Report - uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm

Report Overview

Visited public
2023-11-18 08:02:41
Tags
URL
uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Finishing URL
uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
IP / ASN
188.114.96.1
#13335 CLOUDFLARENET
Title
Home - Uniify

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

176

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
js.hscollectedforms.net	5697	2017-01-23	2017-03-02 11:33:31	2023-11-18 05:13:05	443 B	56 kB	104.17.90.154
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-11-18 05:31:11	1.9 kB	54 kB	142.250.74.42
va.tawk.to	8297	unknown	2017-01-30 05:20:46	2023-11-18 05:14:02	2.5 kB	6.8 kB	104.22.24.131
js.hsadspixel.net	3795	2017-04-21	2017-07-25 15:13:14	2023-11-18 05:13:05	399 B	7.7 kB	104.17.229.163
forms.hscollectedforms.net	unknown	2017-01-23	2023-03-02 14:31:09	2023-11-18 05:13:06	513 B	1.0 kB	104.17.90.154
ajax.googleapis.com	12905	2005-01-25	2013-08-16 11:51:31	2023-11-18 05:38:35	430 B	32 kB	142.250.74.42
forms.hsforms.com	5160	2013-09-18	2018-03-07 16:21:13	2023-11-18 05:09:02	481 B	1.0 kB	104.17.239.249
js.hs-scripts.com	2571	2016-07-11	2016-08-09 12:18:36	2023-11-18 05:13:05	438 B	3.5 kB	104.16.191.89
api.pushowl.com	31959	2016-05-01	2017-02-18 03:24:58	2023-11-17 16:38:05	1.2 kB	4.1 kB	34.228.109.199
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-11-18 05:34:39	2.7 kB	126 kB	216.58.207.227
vsa16.tawk.to	unknown	unknown	2020-03-11 12:46:29	2023-11-18 05:23:40	1.1 kB	417 B	172.67.38.66
js.hsleadflows.net	4609	2017-01-23	2017-02-22 11:43:00	2023-11-18 05:29:48	435 B	566 kB	104.18.124.12
api.hubapi.com	4102	2008-05-24	2012-06-25 20:13:07	2023-11-18 05:13:06	492 B	1.5 kB	104.17.203.204
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-11-18 05:31:22	1.3 kB	366 kB	142.250.74.168
uniifyapp.com	unknown	2023-01-08	2023-01-08 14:24:02	2023-10-25 06:58:03	60 kB	3.1 MB	188.114.96.1
cdn.jsdelivr.net	439	2012-05-16	2012-09-30 02:15:09	2023-11-18 05:09:15	428 B	42 kB	151.101.65.229
js.hs-banner.com	2426	2020-03-09	2020-03-26 18:45:21	2023-11-18 05:13:05	414 B	69 kB	104.18.34.229
in-automate.brevo.com	unknown	1999-09-10	2023-05-23 12:45:40	2023-11-18 05:27:18	1.8 kB	1.5 kB	104.18.38.216
cdn.pushowl.com	13437	2016-05-01	2017-10-23 12:59:06	2023-11-18 04:52:47	740 B	173 kB	143.204.55.44
sibautomation.com	26949	2017-01-20	2017-01-21 16:10:10	2023-11-18 05:27:17	443 B	4.0 kB	104.18.37.70
embed.tawk.to	8650	unknown	2014-03-19 22:03:49	2023-11-18 05:13:58	7.5 kB	601 kB	104.22.24.131

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-11-18 08:02:18	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-11-18 08:02:18	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-11-18 08:02:21	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-11-18 08:02:21	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-11-18 08:02:23	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-11-18 08:02:23	medium	Client IP	Internal IP	ET DNS Query for .to TLD

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed
2023-11-18	medium	uniifyapp.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (82)

	URL	From	Size	First Seen	Last Seen
	www.googletagmanager.com/gtag/js?id=G-EB0MPR1JXK&l=dataLayer&cx=c	ScriptElement	229 kB	2023-11-18	2023-11-18
Pretty URL www.googletagmanager.com/gtag/js?id=G-EB0MPR1JXK&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-18 09:02 Last Seen2023-11-18 09:02 Times Seen1 Hash fd0d0661c79c2441f9ec221612272c71 c861dafaa744d9ab76ba64499c56ac050b0fc40e 5b6fd89f93680dde1a1f81f1be87d9bb993816626d1afa94bfaede72f555c26d Loading...

	unknown	EventHandler	91 B	2023-04-10	2025-05-09
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-10 18:24 Last Seen2025-05-09 04:36 Times Seen696 Hash f5a5d3d406fd6a4519f87d5efb2a6e20 8e5cee7dd4e369ca33229cbe3a5f00fe575ad934 5b131c13eaecaf1914723140fd73be4bd8eb3d4fb5452666ab45b19a24b9685d Loading...

	uniifyapp.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1	ScriptElement	88 kB	2023-11-03	2025-05-11
Pretty URL uniifyapp.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 09:26 Last Seen2025-05-11 10:24 Times Seen92563 Hash 826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf Loading...

	uniifyapp.com/wp-content/themes/apptek/assets/js/swiper.min.js?ver=1700294535	ScriptElement	233 kB	2023-07-01	2025-03-05
Pretty URL uniifyapp.com/wp-content/themes/apptek/assets/js/swiper.min.js?ver=1700294535 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-01 06:40 Last Seen2025-03-05 16:14 Times Seen6 Hash 510a02eb96dd68d60ad581ec8ebada54 ee17aabecea28850029787a7581c78c770a2b410 5e6eaf05f99190d360ad0fc8d1dcdcccfc560a9acc620f974c63f169f1a53554 Loading...

	uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo	ScriptElement	3.3 kB	2024-08-20	2024-08-20
Pretty URL uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 18:57 Last Seen2024-08-20 18:57 Times Seen1 Hash 49709e03caf9df1ce9c2dd2f78df574f 7aa0380d5682968efedf7062442753098c9d5ed1 11c9faa840bcceb1d1212ed7f87c4603256f1da165c615bc80136b9484c3d4d2 Loading...

	embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-main.js	ScriptElement	121 B	2023-03-07	2025-05-11
Pretty URL embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-main.js IP 104.22.24.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 08:37 Times Seen30926 Hash da5bb1dc647470204df0e49f5afac2de f5cbf596ca5e4fe208e4c55af6e45b71f9febbe8 705186becc9e0a306a6b4867ae2768aa9dd3b8c12393d9f9c52029e9a6fcf31c Loading...

	embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-chunk-2d0b383d.js	ScriptElement	699 B	2023-10-20	2025-03-12
Pretty URL embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-chunk-2d0b383d.js IP 104.22.24.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-20 20:17 Last Seen2025-03-12 13:42 Times Seen14937 Hash 838903127a65ec440893b4945c40ca4a 827f3e5341f56fa4473d53b788af41ec6bf21b8b 89f08c4a66c9a737c6155b8313e87b36687fe65bfc9a1ba1783aeace487bcde3 Loading...

	js.hs-scripts.com/44045558.js?integration=WordPress&ver=10.2.5	ScriptElement	2.5 kB	2024-08-20	2024-08-20
Pretty URL js.hs-scripts.com/44045558.js?integration=WordPress&ver=10.2.5 IP 104.16.191.89 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 18:57 Last Seen2024-08-20 18:57 Times Seen1 Hash 0a16851d654052b60392cac400a6d795 256427a2193196026fd0ffc236c2a37f021d1c7f ba317c1c4e8b9394616cde06a241218fbd97d670fc24d3a18f27937c3b5d4e3a Loading...

	uniifyapp.com/wp-includes/js/wp-util.min.js?ver=bb270fba1988038f5680f75b7475565e	ScriptElement	1.4 kB	2023-03-08	2025-05-11
Pretty URL uniifyapp.com/wp-includes/js/wp-util.min.js?ver=bb270fba1988038f5680f75b7475565e IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26 Last Seen2025-05-11 06:53 Times Seen18760 Hash 19d386c9004e54941c1cc61d357efa5d 0a77594006c8d86fdcc0adbc2b9aecaef3869586 3bc6467a95cec8fa516c6f5f69e1301e37e16f9bb1046fe7756729249f901b95 Loading...

	cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js	ScriptElement	303 kB	2023-04-05	2025-05-10
Pretty URL cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js IP 151.101.65.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 07:49 Last Seen2025-05-10 22:37 Times Seen25884 Hash 7bb7aac0cac89a90304af1c72eb4f50d 729f6f8ca5787d89743b0ed7eb27fd76406bf985 f5c06455e539dcd889f7f05d709b5adc76c444099fe57f431365af2fc57e803b Loading...

	uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo	ScriptElement	296 B	2023-10-16	2024-08-21
Pretty URL uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-16 18:15 Last Seen2024-08-21 04:31 Times Seen4 Hash 1abd0bca65fa540c7ed47a060b6aed37 cab4ef0a42daf7c0019ff5913ae4581231b17e10 56d54dd1a214a694311a8da03da988a6e8efb0cb4c2dfc085823e9252599f3a4 Loading...

	uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/animation2.js?ver=1700294535	ScriptElement	7.5 kB	2023-07-01	2024-08-21
Pretty URL uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/animation2.js?ver=1700294535 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-01 06:40 Last Seen2024-08-21 04:31 Times Seen4 Hash bf4d900b6e6cb0de0731109872aa6df4 7665b3a1e83cb2ab4ae2182b6599499b906e6948 a2a456c41334c00d606d94cff7517c45af04893bf51f470af422c2e32c200f53 Loading...

	uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/testimonial.js?ver=1700294535	ScriptElement	10 kB	2023-07-01	2023-12-06
Pretty URL uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/testimonial.js?ver=1700294535 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-01 06:40 Last Seen2023-12-06 18:58 Times Seen3 Hash e2c6242c0612a5de6ac11e9672d3a636 587ed68b5bd63c3511b3eb98b4b9458c62a8362e 3abcb1a1e9055ae1dc1bb23ce1570574d0d2f6372056404c1373ab2df3622d1e Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js	ScriptElement	90 kB	2023-03-07	2025-05-11
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js IP 142.250.74.42 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 10:20 Times Seen205865 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/magnific.min.js?ver=1.1.0	ScriptElement	20 kB	2023-03-07	2025-05-10
Pretty URL uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/magnific.min.js?ver=1.1.0 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17 Last Seen2025-05-10 14:42 Times Seen552 Hash d92d1d8e778aa3773e719bba09089942 ff26dd2b05f2e5993490968d17801d91ad0f9761 7586da6ec5a0e01eb5239aaac31dc3d411cae3090cce52a7e00efbda2f32c6bf Loading...

	www.googletagmanager.com/gtag/js?id=GT-MBLHFQZ&l=dataLayer&cx=c	ScriptElement	214 kB	2023-11-18	2023-11-18
Pretty URL www.googletagmanager.com/gtag/js?id=GT-MBLHFQZ&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-18 09:02 Last Seen2023-11-18 09:02 Times Seen1 Hash 21c280642979bcbadf966e4c2137022e 49d3a1d98b2661abdc831edb93f029ea4f52a359 1623c2ac713efdf57f698ba2d3a3d3fae98cd69887ee561848824ad4bca98999 Loading...

	embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-chunk-9294da6c.js	ScriptElement	18 kB	2023-11-15	2024-10-06
Pretty URL embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-chunk-9294da6c.js IP 104.22.24.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-15 15:42 Last Seen2024-10-06 09:16 Times Seen2817 Hash 751a8c2fa870d0a6b7d3a4eb10f7319b 898d17e4c7d3f9fcadebbc8d2e47c071fe23697f fe18d700aa574127472795bb7369624cb90ca55f62d66b548eb7df53d2a46a74 Loading...

	uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo	ScriptElement	434 B	2024-08-20	2024-08-20
Pretty URL uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 18:57 Last Seen2024-08-20 18:57 Times Seen1 Hash 5b0cb2e3d8712efeee7320165d472552 76e0f952556aa8155cebc3bc0f730803ea0dd10b 68d07a2c8ca5d52f0c0694136fa051622ec854efcd958f351bbe3785efdf66ff Loading...

	uniifyapp.com/wp-content/plugins/jetpack-boost/jetpack_vendor/automattic/jetpack-lazy-images/dist/lazy-images.js?minify=false&ver=2e29137590434abf5fbe	ScriptElement	2.4 kB	2023-04-16	2025-03-08
Pretty URL uniifyapp.com/wp-content/plugins/jetpack-boost/jetpack_vendor/automattic/jetpack-lazy-images/dist/lazy-images.js?minify=false&ver=2e29137590434abf5fbe IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-16 17:25 Last Seen2025-03-08 13:42 Times Seen350 Hash dbd2c18733ff907be35d6ce7012cda58 ab99ef32c7c79407b2781a0b2d492fb9b00467f9 c8be1269a134d7df5a75a02b0fce70d409e6d6984554acef232eabdaa4c39d66 Loading...

	embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-chunk-f1565420.js	ScriptElement	11 kB	2023-11-15	2024-10-06
Pretty URL embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-chunk-f1565420.js IP 104.22.24.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-15 15:42 Last Seen2024-10-06 09:16 Times Seen1696 Hash e66b5b5406f1411c203d6a14b3268446 16d128903623ff99706f40ec7a35d85d44caff21 1221dfd515b54f32dc7d169eb8c5bbc892d85c310ef286aa9b80eeeef2cf9643 Loading...

	uniifyapp.com/wp-content/plugins/jetpack-boost/jetpack_vendor/automattic/jetpack-lazy-images/dist/intersection-observer.js?minify=false&ver=83ec8aa758f883d6da14	ScriptElement	9.0 kB	2023-03-07	2025-04-09
Pretty URL uniifyapp.com/wp-content/plugins/jetpack-boost/jetpack_vendor/automattic/jetpack-lazy-images/dist/intersection-observer.js?minify=false&ver=83ec8aa758f883d6da14 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-04-09 07:25 Times Seen708 Hash ed3b4417df0895e4cf8465d32b69adc6 a63d0bad2dcb235c62a843eb3e8506e8931cede0 9900b23f9f49af5f34387eb63a8673a563ab131c1e171cfaf14cf8b67a466b9d Loading...

	sibautomation.com/sa.js?plugin=wordpress&key=ehnbv4qti39900l4o230qvgy	ScriptElement	12 kB	2023-10-16	2024-08-21
Pretty URL sibautomation.com/sa.js?plugin=wordpress&key=ehnbv4qti39900l4o230qvgy IP 104.18.37.70 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-16 18:15 Last Seen2024-08-21 04:31 Times Seen4 Hash 332e2a15be7f6e15f4e6acd1d6f79796 ee8e518ad2fea4749629bb0eb16256326ef4aee2 85d63cf4ee36606aae67e39654ad73dfed0b8079a50af55aad4382fbb98ad80d Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-05-11
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-11 10:24 Times Seen341075 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/rt-animated-main.js?ver=1700294535	ScriptElement	7.8 kB	2023-10-25	2023-12-06
Pretty URL uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/rt-animated-main.js?ver=1700294535 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-25 06:58 Last Seen2023-12-06 18:58 Times Seen3 Hash 755479f410ea7b42c108624728a6ba09 38f8fb5023039e4b629b6188966f4a46e1b2bcb9 b73df8792c65c7ca823f9697ae6d79ca10449e4fe4ca164ebc6f9a8a6587a711 Loading...

	embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-app.js	ScriptElement	151 B	2023-03-07	2025-05-11
Pretty URL embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-app.js IP 104.22.24.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 08:37 Times Seen30965 Hash e736e189edb5d0d9d5b8e7f23dd9114a bcabee193f13756fa9154fc492fe420c47140343 13cf82e6f9d48221cd55f8b3c3d206f7bdb83f291034b478e484ccfef7d500dd Loading...

	uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo	ScriptElement	83 B	2023-03-07	2025-05-10
Pretty URL uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-05-10 18:27 Times Seen2731 Hash ed77093016336e2d00eae2411dac952a ae357a77ea0c6e959e9de4002845ad4b042dad16 37fa652c65354aabd9f4910c80da871371b2aabbd0fc3d72f34a61a37ccb5e58 Loading...

	js.hscollectedforms.net/collectedforms.js	ScriptElement	70 kB	2023-10-23	2024-08-21
Pretty URL js.hscollectedforms.net/collectedforms.js IP 104.17.90.154 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-23 15:17 Last Seen2024-08-21 03:44 Times Seen983 Hash 7864f8fd485be672e98358eb894b6fd7 b84449be266a31ea6e60a6d48538b220302d9aef 200cef31a4664eb38f1293062efc3d5acf8e769cc27242418b198a0aa4b20492 Loading...

	js.hsleadflows.net/leadflows.js	ScriptElement	564 kB	2023-10-25	2024-08-21
Pretty URL js.hsleadflows.net/leadflows.js IP 104.18.124.12 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-25 17:28 Last Seen2024-08-21 03:26 Times Seen601 Hash df7c200fc1e8a1a0c9d50df4fbec7e86 a80f64f169c9ae7639d3d48ae86c42024bd8af55 ee041148b4d2b4bfb2a9dbff837265a3484bb6ef80a18174ee45309237654c74 Loading...

	embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-chunk-2c776523.js	ScriptElement	7.9 kB	2023-10-27	2024-10-06
Pretty URL embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-chunk-2c776523.js IP 104.22.24.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-27 13:32 Last Seen2024-10-06 09:16 Times Seen8675 Hash 589bcaf3fa2f5394494ee99582c6bee6 eb7d46d5e3a7479ee94c63f0f7128f0f893e15e8 b089f5f65d03da61b611f98336194eb97c019203a97c3899a0d26cd28079b65e Loading...

	uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo	ScriptElement	818 B	2023-07-01	2024-08-21
Pretty URL uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-01 06:40 Last Seen2024-08-21 04:31 Times Seen4 Hash 76c3ff8623b72c4f2a255dfb4358b320 8d7be876bfbce1cbc0c1dcfa9c3382cbfa256235 563f7b842fd57730c6edc617968c1cb518548fe07ea00853a6890553398e5ae1 Loading...

	js.hs-banner.com/v2/44045558/banner.js	ScriptElement	67 kB	2023-10-25	2023-12-06
Pretty URL js.hs-banner.com/v2/44045558/banner.js IP 104.18.34.229 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-25 06:58 Last Seen2023-12-06 18:58 Times Seen3 Hash 3b93950d1aa58a0bac19ba033b5c9e30 eee129780fa83956aa50c1567224d54fb6afdcf7 a8b293de0ddc1fe6fd2621867e0f97d4000edc4a15caa31eefb99a5066339026 Loading...

	uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo	ScriptElement	93 B	2023-03-07	2025-05-01
Pretty URL uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03 Last Seen2025-05-01 17:01 Times Seen874 Hash c03c9cc1e344405e735bf829da247217 bc97ee9e7b1b2bfcab8c829f606123c3a3e8e43b 4ea908eff28d9dddcfa4076dc80b085635e0135606fbdca7695b8e346c3ed0ff Loading...

	uniifyapp.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=1.0	ScriptElement	15 kB	2023-03-07	2025-05-11
Pretty URL uniifyapp.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=1.0 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 05:53 Times Seen5764 Hash 7a5dea0a705cc2f4cd87dbaaa6666bc6 678bc6f750f13adb29bbc158eb0d9cd813b736fa 97cf1307c16a437b77b5f7f5c9bc0b985d0745a14be5a279019aca5a3432e264 Loading...

	uniifyapp.com/wp-content/themes/apptek/assets/js/apptek-custom2.js?ver=1700294535	ScriptElement	9.9 kB	2023-07-01	2024-08-21
Pretty URL uniifyapp.com/wp-content/themes/apptek/assets/js/apptek-custom2.js?ver=1700294535 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-01 06:40 Last Seen2024-08-21 04:31 Times Seen4 Hash 989bd0a333e7119361096dbe1e9b383c 29859c72318b67134973e8fe53950ec55abd0ae4 294dec3e89e3321d01a40eb5f8b3327c6f9f1e73b6792bf55fdd69af43255f56 Loading...

	uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/vegas/vegas.min.js?ver=2.4.0	ScriptElement	9.9 kB	2023-03-07	2025-05-10
Pretty URL uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/vegas/vegas.min.js?ver=2.4.0 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17 Last Seen2025-05-10 22:27 Times Seen691 Hash c72f588d7841d08871f6f57b4bef5822 70e2ebaf419db6a336494abaadb97a63092a4a8a f429d68fdbafa7014fe049bcae44fdec1e4cdd61c9de788b79c1b0bb57999188 Loading...

	uniifyapp.com/wp-content/plugins/elementor/assets/js/image-carousel.4455c6362492d9067512.bundle.min.js	ScriptElement	432 B	2023-09-15	2025-04-16
Pretty URL uniifyapp.com/wp-content/plugins/elementor/assets/js/image-carousel.4455c6362492d9067512.bundle.min.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-15 15:25 Last Seen2025-04-16 18:43 Times Seen57 Hash 63390d5c7f1ce665d77a6cc68516ba56 04840365c1fd19459688f0258f0f3cfc071e91bd c9fd1576192ea2aeda0210551c90428a38979138f62ed9c54d863b175f1fae18 Loading...

	uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo	ScriptElement	686 B	2023-07-01	2025-03-05
Pretty URL uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-01 06:40 Last Seen2025-03-05 16:14 Times Seen8 Hash 770880551312d5e385014d45666c9560 3a0c13edf7e033ba9785da4bbfbd95d9442be6e0 5f828822f60805c0ee11cf52b0bea2309e3ec23c30dcea56f6fbd14d00c4955b Loading...

	uniifyapp.com/wp-content/plugins/mailin/js/mailin-front.js?ver=1695054488	ScriptElement	13 kB	2023-06-26	2025-04-07
Pretty URL uniifyapp.com/wp-content/plugins/mailin/js/mailin-front.js?ver=1695054488 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-26 18:02 Last Seen2025-04-07 23:32 Times Seen110 Hash 5dbeb6379eb243ae0e9fe47a1d0da971 669822d5e72feda55e5b8eb1e970994a62661b75 eadaf86ef0ab256e7dacd897aeda9e6c65680d101ccd477c445204aef8d34fa5 Loading...

	uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo	ScriptElement	365 B	2023-07-01	2024-08-21
Pretty URL uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-01 06:40 Last Seen2024-08-21 04:31 Times Seen4 Hash 10d9be7baa9d452a4ee012244f9935ea 625a06fa047ba8a5396527372a9c7d2703a61e19 59c293a5b944ee0ae97901314e906faa316b0683843a5c279b05c15ad572cecb Loading...

	uniifyapp.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.16.3	ScriptElement	5.0 kB	2023-09-15	2025-04-29
Pretty URL uniifyapp.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.16.3 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-15 15:05 Last Seen2025-04-29 08:05 Times Seen372 Hash aa98805dbc21b79555011ded6e33a1bd c150db214b80f6739fc16e8bccd02187e9d542a6 672416f94b97a3b46527b6e624a7f6110addea8c498acb0b7f80ad255eebb8d3 Loading...

	uniifyapp.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6	ScriptElement	139 kB	2023-03-07	2025-05-11
Pretty URL uniifyapp.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 02:01 Times Seen7121 Hash 15bb2b8491fc7e84137d65f610e1685a cd76b70a5426893e9c022b9a75c50a7c1348e2d0 b23f49f504faa32aac548b6662ffd64412f6738496fab8be38da46c5b7121804 Loading...

	uniifyapp.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	ScriptElement	12 kB	2023-03-07	2025-05-11
Pretty URL uniifyapp.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 10:26 Times Seen24965 Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 Loading...

	uniifyapp.com/wp-content/themes/apptek/assets/js/menu-vendor.js?ver=1700294535	ScriptElement	262 kB	2023-03-14	2025-03-05
Pretty URL uniifyapp.com/wp-content/themes/apptek/assets/js/menu-vendor.js?ver=1700294535 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 11:32 Last Seen2025-03-05 16:14 Times Seen6 Hash c5bcfef25b470a226d94163a59d8cb80 318d28b832d03791f8d80758ce5565a8164c4d24 39594e1b177575e2de17bbac225fe00ad3d23a256891c0fc682c3100dfa3fbbd Loading...

	uniifyapp.com/wp-content/themes/apptek/assets/js/ajax_add_to_cart.js?ver=1700294535	ScriptElement	1.5 kB	2023-07-01	2024-08-21
Pretty URL uniifyapp.com/wp-content/themes/apptek/assets/js/ajax_add_to_cart.js?ver=1700294535 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-01 06:40 Last Seen2024-08-21 04:31 Times Seen4 Hash f96b4c19c4031aa7c9935ff760920c8f c77177aeea45ddca4b419e01b15503637b2671ac f82a8e00e14438dc6a4ceae6f3f6152c8a452aee7cc5915a349625d3164a93a8 Loading...

	uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/carousel.min.js?ver=1700294535	ScriptElement	54 kB	2023-07-01	2023-12-06
Pretty URL uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/carousel.min.js?ver=1700294535 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-01 06:40 Last Seen2023-12-06 18:58 Times Seen3 Hash 0b991a4e1dd356f931be86f323203ff0 663772820fc3f1d8da6a1ab59dca0312a3657f82 041df1d9efdace731a6b5956473567232e14be126d0bc80a2c1b49a706211ab1 Loading...

	uniifyapp.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js	ScriptElement	1.2 kB	2023-03-07	2025-05-11
Pretty URL uniifyapp.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 10:23 Times Seen68467 Hash 9e8f56e8e1806253ba01a95cfc3d392c a8af90d7482e1e99d03de6bf88fed2315c5dd728 2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8 Loading...

	uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo	ScriptElement	1.2 kB	2023-04-02	2025-05-11
Pretty URL uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-02 21:28 Last Seen2025-05-11 05:53 Times Seen1359 Hash 6b1752f9a3d4d72f3643c5986e74422d 2c67ebd7bb42f4f625fd314dea8abeae128ccae3 c8bbb9c65ca012a1b59810274baff7daeb73900d13f6616ca7d389647f5e5470 Loading...

	www.googletagmanager.com/gtag/js?id=UA-205366137-2	ScriptElement	190 kB	2023-11-18	2023-11-18
Pretty URL www.googletagmanager.com/gtag/js?id=UA-205366137-2 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-18 09:02 Last Seen2023-11-18 09:02 Times Seen1 Hash 47301e1c5a3aebc6dd074127df85b469 83ddc73374a716145d298d01da43d840abe56186 962e62987d4cf79ea1cfcfe8bfebee23baac4bd895934b128957567321a00277 Loading...

	uniifyapp.com/wp-content/themes/apptek/assets/js/bootstrap.min.js?ver=1700294535	ScriptElement	234 kB	2023-03-11	2025-03-05
Pretty URL uniifyapp.com/wp-content/themes/apptek/assets/js/bootstrap.min.js?ver=1700294535 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 13:36 Last Seen2025-03-05 16:14 Times Seen8 Hash d4f0fd7f138b89ad4c345909c6cb99af 0d43d182ab11040cbf3e631d21feec2c9fc5e3d4 6d143656f7d2fc6e9d5e2e1a327924903a432c04bdfbe0823048b2378cfb738b Loading...

	uniifyapp.com/wp-content/themes/apptek/assets/js/apptek-app.js?ver=1700294535	ScriptElement	15 kB	2023-07-01	2023-12-06
Pretty URL uniifyapp.com/wp-content/themes/apptek/assets/js/apptek-app.js?ver=1700294535 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-01 06:40 Last Seen2023-12-06 18:58 Times Seen4 Hash 7cf65cd7764edd82badd2c08982e7380 950e53a634c5d8419c0cea76b5a18bb115f69bc7 0b9c06d7c697ff088475c827db1be01bc262c35ad84caff6dcc462ae378b2b44 Loading...

	uniifyapp.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2	ScriptElement	21 kB	2023-04-01	2025-05-11
Pretty URL uniifyapp.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:26 Last Seen2025-05-11 10:26 Times Seen27224 Hash c4e68a0f3463c0bd3c39eab38815e881 0ce58644e9f3c5063a11453ff287c5ec096465a7 ca7dce2391845e8aec7da135f33fabd10f74eed28a532ac66fd01f761fcfb42f Loading...

	uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/eae.min.js?ver=1.12.5	ScriptElement	52 kB	2023-08-13	2025-04-17
Pretty URL uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/eae.min.js?ver=1.12.5 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-13 03:36 Last Seen2025-04-17 00:34 Times Seen90 Hash 956116be8a6bbfe31146567de3163e3c ed72b0ffd3de1cb7eee98542dbe1a45e05b1f9ee 9f81abea871019cc5b59148fa03b55628735b98b1f2dbc7b02560f60529944ee Loading...

	uniifyapp.com/wp-content/themes/apptek/assets/js/fancy-box.js?ver=1700294535	ScriptElement	60 kB	2023-03-11	2025-03-05
Pretty URL uniifyapp.com/wp-content/themes/apptek/assets/js/fancy-box.js?ver=1700294535 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 13:36 Last Seen2025-03-05 16:14 Times Seen8 Hash 504391f1d2223412ca862bd4d50c96fc 67e549aca1c2fe6761956d57ef7541239faaf317 d0409bd58637ffdfa8f7de31d2db517f7126d6e1ab1aa302a52c74c2feb0d60f Loading...

	uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo	ScriptElement	323 B	2023-03-07	2025-05-09
Pretty URL uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:27 Last Seen2025-05-09 04:36 Times Seen653 Hash 5e76fb662ec9622976e543f230605e61 1a267bfafab15016f552705f48e45413c59d60fd 803239b347de8c4b93e1c1a944d6d59b734e79bb12903cf95737a9e34fff3f3b Loading...

	uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo	ScriptElement	466 B	2024-08-20	2024-08-20
Pretty URL uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 18:57 Last Seen2024-08-20 18:57 Times Seen1 Hash d614b0c6aea3c3b1d93190d6fa831327 136148e4553a48d506d59f3ade865510b7332493 9484fe371ab7396f9bc8d0c10a510713c69113d0fc081403678672ac9f141789 Loading...

	uniifyapp.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8	ScriptElement	13 kB	2023-03-29	2025-05-10
Pretty URL uniifyapp.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 21:17 Last Seen2025-05-10 22:52 Times Seen12562 Hash 5bc2b1fa970f9cecb3c30c0c92c98271 7c6bb87aaa24714b7b3b3c86dd932736a80270a9 1060091178cbd6c843b802f516f230f1a3a1e85f1afbd6ef84d80e5430ba457e Loading...

	uniifyapp.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js	ScriptElement	1.4 kB	2023-09-15	2025-04-16
Pretty URL uniifyapp.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-15 15:25 Last Seen2025-04-16 18:43 Times Seen278 Hash cd239b47507a8c8ccb597ae1c031ca51 47c8d93160c57bdf24efb56dbc9061068ac67f20 b7efbd371ce5321aba694b02a0e88b012e8ca8a3c3f0150b578d80ca10706114 Loading...

	embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-chunk-48f3b594.js	ScriptElement	19 kB	2023-11-15	2024-10-06
Pretty URL embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-chunk-48f3b594.js IP 104.22.24.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-15 15:42 Last Seen2024-10-06 09:16 Times Seen2774 Hash 47db95af2c62c97e1a27f8588673834d 649bc52740e10b8e4b4f6f81bf35411b3627935e 95e02c2271f74519b9f70eb8dfcad4735bcd7ac485b0bfcf953fdc246bde4c86 Loading...

	uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo	ScriptElement	101 B	2023-07-01	2024-08-21
Pretty URL uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-01 06:40 Last Seen2024-08-21 04:31 Times Seen4 Hash 725fc7e6158d854e9125e4b1d8f206ce 416cbb8cff8bf18f6cb188febfbb6bc46b87a1ff 8a598088445a3f957283f7c2bf5c4902301a24195440a2cbc15dc1e6cd1ff4c3 Loading...

	uniifyapp.com/wp-content/themes/apptek/assets/js/sweetalert.min.js?ver=1700294535	ScriptElement	41 kB	2023-03-07	2025-05-11
Pretty URL uniifyapp.com/wp-content/themes/apptek/assets/js/sweetalert.min.js?ver=1700294535 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-05-11 06:10 Times Seen4383 Hash f3b8ce97ff6ce324da6232da353adf40 2a3daabc70232c6350ab48d32605dc4a6ac1f1fa 2ac46ebee46d515be86deeba385b4e41f8cff160364b362c9a6e153df327c66b Loading...

	uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/anime.2.0.2.min.js?ver=1700294535	ScriptElement	11 kB	2023-03-08	2025-05-10
Pretty URL uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/anime.2.0.2.min.js?ver=1700294535 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:00 Last Seen2025-05-10 19:05 Times Seen71 Hash f258ee6f938947e043c7e0984cd7e2b2 7c9416c1b444773b2d82e797131d6047364645a3 ef1b91cc56c369dcc8fd9ee30bb2aa9745075cfc9f594b2ac58edb1600779128 Loading...

	uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo	ScriptElement	97 B	2023-09-14	2025-03-19
Pretty URL uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-14 00:37 Last Seen2025-03-19 15:06 Times Seen91 Hash 907dddf00dfafb075dc383e63501c42b bc624d0fd06f56bc234908b33443d3fbb87fb4d3 b8a768e3fb10a15a082ea585b963cd78ecf92b18a609aa474f431c0e13baa3d5 Loading...

	embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-chunk-vendors.js	ScriptElement	217 kB	2023-11-15	2024-10-06
Pretty URL embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-chunk-vendors.js IP 104.22.24.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-15 15:42 Last Seen2024-10-06 09:16 Times Seen8406 Hash 86b32a04921a039ace69980bacd1b639 ca9a6e342590d510a0cf480c4131eb420ba5b410 fcd1fa4d2007137da13dd581c678acfda42358cbdbda0f0204874fbe2e2c4663 Loading...

	js.hsadspixel.net/fb.js	ScriptElement	6.2 kB	2023-10-27	2024-08-20
Pretty URL js.hsadspixel.net/fb.js IP 104.17.229.163 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-27 16:08 Last Seen2024-08-20 22:12 Times Seen655 Hash 14edbc97b72939e54b0993394190ecf8 f5faa7eff14ea6083fb78da6b0a502e06af06738 2148aae183c99fd22de0fa5ac66943716f59908dc935b3b3ca7f02cfdeca17f4 Loading...

	embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-runtime.js	ScriptElement	2.3 kB	2023-11-15	2024-10-06
Pretty URL embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-runtime.js IP 104.22.24.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-15 15:42 Last Seen2024-10-06 09:16 Times Seen3427 Hash 2369bd11bd41e47e53691438c8e45c5b fc893f7b8e0a69e4a46d95cb79d88b9e549065e7 ccd99011422a5bbbb1f6965cd19ff9f76e435e5bea6dd84a85767392e03ea42d Loading...

	embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-vendor.js	ScriptElement	83 kB	2023-06-02	2025-03-12
Pretty URL embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-vendor.js IP 104.22.24.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-02 11:09 Last Seen2025-03-12 13:42 Times Seen23154 Hash ce3014b09c6dfbd6f92bc585fd840580 d17abb8d652929260df6a153814560dd5af54424 916c13b184fbc42c59463a47bf90611461bec9e17a10a37def3c751ade00dced Loading...

	uniifyapp.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.16.3	ScriptElement	59 kB	2023-09-15	2025-04-29
Pretty URL uniifyapp.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.16.3 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-15 15:25 Last Seen2025-04-29 08:05 Times Seen361 Hash 1558ab61bab790ac5a634d0bf9b03780 2aa94dff810eb1927d7b224c0760a04435006d5b 1b2661621514d161467c7fdbe8d8c053b6377c57a7929eca9bea34c4e1bed9c6 Loading...

	uniifyapp.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.16.3	ScriptElement	40 kB	2023-09-15	2025-04-29
Pretty URL uniifyapp.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.16.3 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-15 15:05 Last Seen2025-04-29 08:05 Times Seen371 Hash e2a3fb1470104bd64d98e8245c6de817 0845f9f5eeda970595c9d3f22c5e104c9c761960 b9e240e7c455e9415ddcebc9ebd5c1b37350abef90c0a7d7b6a57423850250f7 Loading...

	uniifyapp.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8	ScriptElement	11 kB	2023-08-06	2025-05-07
Pretty URL uniifyapp.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-06 14:15 Last Seen2025-05-07 10:06 Times Seen7001 Hash 6ce86c3105139cb3c80913e6a3696a96 c55c7be10b31a773c7c9f6f393f382b89c318db4 5fe46d2da01452067736578431f6c6e8116a24e616f58c72d9d81fdb2c7c9569 Loading...

	embed.tawk.to/63b90e9f47425128790c21d7/1gm5e28ep	ScriptElement	2.1 kB	2023-11-18	2023-11-18
Pretty URL embed.tawk.to/63b90e9f47425128790c21d7/1gm5e28ep IP 104.22.24.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-18 09:02 Last Seen2023-11-18 09:02 Times Seen1 Hash 42de7412327b0ad2593a34e7bc75f864 6e482294e5cd179c953fc864bb010259640ba00f 7596535cf875293e38893db4d67e50c18f3c831620f8e1a4c38da1f996f5dcf0 Loading...

	uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo	ScriptElement	70 B	2023-03-07	2025-05-11
Pretty URL uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:07 Last Seen2025-05-11 06:53 Times Seen7111 Hash 4ff152a840e29705f2933718a2571bc3 6c7ed239bcd74ab7a0ea03b3dd4ab74ffceaff49 e426295764322c0b4d881b5da28c2591e9ff651fc07636da1e2979a62a2f349c Loading...

	uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo	ScriptElement	118 B	2023-03-07	2025-02-06
Pretty URL uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03 Last Seen2025-02-06 17:56 Times Seen201 Hash ae0a4f2589640909a821cc2fe098ae57 4bae741ed8fc79ae64135a8b9a525d0d18839716 aee622cdb9401ee1f8e168ad158bb16c523eed9ba013345efc2b7a87b00cba50 Loading...

	embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-chunk-common.js	ScriptElement	220 kB	2023-11-15	2024-10-06
Pretty URL embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-chunk-common.js IP 104.22.24.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-15 15:42 Last Seen2024-10-06 09:16 Times Seen3421 Hash 72cdc9849868f49ab20a7a4a581454f9 2e97046099acc6080540d00cfa7b164d8174ec39 0c5763be1c358cddc8cf28c7cd47453f683dc65d73ea724e19c85effdb0e2e56 Loading...

	uniifyapp.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1	ScriptElement	14 kB	2023-05-09	2025-05-11
Pretty URL uniifyapp.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 19:21 Last Seen2025-05-11 10:24 Times Seen106195 Hash 9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89 Loading...

	uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/animated-main.min.js?ver=1.0	ScriptElement	2.3 kB	2023-08-13	2025-05-10
Pretty URL uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/animated-main.min.js?ver=1.0 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-13 05:35 Last Seen2025-05-10 14:42 Times Seen386 Hash 12619efa105d916b7ea8f4e232d5b1c9 f7b45b315fc4a1d28a26737164054c623271ef79 0e8d938149cb71defe5c209b6a89265fb2c8f88fd12b8fc6679c43b6586ccbd4 Loading...

	uniifyapp.com/wp-includes/js/underscore.min.js?ver=1.13.4	ScriptElement	19 kB	2023-03-08	2025-05-10
Pretty URL uniifyapp.com/wp-includes/js/underscore.min.js?ver=1.13.4 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26 Last Seen2025-05-10 23:09 Times Seen20826 Hash f88d5720bb454ed5d204cbdb56901f6b f1952292fde4b15936e9aac16b2b9896684db95b 726b820e44f6ab90ad991d30a4bf26d3a5d71493cbcd1fb1efd0d14e89b9df2a Loading...

	uniifyapp.com/sandbox%20eval%20code		147 B	2023-04-11	2025-05-11
Pretty URL uniifyapp.com/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-11 10:24 Times Seen341877 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	embed.tawk.to/_s/v4/app/6549ac0173e/languages/en.js	ScriptElement	17 kB	2023-10-31	2025-03-12
Pretty URL embed.tawk.to/_s/v4/app/6549ac0173e/languages/en.js IP 104.22.24.131 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-31 10:48 Last Seen2025-03-12 13:42 Times Seen11347 Hash 7f37a030886ec7fce1d065ec482789ee 661ad608ac1513e2ccdec4cd55eb552a8604c8f6 75b20e74e3effa00e4b62b9da6df7d7542d91cb4b50078b8365112d556a73a7e Loading...

	uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo	ScriptElement	2.4 kB	2023-10-25	2024-08-21
Pretty URL uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-25 06:58 Last Seen2024-08-21 03:30 Times Seen3 Hash bc935e9df1252ed102a6e05b12d526b5 032e47b60930ed700ad55acc30d6b49be81c4ae8 325e409a5769eabe0a077b363cdac719bf93eb80826d9bc62aba926edb893264 Loading...

	uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/particles.min.js?ver=2.0.0	ScriptElement	23 kB	2023-08-13	2025-05-10
Pretty URL uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/particles.min.js?ver=2.0.0 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-13 05:35 Last Seen2025-05-10 14:42 Times Seen385 Hash c9898f4218ad8a464141550c2ec72225 592a3ac90f7cafbc30082584b5e132365bd48f23 71a49270bfb8077f783c2530b1c5bf2335a100a2419996d2f7d1c2ac19dd6239 Loading...

	uniifyapp.com/wp-content/themes/apptek/assets/js/jquery.sidr.min.js?ver=1700294535	ScriptElement	6.9 kB	2023-03-09	2025-05-08
Pretty URL uniifyapp.com/wp-content/themes/apptek/assets/js/jquery.sidr.min.js?ver=1700294535 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 02:25 Last Seen2025-05-08 04:21 Times Seen27 Hash 9d40b53ff4c70a5a092c8d710f6c5648 5b08da40a32c5384a9c0bd9bfb6ce7191c8ee294 5035278da8eadf194e797122bfce35812235ca5bc6c271aa93cbaf5dfdd4c538 Loading...

	cdn.pushowl.com/latest/sdks/pushowl-sib.js?plugin=wordpress&environment=production&platform=sendinblue&id=160421&name=Uniify&subdomain=uniifyapp.com&logo=https%3A%2F%2Fimg.mailinblue.com%2F3929435%2Fimages%2Fcontent_library%2Foriginal%2F63fca337dd35c87c8e6f3f5d.png&guid=fa94175ece16e569a28db2d6a982f5a2&default=true&visitor_id=062a1de0-e731-4d5b-9223-f45d0bb38971	ScriptElement	172 kB	2024-08-20	2024-08-20
Pretty URL cdn.pushowl.com/latest/sdks/pushowl-sib.js?plugin=wordpress&environment=production&platform=sendinblue&id=160421&name=Uniify&subdomain=uniifyapp.com&logo=https%3A%2F%2Fimg.mailinblue.com%2F3929435%2Fimages%2Fcontent_library%2Foriginal%2F63fca337dd35c87c8e6f3f5d.png&guid=fa94175ece16e569a28db2d6a982f5a2&default=true&visitor_id=062a1de0-e731-4d5b-9223-f45d0bb38971 IP 143.204.55.44 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 18:57 Last Seen2024-08-20 18:57 Times Seen1 Hash 2c949555eede4081bfc955b393bf1b6d eb24adb0f84a583af82fcdeacbd71fadeba8e648 5402fcb90e30140927b66253eb594aa0dae1c1f98a2eb937505e8c2fb21339ba Loading...

HTTP Transactions (138)

URL IP Response Size

www.googletagmanager.com/gtag/js?id=UA-205366137-2

142.250.74.168

200 OK

69 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-205366137-2
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (4179)
Size
69 kB (68714 bytes)
Hash
47301e1c5a3aebc6dd074127df85b469
83ddc73374a716145d298d01da43d840abe56186
962e62987d4cf79ea1cfcfe8bfebee23baac4bd895934b128957567321a00277

HTTP Headers

GET /gtag/js?id=UA-205366137-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 18 Nov 2023 08:02:16 GMT
expires: Sat, 18 Nov 2023 08:02:16 GMT
cache-control: private, max-age=900
last-modified: Sat, 18 Nov 2023 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 68714
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js

142.250.74.42

200 OK

31 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js
IP
142.250.74.42:443
ASN
#15169 GOOGLE

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (65447)
Size
31 kB (31017 bytes)
Hash
8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e

HTTP Headers

GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31017
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Nov 2023 05:00:23 GMT
expires: Fri, 15 Nov 2024 05:00:23 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Wed, 10 Mar 2021 14:28:09 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 183713
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/uploads/2022/08/Uniify_Full_Logo_Purple_NoBox.png

188.114.96.1

200 OK

8.3 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/2022/08/Uniify_Full_Logo_Purple_NoBox.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
PNG image data, 140 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
8.3 kB (8340 bytes)
Hash
189f285829054f6259e2c9d183938b28
36f13380b283e0dcfd407ce928da0681b76a632a
bbc77fd8099160ca7500cd0749419c86232f3cd2f52a8fe39baab874e7099f2d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/08/Uniify_Full_Logo_Purple_NoBox.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:16 GMT
content-type: image/png
content-length: 8340
last-modified: Thu, 10 Nov 2022 13:12:13 GMT
etag: "5a1c40-2094-5ed1d857dc540"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KsG7xNN4KJUFpvG1idze26MVZ55DF9mdlJn8EqFNBoE%2FovToo3nZhI3nVuIAGHUj0xX%2BTSGLsAra6H1CB55QN4CbcS1biH14KwAUxBrehSP3%2BuzjwAGiidwiuWDIM0hD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 827eb0b339fe56be-OSL
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/gtag/js?id=G-EB0MPR1JXK&l=dataLayer&cx=c

142.250.74.168

200 OK

81 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-EB0MPR1JXK&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (5955)
Size
81 kB (81012 bytes)
Hash
fd0d0661c79c2441f9ec221612272c71
c861dafaa744d9ab76ba64499c56ac050b0fc40e
5b6fd89f93680dde1a1f81f1be87d9bb993816626d1afa94bfaede72f555c26d

HTTP Headers

GET /gtag/js?id=G-EB0MPR1JXK&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 18 Nov 2023 08:02:17 GMT
expires: Sat, 18 Nov 2023 08:02:17 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 81012
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

uniifyapp.com/wp-includes/css/dist/block-library/style.min.css?ver=bb270fba1988038f5680f75b7475565e

188.114.96.1

200 OK

92 kB

URL GET HTTP/3
uniifyapp.com/wp-includes/css/dist/block-library/style.min.css?ver=bb270fba1988038f5680f75b7475565e
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (57084)
Size
92 kB (91780 bytes)
Hash
99ab466e0866c823ae5db517d59cebd1
5595a586cbd42b31377681b9d35293278d75d336
698b89c0da3d319754d6a837b5e6d4e6a42dc402d9ffd7559b8c4cb29c644340

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=bb270fba1988038f5680f75b7475565e HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: text/css
last-modified: Wed, 08 Nov 2023 05:23:21 GMT
etag: W/"40359a-1add3-6099d492229a2-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wbaMPkBKvkFqdOzDy04L92kQYpikM3pqIAD9VERKwfpydHCfwu9g29pKcZGaLPhn3P4Yuy0ieXBYVLOrChqu1BFBxKO2XxoKuUkZ1AYnzMKV%2FApfvUf%2Fn8KKiyOZB%2Fh5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b89daa56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/themes/apptek/assets/js/menu-vendor.js?ver=1700294535

188.114.96.1

200 OK

91 kB

URL GET HTTP/3
uniifyapp.com/wp-content/themes/apptek/assets/js/menu-vendor.js?ver=1700294535
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
91 kB (90743 bytes)
Hash
c5bcfef25b470a226d94163a59d8cb80
318d28b832d03791f8d80758ce5565a8164c4d24
39594e1b177575e2de17bbac225fe00ad3d23a256891c0fc682c3100dfa3fbbd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/apptek/assets/js/menu-vendor.js?ver=1700294535 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 10:46:20 GMT
etag: W/"5a1b5e-3fe19-5eb4ccd6bf700-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SElrXJckijee4tFzj8TVuFEFX0TKbXkeYyH%2BFko8dvHtceg%2FtsDsiRZsNRI9%2BwYh1avNugRB0ZbW8A8qC6%2BEzpfxXT8amqzVspzVZlcXy1pXxBwnu0QX%2ByIHi%2FhaQfMX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b38a5c56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sibautomation.com/sa.js?plugin=wordpress&key=ehnbv4qti39900l4o230qvgy

104.18.37.70

200 OK

3.6 kB

URL GET HTTP/2
sibautomation.com/sa.js?plugin=wordpress&key=ehnbv4qti39900l4o230qvgy
IP
104.18.37.70:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE6:DD:AC:85:7E:4E:D8:D7:A9:B8:1C:2D:DE:3C:D9:47:0C:64:0F:CD
ValidityWed, 10 May 2023 00:00:00 GMT - Thu, 09 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (353)
Size
3.6 kB (3590 bytes)
Hash
332e2a15be7f6e15f4e6acd1d6f79796
ee8e518ad2fea4749629bb0eb16256326ef4aee2
85d63cf4ee36606aae67e39654ad73dfed0b8079a50af55aad4382fbb98ad80d

HTTP Headers

GET /sa.js?plugin=wordpress&key=ehnbv4qti39900l4o230qvgy HTTP/1.1
Host: sibautomation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: text/javascript; charset=utf-8
x-powered-by: Sails <sailsjs.com>
etag: W/"2f56-7o5RitL+pHSWKbsOsWJWMm70ruI"
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
cf-cache-status: MISS
expires: Sat, 18 Nov 2023 08:03:17 GMT
cache-control: public, max-age=60
server: cloudflare
cf-ray: 827eb0ba2c5456b4-OSL
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/themes/apptek/assets/css/apptek-custom.css?ver=1.0.0

188.114.96.1

200 OK

9.1 kB

URL GET HTTP/3
uniifyapp.com/wp-content/themes/apptek/assets/css/apptek-custom.css?ver=1.0.0
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text
Size
9.1 kB (9115 bytes)
Hash
4cf96e1c612a1ea3459f22c4ba4f513c
63c41f6a96ce666b5d633d4f04fe31c4e23f6886
3baf285c4d6747fe851fe8ace1e747c4c65de19b67bd62c8c04cbb3df9f94182

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/apptek/assets/css/apptek-custom.css?ver=1.0.0 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: text/css
last-modified: Wed, 04 Jan 2023 10:36:38 GMT
etag: W/"5a1af7-d625-5f16dc25a9980-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=viz%2FVIzGmOJKIttZalpUrPAMw5anCTAxFgtsfVS4EWh8J9Vc9sN8N1Rc%2Bii%2BSyErQDHv7jYFImSBvhiOgLIqtbf3ZK6sOQIEJ34ID0jJIqOcl1xzJ6KU8xzY5uHCPbjj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b86d8356be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/uploads/elementor/css/custom-frontend-lite.min.css?ver=1695054607

188.114.96.1

200 OK

18 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/elementor/css/custom-frontend-lite.min.css?ver=1695054607
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
18 kB (18196 bytes)
Hash
4fe4102ecba705e759bff7760db56f6b
d7f043abc4c9b3095f392a3a48fa2e2db503fb68
d41e741d4211c22a29f45d747c1345590d485e6448f653e2adfa1824447df04a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/custom-frontend-lite.min.css?ver=1695054607 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: text/css
last-modified: Mon, 18 Sep 2023 16:30:07 GMT
etag: W/"5a000c-1ca4c-605a4a7bfc02a-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=h5xMHRUJGCAIUlq0sBCI8T0rl9jR0rg8EiJFCYHQCKeNkhtUQs0yhbkp82tCjO%2B%2FRo18oN%2BVsrmpHeoiwrZadgF7ogvTJ53DRJz4wMDTrbP3sPWX49CT3Z7rhoumLbQo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b88d9f56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo

188.114.96.1

200 OK

94 kB

URL User Request GET HTTP/2
uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (54713)
Size
94 kB (94148 bytes)
Hash
31f222126e6666328d9ec4417bc523e3
5117b7eb4cd485ff458ae582bf0454e404203e4d
c4c2a1104845aa3f7fbfe621f1bbe97918f67bdbe7156ff472ccbb5392a6b799

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 18 Nov 2023 08:02:15 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.30
link: <https://uniifyapp.com/wp-json/>; rel="https://api.w.org/", <https://uniifyapp.com/wp-json/wp/v2/pages/1177>; rel="alternate"; type="application/json", <https://uniifyapp.com/>; rel=shortlink
server-timing: wp-load-alloptions-query;dur=11.54, wp-before-template;dur=216.94
set-cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10; path=/; secure; HttpOnly
vary: Accept-Encoding,User-Agent
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BAovc%2FNQZIbh0gr9XTtQegEY2caJElm5MtXbeR9whpJHtqYULo7gLNDHvWUSKKj55C4Iz24xsitGglLTFpwMVi7WIZpIpIWjnBmmdbK35T4lZRaYLndkd8XYAk0%2FW6WZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0a80ea97130-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

api.pushowl.com/api/v1/uniifyapp.com/subscriber/config/widget/?guid=fa94175ece16e569a28db2d6a982f5a2&platform=sendinblue

34.228.109.199

200 OK

0 B

URL OPTIONS HTTP/2
api.pushowl.com/api/v1/uniifyapp.com/subscriber/config/widget/?guid=fa94175ece16e569a28db2d6a982f5a2&platform=sendinblue
IP
34.228.109.199:443
ASN
#14618 AMAZON-AES

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerAmazon
Subjectpushowl.com
FingerprintC6:AA:4B:BC:A8:F4:5F:ED:0E:5C:21:4E:D9:9A:5B:8D:28:5C:6D:15
ValidityWed, 31 May 2023 00:00:00 GMT - Fri, 28 Jun 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/v1/uniifyapp.com/subscriber/config/widget/?guid=fa94175ece16e569a28db2d6a982f5a2&platform=sendinblue HTTP/1.1
Host: api.pushowl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://uniifyapp.com/
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 18 Nov 2023 08:02:18 GMT
content-type: text/html; charset=utf-8
content-length: 0
server: gunicorn
vary: Origin
access-control-allow-origin: *
access-control-allow-headers: accept, accept-encoding, authorization, content-type, dnt, origin, user-agent, x-csrftoken, x-requested-with, x-pushowl-partner-key, partner-key
access-control-allow-methods: DELETE, GET, OPTIONS, PATCH, POST, PUT
access-control-max-age: 86400
X-Firefox-Spdy: h2

api.pushowl.com/api/v1/uniifyapp.com/subscriber/config/widget/?guid=fa94175ece16e569a28db2d6a982f5a2&platform=sendinblue

34.228.109.199

200 OK

3.3 kB

URL OPTIONS HTTP/2
api.pushowl.com/api/v1/uniifyapp.com/subscriber/config/widget/?guid=fa94175ece16e569a28db2d6a982f5a2&platform=sendinblue
IP
34.228.109.199:443
ASN
#14618 AMAZON-AES

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerAmazon
Subjectpushowl.com
FingerprintC6:AA:4B:BC:A8:F4:5F:ED:0E:5C:21:4E:D9:9A:5B:8D:28:5C:6D:15
ValidityWed, 31 May 2023 00:00:00 GMT - Fri, 28 Jun 2024 23:59:59 GMT

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (3251), with no line terminators
Size
3.3 kB (3266 bytes)
Hash
5a35cc7ad2149c53845611ea2ea7e597
a7e6257e2ef1d362c5d1aea7495b41492d2a2bdc
72ec077fbb9c0f1d12958ba3d3cca7bae8b8a1acb0557d67fa65bdc913f69ec7

HTTP Headers

GET /api/v1/uniifyapp.com/subscriber/config/widget/?guid=fa94175ece16e569a28db2d6a982f5a2&platform=sendinblue HTTP/1.1
Host: api.pushowl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 18 Nov 2023 08:02:19 GMT
content-type: application/json
content-length: 3266
server: gunicorn
allow: GET, HEAD, OPTIONS
x-frame-options: DENY
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: same-origin
vary: Origin
access-control-allow-origin: *
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/uploads/elementor/css/custom-widget-icon-list.min.css?ver=1695054609

188.114.96.1

200 OK

112 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/elementor/css/custom-widget-icon-list.min.css?ver=1695054609
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (9896), with no line terminators
Size
112 kB (111515 bytes)
Hash
bd20390e7b3f54019195858c906db92a
329db1ebb6393a2226e34f5d700cf7d678dad6f0
06ca145d705c8952559ba8222eca9d753ff5659117469c64fc7bba11f07e89d4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/custom-widget-icon-list.min.css?ver=1695054609 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:16 GMT
content-type: text/css
last-modified: Mon, 18 Sep 2023 16:30:09 GMT
etag: W/"5a0016-26a8-605a4a7d893c5-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yfDod26OXvly4rjFhMWowA39rXE0Q7fO3j3R5vALG%2FJnRqd%2BaWyyETuQVFK1namDuybI9Bf8WmHoErSWZiHYXn4kv3hVj%2BuRTeklEbm02W3KzlPlfGVbUeJa23zKh83m"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b34a0e56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/uploads/elementor/thumbs/google-play-badge-2-pzo4n6p1o73068e5sni77w2fevob8o3pol0narpj40.png

188.114.96.1

200 OK

15 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/elementor/thumbs/google-play-badge-2-pzo4n6p1o73068e5sni77w2fevob8o3pol0narpj40.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
PNG image data, 300 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size
15 kB (14813 bytes)
Hash
0e0fe9bda0ae29ecd0360ae2f3fb06bb
a3d0162048fbd4c34a5a63cfb45323128df50055
68959d78aea05ea86d49730b556c18ca32477b70142bc74eb09f86bd4072ea73

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/thumbs/google-play-badge-2-pzo4n6p1o73068e5sni77w2fevob8o3pol0narpj40.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10; sib_cuid=062a1de0-e731-4d5b-9223-f45d0bb38971; _ga_C5R0X7CB38=GS1.1.1700294538.1.0.1700294538.0.0.0; _ga=GA1.1.1387063408.1700294539; _ga_EB0MPR1JXK=GS1.1.1700294538.1.0.1700294538.0.0.0; po_visitor=ukGq9X_aIejc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:19 GMT
content-type: image/png
content-length: 14813
last-modified: Fri, 30 Dec 2022 18:09:05 GMT
etag: "5a23e9-39dd-5f10f7f3c1240"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I%2BEaPkU48v0gqoJYHiA%2F7grasgPVWz54W4RlWI4Yoqdn9ocLZdZGZkfuE69JBEbNUi%2BRejXYzdkEC1pnRipZclVDl%2Fbm7BLOyQqb8EnTJYIS2F3bWVGnd3NAonkIPUI9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 827eb0c0eb8256be-OSL
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/css/rt-accordion.css?ver=1700294535

188.114.96.1

200 OK

4.8 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/css/rt-accordion.css?ver=1700294535
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text
Size
4.8 kB (4781 bytes)
Hash
e1561407fc81fd2d8154e939c8cfce7f
40639b38ef6e42c2bf17084f381dcf2e27611e2a
cc8bcea8966405ca76ff5b133093cff923341fa6e132f81895481853e2bea899

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/radiantthemes-addons/assets/css/rt-accordion.css?ver=1700294535 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 06:10:07 GMT
etag: W/"5a03c1-4bcd-5ecef6442edc0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CVi77u3xjbdDW5Ed2%2F1e64h3V2CkHrR6xCkpQOYyl%2FeFciRJPFBUhKwyZv%2FhP4a35s79BLP4K4uZZf%2BOx2FmPh2PZMzmML6aqWMdxGqyFdYNjil%2F1mSvZiXeDJ6yyvyN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b86d8856be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/uploads/2022/11/9.png

188.114.96.1

200 OK

3.1 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/2022/11/9.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
PNG image data, 170 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
3.1 kB (3088 bytes)
Hash
3a0cd3b429a5c9fc81fbd990a1930456
edaf64b806a3ef804727ebac8a65a0a10a5765c5
51515a94878dd8d42ec21bc0fdfab12d06ae2cb5925b2359067f9eaffd78b4c3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/11/9.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10; sib_cuid=062a1de0-e731-4d5b-9223-f45d0bb38971; _ga_C5R0X7CB38=GS1.1.1700294538.1.0.1700294538.0.0.0; _ga=GA1.1.1387063408.1700294539; _ga_EB0MPR1JXK=GS1.1.1700294538.1.0.1700294538.0.0.0; po_visitor=ukGq9X_aIejc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:19 GMT
content-type: image/png
content-length: 3088
last-modified: Thu, 10 Nov 2022 13:30:19 GMT
etag: "5a206b-c10-5ed1dc638d0c0"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lwTJncK%2FXCPORDGId%2F3Mqqq8OZf6SzadUmZW%2F46Ua5rglI4%2BnBjS17T4gSW4ODAeOkqAeGQ6hcCHPyqtjNQAFUxRVCkpHASraJqWMghCwJlgf7zpf4Oj3Cd5Z7MqDcXn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 827eb0c0fb8a56be-OSL
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/mailin/js/mailin-front.js?ver=1695054488

188.114.96.1

200 OK

18 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/mailin/js/mailin-front.js?ver=1695054488
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
Unicode text, UTF-8 text
Size
18 kB (17923 bytes)
Hash
24d84fa840063c7b26e4e7fcbb2e11d7
51ba6df9f6b61af9a87d6353fd96e1ab10d05113
218449f902b88a3f6d37a9c565d926d6875f03c475bc37c746c42563932327a5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/mailin/js/mailin-front.js?ver=1695054488 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:28:08 GMT
etag: W/"3e1f83-32e9-605a4a0a8fbe9-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3dV8xQpv5un%2BKIKgF8m7inTu0OLdi7uRXfDQ3nVUh5eGfbCAR1p24Q83BHvpy0NZUB4UGOp1gb5uK2TJwvQ6rPXiDtLlXfWzmPdhOLKgxPmS4bDIGZOwZzfHtBbR4EHk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b36a3056be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

forms.hsforms.com/embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=1

104.17.239.249

200 OK

35 B

URL GET HTTP/1.1
forms.hsforms.com/embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=1
IP
104.17.239.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint1E:9D:91:27:86:63:DC:7B:9D:15:4E:99:31:FC:AA:1D:DC:9E:06:3B
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992

HTTP Headers

GET /embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=1 HTTP/1.1
Host: forms.hsforms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 08:02:19 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
X-Trace: 2BDD647826993AAF970FE7DD12DEC69C66EEA8F41B000000000000000000
Cache-Control: max-age=0, no-cache, no-store
Vary: origin
Access-Control-Allow-Credentials: false
X-Content-Type-Options: nosniff
Access-Control-Expose-Headers: X-Origin-Hublet
X-Robots-Tag: none
x-envoy-upstream-service-time: 1
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/star-hubspot-td/envoy-proxy-56dcc87b5c-lr4lv
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
X-HubSpot-Correlation-Id: 6a3ef4e7-1e77-4f04-9245-ccf0256340ed
x-request-id: 6a3ef4e7-1e77-4f04-9245-ccf0256340ed
CF-Cache-Status: DYNAMIC
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Server: cloudflare
CF-RAY: 827eb0c78ff556bf-OSL
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/uploads/elementor/css/post-7.css?ver=1695054607

188.114.96.1

200 OK

28 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/elementor/css/post-7.css?ver=1695054607
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (1104), with no line terminators
Size
28 kB (27790 bytes)
Hash
f0e1bfd11d4c5e50b5a2f230910b8cdf
4693fe9fa5fea995fdd03af658038402ad3a6291
dd169d7357168e4bab45990360cc9e97060ff7b56c6216922e6d4505ac262487

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/post-7.css?ver=1695054607 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: text/css
last-modified: Mon, 18 Sep 2023 16:30:07 GMT
etag: W/"5a000d-450-605a4a7c08b4b-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZTh77SxfqMx35sUuQzsPCFEVok8skiyxJ4zfIFfqLh%2Fsb7PIKC5NecxRjkRm8SixTZPgbhAnIx8Ogt2m2C3jHueW4ZjFuLG1qshiSCpykyySwA%2Fv1BcAiZ1tmLBuR%2FiF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b81d5656be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

js.hscollectedforms.net/collectedforms.js

104.17.90.154

200 OK

54 kB

URL GET HTTP/2
js.hscollectedforms.net/collectedforms.js
IP
104.17.90.154:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA5:D1:D2:E1:EA:8D:D7:F7:79:F2:ED:55:66:75:F5:52:07:A7:F4:B3
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (65392), with no line terminators
Size
54 kB (54516 bytes)
Hash
7864f8fd485be672e98358eb894b6fd7
b84449be266a31ea6e60a6d48538b220302d9aef
200cef31a4664eb38f1293062efc3d5acf8e769cc27242418b198a0aa4b20492

HTTP Headers

GET /collectedforms.js HTTP/1.1
Host: js.hscollectedforms.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Mon, 23 Oct 2023 13:11:34 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: XYPPFvciWFKtpS2hNgrEqmNT6fxOdL.H
etag: W/"7864f8fd485be672e98358eb894b6fd7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb1dc2e3bf4105b403e3bfa3a5067970.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: tZ3Lzfqjz8kZjv-qLzhfViIvS5akmolBbTTOshQeYD5j5IbiSZF-6A==
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=collected-forms-embed-js/static-1.433/bundles/project.js&cfRay=8248a9d4daa01c16-ARN
cache-control: s-maxage=600, max-age=300
x-hs-target-asset: collected-forms-embed-js/static-1.433/bundles/project.js
x-content-type-options: nosniff
access-control-allow-origin: *
x-hs-cache-status: HIT
x-envoy-upstream-service-time: 1
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-59f9889544-6nr72
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: f6eb4071-27df-4c2b-a824-00b5516f64ab
x-request-id: f6eb4071-27df-4c2b-a824-00b5516f64ab
cache-tag: staticjsapp-collected-forms-embed-js-web-prod,staticjsapp-prod
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 827eb0b9ef0db51b-OSL
content-encoding: br
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6

188.114.96.1

200 OK

64 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (65280)
Size
64 kB (64421 bytes)
Hash
15bb2b8491fc7e84137d65f610e1685a
cd76b70a5426893e9c022b9a75c50a7c1348e2d0
b23f49f504faa32aac548b6662ffd64412f6738496fab8be38da46c5b7121804

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10; sib_cuid=062a1de0-e731-4d5b-9223-f45d0bb38971; _ga_C5R0X7CB38=GS1.1.1700294538.1.0.1700294538.0.0.0; _ga=GA1.1.1387063408.1700294539; _ga_EB0MPR1JXK=GS1.1.1700294538.1.0.1700294538.0.0.0; po_visitor=ukGq9X_aIejc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:19 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:27:08 GMT
etag: W/"400c97-21f91-605a49d16b037-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rN8cGL%2FVAt8CshIwCu6TrKB9xO8Uo4tZl1lcKwH%2BmkHyH3uoSVJBEeEL3eO%2BwnqdsUSnFrrahA6g9LQOC%2FrrI8Vi8HrlZUAtrugjqXyWQY2dh8uyYg6HmUC4X2zkBwIX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0c6ef6756be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/abeezee/v22/esDR31xSG-6AGleN2tWkkA.woff2

216.58.207.227

200 OK

17 kB

URL GET HTTP/2
fonts.gstatic.com/s/abeezee/v22/esDR31xSG-6AGleN2tWkkA.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 17072, version 1.0\012- data
Size
17 kB (17072 bytes)
Hash
45462752342c1004d9c92488ebcb5e0b
3abfc280cfddd6bc1962e7e2d582af70e799f35e
e9b78ce1cbff9e258afa3a91f5b9a0fe64ce792691eda7f66b9eaad19e468e83

HTTP Headers

GET /s/abeezee/v22/esDR31xSG-6AGleN2tWkkA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17072
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Nov 2023 23:22:28 GMT
expires: Fri, 15 Nov 2024 23:22:28 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 18:27:20 GMT
content-type: font/woff2
age: 117591
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/actor/v17/wEOzEBbCkc5cO0ejVSk.woff2

216.58.207.227

200 OK

22 kB

URL GET HTTP/2
fonts.gstatic.com/s/actor/v17/wEOzEBbCkc5cO0ejVSk.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 21976, version 1.0\012- data
Size
22 kB (21976 bytes)
Hash
7ee7f470152787952958d6adfa07b2ac
14a09075b2cbec9ff65302de9d634f9011f70e53
b31aaefa522d67846638fa4181bbb22375bd0cb1beb37d514609c3821953161a

HTTP Headers

GET /s/actor/v17/wEOzEBbCkc5cO0ejVSk.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Nov 2023 23:24:40 GMT
expires: Fri, 15 Nov 2024 23:24:40 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 19:22:29 GMT
content-type: font/woff2
age: 117459
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/uploads/2022/08/Uniify_Favicon1-150x150.png

188.114.96.1

200 OK

2.0 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/2022/08/Uniify_Favicon1-150x150.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
PNG image data, 150 x 150, 8-bit colormap, non-interlaced\012- data
Size
2.0 kB (2007 bytes)
Hash
30680b0c78342f559eb5e42a4aaa3828
53713e66213dbc1a082352208e3b3cc6dbea16c2
020c65f41e552509ca2a5ca30801f0589313839234df188352091d7607db21db

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/08/Uniify_Favicon1-150x150.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10; sib_cuid=062a1de0-e731-4d5b-9223-f45d0bb38971; _ga_C5R0X7CB38=GS1.1.1700294538.1.0.1700294538.0.0.0; _ga=GA1.1.1387063408.1700294539; _ga_EB0MPR1JXK=GS1.1.1700294538.1.0.1700294538.0.0.0; po_visitor=ukGq9X_aIejc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:20 GMT
content-type: image/png
content-length: 2007
last-modified: Mon, 09 Jan 2023 14:18:19 GMT
etag: "5a1c3a-7d7-5f1d5705ca0c0"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Gz3E24wOn0EUBiQW3TmLUBrRKl3FATTTtdJRRNk3rXqPFaM5y%2FrnJxycla9iVFTHnca4vpBzA9u9bvB4TMBElJBycLh2ZQ6jVVZUFnWJn2Nqqz%2BUdbIheKgncGG5xAql"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 827eb0c8884856be-OSL
alt-svc: h3=":443"; ma=86400

uniifyapp.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js

188.114.96.1

200 OK

5.6 kB

URL GET HTTP/3
uniifyapp.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
gzip compressed data, from Unix\012- data
Size
5.6 kB (5636 bytes)
Hash
0472a89e94de029e164575d609fb1913
8c7d088f63a3f65783bca3d317cd193fc87fa1f1
47a5e2d7863212dd1426720c314e53b333b65334ea5254dca01c456ab165ecc9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:16 GMT
content-type: application/javascript
last-modified: Thu, 16 Nov 2023 21:55:48 GMT
etag: W/"65568fe4-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sWGYedk%2FgCDXo9zJqA3mohaq2BJ6yDe1WXiphBvyDVQ8yEY5gCtAjjkpkU1b7%2BJirdTvrREYDpFnPmCLUTHEdWOeoJR81CQBXoIwWy2DqqfLrK21yJevuksMZeB%2FQjoz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 827eb0b36a2456be-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Mon, 20 Nov 2023 08:02:16 GMT
cache-control: max-age=172800, public
content-encoding: gzip

uniifyapp.com/wp-content/uploads/2022/12/lumiq-copy.png

188.114.96.1

200 OK

6.8 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/2022/12/lumiq-copy.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
PNG image data, 170 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
6.8 kB (6815 bytes)
Hash
77632d1daf9fbd708cc85803dae27330
8c4762ea234ef1c3089f2bff801c10527bf0b743
d98ea6ef7df469d978dba9fbc2b17c46bbd27d200cb6f4e448c40a3c3e1a6193

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/12/lumiq-copy.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10; sib_cuid=062a1de0-e731-4d5b-9223-f45d0bb38971; _ga_C5R0X7CB38=GS1.1.1700294538.1.0.1700294538.0.0.0; _ga=GA1.1.1387063408.1700294539; _ga_EB0MPR1JXK=GS1.1.1700294538.1.0.1700294538.0.0.0; po_visitor=ukGq9X_aIejc; TawkConnectionTime=1700294541861; twk_idm_key=nOvDkTph2gY5jHUuaNZVe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:21 GMT
content-type: image/png
content-length: 6815
last-modified: Tue, 27 Dec 2022 16:03:02 GMT
etag: "5a212a-1a9f-5f0d162ebb980"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DZIjjWz5vlBjs3pm%2BYyyV0qPIv4rpgDCokz3UPbP7t5MIAaRzBF5BpZafDGVRreCPSm6Wz1kQ%2BChmKvzqzggeXLK7IgxVDc415afRqhUlJMYEyvJJToEFeJWa5LlkE6C"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 827eb0d05c7456be-OSL
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/uploads/elementor/css/post-35633.css?ver=1695054608

188.114.96.1

200 OK

14 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/elementor/css/post-35633.css?ver=1695054608
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (14113), with no line terminators
Size
14 kB (14363 bytes)
Hash
f699f2db3864c2d63fdc0335b55358c2
c1c3695c4094a2af315a665b030ff34694c08474
e259498d10a5ac7295328030afcc0b471df78556c1d31ebece6a4d52e9720c53

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/post-35633.css?ver=1695054608 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: text/css
last-modified: Mon, 18 Sep 2023 16:30:08 GMT
etag: W/"5a0015-3721-605a4a7d7f39c-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wNaSRT4kCP2RovhMt0R5YyTnJzvxXbhR48D1A7q7LFRQmiLyls%2BZmIcj8vC719XwBz7NypgI3GCnwMLO5E6o8tc%2F%2BmuTQcGMOo2xC%2F5bqLA7D55OxKBHkEVEluU91BIL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b85d7256be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/app/6549ac0173e/css/bubble-widget.css

104.22.24.131

200 OK

44 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/6549ac0173e/css/bubble-widget.css
IP
104.22.24.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (13521), with no line terminators
Size
44 kB (44066 bytes)
Hash
950518e32fd92957181f766f08d3cf98
9fe20c86b818d3576e9d70e6ed091964cb8b7427
2f56f47d64037d5aa3a96b50c840580e5549fee6f9fafff8af3d1821d189fa5c

HTTP Headers

GET /_s/v4/app/6549ac0173e/css/bubble-widget.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:23 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=13594
access-control-allow-origin: *
etag: W/"ce7913b80c763449b3895d46419f7a6b"
last-modified: Tue, 07 Nov 2023 03:18:37 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
age: 961027
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 827eb0ddd96e712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js

151.101.65.229

200 OK

41 kB

URL GET HTTP/2
cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
IP
151.101.65.229:443
ASN
#54113 FASTLY

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
ASCII text, with very long lines (32014)
Size
41 kB (41275 bytes)
Hash
7bb7aac0cac89a90304af1c72eb4f50d
729f6f8ca5787d89743b0ed7eb27fd76406bf985
f5c06455e539dcd889f7f05d709b5adc76c444099fe57f431365af2fc57e803b

HTTP Headers

GET /emojione/2.2.7/lib/js/emojione.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
etag: W/"49dda-cp9vjKV4fYl0Ow7X6yf9dkBr+YU"
content-encoding: br
accept-ranges: bytes
date: Sat, 18 Nov 2023 08:02:23 GMT
age: 19717436
x-served-by: cache-fra-eddf8230136-FRA, cache-bma1644-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 41275
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-chunk-vendors.js

104.22.24.131

200 OK

69 kB

URL GET HTTP/2
embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-chunk-vendors.js
IP
104.22.24.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (65464)
Size
69 kB (68933 bytes)
Hash
86b32a04921a039ace69980bacd1b639
ca9a6e342590d510a0cf480c4131eb420ba5b410
fcd1fa4d2007137da13dd581c678acfda42358cbdbda0f0204874fbe2e2c4663

HTTP Headers

GET /_s/v4/app/6549ac0173e/js/twk-chunk-vendors.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 18 Nov 2023 08:02:20 GMT
content-type: application/javascript
last-modified: Tue, 07 Nov 2023 03:18:38 GMT
etag: W/"86b32a04921a039ace69980bacd1b639"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 827eb0cb9a9c7127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/uploads/2022/11/6.png

188.114.96.1

200 OK

5.9 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/2022/11/6.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
PNG image data, 170 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
5.9 kB (5893 bytes)
Hash
8a433162097eb8ef8e51e7c13bcadab8
dce4b78109f927d34c3ce6d5bce0867d594be0ef
f44ddcc39a064cea1995c17331036f109006474838d05687968491974b76aea2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/11/6.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10; sib_cuid=062a1de0-e731-4d5b-9223-f45d0bb38971; _ga_C5R0X7CB38=GS1.1.1700294538.1.0.1700294538.0.0.0; _ga=GA1.1.1387063408.1700294539; _ga_EB0MPR1JXK=GS1.1.1700294538.1.0.1700294538.0.0.0; po_visitor=ukGq9X_aIejc; TawkConnectionTime=0; twk_idm_key=nOvDkTph2gY5jHUuaNZVe; twk_uuid_63b90e9f47425128790c21d7=%7B%22uuid%22%3A%221.1vX0WccgKqDCgkEEZbCvmyhByOeVnGHtVMhQIv2J7O1XqQi0phsNWbjxC78H1sjJzB9JcZskoBRZaaMcWxDDSVtHUefZErFJtHaGPBlaboR2CaDOjU4Kwes%22%2C%22version%22%3A3%2C%22domain%22%3A%22uniifyapp.com%22%2C%22ts%22%3A1700294543893%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:24 GMT
content-type: image/png
content-length: 5893
last-modified: Thu, 10 Nov 2022 13:30:18 GMT
etag: "5a2065-1705-5ed1dc6298e80"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KCN7%2FA206vkhu4D3%2BFfSj%2FbPhNguze0Yj16f3zai7Xfh1w59BY%2Fy%2FGMGqv7rG75mib19vVNpLyhT8thOmDsLOhp3NNEsiRJFr35C8EJSJbVwGSky1bfGOo7NtL1CzbQM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 827eb0e3985756be-OSL
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/themes/apptek/assets/css/bootstrap.min.css?ver=1.0.0

188.114.96.1

200 OK

36 kB

URL GET HTTP/3
uniifyapp.com/wp-content/themes/apptek/assets/css/bootstrap.min.css?ver=1.0.0
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
Unicode text, UTF-8 text, with very long lines (65301), with CRLF line terminators
Size
36 kB (36501 bytes)
Hash
f7d74d6042421a005379087d13ddbbb8
5567847185d9b32fa07888469639c7680e381a2e
ea203259c9f74b032fa833ea284ac4da8c9b8169e0c71b14a16c0605abf43a48

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/apptek/assets/css/bootstrap.min.css?ver=1.0.0 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: text/css
last-modified: Tue, 18 Oct 2022 10:46:20 GMT
etag: W/"5a1afb-28027-5eb4ccd6bf700-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lagAMaXxV%2FV2Z6%2Fv9MA94pOkVYteo7G1Y%2FxgI8HnELWFDV1H53fkZ20HRtOTcLT67sW4NhJkp7wo%2BpZGtccbMdDVrKLSX8w15iRNl6Y52KBi9r0fRaxKu1Of4hI4iMcD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b84d6956be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/css/eae.min.css?ver=1.12.5

188.114.96.1

200 OK

45 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/css/eae.min.css?ver=1.12.5
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
45 kB (44731 bytes)
Hash
e3339f9b8a2155a9e6ccb8eb482e99a8
4aa1c98885465c265e1665e76962d4ccbc64d77b
ffc19b19308a1335b8ff8e7b77d0bd596aecd9021e6aafc570ccaab50aa651c8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/addon-elements-for-elementor-page-builder/assets/css/eae.min.css?ver=1.12.5 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: text/css
last-modified: Mon, 18 Sep 2023 16:27:25 GMT
etag: W/"400fd6-1dd0f-605a49e1ce2bf-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z0R5JbFZKr%2BRvOduSyhFKaxEfzs2N0PadB%2F7ujrtpUCbWTwEEL4HBAwvoWwTWpiEGpcWcCPpSb7B%2FFN8hVAS6SrSO0HJ5%2Bgge%2FnTV56FcTrtvxj9eQqnNqYNNZD0mEtE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b86d8156be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/testimonial.js?ver=1700294535

188.114.96.1

200 OK

138 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/testimonial.js?ver=1700294535
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text
Size
138 kB (138187 bytes)
Hash
e2c6242c0612a5de6ac11e9672d3a636
587ed68b5bd63c3511b3eb98b4b9458c62a8362e
3abcb1a1e9055ae1dc1bb23ce1570574d0d2f6372056404c1373ab2df3622d1e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/radiantthemes-addons/assets/js/testimonial.js?ver=1700294535 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 06:10:07 GMT
etag: W/"5a0998-28d4-5ecef6442edc0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s39xdB5Yq7cUS8ArH%2BDvap%2BB%2Fh4lvZkFstKBWMOQDLe4JPNrJjxv03T5afxNiRhTjAv7UsSFOX78wrM97tlKAQJENlskR%2FvWMirZ%2Fy9cFy%2FmTPQhlrdBlZ%2F528pcamBK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b3aa7f56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/63b90e9f47425128790c21d7/1gm5e28ep

104.22.24.131

200 OK

32 kB

URL GET HTTP/2
embed.tawk.to/63b90e9f47425128790c21d7/1gm5e28ep
IP
104.22.24.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
PNG image data, 300 x 100, 8-bit/color RGBA, non-interlaced\012- data, ASCII text
Size
32 kB (31535 bytes)
Hash
42de7412327b0ad2593a34e7bc75f864
6e482294e5cd179c953fc864bb010259640ba00f
7596535cf875293e38893db4d67e50c18f3c831620f8e1a4c38da1f996f5dcf0

HTTP Headers

GET /63b90e9f47425128790c21d7/1gm5e28ep HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-6549ac0173e"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 827eb0ba3ebb7127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/themes/apptek/assets/css/header-menu.css?ver=1.0.0

188.114.96.1

200 OK

200 kB

URL GET HTTP/3
uniifyapp.com/wp-content/themes/apptek/assets/css/header-menu.css?ver=1.0.0
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text
Size
200 kB (199910 bytes)
Hash
0b557f5e2b9c27a2de74bfc45e37fba4
363d20792f90c804a5807a345045b66d4bf96778
0103c201b625a01c6ee4064d3fcfa2125bcec4846fe975ff9e1cbe7ded354e6c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/apptek/assets/css/header-menu.css?ver=1.0.0 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: text/css
last-modified: Mon, 14 Nov 2022 13:12:11 GMT
etag: W/"5a1afd-30ce6-5ed6dfcbcc0c0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BCv8kvxGBl6kBCBYAX4JjI%2F2NyBKAnQoMM%2FdEqCqCbFajB9scBRB6FOetdh8vp2yVLKkVv0fqdehclhCmwNHdYImE1oEvg%2FSMj4UXYqNaU4Suaf0mccLRjBTp5CW%2BsT4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b87d9456be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-json/contact-form-7/v1/contact-forms/43045/feedback/schema

188.114.96.1

200 OK

222 B

URL GET HTTP/3
uniifyapp.com/wp-json/contact-form-7/v1/contact-forms/43045/feedback/schema
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
222 B (222 bytes)
Hash
dae5fa09dd094dc9444d5a44c1abc5d4
8075243b1002ef87fd88ac98a3f73255c684c0ad
a7323a74aa8ec62c5851b381e88e5acbf4dad956fd20732b217b11baf378f69a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-json/contact-form-7/v1/contact-forms/43045/feedback/schema HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, */*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10; sib_cuid=062a1de0-e731-4d5b-9223-f45d0bb38971; _ga_C5R0X7CB38=GS1.1.1700294538.1.0.1700294538.0.0.0; _ga=GA1.1.1387063408.1700294539; _ga_EB0MPR1JXK=GS1.1.1700294538.1.0.1700294538.0.0.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:19 GMT
content-type: application/json; charset=UTF-8
x-powered-by: PHP/8.0.30
x-robots-tag: noindex
link: <https://uniifyapp.com/wp-json/>; rel="https://api.w.org/"
x-content-type-options: nosniff
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
allow: GET
vary: Origin,Accept-Encoding,User-Agent
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hcB2fDPbtz8VamvAp6uUFi137wD2ElKWqjLumc6DacquzSiw2JdaDElUTJtZM%2BjXZhIaW93MJCqZ5ijxMfu8WHqXjleVuXM8EJqEeM6C5sCox6%2BW7Mvuv7rCHv8yhZ74"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0c01af556be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.16.3

188.114.96.1

200 OK

18 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.16.3
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (10019)
Size
18 kB (18468 bytes)
Hash
4601ba55044413706c2022cb6c1c3d05
5103ec2fbb389568ebf5cfe4fd721f3df2ff7aec
fe513ef974b767510d0a2b9f1b4d3afa53185b89ab617c869e5e3d6db960192c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.16.3 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: text/css
last-modified: Mon, 18 Sep 2023 16:27:07 GMT
etag: W/"3e2f8f-4824-605a49d0a773e-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BbY441yN2bzI7MJ5t5TPuYhh%2BVWN1dqcbcG63agttIK%2B7NoIsrjd71C9VEnDI0mD3cusjbfnnbJDZTn38%2BsvEIR%2BmVtw5V%2FguNCMIxopo%2Bz9bA0AgngYCLClLJgd5ItJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b89daf56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/app/6549ac0173e/languages/en.js

104.22.24.131

200 OK

17 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/6549ac0173e/languages/en.js
IP
104.22.24.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
ASCII text, with CRLF, LF line terminators
Size
17 kB (17013 bytes)
Hash
7f37a030886ec7fce1d065ec482789ee
661ad608ac1513e2ccdec4cd55eb552a8604c8f6
75b20e74e3effa00e4b62b9da6df7d7542d91cb4b50078b8365112d556a73a7e

HTTP Headers

GET /_s/v4/app/6549ac0173e/languages/en.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:21 GMT
content-type: application/javascript
last-modified: Tue, 07 Nov 2023 03:18:38 GMT
etag: W/"7f37a030886ec7fce1d065ec482789ee"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 925453
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 827eb0d6cbec712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-chunk-2c776523.js

104.22.24.131

200 OK

7.9 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-chunk-2c776523.js
IP
104.22.24.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (8581), with no line terminators
Size
7.9 kB (7924 bytes)
Hash
66deb9d660a0528e2b3909ad3d97a340
fb03d0b3b97a251e4a6812b15c4f1876319e8692
97c305538967ed36cf2a69655a89781ff79cf1200dece2b19b4ad400c242f0c4

HTTP Headers

GET /_s/v4/app/6549ac0173e/js/twk-chunk-2c776523.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:22 GMT
content-type: application/javascript
last-modified: Tue, 07 Nov 2023 03:18:38 GMT
etag: W/"589bcaf3fa2f5394494ee99582c6bee6"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: STALE
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 961219
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 827eb0dcc88b712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/plusjakartasans/v8/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko20yw.woff2

216.58.207.227

200 OK

27 kB

URL GET HTTP/2
fonts.gstatic.com/s/plusjakartasans/v8/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko20yw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 27444, version 1.0\012- data
Size
27 kB (27444 bytes)
Hash
13d1b429e99059f97e58fa10dd69f8b5
174c7f299158103127d50de82f1086c3b66e8258
1262bff0591c36094d058ab102b84ce34eb1e547e8ff00557bf8d55449e58e40

HTTP Headers

GET /s/plusjakartasans/v8/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko20yw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27444
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Nov 2023 23:22:08 GMT
expires: Fri, 15 Nov 2024 23:22:08 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 22 Jun 2023 14:14:33 GMT
content-type: font/woff2
age: 117611
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CABeeZee%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CActor%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.4.1

142.250.74.42

200 OK

47 kB

URL GET HTTP/3
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CABeeZee%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CActor%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.4.1
IP
142.250.74.42:443
ASN
#15169 GOOGLE

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text
Size
47 kB (47398 bytes)
Hash
06c52805d07661a363873e76b4785229
586835e63315bcca30e7b505a32c92a75337be1f
0039d0a750e7597f2e389a115826c0e1e33d268771a8a6125fddafd4c6d8087a

HTTP Headers

GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CABeeZee%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CActor%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.4.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 18 Nov 2023 08:02:19 GMT
date: Sat, 18 Nov 2023 08:02:19 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/animated-main.min.js?ver=1.0

188.114.96.1

200 OK

2.3 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/animated-main.min.js?ver=1.0
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (2412), with no line terminators
Size
2.3 kB (2294 bytes)
Hash
eb4664ae8cb75342796e3bc3590d58f5
4caa551824a0c7da1a3481ce186a0a9941925ced
a7004539e490c37fac9db46c3eea126687a1493893d865d653ccb8b212aeba5f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/animated-main.min.js?ver=1.0 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:27:25 GMT
etag: W/"421a3f-8f6-605a49e1ce6a7-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W5%2F%2BI2UDMoM%2FK8GZy8CS4QAewCK5T%2BYYZdcIsr8z1v5H2uaxsxqFU7z9w6IM9pm9vidTsYwswZWULXgfHbgH85XU0UokdmxjSp0iSSfD6y24xReyt%2FJkf93FsXq0qYB4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b36a3356be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/magnific.min.js?ver=1.1.0

188.114.96.1

200 OK

20 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/magnific.min.js?ver=1.1.0
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (19887), with no line terminators
Size
20 kB (19887 bytes)
Hash
d92d1d8e778aa3773e719bba09089942
ff26dd2b05f2e5993490968d17801d91ad0f9761
7586da6ec5a0e01eb5239aaac31dc3d411cae3090cce52a7e00efbda2f32c6bf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/magnific.min.js?ver=1.1.0 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:27:25 GMT
etag: W/"421a68-4daf-605a49e1d30df-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qUPiW7lH2FqH5BRJiyVbPf9jfUOvmZUDmOyUpB9PApNmaX%2BkQZPdie0dPAJxFr5vTqzJisU29cdxGqrBPtF2M9cm6zJ4tstaYXKnze7cd%2F0uC6AHH8TKs2m%2B9kOl20fZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b37a3e56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8

188.114.96.1

200 OK

11 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (10770), with no line terminators
Size
11 kB (10770 bytes)
Hash
6ce86c3105139cb3c80913e6a3696a96
c55c7be10b31a773c7c9f6f393f382b89c318db4
5fe46d2da01452067736578431f6c6e8116a24e616f58c72d9d81fdb2c7c9569

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:16 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:26:34 GMT
etag: W/"3e2d4d-2a12-605a49b0e4e86-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Op81x%2Bg4tCR8SVuBpwUVXRRlwmpoiwYDpVT47VaD09DSY3QCO5ZtFn1xnp6%2FCOf5qzEmrwSD66ATnXfj0Sa6bZorxDFOoWqC4i8yQAkGc29%2FVNU11s%2F3pgLeCOVQlmDy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b37a4656be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/themes/apptek/assets/js/apptek-custom2.js?ver=1700294535

188.114.96.1

200 OK

9.9 kB

URL GET HTTP/3
uniifyapp.com/wp-content/themes/apptek/assets/js/apptek-custom2.js?ver=1700294535
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (10361), with no line terminators
Size
9.9 kB (9870 bytes)
Hash
b8348bcf67066094eb20020d9fa412c7
1ef81e960f501ab9cf2a3ebac45b27ccdf19e44b
7e2c059e9e8af5cdd13400f227c784d56dd2cff473d16b6d92ce1b435189f68a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/apptek/assets/js/apptek-custom2.js?ver=1700294535 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 10:46:20 GMT
etag: W/"5a1b54-268e-5eb4ccd6bf700-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OFXSW37oNUa%2BKJ8zf8HpDyl%2BhrGtNmA0L5NdX0oT063bb%2B8kUghEKY9k0sZ1X7lqO1RU1cmOQBeUwuBR0kKuhQ1nx2289T9cy8CVrCmfWCgyAYHchk8ZjXp61YCFvJkQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b37a4856be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/themes/apptek/style.css?ver=1.0.0

188.114.96.1

200 OK

1.4 kB

URL GET HTTP/3
uniifyapp.com/wp-content/themes/apptek/style.css?ver=1.0.0
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1430), with no line terminators
Size
1.4 kB (1399 bytes)
Hash
6e63a600f55c83389b8c1269ac8bff97
13d22391e2f9041f85fe7fa4a2775ac8d3002ec8
28fbec3e482fc72608d64e688b95fe7c63922fd9405e29b3bd21dfc6cd09075b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/apptek/style.css?ver=1.0.0 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: text/css
last-modified: Tue, 24 Jan 2023 19:14:53 GMT
etag: W/"5a1af3-577-5f307549ecd7a-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0kJ%2ByUPTQb7wKkDGfpOdMV0M1UZi%2F0Z7yF8QvBzC%2FbcsmtaCoMJvatqZ%2FRp%2BpCs4bOg%2FFCn9zQ3RjzfEFoRN2Pb7H8%2FBCl1EUzCmyO0dNCp3gdx1s4lJxxd3cynfohvy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b85d7356be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=1.0

188.114.96.1

200 OK

59 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=1.0
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (59158)
Size
59 kB (59344 bytes)
Hash
74bab4578692993514e7f882cc15c218
b6293bcfd851f963edbe859498570c4c0c7eaae4
d87ddf917b7a1449ab45e2b8e3c98354629bdd65b6659c37e6023bbea1ce1386

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=1.0 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: text/css
last-modified: Mon, 18 Sep 2023 16:27:08 GMT
etag: W/"400c44-e7d0-605a49d107e3f-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qLq4HPOQ%2FOXP5WoeKb%2F32B0dHiPivsUuL4eMVqkhDj5%2FK85Nwwsiwn%2BoAxH%2F3pQo8wg82A5brq6VkzDCxxFkFHRDQBikgenDFweUI5XVLorAIlQMC90YzdtzrvRynr7o"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b86d8756be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

va.tawk.to/v1/widget-settings?propertyId=63b90e9f47425128790c21d7&widgetId=1gm5e28ep&sv=undefined

104.22.24.131

200 OK

2.9 kB

URL GET HTTP/3
va.tawk.to/v1/widget-settings?propertyId=63b90e9f47425128790c21d7&widgetId=1gm5e28ep&sv=undefined
IP
104.22.24.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
troff or preprocessor input, Unicode text, UTF-8 text, with very long lines (3374), with no line terminators
Size
2.9 kB (2922 bytes)
Hash
861931600715ba954fb5f52cc9584456
87e2856277e8fe9af938e81c9230539fd8d77240
321d6db9684af08ccbea55127855d00c8090ee88f74d50098a47fceda12984be

HTTP Headers

GET /v1/widget-settings?propertyId=63b90e9f47425128790c21d7&widgetId=1gm5e28ep&sv=undefined HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://uniifyapp.com/
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:21 GMT
content-type: application/json
x-served-by: visitor-application-preemptive-59wz
access-control-allow-origin: *
access-control-allow-methods: GET,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
cache-control: public, max-age=7200, s-maxage=1800
etag: W/"2-65-0"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 827eb0cfdcf456c4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/app/6549ac0173e/css/message-preview.css

104.22.24.131

200 OK

41 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/6549ac0173e/css/message-preview.css
IP
104.22.24.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (40699), with no line terminators
Size
41 kB (40699 bytes)
Hash
c7393b57847a249cf71e453cff9c5693
2b151e46ff61023cac973343c951b4210cd4d374
7bd9666b0959d868276da481746b74e6a76fbc19f7957e528b8fb022367980bc

HTTP Headers

GET /_s/v4/app/6549ac0173e/css/message-preview.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:23 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=40832
access-control-allow-origin: *
etag: W/"cf4a08d496f49489af30571e3cbb48f3"
last-modified: Tue, 07 Nov 2023 03:18:37 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
age: 961219
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 827eb0dde973712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/eae.min.js?ver=1.12.5

188.114.96.1

200 OK

52 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/eae.min.js?ver=1.12.5
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (51925), with no line terminators
Size
52 kB (51925 bytes)
Hash
956116be8a6bbfe31146567de3163e3c
ed72b0ffd3de1cb7eee98542dbe1a45e05b1f9ee
9f81abea871019cc5b59148fa03b55628735b98b1f2dbc7b02560f60529944ee

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/eae.min.js?ver=1.12.5 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:27:25 GMT
etag: W/"421a4b-cad5-605a49e1d01ff-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tCiuEk%2F7AqIIF2bW7qGUcZjhW%2FTVZbPOwSbDO7jQneufVvinaTgeAREYnXYAeIUORrIpiP1jeZ2%2BVoPamamiLCMQoJRvLZSb39Bc9o%2BsCBjnG%2BMi0R80QObRCQbNLOVD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b36a3156be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/uploads/2022/08/Uniify_Favicon1-300x300.png

188.114.96.1

200 OK

0 B

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/2022/08/Uniify_Favicon1-300x300.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/08/Uniify_Favicon1-300x300.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10; sib_cuid=062a1de0-e731-4d5b-9223-f45d0bb38971; _ga_C5R0X7CB38=GS1.1.1700294538.1.0.1700294538.0.0.0; _ga=GA1.1.1387063408.1700294539; _ga_EB0MPR1JXK=GS1.1.1700294538.1.0.1700294538.0.0.0; po_visitor=ukGq9X_aIejc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:20 GMT
content-type: image/png
content-length: 4263
last-modified: Mon, 09 Jan 2023 14:18:19 GMT
etag: "5a1c3c-10a7-5f1d5705ca0c0"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FiWEgddThlol7%2FU85TnOA%2BoPlItjREUpb%2FEr2j0uXDeeQ0%2FHXAbKXs4bR5VfFU10wLHjfy7uS2TLAHy60rV0nvrMs5mejPsZjpLFnMCRYV09AFh9aBf6Yc1pHrFaoezA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 827eb0c8884756be-OSL
alt-svc: h3=":443"; ma=86400

va.tawk.to/log-performance/v3

104.22.24.131

200 OK

5 B

URL POST HTTP/3
va.tawk.to/log-performance/v3
IP
104.22.24.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
5 B (5 bytes)
Hash
38a8a3e3b4b6a6e4f295b2e0f899b1f0
474f5fac3d23afbaf16c5a31c98dfcd956e4c186
7652c7891ed06bce4174ab00a6ee9721daf6a4286929213ecb7daf42cd866615

HTTP Headers

POST /log-performance/v3 HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://uniifyapp.com/
Content-Type: application/json; charset=utf-8
Content-Length: 95
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:25 GMT
content-type: text/html; charset=utf-8
x-served-by: visitor-application-preemptive-hhph
access-control-allow-origin: https://uniifyapp.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 827eb0eccb87712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=1.0

188.114.96.1

200 OK

27 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=1.0
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (26516)
Size
27 kB (26702 bytes)
Hash
c55205bce667f5d812354fd1353e7389
f22de0af271eba636a022c873c94fbcd81b4c89a
c55902832fb84522d02ea1a60a30747403a140d8651fa748f13ba398b0c0df3a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=1.0 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: text/css
last-modified: Mon, 18 Sep 2023 16:27:08 GMT
etag: W/"400c52-684e-605a49d108ddf-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hXJtc4RQPAnAQ7xKWsHFwTTNPUFCw8Ow1E6LghMpi7fffNkU8QK1i3v%2FrF2JKk3eY%2B0goHBcU8dQ359a%2Bs65GGMIPPgHSKTBQspowUGTs5zeARReNqe2FKq9uHl4sYOn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b83d6756be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/uploads/2023/01/purpleslate-retina-logo-2-1.png

0.0.0.0

0 B

URL GET
uniifyapp.com/wp-content/uploads/2023/01/purpleslate-retina-logo-2-1.png
IP
0.0.0.0:0
ASN
#0

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/01/purpleslate-retina-logo-2-1.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10; sib_cuid=062a1de0-e731-4d5b-9223-f45d0bb38971; _ga_C5R0X7CB38=GS1.1.1700294538.1.0.1700294538.0.0.0; _ga=GA1.1.1387063408.1700294539; _ga_EB0MPR1JXK=GS1.1.1700294538.1.0.1700294538.0.0.0; po_visitor=ukGq9X_aIejc; TawkConnectionTime=0; twk_idm_key=nOvDkTph2gY5jHUuaNZVe; twk_uuid_63b90e9f47425128790c21d7=%7B%22uuid%22%3A%221.1vX0WccgKqDCgkEEZbCvmyhByOeVnGHtVMhQIv2J7O1XqQi0phsNWbjxC78H1sjJzB9JcZskoBRZaaMcWxDDSVtHUefZErFJtHaGPBlaboR2CaDOjU4Kwes%22%2C%22version%22%3A3%2C%22domain%22%3A%22uniifyapp.com%22%2C%22ts%22%3A1700294543893%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

uniifyapp.com/wp-content/themes/apptek/assets/js/sweetalert.min.js?ver=1700294535

188.114.96.1

200 OK

41 kB

URL GET HTTP/3
uniifyapp.com/wp-content/themes/apptek/assets/js/sweetalert.min.js?ver=1700294535
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (40808), with no line terminators
Size
41 kB (40808 bytes)
Hash
f3b8ce97ff6ce324da6232da353adf40
2a3daabc70232c6350ab48d32605dc4a6ac1f1fa
2ac46ebee46d515be86deeba385b4e41f8cff160364b362c9a6e153df327c66b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/apptek/assets/js/sweetalert.min.js?ver=1700294535 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 10:46:20 GMT
etag: W/"5a1b64-9f68-5eb4ccd6bf700-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XeIDpo1wKg5FdZr03Y7bD8X646p%2FKiMaL87XyUKI5Yp3t8Jn4dktDxSUwfBsQfkdu%2B6W08i%2Bz%2F6NsdfbmpV4jzfVch8ZbZCMTdrX9b5CnmVv6hAMvEqX97Qh9OYwXJtl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b39a7456be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2

188.114.96.1

200 OK

12 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (12198), with no line terminators
Size
12 kB (12198 bytes)
Hash
3819c3569da71daec283a75483735f7e
ecd40a5cc6f0b76200c454ca880210dc301cfab8
214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:27:08 GMT
etag: W/"400ca0-2fa6-605a49d16bfd7-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=g66BEKaL1hueCZOOvz6K7P1W166%2BaZ%2BKGdb1iC%2FfTvkfnnF6Y9HSNFxLJacxN%2FytC599j0lmXmyJYRWhGxgbpOiY2SzqRq%2FUgf7a0QpdTvbZXv2bGOxNX%2B%2FShRBmz81I"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b3ba8c56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

vsa16.tawk.to/s/?k=65586f8ebfcd9379975a763c&cver=0&pop=false&asver=259&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2M2I5MGU5ZjQ3NDI1MTI4NzkwYzIxZDciLCJ2aWQiOiI2M2I5MGU5ZjQ3NDI1MTI4NzkwYzIxZDcteEluUmNESTV4VWNmSmV5akRrQUFyIiwic2lkIjoiNjU1ODZmOGViZmNkOTM3OTk3NWE3NjNjIiwiaWF0IjoxNzAwMjk0NTQyLCJleHAiOjE3MDAyOTYzNDIsImp0aSI6ImF6RTluaUl1VEwzMWhCNUpRMTRDVCJ9.jAPhI0_NcnQUeQNzfP3j1xTOGz2BMCy1PHO43SlEzfTkiRiB7KL7Wn6pjLwzs8WEM1RmShncep3JyPhmwVo2dQ&EIO=3&transport=websocket&__t=OlXSyeZ

172.67.38.66

101 Switching Protocols

0 B

URL GET HTTP/1.1
vsa16.tawk.to/s/?k=65586f8ebfcd9379975a763c&cver=0&pop=false&asver=259&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2M2I5MGU5ZjQ3NDI1MTI4NzkwYzIxZDciLCJ2aWQiOiI2M2I5MGU5ZjQ3NDI1MTI4NzkwYzIxZDcteEluUmNESTV4VWNmSmV5akRrQUFyIiwic2lkIjoiNjU1ODZmOGViZmNkOTM3OTk3NWE3NjNjIiwiaWF0IjoxNzAwMjk0NTQyLCJleHAiOjE3MDAyOTYzNDIsImp0aSI6ImF6RTluaUl1VEwzMWhCNUpRMTRDVCJ9.jAPhI0_NcnQUeQNzfP3j1xTOGz2BMCy1PHO43SlEzfTkiRiB7KL7Wn6pjLwzs8WEM1RmShncep3JyPhmwVo2dQ&EIO=3&transport=websocket&__t=OlXSyeZ
IP
172.67.38.66:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /s/?k=65586f8ebfcd9379975a763c&cver=0&pop=false&asver=259&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2M2I5MGU5ZjQ3NDI1MTI4NzkwYzIxZDciLCJ2aWQiOiI2M2I5MGU5ZjQ3NDI1MTI4NzkwYzIxZDcteEluUmNESTV4VWNmSmV5akRrQUFyIiwic2lkIjoiNjU1ODZmOGViZmNkOTM3OTk3NWE3NjNjIiwiaWF0IjoxNzAwMjk0NTQyLCJleHAiOjE3MDAyOTYzNDIsImp0aSI6ImF6RTluaUl1VEwzMWhCNUpRMTRDVCJ9.jAPhI0_NcnQUeQNzfP3j1xTOGz2BMCy1PHO43SlEzfTkiRiB7KL7Wn6pjLwzs8WEM1RmShncep3JyPhmwVo2dQ&EIO=3&transport=websocket&__t=OlXSyeZ HTTP/1.1
Host: vsa16.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://uniifyapp.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 17f4oD9y94CnaVaOZDGBtg==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Date: Sat, 18 Nov 2023 08:02:23 GMT
Connection: upgrade
upgrade: websocket
sec-websocket-accept: B+Ukrn6DMegRXrlRzvWJYvOFHN8=
sec-websocket-extensions: permessage-deflate
strict-transport-security: max-age=0; includeSubDomains; preload
CF-Cache-Status: DYNAMIC
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 827eb0ddcf09712f-OSL
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/uploads/2022/11/10.png

188.114.96.1

200 OK

3.3 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/2022/11/10.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
PNG image data, 170 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
3.3 kB (3280 bytes)
Hash
ef364f2a87ef472fcf3924a320ccb210
9bbdf4bdd9c6c78c0e1de36116840791c21f5dfb
da08b92eb4a06b7ec78181aeea10b1b7d15b5281ee1d00446d43eb38d8092701

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/11/10.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10; sib_cuid=062a1de0-e731-4d5b-9223-f45d0bb38971; _ga_C5R0X7CB38=GS1.1.1700294538.1.0.1700294538.0.0.0; _ga=GA1.1.1387063408.1700294539; _ga_EB0MPR1JXK=GS1.1.1700294538.1.0.1700294538.0.0.0; po_visitor=ukGq9X_aIejc; TawkConnectionTime=0; twk_idm_key=nOvDkTph2gY5jHUuaNZVe; twk_uuid_63b90e9f47425128790c21d7=%7B%22uuid%22%3A%221.1vX0WccgKqDCgkEEZbCvmyhByOeVnGHtVMhQIv2J7O1XqQi0phsNWbjxC78H1sjJzB9JcZskoBRZaaMcWxDDSVtHUefZErFJtHaGPBlaboR2CaDOjU4Kwes%22%2C%22version%22%3A3%2C%22domain%22%3A%22uniifyapp.com%22%2C%22ts%22%3A1700294543893%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:27 GMT
content-type: image/png
content-length: 3280
last-modified: Thu, 10 Nov 2022 13:30:20 GMT
etag: "5a2059-cd0-5ed1dc6481300"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oNQFJRAdnjrvvpo8uzAayhSugo1Vxg%2Bjqd6WuKbWjMzVGDmRhOgZ5t1bQVbQpDEXbiIqIY2MY917Vkb73ySyn0bJWdThuaXeaCIWl7IQkUldpe1ZKrInM7oJdpSWeebz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 827eb0f6bcc856be-OSL
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/themes/apptek/assets/js/jquery.sidr.min.js?ver=1700294535

188.114.96.1

200 OK

6.9 kB

URL GET HTTP/3
uniifyapp.com/wp-content/themes/apptek/assets/js/jquery.sidr.min.js?ver=1700294535
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (7214), with no line terminators
Size
6.9 kB (6911 bytes)
Hash
9ea639276092bff3733700c32762583f
a8e543a124a2c74e887d94de6fd96d96e1a79b3e
321ce152d40bb8e09e363a6ae44482ddde94fd333865eda2489fca3713523196

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/apptek/assets/js/jquery.sidr.min.js?ver=1700294535 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 10:46:20 GMT
etag: W/"5a1b5b-1aff-5eb4ccd6bf700-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FTinu%2BEOziEuUg0RWGrMlCDJJUGPQWAW6PbgucdlLjCaAUB4vojROGOhQTLIzg00C%2FAWQFfvbhsyQSrfDKQvr7H0w0gpwsTl%2B2TN7UgtOvLCqeqJiHRWRF4%2BZ2TUdj%2F5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b39a7156be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/uploads/2022/11/3.png

188.114.96.1

200 OK

8.8 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/2022/11/3.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
PNG image data, 170 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
8.8 kB (8791 bytes)
Hash
c90f0d635cb28fc706210df6207a1195
e880e632655351c80a90a365804ffb9e3fb8cc6e
0234d64c10a052c2cad3f0c07bf6b0dc188e4eda083d0e42bd805b28fe022fc1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/11/3.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10; sib_cuid=062a1de0-e731-4d5b-9223-f45d0bb38971; _ga_C5R0X7CB38=GS1.1.1700294538.1.0.1700294538.0.0.0; _ga=GA1.1.1387063408.1700294539; _ga_EB0MPR1JXK=GS1.1.1700294538.1.0.1700294538.0.0.0; po_visitor=ukGq9X_aIejc; TawkConnectionTime=1700294543403; twk_idm_key=nOvDkTph2gY5jHUuaNZVe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:23 GMT
content-type: image/png
content-length: 8791
last-modified: Thu, 10 Nov 2022 13:30:18 GMT
etag: "5a205f-2257-5ed1dc6298e80"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B0PE3WzXxW7dq3mtRjhEmfHGrfs93uHyqmxpubhoDuq%2F7PEHsMdmiFquwhp%2B0h9M%2BadpANksn8Hbz8YFHd%2FJnQGrQH4KX54B1UKh3Rtb6H51f6uU30dfSrqJtdlgt0dI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 827eb0d9ca2656be-OSL
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/vegas/vegas.min.js?ver=2.4.0

188.114.96.1

200 OK

9.9 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/vegas/vegas.min.js?ver=2.4.0
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (10258), with no line terminators
Size
9.9 kB (9914 bytes)
Hash
20e6b58be2809cd5c0f9e1873e7fbb3b
1013fd00cdfff4cc7a85012b23ba800a316920c4
6595b66acb6f2f1de8276849fa8cdded0dd68e8662657d18871b8c707952c910

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/vegas/vegas.min.js?ver=2.4.0 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:27:25 GMT
etag: W/"4415d2-26ba-605a49e1d3c97-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1gx4KYa0T%2BLoYIpfkm4XR9IAVaP95TdFRyFaDR7ImLOuAlcW%2FRzV3PshqeGGDCOXTbOzJVVQJYioIJTsNgwF4vLBYhYs8yYKRTxWS3UWMKYizEAGt56OnI18ZRyYpuTX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b37a3f56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-includes/js/underscore.min.js?ver=1.13.4

188.114.96.1

200 OK

19 kB

URL GET HTTP/3
uniifyapp.com/wp-includes/js/underscore.min.js?ver=1.13.4
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (18798)
Size
19 kB (18833 bytes)
Hash
f88d5720bb454ed5d204cbdb56901f6b
f1952292fde4b15936e9aac16b2b9896684db95b
726b820e44f6ab90ad991d30a4bf26d3a5d71493cbcd1fb1efd0d14e89b9df2a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

uniifyapp.com/wp-content/plugins/jetpack-boost/jetpack_vendor/automattic/jetpack-lazy-images/dist/intersection-observer.js?minify=false&ver=83ec8aa758f883d6da14

188.114.96.1

200 OK

9.0 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/jetpack-boost/jetpack_vendor/automattic/jetpack-lazy-images/dist/intersection-observer.js?minify=false&ver=83ec8aa758f883d6da14
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (9051), with no line terminators
Size
9.0 kB (8983 bytes)
Hash
aee5233a88e59cf85afd5849a59da09c
a63fb67599f130b81880e3e9730462bff4ee5cc6
3a798d6addbffdfee5bcd2f5398f08585cc5f2c3bd6c511e45871e4ed72cbf7b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/jetpack-boost/jetpack_vendor/automattic/jetpack-lazy-images/dist/intersection-observer.js?minify=false&ver=83ec8aa758f883d6da14 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:27:39 GMT
etag: W/"48020a-2317-605a49ef0ba60-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VhKxNr%2Fh8xK1KekdPGcLMmMrtRnJSq5GeUQbbotZ9hofmO%2FXsskHcX09xZgeIdO34BTj8MgO9%2BERB%2FsglLInxtbmu7g2UQZS6xHDz8xy4r89xVbKI%2BPSbqeJW5itcOv1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b39a7656be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8

188.114.96.1

200 OK

13 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
HTML document, ASCII text, with very long lines (12943), with no line terminators
Size
13 kB (12943 bytes)
Hash
5bc2b1fa970f9cecb3c30c0c92c98271
7c6bb87aaa24714b7b3b3c86dd932736a80270a9
1060091178cbd6c843b802f516f230f1a3a1e85f1afbd6ef84d80e5430ba457e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:16 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:26:34 GMT
etag: W/"3e2d35-328f-605a49b0e3afd-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L9pOVc13GOCHktc5VWP7g%2FqQoCA2kfJ8WQad%2FuG%2BL5mpH2rRZ2%2F8%2BgZrKi6LF6xWIgor5j7JibP%2FA8SIvSut6YWw6ojbpkwGuhJrYzWQVldFlA1E3UG%2FbtpHFPK69lbc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b37a4756be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

js.hs-scripts.com/44045558.js?integration=WordPress&ver=10.2.5

104.16.191.89

200 OK

2.5 kB

URL GET HTTP/2
js.hs-scripts.com/44045558.js?integration=WordPress&ver=10.2.5
IP
104.16.191.89:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5A:DE:00:16:F4:3C:EB:0D:2A:0C:6E:27:59:94:38:E3:D9:B1:20:3E
ValidityWed, 03 May 2023 00:00:00 GMT - Thu, 02 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (2686), with no line terminators
Size
2.5 kB (2540 bytes)
Hash
7873211aa4a93ffee349327b77e699e1
1a7eb9da60c108ad023b6734c8dff124b5a9a665
2078d40f6866b60689a8fb11a783a68999007e88e98e033612dda631ffe60c65

HTTP Headers

GET /44045558.js?integration=WordPress&ver=10.2.5 HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 18 Nov 2023 08:02:16 GMT
content-type: application/javascript;charset=utf-8
x-trace: 2BE3726AE1BD0EBE7F4ADD9C4AB2A3C9DAF7F05093000000000000000000
cache-control: public, max-age=60
vary: origin, Accept-Encoding
access-control-allow-credentials: true
x-content-type-options: nosniff
access-control-max-age: 3600
access-control-allow-origin: https://uniifyapp.com
x-envoy-upstream-service-time: 31
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/hubapi-td/envoy-proxy-66c9b4c4f4-vs7vb
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: f8328f26-c322-4b6a-83ba-865a4a8a0bf1
x-request-id: f8328f26-c322-4b6a-83ba-865a4a8a0bf1
last-modified: Thu, 16 Nov 2023 08:02:07 GMT
cf-cache-status: EXPIRED
expires: Sat, 18 Nov 2023 08:03:16 GMT
server: cloudflare
cf-ray: 827eb0b3bed6568f-OSL
content-encoding: br
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/plugins/elementor/assets/css/modules/lazyload/frontend.min.css?ver=3.16.3

188.114.96.1

200 OK

413 B

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/elementor/assets/css/modules/lazyload/frontend.min.css?ver=3.16.3
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (413), with no line terminators
Size
413 B (413 bytes)
Hash
cb17d4e4c3fd00800b0f561b8a057149
638201b94e04bd2082788a774dde22696ad7402e
5ecb54f91384af7226cb4f18f87588edd49ceff5bdd4a3010336e1c22ccc390d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/modules/lazyload/frontend.min.css?ver=3.16.3 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: text/css
last-modified: Mon, 18 Sep 2023 16:27:05 GMT
etag: W/"3e2e48-19d-605a49cebcf6b-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z3SxGzpNavSBaPfzVOYqo5Ux5L3Z6OpPblMAXWn%2FjV8WnMLrca5ySyAOZi9nAaegH8sGFsZUIXKXeIE%2F5HQCOvCw5C%2Bd%2FMXzltuyfckwGGdxszaA2rtgXpOuSDum%2BABQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b89dab56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

js.hsadspixel.net/fb.js

104.17.229.163

200 OK

6.2 kB

URL GET HTTP/2
js.hsadspixel.net/fb.js
IP
104.17.229.163:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintFC:DB:B2:8A:EC:7E:99:5C:25:C2:01:C0:DB:44:A4:07:41:7E:4F:3A
ValidityWed, 17 May 2023 00:00:00 GMT - Thu, 16 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (6357), with no line terminators
Size
6.2 kB (6170 bytes)
Hash
e70c72920bc496ac910727639b55854a
ab0f39e019731cae39131a572125729668b27cf2
452d5efe8cb790b2a1d93359a515c256152a04ff734b3d03b9fe305ca33b9652

HTTP Headers

GET /fb.js HTTP/1.1
Host: js.hsadspixel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Fri, 27 Oct 2023 13:56:49 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: MNLx4JOx3WSJAJIp0HalotEMdYQEQdMj
etag: W/"14edbc97b72939e54b0993394190ecf8"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 736ad67f05a9a5a8fd5ed8cba30196f4.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: Eqm3H2AVT0gHxdxyHquMEm2yLUXfLMuwO4Mp0loAbyQfgWwAg-rZmg==
age: 338
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=adsscriptloaderstatic/static-1.494/bundles/pixels-release.js&cfRay=81e8ff93689e0b69-OSL
cache-control: max-age=600
x-hs-target-asset: adsscriptloaderstatic/static-1.494/bundles/pixels-release.js
x-content-type-options: nosniff
x-hs-cache-status: HIT
x-envoy-upstream-service-time: 1
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-7c89bb96b9-mqbv2
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: 27639167-1ba4-4221-9bb0-8f2ae4f8001c
x-request-id: 27639167-1ba4-4221-9bb0-8f2ae4f8001c
cache-tag: staticjsapp-AdsScriptLoaderCloudflare-web-prod,staticjsapp-prod
cf-cache-status: HIT
server: cloudflare
cf-ray: 827eb0b9eb577130-OSL
content-encoding: br
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/modernizr.custom.js?ver=1700294535

188.114.96.1

404 Not Found

128 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/modernizr.custom.js?ver=1700294535
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type

Size
128 kB (128482 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/radiantthemes-addons/assets/js/modernizr.custom.js?ver=1700294535 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10; sib_cuid=062a1de0-e731-4d5b-9223-f45d0bb38971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Sat, 18 Nov 2023 08:02:18 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.30
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: max-age=14400, must-revalidate
link: <https://uniifyapp.com/wp-json/>; rel="https://api.w.org/"
server-timing: wp-load-alloptions-query;dur=1.17, wp-before-template;dur=74.02
vary: Accept-Encoding,User-Agent
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S2K%2FCv3NaFrSsk9j1uQf0Yj72cIa2IZKVylnAetAr1exE81O41%2FmzTQDaespLgjrTtMBRA59%2B%2BsdrUNqdUBu4DIgoR3H3EahGn4u5QvgKsgZIUBverZrhGuQXQBxhVcZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0bc98d156be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

va.tawk.to/v1/session/start

104.22.24.131

200 OK

1.1 kB

URL POST HTTP/3
va.tawk.to/v1/session/start
IP
104.22.24.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (1180), with no line terminators
Size
1.1 kB (1084 bytes)
Hash
ffa8f5a1bd39911ba889fd5f06384df7
fa254427bad8fd2bcd32ab192154d58fa03e15dc
9a4b97d8032110d6b0ecf559edaf10cb65af2ed379aa7cf069cc2924d969f5f3

HTTP Headers

POST /v1/session/start HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://uniifyapp.com/
Content-Type: application/json; charset=utf-8
Content-Length: 269
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:22 GMT
content-type: application/json
x-served-by: visitor-application-preemptive-hhph
access-control-allow-origin: https://uniifyapp.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 827eb0d19fed712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/carousel.min.js?ver=1700294535

188.114.96.1

200 OK

54 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/carousel.min.js?ver=1700294535
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (933)
Size
54 kB (53791 bytes)
Hash
0b991a4e1dd356f931be86f323203ff0
663772820fc3f1d8da6a1ab59dca0312a3657f82
041df1d9efdace731a6b5956473567232e14be126d0bc80a2c1b49a706211ab1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/radiantthemes-addons/assets/js/carousel.min.js?ver=1700294535 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 06:10:07 GMT
etag: W/"5a0967-d21f-5ecef6442edc0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hlA58WB6HR%2B7so1FJDxIIbisrT%2BucckQp4185y%2FBkWdcrbuEluIsAHc2BogLFhmqZ4HieRlOd4nPyeUMiEkF76tkP60WINA7zHjAY1LZdwC9QCajTp4NZx4HRK2di9ke"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b3aa8056be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.16.3

188.114.96.1

200 OK

59 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.16.3
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type

Size
59 kB (58860 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.16.3 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:27:06 GMT
etag: W/"3e2f1b-e5ec-605a49cfe49fd-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RM%2BN9ub4X8hp5CQt8IzD8itK5bctWg9Wz%2FeYJgJPW4ZJcu401hCgRTAhJuoBwwAMxasMg57QSUcTuONgqtiiYGekzSWVaHIaZTo3Vsl7rE0%2B7aU58nu9DqWl%2FgTLnfYI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b3ba8b56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/uploads/elementor/css/post-1177.css?ver=1695054608

188.114.96.1

200 OK

117 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/elementor/css/post-1177.css?ver=1695054608
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (43311)
Size
117 kB (116914 bytes)
Hash
92d415585452b308b32e87cd30f80cda
6d20ad635f61e34655a520edb051c11a241bd10f
0fe9bdaa1108d160b9aa5b32541d008649595220f03b319cbc1a2931c10640bf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/post-1177.css?ver=1695054608 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: text/css
last-modified: Mon, 18 Sep 2023 16:30:08 GMT
etag: W/"5a000f-1c8b2-605a4a7cb495a-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wis54zSLXjtAFFq0RTkE6ThIc8kasuFhE4slpaz%2BAdbShjQvSQy%2Brd8Gdi%2Ba0MMdCoju6%2BCyS8AeeStgkMNk2N8pe%2Fnl0S3CFKLmFILVJd%2F7m%2F6rNmgCaZqGLtZgncss"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b89da956be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-chunk-9294da6c.js

104.22.24.131

200 OK

18 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-chunk-9294da6c.js
IP
104.22.24.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (17930), with no line terminators
Size
18 kB (17930 bytes)
Hash
751a8c2fa870d0a6b7d3a4eb10f7319b
898d17e4c7d3f9fcadebbc8d2e47c071fe23697f
fe18d700aa574127472795bb7369624cb90ca55f62d66b548eb7df53d2a46a74

HTTP Headers

GET /_s/v4/app/6549ac0173e/js/twk-chunk-9294da6c.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:22 GMT
content-type: application/javascript
last-modified: Tue, 07 Nov 2023 03:18:38 GMT
etag: W/"751a8c2fa870d0a6b7d3a4eb10f7319b"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 961219
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 827eb0dcc88f712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/uploads/2022/11/5.png

0.0.0.0

5.3 kB

URL GET
uniifyapp.com/wp-content/uploads/2022/11/5.png
IP
0.0.0.0:0
ASN
#0

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
PNG image data, 170 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
5.3 kB (5321 bytes)
Hash
39edb661c91961c10691571176f8e426
a2eae609ff207f5b2c09ab8b6c7e470bbdf23824
6e554b16c571417d40f4342b18bb1cc87c3d3c2702537ecc5a56e276645b56a9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/11/5.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10; sib_cuid=062a1de0-e731-4d5b-9223-f45d0bb38971; _ga_C5R0X7CB38=GS1.1.1700294538.1.0.1700294538.0.0.0; _ga=GA1.1.1387063408.1700294539; _ga_EB0MPR1JXK=GS1.1.1700294538.1.0.1700294538.0.0.0; po_visitor=ukGq9X_aIejc; TawkConnectionTime=0; twk_idm_key=nOvDkTph2gY5jHUuaNZVe; twk_uuid_63b90e9f47425128790c21d7=%7B%22uuid%22%3A%221.1vX0WccgKqDCgkEEZbCvmyhByOeVnGHtVMhQIv2J7O1XqQi0phsNWbjxC78H1sjJzB9JcZskoBRZaaMcWxDDSVtHUefZErFJtHaGPBlaboR2CaDOjU4Kwes%22%2C%22version%22%3A3%2C%22domain%22%3A%22uniifyapp.com%22%2C%22ts%22%3A1700294543893%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:29 GMT
content-type: image/png
content-length: 5321
last-modified: Thu, 10 Nov 2022 13:30:18 GMT
etag: "5a2063-14c9-5ed1dc6298e80"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7bCmpjH1CUm5jOLGyOlXKeOeeuUqC%2BKbb0iMpMMNHeGfi1YSe27iBJKzOxIIIEEEkzSeFfI3goHi8NcW%2FfBMudANlTW4SuoJ36CDlRS%2BgwMXpvu5EotKNzmH%2F6hV7QaY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 827eb1002bd456be-OSL
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/themes/apptek/assets/js/fancy-box.js?ver=1700294535

188.114.96.1

200 OK

60 kB

URL GET HTTP/3
uniifyapp.com/wp-content/themes/apptek/assets/js/fancy-box.js?ver=1700294535
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type

Size
60 kB (60161 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/apptek/assets/js/fancy-box.js?ver=1700294535 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 10:46:20 GMT
etag: W/"5a1b59-eb01-5eb4ccd6bf700-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7RY%2Bp0RfTEy41hHxpPphwjLtmls13oIZ0B6O6Uw95NxN47p%2ByeiYr2mu6kLsxsc6xzGXqtEB4ylasVnocitN%2FMF3WZY3ajoeMwJC9l13K%2F%2FTcT0SqXAO3xzEphN%2BVxco"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b39a7356be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

js.hs-banner.com/v2/44045558/banner.js

104.18.34.229

200 OK

67 kB

URL GET HTTP/2
js.hs-banner.com/v2/44045558/banner.js
IP
104.18.34.229:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2C:9C:DC:70:87:29:18:51:70:06:6E:2F:4B:4D:E0:23:1F:30:84:18
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65046)
Size
67 kB (67022 bytes)
Hash
3b93950d1aa58a0bac19ba033b5c9e30
eee129780fa83956aa50c1567224d54fb6afdcf7
a8b293de0ddc1fe6fd2621867e0f97d4000edc4a15caa31eefb99a5066339026

HTTP Headers

GET /v2/44045558/banner.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: h2KrENSJGkTEB3wkpbGauzIUjwTTEYiNw755JZMC5XJ2GogXbA4FpM+5+z2KPjJzhbprVsNBn9c=
x-amz-request-id: 2BVYHJSSDRSWH3EX
last-modified: Thu, 19 Oct 2023 01:29:09 GMT
etag: W/"3b93950d1aa58a0bac19ba033b5c9e30"
x-amz-server-side-encryption: AES256
cache-control: max-age=300,public
x-amz-version-id: .jVeoeP7ND8vs6K6n2jMbbJtHg.Sy6Ki
access-control-allow-origin: https://uniifyapp.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin, Accept-Encoding
expires: Sat, 18 Nov 2023 08:07:17 GMT
x-envoy-upstream-service-time: 42
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/analytics-js-proxy-td/envoy-proxy-6849bc8697-vvl5l
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: 0ed5f567-2b21-4f28-80f4-531af15b6f38
x-request-id: 0ed5f567-2b21-4f28-80f4-531af15b6f38
cf-cache-status: MISS
server: cloudflare
cf-ray: 827eb0ba08a1569d-OSL
content-encoding: br
X-Firefox-Spdy: h2

in-automate.brevo.com/visitor/ehnbv4qti39900l4o230qvgy

104.18.38.216

204 No Content

0 B

URL POST HTTP/2
in-automate.brevo.com/visitor/ehnbv4qti39900l4o230qvgy
IP
104.18.38.216:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectbrevo.com
Fingerprint02:B5:EB:F6:99:15:0A:B5:BC:5D:FE:DD:92:BD:CF:1A:B6:C5:68:5D
ValiditySun, 29 Oct 2023 18:23:14 GMT - Sat, 27 Jan 2024 18:23:13 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /visitor/ehnbv4qti39900l4o230qvgy HTTP/1.1
Host: in-automate.brevo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Content-Length: 88
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Sat, 18 Nov 2023 08:02:17 GMT
access-control-allow-origin: *
cache-control: no-cache
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=HjyBReNAAk5k2DM4UfhTqQBBApDq7sU4RGTPShCfhdA-1700294537-0-Adn/TpfvIU4uWZIcU2BqtWdW412mH2F2cb/4Vv9NpTRY0HHPecnVAqbZ+MR65F+QH5DZJv4icH7ECoZFE+I+Z4g=; path=/; expires=Sat, 18-Nov-23 08:32:17 GMT; domain=.brevo.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 827eb0bd891956c5-OSL
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/images/right-arrow-img.svg

188.114.96.1

200 OK

592 B

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/images/right-arrow-img.svg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (633), with no line terminators
Size
592 B (592 bytes)
Hash
f64b690d7954dfce66d8a04312b32608
e8336da255a273093b3721080947b1be0f9286a2
67de8b0806426ff34af8c8f52251331093791b298d99cf694ddde84d0d9b833e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/radiantthemes-addons/assets/images/right-arrow-img.svg HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/css/rt-testimonial.css?ver=1700294535
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10; sib_cuid=062a1de0-e731-4d5b-9223-f45d0bb38971; _ga_C5R0X7CB38=GS1.1.1700294538.1.0.1700294538.0.0.0; _ga=GA1.1.1387063408.1700294539; _ga_EB0MPR1JXK=GS1.1.1700294538.1.0.1700294538.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:18 GMT
content-type: image/svg+xml
last-modified: Tue, 08 Nov 2022 06:10:07 GMT
etag: W/"5a0499-250-5ecef6442edc0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qWiptDwUqmQHiKCLPWw6cbyMfxBU6A691nzi7uuiN55BH56cHfXe2TtSP0fTjtkG7oCvrK5rjf1PmmMI%2FqRSapIFN%2Fq%2FT18gWxqdyU5Vku%2FnepbGNzK7NI7kc9FdJBkl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0bf2a4e56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/images/left-arrow-img.svg

188.114.96.1

200 OK

594 B

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/images/left-arrow-img.svg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (632), with no line terminators
Size
594 B (594 bytes)
Hash
d93516506647cfb20ad4220c107845e2
e887d8c1d2dcedab85bd2794491bb832675abe3b
b34585856241e13635e015e89c554cd05dfcad84664c3a8c5d24083b7d0a94e7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/radiantthemes-addons/assets/images/left-arrow-img.svg HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/css/rt-testimonial.css?ver=1700294535
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10; sib_cuid=062a1de0-e731-4d5b-9223-f45d0bb38971; _ga_C5R0X7CB38=GS1.1.1700294538.1.0.1700294538.0.0.0; _ga=GA1.1.1387063408.1700294539; _ga_EB0MPR1JXK=GS1.1.1700294538.1.0.1700294538.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:18 GMT
content-type: image/svg+xml
last-modified: Tue, 08 Nov 2022 06:10:07 GMT
etag: W/"5a0490-252-5ecef6442edc0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nBiXMQM%2F8dC5ibAS3YrFRAZ%2Ffua7dQq8c5nKDF%2FmPvm9vDUSbUsBJ1Aci9Gdr7QTuYYxDCDXPyMGmqqp3UAWwIefGeRIGOOwxNQVqbfyOEJZZxMEfQ5f5e%2FsHjJ%2F9SnK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0bf2a4f56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/modernizr.custom.js?ver=1700294535

188.114.96.1

404 Not Found

128 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/modernizr.custom.js?ver=1700294535
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type

Size
128 kB (128482 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/radiantthemes-addons/assets/js/modernizr.custom.js?ver=1700294535 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.30
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: max-age=14400, must-revalidate
link: <https://uniifyapp.com/wp-json/>; rel="https://api.w.org/"
server-timing: wp-load-alloptions-query;dur=1.34, wp-before-template;dur=82.55
vary: Accept-Encoding,User-Agent
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EoSmGWxYzMZNeAXrVib0Y6jpl%2BTs%2BTyUyPDwga02xHjC4tibMHsZG8YxZRBvh7qkhMiArfOicBmtL9JXUbA%2F0qg9M24J6AAEqRbfQD%2BzXeQ78fyoMMuXj60eeLrPP%2FGK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b3aa7a56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.16.3

188.114.96.1

200 OK

5.0 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.16.3
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (5094), with no line terminators
Size
5.0 kB (4997 bytes)
Hash
3e81e163c307c51cccae24aadfac6153
8616313058759c0f4812a4b5225303663e0b8c7d
5916789b6e5b5d872a5d616518264e502b2222d72a38aa9c68602b67301eb5e8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.16.3 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:27:07 GMT
etag: W/"3e2f89-1385-605a49d0a7356-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PZ%2BJgQLqhPQJehHm4io4QH9sJr8hF0giLBcTBHekWUNF6%2BX9Spvj0q8IR9aWS17wRUXCGVc1xldgQeFshvOcmObwlwP20OMDdn9GU2gb3BaL9AfwaMLEIBVbCVuRAmt5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b3aa8756be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/elementor/assets/lib/swiper/css/swiper.min.css?ver=5.3.6

188.114.96.1

200 OK

13 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/elementor/assets/lib/swiper/css/swiper.min.css?ver=5.3.6
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (12876), with no line terminators
Size
13 kB (12876 bytes)
Hash
bcad7781b3e74db2565b8424c45232cd
41b0d94434ef667897c06e1184b703064ffceda1
d622534d53d3ac1095af275f0b30274fcd835785577df2dde6d9398e6f7a2c8f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/swiper/css/swiper.min.css?ver=5.3.6 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: text/css
last-modified: Mon, 18 Sep 2023 16:27:08 GMT
etag: W/"400c95-324c-605a49d16a867-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KenXDDqguHb6Jc4dzAs0Wfs1rIA%2F%2B0msFkFx13W51z6bNFLs%2Fd02xL3p81P9umExIHTTQr%2FzivxcTYe0zFMGoyn0ngj1xbP3JxVfBqpvIX0GNtUCcejghYuNvUKdhBE8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b86d8556be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/radiantthemes-addons/widgets/custom-button/css/button-style-four.css?ver=1700294535

188.114.96.1

200 OK

1.7 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/radiantthemes-addons/widgets/custom-button/css/button-style-four.css?ver=1700294535
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (1772), with no line terminators
Size
1.7 kB (1702 bytes)
Hash
183887c48c1e2bc531d2abc494b800ba
3e3c330f7a4c9a5d1e3dfea8a12822d9314437ad
4b404b106d9463c99aa6579f721250f24aa0d98c0f4b28c5c40f11e7a0e07a75

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/radiantthemes-addons/widgets/custom-button/css/button-style-four.css?ver=1700294535 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 06:10:07 GMT
etag: W/"5a0a3f-6a6-5ecef6442edc0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nUDwhGKreVztSsUTJdy4tR5PeSnXv%2FyNA0H0L%2B5FcZ1bnpI32wPTcKhkuaRiKoCmchTrjWg3L9Bxu12h5ZZQVC1ANoyJqBCdgMOYfNnI6cKqo9Ia%2FDyvESMUmTrjvwJZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b87d9556be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-chunk-2d0b383d.js

104.22.24.131

200 OK

699 B

URL GET HTTP/3
embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-chunk-2d0b383d.js
IP
104.22.24.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (725), with no line terminators
Size
699 B (699 bytes)
Hash
7c2c957f3cf80dadfd0cbb7c677a0869
30e8962bf64cc7349c9e61b40b8bab5aa598c63c
606127d882e34faee4895ad2cbf8a94d805fac37792c2cc2b9bc05ca3de743b1

HTTP Headers

GET /_s/v4/app/6549ac0173e/js/twk-chunk-2d0b383d.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:22 GMT
content-type: application/javascript
last-modified: Tue, 07 Nov 2023 03:18:38 GMT
etag: W/"838903127a65ec440893b4945c40ca4a"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 961219
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 827eb0dcd89c712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/gtag/js?id=GT-MBLHFQZ&l=dataLayer&cx=c

142.250.74.168

200 OK

214 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=GT-MBLHFQZ&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (4179)
Size
214 kB (214472 bytes)
Hash
21c280642979bcbadf966e4c2137022e
49d3a1d98b2661abdc831edb93f029ea4f52a359
1623c2ac713efdf57f698ba2d3a3d3fae98cd69887ee561848824ad4bca98999

HTTP Headers

GET /gtag/js?id=GT-MBLHFQZ&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 18 Nov 2023 08:02:17 GMT
expires: Sat, 18 Nov 2023 08:02:17 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77066
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

forms.hscollectedforms.net/collected-forms/v1/config/json?portalId=44045558&utk=

104.17.90.154

200 OK

116 B

URL GET HTTP/2
forms.hscollectedforms.net/collected-forms/v1/config/json?portalId=44045558&utk=
IP
104.17.90.154:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA5:D1:D2:E1:EA:8D:D7:F7:79:F2:ED:55:66:75:F5:52:07:A7:F4:B3
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
116 B (116 bytes)
Hash
fcfb4d332aff6a4cce841fd765cfffbc
ca4f70b3cb9eca1e64345004a8ecb9bd9a0345ea
05671256e5ac5755bf4845a1ff27405e07fc329744aa08eb125a299e24d1b65b

HTTP Headers

GET /collected-forms/v1/config/json?portalId=44045558&utk= HTTP/1.1
Host: forms.hscollectedforms.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/json;charset=utf-8
vary: Accept-Encoding
cache-control: max-age=0
x-content-type-options: nosniff
access-control-allow-origin: https://uniifyapp.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: *
access-control-max-age: 180
x-robots-tag: none
x-envoy-upstream-service-time: 8
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-7b7f9459cc-gklfn
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: 42ce0b4d-35ce-4104-8a6c-1f58b860c797
x-request-id: 42ce0b4d-35ce-4104-8a6c-1f58b860c797
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 827eb0bcb898b51b-OSL
content-encoding: br
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/themes/apptek/assets/js/bootstrap.min.js?ver=1700294535

188.114.96.1

200 OK

234 kB

URL GET HTTP/3
uniifyapp.com/wp-content/themes/apptek/assets/js/bootstrap.min.js?ver=1700294535
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type

Size
234 kB (233727 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/apptek/assets/js/bootstrap.min.js?ver=1700294535 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 10:46:20 GMT
etag: W/"5a1b55-390ff-5eb4ccd6bf700-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=caywC2c7jxKT3kXuoIbaFPO9fUs4AOCZZqooPtukJZ1AVZCJAT9bmrybtZCteQ9Geen4ZcU8Dzo%2F7xR7cw1T%2FdK8N2YpBj8ai2SWbbUvwuIzKje8%2FqhRwW5aXKGv188K"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b37a4956be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/particles.min.js?ver=2.0.0

188.114.96.1

200 OK

23 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/particles.min.js?ver=2.0.0
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (22686), with no line terminators
Size
23 kB (22686 bytes)
Hash
c9898f4218ad8a464141550c2ec72225
592a3ac90f7cafbc30082584b5e132365bd48f23
71a49270bfb8077f783c2530b1c5bf2335a100a2419996d2f7d1c2ac19dd6239

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/addon-elements-for-elementor-page-builder/assets/js/particles.min.js?ver=2.0.0 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:27:25 GMT
etag: W/"421a5b-589e-605a49e1d05e7-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U9fTmMkByEKZhwYKa5AqPa6C%2Fa13Bw2lUhfg%2F5IBE17Ccj5KY98TNyS6NblrlLlncbz%2FOHJoS38Zexqo%2FKjXGiRblF5qZoWQQRN%2BpsbkYaHydI0KZlMD9NubE%2FXEbnNw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b37a3756be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/themes/apptek/assets/js/apptek-app.js?ver=1700294535

188.114.96.1

200 OK

15 kB

URL GET HTTP/3
uniifyapp.com/wp-content/themes/apptek/assets/js/apptek-app.js?ver=1700294535
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (385)
Size
15 kB (15208 bytes)
Hash
7cf65cd7764edd82badd2c08982e7380
950e53a634c5d8419c0cea76b5a18bb115f69bc7
0b9c06d7c697ff088475c827db1be01bc262c35ad84caff6dcc462ae378b2b44

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/apptek/assets/js/apptek-app.js?ver=1700294535 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript
last-modified: Fri, 28 Oct 2022 12:23:17 GMT
etag: W/"5a1b52-3b68-5ec17528e1740-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xlUoR9Kdb4CBcOiX0C0stMGCwPMR6BJeyqMAAjJ63gm4Muc9MnP6TS0il16NkVoTW8Reu9WnZXVob%2BQ7vgDPJdMdGCu8hDOLSytj3OE6th8Ntmy3XF6%2BimRoEGTYl0Fi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b39a6756be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js

188.114.96.1

200 OK

1.4 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (1391), with no line terminators
Size
1.4 kB (1360 bytes)
Hash
4fc487025aec8bd5c819eabeda9b5472
b8c29ab551926b2fd4a7d88ceb4f29db5d52489e
20750aa1dd3c1a9b73240bd67052e8920a19a31021461325264142c3218762cb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10; sib_cuid=062a1de0-e731-4d5b-9223-f45d0bb38971; _ga_C5R0X7CB38=GS1.1.1700294538.1.0.1700294538.0.0.0; _ga=GA1.1.1387063408.1700294539; _ga_EB0MPR1JXK=GS1.1.1700294538.1.0.1700294538.0.0.0; po_visitor=ukGq9X_aIejc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:19 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:27:07 GMT
etag: W/"3e2f7d-550-605a49d0a5fce-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mjmV1ZuinGOUZQ6qQloS7DUtfaW5KJtCQiW1c4O0dxCfcJ1yIRAK9QoJAKe9J8%2BG9RBCqiQfT4BNP54xLpJ7yeIjbJiASeJIJ81Tnc8pIY4p1NK8o5E56t6w4pPYHWvr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0c6bf4456be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-chunk-f1565420.js

104.22.24.131

200 OK

11 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-chunk-f1565420.js
IP
104.22.24.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (10992), with no line terminators
Size
11 kB (10992 bytes)
Hash
e66b5b5406f1411c203d6a14b3268446
16d128903623ff99706f40ec7a35d85d44caff21
1221dfd515b54f32dc7d169eb8c5bbc892d85c310ef286aa9b80eeeef2cf9643

HTTP Headers

GET /_s/v4/app/6549ac0173e/js/twk-chunk-f1565420.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:22 GMT
content-type: application/javascript
last-modified: Tue, 07 Nov 2023 03:18:38 GMT
etag: W/"e66b5b5406f1411c203d6a14b3268446"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 961027
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 827eb0dcc893712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1

188.114.96.1

200 OK

14 kB

URL GET HTTP/3
uniifyapp.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (13479)
Size
14 kB (13577 bytes)
Hash
9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript
last-modified: Fri, 09 Jun 2023 05:49:24 GMT
etag: W/"54373a-3509-5fdabee5f2100-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rN0PILtSDhvCEh6UU0HTlyiOQMqLpzIIxWpgTngv27oyOUKD%2F9DrmfOhokEIICDu6Cm97uwGWtzRhMg4jLZweyRdQZh7CIfFeyCu%2BAD%2BgxVpkCMfiecA%2BD6%2F5SIU9o39"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b36a2f56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

in-automate.brevo.com/p?key=ehnbv4qti39900l4o230qvgy&cuid=062a1de0-e731-4d5b-9223-f45d0bb38971&ma_url=https%3A%2F%2Funiifyapp.com%2F%3F_se%3Dc2lld2Vja2Uubmljb2xAc21jLmRl%26utm_campaign%3DRicha_Email_4%26utm_medium%3Demail%26utm_source%3Dbrevo&sib_type=page&ma_title=Home%20-%20Uniify&sib_name=Home%20-%20Uniify&ma_referrer=&ma_path=%2F

104.18.38.216

204 No Content

0 B

URL GET HTTP/2
in-automate.brevo.com/p?key=ehnbv4qti39900l4o230qvgy&cuid=062a1de0-e731-4d5b-9223-f45d0bb38971&ma_url=https%3A%2F%2Funiifyapp.com%2F%3F_se%3Dc2lld2Vja2Uubmljb2xAc21jLmRl%26utm_campaign%3DRicha_Email_4%26utm_medium%3Demail%26utm_source%3Dbrevo&sib_type=page&ma_title=Home%20-%20Uniify&sib_name=Home%20-%20Uniify&ma_referrer=&ma_path=%2F
IP
104.18.38.216:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectbrevo.com
Fingerprint02:B5:EB:F6:99:15:0A:B5:BC:5D:FE:DD:92:BD:CF:1A:B6:C5:68:5D
ValiditySun, 29 Oct 2023 18:23:14 GMT - Sat, 27 Jan 2024 18:23:13 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p?key=ehnbv4qti39900l4o230qvgy&cuid=062a1de0-e731-4d5b-9223-f45d0bb38971&ma_url=https%3A%2F%2Funiifyapp.com%2F%3F_se%3Dc2lld2Vja2Uubmljb2xAc21jLmRl%26utm_campaign%3DRicha_Email_4%26utm_medium%3Demail%26utm_source%3Dbrevo&sib_type=page&ma_title=Home%20-%20Uniify&sib_name=Home%20-%20Uniify&ma_referrer=&ma_path=%2F HTTP/1.1
Host: in-automate.brevo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Sat, 18 Nov 2023 08:02:18 GMT
access-control-allow-origin: *
cache-control: no-cache
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=IGwecpbxzKJUJWHgs3uwOlJILBaogBFBH2pl244SWLQ-1700294538-0-AUfTY3l2AbbqFLfYAdbfi2Kd/GSd/OagWTup28UB4JczmWEOsmjHwshPea2rGjPW0obVUE0tbNvWT/szXf99DwQ=; path=/; expires=Sat, 18-Nov-23 08:32:18 GMT; domain=.brevo.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 827eb0be297956c5-OSL
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-app.js

104.22.24.131

200 OK

151 B

URL GET HTTP/3
embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-app.js
IP
104.22.24.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
151 B (151 bytes)
Hash
04a9862af6efaf787bc8fb8e99ba6987
a57bb8f258eb1a60dc3b288a608ad8ef9fbecef3
ecc74c329a700e3e6ca29aed5ffe3c166cf39670c8b11573fa7f837f79a71b5c

HTTP Headers

GET /_s/v4/app/6549ac0173e/js/twk-app.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:20 GMT
content-type: application/javascript
last-modified: Tue, 07 Nov 2023 03:18:38 GMT
etag: W/"e736e189edb5d0d9d5b8e7f23dd9114a"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 827eb0cba9e956c4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/vegas/vegas.min.css?ver=2.4.0

188.114.96.1

200 OK

9.5 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/vegas/vegas.min.css?ver=2.4.0
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (9505), with no line terminators
Size
9.5 kB (9503 bytes)
Hash
2000f454e7edf939bcd91af908d5d480
dd9d72c8063656da91e30954191a1b7b58277a8c
6578aea6a06c0402715d2207e08e0c69d886dcaca2bd91d5b3c45445618f164d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/addon-elements-for-elementor-page-builder/assets/lib/vegas/vegas.min.css?ver=2.4.0 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: text/css
last-modified: Mon, 18 Sep 2023 16:27:25 GMT
etag: W/"4415cb-251f-605a49e1d38af-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7txYHR22q6pMPsu1nuJU%2F3%2FPVaTc4hkg46bAviW5iUrFnLpu%2B63icjgfXOfhrj8LqtCosoVoFjrodeRGba63mhqG5bTv0dfQG0yHJsZIPKeIJwcbuMxRKPALj3f2uZBA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b82d5e56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/css/rt-testimonial.css?ver=1700294535

188.114.96.1

200 OK

30 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/css/rt-testimonial.css?ver=1700294535
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text
Size
30 kB (29691 bytes)
Hash
985336694847396b24b853ae53f74218
70be4a9a60178ffe8bf24e80ef2587a4c4f684da
a3859f20a545d3babad4fe73c43119f5548b810425871f271328c9dde82c5230

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/radiantthemes-addons/assets/css/rt-testimonial.css?ver=1700294535 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 06:10:07 GMT
etag: W/"5a03db-73fb-5ecef6442edc0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mk%2FyeOZDR%2Flav7mVJNrKRkNdrqGFaQaPmV9N9krQHEkLMrBY76OZ55MgYd1YAn%2BA2C3eGcUGUvTo0EzpCEJ%2Fx99msBv3q2lhF2C0z21W8dehjFZVPaTAQ95xdpDqUTQc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b89dad56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

js.hsleadflows.net/leadflows.js

104.18.124.12

200 OK

564 kB

URL GET HTTP/2
js.hsleadflows.net/leadflows.js
IP
104.18.124.12:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint55:A1:55:C6:3D:AC:5A:B1:4F:CD:CD:80:A6:AD:F1:B8:4E:0B:34:67
ValiditySat, 06 May 2023 00:00:00 GMT - Sun, 05 May 2024 23:59:59 GMT

File type

Size
564 kB (563966 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /leadflows.js HTTP/1.1
Host: js.hsleadflows.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Wed, 25 Oct 2023 14:35:17 UTC
etag: W/"df7c200fc1e8a1a0c9d50df4fbec7e86"
x-amz-server-side-encryption: AES256
x-amz-version-id: RTyeMetKvg_dT1r75rKZucXAeC83sdPJ
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Miss from cloudfront
via: 1.1 872e43fac89d80c9557000efb9c31650.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: -IvWwwmB2q0c7R4VZEoWuu6JrOs9Z05_r496nos2T5e8s6N_oHfghQ==
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=lead-flows-js/static-1.1275/bundle/main/lead-flows-release.js&cfRay=8247ee227e152d95-ARN
cache-control: s-maxage=86400, max-age=0
x-hs-target-asset: lead-flows-js/static-1.1275/bundle/main/lead-flows-release.js
x-content-type-options: nosniff
x-hs-cache-status: MISS
x-envoy-upstream-service-time: 51
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-59f9889544-65w98
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: ac9882fc-6e6d-4da6-a6a7-f299ab7007ab
x-request-id: ac9882fc-6e6d-4da6-a6a7-f299ab7007ab
cache-tag: staticjsapp-lead-flows-cloudflare-web-prod,staticjsapp-prod
cf-cache-status: MISS
server: cloudflare
cf-ray: 827eb0ba0b18b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-chunk-common.js

104.22.24.131

200 OK

220 kB

URL GET HTTP/2
embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-chunk-common.js
IP
104.22.24.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type

Size
220 kB (219989 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /_s/v4/app/6549ac0173e/js/twk-chunk-common.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 18 Nov 2023 08:02:20 GMT
content-type: application/javascript
last-modified: Tue, 07 Nov 2023 03:18:38 GMT
etag: W/"72cdc9849868f49ab20a7a4a581454f9"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 827eb0cb9a9e7127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/6549ac0173e/css/min-widget.css

104.22.24.131

200 OK

25 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/6549ac0173e/css/min-widget.css
IP
104.22.24.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (24751), with no line terminators
Size
25 kB (24751 bytes)
Hash
d4f9ad34fae3ba64cbc48057dc47e968
f8d0d55dc6e9b5d53f74b0b8bfc5e2edbdb0618d
2b5b9f68ace12b789b1371204754547021dcbf3e9df630e7e22b49ee56e05b8c

HTTP Headers

GET /_s/v4/app/6549ac0173e/css/min-widget.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:22 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=24831
access-control-allow-origin: *
etag: W/"5742a34aaab2a5983c7c11cdeef1c0ee"
last-modified: Tue, 07 Nov 2023 03:18:37 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
age: 961218
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 827eb0dd993e712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/uploads/elementor/css/post-1294.css?ver=1695054608

188.114.96.1

200 OK

3.4 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/elementor/css/post-1294.css?ver=1695054608
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (3427), with no line terminators
Size
3.4 kB (3427 bytes)
Hash
0935016ed2d5b7bf473252b0425bfe30
a97f66535d1624ee880e6e9bf2940773ee1232b9
17e22f14db30019de283e3a53241733e4d6d0f4c56fac127b6b292e16348377a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/post-1294.css?ver=1695054608 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: text/css
last-modified: Mon, 18 Sep 2023 16:30:08 GMT
etag: W/"5a0012-d63-605a4a7ce27be-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pB4%2FWD%2BGhroZVlhYEl1NmT9X6LP4jTDMJ8zrd5Nd0bd%2FIfX20QVSSggNryE4fjb%2Bgp%2FGqpM%2FIlEmLqh5QWl7XyDU740CxdOTolfz2uo%2FDHSRdQJBghOSEPoY8e8auK4F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b82d5856be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/radiantthemes-addons/widgets/header-nav-menu/css/header-menu-style-two.css?ver=1700294535

188.114.96.1

200 OK

178 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/radiantthemes-addons/widgets/header-nav-menu/css/header-menu-style-two.css?ver=1700294535
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text
Size
178 kB (177505 bytes)
Hash
7e082ec359fd3433b432a933a0e252c7
2e157bfd70fbfcda16c198db92c333ed5c77708f
5560f604c96b3934fe96d02cdb4a7e789aa24c7b7671e455c1d95c7911bf5271

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/radiantthemes-addons/widgets/header-nav-menu/css/header-menu-style-two.css?ver=1700294535 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 06:10:07 GMT
etag: W/"5a0a6d-2b561-5ecef6442edc0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v8JwKJDjoYlc3pqPpYGfmPG6fVtCHW06%2BLBS3bKPbuw9JVjw3GFn0YV%2FlgtbpD6LyZmvx5urHoeeL23mIz4vT3OT2xLDqPd6WBqDAk0alQUDNm75dhSp3DVr%2FFJTZS1%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b85d7b56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/mailin/css/mailin-front.css?ver=bb270fba1988038f5680f75b7475565e

188.114.96.1

200 OK

2.7 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/mailin/css/mailin-front.css?ver=bb270fba1988038f5680f75b7475565e
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (2899), with no line terminators
Size
2.7 kB (2681 bytes)
Hash
1dab301b9a9ac952e5339dc96c4f30d9
5191bce6f92afb9456bb583ed1ffde388ae42704
a14cdf9870285bb0e76cebbc56976c1730633b7615cc041f8be4d45e97a24ae3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/mailin/css/mailin-front.css?ver=bb270fba1988038f5680f75b7475565e HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: text/css
last-modified: Mon, 18 Sep 2023 16:28:08 GMT
etag: W/"3e1a02-a79-605a4a0a89659-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d9Eyl3RPqn7Ms%2FDaFG0t9wibiNTXIBRuyKh764t%2FPy18PEyvDtr8vj0dMdTdEGT5ACZdlMskfxfQvTq8XzIS%2BCNs3sZuwnhaYCPlmD%2FpsOJT5yEn6JoZnauaWYdNEXMx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b86d8456be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-main.js

104.22.24.131

200 OK

121 B

URL GET HTTP/2
embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-main.js
IP
104.22.24.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
121 B (121 bytes)
Hash
3b41342f7e3be590563e8e3b5ff770c7
c9ca54d23ea78b320f080b76e22bb6b4e704d55f
ef04d89daeed55613a63a4af62c147ce86e4a7f22c8ce700dd6bdb11ab187e43

HTTP Headers

GET /_s/v4/app/6549ac0173e/js/twk-main.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 18 Nov 2023 08:02:20 GMT
content-type: application/javascript
last-modified: Tue, 07 Nov 2023 03:18:38 GMT
etag: W/"da5bb1dc647470204df0e49f5afac2de"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 827eb0cb8a8b7127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-vendor.js

104.22.24.131

200 OK

83 kB

URL GET HTTP/2
embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-vendor.js
IP
104.22.24.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type

Size
83 kB (82665 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /_s/v4/app/6549ac0173e/js/twk-vendor.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 18 Nov 2023 08:02:20 GMT
content-type: application/javascript
last-modified: Tue, 07 Nov 2023 03:18:38 GMT
etag: W/"ce3014b09c6dfbd6f92bc585fd840580"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 827eb0cb8a8d7127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/themes/apptek/assets/js/ajax_add_to_cart.js?ver=1700294535

188.114.96.1

200 OK

1.5 kB

URL GET HTTP/3
uniifyapp.com/wp-content/themes/apptek/assets/js/ajax_add_to_cart.js?ver=1700294535
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (1694), with no line terminators
Size
1.5 kB (1488 bytes)
Hash
8eb5aecc8b872911e6b76a9511fc4dce
bfc0f8ae6fbd1d19e3c4ec766cdcd101e05b6d34
9a32b2881b25f317e72fc0757c8d86ac1eefdc06e4bb1684828b74b8337062ae

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/apptek/assets/js/ajax_add_to_cart.js?ver=1700294535 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript
last-modified: Fri, 28 Oct 2022 12:12:23 GMT
etag: W/"5a1b51-5d0-5ec172b92d7c0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S7CBtE1i876FrYLtsfn%2BzUGYTqhjJGiCM2lYVrbNjzWZ%2BO25f02JN8G3rv3fIO6Wr%2F8HEM%2BFEJ4i29XHjI0miE1XGbjvDH9CIDt6kE6ec%2FhRnQifb5UC0D%2FYpXuKO%2BAN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b39a7556be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/css/rt-heading.css?ver=1700294535

188.114.96.1

200 OK

11 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/css/rt-heading.css?ver=1700294535
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text
Size
11 kB (10804 bytes)
Hash
e82045a6f9431a7992cdd6e98fcc952b
04040e3e3008b53d8546377c351ffaae584801a4
0c02a51348b0dc97f770cb916f4c98e556420ed4f44fa08eaec2041bf3bbe865

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/radiantthemes-addons/assets/css/rt-heading.css?ver=1700294535 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 06:10:07 GMT
etag: W/"5a03d0-2a34-5ecef6442edc0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qvbYEtk%2FT3N4xSiCaOO5j1Zu0ipViWsMiLNriYdq1Muvdj7kOcl1FrCg85UuMSDB595rwPeOodUpSDxss72b3xpfjzRhQFKHLLb14WTQPYw93wd4gY0WdgsBvOFoCPw6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b88da756be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

in-automate.brevo.com/visitor/ehnbv4qti39900l4o230qvgy

104.18.38.216

200 OK

0 B

URL OPTIONS HTTP/2
in-automate.brevo.com/visitor/ehnbv4qti39900l4o230qvgy
IP
104.18.38.216:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectbrevo.com
Fingerprint02:B5:EB:F6:99:15:0A:B5:BC:5D:FE:DD:92:BD:CF:1A:B6:C5:68:5D
ValiditySun, 29 Oct 2023 18:23:14 GMT - Sat, 27 Jan 2024 18:23:13 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /visitor/ehnbv4qti39900l4o230qvgy HTTP/1.1
Host: in-automate.brevo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://uniifyapp.com/
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-length: 0
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, POST
access-control-allow-origin: *
cache-control: no-cache
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=GDxGPGdcLd7KmzP_HDXcJbFF0g1HXzY1KfHvsPjdWYM-1700294537-0-AegroJPDFxvBjLdZRoq27fUKmOzrZvBJP/D19ZylouuyDUzFnzUXlZn082d+hhjZsz1tni1qIn2pdMoQGWg22cs=; path=/; expires=Sat, 18-Nov-23 08:32:17 GMT; domain=.brevo.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 827eb0bcf8bc56c5-OSL
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/uploads/2022/11/4.png

188.114.96.1

200 OK

2.6 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/2022/11/4.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
PNG image data, 170 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
2.6 kB (2569 bytes)
Hash
d8f16e07917173149a9bd0a064bb5f37
faffd20273507daa05ec07a447bc3e314be904f2
2933b32e0aa7d88e8a93a55abadcf7e0e68ed4e2c90713e87072a369c6d659d7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/11/4.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10; sib_cuid=062a1de0-e731-4d5b-9223-f45d0bb38971; _ga_C5R0X7CB38=GS1.1.1700294538.1.0.1700294538.0.0.0; _ga=GA1.1.1387063408.1700294539; _ga_EB0MPR1JXK=GS1.1.1700294538.1.0.1700294538.0.0.0; po_visitor=ukGq9X_aIejc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:19 GMT
content-type: image/png
content-length: 2569
last-modified: Thu, 10 Nov 2022 13:30:18 GMT
etag: "5a2061-a09-5ed1dc6298e80"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zCtHTq3DIAzoge9k%2FiIjVd7jJsL8JwCapI2EKzKtYqzMWZ8Zx37pK0kjLweZZlQpuh9ZVD4aQ2O%2B33AbDWheE%2Fswkd09ANG0Lsj7ZP4A125VOLZpt6C26x66kFyE%2FyIV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 827eb0c0eb8656be-OSL
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-runtime.js

104.22.24.131

200 OK

2.3 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-runtime.js
IP
104.22.24.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (2349), with no line terminators
Size
2.3 kB (2306 bytes)
Hash
08b902c691d4caf60c10d21ed6618c8f
50e650828e6a53bc1b074f5838d0f3eb338a81db
58775eee253402af6ada3b2dcff3c6bbba198b18ba11b00653a8dcc8d478875b

HTTP Headers

GET /_s/v4/app/6549ac0173e/js/twk-runtime.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:20 GMT
content-type: application/javascript
last-modified: Tue, 07 Nov 2023 03:18:38 GMT
etag: W/"2369bd11bd41e47e53691438c8e45c5b"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 827eb0cba9e756c4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.16.3

188.114.96.1

200 OK

40 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.16.3
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (40396)
Size
40 kB (40436 bytes)
Hash
e2a3fb1470104bd64d98e8245c6de817
0845f9f5eeda970595c9d3f22c5e104c9c761960
b9e240e7c455e9415ddcebc9ebd5c1b37350abef90c0a7d7b6a57423850250f7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.16.3 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:27:06 GMT
etag: W/"3e2f19-9df4-605a49cfe4615-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PCTXhmqL20gr%2Bs%2FXy4oJ%2BLDVdD91Bi2OFII%2BpKm8TY91Rj0Si%2FKP%2Fw32jQVKoR%2F9JblM5mm67hJCO03j3EYhknIHfqiv1fLtJAiOjJyljjFoCf7sVjTMCGKozhzqNl27"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b3ba8f56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.pushowl.com/latest/sdks/pushowl-sib.js?plugin=wordpress&environment=production&platform=sendinblue&id=160421&name=Uniify&subdomain=uniifyapp.com&logo=https%3A%2F%2Fimg.mailinblue.com%2F3929435%2Fimages%2Fcontent_library%2Foriginal%2F63fca337dd35c87c8e6f3f5d.png&guid=fa94175ece16e569a28db2d6a982f5a2&default=true&visitor_id=062a1de0-e731-4d5b-9223-f45d0bb38971

143.204.55.44

200 OK

172 kB

URL GET HTTP/2
cdn.pushowl.com/latest/sdks/pushowl-sib.js?plugin=wordpress&environment=production&platform=sendinblue&id=160421&name=Uniify&subdomain=uniifyapp.com&logo=https%3A%2F%2Fimg.mailinblue.com%2F3929435%2Fimages%2Fcontent_library%2Foriginal%2F63fca337dd35c87c8e6f3f5d.png&guid=fa94175ece16e569a28db2d6a982f5a2&default=true&visitor_id=062a1de0-e731-4d5b-9223-f45d0bb38971
IP
143.204.55.44:443
ASN
#16509 AMAZON-02

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerLet's Encrypt
Subjectik.imagekit.io
FingerprintF0:0B:23:AD:1E:B6:59:34:A4:A8:99:50:76:14:CD:DB:73:BD:0D:96
ValidityWed, 18 Oct 2023 15:17:22 GMT - Tue, 16 Jan 2024 15:17:21 GMT

File type

Size
172 kB (172100 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /latest/sdks/pushowl-sib.js?plugin=wordpress&environment=production&platform=sendinblue&id=160421&name=Uniify&subdomain=uniifyapp.com&logo=https%3A%2F%2Fimg.mailinblue.com%2F3929435%2Fimages%2Fcontent_library%2Foriginal%2F63fca337dd35c87c8e6f3f5d.png&guid=fa94175ece16e569a28db2d6a982f5a2&default=true&visitor_id=062a1de0-e731-4d5b-9223-f45d0bb38971 HTTP/1.1
Host: cdn.pushowl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: *
timing-allow-origin: *
x-server: ImageKit.io
x-request-id: 98c18429-31a2-402b-afbe-8cbeaab4732a
server-timing: download;dur=26
cache-control: max-age=31536000
etag: W/"2c949555eede4081bfc955b393bf1b6d"
last-modified: Fri, 17 Nov 2023 15:37:21 GMT
date: Sat, 18 Nov 2023 08:02:17 GMT
content-encoding: br
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: f1TEzjGl-fVqD5wXfwkdUKDASWgFpaQGp0DZRj0YtnZUvHPK8CSLRQ==
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/plugins/elementor/assets/js/image-carousel.4455c6362492d9067512.bundle.min.js

188.114.96.1

200 OK

432 B

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/elementor/assets/js/image-carousel.4455c6362492d9067512.bundle.min.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (439), with no line terminators
Size
432 B (432 bytes)
Hash
ce38dc0dfc9f6796277bcca070a9aa83
fbb3e43e3259020c2b28ef1f57a8f60e20d09490
04a8cd4c6596d0a65bf7d9616d2ff6ba9ad8386c6fccd7cff5ccb0ac70cbd340

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/image-carousel.4455c6362492d9067512.bundle.min.js HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10; sib_cuid=062a1de0-e731-4d5b-9223-f45d0bb38971; _ga_C5R0X7CB38=GS1.1.1700294538.1.0.1700294538.0.0.0; _ga=GA1.1.1387063408.1700294539; _ga_EB0MPR1JXK=GS1.1.1700294538.1.0.1700294538.0.0.0; po_visitor=ukGq9X_aIejc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:19 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:27:07 GMT
etag: W/"3e2f1e-1b0-605a49d043d75-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2oE4DcqCgr3ISoNOn9lRXDH2K0c1x5mKjC%2FJetSX2yDBDrLh3aGL21D5p5SKPC1%2BZksTnbIZpGbxNj2eJLZHUcVwlrDJSELCajt%2FS71hfQpAhpqxk%2BgSeICuFSslDNVG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0c59e9556be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/uploads/2022/08/smart-app-banner-bg.webp

188.114.96.1

404 Not Found

0 B

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/2022/08/smart-app-banner-bg.webp
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/08/smart-app-banner-bg.webp HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10; sib_cuid=062a1de0-e731-4d5b-9223-f45d0bb38971; _ga_C5R0X7CB38=GS1.1.1700294538.1.0.1700294538.0.0.0; _ga=GA1.1.1387063408.1700294539; _ga_EB0MPR1JXK=GS1.1.1700294538.1.0.1700294538.0.0.0; po_visitor=ukGq9X_aIejc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Sat, 18 Nov 2023 08:02:20 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.30
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: max-age=14400, must-revalidate
link: <https://uniifyapp.com/wp-json/>; rel="https://api.w.org/"
server-timing: wp-load-alloptions-query;dur=1.06, wp-before-template;dur=70.09
vary: Accept-Encoding,User-Agent
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RW1qcOWrjBz1Lyfw%2FgUu193fGZ7KaxcSHe6Z57sUwPA6wY2eVDHmCso8Giy7q%2BGcSZqr8MA4faeV1VQOuaci0OWTPcFne6CNqQSfXoFBgs%2FtUYwoiQGjLnFQdBUHBrpD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0cc3a1556be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

va.tawk.to/log-performance/v3

104.22.24.131

200 OK

0 B

URL OPTIONS HTTP/3
va.tawk.to/log-performance/v3
IP
104.22.24.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /log-performance/v3 HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://uniifyapp.com/
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:25 GMT
x-served-by: visitor-application-preemptive-scdm
access-control-allow-origin: https://uniifyapp.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 827eb0e18c1a712b-OSL
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-includes/js/wp-util.min.js?ver=bb270fba1988038f5680f75b7475565e

188.114.96.1

200 OK

1.4 kB

URL GET HTTP/3
uniifyapp.com/wp-includes/js/wp-util.min.js?ver=bb270fba1988038f5680f75b7475565e
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (1469), with no line terminators
Size
1.4 kB (1426 bytes)
Hash
4cfa97208f3196db8343dab3061e3599
538b31a3ee7b795af2a2687e1558d0bcf579e949
ce1c908010099b7d7d15bfab3630252fd30d6aa29951121f98eaa46ead8cd1a8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-util.min.js?ver=bb270fba1988038f5680f75b7475565e HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 03:52:10 GMT
etag: W/"5435c0-592-5e913c0b08e80-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vZzXDnsM1fH2dRRp4UwM6eitCh4FS9btGjXdZ%2BtHNONM4o2t0Vc9QihK7xP5POIKKS9WQNT98X9Gr64MBjTfLW4%2FIxTlp42ucIelmKR%2BHT4xfS2IGhfauL9SfuNzCL3J"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b38a5f56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/uploads/2023/01/l1.png

188.114.96.1

200 OK

110 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/2023/01/l1.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
PNG image data, 707 x 999, 8-bit colormap, non-interlaced\012- data
Size
110 kB (109958 bytes)
Hash
80266f29e7a7f7c125a23a64695fe276
e73f86b971ce9a9fd176abb162105b2f8890d820
cbb3755067706e9b9a2b7165790e5bad0b48ce8a19a05071cfbf347a4e2d7344

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/01/l1.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10; sib_cuid=062a1de0-e731-4d5b-9223-f45d0bb38971; _ga_C5R0X7CB38=GS1.1.1700294538.1.0.1700294538.0.0.0; _ga=GA1.1.1387063408.1700294539; _ga_EB0MPR1JXK=GS1.1.1700294538.1.0.1700294538.0.0.0; po_visitor=ukGq9X_aIejc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:19 GMT
content-type: image/png
content-length: 109958
last-modified: Tue, 10 Jan 2023 05:13:43 GMT
etag: "5a230f-1ad86-5f1e1f28fcfc0"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bJq%2BQu4gqrYbB1YedPYYi4ohPhymAy2CI4g867vUOgy5%2BgcVOnCBy98o7eb4b4Lay%2BBOXyYIEEKqyAfjkDaxQobxCVQqhVh9bDyOxDpsQVfwba7ODtUUg8z5JbXs6KMx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 827eb0c0eb8556be-OSL
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/uploads/2022/11/2.png

188.114.96.1

200 OK

13 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/2022/11/2.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
PNG image data, 170 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
13 kB (12657 bytes)
Hash
f9b4a997475928c03544b4345c1a5376
5127d99379fdd29eca4ebf84e4eeb063f7a585f4
42d01320d47462f7fba02728fe062f5fcf00cdd9c4494b8ad68431d4d027cb14

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/11/2.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10; sib_cuid=062a1de0-e731-4d5b-9223-f45d0bb38971; _ga_C5R0X7CB38=GS1.1.1700294538.1.0.1700294538.0.0.0; _ga=GA1.1.1387063408.1700294539; _ga_EB0MPR1JXK=GS1.1.1700294538.1.0.1700294538.0.0.0; po_visitor=ukGq9X_aIejc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:19 GMT
content-type: image/png
content-length: 12657
last-modified: Thu, 10 Nov 2022 13:30:17 GMT
etag: "5a205d-3171-5ed1dc61a4c40"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mvBTK5itYwMQyxpLmHGvyGPqj5mFdZ1wt8jVNlUdBtUhjjjtQULQ%2FjjSJZgpH9VlMMtVu2ZW85vehwxfzao8uoHsy8aOsNh1EUG0NVVrviwERyizxvmd1%2BO%2BYeXHTJtz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 827eb0c0fb8856be-OSL
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/themes/apptek/assets/js/swiper.min.js?ver=1700294535

188.114.96.1

200 OK

233 kB

URL GET HTTP/3
uniifyapp.com/wp-content/themes/apptek/assets/js/swiper.min.js?ver=1700294535
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (867), with CRLF line terminators
Size
233 kB (232886 bytes)
Hash
510a02eb96dd68d60ad581ec8ebada54
ee17aabecea28850029787a7581c78c770a2b410
5e6eaf05f99190d360ad0fc8d1dcdcccfc560a9acc620f974c63f169f1a53554

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/apptek/assets/js/swiper.min.js?ver=1700294535 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 10:46:20 GMT
etag: W/"5a1b65-38db6-5eb4ccd6bf700-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NTnxIr%2FcVh%2BunNst2nByyEgW0wPmM2ucjAMPGlgAisFq%2B5%2FVweXtARDzSMvmbghVuS%2B1yrxQZ%2Bo6fmiQF2CMqaIH9g8YZlelbN5vSuO7WMINhnfZwhvVZEMM5Sd%2ByMkY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b38a5b56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2

188.114.96.1

200 OK

21 kB

URL GET HTTP/3
uniifyapp.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type

Size
21 kB (21438 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 16:36:32 GMT
etag: W/"543752-53be-5f3ba2adac400-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VyzeRbefqQnTjiweCsA%2BotbzakySDpbAimQreLaexZeKRFLx5202bi%2FpxYQeGRoc8FdB1%2Fsru5UxhLvqcpgOm7W4%2FMhO14tLaZCvfjO3z1iashXkT%2F1nuMxFl992jxE2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b3ba8e56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/uploads/2022/12/goask.png

188.114.96.1

200 OK

11 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/2022/12/goask.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
PNG image data, 170 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (11267 bytes)
Hash
8455c8e5abb11f467b578decbd49b754
73b27af06b22332b8213c5f94be6eb62392af19f
8f09b730e315c0940763a6cdf40cbd0737d60e213691a52556d901c0204c330a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/12/goask.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10; sib_cuid=062a1de0-e731-4d5b-9223-f45d0bb38971; _ga_C5R0X7CB38=GS1.1.1700294538.1.0.1700294538.0.0.0; _ga=GA1.1.1387063408.1700294539; _ga_EB0MPR1JXK=GS1.1.1700294538.1.0.1700294538.0.0.0; po_visitor=ukGq9X_aIejc; TawkConnectionTime=0; twk_idm_key=nOvDkTph2gY5jHUuaNZVe; twk_uuid_63b90e9f47425128790c21d7=%7B%22uuid%22%3A%221.1vX0WccgKqDCgkEEZbCvmyhByOeVnGHtVMhQIv2J7O1XqQi0phsNWbjxC78H1sjJzB9JcZskoBRZaaMcWxDDSVtHUefZErFJtHaGPBlaboR2CaDOjU4Kwes%22%2C%22version%22%3A3%2C%22domain%22%3A%22uniifyapp.com%22%2C%22ts%22%3A1700294543893%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:26 GMT
content-type: image/png
content-length: 11267
last-modified: Tue, 27 Dec 2022 16:03:02 GMT
etag: "5a211c-2c03-5f0d162ebb980"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1TTAsUV9FKsH8xTZ02lgJFJwFElnCecFpyWdF8YDTtHdfSsuQc1TCjjLDUcLC7zLaUbVqMEjXRrNKPuMKEOMal79wXBc0bJ5MliH5uoc1r5m5QP6DmY74%2FiYczxFJhFk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 827eb0ed2e9c56be-OSL
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=1.0

188.114.96.1

200 OK

15 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=1.0
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (14869)
Size
15 kB (15055 bytes)
Hash
7a5dea0a705cc2f4cd87dbaaa6666bc6
678bc6f750f13adb29bbc158eb0d9cd813b736fa
97cf1307c16a437b77b5f7f5c9bc0b985d0745a14be5a279019aca5a3432e264

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=1.0 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:27:08 GMT
etag: W/"400c64-3acf-605a49d10cc5f-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OZnKuDNwBgjO7I4b6wSVhnw%2BI8K4vDBIK4LjThZrh0VT3lETbw%2B43GWduknVQgeeMCpjkkeYcPswn8uBNB3Mi792E7bcyZSAw1BAdbjkTY1pYctN%2BCW%2BBFM9X0WHAqZb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b36a3256be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/jetpack-boost/jetpack_vendor/automattic/jetpack-lazy-images/dist/lazy-images.js?minify=false&ver=2e29137590434abf5fbe

188.114.96.1

200 OK

2.4 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/jetpack-boost/jetpack_vendor/automattic/jetpack-lazy-images/dist/lazy-images.js?minify=false&ver=2e29137590434abf5fbe
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (2489), with no line terminators
Size
2.4 kB (2415 bytes)
Hash
e23c9de5432b52f6d744cd061b122e67
496b4a6d904fdf54b22c11f3ba02e4f0f92aae63
f379cbbbc572b34069563871f8b2db374e518ac28ea7c9e1c5562fec96d013d9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/jetpack-boost/jetpack_vendor/automattic/jetpack-lazy-images/dist/lazy-images.js?minify=false&ver=2e29137590434abf5fbe HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 16:27:39 GMT
etag: W/"48021f-96f-605a49ef0ba60-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RpqteeqTmClT79Z4t6tF8yolQVKYrhawrvzhyhtl0N8gPc%2F8diFkASXOK%2FthBNWX1MwXQnxHUTwNy88TEASwHyKFEXQG8G2OfwvEr2Ewj9OS4M6yphweRrbUVo9BKXZ8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b3aa7956be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/animation2.js?ver=1700294535

188.114.96.1

200 OK

7.5 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/animation2.js?ver=1700294535
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (7687), with no line terminators
Size
7.5 kB (7455 bytes)
Hash
03f17f7ced1cd829d460f51ade6b8433
e9fb08a9ccdabd338d66f68e3ca8d020aa7da329
c4f2a9ae947a7e3294ab5c71aab5f0c23b8bced5f1b9dda190064a93438c1959

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/radiantthemes-addons/assets/js/animation2.js?ver=1700294535 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 06:10:07 GMT
etag: W/"5a0960-1d1f-5ecef6442edc0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L0U5JjxPIAMqpnl5supjvZqiwaiEbVbNI26G6ecArLzds7gztnoiVDJRFql4VjbXlXsUe%2Fw2FNFPyl1TiPE5U1QsgZIRNDC9EUgS5njoZuUysf3kbAJrFUd1NjoP5EAF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b3aa7d56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/assets/images/attention-grabbers/51-r-br.svg

104.22.24.131

200 OK

3.1 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/assets/images/attention-grabbers/51-r-br.svg
IP
104.22.24.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (3132), with no line terminators
Size
3.1 kB (3058 bytes)
Hash
1e91730b6a5b4beaae74262c11c8637e
e875bff7d9888be27719ccee201ae7ecb4e9c67b
91993108e9d0b01f325e7a1166b67921c49555a15c6bdafaa1c10f23f7b8e164

HTTP Headers

GET /_s/v4/assets/images/attention-grabbers/51-r-br.svg HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:23 GMT
content-type: image/svg+xml
last-modified: Sat, 22 May 2021 07:25:15 GMT
etag: W/"d316fd3fed8bee736394c9f9c02b3b03"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: MISS
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 1975108
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 827eb0de39cd712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1

188.114.96.1

200 OK

88 kB

URL GET HTTP/3
uniifyapp.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (65447)
Size
88 kB (87553 bytes)
Hash
826eb77e86b02ab7724fe3d0141ff87c
79cd3587d565afe290076a8d36c31c305a573d18
cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript
last-modified: Wed, 08 Nov 2023 05:23:24 GMT
etag: W/"543742-15601-6099d4947036e-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Erjci4kQ2ch7PClKOGBd6BaFrc82am%2F8k8pLQDITqUSvQM%2BhuV03xSeMtuI5Mvl7wJCe1hNuE2TpjLHgvr9%2Fo%2FHD%2FUolEPn16O1JaiTh%2BB84v0wW37ZcqYX1y8RZCPQC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b36a2c56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/anime.2.0.2.min.js?ver=1700294535

188.114.96.1

200 OK

11 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/anime.2.0.2.min.js?ver=1700294535
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (532), with CRLF line terminators
Size
11 kB (11259 bytes)
Hash
f258ee6f938947e043c7e0984cd7e2b2
7c9416c1b444773b2d82e797131d6047364645a3
ef1b91cc56c369dcc8fd9ee30bb2aa9745075cfc9f594b2ac58edb1600779128

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/radiantthemes-addons/assets/js/anime.2.0.2.min.js?ver=1700294535 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 06:10:07 GMT
etag: W/"5a0961-2bfb-5ecef6442edc0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FJDeMhki%2FL9F3d91WmwESF5YL6OhNn%2Btkdha6kj7WVbF0YtKdcJCQxKSibQEOkXBRq5qHmojL90irv%2FJz5I36g6bG6R4Qje4rEZxGz99RXUr1uHjTUYh0AM9hRR8uo2D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b3aa7c56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Plus+Jakarta+Sans%3A500%7CPlus+Jakarta+Sans%3A700%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A500%7CPlus+Jakarta+Sans%3A700%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A700%7CPlus+Jakarta+Sans%3A700%7CPlus+Jakarta+Sans%3A700%7CPlus+Jakarta+Sans%3A700&subset=latin&display=fallback

142.250.74.42

200 OK

4.9 kB

URL GET HTTP/3
fonts.googleapis.com/css?family=Plus+Jakarta+Sans%3A500%7CPlus+Jakarta+Sans%3A700%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A500%7CPlus+Jakarta+Sans%3A700%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A700%7CPlus+Jakarta+Sans%3A700%7CPlus+Jakarta+Sans%3A700%7CPlus+Jakarta+Sans%3A700&subset=latin&display=fallback
IP
142.250.74.42:443
ASN
#15169 GOOGLE

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (4989), with no line terminators
Size
4.9 kB (4881 bytes)
Hash
2cee5005887c3ee8eb5fc5b79e92698d
1ce3a698fda926a3495e355a7b4abf0a26f144ed
1d2d3a442edadc4e3dbb0e5eb72f485b981a9fae3667ff78a67a7ac9a771b185

HTTP Headers

GET /css?family=Plus+Jakarta+Sans%3A500%7CPlus+Jakarta+Sans%3A700%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A500%7CPlus+Jakarta+Sans%3A700%7CPlus+Jakarta+Sans%3A600%7CPlus+Jakarta+Sans%3A700%7CPlus+Jakarta+Sans%3A700%7CPlus+Jakarta+Sans%3A700%7CPlus+Jakarta+Sans%3A700&subset=latin&display=fallback HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 18 Nov 2023 08:02:19 GMT
date: Sat, 18 Nov 2023 08:02:19 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/plusjakartasans/v8/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko20yw.woff2

216.58.207.227

200 OK

27 kB

URL GET HTTP/2
fonts.gstatic.com/s/plusjakartasans/v8/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko20yw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 27444, version 1.0\012- data
Size
27 kB (27444 bytes)
Hash
13d1b429e99059f97e58fa10dd69f8b5
174c7f299158103127d50de82f1086c3b66e8258
1262bff0591c36094d058ab102b84ce34eb1e547e8ff00557bf8d55449e58e40

HTTP Headers

GET /s/plusjakartasans/v8/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko20yw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27444
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Nov 2023 23:22:08 GMT
expires: Fri, 15 Nov 2024 23:22:08 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 22 Jun 2023 14:14:33 GMT
content-type: font/woff2
age: 117611
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/uploads/2022/08/smart-app-banner-bg.webp

188.114.96.1

404 Not Found

0 B

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/2022/08/smart-app-banner-bg.webp
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/08/smart-app-banner-bg.webp HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10; sib_cuid=062a1de0-e731-4d5b-9223-f45d0bb38971; _ga_C5R0X7CB38=GS1.1.1700294538.1.0.1700294538.0.0.0; _ga=GA1.1.1387063408.1700294539; _ga_EB0MPR1JXK=GS1.1.1700294538.1.0.1700294538.0.0.0; po_visitor=ukGq9X_aIejc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Sat, 18 Nov 2023 08:02:18 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.30
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: max-age=14400, must-revalidate
link: <https://uniifyapp.com/wp-json/>; rel="https://api.w.org/"
server-timing: wp-load-alloptions-query;dur=1.39, wp-before-template;dur=87.63
vary: Accept-Encoding,User-Agent
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w0mbkyaB%2B5XYThsQEdGtvrVPS%2FGHXIRa1tXUt3LI%2Fjmx70ITbxvKX%2BBm50b5%2B3HkDqDf9wBWc4R4ca8rOt48RbRAithSe%2FSLpc23UYIDQyhIBGLOmIyQ9F%2Fikzmz1oqn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0c10b9456be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-chunk-48f3b594.js

104.22.24.131

200 OK

19 kB

URL GET HTTP/3
embed.tawk.to/_s/v4/app/6549ac0173e/js/twk-chunk-48f3b594.js
IP
104.22.24.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (18850), with no line terminators
Size
19 kB (18850 bytes)
Hash
47db95af2c62c97e1a27f8588673834d
649bc52740e10b8e4b4f6f81bf35411b3627935e
95e02c2271f74519b9f70eb8dfcad4735bcd7ac485b0bfcf953fdc246bde4c86

HTTP Headers

GET /_s/v4/app/6549ac0173e/js/twk-chunk-48f3b594.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:22 GMT
content-type: application/javascript
last-modified: Tue, 07 Nov 2023 03:18:38 GMT
etag: W/"47db95af2c62c97e1a27f8588673834d"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 961219
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 827eb0dce8a8712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/rt-animated-main.js?ver=1700294535

188.114.96.1

200 OK

7.8 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/js/rt-animated-main.js?ver=1700294535
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text, with very long lines (8060), with no line terminators
Size
7.8 kB (7836 bytes)
Hash
3ed553cc1dcff5ac1944b966917af5dd
89fcdf61b0916c265a842dc2e4db1d216b195415
c8cd6d279295b78ba024871551c2a75f6c2625d4dafc80653a8a99014df7fa6f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/radiantthemes-addons/assets/js/rt-animated-main.js?ver=1700294535 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 06:10:07 GMT
etag: W/"5a0983-1e9c-5ecef6442edc0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J4R3ZXqzyDpwaAEu67ZFVcRhdmfus8gZl7WEZrmZv0jALY5hBSKid1HCW3FODF%2FaLaB4xgD1shqpJnuIvElk2i2MeuUGaWy0lz407bM%2BM3xb9lz0g3%2FRN33Qg0OI3rIb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b3aa7b56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

api.hubapi.com/hs-script-loader-public/v1/config/pixels-and-events/json?portalId=44045558

104.17.203.204

200 OK

114 B

URL GET HTTP/2
api.hubapi.com/hs-script-loader-public/v1/config/pixels-and-events/json?portalId=44045558
IP
104.17.203.204:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjecthubapi.com
FingerprintB1:3C:6E:B5:33:D1:03:D3:5D:7E:38:F6:29:9B:E5:7B:60:B8:AB:C3
ValidityFri, 07 Apr 2023 00:00:00 GMT - Sat, 06 Apr 2024 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
114 B (114 bytes)
Hash
6bce0186a4abdaf833266f1963b12a7e
d00ce58e0f4fee76e2944e17a5b2c708d08242b6
c9309b77acbe72698e8fc3ce777a953f5757406795735baab9e6fb5230bf9461

HTTP Headers

GET /hs-script-loader-public/v1/config/pixels-and-events/json?portalId=44045558 HTTP/1.1
Host: api.hubapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 18 Nov 2023 08:02:18 GMT
content-type: application/json;charset=utf-8
cf-ray: 827eb0c04eb45693-OSL
cf-cache-status: DYNAMIC
access-control-allow-origin: https://uniifyapp.com
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-max-age: 180
x-content-type-options: nosniff
x-envoy-upstream-service-time: 10
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/hubapi-td/envoy-proxy-66c9b4c4f4-wcpxr
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: e241aede-fb18-4382-82af-a7b63f8eac76
x-request-id: e241aede-fb18-4382-82af-a7b63f8eac76
x-trace: 2BB4BD4CF95B856C6DCCF0D972E29F7740B621FDE2000000000000000000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0AOJW6kv573ht7%2FHVvlDoSFsktJkFMAISpvk%2BsV1KgsyMLDG8hbddCIMZJtmi0M9bv%2Bw%2FqCd2GD8g6QfV8mtrV6CsgIezNS2nLzecdDfwH5wFLNNqh%2FbaORsWpKxXWtM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

uniifyapp.com/wp-content/uploads/elementor/thumbs/iPhoneBadge-pzo4swjp8wwssu35emhhvy4di9hp2dsxgvvzed8b9c.png

188.114.96.1

200 OK

9.6 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/elementor/thumbs/iPhoneBadge-pzo4swjp8wwssu35emhhvy4di9hp2dsxgvvzed8b9c.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
PNG image data, 300 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size
9.6 kB (9553 bytes)
Hash
c667dcf9eb509120c823313ecaae5e17
03092e401974b46758140fca201fd5bf81e7f05b
2ad3972b6718eef119c3faa2629d8f21ec878bcc9c155a365d0ff0b6d41b266d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/thumbs/iPhoneBadge-pzo4swjp8wwssu35emhhvy4di9hp2dsxgvvzed8b9c.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10; sib_cuid=062a1de0-e731-4d5b-9223-f45d0bb38971; _ga_C5R0X7CB38=GS1.1.1700294538.1.0.1700294538.0.0.0; _ga=GA1.1.1387063408.1700294539; _ga_EB0MPR1JXK=GS1.1.1700294538.1.0.1700294538.0.0.0; po_visitor=ukGq9X_aIejc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:18 GMT
content-type: image/png
content-length: 9553
last-modified: Fri, 30 Dec 2022 18:09:05 GMT
etag: "5a2404-2551-5f10f7f3c1240"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dhUPHgZwmcobwKGkclQsM9BEsFjMvuEC0wVdDeedG4Nm3GVQ42px1ScLu7fq6fTTlXoadFPXyPOjtfsFUxT7RV4pmCylJLJ9J7J0WiY8YYER847curGgZ6ItmL2oZ1Cb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 827eb0c0eb8456be-OSL
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/uploads/2022/11/8.png

188.114.96.1

200 OK

3.9 kB

URL GET HTTP/3
uniifyapp.com/wp-content/uploads/2022/11/8.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
PNG image data, 170 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
3.9 kB (3856 bytes)
Hash
dca2afdec94742aa838e5910e2bac0fe
551d4039f120a5508245154ff86e940d4debf2a4
c42feda1688803174d03676a9af8683862e9e4c06fad90c7865e93a7489b58f8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/11/8.png HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10; sib_cuid=062a1de0-e731-4d5b-9223-f45d0bb38971; _ga_C5R0X7CB38=GS1.1.1700294538.1.0.1700294538.0.0.0; _ga=GA1.1.1387063408.1700294539; _ga_EB0MPR1JXK=GS1.1.1700294538.1.0.1700294538.0.0.0; po_visitor=ukGq9X_aIejc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:18 GMT
content-type: image/png
content-length: 3856
last-modified: Thu, 10 Nov 2022 13:30:19 GMT
etag: "5a2069-f10-5ed1dc638d0c0"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9RjimxnuX3VsXTcf1XNYz17MxiwuBmGYR4Qo7xIJ%2BM18eOPBHqm34swM3uXXmVyDsVkB6hDvJp2IhRB79%2FdNBiSBrJLvBRMCxEtMk5QnfqqcFmYJMHyT3RjkzAZldCUS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 827eb0c0eb8756be-OSL
alt-svc: h3=":443"; ma=86400

uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/css/rt-animated-heading.css?ver=1700294535

188.114.96.1

200 OK

30 kB

URL GET HTTP/3
uniifyapp.com/wp-content/plugins/radiantthemes-addons/assets/css/rt-animated-heading.css?ver=1700294535
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subjectuniifyapp.com
Fingerprint11:6B:04:8B:92:AB:C3:80:8A:5B:71:CA:C3:58:95:05:9A:4D:66:D4
ValidityWed, 15 Nov 2023 20:30:25 GMT - Tue, 13 Feb 2024 20:30:24 GMT

File type
ASCII text
Size
30 kB (30347 bytes)
Hash
b4037fb3f85e897fa9fea9d8c24d4701
f2b44c57af31e8060c8f8ae56d540ae6163c45ff
12392e4b51613ac339ae93efa26dc1d730bb34b8368a2dbe0f8637ce2b3d6a4d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/radiantthemes-addons/assets/css/rt-animated-heading.css?ver=1700294535 HTTP/1.1
Host: uniifyapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Cookie: PHPSESSID=jv300fhie9fuhqajp097lk3j10
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:17 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 06:10:07 GMT
etag: W/"5a03c2-768b-5ecef6442edc0-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KGghFc2yvYThD%2B1RFpLyONuAFat72Suv9m6uqmV952vLQE9Rnt4acmnF7O2sTIPWCc0daXhpaJ%2Box0D0ZZMtUBD3lLN%2FRE3ishl2f6DoxTM%2FTphHMaWov6fr9PBdQUWo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 827eb0b89db756be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/plusjakartasans/v8/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko20yw.woff2

216.58.207.227

200 OK

27 kB

URL GET HTTP/2
fonts.gstatic.com/s/plusjakartasans/v8/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko20yw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 27444, version 1.0\012- data
Size
27 kB (27444 bytes)
Hash
13d1b429e99059f97e58fa10dd69f8b5
174c7f299158103127d50de82f1086c3b66e8258
1262bff0591c36094d058ab102b84ce34eb1e547e8ff00557bf8d55449e58e40

HTTP Headers

GET /s/plusjakartasans/v8/LDIoaomQNQcsA88c7O9yZ4KMCoOg4Ko20yw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27444
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Nov 2023 23:22:08 GMT
expires: Fri, 15 Nov 2024 23:22:08 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 22 Jun 2023 14:14:33 GMT
content-type: font/woff2
age: 117611
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

va.tawk.to/v1/session/start

104.22.24.131

200 OK

0 B

URL OPTIONS HTTP/3
va.tawk.to/v1/session/start
IP
104.22.24.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://uniifyapp.com/?_se=c2lld2Vja2Uubmljb2xAc21jLmRl&utm_campaign=Richa_Email_4&utm_medium=email&utm_source=brevo
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /v1/session/start HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://uniifyapp.com/
Origin: https://uniifyapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 18 Nov 2023 08:02:21 GMT
x-served-by: visitor-application-preemptive-hhph
access-control-allow-origin: https://uniifyapp.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 827eb0cfdcf656c4-OSL
alt-svc: h3=":443"; ma=86400

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (82)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash