697710-0.0.1.1-604800000; path=/; domain=.bluehost.com; HttpOnly
Server: cloudflare
CF-RAY: 90fc6742789a56c7-OSL
GET www.bluehost.com/media/shared/info/index/_bh/logo.jpg
172.64.146.48200 OK 3.8 kB URL GET HTTP/2 www.bluehost.com/media/shared/info/index/_bh/logo.jpg
IP 172.64.146.48:443
Requested by http://davidandmaraya.com/sub/41194f28695bb7a2e110017963e54fb4/index/web/index.php?cmd=5885d80a13c0db1f22d2300ef60a67593b79a4d03747447e6b625328d36121a1a95941fd4f034999c6311dd160eaff81a95941fd4f034999c6311dd160eaff81/
Certificate IssuerGoogle Trust Services
Subjectbluehost.com
Fingerprint04:CB:B7:C7:05:05:F1:18:D7:1E:CA:A4:D7:02:C0:5D:A8:89:74:23
ValidityThu, 23 Jan 2025 18:02:33 GMT - Wed, 23 Apr 2025 19:02:29 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 209x51, components 3
Hash 7a30a6110dfeed1982631f199b48db9c
cb8fb805e32b5a61f8b0359e0dcb50d77427de32
7074d19a17d857dbba10468b817b389ae5cc925d823d627bfe1314621aff5b46
GET /media/shared/info/index/_bh/logo.jpg HTTP/1.1
Host: www.bluehost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://davidandmaraya.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 10 Feb 2025 13:21:37 GMT
content-type: image/jpeg
content-length: 3755
cache-control: max-age=604800
cf-bgj: imgq:100,h2pri
cf-polished: origSize=3799
access-control-allow-origin: *
etag: "ed7-48ae4539fc9c0"
expires: Thu, 13 Feb 2025 06:34:41 GMT
last-modified: Thu, 08 Jul 2010 18:19:27 GMT
strict-transport-security: max-age=3600
vary: Accept-Encoding
cf-cache-status: HIT
age: 367805
accept-ranges: bytes
src_continent: EU
src_country: NO
set-cookie: __cf_bm=yWCKVNX1W_By6hgwjSWCuT5njE7pr6yW.Ai0PnT.PII-1739193697-1.0.1.1-xcs4NF3sHRssYO2QJH3qX52V3Ne.Ns8DejWLllKS6xNQ8mrvoYEE7K1hFi2Vd3pSVmxloIb5hm1O68XiZ.Tz8w; path=/; expires=Mon, 10-Feb-25 13:51:37 GMT; domain=.bluehost.com; HttpOnly; Secure; SameSite=None
_cfuvid=3G1E0REq6Abtc3x0L5fq1E7Nu.ThUTGZStCqEhrBzjM-1739193697770-0.0.1.1-604800000; path=/; domain=.bluehost.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 90fc6742ecb256bf-OSL
X-Firefox-Spdy: h2
GET davidandmaraya.com/favicon.ico
74.220.199.6200 OK 4.7 kB URL GET HTTP/1.1 davidandmaraya.com/favicon.ico
IP 74.220.199.6:80
ASN #46606 UNIFIEDLAYER-AS-1
Requested by http://davidandmaraya.com/sub/41194f28695bb7a2e110017963e54fb4/index/web/index.php?cmd=5885d80a13c0db1f22d2300ef60a67593b79a4d03747447e6b625328d36121a1a95941fd4f034999c6311dd160eaff81a95941fd4f034999c6311dd160eaff81/
File type HTML document, ASCII text, with very long lines (493)
Hash 1885d86b9cff73ec494d02ead3a08e08
1dcfa7481049b09cc43dd2069a05010898fbb462
618ab779bc8e449badb5e2577401f78e6ad702d40e78721f88fcd624e2a7978c
GET /favicon.ico HTTP/1.1
Host: davidandmaraya.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://davidandmaraya.com/sub/41194f28695bb7a2e110017963e54fb4/index/web/index.php?cmd=5885d80a13c0db1f22d2300ef60a67593b79a4d03747447e6b625328d36121a1a95941fd4f034999c6311dd160eaff81a95941fd4f034999c6311dd160eaff81/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 10 Feb 2025 13:21:38 GMT
Server: Apache
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=ISO-8859-1
GET www.iyfubh.com/?dn=davidandmaraya.com&pid=9POJB64QD
208.91.196.46403 Forbidden 300 B URL GET HTTP/1.1 www.iyfubh.com/?dn=davidandmaraya.com&pid=9POJB64QD
IP 208.91.196.46:80
ASN #40034 CONFLUENCE-NETWORK-INC
Requested by http://davidandmaraya.com/sub/41194f28695bb7a2e110017963e54fb4/index/web/index.php?cmd=5885d80a13c0db1f22d2300ef60a67593b79a4d03747447e6b625328d36121a1a95941fd4f034999c6311dd160eaff81a95941fd4f034999c6311dd160eaff81/
File type HTML document, ASCII text, with CRLF line terminators
Hash ed12518248393d386ed82f4cfbc256fb
463a211631fd16852a5ca8c615f3450f9959e0ae
5d711d905ec866f728dcce8600135e81528f266ebd73eeedcf54cd87b60e60c8
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /?dn=davidandmaraya.com&pid=9POJB64QD HTTP/1.1
Host: www.iyfubh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://davidandmaraya.com/
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Mon, 10 Feb 2025 13:21:35 GMT
Server: Apache
Referrer-Policy: no-referrer-when-downgrade
Accept-CH: Sec-CH-Save-Data, Sec-CH-DPR, Sec-CH-Width, Sec-CH-Viewport-Width, Sec-CH-Viewport-Height, Sec-CH-Device-Memory, Sec-CH-RTT, Sec-CH-Downlink, Sec-CH-ECT, Sec-CH-Prefers-Color-Scheme, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
Permissions-Policy: ch-ua-platform-version=("https://dts.gnpge.com"), ch-ua-model=("https://dts.gnpge.com")
Content-Length: 300
Keep-Alive: timeout=5, max=120
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
GET www.bluehost.com/media/shared/general/jquery/jquery.min.js
104.18.41.208403 Forbidden 132 kB URL GET HTTP/1.1 www.bluehost.com/media/shared/general/jquery/jquery.min.js
IP 104.18.41.208:80
Requested by http://davidandmaraya.com/sub/41194f28695bb7a2e110017963e54fb4/index/web/index.php?cmd=5885d80a13c0db1f22d2300ef60a67593b79a4d03747447e6b625328d36121a1a95941fd4f034999c6311dd160eaff81a95941fd4f034999c6311dd160eaff81/
File type gzip compressed data, from Unix
Size 132 kB (131586 bytes)
Hash a8c9ed86f53bde0aa42b317c170d6511
8ce6a5710feedd134ac4b70e18add287da3117aa
47ab7dcff502274875ae4efd6bced94c03db21097bdd4fd55d045264a6ea7b68
GET /media/shared/general/jquery/jquery.min.js HTTP/1.1
Host: www.bluehost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://davidandmaraya.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Mon, 10 Feb 2025 13:21:37 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-content-options: nosniff
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: YGMnPxkp2GMncqEWllzhPl/seu9sUH7d9+jy4MIsI7g/nUFEsoQd/t+piJMW3S7bSJcYMpHMd4PE7ZLNlYmN1oKSV6GH9XZqOe5FN6THj3D30DhaYIr0jf9+yiOnh1w8cj+X9mG6BpOMP6XsRzEOnA==$2mW/v3M0L5wSUkeXmBiWmQ==
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Set-Cookie: __cf_bm=WVmPHgbU_V6s_VBVJhzGHn8WIeva_tOkzGdEGhif77Q-1739193697-1.0.1.1-vkBolkLuTNg_4VamD755Smi0ZziQADUh09tsDB1CzoLTmDwXfk90VMOs35l3xsXlcQKFlI.23UvOaAVuSQGkag; path=/; expires=Mon, 10-Feb-25 13:51:37 GMT; domain=.bluehost.com; HttpOnly
Vary: Accept-Encoding
src_continent: EU
src_country: NO
Server: cloudflare
CF-RAY: 90fc67413d8f56a4-OSL
Content-Encoding: gzip
GET www.bluehost.com/media/shared/general/jquery/jquery.min.js
104.18.41.208403 Forbidden 138 kB URL GET HTTP/1.1 www.bluehost.com/media/shared/general/jquery/jquery.min.js
IP 104.18.41.208:80
Requested by http://davidandmaraya.com/sub/41194f28695bb7a2e110017963e54fb4/index/web/index.php?cmd=5885d80a13c0db1f22d2300ef60a67593b79a4d03747447e6b625328d36121a1a95941fd4f034999c6311dd160eaff81a95941fd4f034999c6311dd160eaff81/
File type gzip compressed data, from Unix
Size 138 kB (137459 bytes)
Hash a159f1638146b99861f9096f52aaef96
bb403d3b5d1e8dcedf52853638bc1b0bfc2afffb
0c72d588226527f1fb426de500acbd3319363fb63643bef3762b17f358d84d87
GET /media/shared/general/jquery/jquery.min.js HTTP/1.1
Host: www.bluehost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://davidandmaraya.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Mon, 10 Feb 2025 13:21:37 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-content-options: nosniff
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: ElzDFLlAuTjxvK39QiSdcstE+PCNgeDPbW9nJCmFaa3IaN41fSNVCP2CyHw0Du2PtLWdkFQbBByt5jYpj3dR1YP1N2aSJfTpp83cGGTcDsBCeANa8r4m0sNSuZaY3a0ogyDRxjUIM5usNkBYq6vCYQ==$Qi4ws3nDAYG1vId00s/GCg==
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Set-Cookie: __cf_bm=AhuMVwqIGfSIsmYShAUv2qkvs6kTkPKYlQ8IWtsQT5Y-1739193697-1.0.1.1-Qvqi_Ep3wz6lO7K0hKyCBppjw8nFCfGFOYLAzLzO.jUxWNS2.xlsPSQ6Rw9QqkshP2zVdcWKEWbjg42mAvhCEA; path=/; expires=Mon, 10-Feb-25 13:51:37 GMT; domain=.bluehost.com; HttpOnly
Report-To: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=7WwOpY6u3RB4A9Q5rWQmC7JZ5rXZFjZMI_mLzd617yQ-1739193697-1.0.1.1-iuJdgkKHFRadtYTQ16gb0E527P0oTc49KY7yj1r7N9n7muOpjO_m21tRytooZr1tC3r1eqHxQ9VXlLQ2hovLcMbGwdE.Ryya2F3Vmt0i53gXE9dQ1zgPvYkQx6lDrWyg5VUlRF2q0f.xvop6U3ksCRRrJhBQkAIrnswp.s1xztI"}],"group":"cf-csp-endpoint","max_age":86400}
Content-Security-Policy-Report-Only: script-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=7WwOpY6u3RB4A9Q5rWQmC7JZ5rXZFjZMI_mLzd617yQ-1739193697-1.0.1.1-iuJdgkKHFRadtYTQ16gb0E527P0oTc49KY7yj1r7N9n7muOpjO_m21tRytooZr1tC3r1eqHxQ9VXlLQ2hovLcMbGwdE.Ryya2F3Vmt0i53gXE9dQ1zgPvYkQx6lDrWyg5VUlRF2q0f.xvop6U3ksCRRrJhBQkAIrnswp.s1xztI; report-to cf-csp-endpoint
Vary: Accept-Encoding
src_continent: EU
src_country: NO
Server: cloudflare
CF-RAY: 90fc67428e6cb4f4-OSL
Content-Encoding: gzip
GET www.bluehost.com/media/shared/info/index/_bh/home.css
172.64.146.48403 Forbidden 0 B URL GET HTTP/1.1 www.bluehost.com/media/shared/info/index/_bh/home.css
IP 172.64.146.48:80
Requested by http://davidandmaraya.com/sub/41194f28695bb7a2e110017963e54fb4/index/web/index.php?cmd=5885d80a13c0db1f22d2300ef60a67593b79a4d03747447e6b625328d36121a1a95941fd4f034999c6311dd160eaff81a95941fd4f034999c6311dd160eaff81/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /media/shared/info/index/_bh/home.css HTTP/1.1
Host: www.bluehost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://davidandmaraya.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Mon, 10 Feb 2025 13:21:37 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-content-options: nosniff
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: cm7pkk/cNxLkvj1FDU5AGkETWFMJUus9A1oA0X4EtzoD6NOhsbHwNi2UnQ3XEhJiVAhvw+z+oXJxbvM6uVztasDi7Ar0lRwL7KyL2RCishqclq4FiMr1Qm0po3BjuVQ4IkIML1y5PtZuCJFpbiEJ9w==$DXEwvhbyIRkanXoiCKL7Yw==
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Set-Cookie: __cf_bm=iB7uuD0IxX.djiwtPkQuuMb3lQJ8sulRnx6mWbWg0KM-1739193697-1.0.1.1-26HcexmtZE.MY_5GxR8MNNFtBWCntqOwZZTkwDqCw0slHlmuuEDH5qwFyqcxag3D.B0QZ2twvAfLHwopObPlCQ; path=/; expires=Mon, 10-Feb-25 13:51:37 GMT; domain=.bluehost.com; HttpOnly
Vary: Accept-Encoding
src_continent: EU
src_country: NO
Server: cloudflare
CF-RAY: 90fc67413cfab509-OSL
Content-Encoding: gzip
GET www.bluehost.com/media/shared/general/_bh/main.css
172.64.146.48403 Forbidden 0 B URL GET HTTP/1.1 www.bluehost.com/media/shared/general/_bh/main.css
IP 172.64.146.48:80
Requested by http://davidandmaraya.com/sub/41194f28695bb7a2e110017963e54fb4/index/web/index.php?cmd=5885d80a13c0db1f22d2300ef60a67593b79a4d03747447e6b625328d36121a1a95941fd4f034999c6311dd160eaff81a95941fd4f034999c6311dd160eaff81/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /media/shared/general/_bh/main.css HTTP/1.1
Host: www.bluehost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://davidandmaraya.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Mon, 10 Feb 2025 13:21:37 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-content-options: nosniff
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: nmGuyBayFLXQBuig5BP5Oat3T2kOH5rMZ/YDQkYdg2NstPMYinlprMoOhYjvGw8QPZCHUlM2C+FAatzDUvmvms3yt3SoLEuvzgFSgf5ajR9Y2UpaoJURnHZ3isLHz6G1OWlre5YB5d62wJcSy8TAGg==$aQ5HibDIhkW2i/rrCr8UHw==
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Set-Cookie: __cf_bm=N8Rd_mjofBgW0YPizNH4S2y2ovW_LEr2pR1tOI9DXRk-1739193697-1.0.1.1-85QWoJuvZP2hMRBdrjBn9HyV6y68MzXDL.8viggGNMTOIbq7gu3qkuwGIYoQmjjqNhcBDgBO_mJ5bcp_v1cZWw; path=/; expires=Mon, 10-Feb-25 13:51:37 GMT; domain=.bluehost.com; HttpOnly
Vary: Accept-Encoding
src_continent: EU
src_country: NO
Server: cloudflare
CF-RAY: 90fc674138d3b527-OSL
Content-Encoding: gzip
GET www.bluehost.com/media/shared/general/cookies.js
104.18.41.208403 Forbidden 0 B URL GET HTTP/1.1 www.bluehost.com/media/shared/general/cookies.js
IP 104.18.41.208:80
Requested by http://davidandmaraya.com/sub/41194f28695bb7a2e110017963e54fb4/index/web/index.php?cmd=5885d80a13c0db1f22d2300ef60a67593b79a4d03747447e6b625328d36121a1a95941fd4f034999c6311dd160eaff81a95941fd4f034999c6311dd160eaff81/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /media/shared/general/cookies.js HTTP/1.1
Host: www.bluehost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://davidandmaraya.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Mon, 10 Feb 2025 13:21:37 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-content-options: nosniff
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: 1bHhy18bUUIM2h+Y20SSHuezmd3PiYKIaNPdzW9ZcuPZDE47Jr8EVS8xGW/rWHopEZDLc7Jj9x5fMIqioHgonEtXNTmW39BUUzVi+QitDjn3mZTEclVzng/2yYnShmpvAWDczCyoqQ/+YYB6IDg+cg==$hDYJfbG185xwD4Y24RdBEA==
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Set-Cookie: __cf_bm=ZsfFYCQJXqgJOBCl4YjOQZUSQpBWiT1WFpt0YNK_tVQ-1739193697-1.0.1.1-Ekg5lbIFrK6DKHTa8KKr8tRowogz.UTu3KKF0V9YdVS.1XmvkL3bli3UjAQRA26_kTmC8KzU8KguWXSz65PI.A; path=/; expires=Mon, 10-Feb-25 13:51:37 GMT; domain=.bluehost.com; HttpOnly
Vary: Accept-Encoding
src_continent: EU
src_country: NO
Server: cloudflare
CF-RAY: 90fc67413f1bb500-OSL
Content-Encoding: gzip