Report - djcjedf.r.bh.d.sendibt3.com/tr/cl/h8yB4s8zBfzCsncwFLtZjRpROQ86T7dLZoM_kQEMVoOu_uHW9QArlqFi-gK3W61gNsezc35PPNy_CpmVFUodQEy5iS1Y4CKWwT11IUkGw_cu6qEE0mjFRcWTrGY0NPtWPBSHqE9uwFgysxA_xRDk1IfG5XXWHhYp9hcn4tXmAU7LPUrAsw8_9EkqsWBaCVI0feJ1qul1fAUV6UHKqNkhFupmSMDkQJ8FpFuXGEJEgwc3Bwng86vyytB8LcjFQo0L99s_0H88wD_nqfU4hEI_Fz17lFQrkBhDMjB5h03KcJb-D7VgY7NI95Ss3_ap_SHVWA7PWW8Jhei0GrruLC44yfqL7s8I_eK6fMmq9zk5g7fdOeHumX5E2ydSML5Q_f3DfBu55Qa6Uj_m9ZwSYMs8G3-k9jno8iYtIp-Bmb69iyeT9QeUvFPWbUkQzHgeWFyb0dzzq3jW

Report Overview

Visited public
2023-12-06 17:58:04
Tags
URL
djcjedf.r.bh.d.sendibt3.com/tr/cl/h8yB4s8zBfzCsncwFLtZjRpROQ86T7dLZoM_kQEMVoOu_uHW9QArlqFi-gK3W61gNsezc35PPNy_CpmVFUodQEy5iS1Y4CKWwT11IUkGw_cu6qEE0mjFRcWTrGY0NPtWPBSHqE9uwFgysxA_xRDk1IfG5XXWHhYp9hcn4tXmAU7LPUrAsw8_9EkqsWBaCVI0feJ1qul1fAUV6UHKqNkhFupmSMDkQJ8FpFuXGEJEgwc3Bwng86vyytB8LcjFQo0L99s_0H88wD_nqfU4hEI_Fz17lFQrkBhDMjB5h03KcJb-D7VgY7NI95Ss3_ap_SHVWA7PWW8Jhei0GrruLC44yfqL7s8I_eK6fMmq9zk5g7fdOeHumX5E2ydSML5Q_f3DfBu55Qa6Uj_m9ZwSYMs8G3-k9jno8iYtIp-Bmb69iyeT9QeUvFPWbUkQzHgeWFyb0dzzq3jW
Finishing URL
uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
IP / ASN
1.179.112.196
#396982 GOOGLE-CLOUD-PLATFORM
Title
Home - Uniify

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

174

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-12-06 07:50:48	2.2 kB	97 kB	142.250.74.163
js.hsleadflows.net	4609	2017-01-23	2017-02-22 11:43:00	2023-12-05 10:52:20	445 B	566 kB	104.18.124.12
uniifyapp.com	unknown	2023-01-08	2023-01-08 14:24:02	2023-11-16 09:01:04	62 kB	3.2 MB	188.114.97.1
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-12-06 07:40:41	5.1 kB	379 kB	142.250.74.168
ciscobinary.openh264.org	40822	2013-10-19	2014-10-07 07:43:56	2023-12-06 07:16:26	305 B	512 kB	62.115.252.113
js.hsadspixel.net	3795	2017-04-21	2017-07-25 15:13:14	2023-12-06 09:56:48	409 B	7.8 kB	104.17.231.163
js.hs-banner.com	2426	2020-03-09	2020-03-26 18:45:21	2023-12-06 09:19:27	424 B	69 kB	172.64.153.27
djcjedf.r.bh.d.sendibt3.com	unknown	2015-08-28	2022-06-23 07:56:58	2023-11-13 16:00:39	956 B	550 B	1.179.112.197
embed.tawk.to	8650	unknown	2014-03-19 22:03:49	2023-12-05 19:16:28	8.2 kB	729 kB	104.22.25.131
api.hubapi.com	4102	2008-05-24	2012-06-25 20:13:07	2023-12-06 11:03:36	500 B	4.8 kB	104.17.204.204
aus5.mozilla.org	2548	1998-01-24	2015-10-27 08:06:24	2023-12-06 05:11:43	523 B	1.2 kB	35.244.181.201
forms.hscollectedforms.net	unknown	2017-01-23	2023-03-02 14:31:09	2023-12-06 09:18:37	523 B	1.0 kB	104.17.87.154
cdn.pushowl.com	13437	2016-05-01	2017-10-23 12:59:06	2023-12-05 21:15:17	750 B	173 kB	143.204.55.38
ajax.googleapis.com	12905	2005-01-25	2013-08-16 11:51:31	2023-12-06 08:09:09	440 B	32 kB	172.217.21.170
forms.hsforms.com	5160	2013-09-18	2018-03-07 16:21:13	2023-12-06 09:19:49	491 B	1.0 kB	104.17.239.249
sibautomation.com	26949	2017-01-20	2017-01-21 16:10:10	2023-12-06 17:42:04	453 B	8.4 kB	104.18.37.70
va.tawk.to	8297	unknown	2017-01-30 05:20:46	2023-12-05 19:16:28	2.1 kB	20 kB	104.22.25.131
js.hs-scripts.com	2571	2016-07-11	2016-08-09 12:18:36	2023-12-05 18:55:48	446 B	149 kB	104.16.191.89
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-12-06 07:08:39	2.0 kB	54 kB	142.250.74.106
api.pushowl.com	31959	2016-05-01	2017-02-18 03:24:58	2023-12-04 13:43:33	1.2 kB	6.3 kB	34.201.191.114
js.hscollectedforms.net	5697	2017-01-23	2017-03-02 11:33:31	2023-12-06 09:18:36	455 B	72 kB	104.17.87.154
in-automate.brevo.com	unknown	1999-09-10	2023-05-23 12:45:40	2023-12-06 13:02:53	1.3 kB	954 B	172.64.149.40
vsa87.tawk.to	unknown	unknown	2020-03-11 12:53:17	2023-12-05 13:03:11	1.1 kB	417 B	104.22.25.131
cdn.jsdelivr.net	439	2012-05-16	2012-09-30 02:15:09	2023-12-06 05:09:53	880 B	607 kB	151.101.65.229

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-12-06 17:57:47	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-12-06 17:57:47	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-12-06 17:57:51	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-12-06 17:57:51	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-12-06 17:57:51	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-12-06 17:57:51	medium	Client IP	Internal IP	ET DNS Query for .to TLD

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed
2023-12-06	medium	uniifyapp.com	Sinkholed

ThreatFox

No alerts detected

Files detected

URL
ciscobinary.openh264.org/openh264-linux64-2e1774ab6dc6c43debb0b5b628bdf122a391d521.zip
IP
62.115.252.113
ASN
#1299 Telia Company AB

File type
Zip archive data, at least v2.0 to extract, compression method=deflate\012- data
Size
512 kB (511815 bytes)
Hash
152eda253e242e18443ef3282495bc7c
ff0fa85565f21ec4931baad4573b4c0bd08c4019
8e03090fee16f6e0ee2e436af8e51d0c3deed6d9f0db80dec048e668fc009a48

JavaScript (82)

	URL	From	Size	First Seen	Last Seen
	js.hscollectedforms.net/collectedforms.js	ScriptElement	70 kB	2023-12-04	2024-08-20
Pretty URL js.hscollectedforms.net/collectedforms.js IP 104.17.87.154 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 13:21 Last Seen2024-08-20 16:49 Times Seen521 Hash 109b7665e389a0b17fbf732bf7a02089 3099e7fa29554cd4a8ae16248cb2eb6d21dd085d 0ad17c7d661733bbf1cfe9bc6e85033bfed43c87c94cb72ba02f484adf1593c0 Loading...

	uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/testimonial.js?ver=1701885459	ScriptElement	10 kB	2023-07-01	2023-12-06
Pretty URL uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/testimonial.js?ver=1701885459 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-01 06:40 Last Seen2023-12-06 18:58 Times Seen3 Hash e2c6242c0612a5de6ac11e9672d3a636 587ed68b5bd63c3511b3eb98b4b9458c62a8362e 3abcb1a1e9055ae1dc1bb23ce1570574d0d2f6372056404c1373ab2df3622d1e Loading...

	uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo	ScriptElement	3.3 kB	2024-08-20	2024-08-20
Pretty URL uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:34 Last Seen2024-08-20 16:34 Times Seen1 Hash 3be56c05729932f4dad912329f3b3881 f090395bc1f362aebafc282245a73b0d451da147 85686eb743d8ff257b76bb950b6205f712a3c903efec52f2c10fbdfd1b6f5724 Loading...

	uniifyapp.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=1.0	ScriptElement	15 kB	2023-03-07	2025-05-11
Pretty URL uniifyapp.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=1.0 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 05:53 Times Seen5764 Hash 7a5dea0a705cc2f4cd87dbaaa6666bc6 678bc6f750f13adb29bbc158eb0d9cd813b736fa 97cf1307c16a437b77b5f7f5c9bc0b985d0745a14be5a279019aca5a3432e264 Loading...

	uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo	ScriptElement	296 B	2023-10-16	2024-08-21
Pretty URL uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-16 18:15 Last Seen2024-08-21 04:31 Times Seen4 Hash 1abd0bca65fa540c7ed47a060b6aed37 cab4ef0a42daf7c0019ff5913ae4581231b17e10 56d54dd1a214a694311a8da03da988a6e8efb0cb4c2dfc085823e9252599f3a4 Loading...

	unknown	EventHandler	91 B	2023-04-10	2025-05-09
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-10 18:24 Last Seen2025-05-09 04:36 Times Seen696 Hash f5a5d3d406fd6a4519f87d5efb2a6e20 8e5cee7dd4e369ca33229cbe3a5f00fe575ad934 5b131c13eaecaf1914723140fd73be4bd8eb3d4fb5452666ab45b19a24b9685d Loading...

	uniifyapp.com/sandbox%20eval%20code		147 B	2023-04-11	2025-05-11
Pretty URL uniifyapp.com/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-11 11:48 Times Seen341902 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	sibautomation.com/sa.js?plugin=wordpress&key=ehnbv4qti39900l4o230qvgy	ScriptElement	12 kB	2023-10-16	2024-08-21
Pretty URL sibautomation.com/sa.js?plugin=wordpress&key=ehnbv4qti39900l4o230qvgy IP 104.18.37.70 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-16 18:15 Last Seen2024-08-21 04:31 Times Seen4 Hash 332e2a15be7f6e15f4e6acd1d6f79796 ee8e518ad2fea4749629bb0eb16256326ef4aee2 85d63cf4ee36606aae67e39654ad73dfed0b8079a50af55aad4382fbb98ad80d Loading...

	uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/rt-animated-main.js?ver=1701885459	ScriptElement	7.8 kB	2023-10-25	2023-12-06
Pretty URL uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/rt-animated-main.js?ver=1701885459 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-25 06:58 Last Seen2023-12-06 18:58 Times Seen3 Hash 755479f410ea7b42c108624728a6ba09 38f8fb5023039e4b629b6188966f4a46e1b2bcb9 b73df8792c65c7ca823f9697ae6d79ca10449e4fe4ca164ebc6f9a8a6587a711 Loading...

	uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo	ScriptElement	434 B	2024-08-20	2024-08-20
Pretty URL uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:34 Last Seen2024-08-20 16:34 Times Seen1 Hash 59906b1326c51b92ad04d2f6e6d7e00d 0c169bf8446dfbfeca96acbc62596a4671c0c681 bd9568cbddee9c407d3c62cabaea0f0e1791c7f0c2e91bf3232969f704db0870 Loading...

	www.googletagmanager.com/gtag/js?id=G-EB0MPR1JXK&l=dataLayer&cx=c	ScriptElement	229 kB	2023-12-06	2023-12-06
Pretty URL www.googletagmanager.com/gtag/js?id=G-EB0MPR1JXK&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-06 18:58 Last Seen2023-12-06 18:58 Times Seen1 Hash 4e21578435bedf431478faa477344f9e 63b13e6260d6b9adf3d6fd1bba2a7a63b769acce 6abbb452db5fdf7d1040b0ee1e82b8f5f99b0a1d67c6950c54173930b2a11440 Loading...

	uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo	ScriptElement	83 B	2023-03-07	2025-05-10
Pretty URL uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-05-10 18:27 Times Seen2731 Hash ed77093016336e2d00eae2411dac952a ae357a77ea0c6e959e9de4002845ad4b042dad16 37fa652c65354aabd9f4910c80da871371b2aabbd0fc3d72f34a61a37ccb5e58 Loading...

	uniifyapp.com/wp-content/themes/apptek/assets/js/fancy-box.js?ver=1701885459	ScriptElement	60 kB	2023-03-11	2025-03-05
Pretty URL uniifyapp.com/wp-content/themes/apptek/assets/js/fancy-box.js?ver=1701885459 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 13:36 Last Seen2025-03-05 16:14 Times Seen8 Hash 504391f1d2223412ca862bd4d50c96fc 67e549aca1c2fe6761956d57ef7541239faaf317 d0409bd58637ffdfa8f7de31d2db517f7126d6e1ab1aa302a52c74c2feb0d60f Loading...

	uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo	ScriptElement	818 B	2023-07-01	2024-08-21
Pretty URL uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-01 06:40 Last Seen2024-08-21 04:31 Times Seen4 Hash 76c3ff8623b72c4f2a255dfb4358b320 8d7be876bfbce1cbc0c1dcfa9c3382cbfa256235 563f7b842fd57730c6edc617968c1cb518548fe07ea00853a6890553398e5ae1 Loading...

	uniifyapp.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1	ScriptElement	14 kB	2023-05-09	2025-05-11
Pretty URL uniifyapp.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 19:21 Last Seen2025-05-11 11:47 Times Seen106203 Hash 9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89 Loading...

	uniifyapp.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	ScriptElement	12 kB	2023-03-07	2025-05-11
Pretty URL uniifyapp.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 10:26 Times Seen24965 Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 Loading...

	uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/animation2.js?ver=1701885459	ScriptElement	7.5 kB	2023-07-01	2024-08-21
Pretty URL uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/animation2.js?ver=1701885459 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-01 06:40 Last Seen2024-08-21 04:31 Times Seen4 Hash bf4d900b6e6cb0de0731109872aa6df4 7665b3a1e83cb2ab4ae2182b6599499b906e6948 a2a456c41334c00d606d94cff7517c45af04893bf51f470af422c2e32c200f53 Loading...

	embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-chunk-f1565420.js	ScriptElement	11 kB	2023-12-06	2023-12-14
Pretty URL embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-chunk-f1565420.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-06 14:17 Last Seen2023-12-14 18:35 Times Seen428 Hash cb48a7d6ac8cf353cc0a43280dd89992 92cea85e01ef54ace5140e4ef8394814316ca7bb 572f67fc7a81a793ecfabed967c97275549586fe388ddc07808e1f8723b05ee8 Loading...

	uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo	ScriptElement	93 B	2023-03-07	2025-05-01
Pretty URL uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03 Last Seen2025-05-01 17:01 Times Seen874 Hash c03c9cc1e344405e735bf829da247217 bc97ee9e7b1b2bfcab8c829f606123c3a3e8e43b 4ea908eff28d9dddcfa4076dc80b085635e0135606fbdca7695b8e346c3ed0ff Loading...

	cdn.pushowl.com/latest/sdks/pushowl-sib.js?plugin=wordpress&environment=production&platform=sendinblue&id=160421&name=Uniify&subdomain=uniifyapp.com&logo=https%3A%2F%2Fimg.mailinblue.com%2F3929435%2Fimages%2Fcontent_library%2Foriginal%2F63fca337dd35c87c8e6f3f5d.png&guid=fa94175ece16e569a28db2d6a982f5a2&default=true&visitor_id=7de98d0d-53a6-46f2-b190-09dd66e025e0	ScriptElement	172 kB	2023-11-30	2024-08-20
Pretty URL cdn.pushowl.com/latest/sdks/pushowl-sib.js?plugin=wordpress&environment=production&platform=sendinblue&id=160421&name=Uniify&subdomain=uniifyapp.com&logo=https%3A%2F%2Fimg.mailinblue.com%2F3929435%2Fimages%2Fcontent_library%2Foriginal%2F63fca337dd35c87c8e6f3f5d.png&guid=fa94175ece16e569a28db2d6a982f5a2&default=true&visitor_id=7de98d0d-53a6-46f2-b190-09dd66e025e0 IP 143.204.55.38 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-30 18:09 Last Seen2024-08-20 17:19 Times Seen3 Hash 14f864b889f9e59ea3db79c49363181a eea62561f4216fe4869c7e9fe6f6e1a347d4b0a0 1eb6e38a6b743cc5da2a66041ede9bfeeac38c104d3118ff3465868bc708478a Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js	ScriptElement	90 kB	2023-03-07	2025-05-11
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js IP 172.217.21.170 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 11:46 Times Seen205871 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	js.hsadspixel.net/fb.js	ScriptElement	6.2 kB	2023-12-04	2023-12-18
Pretty URL js.hsadspixel.net/fb.js IP 104.17.231.163 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 15:35 Last Seen2023-12-18 17:03 Times Seen345 Hash ed930579444c6c7c0292363361667508 fb81376c0b6014e94199be8f02d2c24debbbccf6 df998f2ab79818d229edfab989eb187dd3d94f0f40377fde4f5f97e08b691ecf Loading...

	uniifyapp.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2	ScriptElement	21 kB	2023-04-01	2025-05-11
Pretty URL uniifyapp.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:26 Last Seen2025-05-11 10:26 Times Seen27224 Hash c4e68a0f3463c0bd3c39eab38815e881 0ce58644e9f3c5063a11453ff287c5ec096465a7 ca7dce2391845e8aec7da135f33fabd10f74eed28a532ac66fd01f761fcfb42f Loading...

	uniifyapp.com/wp-content/plugins/mailin/js/mailin-front.js?ver=1695054488	ScriptElement	13 kB	2023-06-26	2025-04-07
Pretty URL uniifyapp.com/wp-content/plugins/mailin/js/mailin-front.js?ver=1695054488 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-26 18:02 Last Seen2025-04-07 23:32 Times Seen110 Hash 5dbeb6379eb243ae0e9fe47a1d0da971 669822d5e72feda55e5b8eb1e970994a62661b75 eadaf86ef0ab256e7dacd897aeda9e6c65680d101ccd477c445204aef8d34fa5 Loading...

	uniifyapp.com/wp-includes/js/wp-util.min.js?ver=4fd0f5bc13853fae144764d9c4a67c2c	ScriptElement	1.4 kB	2023-03-08	2025-05-11
Pretty URL uniifyapp.com/wp-includes/js/wp-util.min.js?ver=4fd0f5bc13853fae144764d9c4a67c2c IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26 Last Seen2025-05-11 06:53 Times Seen18760 Hash 19d386c9004e54941c1cc61d357efa5d 0a77594006c8d86fdcc0adbc2b9aecaef3869586 3bc6467a95cec8fa516c6f5f69e1301e37e16f9bb1046fe7756729249f901b95 Loading...

	uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/anime.2.0.2.min.js?ver=1701885459	ScriptElement	11 kB	2023-03-08	2025-05-10
Pretty URL uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/anime.2.0.2.min.js?ver=1701885459 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:00 Last Seen2025-05-10 19:05 Times Seen71 Hash f258ee6f938947e043c7e0984cd7e2b2 7c9416c1b444773b2d82e797131d6047364645a3 ef1b91cc56c369dcc8fd9ee30bb2aa9745075cfc9f594b2ac58edb1600779128 Loading...

	embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-chunk-48f3b594.js	ScriptElement	19 kB	2023-12-06	2023-12-14
Pretty URL embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-chunk-48f3b594.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-06 14:17 Last Seen2023-12-14 18:35 Times Seen660 Hash a657f9db7167d6c2906e70f1230aebd6 5b3e5cc9bbe21f3da9a12ae7e4289b7f09ee7999 2c81238675cd627b1fa312f7f6f3ac8c142424cfaa5c6685047145b3360cf7ee Loading...

	uniifyapp.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8	ScriptElement	13 kB	2023-03-29	2025-05-10
Pretty URL uniifyapp.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 21:17 Last Seen2025-05-10 22:52 Times Seen12562 Hash 5bc2b1fa970f9cecb3c30c0c92c98271 7c6bb87aaa24714b7b3b3c86dd932736a80270a9 1060091178cbd6c843b802f516f230f1a3a1e85f1afbd6ef84d80e5430ba457e Loading...

	cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js	ScriptElement	303 kB	2023-04-05	2025-05-11
Pretty URL cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js IP 151.101.65.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 07:49 Last Seen2025-05-11 10:44 Times Seen25885 Hash 7bb7aac0cac89a90304af1c72eb4f50d 729f6f8ca5787d89743b0ed7eb27fd76406bf985 f5c06455e539dcd889f7f05d709b5adc76c444099fe57f431365af2fc57e803b Loading...

	uniifyapp.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js	ScriptElement	1.2 kB	2023-03-07	2025-05-11
Pretty URL uniifyapp.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 11:46 Times Seen68475 Hash 9e8f56e8e1806253ba01a95cfc3d392c a8af90d7482e1e99d03de6bf88fed2315c5dd728 2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8 Loading...

	uniifyapp.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.16.3	ScriptElement	5.0 kB	2023-09-15	2025-04-29
Pretty URL uniifyapp.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.16.3 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-15 15:05 Last Seen2025-04-29 08:05 Times Seen372 Hash aa98805dbc21b79555011ded6e33a1bd c150db214b80f6739fc16e8bccd02187e9d542a6 672416f94b97a3b46527b6e624a7f6110addea8c498acb0b7f80ad255eebb8d3 Loading...

	embed.tawk.to/63b90e9f47425128790c21d7/1gm5e28ep	ScriptElement	2.1 kB	2024-08-20	2024-08-20
Pretty URL embed.tawk.to/63b90e9f47425128790c21d7/1gm5e28ep IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 16:34 Last Seen2024-08-20 16:34 Times Seen1 Hash dcc55ff21c266be557382f99ac770093 cd63e92172e50176046fab5c54d84387c7453191 73d9af2d6c848b37773001857d452389d87925696f118b205a286b70ea965b70 Loading...

	uniifyapp.com/wp-content/plugins/jetpack-boost/jetpack_vendor/automattic/jetpack-lazy-images/dist/lazy-images.js?minify=false&ver=2e29137590434abf5fbe	ScriptElement	2.4 kB	2023-04-16	2025-03-08
Pretty URL uniifyapp.com/wp-content/plugins/jetpack-boost/jetpack_vendor/automattic/jetpack-lazy-images/dist/lazy-images.js?minify=false&ver=2e29137590434abf5fbe IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-16 17:25 Last Seen2025-03-08 13:42 Times Seen350 Hash dbd2c18733ff907be35d6ce7012cda58 ab99ef32c7c79407b2781a0b2d492fb9b00467f9 c8be1269a134d7df5a75a02b0fce70d409e6d6984554acef232eabdaa4c39d66 Loading...

	uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo	ScriptElement	686 B	2023-07-01	2025-03-05
Pretty URL uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-01 06:40 Last Seen2025-03-05 16:14 Times Seen8 Hash 770880551312d5e385014d45666c9560 3a0c13edf7e033ba9785da4bbfbd95d9442be6e0 5f828822f60805c0ee11cf52b0bea2309e3ec23c30dcea56f6fbd14d00c4955b Loading...

	uniifyapp.com/wp-includes/js/underscore.min.js?ver=1.13.4	ScriptElement	19 kB	2023-03-08	2025-05-10
Pretty URL uniifyapp.com/wp-includes/js/underscore.min.js?ver=1.13.4 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26 Last Seen2025-05-10 23:09 Times Seen20826 Hash f88d5720bb454ed5d204cbdb56901f6b f1952292fde4b15936e9aac16b2b9896684db95b 726b820e44f6ab90ad991d30a4bf26d3a5d71493cbcd1fb1efd0d14e89b9df2a Loading...

	uniifyapp.com/wp-content/themes/apptek/assets/js/jquery.sidr.min.js?ver=1701885459	ScriptElement	6.9 kB	2023-03-09	2025-05-08
Pretty URL uniifyapp.com/wp-content/themes/apptek/assets/js/jquery.sidr.min.js?ver=1701885459 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 02:25 Last Seen2025-05-08 04:21 Times Seen27 Hash 9d40b53ff4c70a5a092c8d710f6c5648 5b08da40a32c5384a9c0bd9bfb6ce7191c8ee294 5035278da8eadf194e797122bfce35812235ca5bc6c271aa93cbaf5dfdd4c538 Loading...

	uniifyapp.com/wp-content/themes/apptek/assets/js/sweetalert.min.js?ver=1701885459	ScriptElement	41 kB	2023-03-07	2025-05-11
Pretty URL uniifyapp.com/wp-content/themes/apptek/assets/js/sweetalert.min.js?ver=1701885459 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-05-11 06:10 Times Seen4383 Hash f3b8ce97ff6ce324da6232da353adf40 2a3daabc70232c6350ab48d32605dc4a6ac1f1fa 2ac46ebee46d515be86deeba385b4e41f8cff160364b362c9a6e153df327c66b Loading...

	uniifyapp.com/wp-content/plugins/jetpack-boost/jetpack_vendor/automattic/jetpack-lazy-images/dist/intersection-observer.js?minify=false&ver=83ec8aa758f883d6da14	ScriptElement	9.0 kB	2023-03-07	2025-04-09
Pretty URL uniifyapp.com/wp-content/plugins/jetpack-boost/jetpack_vendor/automattic/jetpack-lazy-images/dist/intersection-observer.js?minify=false&ver=83ec8aa758f883d6da14 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-04-09 07:25 Times Seen708 Hash ed3b4417df0895e4cf8465d32b69adc6 a63d0bad2dcb235c62a843eb3e8506e8931cede0 9900b23f9f49af5f34387eb63a8673a563ab131c1e171cfaf14cf8b67a466b9d Loading...

	uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo	ScriptElement	365 B	2023-07-01	2024-08-21
Pretty URL uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-01 06:40 Last Seen2024-08-21 04:31 Times Seen4 Hash 10d9be7baa9d452a4ee012244f9935ea 625a06fa047ba8a5396527372a9c7d2703a61e19 59c293a5b944ee0ae97901314e906faa316b0683843a5c279b05c15ad572cecb Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-05-11
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-11 11:48 Times Seen341101 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/magnific.min.js?ver=1.1.0	ScriptElement	20 kB	2023-03-07	2025-05-10
Pretty URL uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/magnific.min.js?ver=1.1.0 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17 Last Seen2025-05-10 14:42 Times Seen552 Hash d92d1d8e778aa3773e719bba09089942 ff26dd2b05f2e5993490968d17801d91ad0f9761 7586da6ec5a0e01eb5239aaac31dc3d411cae3090cce52a7e00efbda2f32c6bf Loading...

	embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-app.js	ScriptElement	151 B	2023-03-07	2025-05-11
Pretty URL embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-app.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 10:44 Times Seen30966 Hash e736e189edb5d0d9d5b8e7f23dd9114a bcabee193f13756fa9154fc492fe420c47140343 13cf82e6f9d48221cd55f8b3c3d206f7bdb83f291034b478e484ccfef7d500dd Loading...

	uniifyapp.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.16.3	ScriptElement	59 kB	2023-09-15	2025-04-29
Pretty URL uniifyapp.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.16.3 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-15 15:25 Last Seen2025-04-29 08:05 Times Seen361 Hash 1558ab61bab790ac5a634d0bf9b03780 2aa94dff810eb1927d7b224c0760a04435006d5b 1b2661621514d161467c7fdbe8d8c053b6377c57a7929eca9bea34c4e1bed9c6 Loading...

	uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/carousel.min.js?ver=1701885459	ScriptElement	54 kB	2023-07-01	2023-12-06
Pretty URL uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/carousel.min.js?ver=1701885459 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-01 06:40 Last Seen2023-12-06 18:58 Times Seen3 Hash 0b991a4e1dd356f931be86f323203ff0 663772820fc3f1d8da6a1ab59dca0312a3657f82 041df1d9efdace731a6b5956473567232e14be126d0bc80a2c1b49a706211ab1 Loading...

	embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-chunk-9294da6c.js	ScriptElement	18 kB	2023-12-06	2023-12-14
Pretty URL embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-chunk-9294da6c.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-06 14:17 Last Seen2023-12-14 18:35 Times Seen676 Hash 632e2dab09e262277a1fc66788404641 a4ab49214e4560868f2c8d70a5b239581bfc01f3 fdf98bdac0fe7f429aff9005280b34720dc2fd8783c6e60e206f5a06c4480584 Loading...

	uniifyapp.com/wp-content/themes/apptek/assets/js/apptek-custom2.js?ver=1701885459	ScriptElement	9.9 kB	2023-07-01	2024-08-21
Pretty URL uniifyapp.com/wp-content/themes/apptek/assets/js/apptek-custom2.js?ver=1701885459 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-01 06:40 Last Seen2024-08-21 04:31 Times Seen4 Hash 989bd0a333e7119361096dbe1e9b383c 29859c72318b67134973e8fe53950ec55abd0ae4 294dec3e89e3321d01a40eb5f8b3327c6f9f1e73b6792bf55fdd69af43255f56 Loading...

	uniifyapp.com/wp-content/plugins/elementor/assets/js/image-carousel.4455c6362492d9067512.bundle.min.js	ScriptElement	432 B	2023-09-15	2025-04-16
Pretty URL uniifyapp.com/wp-content/plugins/elementor/assets/js/image-carousel.4455c6362492d9067512.bundle.min.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-15 15:25 Last Seen2025-04-16 18:43 Times Seen57 Hash 63390d5c7f1ce665d77a6cc68516ba56 04840365c1fd19459688f0258f0f3cfc071e91bd c9fd1576192ea2aeda0210551c90428a38979138f62ed9c54d863b175f1fae18 Loading...

	embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-main.js	ScriptElement	121 B	2023-03-07	2025-05-11
Pretty URL embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-main.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 10:44 Times Seen30927 Hash da5bb1dc647470204df0e49f5afac2de f5cbf596ca5e4fe208e4c55af6e45b71f9febbe8 705186becc9e0a306a6b4867ae2768aa9dd3b8c12393d9f9c52029e9a6fcf31c Loading...

	uniifyapp.com/wp-content/themes/apptek/assets/js/menu-vendor.js?ver=1701885459	ScriptElement	262 kB	2023-03-14	2025-03-05
Pretty URL uniifyapp.com/wp-content/themes/apptek/assets/js/menu-vendor.js?ver=1701885459 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 11:32 Last Seen2025-03-05 16:14 Times Seen6 Hash c5bcfef25b470a226d94163a59d8cb80 318d28b832d03791f8d80758ce5565a8164c4d24 39594e1b177575e2de17bbac225fe00ad3d23a256891c0fc682c3100dfa3fbbd Loading...

	embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-chunk-common.js	ScriptElement	224 kB	2023-12-06	2024-08-20
Pretty URL embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-chunk-common.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-06 14:17 Last Seen2024-08-20 16:35 Times Seen759 Hash 38be29de8e673b78fc1bc8782cc309ef 4ed694156bdd77e4e36223b38a8fb5e0b2306646 c936ab1e6202d0504c82a9ac6e6ffad91fcddfc682fdb571501a2452e0ae601a Loading...

	uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo	ScriptElement	1.2 kB	2023-04-02	2025-05-11
Pretty URL uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-02 21:28 Last Seen2025-05-11 05:53 Times Seen1359 Hash 6b1752f9a3d4d72f3643c5986e74422d 2c67ebd7bb42f4f625fd314dea8abeae128ccae3 c8bbb9c65ca012a1b59810274baff7daeb73900d13f6616ca7d389647f5e5470 Loading...

	js.hsleadflows.net/leadflows.js	ScriptElement	564 kB	2023-12-04	2024-08-20
Pretty URL js.hsleadflows.net/leadflows.js IP 104.18.124.12 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 14:15 Last Seen2024-08-20 16:49 Times Seen296 Hash c314aa317d74a89c787c3c4a9d2fd97c cf7278f0d9557f3e087915a188b79d636f4ea44b a59a536f6a35976c81d050cc1f734740643674e9736ae066f85213a5535e7a0a Loading...

	uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo	ScriptElement	323 B	2023-03-07	2025-05-09
Pretty URL uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:27 Last Seen2025-05-09 04:36 Times Seen653 Hash 5e76fb662ec9622976e543f230605e61 1a267bfafab15016f552705f48e45413c59d60fd 803239b347de8c4b93e1c1a944d6d59b734e79bb12903cf95737a9e34fff3f3b Loading...

	uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo	ScriptElement	490 B	2024-08-20	2024-08-20
Pretty URL uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:34 Last Seen2024-08-20 16:34 Times Seen1 Hash dbe9ac9c9649808e3b8c0d8e4302edb2 559c5cfbfb775fd8ba3ed426fed621e66f2e80e2 0b1a79182e8319fae485a8b656dc5ce8cb905f0b7f8d7fd269048f06ac18ef81 Loading...

	uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo	ScriptElement	101 B	2023-07-01	2024-08-21
Pretty URL uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-01 06:40 Last Seen2024-08-21 04:31 Times Seen4 Hash 725fc7e6158d854e9125e4b1d8f206ce 416cbb8cff8bf18f6cb188febfbb6bc46b87a1ff 8a598088445a3f957283f7c2bf5c4902301a24195440a2cbc15dc1e6cd1ff4c3 Loading...

	uniifyapp.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8	ScriptElement	11 kB	2023-08-06	2025-05-07
Pretty URL uniifyapp.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-06 14:15 Last Seen2025-05-07 10:06 Times Seen7001 Hash 6ce86c3105139cb3c80913e6a3696a96 c55c7be10b31a773c7c9f6f393f382b89c318db4 5fe46d2da01452067736578431f6c6e8116a24e616f58c72d9d81fdb2c7c9569 Loading...

	uniifyapp.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js	ScriptElement	1.4 kB	2023-09-15	2025-04-16
Pretty URL uniifyapp.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-15 15:25 Last Seen2025-04-16 18:43 Times Seen278 Hash cd239b47507a8c8ccb597ae1c031ca51 47c8d93160c57bdf24efb56dbc9061068ac67f20 b7efbd371ce5321aba694b02a0e88b012e8ca8a3c3f0150b578d80ca10706114 Loading...

	embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-runtime.js	ScriptElement	2.3 kB	2023-12-06	2024-08-20
Pretty URL embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-runtime.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-06 14:17 Last Seen2024-08-20 16:35 Times Seen759 Hash 6ceae9a9b739d629086cf4d74c0bbd2b 985f916b76c0ebacc1c1f99987d813aabd9278c9 127afa95eefaf3877dae679638fb78a8221e68736e8d39b8e5d8478e3394cb72 Loading...

	embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-vendor.js	ScriptElement	83 kB	2023-06-02	2025-03-12
Pretty URL embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-vendor.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-02 11:09 Last Seen2025-03-12 13:42 Times Seen23154 Hash ce3014b09c6dfbd6f92bc585fd840580 d17abb8d652929260df6a153814560dd5af54424 916c13b184fbc42c59463a47bf90611461bec9e17a10a37def3c751ade00dced Loading...

	uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo	ScriptElement	97 B	2023-09-14	2025-03-19
Pretty URL uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-14 00:37 Last Seen2025-03-19 15:06 Times Seen91 Hash 907dddf00dfafb075dc383e63501c42b bc624d0fd06f56bc234908b33443d3fbb87fb4d3 b8a768e3fb10a15a082ea585b963cd78ecf92b18a609aa474f431c0e13baa3d5 Loading...

	uniifyapp.com/wp-content/themes/apptek/assets/js/swiper.min.js?ver=1701885459	ScriptElement	233 kB	2023-07-01	2025-03-05
Pretty URL uniifyapp.com/wp-content/themes/apptek/assets/js/swiper.min.js?ver=1701885459 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-01 06:40 Last Seen2025-03-05 16:14 Times Seen6 Hash 510a02eb96dd68d60ad581ec8ebada54 ee17aabecea28850029787a7581c78c770a2b410 5e6eaf05f99190d360ad0fc8d1dcdcccfc560a9acc620f974c63f169f1a53554 Loading...

	embed.tawk.to/_s/v4/app/65706adf2ac/languages/en.js	ScriptElement	17 kB	2023-10-31	2025-03-12
Pretty URL embed.tawk.to/_s/v4/app/65706adf2ac/languages/en.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-31 10:48 Last Seen2025-03-12 13:42 Times Seen11347 Hash 7f37a030886ec7fce1d065ec482789ee 661ad608ac1513e2ccdec4cd55eb552a8604c8f6 75b20e74e3effa00e4b62b9da6df7d7542d91cb4b50078b8365112d556a73a7e Loading...

	embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-chunk-2d0b383d.js	ScriptElement	699 B	2023-10-20	2025-03-12
Pretty URL embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-chunk-2d0b383d.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-20 20:17 Last Seen2025-03-12 13:42 Times Seen14937 Hash 838903127a65ec440893b4945c40ca4a 827f3e5341f56fa4473d53b788af41ec6bf21b8b 89f08c4a66c9a737c6155b8313e87b36687fe65bfc9a1ba1783aeace487bcde3 Loading...

	www.googletagmanager.com/gtag/js?id=UA-205366137-2	ScriptElement	191 kB	2023-12-06	2023-12-06
Pretty URL www.googletagmanager.com/gtag/js?id=UA-205366137-2 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-06 18:58 Last Seen2023-12-06 18:58 Times Seen1 Hash 737e297401040cb9fbbb82842ed2bb49 34ba2dd1953388f83c90465b7d6d30a46485ac4f a7414a06d9d93319eafe3155a9ae85e6918565c5431c7a31a4984010cbef8f4a Loading...

	uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo	ScriptElement	70 B	2023-03-07	2025-05-11
Pretty URL uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:07 Last Seen2025-05-11 06:53 Times Seen7111 Hash 4ff152a840e29705f2933718a2571bc3 6c7ed239bcd74ab7a0ea03b3dd4ab74ffceaff49 e426295764322c0b4d881b5da28c2591e9ff651fc07636da1e2979a62a2f349c Loading...

	uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/particles.min.js?ver=2.0.0	ScriptElement	23 kB	2023-08-13	2025-05-10
Pretty URL uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/particles.min.js?ver=2.0.0 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-13 05:35 Last Seen2025-05-10 14:42 Times Seen385 Hash c9898f4218ad8a464141550c2ec72225 592a3ac90f7cafbc30082584b5e132365bd48f23 71a49270bfb8077f783c2530b1c5bf2335a100a2419996d2f7d1c2ac19dd6239 Loading...

	uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo	ScriptElement	118 B	2023-03-07	2025-02-06
Pretty URL uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03 Last Seen2025-02-06 17:56 Times Seen201 Hash ae0a4f2589640909a821cc2fe098ae57 4bae741ed8fc79ae64135a8b9a525d0d18839716 aee622cdb9401ee1f8e168ad158bb16c523eed9ba013345efc2b7a87b00cba50 Loading...

	uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/eae.min.js?ver=1.12.5	ScriptElement	52 kB	2023-08-13	2025-04-17
Pretty URL uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/eae.min.js?ver=1.12.5 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-13 03:36 Last Seen2025-04-17 00:34 Times Seen90 Hash 956116be8a6bbfe31146567de3163e3c ed72b0ffd3de1cb7eee98542dbe1a45e05b1f9ee 9f81abea871019cc5b59148fa03b55628735b98b1f2dbc7b02560f60529944ee Loading...

	uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/vegas/vegas.min.js?ver=2.4.0	ScriptElement	9.9 kB	2023-03-07	2025-05-10
Pretty URL uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/vegas/vegas.min.js?ver=2.4.0 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17 Last Seen2025-05-10 22:27 Times Seen691 Hash c72f588d7841d08871f6f57b4bef5822 70e2ebaf419db6a336494abaadb97a63092a4a8a f429d68fdbafa7014fe049bcae44fdec1e4cdd61c9de788b79c1b0bb57999188 Loading...

	uniifyapp.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.16.3	ScriptElement	40 kB	2023-09-15	2025-04-29
Pretty URL uniifyapp.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.16.3 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-15 15:05 Last Seen2025-04-29 08:05 Times Seen371 Hash e2a3fb1470104bd64d98e8245c6de817 0845f9f5eeda970595c9d3f22c5e104c9c761960 b9e240e7c455e9415ddcebc9ebd5c1b37350abef90c0a7d7b6a57423850250f7 Loading...

	uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo	ScriptElement	2.4 kB	2023-10-25	2024-08-21
Pretty URL uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-25 06:58 Last Seen2024-08-21 03:30 Times Seen3 Hash bc935e9df1252ed102a6e05b12d526b5 032e47b60930ed700ad55acc30d6b49be81c4ae8 325e409a5769eabe0a077b363cdac719bf93eb80826d9bc62aba926edb893264 Loading...

	uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/animated-main.min.js?ver=1.0	ScriptElement	2.3 kB	2023-08-13	2025-05-10
Pretty URL uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/animated-main.min.js?ver=1.0 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-13 05:35 Last Seen2025-05-10 14:42 Times Seen386 Hash 12619efa105d916b7ea8f4e232d5b1c9 f7b45b315fc4a1d28a26737164054c623271ef79 0e8d938149cb71defe5c209b6a89265fb2c8f88fd12b8fc6679c43b6586ccbd4 Loading...

	uniifyapp.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1	ScriptElement	88 kB	2023-11-03	2025-05-11
Pretty URL uniifyapp.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 09:26 Last Seen2025-05-11 11:47 Times Seen92573 Hash 826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf Loading...

	uniifyapp.com/wp-content/themes/apptek/assets/js/bootstrap.min.js?ver=1701885459	ScriptElement	234 kB	2023-03-11	2025-03-05
Pretty URL uniifyapp.com/wp-content/themes/apptek/assets/js/bootstrap.min.js?ver=1701885459 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 13:36 Last Seen2025-03-05 16:14 Times Seen8 Hash d4f0fd7f138b89ad4c345909c6cb99af 0d43d182ab11040cbf3e631d21feec2c9fc5e3d4 6d143656f7d2fc6e9d5e2e1a327924903a432c04bdfbe0823048b2378cfb738b Loading...

	embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-chunk-vendors.js	ScriptElement	217 kB	2023-11-15	2024-10-06
Pretty URL embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-chunk-vendors.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-15 15:42 Last Seen2024-10-06 09:16 Times Seen8406 Hash 86b32a04921a039ace69980bacd1b639 ca9a6e342590d510a0cf480c4131eb420ba5b410 fcd1fa4d2007137da13dd581c678acfda42358cbdbda0f0204874fbe2e2c4663 Loading...

	uniifyapp.com/wp-content/themes/apptek/assets/js/apptek-app.js?ver=1701885459	ScriptElement	15 kB	2023-07-01	2023-12-06
Pretty URL uniifyapp.com/wp-content/themes/apptek/assets/js/apptek-app.js?ver=1701885459 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-01 06:40 Last Seen2023-12-06 18:58 Times Seen4 Hash 7cf65cd7764edd82badd2c08982e7380 950e53a634c5d8419c0cea76b5a18bb115f69bc7 0b9c06d7c697ff088475c827db1be01bc262c35ad84caff6dcc462ae378b2b44 Loading...

	js.hs-banner.com/v2/44045558/banner.js	ScriptElement	67 kB	2023-10-25	2023-12-06
Pretty URL js.hs-banner.com/v2/44045558/banner.js IP 172.64.153.27 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-25 06:58 Last Seen2023-12-06 18:58 Times Seen3 Hash 3b93950d1aa58a0bac19ba033b5c9e30 eee129780fa83956aa50c1567224d54fb6afdcf7 a8b293de0ddc1fe6fd2621867e0f97d4000edc4a15caa31eefb99a5066339026 Loading...

	js.hs-scripts.com/44045558.js?integration=WordPress&ver=10.2.5	ScriptElement	2.5 kB	2023-12-06	2023-12-06
Pretty URL js.hs-scripts.com/44045558.js?integration=WordPress&ver=10.2.5 IP 104.16.191.89 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-06 18:58 Last Seen2023-12-06 18:58 Times Seen1 Hash 0d4ef972c3ade707f5875c593681dcf9 2b7c823b2118d7aee719ba07c4e9f61ff76b2940 2a92781c82a53395503a7fb6876cc8ec1211b8f8d4331be6cf8e656660b8019a Loading...

	www.googletagmanager.com/gtag/js?id=GT-MBLHFQZ&l=dataLayer&cx=c	ScriptElement	215 kB	2023-12-06	2023-12-06
Pretty URL www.googletagmanager.com/gtag/js?id=GT-MBLHFQZ&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-06 18:58 Last Seen2023-12-06 18:58 Times Seen1 Hash a5a2cbe7911ae1c5587d8dc3f5ed67cd 9936cc031fbdfbe521805ac4766b8775d8f7da5a df0fb896614cd7f706abd454d3f5396737f29dc2d449e97803ac1605a8262cca Loading...

	embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-chunk-2c776523.js	ScriptElement	9.9 kB	2023-12-06	2025-03-12
Pretty URL embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-chunk-2c776523.js IP 104.22.25.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-06 05:31 Last Seen2025-03-12 13:42 Times Seen4879 Hash 70aec2dd89cac4933594c25b71d61f46 3dfe6f517bd57abbea46dd4da776e80270d9db5f cd50385cef163eb376d93e7b1e07fe467de23b60c98373f7d69448214d3e9cdd Loading...

	uniifyapp.com/wp-content/themes/apptek/assets/js/ajax_add_to_cart.js?ver=1701885459	ScriptElement	1.5 kB	2023-07-01	2024-08-21
Pretty URL uniifyapp.com/wp-content/themes/apptek/assets/js/ajax_add_to_cart.js?ver=1701885459 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-01 06:40 Last Seen2024-08-21 04:31 Times Seen4 Hash f96b4c19c4031aa7c9935ff760920c8f c77177aeea45ddca4b419e01b15503637b2671ac f82a8e00e14438dc6a4ceae6f3f6152c8a452aee7cc5915a349625d3164a93a8 Loading...

	uniifyapp.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6	ScriptElement	139 kB	2023-03-07	2025-05-11
Pretty URL uniifyapp.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 02:01 Times Seen7121 Hash 15bb2b8491fc7e84137d65f610e1685a cd76b70a5426893e9c022b9a75c50a7c1348e2d0 b23f49f504faa32aac548b6662ffd64412f6738496fab8be38da46c5b7121804 Loading...

HTTP Transactions (145)

URL IP Response Size

djcjedf.r.bh.d.sendibt3.com/tr/cl/h8yB4s8zBfzCsncwFLtZjRpROQ86T7dLZoM_kQEMVoOu_uHW9QArlqFi-gK3W61gNsezc35PPNy_CpmVFUodQEy5iS1Y4CKWwT11IUkGw_cu6qEE0mjFRcWTrGY0NPtWPBSHqE9uwFgysxA_xRDk1IfG5XXWHhYp9hcn4tXmAU7LPUrAsw8_9EkqsWBaCVI0feJ1qul1fAUV6UHKqNkhFupmSMDkQJ8FpFuXGEJEgwc3Bwng86vyytB8LcjFQo0L99s_0H88wD_nqfU4hEI_Fz17lFQrkBhDMjB5h03KcJb-D7VgY7NI95Ss3_ap_SHVWA7PWW8Jhei0GrruLC44yfqL7s8I_eK6fMmq9zk5g7fdOeHumX5E2ydSML5Q_f3DfBu55Qa6Uj_m9ZwSYMs8G3-k9jno8iYtIp-Bmb69iyeT9QeUvFPWbUkQzHgeWFyb0dzzq3jW

1.179.112.197

302 Found

166 B

URL User Request GET HTTP/2
djcjedf.r.bh.d.sendibt3.com/tr/cl/h8yB4s8zBfzCsncwFLtZjRpROQ86T7dLZoM_kQEMVoOu_uHW9QArlqFi-gK3W61gNsezc35PPNy_CpmVFUodQEy5iS1Y4CKWwT11IUkGw_cu6qEE0mjFRcWTrGY0NPtWPBSHqE9uwFgysxA_xRDk1IfG5XXWHhYp9hcn4tXmAU7LPUrAsw8_9EkqsWBaCVI0feJ1qul1fAUV6UHKqNkhFupmSMDkQJ8FpFuXGEJEgwc3Bwng86vyytB8LcjFQo0L99s_0H88wD_nqfU4hEI_Fz17lFQrkBhDMjB5h03KcJb-D7VgY7NI95Ss3_ap_SHVWA7PWW8Jhei0GrruLC44yfqL7s8I_eK6fMmq9zk5g7fdOeHumX5E2ydSML5Q_f3DfBu55Qa6Uj_m9ZwSYMs8G3-k9jno8iYtIp-Bmb69iyeT9QeUvFPWbUkQzHgeWFyb0dzzq3jW
IP
1.179.112.197:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Certificate
IssuerLet's Encrypt
Subject*.r.bh.d.sendibt3.com
FingerprintA6:F3:97:CF:07:B0:32:36:FB:46:7F:76:E3:C8:B2:1D:CB:BE:31:D9
ValidityFri, 01 Dec 2023 05:00:09 GMT - Thu, 29 Feb 2024 05:00:08 GMT

File type
HTML document, ASCII text
Size
166 B (166 bytes)
Hash
842ef1b83eaf8b4863197f009bcd6f17
0fdc0aeb8e807ecaf0ce586ba3ca95137672f84f
d83742b9863ffbdb60a16005497524d3ca5626ff8cc3becac124ee2d242000ea

HTTP Headers

GET /tr/cl/h8yB4s8zBfzCsncwFLtZjRpROQ86T7dLZoM_kQEMVoOu_uHW9QArlqFi-gK3W61gNsezc35PPNy_CpmVFUodQEy5iS1Y4CKWwT11IUkGw_cu6qEE0mjFRcWTrGY0NPtWPBSHqE9uwFgysxA_xRDk1IfG5XXWHhYp9hcn4tXmAU7LPUrAsw8_9EkqsWBaCVI0feJ1qul1fAUV6UHKqNkhFupmSMDkQJ8FpFuXGEJEgwc3Bwng86vyytB8LcjFQo0L99s_0H88wD_nqfU4hEI_Fz17lFQrkBhDMjB5h03KcJb-D7VgY7NI95Ss3_ap_SHVWA7PWW8Jhei0GrruLC44yfqL7s8I_eK6fMmq9zk5g7fdOeHumX5E2ydSML5Q_f3DfBu55Qa6Uj_m9ZwSYMs8G3-k9jno8iYtIp-Bmb69iyeT9QeUvFPWbUkQzHgeWFyb0dzzq3jW HTTP/1.1
Host: djcjedf.r.bh.d.sendibt3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: text/html; charset=utf-8
date: Wed, 06 Dec 2023 17:57:38 GMT
location: https://uniifyapp.com?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
x-content-type-options: nosniff
x-sib-server: gke-public-cluster-v2-1-179-112-142
x-xss-protection: 1
content-length: 166
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js

172.217.21.170

200 OK

31 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js
IP
172.217.21.170:443
ASN
#15169 GOOGLE

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (65447)
Size
31 kB (31017 bytes)
Hash
8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e

HTTP Headers

GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31017
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 09:00:44 GMT
expires: Wed, 04 Dec 2024 09:00:44 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Wed, 10 Mar 2021 14:28:09 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 118616
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-205366137-2

142.250.74.168

200 OK

69 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-205366137-2
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (4179)
Size
69 kB (69008 bytes)
Hash
737e297401040cb9fbbb82842ed2bb49
34ba2dd1953388f83c90465b7d6d30a46485ac4f
a7414a06d9d93319eafe3155a9ae85e6918565c5431c7a31a4984010cbef8f4a

HTTP Headers

GET /gtag/js?id=UA-205366137-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 06 Dec 2023 17:57:40 GMT
expires: Wed, 06 Dec 2023 17:57:40 GMT
cache-control: private, max-age=900
last-modified: Wed, 06 Dec 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 69008
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo

188.114.97.1

200 OK

67 kB

URL User Request GET HTTP/2
uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (54713)
Size
67 kB (66679 bytes)
Hash
30882567bcb60a6b83d49e65d44af6ef
a7f8d7a31f1a279fe8585a639290ef0cdea6e866
b68c2a8f6b4a317f3d9686fcfbe4364391b63009e48e59c156d93c36c1580da7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:57:40 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.30
link: <https://uniifyapp.com/wp-json/>; rel="https://api.w.org/", <https://uniifyapp.com/wp-json/wp/v2/pages/1177>; rel="alternate"; type="application/json", <https://uniifyapp.com/>; rel=shortlink
server-timing: wp-load-alloptions-query;dur=1.71, wp-before-template;dur=65.16
set-cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b; path=/; secure; HttpOnly
vary: Accept-Encoding,User-Agent
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gUQazmCjmT2usyCaIr4iPP8iearo1npQLxkuYucKM3AYV4nQHp63VMxi7pp1s856tPcjCWaBLiULZvU5XuvaOTGz7TzLybc49ao2ko%2F4WRdCVFiPp3eOnHhnxPYGnKZ1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669971bceb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

uniifyapp.com/wp-includes/js/wp-util.min.js?ver=4fd0f5bc13853fae144764d9c4a67c2c

188.114.97.1

200 OK

82 kB

URL GET HTTP/3
uniifyapp.com/wp-includes/js/wp-util.min.js?ver=4fd0f5bc13853fae144764d9c4a67c2c
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (1391)
Size
82 kB (81944 bytes)
Hash
19d386c9004e54941c1cc61d357efa5d
0a77594006c8d86fdcc0adbc2b9aecaef3869586
3bc6467a95cec8fa516c6f5f69e1301e37e16f9bb1046fe7756729249f901b95

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-util.min.js?ver=4fd0f5bc13853fae144764d9c4a67c2c HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 03:52:10 GMT
etag: W/"5435c0-592-5e913c0b08e80-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mH9OrmaPwDZAOuFn8143LR2vQL3ilsf6IeIXYH32bEeLwk9h%2BEKfojsofXmo4xeTFccULxsdGVbI9EW%2BuYOwEfOXicaH4lD%2BUm%2BAVnjOSXVuCmqXJOk3X%2BfuXblPxyIh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a0eaa8b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/gtag/js?id=GT-MBLHFQZ&l=dataLayer&cx=c

142.250.74.168

200 OK

77 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=GT-MBLHFQZ&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (4179)
Size
77 kB (77264 bytes)
Hash
a5a2cbe7911ae1c5587d8dc3f5ed67cd
9936cc031fbdfbe521805ac4766b8775d8f7da5a
df0fb896614cd7f706abd454d3f5396737f29dc2d449e97803ac1605a8262cca

HTTP Headers

GET /gtag/js?id=GT-MBLHFQZ&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 06 Dec 2023 17:57:41 GMT
expires: Wed, 06 Dec 2023 17:57:41 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77264
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/a?id=G-EB0MPR1JXK&v=3&t=t&pid=1057348616&cv=2&rv=3bt0&tc=12&es=1&e=gtm.init_consent&eid=0&h=Ag&dl=uniifyapp.com%2F&tdp=G-EB0MPR1JXK;117073015;1;1;0&z=0

142.250.74.168

200 OK

0 B

URL GET HTTP/3
www.googletagmanager.com/a?id=G-EB0MPR1JXK&v=3&t=t&pid=1057348616&cv=2&rv=3bt0&tc=12&es=1&e=gtm.init_consent&eid=0&h=Ag&dl=uniifyapp.com%2F&tdp=G-EB0MPR1JXK;117073015;1;1;0&z=0
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /a?id=G-EB0MPR1JXK&v=3&t=t&pid=1057348616&cv=2&rv=3bt0&tc=12&es=1&e=gtm.init_consent&eid=0&h=Ag&dl=uniifyapp.com%2F&tdp=G-EB0MPR1JXK;117073015;1;1;0&z=0 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:42 GMT
content-type: text/html
server: Google Tag Manager
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/carousel.min.js?ver=1701885459

188.114.97.1

200 OK

12 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/carousel.min.js?ver=1701885459
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (933)
Size
12 kB (12042 bytes)
Hash
0b991a4e1dd356f931be86f323203ff0
663772820fc3f1d8da6a1ab59dca0312a3657f82
041df1d9efdace731a6b5956473567232e14be126d0bc80a2c1b49a706211ab1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/radiantthemes-addons/assets/js/carousel.min.js?ver=1701885459 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 06:10:07 GMT
etag: W/"5a0967-d21f-5ecef6442edc0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VvHhjVf%2BXdGbM%2BF%2BnuJswuXY3rknu7TZMf7dW66S8PHNdDHfDIED%2BJ9xmf1%2FHfz57mTiZU0Kz%2B4Sa9YnrBoIX6cCsbhjMBCkyAXOQbrXxnyQv0ijrbUHLtuwCDehotmc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a11ae4b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/particles.min.js?ver=2.0.0

188.114.97.1

200 OK

11 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/particles.min.js?ver=2.0.0
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (22686), with no line terminators
Size
11 kB (10605 bytes)
Hash
c9898f4218ad8a464141550c2ec72225
592a3ac90f7cafbc30082584b5e132365bd48f23
71a49270bfb8077f783c2530b1c5bf2335a100a2419996d2f7d1c2ac19dd6239

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/particles.min.js?ver=2.0.0 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:27:25 GMT
etag: W/"421a5b-589e-605a49e1d05e7-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D1CE7Ajo2yp66NTNi6r0fnQDojiqRycTvwu%2F4nm5NeQbiNJCr4upn5qqHzhVGt242moeL9FK6fuKw3fYdX1821CfOBnRb8K14z0qeYGfyYrnNBacPMGQkc9pnAzedijg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a0da98b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/a?id=G-EB0MPR1JXK&v=3&t=t&pid=1057348616&cv=2&rv=3bt0&tc=12&es=1&e=gtag.config&eid=2&u=AAAAAAAAAAAAAIAAAAAAAAE&ut=Ag&h=Ag&epr=1G.2G&tr=1gct&ti=1gct&z=0

142.250.74.168

200 OK

0 B

URL GET HTTP/3
www.googletagmanager.com/a?id=G-EB0MPR1JXK&v=3&t=t&pid=1057348616&cv=2&rv=3bt0&tc=12&es=1&e=gtag.config&eid=2&u=AAAAAAAAAAAAAIAAAAAAAAE&ut=Ag&h=Ag&epr=1G.2G&tr=1gct&ti=1gct&z=0
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /a?id=G-EB0MPR1JXK&v=3&t=t&pid=1057348616&cv=2&rv=3bt0&tc=12&es=1&e=gtag.config&eid=2&u=AAAAAAAAAAAAAIAAAAAAAAE&ut=Ag&h=Ag&epr=1G.2G&tr=1gct&ti=1gct&z=0 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:42 GMT
content-type: text/html
server: Google Tag Manager
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

uniifyapp.com/wp-content/themes/apptek/assets/js/menu-vendor.js?ver=1701885459

188.114.97.1

200 OK

91 kB

URL GET HTTP/3
uniifyapp.com/wp-content/themes/apptek/assets/js/menu-vendor.js?ver=1701885459
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
91 kB (90743 bytes)
Hash
c5bcfef25b470a226d94163a59d8cb80
318d28b832d03791f8d80758ce5565a8164c4d24
39594e1b177575e2de17bbac225fe00ad3d23a256891c0fc682c3100dfa3fbbd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/apptek/assets/js/menu-vendor.js?ver=1701885459 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 10:46:20 GMT
etag: W/"5a1b5e-3fe19-5eb4ccd6bf700-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XVh9InNCjJrSMYxJxV0qcfiQ%2BqwPetD3S8A92uwBFidK84Q7sgWyPcURLa7ylANWhQGkVew1kpo1zn8QeT%2Bkmt7RIQ0pGX%2Bj1dV%2FGoPLVHTDMiVjDcrCPi7qHtPYGvyD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a0eaa5b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/uploads/elementor/css/post-1294.css?ver=1695054608

188.114.97.1

200 OK

477 B

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/elementor/css/post-1294.css?ver=1695054608
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (3427), with no line terminators
Size
477 B (477 bytes)
Hash
0935016ed2d5b7bf473252b0425bfe30
a97f66535d1624ee880e6e9bf2940773ee1232b9
17e22f14db30019de283e3a53241733e4d6d0f4c56fac127b6b292e16348377a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/post-1294.css?ver=1695054608 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:42 GMT
content-type: text/css
last-modified: Mon, 18 Sep 2023 16:30:08 GMT
etag: W/"5a0012-d63-605a4a7ce27be-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O0cN%2FXfcqd96rBW%2BKqrLCm0Kya3xG7Jnti51F5cCEcoMJ3gjGWLOb%2FcTBVuG8CImLTzICFZeL4Bx1PDM3Er%2B%2FLJ4I4pQCTM0Qr3vwROujwwJRdT4ttQzM8ReQTJS59TJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a5a930b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/css/eae.min.css?ver=1.12.5

188.114.97.1

200 OK

19 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/css/eae.min.css?ver=1.12.5
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
19 kB (18802 bytes)
Hash
e3339f9b8a2155a9e6ccb8eb482e99a8
4aa1c98885465c265e1665e76962d4ccbc64d77b
ffc19b19308a1335b8ff8e7b77d0bd596aecd9021e6aafc570ccaab50aa651c8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/addon-elements-for-elementor-page-builder/assets/css/eae.min.css?ver=1.12.5 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:42 GMT
content-type: text/css
last-modified: Mon, 18 Sep 2023 16:27:25 GMT
etag: W/"400fd6-1dd0f-605a49e1ce2bf-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3t77ZL4Oe0J0upXHVqFsnhMb%2FPVPsNj0pwt7FapTDbrc6bVXJu5tRyJatuFXs8Ce%2BXMtYOd8G9VW2oMqepMpPOdJgWzvZmyxICG0OhdPZ9KvJaGkWMoYd8sjbpJOWDxg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a5e977b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

in-automate.brevo.com/visitor/ehnbv4qti39900l4o230qvgy

172.64.149.40

204 No Content

0 B

URL POST HTTP/2
in-automate.brevo.com/visitor/ehnbv4qti39900l4o230qvgy
IP
172.64.149.40:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectbrevo.com
Fingerprint02:B5:EB:F6:99:15:0A:B5:BC:5D:FE:DD:92:BD:CF:1A:B6:C5:68:5D
ValiditySun, 29 Oct 2023 18:23:14 GMT - Sat, 27 Jan 2024 18:23:13 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /visitor/ehnbv4qti39900l4o230qvgy HTTP/1.1
Host: in-automate.brevo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Content-Length: 95
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
date: Wed, 06 Dec 2023 17:57:42 GMT
access-control-allow-origin: *
cache-control: no-cache
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=8RQBssdmtEvOGYyj7vOki15oWvkwqzsRXZTqwY7X0n8-1701885462-0-AYfThZ5OsHWA7bp/fELBu1HSODtzKoB15E7rIzNUEPYjuzXEUP0jWGeLRy+ZeWVXoEAXk5AjYgV1kKw922BiWRE=; path=/; expires=Wed, 06-Dec-23 18:27:42 GMT; domain=.brevo.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 831669ab5f5eb51b-OSL
X-Firefox-Spdy: h2

in-automate.brevo.com/p?key=ehnbv4qti39900l4o230qvgy&cuid=7de98d0d-53a6-46f2-b190-09dd66e025e0&ma_url=https%3A%2F%2Funiifyapp.com%2F%3F_se%3DbWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%253D%253D%26utm_campaign%3DRicha_Email_3%26utm_medium%3Demail%26utm_source%3Dbrevo&sib_type=page&ma_title=Home%20-%20Uniify&sib_name=Home%20-%20Uniify&ma_referrer=&ma_path=%2F

172.64.149.40

204 No Content

0 B

URL GET HTTP/2
in-automate.brevo.com/p?key=ehnbv4qti39900l4o230qvgy&cuid=7de98d0d-53a6-46f2-b190-09dd66e025e0&ma_url=https%3A%2F%2Funiifyapp.com%2F%3F_se%3DbWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%253D%253D%26utm_campaign%3DRicha_Email_3%26utm_medium%3Demail%26utm_source%3Dbrevo&sib_type=page&ma_title=Home%20-%20Uniify&sib_name=Home%20-%20Uniify&ma_referrer=&ma_path=%2F
IP
172.64.149.40:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectbrevo.com
Fingerprint02:B5:EB:F6:99:15:0A:B5:BC:5D:FE:DD:92:BD:CF:1A:B6:C5:68:5D
ValiditySun, 29 Oct 2023 18:23:14 GMT - Sat, 27 Jan 2024 18:23:13 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p?key=ehnbv4qti39900l4o230qvgy&cuid=7de98d0d-53a6-46f2-b190-09dd66e025e0&ma_url=https%3A%2F%2Funiifyapp.com%2F%3F_se%3DbWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%253D%253D%26utm_campaign%3DRicha_Email_3%26utm_medium%3Demail%26utm_source%3Dbrevo&sib_type=page&ma_title=Home%20-%20Uniify&sib_name=Home%20-%20Uniify&ma_referrer=&ma_path=%2F HTTP/1.1
Host: in-automate.brevo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
date: Wed, 06 Dec 2023 17:57:42 GMT
access-control-allow-origin: *
cache-control: no-cache
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=HSEyxAT9nQ7y1hhpt0JgQ1HYhBEmOLdEcE_YD4RUERk-1701885462-0-ASrIYcSUbJlFzZTdUnNhxhnyq9Mpad4wjUDW+fwB3BnMVeavI+mssm6BdF/CXu381GsugLbSa57fyoLlZ1zqATE=; path=/; expires=Wed, 06-Dec-23 18:27:42 GMT; domain=.brevo.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 831669abafc0b51b-OSL
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/plugins/radiantthemes-addons/widgets/custom-button/css/button-style-four.css?ver=1701885459

188.114.97.1

200 OK

1.1 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/radiantthemes-addons/widgets/custom-button/css/button-style-four.css?ver=1701885459
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text
Size
1.1 kB (1053 bytes)
Hash
0e82307a8b71ca000e885bd651725f1a
ce7a8ad4748127cf4451502259dd4c3cf47a403b
88fd9cbdae20fb49dfc219507207e4c17c096695745feb6c45559ad9f63e0355

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/radiantthemes-addons/widgets/custom-button/css/button-style-four.css?ver=1701885459 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 06:10:07 GMT
etag: W/"5a0a3f-6a6-5ecef6442edc0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DFtbkpZnSwuD2LDJI%2BHHbzA13cWRA5k8KTtIDDVQorlSdyyEmnghHwaViYYH0okrSks82R0UfnYVJO4AvdjDrem5GVWDqsQ3RQjzsB7QWICzrkF%2Fwth42Ewsl1tWO6Iw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a5d967b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2

188.114.97.1

200 OK

13 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (12198), with no line terminators
Size
13 kB (13082 bytes)
Hash
3819c3569da71daec283a75483735f7e
ecd40a5cc6f0b76200c454ca880210dc301cfab8
214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:27:08 GMT
etag: W/"400ca0-2fa6-605a49d16bfd7-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PsLnt1IqfHfNPbXSe%2FgGJsrFYSf0sMIcGfy9YqKDWl6U7rqXfQIaW%2Fx2KUUNZP2Du2iv%2F8wJNfuqz9ZV65ftDjXD4fCjX8U9HHsgDw4V7v%2BNxPUAc%2BM1RCYvcui3KEdN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a11afab518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/themes/apptek/assets/js/swiper.min.js?ver=1701885459

188.114.97.1

200 OK

46 kB

URL GET HTTP/3
uniifyapp.com/wp-content/themes/apptek/assets/js/swiper.min.js?ver=1701885459
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (867), with CRLF line terminators
Size
46 kB (46350 bytes)
Hash
510a02eb96dd68d60ad581ec8ebada54
ee17aabecea28850029787a7581c78c770a2b410
5e6eaf05f99190d360ad0fc8d1dcdcccfc560a9acc620f974c63f169f1a53554

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/apptek/assets/js/swiper.min.js?ver=1701885459 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 10:46:20 GMT
etag: W/"5a1b65-38db6-5eb4ccd6bf700-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kkAugX0cIh86irtwZRceanX7565OVQa7N19mp84FOF2v7eBz58oFYklghtkcl8hWthnKn1MObwzbKGNeL4K3x5K8M9fiw9uZw3Y%2FG1ZdFTex8SaMY4OXSiBMhqXCcZSI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a0daa2b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

forms.hsforms.com/embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=1

104.17.239.249

200 OK

35 B

URL GET HTTP/1.1
forms.hsforms.com/embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=1
IP
104.17.239.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint1E:9D:91:27:86:63:DC:7B:9D:15:4E:99:31:FC:AA:1D:DC:9E:06:3B
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992

HTTP Headers

GET /embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=1 HTTP/1.1
Host: forms.hsforms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 17:57:43 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
X-Trace: 2BCF3441BDFACE21BAEE31747B6D7166434EB27B8E000000000000000000
Cache-Control: max-age=0, no-cache, no-store
Vary: origin
Access-Control-Allow-Credentials: false
X-Content-Type-Options: nosniff
Access-Control-Expose-Headers: X-Origin-Hublet
X-Robots-Tag: none
x-envoy-upstream-service-time: 2
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/star-hubspot-td/envoy-proxy-fc678f645-mhl2k
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
X-HubSpot-Correlation-Id: 8d2f70ac-0cf8-43c3-ad6e-d47e48dbf0e7
x-request-id: 8d2f70ac-0cf8-43c3-ad6e-d47e48dbf0e7
CF-Cache-Status: DYNAMIC
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Server: cloudflare
CF-RAY: 831669b0480ab529-OSL
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/themes/apptek/assets/css/apptek-custom.css?ver=1.0.0

188.114.97.1

200 OK

9.2 kB

URL GET HTTP/3
uniifyapp.com/wp-content/themes/apptek/assets/css/apptek-custom.css?ver=1.0.0
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text
Size
9.2 kB (9217 bytes)
Hash
4cf96e1c612a1ea3459f22c4ba4f513c
63c41f6a96ce666b5d633d4f04fe31c4e23f6886
3baf285c4d6747fe851fe8ace1e747c4c65de19b67bd62c8c04cbb3df9f94182

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/apptek/assets/css/apptek-custom.css?ver=1.0.0 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:42 GMT
content-type: text/css
last-modified: Wed, 04 Jan 2023 10:36:38 GMT
etag: W/"5a1af7-d625-5f16dc25a9980-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fe3VfrD4wh1EOLDroN4Lw9qATv7A5q5ClTDKoO8O6LxGBPrdo%2FADpFk0OQabnTi9m4VhuJtnac5O6aIdUnk0xRujTl%2F8bfVk2xqzJFK5l2CvUq2NUQRT7xijddTRj4Vb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a5f98eb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/testimonial.js?ver=1701885459

188.114.97.1

200 OK

94 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/testimonial.js?ver=1701885459
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text
Size
94 kB (93746 bytes)
Hash
e2c6242c0612a5de6ac11e9672d3a636
587ed68b5bd63c3511b3eb98b4b9458c62a8362e
3abcb1a1e9055ae1dc1bb23ce1570574d0d2f6372056404c1373ab2df3622d1e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/radiantthemes-addons/assets/js/testimonial.js?ver=1701885459 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 06:10:07 GMT
etag: W/"5a0998-28d4-5ecef6442edc0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1fAuVkkjy%2BhVNLunA5QFYZHzlwA904uKSQ7DbDEliAjEI2%2BKuOyqhWy9aMCo5mwNOG2jmGmEiHj28Wsf705tjC%2FYa0ugyjw4WS1rjO%2Fx7UuTWp2nnNCfYKyLHALdAiOH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a11ae1b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=1.0

188.114.97.1

200 OK

19 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=1.0
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (26516)
Size
19 kB (19021 bytes)
Hash
c55205bce667f5d812354fd1353e7389
f22de0af271eba636a022c873c94fbcd81b4c89a
c55902832fb84522d02ea1a60a30747403a140d8651fa748f13ba398b0c0df3a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=1.0 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:42 GMT
content-type: text/css
last-modified: Mon, 18 Sep 2023 16:27:08 GMT
etag: W/"400c52-684e-605a49d108ddf-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Jd85aB38emA%2FuM7e7cZo6u6tHF892sL487PXT4efd6dVrpfvSJOmrKiRCe%2FRMxm4zhVIiDK69qZ6dwY5pmbD7wmXzl8igYaO3GDQR6Dcb3LBl%2FiQRAPhkC6mG7TsRm5T"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a5d95eb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/elementor/assets/lib/swiper/css/swiper.min.css?ver=5.3.6

188.114.97.1

200 OK

15 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/elementor/assets/lib/swiper/css/swiper.min.css?ver=5.3.6
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (12876), with no line terminators
Size
15 kB (15036 bytes)
Hash
bcad7781b3e74db2565b8424c45232cd
41b0d94434ef667897c06e1184b703064ffceda1
d622534d53d3ac1095af275f0b30274fcd835785577df2dde6d9398e6f7a2c8f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/swiper/css/swiper.min.css?ver=5.3.6 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:42 GMT
content-type: text/css
last-modified: Mon, 18 Sep 2023 16:27:08 GMT
etag: W/"400c95-324c-605a49d16a867-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GhYmvJOBVvNRmVgb1Uj9Hv5PqjBOEVZLK%2BdOo4yyCiN0%2BsXIzqpFroZjOaDBvANp%2F2zlqz%2Bl9nrXxjmgOVuWq1dBuxek8FyoKExWkPlDWwIBAZ9fca7%2FwxPsxZp47bo4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a60990b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/themes/apptek/assets/js/jquery.sidr.min.js?ver=1701885459

188.114.97.1

200 OK

5.1 kB

URL GET HTTP/3
uniifyapp.com/wp-content/themes/apptek/assets/js/jquery.sidr.min.js?ver=1701885459
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (6911), with no line terminators
Size
5.1 kB (5120 bytes)
Hash
9d40b53ff4c70a5a092c8d710f6c5648
5b08da40a32c5384a9c0bd9bfb6ce7191c8ee294
5035278da8eadf194e797122bfce35812235ca5bc6c271aa93cbaf5dfdd4c538

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/apptek/assets/js/jquery.sidr.min.js?ver=1701885459 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 10:46:20 GMT
etag: W/"5a1b5b-1aff-5eb4ccd6bf700-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FWdw4i8hfOwHfiif63kzTvUFVn1hNI%2B8dkJPYHmSFsowtqy9DCWuh22pMOvGwb4ee%2FH00jTBhJA4o0ypW7okDjhVFcEhMH0FrVetPmNFL5y%2BTJ7CI2Afii%2BVYvuSGBdm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a0eab5b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/jetpack-boost/jetpack_vendor/automattic/jetpack-lazy-images/dist/lazy-images.js?minify=false&ver=2e29137590434abf5fbe

188.114.97.1

200 OK

68 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/jetpack-boost/jetpack_vendor/automattic/jetpack-lazy-images/dist/lazy-images.js?minify=false&ver=2e29137590434abf5fbe
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (2415), with no line terminators
Size
68 kB (68153 bytes)
Hash
dbd2c18733ff907be35d6ce7012cda58
ab99ef32c7c79407b2781a0b2d492fb9b00467f9
c8be1269a134d7df5a75a02b0fce70d409e6d6984554acef232eabdaa4c39d66

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/jetpack-boost/jetpack_vendor/automattic/jetpack-lazy-images/dist/lazy-images.js?minify=false&ver=2e29137590434abf5fbe HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:27:39 GMT
etag: W/"48021f-96f-605a49ef0ba60-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FxXku5CNJCsp%2FFgmVgTxj3kPIGkFAv0M1aKDcmibfvC32jlawaq%2BI6WgdiuOeZPnPyAE3%2By%2FbuIwmwvks06dLb1CMfNi5UW9qH1nTaL37yXSOrhNG0dEVDxN%2B3Gzldhe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a0faccb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/css/rt-heading.css?ver=1701885459

188.114.97.1

200 OK

112 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/css/rt-heading.css?ver=1701885459
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text
Size
112 kB (112165 bytes)
Hash
e82045a6f9431a7992cdd6e98fcc952b
04040e3e3008b53d8546377c351ffaae584801a4
0c02a51348b0dc97f770cb916f4c98e556420ed4f44fa08eaec2041bf3bbe865

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/radiantthemes-addons/assets/css/rt-heading.css?ver=1701885459 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:42 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 06:10:07 GMT
etag: W/"5a03d0-2a34-5ecef6442edc0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qOyVpIhLq7sXTwr3PEch%2FTzgMWRawER2lkKG%2Ba17M7fsTc0cQ5D8OxxhcU7nV9L2uUcrFCzS2jRKcVGnt9N3rW0IQ83yQG6PzzHzLzZ3qsTll2RH3lcDoiXjqqJBkFDs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a639e5b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/plusjakartasans/v8/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko20yyghfvaZ-E.woff2

142.250.74.163

200 OK

27 kB

URL GET HTTP/2
fonts.gstatic.com/s/plusjakartasans/v8/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko20yyghfvaZ-E.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 27380, version 1.0\012- data
Size
27 kB (27380 bytes)
Hash
ef7dacd250c0839701b5bcbe70eee550
62a7eb3b200676248cca6b5a91094847e701b20a
04e4980608aefd2027509a3f61e12293f3889a34c661c87520b28cf40291ee15

HTTP Headers

GET /s/plusjakartasans/v8/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko20yyghfvaZ-E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27380
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 04 Dec 2023 22:16:08 GMT
expires: Tue, 03 Dec 2024 22:16:08 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 22 Jun 2023 14:14:30 GMT
content-type: font/woff2
age: 157295
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/vegas/vegas.min.js?ver=2.4.0

188.114.97.1

200 OK

20 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/vegas/vegas.min.js?ver=2.4.0
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (9875)
Size
20 kB (20248 bytes)
Hash
c72f588d7841d08871f6f57b4bef5822
70e2ebaf419db6a336494abaadb97a63092a4a8a
f429d68fdbafa7014fe049bcae44fdec1e4cdd61c9de788b79c1b0bb57999188

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/vegas/vegas.min.js?ver=2.4.0 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:27:25 GMT
etag: W/"4415d2-26ba-605a49e1d3c97-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lO%2BAYiq3p3uMXd4byZQ96uiUDCnWFdblTa4gdwvj4nQ8s9HMkEEw%2FoVhryEcg7uN2xCWwmh9d9jqMn0QwljmVM6FykGojlNRh7jlbW0HphQiDJPzL7lh8JYQlBbO38ws"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a0da9bb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/themes/apptek/assets/js/sweetalert.min.js?ver=1701885459

188.114.97.1

200 OK

48 kB

URL GET HTTP/3
uniifyapp.com/wp-content/themes/apptek/assets/js/sweetalert.min.js?ver=1701885459
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (40808), with no line terminators
Size
48 kB (48057 bytes)
Hash
f3b8ce97ff6ce324da6232da353adf40
2a3daabc70232c6350ab48d32605dc4a6ac1f1fa
2ac46ebee46d515be86deeba385b4e41f8cff160364b362c9a6e153df327c66b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/apptek/assets/js/sweetalert.min.js?ver=1701885459 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 10:46:20 GMT
etag: W/"5a1b64-9f68-5eb4ccd6bf700-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lGmJiJX%2BjLGID0wnhOVdWTKbwonFHjXBv1s8uY28eBX5E6ZgNTQKHv83Ybep2w4Kv6gpPPFf00%2BB76Q41PhFdXVwZmrc2vKR5oGlPdN5Lvky%2FqyDy7c0ijoEQXPecxog"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a0fabbb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/plusjakartasans/v8/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko20yyghfvaZ-E.woff2

142.250.74.163

200 OK

27 kB

URL GET HTTP/2
fonts.gstatic.com/s/plusjakartasans/v8/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko20yyghfvaZ-E.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 27380, version 1.0\012- data
Size
27 kB (27380 bytes)
Hash
ef7dacd250c0839701b5bcbe70eee550
62a7eb3b200676248cca6b5a91094847e701b20a
04e4980608aefd2027509a3f61e12293f3889a34c661c87520b28cf40291ee15

HTTP Headers

GET /s/plusjakartasans/v8/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko20yyghfvaZ-E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27380
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 04 Dec 2023 22:16:08 GMT
expires: Tue, 03 Dec 2024 22:16:08 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 22 Jun 2023 14:14:30 GMT
content-type: font/woff2
age: 157295
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/actor/v17/wEOzEBbCkc5cO0ejVSk.woff2

142.250.74.163

200 OK

22 kB

URL GET HTTP/2
fonts.gstatic.com/s/actor/v17/wEOzEBbCkc5cO0ejVSk.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 21976, version 1.0\012- data
Size
22 kB (21976 bytes)
Hash
7ee7f470152787952958d6adfa07b2ac
14a09075b2cbec9ff65302de9d634f9011f70e53
b31aaefa522d67846638fa4181bbb22375bd0cb1beb37d514609c3821953161a

HTTP Headers

GET /s/actor/v17/wEOzEBbCkc5cO0ejVSk.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 04:34:48 GMT
expires: Wed, 04 Dec 2024 04:34:48 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 19:22:29 GMT
content-type: font/woff2
age: 134575
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/themes/apptek/assets/js/apptek-app.js?ver=1701885459

188.114.97.1

200 OK

4.5 kB

URL GET HTTP/3
uniifyapp.com/wp-content/themes/apptek/assets/js/apptek-app.js?ver=1701885459
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (385)
Size
4.5 kB (4486 bytes)
Hash
7cf65cd7764edd82badd2c08982e7380
950e53a634c5d8419c0cea76b5a18bb115f69bc7
0b9c06d7c697ff088475c827db1be01bc262c35ad84caff6dcc462ae378b2b44

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/apptek/assets/js/apptek-app.js?ver=1701885459 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Fri, 28 Oct 2022 12:23:17 GMT
etag: W/"5a1b52-3b68-5ec17528e1740-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vNqqkyiorOwCXGN5f7706b%2B0v3EW%2FsMswatjnXMBq1ZGHvZ4AHvyMdS2oYnL%2FymfIWk%2BFdhEjI5u%2BLXWI8yd9d%2BLkEUdLnelg0mSS1yPw1Buj5Lofsp1u%2F5v3ELCA0Ws"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a0eaaab518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sibautomation.com/sa.js?plugin=wordpress&key=ehnbv4qti39900l4o230qvgy

104.18.37.70

200 OK

8.0 kB

URL GET HTTP/2
sibautomation.com/sa.js?plugin=wordpress&key=ehnbv4qti39900l4o230qvgy
IP
104.18.37.70:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE6:DD:AC:85:7E:4E:D8:D7:A9:B8:1C:2D:DE:3C:D9:47:0C:64:0F:CD
ValidityWed, 10 May 2023 00:00:00 GMT - Thu, 09 May 2024 23:59:59 GMT

File type
gzip compressed data, from Unix\012- data
Size
8.0 kB (8003 bytes)
Hash
f58094a3f639bd3f98ceec877f353343
edaa5acabde45c139ac30df0149e00dc6f7d7fb0
1143170bc707c75cfd0ccfc73a6aa26b4c33ef27b75fcf136421e922843c1c45

HTTP Headers

GET /sa.js?plugin=wordpress&key=ehnbv4qti39900l4o230qvgy HTTP/1.1
Host: sibautomation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: text/javascript; charset=utf-8
x-powered-by: Sails <sailsjs.com>
etag: W/"2f56-7o5RitL+pHSWKbsOsWJWMm70ruI"
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
cf-cache-status: EXPIRED
expires: Wed, 06 Dec 2023 17:58:41 GMT
cache-control: public, max-age=60
server: cloudflare
cf-ray: 831669a83cfd1c16-OSL
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/uploads/2022/12/lumiq-copy.png

188.114.97.1

200 OK

6.8 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/2022/12/lumiq-copy.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
PNG image data, 170 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
6.8 kB (6815 bytes)
Hash
77632d1daf9fbd708cc85803dae27330
8c4762ea234ef1c3089f2bff801c10527bf0b743
d98ea6ef7df469d978dba9fbc2b17c46bbd27d200cb6f4e448c40a3c3e1a6193

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/12/lumiq-copy.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b; _ga_C5R0X7CB38=GS1.1.1701885468.1.0.1701885468.0.0.0; _ga=GA1.1.581063805.1701885468; _ga_EB0MPR1JXK=GS1.1.1701885468.1.0.1701885468.0.0.0; sib_cuid=7de98d0d-53a6-46f2-b190-09dd66e025e0; po_visitor=3GEO81iUudcH; TawkConnectionTime=1701885471367; twk_idm_key=JguST6P_cttV_Sr9DxSQe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:45 GMT
content-type: image/png
content-length: 6815
last-modified: Tue, 27 Dec 2022 16:03:02 GMT
etag: "5a212a-1a9f-5f0d162ebb980"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gAggeN1o5%2Fu%2FJl%2Fpna0vd%2FZmnBCgTH%2FFq0DvnHYwJ13DQVaPYda6oJiY%2BjbY%2FkBEJcruSWG2huKCztNIJNu8xcXL49vdkIf57WoYPiNURUsK4Y4s7%2F%2FmG3fVlTC%2B33e2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 831669bdcc31b518-OSL
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/app/65706adf2ac/css/min-widget.css

104.22.25.131

200 OK

47 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/65706adf2ac/css/min-widget.css
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (24751), with no line terminators
Size
47 kB (47346 bytes)
Hash
d4f9ad34fae3ba64cbc48057dc47e968
f8d0d55dc6e9b5d53f74b0b8bfc5e2edbdb0618d
2b5b9f68ace12b789b1371204754547021dcbf3e9df630e7e22b49ee56e05b8c

HTTP Headers

GET /_s/v4/app/65706adf2ac/css/min-widget.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:45 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=24831
access-control-allow-origin: *
etag: W/"5742a34aaab2a5983c7c11cdeef1c0ee"
last-modified: Wed, 06 Dec 2023 12:38:18 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
age: 19051
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 831669c0bcd456c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/themes/apptek/assets/js/fancy-box.js?ver=1701885459

188.114.97.1

200 OK

62 kB

URL GET HTTP/3
uniifyapp.com/wp-content/themes/apptek/assets/js/fancy-box.js?ver=1701885459
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
Unicode text, UTF-8 text, with very long lines (12352), with CRLF line terminators
Size
62 kB (61460 bytes)
Hash
504391f1d2223412ca862bd4d50c96fc
67e549aca1c2fe6761956d57ef7541239faaf317
d0409bd58637ffdfa8f7de31d2db517f7126d6e1ab1aa302a52c74c2feb0d60f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/apptek/assets/js/fancy-box.js?ver=1701885459 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 10:46:20 GMT
etag: W/"5a1b59-eb01-5eb4ccd6bf700-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=04XIJPqy1STOAu0BvprHaoi3XXT%2FRf9%2FD7KKUN%2FSZkmUeYT0KGEROMjL1zrQxxFasS2JFC3kSsX7UNhwMHlvrGWI%2BzjTxvaf7rBzRe7JmuJJmjiNVdKvzWu8R8eWnBdP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a0eab6b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/assets/fonts/tawk-font-icon-2.woff2?55755728=

104.22.25.131

200 OK

10 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/assets/fonts/tawk-font-icon-2.woff2?55755728=
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 10520, version 1.0\012- data
Size
10 kB (10520 bytes)
Hash
054b3b66812d0a4b87ffc6776f0a42f1
683eb11f2439b9edc3290899fb47806166b5182e
f4d4fcb3cdd9f021bca50bedb83de05b77fd23b3c98ad36b103fea8c0744ea71

HTTP Headers

GET /_s/v4/assets/fonts/tawk-font-icon-2.woff2?55755728= HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://embed.tawk.to/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:45 GMT
content-type: font/woff2
content-length: 10520
last-modified: Sat, 22 May 2021 07:25:13 GMT
etag: "054b3b66812d0a4b87ffc6776f0a42f1"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 831669c11eff7127-OSL
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/uploads/2022/08/smart-app-banner-bg.webp

188.114.97.1

404 Not Found

27 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/2022/08/smart-app-banner-bg.webp
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (47577)
Size
27 kB (27197 bytes)
Hash
a61478f0938a3fedaca91a6a46a4bc12
83114d8a5fca880a6aa6bbb3087fbbf20680a768
6a42f184923015cc9e86525deeb994f31938a3cb45ca7e8d03421e704b5f1ff9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/08/smart-app-banner-bg.webp HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b; _ga_C5R0X7CB38=GS1.1.1701885468.1.0.1701885468.0.0.0; _ga=GA1.1.581063805.1701885468; _ga_EB0MPR1JXK=GS1.1.1701885468.1.0.1701885468.0.0.0; sib_cuid=7de98d0d-53a6-46f2-b190-09dd66e025e0; po_visitor=3GEO81iUudcH
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Wed, 06 Dec 2023 17:57:44 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.30
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: max-age=14400, must-revalidate
link: <https://uniifyapp.com/wp-json/>; rel="https://api.w.org/"
server-timing: wp-load-alloptions-query;dur=1.73, wp-before-template;dur=60.82
vary: Accept-Encoding,User-Agent
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eSB02hIpS1bWQG%2Bpfn0NTTIzzP19RC0sHF4dKnhkyIopppouaGmEW%2FLX%2Bc97kkpJ48fLgCpzkB%2BL4T0Wx2QzjEordYQJ7ScBOh4gE1Pog3C7C%2BaO9QT9q4uLwdgew8nu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669b83d4db518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/uploads/2022/11/3.png

188.114.97.1

200 OK

8.8 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/2022/11/3.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
PNG image data, 170 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
8.8 kB (8791 bytes)
Hash
c90f0d635cb28fc706210df6207a1195
e880e632655351c80a90a365804ffb9e3fb8cc6e
0234d64c10a052c2cad3f0c07bf6b0dc188e4eda083d0e42bd805b28fe022fc1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/11/3.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b; _ga_C5R0X7CB38=GS1.1.1701885468.1.0.1701885468.0.0.0; _ga=GA1.1.581063805.1701885468; _ga_EB0MPR1JXK=GS1.1.1701885468.1.0.1701885468.0.0.0; sib_cuid=7de98d0d-53a6-46f2-b190-09dd66e025e0; po_visitor=3GEO81iUudcH; TawkConnectionTime=0; twk_idm_key=JguST6P_cttV_Sr9DxSQe; twk_uuid_63b90e9f47425128790c21d7=%7B%22uuid%22%3A%221.1vX1REbtwC2Af8AdMC5340LxguqvzK6tjfO6t5eRu1k08ls7tdTKWqQSD76t2bXDuOdyUIcXib5rFvPfUWvAiMugRfAJI7XrmbozNih3IfnU7u7v8VSASfC%22%2C%22version%22%3A3%2C%22domain%22%3A%22uniifyapp.com%22%2C%22ts%22%3A1701885471794%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:46 GMT
content-type: image/png
content-length: 8791
last-modified: Thu, 10 Nov 2022 13:30:18 GMT
etag: "5a205f-2257-5ed1dc6298e80"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Qrul38igNL0l4EJzoUtgpfa%2F2zizx75Z1u5ea8NjLzzW2zzt0JUEp%2FFanLtd2rLEh385itp4sjVGd21Z3E0upCzseLVZlNSG75NS3zlQ8TTBIoxlVkMkGUbhXCXnA6V9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 831669c74e8cb518-OSL
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/rt-animated-main.js?ver=1701885459

188.114.97.1

200 OK

8.2 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/rt-animated-main.js?ver=1701885459
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text
Size
8.2 kB (8244 bytes)
Hash
755479f410ea7b42c108624728a6ba09
38f8fb5023039e4b629b6188966f4a46e1b2bcb9
b73df8792c65c7ca823f9697ae6d79ca10449e4fe4ca164ebc6f9a8a6587a711

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/radiantthemes-addons/assets/js/rt-animated-main.js?ver=1701885459 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 06:10:07 GMT
etag: W/"5a0983-1e9c-5ecef6442edc0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f%2FtOElAhc0A6kflL7fq5ke7%2FwcViIU5ss9Bs4JNwe9EUhnxSoEWXZ%2FswlCPjmH%2BFoLbsLTvRwmEHRKemLoX3XCQukv1Gg0yAbeAXbjUtUPXqjPyCXr8X8KD%2BW5X2sqK1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a10ad5b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

va.tawk.to/v1/session/start

104.22.25.131

200 OK

15 kB

URL OPTIONS HTTP/3
va.tawk.to/v1/session/start
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (1084), with no line terminators
Size
15 kB (14888 bytes)
Hash
4c0c054692491c8c10daddc9c54a83a7
ec160119554565d4305095ecd206aa0b755c6f3b
635d96b9dc1a164fa869a44b18a4a7a341ae62063fb7acc2dc5fb1357bfc0845

HTTP Headers

POST /v1/session/start HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://uniifyapp.com/
Content-Type: application/json; charset=utf-8
Content-Length: 285
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:45 GMT
content-type: application/json
x-served-by: visitor-application-preemptive-vjx4
access-control-allow-origin: https://uniifyapp.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 831669bd78b256c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

api.hubapi.com/hs-script-loader-public/v1/config/pixels-and-events/json?portalId=44045558

104.17.204.204

200 OK

3.4 kB

URL GET HTTP/2
api.hubapi.com/hs-script-loader-public/v1/config/pixels-and-events/json?portalId=44045558
IP
104.17.204.204:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjecthubapi.com
FingerprintB1:3C:6E:B5:33:D1:03:D3:5D:7E:38:F6:29:9B:E5:7B:60:B8:AB:C3
ValidityFri, 07 Apr 2023 00:00:00 GMT - Sat, 06 Apr 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
3.4 kB (3381 bytes)
Hash
3d805a6a174711315cb86ae56b0f9156
5abefdbf80a04b37423b395d1239d2d3ed0db3e8
382d4b76b73a9cdcdd4a2f71af8f46df5c7dacf466b45cfd4723d028c0e87c45

HTTP Headers

GET /hs-script-loader-public/v1/config/pixels-and-events/json?portalId=44045558 HTTP/1.1
Host: api.hubapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:57:42 GMT
content-type: application/json;charset=utf-8
cf-ray: 831669ad19dbb51b-OSL
cf-cache-status: DYNAMIC
access-control-allow-origin: https://uniifyapp.com
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-max-age: 180
x-content-type-options: nosniff
x-envoy-upstream-service-time: 9
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/hubapi-td/envoy-proxy-6ffdd984b9-jm5kc
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: 469b24f7-a983-4a5a-b467-88d77d1d5322
x-request-id: 469b24f7-a983-4a5a-b467-88d77d1d5322
x-trace: 2B4A7E45FA5AC396D9E3FBE8E61D6C45063D038DF2000000000000000000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6LVzz4PZvz6CFNUxaswUxLJdwMSvUkeQbeTjojGFGkW7uB30Ls%2BGwrOd5gYP5lDvB5c1Dmiw634LumnUHkIyvgLMyVrB0scAr8GnOEMPAEByJmIZAYix6pO%2BwTOoKaCP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/uploads/2022/11/5.png

188.114.97.1

5.3 kB

URL
uniifyapp.com/wp-content/uploads/2022/11/5.png
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
PNG image data, 170 x 50, 8-bit/color RGBA, non-interlaced, ASCII text, with very long lines (1772), with no line terminators\012- data
Size
5.3 kB (5321 bytes)
Hash
39edb661c91961c10691571176f8e426
a2eae609ff207f5b2c09ab8b6c7e470bbdf23824
6e554b16c571417d40f4342b18bb1cc87c3d3c2702537ecc5a56e276645b56a9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/11/5.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b; _ga_C5R0X7CB38=GS1.1.1701885468.1.0.1701885468.0.0.0; _ga=GA1.1.581063805.1701885468; _ga_EB0MPR1JXK=GS1.1.1701885468.1.0.1701885468.0.0.0; sib_cuid=7de98d0d-53a6-46f2-b190-09dd66e025e0; po_visitor=3GEO81iUudcH; TawkConnectionTime=0; twk_idm_key=JguST6P_cttV_Sr9DxSQe; twk_uuid_63b90e9f47425128790c21d7=%7B%22uuid%22%3A%221.1vX1REbtwC2Af8AdMC5340LxguqvzK6tjfO6t5eRu1k08ls7tdTKWqQSD76t2bXDuOdyUIcXib5rFvPfUWvAiMugRfAJI7XrmbozNih3IfnU7u7v8VSASfC%22%2C%22version%22%3A3%2C%22domain%22%3A%22uniifyapp.com%22%2C%22ts%22%3A1701885471794%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:53 GMT
content-type: image/png
content-length: 5321
last-modified: Thu, 10 Nov 2022 13:30:18 GMT
etag: "5a2063-14c9-5ed1dc6298e80"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2RzoyiR%2Fmw5mm59BG3i%2BHmpToVQRQK%2BGpKVROOK6635LNZZdJx%2FpiNpRSOccwtTl6qwEhxBDvh9yZqw0t0Ka04vAc%2FQR2v%2FSFomDyyDkWxmXibluFbhVDP17GXwtr1TT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 831669edac3eb518-OSL
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/uploads/2023/01/purpleslate-retina-logo-2-1.png

188.114.97.1

8.1 kB

URL
uniifyapp.com/wp-content/uploads/2023/01/purpleslate-retina-logo-2-1.png
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
PNG image data, 170 x 44, 8-bit/color RGBA, non-interlaced\012- data
Size
8.1 kB (8106 bytes)
Hash
b3c55f96d1643448c75df751bf84abfa
b532ca28341539fc8589b58d3ab020cb55a75d41
0e2be1fc457548a2504b00616953f1d805bbe726d934532dd5d25647d01b2a14

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/01/purpleslate-retina-logo-2-1.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b; _ga_C5R0X7CB38=GS1.1.1701885468.1.0.1701885468.0.0.0; _ga=GA1.1.581063805.1701885468; _ga_EB0MPR1JXK=GS1.1.1701885468.1.0.1701885468.0.0.0; sib_cuid=7de98d0d-53a6-46f2-b190-09dd66e025e0; po_visitor=3GEO81iUudcH; TawkConnectionTime=0; twk_idm_key=JguST6P_cttV_Sr9DxSQe; twk_uuid_63b90e9f47425128790c21d7=%7B%22uuid%22%3A%221.1vX1REbtwC2Af8AdMC5340LxguqvzK6tjfO6t5eRu1k08ls7tdTKWqQSD76t2bXDuOdyUIcXib5rFvPfUWvAiMugRfAJI7XrmbozNih3IfnU7u7v8VSASfC%22%2C%22version%22%3A3%2C%22domain%22%3A%22uniifyapp.com%22%2C%22ts%22%3A1701885471794%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:55 GMT
content-type: image/png
content-length: 8106
last-modified: Fri, 27 Jan 2023 07:04:20 GMT
etag: "5a0024-1faa-5f33979801694"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4Q7Pn44f7uDfjv4Si3%2Fr8fPj%2BbU1nAwOqhjUG%2FBWJPHUei3dqh%2BL7uE7Mc3Aj5aWwb3m1wbkhAh71xYEJmHJWgW7uxBklmbHs6y8zkFcXiK0%2FoGFjSYhD6OjoETK5a5E"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 831669f74f88b518-OSL
alt-svc: h3=":443"; ma=86400

aus5.mozilla.org/update/3/GMP/111.0a1/20230218104546/Linux_x86_64-gcc3/null/default/Linux%205.15.0-76-generic%20(GTK%203.24.34%2Clibpulse%20not-available)/default/default/update.xml

35.244.181.201

444 B

URL
aus5.mozilla.org/update/3/GMP/111.0a1/20230218104546/Linux_x86_64-gcc3/null/default/Linux%205.15.0-76-generic%20(GTK%203.24.34%2Clibpulse%20not-available)/default/default/update.xml
IP
35.244.181.201:0
ASN
#15169 GOOGLE

File type
XML 1.0 document text\012- XML document, ASCII text, with very long lines (332)
Size
444 B (444 bytes)
Hash
3b324dec137a87ef7e24a30a65b13dd0
c0faa95b2f1018e264b3a14aaf50d1003e6c27b3
6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463

HTTP Headers

GET /update/3/GMP/111.0a1/20230218104546/Linux_x86_64-gcc3/null/default/Linux%205.15.0-76-generic%20(GTK%203.24.34%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-01-19-16-42-22.chain; p384ecdsa=KW_UZTZP7TW0C6xSlCVU779GFdg6Oax5xyByJON_KF63CeWMc3nwBV2c1L2XxjIOpnldQd2wQKxlEdLXENHZ_OBuD2bw8REMnHfQEHSgMAH5zi_8mYo-eBUDMj-xby4E
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
content-length: 444
date: Wed, 06 Dec 2023 17:56:26 GMT
age: 91
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2

ciscobinary.openh264.org/openh264-linux64-2e1774ab6dc6c43debb0b5b628bdf122a391d521.zip

62.115.252.113

512 kB

URL
ciscobinary.openh264.org/openh264-linux64-2e1774ab6dc6c43debb0b5b628bdf122a391d521.zip
IP
62.115.252.113:0
ASN
#1299 Telia Company AB

File type
Zip archive data, at least v2.0 to extract, compression method=deflate\012- data
Size
512 kB (511815 bytes)
Hash
152eda253e242e18443ef3282495bc7c
ff0fa85565f21ec4931baad4573b4c0bd08c4019
8e03090fee16f6e0ee2e436af8e51d0c3deed6d9f0db80dec048e668fc009a48

HTTP Headers

GET /openh264-linux64-2e1774ab6dc6c43debb0b5b628bdf122a391d521.zip HTTP/1.1
Host: ciscobinary.openh264.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
Last-Modified: Thu, 16 Nov 2023 07:38:15 GMT
ETag: 152eda253e242e18443ef3282495bc7c
Content-Length: 511815
Accept-Ranges: bytes
X-Timestamp: 1700120294.87662
Content-Type: application/zip
X-Trans-Id: tx15b69f172b404fa58b2bb-006555fb11dfw1
Cache-Control: public, max-age=72639
Expires: Thu, 07 Dec 2023 14:08:36 GMT
Date: Wed, 06 Dec 2023 17:57:57 GMT
Connection: keep-alive

js.hs-scripts.com/44045558.js?integration=WordPress&ver=10.2.5

104.16.191.89

200 OK

148 kB

URL GET HTTP/2
js.hs-scripts.com/44045558.js?integration=WordPress&ver=10.2.5
IP
104.16.191.89:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5A:DE:00:16:F4:3C:EB:0D:2A:0C:6E:27:59:94:38:E3:D9:B1:20:3E
ValidityWed, 03 May 2023 00:00:00 GMT - Thu, 02 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (542)
Size
148 kB (147830 bytes)
Hash
0d4ef972c3ade707f5875c593681dcf9
2b7c823b2118d7aee719ba07c4e9f61ff76b2940
2a92781c82a53395503a7fb6876cc8ec1211b8f8d4331be6cf8e656660b8019a

HTTP Headers

GET /44045558.js?integration=WordPress&ver=10.2.5 HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript;charset=utf-8
x-trace: 2B24AA099742C855764728787F86F1A95581991A8A000000000000000000
cache-control: public, max-age=60
vary: origin, Accept-Encoding
access-control-allow-credentials: true
x-content-type-options: nosniff
access-control-max-age: 3600
access-control-allow-origin: https://uniifyapp.com
x-envoy-upstream-service-time: 27
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/hubapi-td/envoy-proxy-6ffdd984b9-sj554
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: 264e2028-6600-4be7-ac3e-b3fd51f28c99
x-request-id: 264e2028-6600-4be7-ac3e-b3fd51f28c99
last-modified: Wed, 06 Dec 2023 15:16:25 GMT
cf-cache-status: EXPIRED
expires: Wed, 06 Dec 2023 17:58:41 GMT
server: cloudflare
cf-ray: 831669a11dc80b55-OSL
content-encoding: br
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.16.3

188.114.97.1

200 OK

18 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.16.3
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
Unicode text, UTF-8 text, with very long lines (58819)
Size
18 kB (18433 bytes)
Hash
1558ab61bab790ac5a634d0bf9b03780
2aa94dff810eb1927d7b224c0760a04435006d5b
1b2661621514d161467c7fdbe8d8c053b6377c57a7929eca9bea34c4e1bed9c6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.16.3 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:27:06 GMT
etag: W/"3e2f1b-e5ec-605a49cfe49fd-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pWQN6TA1sXFRE%2FIazQ90arRYITWXFCu%2BtRdv5gvlnhiYzxzRlTMSDe%2Fjq8l3v9j9JzHHp1j2FOseTZcYd1TmFfsTGd8VwIMUCaKQKIXn4WRwe8FEbxcJaEKKMVEhG1MA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a11aedb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-chunk-48f3b594.js

104.22.25.131

200 OK

19 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-chunk-48f3b594.js
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (18972), with no line terminators
Size
19 kB (18972 bytes)
Hash
a657f9db7167d6c2906e70f1230aebd6
5b3e5cc9bbe21f3da9a12ae7e4289b7f09ee7999
2c81238675cd627b1fa312f7f6f3ac8c142424cfaa5c6685047145b3360cf7ee

HTTP Headers

GET /_s/v4/app/65706adf2ac/js/twk-chunk-48f3b594.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:45 GMT
content-type: application/javascript
last-modified: Wed, 06 Dec 2023 12:38:18 GMT
etag: W/"a657f9db7167d6c2906e70f1230aebd6"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 19052
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 831669c01c2356c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/uploads/elementor/thumbs/iPhoneBadge-pzo4swjp8wwssu35emhhvy4di9hp2dsxgvvzed8b9c.png

188.114.97.1

200 OK

9.6 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/elementor/thumbs/iPhoneBadge-pzo4swjp8wwssu35emhhvy4di9hp2dsxgvvzed8b9c.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
PNG image data, 300 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size
9.6 kB (9553 bytes)
Hash
c667dcf9eb509120c823313ecaae5e17
03092e401974b46758140fca201fd5bf81e7f05b
2ad3972b6718eef119c3faa2629d8f21ec878bcc9c155a365d0ff0b6d41b266d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/thumbs/iPhoneBadge-pzo4swjp8wwssu35emhhvy4di9hp2dsxgvvzed8b9c.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b; _ga_C5R0X7CB38=GS1.1.1701885468.1.0.1701885468.0.0.0; _ga=GA1.1.581063805.1701885468; _ga_EB0MPR1JXK=GS1.1.1701885468.1.0.1701885468.0.0.0; sib_cuid=7de98d0d-53a6-46f2-b190-09dd66e025e0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:42 GMT
content-type: image/png
content-length: 9553
last-modified: Fri, 30 Dec 2022 18:09:05 GMT
etag: "5a2404-2551-5f10f7f3c1240"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pc79bjIPt9TMN2HBpcEN%2F3wRDn5lBwsoQOfW3CmDN1MPt5%2BN03IBIhnmKztgekQWxSGwwM8cI8P3%2BvsdF3uUctsXqAyVjucCoGa285y5gd3tqX3e31awiWjG6x14qIVp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 831669ad89bdb518-OSL
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/elementor/assets/js/image-carousel.4455c6362492d9067512.bundle.min.js

188.114.97.1

200 OK

432 B

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/elementor/assets/js/image-carousel.4455c6362492d9067512.bundle.min.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (439), with no line terminators
Size
432 B (432 bytes)
Hash
ce38dc0dfc9f6796277bcca070a9aa83
fbb3e43e3259020c2b28ef1f57a8f60e20d09490
04a8cd4c6596d0a65bf7d9616d2ff6ba9ad8386c6fccd7cff5ccb0ac70cbd340

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/image-carousel.4455c6362492d9067512.bundle.min.js HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b; _ga_C5R0X7CB38=GS1.1.1701885468.1.0.1701885468.0.0.0; _ga=GA1.1.581063805.1701885468; _ga_EB0MPR1JXK=GS1.1.1701885468.1.0.1701885468.0.0.0; sib_cuid=7de98d0d-53a6-46f2-b190-09dd66e025e0; po_visitor=3GEO81iUudcH
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:43 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:27:07 GMT
etag: W/"3e2f1e-1b0-605a49d043d75-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=clixmF5ajjdb9Cdg%2B1CKRQiUlAaB4svZ4CiJqzXqjcxL16r3jORG8SReNSZzZGEXFQ7xZ2jhF%2FJXTZJoWXZcY6v0PZkiulCHotYu8gdVwmEzR31eV1ecB8jvq9wyhfrZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669af4b93b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-chunk-2c776523.js

104.22.25.131

200 OK

9.9 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-chunk-2c776523.js
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (10730), with no line terminators
Size
9.9 kB (9929 bytes)
Hash
2ed46b3171b0456fda29f3bfda5f846e
0c4834c6f96e8640bcdd46c48396a1f1f7d287b2
0c9f49f27e34e05a7e4159648875b32880d3d986ee2d70d78d6138df5e9f1654

HTTP Headers

GET /_s/v4/app/65706adf2ac/js/twk-chunk-2c776523.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:45 GMT
content-type: application/javascript
last-modified: Wed, 06 Dec 2023 12:38:18 GMT
etag: W/"70aec2dd89cac4933594c25b71d61f46"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 19052
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 831669c00c0b56c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/uploads/2023/01/l1.png

188.114.97.1

200 OK

110 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/2023/01/l1.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
PNG image data, 707 x 999, 8-bit colormap, non-interlaced\012- data
Size
110 kB (109958 bytes)
Hash
80266f29e7a7f7c125a23a64695fe276
e73f86b971ce9a9fd176abb162105b2f8890d820
cbb3755067706e9b9a2b7165790e5bad0b48ce8a19a05071cfbf347a4e2d7344

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/01/l1.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b; _ga_C5R0X7CB38=GS1.1.1701885468.1.0.1701885468.0.0.0; _ga=GA1.1.581063805.1701885468; _ga_EB0MPR1JXK=GS1.1.1701885468.1.0.1701885468.0.0.0; sib_cuid=7de98d0d-53a6-46f2-b190-09dd66e025e0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:43 GMT
content-type: image/png
content-length: 109958
last-modified: Tue, 10 Jan 2023 05:13:43 GMT
etag: "5a230f-1ad86-5f1e1f28fcfc0"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hLH4QGYvIYomwNrUc9sVAjZtqKP7emubbBf9YOVUOV5HRkcMobePwTLvbg1ppSVVmR%2BOZI2WxxyJEMHBQdNnNZ4LQO%2B6b8SDOwC%2FPzEKQSGLjhCgBTWt0%2FzzH1rMCYRf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 831669ad89bfb518-OSL
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CABeeZee%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CActor%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.4.2

142.250.74.106

200 OK

47 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CABeeZee%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CActor%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.4.2
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text
Size
47 kB (47398 bytes)
Hash
06c52805d07661a363873e76b4785229
586835e63315bcca30e7b505a32c92a75337be1f
0039d0a750e7597f2e389a115826c0e1e33d268771a8a6125fddafd4c6d8087a

HTTP Headers

GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CABeeZee%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CActor%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.4.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 06 Dec 2023 17:57:43 GMT
date: Wed, 06 Dec 2023 17:57:43 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

js.hsleadflows.net/leadflows.js

104.18.124.12

200 OK

564 kB

URL GET HTTP/2
js.hsleadflows.net/leadflows.js
IP
104.18.124.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint55:A1:55:C6:3D:AC:5A:B1:4F:CD:CD:80:A6:AD:F1:B8:4E:0B:34:67
ValiditySat, 06 May 2023 00:00:00 GMT - Sun, 05 May 2024 23:59:59 GMT

File type

Size
564 kB (563973 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /leadflows.js HTTP/1.1
Host: js.hsleadflows.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:57:42 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Mon, 04 Dec 2023 12:11:15 UTC
etag: W/"c314aa317d74a89c787c3c4a9d2fd97c"
x-amz-server-side-encryption: AES256
x-amz-version-id: QUNwK0xemzsIqupWMH2b5phjsLRnkTKD
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Miss from cloudfront
via: 1.1 2a3aa853116c0a37d6c7762eca54d208.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: oR0XHY1rft6FS4RI-h7IETWWV4alDHpzn4_VOm8I1Oxuees631FIiA==
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=lead-flows-js/static-1.1291/bundle/main/lead-flows-release.js&cfRay=831669a839d15696-ARN
cache-control: s-maxage=86400, max-age=0
x-hs-target-asset: lead-flows-js/static-1.1291/bundle/main/lead-flows-release.js
x-content-type-options: nosniff
x-hs-cache-status: MISS
x-envoy-upstream-service-time: 71
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-b78fbd96d-rjqc8
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: afed5418-d4b4-4457-afc5-a0776daa2789
x-request-id: afed5418-d4b4-4457-afc5-a0776daa2789
cache-tag: staticjsapp-lead-flows-cloudflare-web-prod,staticjsapp-prod
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 831669a839d15696-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.googletagmanager.com/a?id=G-EB0MPR1JXK&v=3&t=t&pid=1057348616&cv=2&rv=3bt0&tc=12&es=1&e=gtag.config&eid=5&u=AAAAAAAAAAAAAIAAAAAAAAE&ut=Ag&h=Ag&z=0

142.250.74.168

200 OK

0 B

URL GET HTTP/3
www.googletagmanager.com/a?id=G-EB0MPR1JXK&v=3&t=t&pid=1057348616&cv=2&rv=3bt0&tc=12&es=1&e=gtag.config&eid=5&u=AAAAAAAAAAAAAIAAAAAAAAE&ut=Ag&h=Ag&z=0
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /a?id=G-EB0MPR1JXK&v=3&t=t&pid=1057348616&cv=2&rv=3bt0&tc=12&es=1&e=gtag.config&eid=5&u=AAAAAAAAAAAAAIAAAAAAAAE&ut=Ag&h=Ag&z=0 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:42 GMT
content-type: text/html
server: Google Tag Manager
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

uniifyapp.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js

188.114.97.1

200 OK

1.4 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (1391), with no line terminators
Size
1.4 kB (1360 bytes)
Hash
4fc487025aec8bd5c819eabeda9b5472
b8c29ab551926b2fd4a7d88ceb4f29db5d52489e
20750aa1dd3c1a9b73240bd67052e8920a19a31021461325264142c3218762cb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b; _ga_C5R0X7CB38=GS1.1.1701885468.1.0.1701885468.0.0.0; _ga=GA1.1.581063805.1701885468; _ga_EB0MPR1JXK=GS1.1.1701885468.1.0.1701885468.0.0.0; sib_cuid=7de98d0d-53a6-46f2-b190-09dd66e025e0; po_visitor=3GEO81iUudcH
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:43 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:27:07 GMT
etag: W/"3e2f7d-550-605a49d0a5fce-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=65agRMO1YXJzPE1VrkojJErL4E8iDRrn2qsnSA1zBlvsVGPjuCOvqCGG4PgdIsUKGlRxWj%2FKTlRvAr3qQfoZPbM0djN9zoQ4Lx21ObI0lgdTYyZrYRp8WWeEQLnZO3T3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669af6bb6b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

api.pushowl.com/api/v1/uniifyapp.com/subscriber/config/widget/?guid=fa94175ece16e569a28db2d6a982f5a2&platform=sendinblue

34.201.191.114

200 OK

5.4 kB

URL GET HTTP/2
api.pushowl.com/api/v1/uniifyapp.com/subscriber/config/widget/?guid=fa94175ece16e569a28db2d6a982f5a2&platform=sendinblue
IP
34.201.191.114:443
ASN
#14618 AMAZON-AES

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerAmazon
Subjectpushowl.com
FingerprintC6:AA:4B:BC:A8:F4:5F:ED:0E:5C:21:4E:D9:9A:5B:8D:28:5C:6D:15
ValidityWed, 31 May 2023 00:00:00 GMT - Fri, 28 Jun 2024 23:59:59 GMT

File type
troff or preprocessor input, Unicode text, UTF-8 text, with very long lines (5993), with no line terminators
Size
5.4 kB (5448 bytes)
Hash
55eeffa1e6846d1ec4cf01d085909876
ec5f6519e657cbbb4814909577342309c7548cd3
03a4859dfc7810712900a75eac0c52e9e44c365b3314262ef5f8772e2acbb7c3

HTTP Headers

GET /api/v1/uniifyapp.com/subscriber/config/widget/?guid=fa94175ece16e569a28db2d6a982f5a2&platform=sendinblue HTTP/1.1
Host: api.pushowl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:57:43 GMT
content-type: application/json
content-length: 5448
server: gunicorn
allow: GET, HEAD, OPTIONS
x-frame-options: DENY
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: same-origin
vary: Origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/eae.min.js?ver=1.12.5

188.114.97.1

200 OK

52 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/eae.min.js?ver=1.12.5
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (51925), with no line terminators
Size
52 kB (51925 bytes)
Hash
956116be8a6bbfe31146567de3163e3c
ed72b0ffd3de1cb7eee98542dbe1a45e05b1f9ee
9f81abea871019cc5b59148fa03b55628735b98b1f2dbc7b02560f60529944ee

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/eae.min.js?ver=1.12.5 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:27:25 GMT
etag: W/"421a4b-cad5-605a49e1d01ff-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FUs6kms15l4%2B7VRNNZMLsQB%2F%2BBHvj9NlOG96SCcNPQ%2BiAUwl3jlN2j4ahgC0mH%2FfW%2BGYaUKgBLuJT9pDgntUM5MH5ucZxNyBobB1hL5AQ9Kg7ao9ncwPeZVB%2FSNS%2BIH5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a0ca73b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/63b90e9f47425128790c21d7/1gm5e28ep

104.22.25.131

200 OK

2.1 kB

URL GET HTTP/2
embed.tawk.to/63b90e9f47425128790c21d7/1gm5e28ep
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (2310), with no line terminators
Size
2.1 kB (2123 bytes)
Hash
16e6bf0b69a2fa6a7f4c0f15e035c419
d8fdea1cdc9fdd4a1f975a823318bcf863e85f5d
ba5a18faffd64e4d07c0eb6b8d3be68b59b40b42da975f886da18b1308f6bd85

HTTP Headers

GET /63b90e9f47425128790c21d7/1gm5e28ep HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:57:42 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-65706adf2ac"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 831669a83b4f7129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/plugins/radiantthemes-addons/widgets/header-nav-menu/css/header-menu-style-two.css?ver=1701885459

188.114.97.1

200 OK

178 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/radiantthemes-addons/widgets/header-nav-menu/css/header-menu-style-two.css?ver=1701885459
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text
Size
178 kB (177505 bytes)
Hash
7e082ec359fd3433b432a933a0e252c7
2e157bfd70fbfcda16c198db92c333ed5c77708f
5560f604c96b3934fe96d02cdb4a7e789aa24c7b7671e455c1d95c7911bf5271

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/radiantthemes-addons/widgets/header-nav-menu/css/header-menu-style-two.css?ver=1701885459 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:42 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 06:10:07 GMT
etag: W/"5a0a6d-2b561-5ecef6442edc0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FS%2FdJvx3C7J9bXNKteczKXLiYLkW7ANZAwHBBmkKwl0CHrRdTt1TOHBKlQ0fV5W2L90RUqnoSqFqhEb8suUKvg%2FoVLuxDjKICMH7RYdEFIFoHmbrvnqWFl%2F%2BetQjwWpA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a629d2b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/app/65706adf2ac/languages/en.js

104.22.25.131

200 OK

17 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/65706adf2ac/languages/en.js
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
ASCII text, with CRLF, LF line terminators
Size
17 kB (17013 bytes)
Hash
7f37a030886ec7fce1d065ec482789ee
661ad608ac1513e2ccdec4cd55eb552a8604c8f6
75b20e74e3effa00e4b62b9da6df7d7542d91cb4b50078b8365112d556a73a7e

HTTP Headers

GET /_s/v4/app/65706adf2ac/languages/en.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:45 GMT
content-type: application/javascript
last-modified: Wed, 06 Dec 2023 12:38:18 GMT
etag: W/"7f37a030886ec7fce1d065ec482789ee"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 19052
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 831669bfcbba56c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-chunk-9294da6c.js

104.22.25.131

200 OK

18 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-chunk-9294da6c.js
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (18247), with no line terminators
Size
18 kB (18247 bytes)
Hash
632e2dab09e262277a1fc66788404641
a4ab49214e4560868f2c8d70a5b239581bfc01f3
fdf98bdac0fe7f429aff9005280b34720dc2fd8783c6e60e206f5a06c4480584

HTTP Headers

GET /_s/v4/app/65706adf2ac/js/twk-chunk-9294da6c.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:45 GMT
content-type: application/javascript
last-modified: Wed, 06 Dec 2023 12:38:18 GMT
etag: W/"632e2dab09e262277a1fc66788404641"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 19052
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 831669c01c0e56c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

va.tawk.to/log-performance/v3

104.22.25.131

200 OK

5 B

URL POST HTTP/3
va.tawk.to/log-performance/v3
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
5 B (5 bytes)
Hash
38a8a3e3b4b6a6e4f295b2e0f899b1f0
474f5fac3d23afbaf16c5a31c98dfcd956e4c186
7652c7891ed06bce4174ab00a6ee9721daf6a4286929213ecb7daf42cd866615

HTTP Headers

POST /log-performance/v3 HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://uniifyapp.com/
Content-Type: application/json; charset=utf-8
Content-Length: 95
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:46 GMT
content-type: text/html; charset=utf-8
x-served-by: visitor-application-preemptive-jdnt
access-control-allow-origin: https://uniifyapp.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 831669c61c0956c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.16.3

188.114.97.1

200 OK

40 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.16.3
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (40396)
Size
40 kB (40436 bytes)
Hash
e2a3fb1470104bd64d98e8245c6de817
0845f9f5eeda970595c9d3f22c5e104c9c761960
b9e240e7c455e9415ddcebc9ebd5c1b37350abef90c0a7d7b6a57423850250f7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.16.3 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:27:06 GMT
etag: W/"3e2f19-9df4-605a49cfe4615-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PXPTnMJdqGqW5vyVQlztQQoqcHzbN6EUVxyi2XzRQ4Mus9ccpslacngESe55XzVV5WAWS%2BWl92%2FHyI0svrWD4BhalQSnSPsHpFnUN9ciGnBgGQ%2B5i9cp0M4rwitMlTj%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a12b00b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

forms.hscollectedforms.net/collected-forms/v1/config/json?portalId=44045558&utk=

104.17.87.154

200 OK

116 B

URL GET HTTP/2
forms.hscollectedforms.net/collected-forms/v1/config/json?portalId=44045558&utk=
IP
104.17.87.154:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA5:D1:D2:E1:EA:8D:D7:F7:79:F2:ED:55:66:75:F5:52:07:A7:F4:B3
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
116 B (116 bytes)
Hash
fcfb4d332aff6a4cce841fd765cfffbc
ca4f70b3cb9eca1e64345004a8ecb9bd9a0345ea
05671256e5ac5755bf4845a1ff27405e07fc329744aa08eb125a299e24d1b65b

HTTP Headers

GET /collected-forms/v1/config/json?portalId=44045558&utk= HTTP/1.1
Host: forms.hscollectedforms.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:57:42 GMT
content-type: application/json;charset=utf-8
vary: Accept-Encoding
cache-control: max-age=0
x-content-type-options: nosniff
access-control-allow-origin: https://uniifyapp.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: *
access-control-max-age: 180
x-robots-tag: none
x-envoy-upstream-service-time: 7
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-b78fbd96d-t4n22
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: 4dd3a849-3168-4ef3-9169-dcb70d948310
x-request-id: 4dd3a849-3168-4ef3-9169-dcb70d948310
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 831669ab8ee056c0-OSL
content-encoding: br
X-Firefox-Spdy: h2

js.hscollectedforms.net/collectedforms.js

104.17.87.154

200 OK

70 kB

URL GET HTTP/2
js.hscollectedforms.net/collectedforms.js
IP
104.17.87.154:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA5:D1:D2:E1:EA:8D:D7:F7:79:F2:ED:55:66:75:F5:52:07:A7:F4:B3
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT

File type

Size
70 kB (70509 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /collectedforms.js HTTP/1.1
Host: js.hscollectedforms.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Mon, 04 Dec 2023 12:10:50 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: qOShuUL.zI.RMIWwukZE0taADNX_1wuf
etag: W/"109b7665e389a0b17fbf732bf7a02089"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2a3aa853116c0a37d6c7762eca54d208.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: hvkgS2twpvjbJgr3iYMj1Jbtulp7b1-9pC1b4Pk8ldEXXkgnph7u9g==
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=collected-forms-embed-js/static-1.444/bundles/project.js&cfRay=831669a83b1c56c0-ARN
cache-control: s-maxage=600, max-age=300
x-hs-target-asset: collected-forms-embed-js/static-1.444/bundles/project.js
x-content-type-options: nosniff
access-control-allow-origin: *
x-hs-cache-status: HIT
x-envoy-upstream-service-time: 1
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-b78fbd96d-t4n22
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: dad2a578-660c-4645-8157-8638a461941b
x-request-id: dad2a578-660c-4645-8157-8638a461941b
cache-tag: staticjsapp-collected-forms-embed-js-web-prod,staticjsapp-prod
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 831669a83b1c56c0-OSL
content-encoding: br
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/images/right-arrow-img.svg

188.114.97.1

200 OK

592 B

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/images/right-arrow-img.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (633), with no line terminators
Size
592 B (592 bytes)
Hash
f64b690d7954dfce66d8a04312b32608
e8336da255a273093b3721080947b1be0f9286a2
67de8b0806426ff34af8c8f52251331093791b298d99cf694ddde84d0d9b833e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/radiantthemes-addons/assets/images/right-arrow-img.svg HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/css/rt-testimonial.css?ver=1701885459
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:42 GMT
content-type: image/svg+xml
last-modified: Tue, 08 Nov 2022 06:10:07 GMT
etag: W/"5a0499-250-5ecef6442edc0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aXeQI%2BSD5z9WOVk%2BQ9EJT%2BfMbozBc6n5q3XVWSBT9Xq65jQDS8PJn%2F3QWQrCF6L9uzannsHYwYd1AQW8r5m6%2FqHdWjDhrAlP6%2FjgwskluVj5pbTKwz6da3RDKf9qeaeU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a89c91b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.pushowl.com/latest/sdks/pushowl-sib.js?plugin=wordpress&environment=production&platform=sendinblue&id=160421&name=Uniify&subdomain=uniifyapp.com&logo=https%3A%2F%2Fimg.mailinblue.com%2F3929435%2Fimages%2Fcontent_library%2Foriginal%2F63fca337dd35c87c8e6f3f5d.png&guid=fa94175ece16e569a28db2d6a982f5a2&default=true&visitor_id=7de98d0d-53a6-46f2-b190-09dd66e025e0

143.204.55.38

200 OK

172 kB

URL GET HTTP/2
cdn.pushowl.com/latest/sdks/pushowl-sib.js?plugin=wordpress&environment=production&platform=sendinblue&id=160421&name=Uniify&subdomain=uniifyapp.com&logo=https%3A%2F%2Fimg.mailinblue.com%2F3929435%2Fimages%2Fcontent_library%2Foriginal%2F63fca337dd35c87c8e6f3f5d.png&guid=fa94175ece16e569a28db2d6a982f5a2&default=true&visitor_id=7de98d0d-53a6-46f2-b190-09dd66e025e0
IP
143.204.55.38:443
ASN
#16509 AMAZON-02

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerLet's Encrypt
Subjectik.imagekit.io
FingerprintF0:0B:23:AD:1E:B6:59:34:A4:A8:99:50:76:14:CD:DB:73:BD:0D:96
ValidityWed, 18 Oct 2023 15:17:22 GMT - Tue, 16 Jan 2024 15:17:21 GMT

File type

Size
172 kB (172543 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /latest/sdks/pushowl-sib.js?plugin=wordpress&environment=production&platform=sendinblue&id=160421&name=Uniify&subdomain=uniifyapp.com&logo=https%3A%2F%2Fimg.mailinblue.com%2F3929435%2Fimages%2Fcontent_library%2Foriginal%2F63fca337dd35c87c8e6f3f5d.png&guid=fa94175ece16e569a28db2d6a982f5a2&default=true&visitor_id=7de98d0d-53a6-46f2-b190-09dd66e025e0 HTTP/1.1
Host: cdn.pushowl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: *
timing-allow-origin: *
x-server: ImageKit.io
x-request-id: d4cb1393-0193-4cfe-8139-6a4a65a7886e
server-timing: download;dur=30
cache-control: max-age=31536000
etag: W/"14f864b889f9e59ea3db79c49363181a"
last-modified: Thu, 30 Nov 2023 11:28:40 GMT
date: Wed, 06 Dec 2023 17:57:42 GMT
content-encoding: br
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: nmg4SEdS1eLv2XpIowGK3MkOLaJqWumsAYRlaBQ_jMKihBDgYESd9Q==
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/uploads/elementor/thumbs/google-play-badge-2-pzo4n6p1o73068e5sni77w2fevob8o3pol0narpj40.png

188.114.97.1

200 OK

15 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/elementor/thumbs/google-play-badge-2-pzo4n6p1o73068e5sni77w2fevob8o3pol0narpj40.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
PNG image data, 300 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size
15 kB (14813 bytes)
Hash
0e0fe9bda0ae29ecd0360ae2f3fb06bb
a3d0162048fbd4c34a5a63cfb45323128df50055
68959d78aea05ea86d49730b556c18ca32477b70142bc74eb09f86bd4072ea73

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/thumbs/google-play-badge-2-pzo4n6p1o73068e5sni77w2fevob8o3pol0narpj40.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b; _ga_C5R0X7CB38=GS1.1.1701885468.1.0.1701885468.0.0.0; _ga=GA1.1.581063805.1701885468; _ga_EB0MPR1JXK=GS1.1.1701885468.1.0.1701885468.0.0.0; sib_cuid=7de98d0d-53a6-46f2-b190-09dd66e025e0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:43 GMT
content-type: image/png
content-length: 14813
last-modified: Fri, 30 Dec 2022 18:09:05 GMT
etag: "5a23e9-39dd-5f10f7f3c1240"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e2g9CSENaV3r14gGaa49QlWhR%2FLnRylXNTL3IzSxlixT5OWUHpyjOef3ih38tmQiILRqprbJ2oMOvkkY4V%2FD5SBuB9p8Tp21EQyXIVx3K%2FvkKhlV7pYW9NHO5I5v%2BE0E"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 831669ad89bbb518-OSL
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/uploads/2022/08/Uniify_Favicon1-300x300.png

188.114.97.1

200 OK

4.3 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/2022/08/Uniify_Favicon1-300x300.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
PNG image data, 300 x 300, 8-bit colormap, non-interlaced\012- data
Size
4.3 kB (4263 bytes)
Hash
1fcb374e367c6e55178928dc584b1390
62231bc4a3c0cd20a4a493fc38b374e4b0f6b26d
a45fdd2a947c93e1d218c38043fa11cd13a6ca88e53eef943008609ac56fa585

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/08/Uniify_Favicon1-300x300.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b; _ga_C5R0X7CB38=GS1.1.1701885468.1.0.1701885468.0.0.0; _ga=GA1.1.581063805.1701885468; _ga_EB0MPR1JXK=GS1.1.1701885468.1.0.1701885468.0.0.0; sib_cuid=7de98d0d-53a6-46f2-b190-09dd66e025e0; po_visitor=3GEO81iUudcH
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:44 GMT
content-type: image/png
content-length: 4263
last-modified: Mon, 09 Jan 2023 14:18:19 GMT
etag: "5a1c3c-10a7-5f1d5705ca0c0"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EMjED0%2B6%2FOreXy58D4L%2FPnYFhIDZ5Lj1ukQvVnBXMgSy%2BED3JtBlojm9wiSM9rUTFC4cOZSd8q6Vg2wGTLthSXFtbelbpqPblT%2FRk13dqT1rUcHVfOTAaloDcjuwWY1n"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 831669b47919b518-OSL
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-includes/js/underscore.min.js?ver=1.13.4

188.114.97.1

200 OK

19 kB

URL GET HTTP/3
uniifyapp.com/wp-includes/js/underscore.min.js?ver=1.13.4
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (18798)
Size
19 kB (18833 bytes)
Hash
f88d5720bb454ed5d204cbdb56901f6b
f1952292fde4b15936e9aac16b2b9896684db95b
726b820e44f6ab90ad991d30a4bf26d3a5d71493cbcd1fb1efd0d14e89b9df2a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Tue, 27 Sep 2022 15:18:25 GMT
etag: W/"5435af-4991-5e9aa27ccd240-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vD2iOBraQauxTvB5Am01vgXp8ipI0%2BCFBYisxObd37WrSQIN6Rh9eTmHwcsXXRxlsdJZFYM3uf5rUE8EZTJ3v1areKJixw2%2FrQ%2FMtOJJj8PhNWSEa2SzFbrFy5Ap02%2Bv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a0eaa7b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2

188.114.97.1

200 OK

21 kB

URL GET HTTP/3
uniifyapp.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type

Size
21 kB (21438 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 16:36:32 GMT
etag: W/"543752-53be-5f3ba2adac400-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6GYvYz8Q9reAT2am1IsVxxUCDXhwyBp%2B6l2zRHenSGVNVqJNY4fKi40sjOwm47%2BC%2FTsRNhozBfVwjrUQbwdsP%2B9Exk7M8shnctQvKQ0VF8lq0%2FYb4nD6Ux9QHC3lBnh7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a11afeb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/abeezee/v22/esDR31xSG-6AGleN2tWkkA.woff2

142.250.74.163

200 OK

17 kB

URL GET HTTP/2
fonts.gstatic.com/s/abeezee/v22/esDR31xSG-6AGleN2tWkkA.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 17072, version 1.0\012- data
Size
17 kB (17072 bytes)
Hash
45462752342c1004d9c92488ebcb5e0b
3abfc280cfddd6bc1962e7e2d582af70e799f35e
e9b78ce1cbff9e258afa3a91f5b9a0fe64ce792691eda7f66b9eaad19e468e83

HTTP Headers

GET /s/abeezee/v22/esDR31xSG-6AGleN2tWkkA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17072
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:49:29 GMT
expires: Thu, 28 Nov 2024 21:49:29 GMT
cache-control: public, max-age=31536000
age: 590894
last-modified: Tue, 19 Apr 2022 18:27:20 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/uploads/elementor/css/custom-widget-icon-list.min.css?ver=1695054609

188.114.97.1

200 OK

9.9 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/elementor/css/custom-widget-icon-list.min.css?ver=1695054609
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (9896), with no line terminators
Size
9.9 kB (9896 bytes)
Hash
bd20390e7b3f54019195858c906db92a
329db1ebb6393a2226e34f5d700cf7d678dad6f0
06ca145d705c8952559ba8222eca9d753ff5659117469c64fc7bba11f07e89d4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/custom-widget-icon-list.min.css?ver=1695054609 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: text/css
last-modified: Mon, 18 Sep 2023 16:30:09 GMT
etag: W/"5a0016-26a8-605a4a7d893c5-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9FZGNQlogYy8sZyRPqgtp8ajoApAtrRcRI04OGUo4mhUrwhCnxeQVhofU%2BcRAQZa4AIyDIJgCO8lWPvIXUk7gA8cRdtQ4DEswjWlYA3wqyD7t4z%2FYD7qa9tJVIfZSH2h"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a0aa05b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js

151.101.65.229

200 OK

303 kB

URL GET HTTP/2
cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
IP
151.101.65.229:443
ASN
#54113 FASTLY

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type

Size
303 kB (302554 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /emojione/2.2.7/lib/js/emojione.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
etag: W/"49dda-cp9vjKV4fYl0Ow7X6yf9dkBr+YU"
content-encoding: br
accept-ranges: bytes
date: Wed, 06 Dec 2023 17:57:45 GMT
age: 21308359
x-served-by: cache-fra-eddf8230136-FRA, cache-bma1658-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 41275
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/uploads/2022/08/Uniify_Full_Logo_Purple_NoBox.png

188.114.97.1

200 OK

8.3 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/2022/08/Uniify_Full_Logo_Purple_NoBox.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
PNG image data, 140 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
8.3 kB (8340 bytes)
Hash
189f285829054f6259e2c9d183938b28
36f13380b283e0dcfd407ce928da0681b76a632a
bbc77fd8099160ca7500cd0749419c86232f3cd2f52a8fe39baab874e7099f2d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/08/Uniify_Full_Logo_Purple_NoBox.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: image/png
content-length: 8340
last-modified: Thu, 10 Nov 2022 13:12:13 GMT
etag: "5a1c40-2094-5ed1d857dc540"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nveoPlzjqs3mSxngFsP0UuwA6dHrF9kwpmknu7eHVpGWmpzhGlnLWCWn1E3j%2Fm9tsQFnkBPKXeOTOoEQ%2BSHWSzkLWxdsVe0pfpfPEJybLz78dyeSCh9wPHCIChmPTTH6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 831669a0aa03b518-OSL
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/td?id=G-EB0MPR1JXK&v=3&t=t&pid=1057348616&cv=2&rv=3bt0&tc=12&es=1&e=gtm.init_consent&eid=0&h=Ag&dl=uniifyapp.com%2F&tdp=G-EB0MPR1JXK;117073015;1;1;0&z=0

142.250.74.168

204 No Content

0 B

URL GET HTTP/3
www.googletagmanager.com/td?id=G-EB0MPR1JXK&v=3&t=t&pid=1057348616&cv=2&rv=3bt0&tc=12&es=1&e=gtm.init_consent&eid=0&h=Ag&dl=uniifyapp.com%2F&tdp=G-EB0MPR1JXK;117073015;1;1;0&z=0
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /td?id=G-EB0MPR1JXK&v=3&t=t&pid=1057348616&cv=2&rv=3bt0&tc=12&es=1&e=gtm.init_consent&eid=0&h=Ag&dl=uniifyapp.com%2F&tdp=G-EB0MPR1JXK;117073015;1;1;0&z=0 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 204 No Content
date: Wed, 06 Dec 2023 17:57:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-vendor.js

104.22.25.131

200 OK

83 kB

URL GET HTTP/2
embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-vendor.js
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type

Size
83 kB (82665 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /_s/v4/app/65706adf2ac/js/twk-vendor.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:57:44 GMT
content-type: application/javascript
last-modified: Wed, 06 Dec 2023 12:38:18 GMT
etag: W/"ce3014b09c6dfbd6f92bc585fd840580"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 831669b7aec57129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

uniifyapp.com/wp-includes/css/dist/block-library/style.min.css?ver=4fd0f5bc13853fae144764d9c4a67c2c

188.114.97.1

200 OK

110 kB

URL GET HTTP/3
uniifyapp.com/wp-includes/css/dist/block-library/style.min.css?ver=4fd0f5bc13853fae144764d9c4a67c2c
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type

Size
110 kB (110035 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=4fd0f5bc13853fae144764d9c4a67c2c HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:42 GMT
content-type: text/css
last-modified: Wed, 08 Nov 2023 05:23:21 GMT
etag: W/"40359a-1add3-6099d492229a2-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ltmjokaW%2F8U0uo4hppqU4NSCgCp2vKKkrh1EIItvwz5iomu7GkgZIFhl8i3rQmoB2WbJ0AKoAfSqjbWvdFCTtwIpDou%2BcR4eK3iD7gLtyJfEzzvZjNcuySDn%2Bsq3HL8q"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a639dcb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-chunk-2d0b383d.js

104.22.25.131

200 OK

699 B

URL GET HTTP/3
embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-chunk-2d0b383d.js
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (725), with no line terminators
Size
699 B (699 bytes)
Hash
7c2c957f3cf80dadfd0cbb7c677a0869
30e8962bf64cc7349c9e61b40b8bab5aa598c63c
606127d882e34faee4895ad2cbf8a94d805fac37792c2cc2b9bc05ca3de743b1

HTTP Headers

GET /_s/v4/app/65706adf2ac/js/twk-chunk-2d0b383d.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:45 GMT
content-type: application/javascript
last-modified: Wed, 06 Dec 2023 12:38:18 GMT
etag: W/"838903127a65ec440893b4945c40ca4a"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 19052
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 831669c01c2056c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/uploads/2022/11/10.png

188.114.97.1

200 OK

3.3 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/2022/11/10.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
PNG image data, 170 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
3.3 kB (3280 bytes)
Hash
ef364f2a87ef472fcf3924a320ccb210
9bbdf4bdd9c6c78c0e1de36116840791c21f5dfb
da08b92eb4a06b7ec78181aeea10b1b7d15b5281ee1d00446d43eb38d8092701

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/11/10.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b; _ga_C5R0X7CB38=GS1.1.1701885468.1.0.1701885468.0.0.0; _ga=GA1.1.581063805.1701885468; _ga_EB0MPR1JXK=GS1.1.1701885468.1.0.1701885468.0.0.0; sib_cuid=7de98d0d-53a6-46f2-b190-09dd66e025e0; po_visitor=3GEO81iUudcH; TawkConnectionTime=0; twk_idm_key=JguST6P_cttV_Sr9DxSQe; twk_uuid_63b90e9f47425128790c21d7=%7B%22uuid%22%3A%221.1vX1REbtwC2Af8AdMC5340LxguqvzK6tjfO6t5eRu1k08ls7tdTKWqQSD76t2bXDuOdyUIcXib5rFvPfUWvAiMugRfAJI7XrmbozNih3IfnU7u7v8VSASfC%22%2C%22version%22%3A3%2C%22domain%22%3A%22uniifyapp.com%22%2C%22ts%22%3A1701885471794%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:52 GMT
content-type: image/png
content-length: 3280
last-modified: Thu, 10 Nov 2022 13:30:20 GMT
etag: "5a2059-cd0-5ed1dc6481300"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bmZIJWKc9MMVb96vs%2FSgQV1IwizGnCw3dJeCDrBzoA5mvllBppdOJYobba4Bt6Qo9J7olfdBY8cAfDOXnStZjPERXWjrD860v%2FzYV646S4elBz2jmXjwfvJNLRDO9nvM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 831669e3efffb518-OSL
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/themes/apptek/assets/js/apptek-custom2.js?ver=1701885459

188.114.97.1

200 OK

9.9 kB

URL GET HTTP/3
uniifyapp.com/wp-content/themes/apptek/assets/js/apptek-custom2.js?ver=1701885459
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (10361), with no line terminators
Size
9.9 kB (9870 bytes)
Hash
b8348bcf67066094eb20020d9fa412c7
1ef81e960f501ab9cf2a3ebac45b27ccdf19e44b
7e2c059e9e8af5cdd13400f227c784d56dd2cff473d16b6d92ce1b435189f68a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/apptek/assets/js/apptek-custom2.js?ver=1701885459 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 10:46:20 GMT
etag: W/"5a1b54-268e-5eb4ccd6bf700-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zlJB8EuBaG%2Fli1P77SrBAe3J7nmfqlLcIL%2Bbx4i9OCi7QAMYdyuXhqI25Bzsf0EibpLCj0h4AfzXFi%2Bp3ypwrBvHw1yxSx15UjFya%2FVow6VOE3ljPejjFcyGe5OZ5ukx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a0daa0b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.16.3

188.114.97.1

200 OK

5.0 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.16.3
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (5094), with no line terminators
Size
5.0 kB (4997 bytes)
Hash
3e81e163c307c51cccae24aadfac6153
8616313058759c0f4812a4b5225303663e0b8c7d
5916789b6e5b5d872a5d616518264e502b2222d72a38aa9c68602b67301eb5e8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.16.3 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:27:07 GMT
etag: W/"3e2f89-1385-605a49d0a7356-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jkmSiZk%2BSJ2H2YAccMRO5DSkAqZSd%2BImPYf5%2BQLm0KnRpgl4ydbK8yChA5hS4gxmpAOoov79QCn8s%2FLIXkGcMnO0cHNsL9TRquPrZ0pFh%2BTaaRsrJA%2Fe7pQVyQUJWbB9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a11aeab518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/elementor/assets/css/modules/lazyload/frontend.min.css?ver=3.16.3

188.114.97.1

200 OK

413 B

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/elementor/assets/css/modules/lazyload/frontend.min.css?ver=3.16.3
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (413), with no line terminators
Size
413 B (413 bytes)
Hash
cb17d4e4c3fd00800b0f561b8a057149
638201b94e04bd2082788a774dde22696ad7402e
5ecb54f91384af7226cb4f18f87588edd49ceff5bdd4a3010336e1c22ccc390d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/modules/lazyload/frontend.min.css?ver=3.16.3 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:42 GMT
content-type: text/css
last-modified: Mon, 18 Sep 2023 16:27:05 GMT
etag: W/"3e2e48-19d-605a49cebcf6b-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eOhVJUvEraO4PlgFirxtkUGs9gkEDgVn9Uz7W8s8FQ2SUDbdo83nTXCXx%2F3kcJSvomugvm3Z73bkmbWwPbfFDnr6%2FQ%2F4Yi%2B5Mx3Dtbp1uobeKvfAGpZ18%2BtdQLq6T0pN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a659ffb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/modernizr.custom.js?ver=1701885459

188.114.97.1

404 Not Found

128 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/modernizr.custom.js?ver=1701885459
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type

Size
128 kB (128482 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/radiantthemes-addons/assets/js/modernizr.custom.js?ver=1701885459 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Wed, 06 Dec 2023 17:57:42 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.30
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: max-age=14400, must-revalidate
link: <https://uniifyapp.com/wp-json/>; rel="https://api.w.org/"
server-timing: wp-load-alloptions-query;dur=1.24, wp-before-template;dur=88.21
vary: Accept-Encoding,User-Agent
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6XInUPQGxvv%2F2y0wnWLSZSEkXOqXwlCelDjtx6w%2FKMM4bFT02pTLit6c0KWfDhs5OKJeLV1mRzsjezvoE%2Bs%2BCCBkS2PYTtEx2H2dwfsZsOBvxMJ7rzjO1UtoyNj3UeYe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a94d30b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/a?id=G-EB0MPR1JXK&v=3&t=t&pid=1057348616&cv=2&rv=3bt0&tc=12&es=1&e=gtm.init&eid=1&h=Ag&tr=1ogtgasend.1ogtreferralexclusion.1ogtsessiontimeout.1ogt1pdatav2.1ccdgafirst.1setproductsettings.1ogtgooglesignals.1ccdgaregscope.1ccdconversionmarking.1ccdautoredact.1ccdgalast&ti=2ogtgasend.2ogtreferralexclusion.2ogtsessiontimeout.2ogt1pdatav2.2ccdgafirst.2setproductsettings.2ogtgooglesignals.2ccdgaregscope.2ccdconversionmarking.2ccdautoredact.2ccdgalast&z=0

142.250.74.168

200 OK

0 B

URL GET HTTP/3
www.googletagmanager.com/a?id=G-EB0MPR1JXK&v=3&t=t&pid=1057348616&cv=2&rv=3bt0&tc=12&es=1&e=gtm.init&eid=1&h=Ag&tr=1ogtgasend.1ogtreferralexclusion.1ogtsessiontimeout.1ogt1pdatav2.1ccdgafirst.1setproductsettings.1ogtgooglesignals.1ccdgaregscope.1ccdconversionmarking.1ccdautoredact.1ccdgalast&ti=2ogtgasend.2ogtreferralexclusion.2ogtsessiontimeout.2ogt1pdatav2.2ccdgafirst.2setproductsettings.2ogtgooglesignals.2ccdgaregscope.2ccdconversionmarking.2ccdautoredact.2ccdgalast&z=0
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /a?id=G-EB0MPR1JXK&v=3&t=t&pid=1057348616&cv=2&rv=3bt0&tc=12&es=1&e=gtm.init&eid=1&h=Ag&tr=1ogtgasend.1ogtreferralexclusion.1ogtsessiontimeout.1ogt1pdatav2.1ccdgafirst.1setproductsettings.1ogtgooglesignals.1ccdgaregscope.1ccdconversionmarking.1ccdautoredact.1ccdgalast&ti=2ogtgasend.2ogtreferralexclusion.2ogtsessiontimeout.2ogt1pdatav2.2ccdgafirst.2setproductsettings.2ogtgooglesignals.2ccdgaregscope.2ccdconversionmarking.2ccdautoredact.2ccdgalast&z=0 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:42 GMT
content-type: text/html
server: Google Tag Manager
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

uniifyapp.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=1.0

188.114.97.1

200 OK

15 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=1.0
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (14869)
Size
15 kB (15055 bytes)
Hash
7a5dea0a705cc2f4cd87dbaaa6666bc6
678bc6f750f13adb29bbc158eb0d9cd813b736fa
97cf1307c16a437b77b5f7f5c9bc0b985d0745a14be5a279019aca5a3432e264

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=1.0 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:27:08 GMT
etag: W/"400c64-3acf-605a49d10cc5f-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Wh6OhIY4Btc1mQBJYPjQksPTeDjX%2BMx99IvcOzUaqqTM5L9tjAyTBE5lxJgeWE4hvLOL%2BYgEm4WgajvAvxcG5QS9HTDGQNrRXWBG8TLX%2BMnfJeNza%2FlaWDUU7lcG%2FTmB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a0ca74b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8

188.114.97.1

200 OK

11 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (10770), with no line terminators
Size
11 kB (10770 bytes)
Hash
6ce86c3105139cb3c80913e6a3696a96
c55c7be10b31a773c7c9f6f393f382b89c318db4
5fe46d2da01452067736578431f6c6e8116a24e616f58c72d9d81fdb2c7c9569

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:26:34 GMT
etag: W/"3e2d4d-2a12-605a49b0e4e86-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZecBQVJaFeEKz0%2BG4xACYnqysOMGiHOUTmnLVLqblzAcW2UCrvzbDZHbUICZOd6ThFVBOufxzqQTOc9yR7ktf9Dby%2B%2FS6v2%2BkoBzOXEPr67nMzj0b3ZFmskugOLS5EMj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a0da9eb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/themes/apptek/style.css?ver=1.0.0

188.114.97.1

200 OK

1.4 kB

URL GET HTTP/3
uniifyapp.com/wp-content/themes/apptek/style.css?ver=1.0.0
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1430), with no line terminators
Size
1.4 kB (1399 bytes)
Hash
6e63a600f55c83389b8c1269ac8bff97
13d22391e2f9041f85fe7fa4a2775ac8d3002ec8
28fbec3e482fc72608d64e688b95fe7c63922fd9405e29b3bd21dfc6cd09075b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/apptek/style.css?ver=1.0.0 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:42 GMT
content-type: text/css
last-modified: Tue, 24 Jan 2023 19:14:53 GMT
etag: W/"5a1af3-577-5f307549ecd7a-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KxPZIqJv3O2Rhg4wyWTdPIbdpxKZL64kw5D9%2F%2BxB5JJbPTo51aybylFWVnpxmvcyV8QC7893enlZbOV8C9rY4u4J2G5FdOwRmUYAagt8ahJjh0igUjh0P%2F8VOt7NCqNN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a5d966b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/css/rt-testimonial.css?ver=1701885459

188.114.97.1

200 OK

30 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/css/rt-testimonial.css?ver=1701885459
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text
Size
30 kB (29691 bytes)
Hash
985336694847396b24b853ae53f74218
70be4a9a60178ffe8bf24e80ef2587a4c4f684da
a3859f20a545d3babad4fe73c43119f5548b810425871f271328c9dde82c5230

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/radiantthemes-addons/assets/css/rt-testimonial.css?ver=1701885459 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 06:10:07 GMT
etag: W/"5a03db-73fb-5ecef6442edc0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IxLczUIgxMBlMs%2Fvmgwuz%2B5kmvsRWeZYcTurAB7UhtUCi068OfnzPMqE3K3QPRR7Tkc8MutiCBR1jB2fiz3HXk65pFtRtRpapmZB2BlKNdw6yhspl%2FNVJNySJlveC%2F6k"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a649f9b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

va.tawk.to/v1/widget-settings?propertyId=63b90e9f47425128790c21d7&widgetId=1gm5e28ep&sv=null

104.22.25.131

200 OK

2.9 kB

URL GET HTTP/3
va.tawk.to/v1/widget-settings?propertyId=63b90e9f47425128790c21d7&widgetId=1gm5e28ep&sv=null
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
troff or preprocessor input, Unicode text, UTF-8 text, with very long lines (3374), with no line terminators
Size
2.9 kB (2922 bytes)
Hash
861931600715ba954fb5f52cc9584456
87e2856277e8fe9af938e81c9230539fd8d77240
321d6db9684af08ccbea55127855d00c8090ee88f74d50098a47fceda12984be

HTTP Headers

GET /v1/widget-settings?propertyId=63b90e9f47425128790c21d7&widgetId=1gm5e28ep&sv=null HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://uniifyapp.com/
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:45 GMT
content-type: application/json
x-served-by: visitor-application-preemptive-sm1k
access-control-allow-origin: *
access-control-allow-methods: GET,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
cache-control: public, max-age=7200, s-maxage=1800
etag: W/"2-65-0"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 831669bba8d67127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/app/65706adf2ac/css/bubble-widget.css

104.22.25.131

200 OK

14 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/65706adf2ac/css/bubble-widget.css
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (13521), with no line terminators
Size
14 kB (13521 bytes)
Hash
950518e32fd92957181f766f08d3cf98
9fe20c86b818d3576e9d70e6ed091964cb8b7427
2f56f47d64037d5aa3a96b50c840580e5549fee6f9fafff8af3d1821d189fa5c

HTTP Headers

GET /_s/v4/app/65706adf2ac/css/bubble-widget.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:45 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=13594
access-control-allow-origin: *
etag: W/"ce7913b80c763449b3895d46419f7a6b"
last-modified: Wed, 06 Dec 2023 12:38:17 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
age: 19033
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 831669c0cce756c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/css/rt-accordion.css?ver=1701885459

188.114.97.1

200 OK

19 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/css/rt-accordion.css?ver=1701885459
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text
Size
19 kB (19405 bytes)
Hash
e1561407fc81fd2d8154e939c8cfce7f
40639b38ef6e42c2bf17084f381dcf2e27611e2a
cc8bcea8966405ca76ff5b133093cff923341fa6e132f81895481853e2bea899

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/radiantthemes-addons/assets/css/rt-accordion.css?ver=1701885459 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 06:10:07 GMT
etag: W/"5a03c1-4bcd-5ecef6442edc0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4NNlW9ZyVPbm5Q7beLZgrh4OhjMtGfgQRxtw49ZVd0H42II%2B1YbeZsEJFL7pixMQ%2F0rYFoA9nX4XQdNZQx3LmaBHPP30n9d8nsqc0IIv%2FTTS8T99YLM%2BPQYbU1cT2jJF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a65a03b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/uploads/2022/12/goask.png

188.114.97.1

200 OK

11 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/2022/12/goask.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
PNG image data, 170 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (11267 bytes)
Hash
8455c8e5abb11f467b578decbd49b754
73b27af06b22332b8213c5f94be6eb62392af19f
8f09b730e315c0940763a6cdf40cbd0737d60e213691a52556d901c0204c330a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/12/goask.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b; _ga_C5R0X7CB38=GS1.1.1701885468.1.0.1701885468.0.0.0; _ga=GA1.1.581063805.1701885468; _ga_EB0MPR1JXK=GS1.1.1701885468.1.0.1701885468.0.0.0; sib_cuid=7de98d0d-53a6-46f2-b190-09dd66e025e0; po_visitor=3GEO81iUudcH; TawkConnectionTime=0; twk_idm_key=JguST6P_cttV_Sr9DxSQe; twk_uuid_63b90e9f47425128790c21d7=%7B%22uuid%22%3A%221.1vX1REbtwC2Af8AdMC5340LxguqvzK6tjfO6t5eRu1k08ls7tdTKWqQSD76t2bXDuOdyUIcXib5rFvPfUWvAiMugRfAJI7XrmbozNih3IfnU7u7v8VSASfC%22%2C%22version%22%3A3%2C%22domain%22%3A%22uniifyapp.com%22%2C%22ts%22%3A1701885471794%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:50 GMT
content-type: image/png
content-length: 11267
last-modified: Tue, 27 Dec 2022 16:03:02 GMT
etag: "5a211c-2c03-5f0d162ebb980"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TtkaKz%2FIN3elIZg3amGPB3JoEN0q%2F0WbdL3e2xv2YRuEcY7gXFf7bhZ%2Fedp881UfN06RzInDHDGzqcn15EmyZcP1eypZGSXVQP2NHqQlbIlt8S8Yj1fVmVrF3rxlvKgg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 831669da4ce3b518-OSL
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1

188.114.97.1

200 OK

14 kB

URL GET HTTP/3
uniifyapp.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (13479)
Size
14 kB (13577 bytes)
Hash
9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Fri, 09 Jun 2023 05:49:24 GMT
etag: W/"54373a-3509-5fdabee5f2100-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eTW2OgNwGllIgeWalWYwS%2BnRTO3W8miEkF%2Fii6U81JiMqfzwTZ4AI%2FzintKFkJ9Y099rb7A1c13ofXFBGg%2FWxowGeNMecwGFIme8b5uAWDcqvt9TnFT2V8OTWUNRmBtP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a0ba5eb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/mailin/css/mailin-front.css?ver=4fd0f5bc13853fae144764d9c4a67c2c

188.114.97.1

200 OK

2.7 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/mailin/css/mailin-front.css?ver=4fd0f5bc13853fae144764d9c4a67c2c
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (2899), with no line terminators
Size
2.7 kB (2681 bytes)
Hash
1dab301b9a9ac952e5339dc96c4f30d9
5191bce6f92afb9456bb583ed1ffde388ae42704
a14cdf9870285bb0e76cebbc56976c1730633b7615cc041f8be4d45e97a24ae3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/mailin/css/mailin-front.css?ver=4fd0f5bc13853fae144764d9c4a67c2c HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:42 GMT
content-type: text/css
last-modified: Mon, 18 Sep 2023 16:28:08 GMT
etag: W/"3e1a02-a79-605a4a0a89659-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CuPvYppW1%2FgHw0lnt8D0ECDOt2QN6y5owUmoDIMLRXcWfFAbN86dP%2BzqNMPCDnBqFv9u2F46IyfNJLc5Dykgh6M%2BQIrUsqqBNREVjNIA%2Fxc3JPvumbJg0wIdE%2F7RI3K6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a5e976b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/css/rt-animated-heading.css?ver=1701885459

188.114.97.1

200 OK

30 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/css/rt-animated-heading.css?ver=1701885459
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text
Size
30 kB (30347 bytes)
Hash
b4037fb3f85e897fa9fea9d8c24d4701
f2b44c57af31e8060c8f8ae56d540ae6163c45ff
12392e4b51613ac339ae93efa26dc1d730bb34b8368a2dbe0f8637ce2b3d6a4d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/radiantthemes-addons/assets/css/rt-animated-heading.css?ver=1701885459 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 06:10:07 GMT
etag: W/"5a03c2-768b-5ecef6442edc0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I4OVlutOa0Byn4G3Z3Mf7W%2FX37Nxw51kEsh2QBw5zhs0Z2FQ%2FN%2FFvAdJGUxDie3CRvCvXTGUAETFh42z%2Bf6fMNLRcDGTShqZge%2FmYjL%2Fv4sEimBumXU%2BB%2Bj%2BXe9UvMDl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a6099eb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/gtag/js?id=G-EB0MPR1JXK&l=dataLayer&cx=c

142.250.74.168

200 OK

229 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-EB0MPR1JXK&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (5955)
Size
229 kB (229438 bytes)
Hash
4e21578435bedf431478faa477344f9e
63b13e6260d6b9adf3d6fd1bba2a7a63b769acce
6abbb452db5fdf7d1040b0ee1e82b8f5f99b0a1d67c6950c54173930b2a11440

HTTP Headers

GET /gtag/js?id=G-EB0MPR1JXK&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 06 Dec 2023 17:57:41 GMT
expires: Wed, 06 Dec 2023 17:57:41 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 81221
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-chunk-f1565420.js

104.22.25.131

200 OK

11 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-chunk-f1565420.js
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (11148), with no line terminators
Size
11 kB (11148 bytes)
Hash
cb48a7d6ac8cf353cc0a43280dd89992
92cea85e01ef54ace5140e4ef8394814316ca7bb
572f67fc7a81a793ecfabed967c97275549586fe388ddc07808e1f8723b05ee8

HTTP Headers

GET /_s/v4/app/65706adf2ac/js/twk-chunk-f1565420.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:45 GMT
content-type: application/javascript
last-modified: Wed, 06 Dec 2023 12:38:18 GMT
etag: W/"cb48a7d6ac8cf353cc0a43280dd89992"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 19033
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 831669c01c1656c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/themes/apptek/assets/js/bootstrap.min.js?ver=1701885459

188.114.97.1

200 OK

234 kB

URL GET HTTP/3
uniifyapp.com/wp-content/themes/apptek/assets/js/bootstrap.min.js?ver=1701885459
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type

Size
234 kB (233727 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/apptek/assets/js/bootstrap.min.js?ver=1701885459 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:40 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 10:46:20 GMT
etag: W/"5a1b55-390ff-5eb4ccd6bf700-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5v7aLl5%2FA%2F0dRP4JpCW0fSNsNFQRx9hwmRTACRqrdAS04gGyepIefge6sa3XV55bDavrXIrIUnUjbp%2FNDl%2F7LYBfbgwgTbuhCNq2cJoY678oSfP1as0DjSXDkb6GeNgO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a0daa1b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/jetpack-boost/jetpack_vendor/automattic/jetpack-lazy-images/dist/intersection-observer.js?minify=false&ver=83ec8aa758f883d6da14

188.114.97.1

200 OK

9.0 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/jetpack-boost/jetpack_vendor/automattic/jetpack-lazy-images/dist/intersection-observer.js?minify=false&ver=83ec8aa758f883d6da14
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (9051), with no line terminators
Size
9.0 kB (8983 bytes)
Hash
aee5233a88e59cf85afd5849a59da09c
a63fb67599f130b81880e3e9730462bff4ee5cc6
3a798d6addbffdfee5bcd2f5398f08585cc5f2c3bd6c511e45871e4ed72cbf7b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/jetpack-boost/jetpack_vendor/automattic/jetpack-lazy-images/dist/intersection-observer.js?minify=false&ver=83ec8aa758f883d6da14 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:27:39 GMT
etag: W/"48020a-2317-605a49ef0ba60-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=99vZ6rw%2FRto9aXAKDIkvACnmwLtSBQHvqM3h8cRxtawqKE1%2F5q1PAp7avgpPmACJ7GjZ%2BeMj4rOoxt6V3%2Bdq%2FK%2BoDY3%2B%2FHaE0egdEVIjiXx2kiEtsy%2B9Ji11xNDH1lBk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a0facbb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/modernizr.custom.js?ver=1701885459

188.114.97.1

404 Not Found

128 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/modernizr.custom.js?ver=1701885459
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type

Size
128 kB (128482 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/radiantthemes-addons/assets/js/modernizr.custom.js?ver=1701885459 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.30
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: max-age=14400, must-revalidate
link: <https://uniifyapp.com/wp-json/>; rel="https://api.w.org/"
server-timing: wp-load-alloptions-query;dur=0.94, wp-before-template;dur=62.46
vary: Accept-Encoding,User-Agent
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PaKkNDPAPR09c393a%2BXN0txqGkyCk1QzBnwGNdnBWgO%2FDLJU0sp%2BfbJnjx%2B2IW%2Fc4L7mv0CPPjvp686hgum0QEFjrd448oGd4VjeixpKA1CLZJBILKp8tttu%2BCoEepfH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a0faceb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/uploads/2022/11/4.png

188.114.97.1

200 OK

2.6 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/2022/11/4.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
PNG image data, 170 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
2.6 kB (2569 bytes)
Hash
d8f16e07917173149a9bd0a064bb5f37
faffd20273507daa05ec07a447bc3e314be904f2
2933b32e0aa7d88e8a93a55abadcf7e0e68ed4e2c90713e87072a369c6d659d7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/11/4.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b; _ga_C5R0X7CB38=GS1.1.1701885468.1.0.1701885468.0.0.0; _ga=GA1.1.581063805.1701885468; _ga_EB0MPR1JXK=GS1.1.1701885468.1.0.1701885468.0.0.0; sib_cuid=7de98d0d-53a6-46f2-b190-09dd66e025e0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:43 GMT
content-type: image/png
content-length: 2569
last-modified: Thu, 10 Nov 2022 13:30:18 GMT
etag: "5a2061-a09-5ed1dc6298e80"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HNJS9Moy5zxVssgEx9oIGU0tTiygznilxvDPmBW4YuHfXZ7n8ClhKDEcbP1Ihp3YroZU1rYEnE5CaULIwioN%2BmnPrUIlrGz3%2FqSPVYyfBIwDeAWMRGIeewOX8RbfIeLI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 831669ad89c0b518-OSL
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/app/65706adf2ac/css/message-preview.css

104.22.25.131

200 OK

41 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/65706adf2ac/css/message-preview.css
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (40699), with no line terminators
Size
41 kB (40699 bytes)
Hash
c7393b57847a249cf71e453cff9c5693
2b151e46ff61023cac973343c951b4210cd4d374
7bd9666b0959d868276da481746b74e6a76fbc19f7957e528b8fb022367980bc

HTTP Headers

GET /_s/v4/app/65706adf2ac/css/message-preview.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:45 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=40832
access-control-allow-origin: *
etag: W/"cf4a08d496f49489af30571e3cbb48f3"
last-modified: Wed, 06 Dec 2023 12:38:18 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
age: 19051
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 831669c0ed2856c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

js.hsadspixel.net/fb.js

104.17.231.163

200 OK

6.2 kB

URL GET HTTP/2
js.hsadspixel.net/fb.js
IP
104.17.231.163:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintFC:DB:B2:8A:EC:7E:99:5C:25:C2:01:C0:DB:44:A4:07:41:7E:4F:3A
ValidityWed, 17 May 2023 00:00:00 GMT - Thu, 16 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (6425), with no line terminators
Size
6.2 kB (6238 bytes)
Hash
57f8b2f4f09d3acc0f2e476ff194381a
78f3a25b965da959c38aea5e2d05a7fe942222fc
12b55f5095061e4b994f10ece9312cdd91ecda88e7b80c529fdcbec4d2f8c9fa

HTTP Headers

GET /fb.js HTTP/1.1
Host: js.hsadspixel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Mon, 04 Dec 2023 14:19:28 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: XlFw32Cnxu8ZjnNH.SH7ungVy3g8LtQG
etag: W/"ed930579444c6c7c0292363361667508"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3c43e000c50d5633eb558057710f3c54.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: p-z3KKfFaC79j2Mm0GNhJpHqTpGcbbQtOEJdEd4s2C8_o6zzyp7gvQ==
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=adsscriptloaderstatic/static-1.501/bundles/pixels-release.js&cfRay=8304be078f87b4f4-ARN
cache-control: max-age=600
x-hs-target-asset: adsscriptloaderstatic/static-1.501/bundles/pixels-release.js
x-content-type-options: nosniff
x-hs-cache-status: HIT
x-envoy-upstream-service-time: 1
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-b78fbd96d-d59vm
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: 6ae3cf4d-e5f4-4e37-8a1e-1956f5ad0e11
x-request-id: 6ae3cf4d-e5f4-4e37-8a1e-1956f5ad0e11
cache-tag: staticjsapp-AdsScriptLoaderCloudflare-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 158
server: cloudflare
cf-ray: 831669a79fbe712f-OSL
content-encoding: br
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/uploads/2022/11/2.png

188.114.97.1

200 OK

13 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/2022/11/2.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
PNG image data, 170 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
13 kB (12657 bytes)
Hash
f9b4a997475928c03544b4345c1a5376
5127d99379fdd29eca4ebf84e4eeb063f7a585f4
42d01320d47462f7fba02728fe062f5fcf00cdd9c4494b8ad68431d4d027cb14

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/11/2.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b; _ga_C5R0X7CB38=GS1.1.1701885468.1.0.1701885468.0.0.0; _ga=GA1.1.581063805.1701885468; _ga_EB0MPR1JXK=GS1.1.1701885468.1.0.1701885468.0.0.0; sib_cuid=7de98d0d-53a6-46f2-b190-09dd66e025e0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:43 GMT
content-type: image/png
content-length: 12657
last-modified: Thu, 10 Nov 2022 13:30:17 GMT
etag: "5a205d-3171-5ed1dc61a4c40"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QE%2B%2FvvlGGWWvRnkez%2BQtHPtSqyz47pL2M0ssxmNDIVvoypexhVnaHovSFtX9RJFj29wW%2BUr313tMnn4M%2B4Bn7FmEVVZoK%2BnUp0Fv0DrrqWDE0V5d9XqE5MdIQ2Kg27kU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 831669ad89c7b518-OSL
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-chunk-vendors.js

104.22.25.131

200 OK

217 kB

URL GET HTTP/2
embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-chunk-vendors.js
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type

Size
217 kB (217124 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /_s/v4/app/65706adf2ac/js/twk-chunk-vendors.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:57:44 GMT
content-type: application/javascript
last-modified: Wed, 06 Dec 2023 12:38:18 GMT
etag: W/"86b32a04921a039ace69980bacd1b639"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 831669b7aec97129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/uploads/2022/11/6.png

188.114.97.1

200 OK

5.9 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/2022/11/6.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
PNG image data, 170 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
5.9 kB (5893 bytes)
Hash
8a433162097eb8ef8e51e7c13bcadab8
dce4b78109f927d34c3ce6d5bce0867d594be0ef
f44ddcc39a064cea1995c17331036f109006474838d05687968491974b76aea2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/11/6.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b; _ga_C5R0X7CB38=GS1.1.1701885468.1.0.1701885468.0.0.0; _ga=GA1.1.581063805.1701885468; _ga_EB0MPR1JXK=GS1.1.1701885468.1.0.1701885468.0.0.0; sib_cuid=7de98d0d-53a6-46f2-b190-09dd66e025e0; po_visitor=3GEO81iUudcH; TawkConnectionTime=0; twk_idm_key=JguST6P_cttV_Sr9DxSQe; twk_uuid_63b90e9f47425128790c21d7=%7B%22uuid%22%3A%221.1vX1REbtwC2Af8AdMC5340LxguqvzK6tjfO6t5eRu1k08ls7tdTKWqQSD76t2bXDuOdyUIcXib5rFvPfUWvAiMugRfAJI7XrmbozNih3IfnU7u7v8VSASfC%22%2C%22version%22%3A3%2C%22domain%22%3A%22uniifyapp.com%22%2C%22ts%22%3A1701885471794%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:49 GMT
content-type: image/png
content-length: 5893
last-modified: Thu, 10 Nov 2022 13:30:18 GMT
etag: "5a2065-1705-5ed1dc6298e80"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u%2F%2BiwGzieCLRsTyOxU%2BNXhnq4fhQdxtWNIqSUoFuw3ocYdH6%2By4VbcAn5iXMTQVu5utHWSxuHwYuw%2FvhLaGoNXQROGquvkNgbPpCj3TR1zDFhFQ4L%2Bvt0KBD9oOdlcKp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 831669d0d881b518-OSL
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/uploads/elementor/css/post-7.css?ver=1695054607

188.114.97.1

200 OK

1.1 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/elementor/css/post-7.css?ver=1695054607
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (1112), with no line terminators
Size
1.1 kB (1104 bytes)
Hash
6003fe48de837f0370d07df89c64f68c
5049156f0423f6208a7646286878f9be5a6af9b1
e87be2b4257cd9a64672c6623a0c18803d38e77b207929a3a8d5a15f14adfda4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/post-7.css?ver=1695054607 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:42 GMT
content-type: text/css
last-modified: Mon, 18 Sep 2023 16:30:07 GMT
etag: W/"5a000d-450-605a4a7c08b4b-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ji6%2FqjKDV%2FKMUoH4gK%2Fiwrc%2FZSCTmx76UfmBVBPY4fRyEQoJcwcnqW8P8pz1%2BtxeZGscRxIViePTBS3N9TA4gsAfcO9vB%2BN1ILLApOw3zjkJ0%2BWxFRLUMj56oPLZluNz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a5a92eb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=1.0

188.114.97.1

200 OK

59 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=1.0
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (59158)
Size
59 kB (59344 bytes)
Hash
74bab4578692993514e7f882cc15c218
b6293bcfd851f963edbe859498570c4c0c7eaae4
d87ddf917b7a1449ab45e2b8e3c98354629bdd65b6659c37e6023bbea1ce1386

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=1.0 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: text/css
last-modified: Mon, 18 Sep 2023 16:27:08 GMT
etag: W/"400c44-e7d0-605a49d107e3f-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kq2hvaVCnzcOmXxeUnE5ChpNw9M8rcYvJZ0CuIucy32H9gt6owRaL6patHMkXnAsjTkEgCjPT0BBSk0KWdRilnXMfcIu1UpLH70sQdzBnC4hfyKo2tBCxdzz0T8uuedc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a60997b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/themes/apptek/assets/css/header-menu.css?ver=1.0.0

188.114.97.1

200 OK

200 kB

URL GET HTTP/3
uniifyapp.com/wp-content/themes/apptek/assets/css/header-menu.css?ver=1.0.0
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text
Size
200 kB (199910 bytes)
Hash
0b557f5e2b9c27a2de74bfc45e37fba4
363d20792f90c804a5807a345045b66d4bf96778
0103c201b625a01c6ee4064d3fcfa2125bcec4846fe975ff9e1cbe7ded354e6c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/apptek/assets/css/header-menu.css?ver=1.0.0 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:42 GMT
content-type: text/css
last-modified: Mon, 14 Nov 2022 13:12:11 GMT
etag: W/"5a1afd-30ce6-5ed6dfcbcc0c0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=koSy8fZT5fokA%2BoV8%2F1dQB7Uoole%2Bh2Ptd1TUqLlrAm4BcjJV7UZxkbhiUqLTY2ev49KJPjSb9UQ9kbUR9S8BoXgxQ7l%2BaAghzLoMOqk0YeJ73hjQ%2FFhX0nIWtabvB1l"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a609a2b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/uploads/2022/08/Uniify_Favicon1-150x150.png

188.114.97.1

200 OK

2.0 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/2022/08/Uniify_Favicon1-150x150.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
PNG image data, 150 x 150, 8-bit colormap, non-interlaced\012- data
Size
2.0 kB (2007 bytes)
Hash
30680b0c78342f559eb5e42a4aaa3828
53713e66213dbc1a082352208e3b3cc6dbea16c2
020c65f41e552509ca2a5ca30801f0589313839234df188352091d7607db21db

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/08/Uniify_Favicon1-150x150.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b; _ga_C5R0X7CB38=GS1.1.1701885468.1.0.1701885468.0.0.0; _ga=GA1.1.581063805.1701885468; _ga_EB0MPR1JXK=GS1.1.1701885468.1.0.1701885468.0.0.0; sib_cuid=7de98d0d-53a6-46f2-b190-09dd66e025e0; po_visitor=3GEO81iUudcH
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:44 GMT
content-type: image/png
content-length: 2007
last-modified: Mon, 09 Jan 2023 14:18:19 GMT
etag: "5a1c3a-7d7-5f1d5705ca0c0"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AVM88HmYVPdxcAIQvVNNjtSulxtYp%2BESrwmsa8Tobrjnmlb7mQuJERUhFfWtC4mlrrtLow3Lq7SzxPn1O%2B8IMXRvy8lbnwNpUG1Rm7kpz%2ByPobkJXN6oNyFwP5mRN8P9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 831669b4791ab518-OSL
alt-svc: h3=":443"; ma=86400

cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js

151.101.65.229

200 OK

303 kB

URL GET HTTP/2
cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
IP
151.101.65.229:443
ASN
#54113 FASTLY

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type

Size
303 kB (302554 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /emojione/2.2.7/lib/js/emojione.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
etag: W/"49dda-cp9vjKV4fYl0Ow7X6yf9dkBr+YU"
content-encoding: br
accept-ranges: bytes
date: Wed, 06 Dec 2023 17:57:45 GMT
age: 21308359
x-served-by: cache-fra-eddf8230136-FRA, cache-bma1658-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 41275
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-chunk-common.js

104.22.25.131

200 OK

224 kB

URL GET HTTP/2
embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-chunk-common.js
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type

Size
224 kB (223757 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /_s/v4/app/65706adf2ac/js/twk-chunk-common.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:57:44 GMT
content-type: application/javascript
last-modified: Wed, 06 Dec 2023 12:38:18 GMT
etag: W/"38be29de8e673b78fc1bc8782cc309ef"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 831669b7bee17129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/anime.2.0.2.min.js?ver=1701885459

188.114.97.1

200 OK

11 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/anime.2.0.2.min.js?ver=1701885459
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (532), with CRLF line terminators
Size
11 kB (11259 bytes)
Hash
f258ee6f938947e043c7e0984cd7e2b2
7c9416c1b444773b2d82e797131d6047364645a3
ef1b91cc56c369dcc8fd9ee30bb2aa9745075cfc9f594b2ac58edb1600779128

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/radiantthemes-addons/assets/js/anime.2.0.2.min.js?ver=1701885459 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 06:10:07 GMT
etag: W/"5a0961-2bfb-5ecef6442edc0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k8PjWphYBrFggeVBc%2B3Lo8oJJBqfKhdDqtXcY1HUwqLF254QtaAar%2Brra7Cp5gN61%2FKg9FgwHcvTEwRWPwVqULYllpxkLrLfmWnqGHlXiRBxuXOtxSi3GdRGaJykSuX7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a10ad6b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/animation2.js?ver=1701885459

188.114.97.1

200 OK

7.5 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/animation2.js?ver=1701885459
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (7687), with no line terminators
Size
7.5 kB (7455 bytes)
Hash
03f17f7ced1cd829d460f51ade6b8433
e9fb08a9ccdabd338d66f68e3ca8d020aa7da329
c4f2a9ae947a7e3294ab5c71aab5f0c23b8bced5f1b9dda190064a93438c1959

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/radiantthemes-addons/assets/js/animation2.js?ver=1701885459 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 06:10:07 GMT
etag: W/"5a0960-1d1f-5ecef6442edc0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PfFhi3Si234VF9o1hVUl%2BgHrRp0ZJnJYKGIV69IzwsOzlv7%2F%2Fc%2F6AHFWVXlOMImPp0wy6NlKy5B1iTeNftxHgMWhNCd%2FSCL6W2q0CwOjgnZgW1vjKF2k5pt3MI%2FCH4DI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a11ae0b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-json/contact-form-7/v1/contact-forms/43045/feedback/schema

188.114.97.1

200 OK

222 B

URL GET HTTP/3
uniifyapp.com/wp-json/contact-form-7/v1/contact-forms/43045/feedback/schema
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
222 B (222 bytes)
Hash
dae5fa09dd094dc9444d5a44c1abc5d4
8075243b1002ef87fd88ac98a3f73255c684c0ad
a7323a74aa8ec62c5851b381e88e5acbf4dad956fd20732b217b11baf378f69a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-json/contact-form-7/v1/contact-forms/43045/feedback/schema HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, */*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b; _ga_C5R0X7CB38=GS1.1.1701885468.1.0.1701885468.0.0.0; _ga=GA1.1.581063805.1701885468; _ga_EB0MPR1JXK=GS1.1.1701885468.1.0.1701885468.0.0.0; sib_cuid=7de98d0d-53a6-46f2-b190-09dd66e025e0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:43 GMT
content-type: application/json; charset=UTF-8
x-powered-by: PHP/8.0.30
x-robots-tag: noindex
link: <https://uniifyapp.com/wp-json/>; rel="https://api.w.org/"
x-content-type-options: nosniff
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
allow: GET
vary: Origin,Accept-Encoding,User-Agent
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SOVCIvXR9HzR%2B3%2Fb3Vvk300H8gBeVmQL73T9lnAZEhQntLvd0Catw3ENChnjuaqP70QzBQwKBTC70gukbomy47jnNaMKuA0oHDFwjdahtd8iAQPUPVwRiC2YwMnpqRFF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669acf933b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/animated-main.min.js?ver=1.0

188.114.97.1

200 OK

2.3 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/animated-main.min.js?ver=1.0
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (2412), with no line terminators
Size
2.3 kB (2294 bytes)
Hash
eb4664ae8cb75342796e3bc3590d58f5
4caa551824a0c7da1a3481ce186a0a9941925ced
a7004539e490c37fac9db46c3eea126687a1493893d865d653ccb8b212aeba5f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/animated-main.min.js?ver=1.0 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:27:25 GMT
etag: W/"421a3f-8f6-605a49e1ce6a7-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Em2q1BgbR0RqQxhWtRB7WXUu%2FjxXWP32tRZY7YOaniUVTJisfdgYSiKarQMIjL1uhOdiXxuy5XENoNiJk3AjDlmEey462T%2BqVFvcgm3KySRinDFDsim4GY0%2Fgjl7R4Yo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a0da87b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/uploads/elementor/css/post-35633.css?ver=1695054608

188.114.97.1

200 OK

14 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/elementor/css/post-35633.css?ver=1695054608
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (14113), with no line terminators
Size
14 kB (14113 bytes)
Hash
f699f2db3864c2d63fdc0335b55358c2
c1c3695c4094a2af315a665b030ff34694c08474
e259498d10a5ac7295328030afcc0b471df78556c1d31ebece6a4d52e9720c53

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/post-35633.css?ver=1695054608 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:42 GMT
content-type: text/css
last-modified: Mon, 18 Sep 2023 16:30:08 GMT
etag: W/"5a0015-3721-605a4a7d7f39c-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eq9zs45hnpF18hr2WLKKTvlxwUh2AzHsxcG%2BrCvThTBRHHZ7YCua1bLLFX19j6yem4QJlLiFzqr1%2Fi7cqFK99MNbBClfzkCY8n0OOxYlgy5UZSLWujPe55SYh3WJ8euI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a5d961b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/uploads/elementor/css/custom-frontend-lite.min.css?ver=1695054607

188.114.97.1

200 OK

117 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/elementor/css/custom-frontend-lite.min.css?ver=1695054607
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
117 kB (117324 bytes)
Hash
4fe4102ecba705e759bff7760db56f6b
d7f043abc4c9b3095f392a3a48fa2e2db503fb68
d41e741d4211c22a29f45d747c1345590d485e6448f653e2adfa1824447df04a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/custom-frontend-lite.min.css?ver=1695054607 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: text/css
last-modified: Mon, 18 Sep 2023 16:30:07 GMT
etag: W/"5a000c-1ca4c-605a4a7bfc02a-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zep5QAdX2tDG4xFI0mkz5S1Vv00zZmAtuGGIzwodX%2F08lAP5aFtx1l9rlOBgEyz72Emii51tTPURm9WaZSESAsSwcfaVUAUyss6BM7OBOFd1hKmYVB2Tw5v0TVJH5udW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a619beb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

vsa87.tawk.to/s/?k=6570b619bfcd9379973b77ce&cver=0&pop=false&asver=266&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2M2I5MGU5ZjQ3NDI1MTI4NzkwYzIxZDciLCJ2aWQiOiI2M2I5MGU5ZjQ3NDI1MTI4NzkwYzIxZDctZlBKSUNUZHdXSlR1ckpFWHpnY0xFIiwic2lkIjoiNjU3MGI2MTliZmNkOTM3OTk3M2I3N2NlIiwiaWF0IjoxNzAxODg1NDY1LCJleHAiOjE3MDE4ODcyNjUsImp0aSI6IkJmUFlpdXVieUExanB0UzBSbHY4NCJ9.OUGtlc8JqTHJNBQlAFXKtNVLahUEWJv5FIoYFn8_sSHr4PbdEjILkg6xZBvUC2PU9Ki_bpN6e1BtoLvX2w30ng&EIO=3&transport=websocket&__t=On0Hsm_

104.22.25.131

101 Switching Protocols

0 B

URL GET HTTP/1.1
vsa87.tawk.to/s/?k=6570b619bfcd9379973b77ce&cver=0&pop=false&asver=266&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2M2I5MGU5ZjQ3NDI1MTI4NzkwYzIxZDciLCJ2aWQiOiI2M2I5MGU5ZjQ3NDI1MTI4NzkwYzIxZDctZlBKSUNUZHdXSlR1ckpFWHpnY0xFIiwic2lkIjoiNjU3MGI2MTliZmNkOTM3OTk3M2I3N2NlIiwiaWF0IjoxNzAxODg1NDY1LCJleHAiOjE3MDE4ODcyNjUsImp0aSI6IkJmUFlpdXVieUExanB0UzBSbHY4NCJ9.OUGtlc8JqTHJNBQlAFXKtNVLahUEWJv5FIoYFn8_sSHr4PbdEjILkg6xZBvUC2PU9Ki_bpN6e1BtoLvX2w30ng&EIO=3&transport=websocket&__t=On0Hsm_
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /s/?k=6570b619bfcd9379973b77ce&cver=0&pop=false&asver=266&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2M2I5MGU5ZjQ3NDI1MTI4NzkwYzIxZDciLCJ2aWQiOiI2M2I5MGU5ZjQ3NDI1MTI4NzkwYzIxZDctZlBKSUNUZHdXSlR1ckpFWHpnY0xFIiwic2lkIjoiNjU3MGI2MTliZmNkOTM3OTk3M2I3N2NlIiwiaWF0IjoxNzAxODg1NDY1LCJleHAiOjE3MDE4ODcyNjUsImp0aSI6IkJmUFlpdXVieUExanB0UzBSbHY4NCJ9.OUGtlc8JqTHJNBQlAFXKtNVLahUEWJv5FIoYFn8_sSHr4PbdEjILkg6xZBvUC2PU9Ki_bpN6e1BtoLvX2w30ng&EIO=3&transport=websocket&__t=On0Hsm_ HTTP/1.1
Host: vsa87.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://uniifyapp.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: hPB8EkmEtf1a/P1BzmbGMw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Date: Wed, 06 Dec 2023 17:57:46 GMT
Connection: upgrade
upgrade: websocket
sec-websocket-accept: oIvXMkZcYn/NGGN3vLnbz/c3VWE=
sec-websocket-extensions: permessage-deflate
strict-transport-security: max-age=0; includeSubDomains; preload
CF-Cache-Status: DYNAMIC
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 831669c08b2ab4f4-OSL
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.16.3

188.114.97.1

200 OK

18 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.16.3
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (10019)
Size
18 kB (18468 bytes)
Hash
4601ba55044413706c2022cb6c1c3d05
5103ec2fbb389568ebf5cfe4fd721f3df2ff7aec
fe513ef974b767510d0a2b9f1b4d3afa53185b89ab617c869e5e3d6db960192c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.16.3 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:42 GMT
content-type: text/css
last-modified: Mon, 18 Sep 2023 16:27:07 GMT
etag: W/"3e2f8f-4824-605a49d0a773e-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fvtt2QTrTReZwxL83OpVEGmYwxfaU4gvntXYuBu1fAGYeckZbk9d4i03orEMgcYiUYK2AaErutWB%2BHjLo6dRreZ6bfEbSd8rasOio67gK8ng47AWkUD41CYK%2BGREf5oO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a66a10b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/a?id=G-EB0MPR1JXK&v=3&t=t&pid=1057348616&cv=2&rv=3bt0&tc=12&es=1&e=gtag.config&eid=4&u=AAAAAAAAAAAAAIAAAAAAAAE&ut=Ag&h=Ag&z=0

142.250.74.168

200 OK

0 B

URL GET HTTP/3
www.googletagmanager.com/a?id=G-EB0MPR1JXK&v=3&t=t&pid=1057348616&cv=2&rv=3bt0&tc=12&es=1&e=gtag.config&eid=4&u=AAAAAAAAAAAAAIAAAAAAAAE&ut=Ag&h=Ag&z=0
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /a?id=G-EB0MPR1JXK&v=3&t=t&pid=1057348616&cv=2&rv=3bt0&tc=12&es=1&e=gtag.config&eid=4&u=AAAAAAAAAAAAAIAAAAAAAAE&ut=Ag&h=Ag&z=0 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:42 GMT
content-type: text/html
server: Google Tag Manager
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

api.pushowl.com/api/v1/uniifyapp.com/subscriber/config/widget/?guid=fa94175ece16e569a28db2d6a982f5a2&platform=sendinblue

34.201.191.114

200 OK

0 B

URL OPTIONS HTTP/2
api.pushowl.com/api/v1/uniifyapp.com/subscriber/config/widget/?guid=fa94175ece16e569a28db2d6a982f5a2&platform=sendinblue
IP
34.201.191.114:443
ASN
#14618 AMAZON-AES

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerAmazon
Subjectpushowl.com
FingerprintC6:AA:4B:BC:A8:F4:5F:ED:0E:5C:21:4E:D9:9A:5B:8D:28:5C:6D:15
ValidityWed, 31 May 2023 00:00:00 GMT - Fri, 28 Jun 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/v1/uniifyapp.com/subscriber/config/widget/?guid=fa94175ece16e569a28db2d6a982f5a2&platform=sendinblue HTTP/1.1
Host: api.pushowl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://uniifyapp.com/
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:57:43 GMT
content-type: text/html; charset=utf-8
content-length: 0
server: gunicorn
vary: Origin
access-control-allow-origin: *
access-control-allow-headers: accept, accept-encoding, authorization, content-type, dnt, origin, user-agent, x-csrftoken, x-requested-with, x-pushowl-partner-key, partner-key
access-control-allow-methods: DELETE, GET, OPTIONS, PATCH, POST, PUT
access-control-max-age: 86400
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-main.js

104.22.25.131

200 OK

121 B

URL GET HTTP/2
embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-main.js
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
121 B (121 bytes)
Hash
3b41342f7e3be590563e8e3b5ff770c7
c9ca54d23ea78b320f080b76e22bb6b4e704d55f
ef04d89daeed55613a63a4af62c147ce86e4a7f22c8ce700dd6bdb11ab187e43

HTTP Headers

GET /_s/v4/app/65706adf2ac/js/twk-main.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:57:44 GMT
content-type: application/javascript
last-modified: Wed, 06 Dec 2023 12:38:18 GMT
etag: W/"da5bb1dc647470204df0e49f5afac2de"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 831669b7aec47129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/uploads/2022/11/8.png

188.114.97.1

200 OK

3.9 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/2022/11/8.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
PNG image data, 170 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
3.9 kB (3856 bytes)
Hash
dca2afdec94742aa838e5910e2bac0fe
551d4039f120a5508245154ff86e940d4debf2a4
c42feda1688803174d03676a9af8683862e9e4c06fad90c7865e93a7489b58f8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/11/8.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b; _ga_C5R0X7CB38=GS1.1.1701885468.1.0.1701885468.0.0.0; _ga=GA1.1.581063805.1701885468; _ga_EB0MPR1JXK=GS1.1.1701885468.1.0.1701885468.0.0.0; sib_cuid=7de98d0d-53a6-46f2-b190-09dd66e025e0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:43 GMT
content-type: image/png
content-length: 3856
last-modified: Thu, 10 Nov 2022 13:30:19 GMT
etag: "5a2069-f10-5ed1dc638d0c0"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zuuhZWAOEZxLgXxC7%2B%2BJ5QM3zQ7JtBBGoQZX%2BRqLlnZNYl3VRiI2Q%2Fgj%2BqUFE83QJlM6DpwHYxj8OwJxVPI%2Bz8DodfZlDWrzNktUImyPIckoTzRd3gEyRyJZMYMZYk2k"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 831669ad89c1b518-OSL
alt-svc: h3=":443"; ma=86400

uniifyapp.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js

188.114.97.1

200 OK

1.2 kB

URL GET HTTP/3
uniifyapp.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
HTML document, ASCII text, with very long lines (1271), with no line terminators
Size
1.2 kB (1239 bytes)
Hash
40d981045a7516cdadd00e8dccc9c58d
8b8d9a48c6b9d2fba596034ef5db3dd0f2f781c3
71c7d5fc630ff38080f71945be1e8b0c43140d8c25338056b752495e18739c0c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:40 GMT
content-type: application/javascript
last-modified: Tue, 28 Nov 2023 16:06:21 GMT
etag: W/"65660ffd-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DMMwuGdJD9ZSGJ1pjD%2Bas35B%2BieYO%2FRUvo03giuvNc9Dgz0%2BBvslwJBx84eqDtcYUTUsxXb3SdBz%2FCY4YOqF1vJX0rXq0atcDisRcpBo8qocGckF%2B0vqgqqwlG80eb0j"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 831669a0aa06b518-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Fri, 08 Dec 2023 17:57:40 GMT
cache-control: max-age=172800, public
content-encoding: gzip

uniifyapp.com/wp-content/themes/apptek/assets/js/ajax_add_to_cart.js?ver=1701885459

188.114.97.1

200 OK

1.5 kB

URL GET HTTP/3
uniifyapp.com/wp-content/themes/apptek/assets/js/ajax_add_to_cart.js?ver=1701885459
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (1694), with no line terminators
Size
1.5 kB (1488 bytes)
Hash
8eb5aecc8b872911e6b76a9511fc4dce
bfc0f8ae6fbd1d19e3c4ec766cdcd101e05b6d34
9a32b2881b25f317e72fc0757c8d86ac1eefdc06e4bb1684828b74b8337062ae

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/apptek/assets/js/ajax_add_to_cart.js?ver=1701885459 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Fri, 28 Oct 2022 12:12:23 GMT
etag: W/"5a1b51-5d0-5ec172b92d7c0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fpi7V%2Fg6D2iGVRxwTyANew5qe0w6yBx1ir%2BOcy3SR5ROiQZlJpuzwsK%2FZGU6Sy31TJen%2FQIc5AoHscH1NKPX0rLarBISF3TuJu8iJUQnsQnatKNxRE5azRtDZw8ibmt5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a0facab518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/themes/apptek/assets/css/bootstrap.min.css?ver=1.0.0

188.114.97.1

200 OK

164 kB

URL GET HTTP/3
uniifyapp.com/wp-content/themes/apptek/assets/css/bootstrap.min.css?ver=1.0.0
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type

Size
164 kB (163879 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/apptek/assets/css/bootstrap.min.css?ver=1.0.0 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:42 GMT
content-type: text/css
last-modified: Tue, 18 Oct 2022 10:46:20 GMT
etag: W/"5a1afb-28027-5eb4ccd6bf700-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Dbb9aaNm%2Fgd3JXMtUuWTN11UbOurLXPzJelybQrVztOIzhSS5S0nNgEZuVeEhyLrwaXfjXP5L7ext%2Bzac9l0dLSiAcSHYt4tH3dXslUuDHp6PG%2BaVRED9Eas3WAgRbMy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a5d95fb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

js.hs-banner.com/v2/44045558/banner.js

172.64.153.27

200 OK

67 kB

URL GET HTTP/2
js.hs-banner.com/v2/44045558/banner.js
IP
172.64.153.27:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2C:9C:DC:70:87:29:18:51:70:06:6E:2F:4B:4D:E0:23:1F:30:84:18
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65046)
Size
67 kB (67022 bytes)
Hash
3b93950d1aa58a0bac19ba033b5c9e30
eee129780fa83956aa50c1567224d54fb6afdcf7
a8b293de0ddc1fe6fd2621867e0f97d4000edc4a15caa31eefb99a5066339026

HTTP Headers

GET /v2/44045558/banner.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: 2NwBOYGUJ4NIm6Bp7z5ZsSB52rqG1ncqB6HuAc2G0n1bHmXF24JzgpuJMhZ96zo/gbx4V6bxlsE=
x-amz-request-id: D26A5JXSE6Z0DSKK
last-modified: Thu, 19 Oct 2023 01:29:09 GMT
etag: W/"3b93950d1aa58a0bac19ba033b5c9e30"
x-amz-server-side-encryption: AES256
cache-control: max-age=300,public
x-amz-version-id: .jVeoeP7ND8vs6K6n2jMbbJtHg.Sy6Ki
access-control-allow-origin: https://uniifyapp.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin, Accept-Encoding
expires: Wed, 06 Dec 2023 18:02:41 GMT
x-envoy-upstream-service-time: 56
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/analytics-js-proxy-td/envoy-proxy-fd6fb8679-tlmd8
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: bd74f33e-0ef2-4039-a026-570fe4feb8c5
x-request-id: bd74f33e-0ef2-4039-a026-570fe4feb8c5
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 831669a8380856ae-OSL
content-encoding: br
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/assets/images/attention-grabbers/51-r-br.svg

104.22.25.131

200 OK

3.1 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/assets/images/attention-grabbers/51-r-br.svg
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (3132), with no line terminators
Size
3.1 kB (3058 bytes)
Hash
1e91730b6a5b4beaae74262c11c8637e
e875bff7d9888be27719ccee201ae7ecb4e9c67b
91993108e9d0b01f325e7a1166b67921c49555a15c6bdafaa1c10f23f7b8e164

HTTP Headers

GET /_s/v4/assets/images/attention-grabbers/51-r-br.svg HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:45 GMT
content-type: image/svg+xml
last-modified: Sat, 22 May 2021 07:25:15 GMT
etag: W/"d316fd3fed8bee736394c9f9c02b3b03"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: MISS
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 716750
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 831669c10d7856c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Plus+Jakarta+Sans%3A500%7CPlus+Jakarta+Sans%3A700%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A500%7CPlus+Jakarta+Sans%3A700%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A700%7CPlus+Jakarta+Sans%3A700%7CPlus+Jakarta+Sans%3A700%7CPlus+Jakarta+Sans%3A700&subset=latin&display=fallback

142.250.74.106

200 OK

5.0 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Plus+Jakarta+Sans%3A500%7CPlus+Jakarta+Sans%3A700%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A500%7CPlus+Jakarta+Sans%3A700%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A700%7CPlus+Jakarta+Sans%3A700%7CPlus+Jakarta+Sans%3A700%7CPlus+Jakarta+Sans%3A700&subset=latin&display=fallback
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (5085), with no line terminators
Size
5.0 kB (4977 bytes)
Hash
835329af55e3052f1626ae7bbaca7099
6100dd4d1294963c6ae76382c2a59f46ba11379b
542522191dd046700ac170ed76719c630d765645d854400d8c1d178370028e69

HTTP Headers

GET /css?family=Plus+Jakarta+Sans%3A500%7CPlus+Jakarta+Sans%3A700%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A500%7CPlus+Jakarta+Sans%3A700%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A700%7CPlus+Jakarta+Sans%3A700%7CPlus+Jakarta+Sans%3A700%7CPlus+Jakarta+Sans%3A700&subset=latin&display=fallback HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 06 Dec 2023 17:57:43 GMT
date: Wed, 06 Dec 2023 17:57:43 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-runtime.js

104.22.25.131

200 OK

2.3 kB

URL GET HTTP/2
embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-runtime.js
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (2349), with no line terminators
Size
2.3 kB (2306 bytes)
Hash
d1e2657bfc7f8f8da9eae835c82e1ba6
d0cb62415818bd20690b2b7cd3c841d332b50583
52c3a9d1b442732dcd8306f1bee0fa317eaafc915872795b34cda849c2afdc44

HTTP Headers

GET /_s/v4/app/65706adf2ac/js/twk-runtime.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:57:44 GMT
content-type: application/javascript
last-modified: Wed, 06 Dec 2023 12:38:18 GMT
etag: W/"6ceae9a9b739d629086cf4d74c0bbd2b"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 831669b7beee7129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/uploads/2022/11/9.png

188.114.97.1

200 OK

3.1 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/2022/11/9.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
PNG image data, 170 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
3.1 kB (3088 bytes)
Hash
3a0cd3b429a5c9fc81fbd990a1930456
edaf64b806a3ef804727ebac8a65a0a10a5765c5
51515a94878dd8d42ec21bc0fdfab12d06ae2cb5925b2359067f9eaffd78b4c3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/11/9.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b; _ga_C5R0X7CB38=GS1.1.1701885468.1.0.1701885468.0.0.0; _ga=GA1.1.581063805.1701885468; _ga_EB0MPR1JXK=GS1.1.1701885468.1.0.1701885468.0.0.0; sib_cuid=7de98d0d-53a6-46f2-b190-09dd66e025e0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:42 GMT
content-type: image/png
content-length: 3088
last-modified: Thu, 10 Nov 2022 13:30:19 GMT
etag: "5a206b-c10-5ed1dc638d0c0"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5o6soDs10DZy1I%2BllRzBNIQSXzZnaJhIzB3pPT8062sr7%2FPtgl0vlZof8Ze3Sl5FF5%2BWmPUXYZMusAVIQRTFEmdQK3vUD%2Fgupld9Igz8f1Bv0rB1wePAOetoQ7xc7MHJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 831669ad99cbb518-OSL
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/vegas/vegas.min.css?ver=2.4.0

188.114.97.1

200 OK

9.5 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/vegas/vegas.min.css?ver=2.4.0
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (9505), with no line terminators
Size
9.5 kB (9503 bytes)
Hash
2000f454e7edf939bcd91af908d5d480
dd9d72c8063656da91e30954191a1b7b58277a8c
6578aea6a06c0402715d2207e08e0c69d886dcaca2bd91d5b3c45445618f164d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/vegas/vegas.min.css?ver=2.4.0 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:42 GMT
content-type: text/css
last-modified: Mon, 18 Sep 2023 16:27:25 GMT
etag: W/"4415cb-251f-605a49e1d38af-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xqi2mN35CbK60U2YT4qoJOxdXJd0t7rMneAQ3SqhX58yJBoCRpwCnHxWeeeXKFYCtGeiavS3w%2FpMCwUiY%2BshFPwuzDS0jRWy3C5BRo%2B9L3tJgrnNUqCAsatCBX2NHBXR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a5c948b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/uploads/elementor/css/post-1177.css?ver=1695054608

188.114.97.1

200 OK

117 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/elementor/css/post-1177.css?ver=1695054608
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (43311)
Size
117 kB (116914 bytes)
Hash
92d415585452b308b32e87cd30f80cda
6d20ad635f61e34655a520edb051c11a241bd10f
0fe9bdaa1108d160b9aa5b32541d008649595220f03b319cbc1a2931c10640bf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/post-1177.css?ver=1695054608 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:42 GMT
content-type: text/css
last-modified: Mon, 18 Sep 2023 16:30:08 GMT
etag: W/"5a000f-1c8b2-605a4a7cb495a-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mb9BJ7N3HG6AzR5LySUp7c59DSH9TfwyM1cxinZwPjpJVICHDlMBQtaeVlX62UXXw1ZKn%2B%2FgMgfUFmrZ8v0l34kHZ4mpd%2Bu5ARY2MDliAxHNCWkbln3MzwkkbFnXAJAX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a67a22b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/images/left-arrow-img.svg

188.114.97.1

200 OK

594 B

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/images/left-arrow-img.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (632), with no line terminators
Size
594 B (594 bytes)
Hash
d93516506647cfb20ad4220c107845e2
e887d8c1d2dcedab85bd2794491bb832675abe3b
b34585856241e13635e015e89c554cd05dfcad84664c3a8c5d24083b7d0a94e7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/radiantthemes-addons/assets/images/left-arrow-img.svg HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/css/rt-testimonial.css?ver=1701885459
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:42 GMT
content-type: image/svg+xml
last-modified: Tue, 08 Nov 2022 06:10:07 GMT
etag: W/"5a0490-252-5ecef6442edc0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DFdfNdJFymOm6eHpH41cFojvMK4rqAZ8JOrVS%2FFDIXfs8SJMXLZvqD7GCcuHyTcTnt0ibPZd17gMDUq5PFGD4h2Z8reLavDnZGhgPbqR2ULKukKoONgSInC5pSxg0S5y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a89c92b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/magnific.min.js?ver=1.1.0

188.114.97.1

200 OK

20 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/magnific.min.js?ver=1.1.0
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (19887), with no line terminators
Size
20 kB (19887 bytes)
Hash
d92d1d8e778aa3773e719bba09089942
ff26dd2b05f2e5993490968d17801d91ad0f9761
7586da6ec5a0e01eb5239aaac31dc3d411cae3090cce52a7e00efbda2f32c6bf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/magnific.min.js?ver=1.1.0 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:27:25 GMT
etag: W/"421a68-4daf-605a49e1d30df-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pIaaTadW%2BdGqzpfgocRcjM6Fp0T28dVDb3g935T9V9TmNBNHbM0YzZjC3qWJosXhNoHurxRWYZBspxEjpZtAdxtXmZmw76%2FBdLruqTRBHTEuHP6I5Zz0f%2B9X8uxJnAF2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a0da99b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-app.js

104.22.25.131

200 OK

151 B

URL GET HTTP/2
embed.tawk.to/_s/v4/app/65706adf2ac/js/twk-app.js
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
151 B (151 bytes)
Hash
04a9862af6efaf787bc8fb8e99ba6987
a57bb8f258eb1a60dc3b288a608ad8ef9fbecef3
ecc74c329a700e3e6ca29aed5ffe3c166cf39670c8b11573fa7f837f79a71b5c

HTTP Headers

GET /_s/v4/app/65706adf2ac/js/twk-app.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:57:44 GMT
content-type: application/javascript
last-modified: Wed, 06 Dec 2023 12:38:18 GMT
etag: W/"e736e189edb5d0d9d5b8e7f23dd9114a"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 831669b7ceef7129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

va.tawk.to/log-performance/v3

104.22.25.131

200 OK

0 B

URL OPTIONS HTTP/3
va.tawk.to/log-performance/v3
IP
104.22.25.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /log-performance/v3 HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://uniifyapp.com/
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:46 GMT
x-served-by: visitor-application-preemptive-n3l0
access-control-allow-origin: https://uniifyapp.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 831669c52afd56c6-OSL
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1

188.114.97.1

200 OK

88 kB

URL GET HTTP/3
uniifyapp.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (65447)
Size
88 kB (87553 bytes)
Hash
826eb77e86b02ab7724fe3d0141ff87c
79cd3587d565afe290076a8d36c31c305a573d18
cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Wed, 08 Nov 2023 05:23:24 GMT
etag: W/"543742-15601-6099d4947036e-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VfIIp845IvCCUlDCrk3jiWb%2B2xN6qlnh90q1ZFufPTZDpFqlvOrCJr9lF3m8vDYoswXaM9ZAAQZIwFiEe5nDPvcF2d1vqLInU0bVZMdbFUagqMlwo9tvjlS5encSVbu7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a0aa0fb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/mailin/js/mailin-front.js?ver=1695054488

188.114.97.1

200 OK

13 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/mailin/js/mailin-front.js?ver=1695054488
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type

Size
13 kB (13033 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/mailin/js/mailin-front.js?ver=1695054488 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:28:08 GMT
etag: W/"3e1f83-32e9-605a4a0a8fbe9-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HbdAoCWD7tWTTxrquQ5oofaheMKL28QXVeM3BYejBp%2BI6R7ErVAEBAyBOcYYwqgP60IJ6C5k2V1lD6NdWvqtF9SmaUwvFLYtat3knVJx27NOy3DY81QsQcWhxcXU0X%2Bc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a0ca6db518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8

188.114.97.1

200 OK

13 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
HTML document, ASCII text, with very long lines (12943), with no line terminators
Size
13 kB (12943 bytes)
Hash
5bc2b1fa970f9cecb3c30c0c92c98271
7c6bb87aaa24714b7b3b3c86dd932736a80270a9
1060091178cbd6c843b802f516f230f1a3a1e85f1afbd6ef84d80e5430ba457e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:41 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:26:34 GMT
etag: W/"3e2d35-328f-605a49b0e3afd-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LczHqZVIhJ%2BgSkb5LSbMYIIIKV9OKtSo4Qd4F%2BtlJFcy64yayJXaZX2%2Fk2EGTnCdZXM87XN%2BjzJP7XNYqv3KpuwcRLjZrVcLm6kKjjPUGMMhFljobiM65t3prbbW3yET"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669a0da9fb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6

188.114.97.1

200 OK

139 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (65280)
Size
139 kB (139153 bytes)
Hash
15bb2b8491fc7e84137d65f610e1685a
cd76b70a5426893e9c022b9a75c50a7c1348e2d0
b23f49f504faa32aac548b6662ffd64412f6738496fab8be38da46c5b7121804

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=bWFybGVuYS5rbGFzc2VuQGFlbS1jb3JwLmNvbQ%3D%3D&utm_campaign=Richa_Email_3&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=bkrpi2jop6a67jtj6mq1es5k3b; _ga_C5R0X7CB38=GS1.1.1701885468.1.0.1701885468.0.0.0; _ga=GA1.1.581063805.1701885468; _ga_EB0MPR1JXK=GS1.1.1701885468.1.0.1701885468.0.0.0; sib_cuid=7de98d0d-53a6-46f2-b190-09dd66e025e0; po_visitor=3GEO81iUudcH
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 17:57:43 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:27:08 GMT
etag: W/"400c97-21f91-605a49d16b037-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IArpDNN95M6Ts3x8AWuH9usV%2BjX27rgELjgZHphesr7TGYylVn7wMRA60yZvtH%2BT3e5VO4NYMEvlv9Z%2Bk%2FPoM5xw0tUnfvg3Fp7J%2FXcUfKTy473RTKVhNm7cZpLdweRf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 831669b09d5cb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

JavaScript (82)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash