Report - get-ready-to-fix.xyz/

Report Overview

Visited public
2023-12-02 02:49:58
Tags
fake_software scam
URL
get-ready-to-fix.xyz/
Finishing URL
get-ready-to-fix.xyz/
IP / ASN
193.203.185.204
#0
Title
Security Center Code0x268d3 Services
Scam - Fake AntiVirus / Security software

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdn.jsdelivr.net	439	2012-05-16	2012-09-30 02:15:09	2023-12-01 05:10:14	997 B	51 kB	151.101.1.229
code.jquery.com	634	2005-12-10	2012-05-21 19:28:02	2023-12-01 08:06:52	427 B	34 kB	151.101.2.137
get-ready-to-fix.xyz	unknown	unknown	No data	No data	9.9 kB	615 kB	193.203.185.204
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-12-01 06:26:25	439 B	94 kB	142.250.74.168
api.ipify.org	3267	2014-01-05	2014-10-06 14:38:43	2023-12-01 05:30:56	494 B	219 B	104.237.62.212
maxcdn.bootstrapcdn.com	724	2012-05-25	2014-06-18 02:37:31	2023-12-01 08:06:52	1.1 kB	96 kB	104.18.11.207
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17 22:46:33	2023-12-01 05:09:17	902 B	33 kB	104.17.25.14

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-12-02 02:49:44	low	Client IP	Internal IP	ET INFO External IP Lookup Domain (ipify .org) in DNS Lookup
2023-12-02 02:49:44	low	Client IP	Internal IP	ET INFO External IP Lookup Domain (ipify .org) in DNS Lookup
2023-12-02 02:49:44	low	Client IP	104.237.62.212	ET INFO External IP Address Lookup Domain (ipify .org) in TLS SNI

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-12-01	medium	get-ready-to-fix.xyz/	Office365
2023-12-01	medium	get-ready-to-fix.xyz/	Office365
2023-12-01	medium	get-ready-to-fix.xyz/	Office365
2023-12-01	medium	get-ready-to-fix.xyz/	Office365
2023-12-01	medium	get-ready-to-fix.xyz/	Office365
2023-12-01	medium	get-ready-to-fix.xyz/	Office365
2023-12-01	medium	get-ready-to-fix.xyz/	Office365
2023-12-01	medium	get-ready-to-fix.xyz/	Office365
2023-12-01	medium	get-ready-to-fix.xyz/	Office365
2023-12-01	medium	get-ready-to-fix.xyz/	Office365
2023-12-01	medium	get-ready-to-fix.xyz/	Office365
2023-12-01	medium	get-ready-to-fix.xyz/	Office365
2023-12-01	medium	get-ready-to-fix.xyz/	Office365
2023-12-01	medium	get-ready-to-fix.xyz/	Office365
2023-12-01	medium	get-ready-to-fix.xyz/	Office365
2023-12-01	medium	get-ready-to-fix.xyz/	Office365
2023-12-01	medium	get-ready-to-fix.xyz/	Office365
2023-12-01	medium	get-ready-to-fix.xyz/	Office365
2023-12-01	medium	get-ready-to-fix.xyz/	Office365
2023-12-01	medium	get-ready-to-fix.xyz/	Office365
2023-12-01	medium	get-ready-to-fix.xyz/	Office365

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (24)

	URL	From	Size	First Seen	Last Seen
	get-ready-to-fix.xyz/	ScriptElement	153 B	2023-10-31	2024-08-20
Pretty URL get-ready-to-fix.xyz/ IP 193.203.185.204 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-31 21:06 Last Seen2024-08-20 21:36 Times Seen2 Hash fa8c939bc9bc6c7465dac34c21c9914f 80e74804691a1ee5cd2335a82ff48dd47330e74c 6d9388bf4ad847c73a7a4b2957a7502117e882055b1f5d995c57b7a2b8e0cdc5 Loading...

	get-ready-to-fix.xyz/	ScriptElement	1.1 kB	2023-03-10	2024-08-20
Pretty URL get-ready-to-fix.xyz/ IP 193.203.185.204 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 11:22 Last Seen2024-08-20 21:36 Times Seen2 Hash 14324a12cc6cadb9b40edcdfff711730 0d352a8a1e1de102b3471f90680d624e1c43b1d4 1dc66121e4afbe1132ca6040bf59ac6e0439e8315d4d9945e7d1b151a6c8abf1 Loading...

	cdn.jsdelivr.net/npm/bootstrap@4.6.0/dist/js/bootstrap.bundle.min.js	ScriptElement	84 kB	2023-03-07	2025-05-10
Pretty URL cdn.jsdelivr.net/npm/bootstrap@4.6.0/dist/js/bootstrap.bundle.min.js IP 151.101.1.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-10 00:33 Times Seen2435 Hash f81d0a1705048649befc8b595e455a94 aec551e4d573463088fca7d14fb644eb389f1839 b0212543cc5a4a0a31c1b5a9d1e8973261992116b4cfde3e7dfcf33b4e81a97b Loading...

	get-ready-to-fix.xyz/	ScriptElement	583 B	2023-10-31	2024-08-20
Pretty URL get-ready-to-fix.xyz/ IP 193.203.185.204 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-31 21:06 Last Seen2024-08-20 21:36 Times Seen2 Hash 35f388bb901ee4c43bda8fd3d516c359 a5774005d9f3d893fca7692f34240ec734395770 7684a889fe9a9cbf7bd20ec13f2c7265d7c98c93376b5d49e51acafc85a34322 Loading...

	get-ready-to-fix.xyz/	ScriptElement	354 B	2023-03-10	2024-08-20
Pretty URL get-ready-to-fix.xyz/ IP 193.203.185.204 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 11:22 Last Seen2024-08-20 21:36 Times Seen2 Hash b91bed1d7130193543b11dd1425cb889 60d0e2d40590f8062812ba1bd1083b216929232c 26da003bb98096e71359c917fec54f37e33a574105d3f61bdbca1e278fbff3b7 Loading...

	get-ready-to-fix.xyz/	ScriptElement	473 B	2023-03-10	2024-08-20
Pretty URL get-ready-to-fix.xyz/ IP 193.203.185.204 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 11:22 Last Seen2024-08-20 21:36 Times Seen2 Hash da9b630644062e16d9ab36fdd12205ca 853a311d0d607f049669d1cb642013969f24569a 093d5595d879cd2af7731e9646fe44f0a4823a259b5815aa85cd244bb047990d Loading...

	code.jquery.com/jquery-1.11.1.min.js	ScriptElement	96 kB	2023-03-07	2025-05-10
Pretty URL code.jquery.com/jquery-1.11.1.min.js IP 151.101.2.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-10 11:33 Times Seen25121 Hash 8101d596b2b8fa35fe3a634ea342d7c3 d6c1f41972de07b09bfa63d2e50f9ab41ec372bd 540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441 Loading...

	get-ready-to-fix.xyz/fullscreen.js	ScriptElement	245 B	2023-03-07	2025-04-30
Pretty URL get-ready-to-fix.xyz/fullscreen.js IP 193.203.185.204 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-04-30 14:41 Times Seen997 Hash 62f519fe72808a3ec681392b7ff47417 2ee16112e35feb9d6d48ae0f4e66187514dec811 43703d37b8fe2769cb2e12db7aa281dbcca175124d05ff4b0cc3d152534698a4 Loading...

	get-ready-to-fix.xyz/	ScriptElement	152 B	2024-08-20	2024-08-20
Pretty URL get-ready-to-fix.xyz/ IP 193.203.185.204 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 17:06 Last Seen2024-08-20 17:06 Times Seen1 Hash e58173f3def0272ee13816a73b4b3940 2b9846141e1e562c4297793c5546edcc59b8e31b 2247c9f5ee9a89ce1f8b0561ade1a8df581e3a6df56b6330d79105ee512b4f61 Loading...

	www.googletagmanager.com/gtag/js?id=G-VFYJQ389XB	ScriptElement	281 kB	2023-12-02	2023-12-02
Pretty URL www.googletagmanager.com/gtag/js?id=G-VFYJQ389XB IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-02 03:50 Last Seen2023-12-02 03:50 Times Seen1 Hash cf23357fc5eed12e46916bf213a84c60 ceda414a7552221536f49911b99fc082d0f883f0 e82ddcbd6567c2767924900a75d3e9c0042123783681639d10a9d21e7be73654 Loading...

	get-ready-to-fix.xyz/	ScriptElement	492 B	2023-03-10	2024-08-21
Pretty URL get-ready-to-fix.xyz/ IP 193.203.185.204 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 11:22 Last Seen2024-08-21 08:23 Times Seen14 Hash 8b024cae07dee53b25285159669ee710 f55bad2daecb4a888848d027a3f2510790714645 83686f8005f1cfc705c6c332cd37a6603d2a3cad1010c2c537aacb44bda564b2 Loading...

	get-ready-to-fix.xyz/	ScriptElement	4.2 kB	2023-03-10	2024-08-21
Pretty URL get-ready-to-fix.xyz/ IP 193.203.185.204 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 11:22 Last Seen2024-08-21 05:45 Times Seen8 Hash 2f3bc6f0e0ce70a9d9c5f5b999e97e20 8af3b4b70a8564d36e67320e9b3267edde184d78 a194323f1086498dda6d0033a545be9ea2546100a0dea79bfce7a2318ddd4cf3 Loading...

	get-ready-to-fix.xyz/	ScriptElement	317 B	2023-03-10	2024-08-21
Pretty URL get-ready-to-fix.xyz/ IP 193.203.185.204 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 11:22 Last Seen2024-08-21 08:23 Times Seen10 Hash fa2bcdd6a16925427556df6b0ca3f6cd 5ace3733f8dcb617650720eeacd2c532dfe1fa2a 24af137253d81217d93991f3a756eeb1a7c2d1d479704c113e5bfed31f98b70e Loading...

	get-ready-to-fix.xyz/	ScriptElement	170 B	2023-03-10	2024-08-21
Pretty URL get-ready-to-fix.xyz/ IP 193.203.185.204 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 11:22 Last Seen2024-08-21 08:23 Times Seen14 Hash da5873ca6bcf7e93657438fe82ede61b 2be57d3fd10fba25c84d84904c5657b199ffe163 f5af6633df539a94a8018dec51bd174b4f0853a3b8881a4239504723151998d7 Loading...

	get-ready-to-fix.xyz/	ScriptElement	296 B	2023-03-10	2024-08-21
Pretty URL get-ready-to-fix.xyz/ IP 193.203.185.204 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 11:22 Last Seen2024-08-21 05:45 Times Seen8 Hash a3623cd5738906b55bc8bee181e70661 a53f4d5df0e1c9af0937c503367ed1487a69d675 b45fac3855f83b35263d5475d024d95f47657e22162508c9f41e50ca5d62c2e3 Loading...

	unknown	EventHandler	19 B	2023-04-10	2025-05-09
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-10 16:23 Last Seen2025-05-09 00:49 Times Seen7862 Hash 57381d43f260aa3b8c47820ca38655a3 8d087b53d91f8e3ff0def7d1d94a6dada72fac79 35b90e4b54b87ed6cd2b439eac195f9eb59e731e17248c95fb1e26e15d61f943 Loading...

	cdnjs.cloudflare.com/ajax/libs/modernizr/2.8.3/modernizr.min.js	ScriptElement	11 kB	2023-03-07	2025-05-10
Pretty URL cdnjs.cloudflare.com/ajax/libs/modernizr/2.8.3/modernizr.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-10 03:39 Times Seen2470 Hash 65f1d21d5fcc9d21da758adababd0c3c e0661d07d64c00008bc9d013d16eec0a0f156dc7 d2b82e612d2a812e8be2a57300dab8923c4f2edbe7a799e7da70791b595646fe Loading...

	get-ready-to-fix.xyz/main.js	ScriptElement	1.3 kB	2023-03-10	2023-12-02
Pretty URL get-ready-to-fix.xyz/main.js IP 193.203.185.204 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:22 Last Seen2023-12-02 03:50 Times Seen2 Hash 94a15bd8a4d1784c96df9f27b3f52c88 4735f6b639b3b0dd63d22c04acdfb712a176dc02 2210f65a3949b4192ec099e6d44ff48ebf434c09e1e6119e659de3deb94fce29 Loading...

	get-ready-to-fix.xyz/light.js	ScriptElement	503 B	2023-03-07	2025-05-09
Pretty URL get-ready-to-fix.xyz/light.js IP 193.203.185.204 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-05-09 00:49 Times Seen4264 Hash cd6c33fbc221d0271c910af910e6ebed 9b52f24d6f10b885bb19db1c4b531469f96d2914 318698ae5e67c32550d6b40ac09848d598f6317f51a8f09638ba925f6e7cc479 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/2.1.3/jquery.min.js	ScriptElement	84 kB	2023-03-07	2025-05-09
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/2.1.3/jquery.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14 Last Seen2025-05-09 08:59 Times Seen6763 Hash 7f9fb969ce353c5d77707836391eb28d 62c4042e9ebc691a5372d653b424512a561d1670 2051d61446d4dbffb03727031022a08c84528ab44d203a7669c101e5fbdd5515 Loading...

	get-ready-to-fix.xyz/	ScriptElement	839 B	2023-03-10	2024-08-21
Pretty URL get-ready-to-fix.xyz/ IP 193.203.185.204 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 11:22 Last Seen2024-08-21 05:45 Times Seen8 Hash 9c30fabe6e377d36d46773a3cf1c13a5 ed6eb4958b7830424248d5be10384c37e59637aa 155ec17ca454e295038f273fb05507a3bc9d1cb8a7b70dc610639a2974cdc074 Loading...

	get-ready-to-fix.xyz/	ScriptElement	109 B	2023-03-10	2024-08-20
Pretty URL get-ready-to-fix.xyz/ IP 193.203.185.204 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 11:22 Last Seen2024-08-20 21:36 Times Seen2 Hash 3141a3674a2f7a1c880aa18ed0a57e7c 19d9ad397107458afd3bc0fbbdd6bcc92fbfa330 e5bdbcc4cfd7a98969ee60087b58993d244e223bdc768ff0ae75b291167223b8 Loading...

	get-ready-to-fix.xyz/	ScriptElement	161 B	2023-03-10	2024-08-21
Pretty URL get-ready-to-fix.xyz/ IP 193.203.185.204 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 11:22 Last Seen2024-08-21 08:23 Times Seen10 Hash ad71d1f2df632f7d750af4721e5865ee 879f0c0ae1114cb25e09ecf7be3131e7d52e8427 195cbd32e533b944f8307f158cefabcc91dd5a6e11e9de5c05bb7b9b57e01b5c Loading...

	get-ready-to-fix.xyz/	ScriptElement	156 B	2023-03-10	2024-08-21
Pretty URL get-ready-to-fix.xyz/ IP 193.203.185.204 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 11:22 Last Seen2024-08-21 08:23 Times Seen10 Hash 5e564b3c3156d1a4faedddaff66e30eb fcb5e78cfa0e6196dc49e6f5fb9447025c8a007b 1bc88dd462fdb0a6e0250db2442d3511a88aa50192a4a8708b17ebd2c46f274a Loading...

HTTP Transactions (30)

URL IP Response Size

cdnjs.cloudflare.com/ajax/libs/jquery/2.1.3/jquery.min.js

104.17.25.14

200 OK

27 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery/2.1.3/jquery.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://get-ready-to-fix.xyz/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (32180)
Size
27 kB (26660 bytes)
Hash
7f9fb969ce353c5d77707836391eb28d
62c4042e9ebc691a5372d653b424512a561d1670
2051d61446d4dbffb03727031022a08c84528ab44d203a7669c101e5fbdd5515

HTTP Headers

GET /ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-ready-to-fix.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 02 Dec 2023 02:49:39 GMT
content-type: application/javascript; charset=utf-8
content-length: 26660
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-14983"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 692642
expires: Thu, 21 Nov 2024 02:49:39 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RrZUebBFpNwObfE5n4rWHbBRUtAuPRteVcTbSrUNBTmuz5ugAAcWDdCqmmfCCgVbCfhW0xRdqXaHZHtKVueUnoT%2FotNUuw2FUGapGKPQrJYfehD1%2FJIHrPFsA%2BZzMoCExC6EfDqV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 82f042041f8fb503-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/modernizr/2.8.3/modernizr.min.js

104.17.25.14

200 OK

4.0 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/modernizr/2.8.3/modernizr.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://get-ready-to-fix.xyz/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (11084), with no line terminators
Size
4.0 kB (3980 bytes)
Hash
65f1d21d5fcc9d21da758adababd0c3c
e0661d07d64c00008bc9d013d16eec0a0f156dc7
d2b82e612d2a812e8be2a57300dab8923c4f2edbe7a799e7da70791b595646fe

HTTP Headers

GET /ajax/libs/modernizr/2.8.3/modernizr.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-ready-to-fix.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 02 Dec 2023 02:49:39 GMT
content-type: application/javascript; charset=utf-8
content-length: 3980
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03f26-2b4c"
last-modified: Mon, 04 May 2020 16:13:26 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 90807
expires: Thu, 21 Nov 2024 02:49:39 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4pqNR%2FU5mxuAK%2Flr9AxGQeVLsdarz94Dg2D67KrzEAkn7X9m9Lutbdd2UHNpYmnEF1CwMhOkvUBSr1xXusPtNdIUG6G0N9bFC0GVj8ijtvaHLxlRvKDSMdd9NO1uyt6S%2FQJ80LEF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 82f042043f99b503-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/bootstrap@4.6.0/dist/js/bootstrap.bundle.min.js

151.101.1.229

200 OK

23 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/bootstrap@4.6.0/dist/js/bootstrap.bundle.min.js
IP
151.101.1.229:443
ASN
#54113 FASTLY

Requested by
https://get-ready-to-fix.xyz/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
ASCII text, with very long lines (65299)
Size
23 kB (23377 bytes)
Hash
f81d0a1705048649befc8b595e455a94
aec551e4d573463088fca7d14fb644eb389f1839
b0212543cc5a4a0a31c1b5a9d1e8973261992116b4cfde3e7dfcf33b4e81a97b

HTTP Headers

GET /npm/bootstrap@4.6.0/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://get-ready-to-fix.xyz
DNT: 1
Connection: keep-alive
Referer: https://get-ready-to-fix.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 4.6.0
x-jsd-version-type: version
etag: W/"1499a-rsVR5NVzRjCI/KfRT7ZE6zifGDk"
content-encoding: br
accept-ranges: bytes
date: Sat, 02 Dec 2023 02:49:39 GMT
age: 22600196
x-served-by: cache-fra-eddf8230133-FRA, cache-bma1668-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 23377
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/bootstrap@4.6.0/dist/css/bootstrap.min.css

151.101.1.229

200 OK

26 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/bootstrap@4.6.0/dist/css/bootstrap.min.css
IP
151.101.1.229:443
ASN
#54113 FASTLY

Requested by
https://get-ready-to-fix.xyz/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
ASCII text, with very long lines (65326)
Size
26 kB (26291 bytes)
Hash
d432e4222814b62dd30c9513dcc29440
2cac4afc120983921411296bd4e8fd8a94ba237e
4ffcc598ee6cff4692c1cea272cd8a2f195f6dec32473e94370d6cdcfa5fe601

HTTP Headers

GET /npm/bootstrap@4.6.0/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://get-ready-to-fix.xyz
DNT: 1
Connection: keep-alive
Referer: https://get-ready-to-fix.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 4.6.0
x-jsd-version-type: version
etag: W/"27681-LKxK/BIJg5IUESlr1Oj9ipS6I34"
content-encoding: br
accept-ranges: bytes
date: Sat, 02 Dec 2023 02:49:39 GMT
age: 22445074
x-served-by: cache-fra-eddf8230111-FRA, cache-bma1668-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 26291
X-Firefox-Spdy: h2

code.jquery.com/jquery-1.11.1.min.js

151.101.2.137

200 OK

33 kB

URL GET HTTP/2
code.jquery.com/jquery-1.11.1.min.js
IP
151.101.2.137:443
ASN
#54113 FASTLY

Requested by
https://get-ready-to-fix.xyz/
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (32086)
Size
33 kB (33202 bytes)
Hash
8101d596b2b8fa35fe3a634ea342d7c3
d6c1f41972de07b09bfa63d2e50f9ab41ec372bd
540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441

HTTP Headers

GET /jquery-1.11.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-ready-to-fix.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-1762a"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 02 Dec 2023 02:49:39 GMT
age: 6684761
x-served-by: cache-lga21922-LGA, cache-bma1655-BMA
x-cache: HIT, HIT
x-cache-hits: 97, 106171
x-timer: S1701485379.270187,VS0,VE0
vary: Accept-Encoding
content-length: 33202
X-Firefox-Spdy: h2

get-ready-to-fix.xyz/main.css

193.203.185.204

200 OK

2.4 kB

URL GET HTTP/2
get-ready-to-fix.xyz/main.css
IP
193.203.185.204:443
ASN
#0

Requested by
https://get-ready-to-fix.xyz/
Certificate
IssuerLet's Encrypt
Subjectget-ready-to-fix.xyz
FingerprintF4:A0:F6:9A:84:EA:C2:1E:5F:7D:05:F6:58:78:18:8B:FF:4C:CC:85
ValidityTue, 31 Oct 2023 13:47:54 GMT - Mon, 29 Jan 2024 13:47:53 GMT

File type
ASCII text, with CRLF line terminators
Size
2.4 kB (2375 bytes)
Hash
31fa8c40f6852c6f77676a241dd9d26e
12160e92eebf846280bdd483f2cd8630eecdf5fb
733b181fd322493d5a99f4d05e17fc4b1b29e8e0dea3a226c8498f38587b3640

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software
OpenPhish	phishing	Office365

HTTP Headers

GET /main.css HTTP/1.1
Host: get-ready-to-fix.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-ready-to-fix.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 09 Dec 2023 02:49:39 GMT
content-type: text/css
last-modified: Tue, 31 Oct 2023 14:38:50 GMT
etag: "2f41-6541117a-8093725953105cf6;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2375
date: Sat, 02 Dec 2023 02:49:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

get-ready-to-fix.xyz/minimize.jpg

193.203.185.204

200 OK

2.2 kB

URL GET HTTP/2
get-ready-to-fix.xyz/minimize.jpg
IP
193.203.185.204:443
ASN
#0

Requested by
https://get-ready-to-fix.xyz/
Certificate
IssuerLet's Encrypt
Subjectget-ready-to-fix.xyz
FingerprintF4:A0:F6:9A:84:EA:C2:1E:5F:7D:05:F6:58:78:18:8B:FF:4C:CC:85
ValidityTue, 31 Oct 2023 13:47:54 GMT - Mon, 29 Jan 2024 13:47:53 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 180x39, components 3\012- data
Size
2.2 kB (2247 bytes)
Hash
1ba392dce74f8987dca48bf65d817c8f
db0b8444c46125105b52f272bd422a7f52da1f72
a05245b6f7fd752af4a7b0131bbdfdf3eaee6c5a25a81cb498e0f0759189473c

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software
OpenPhish	phishing	Office365

HTTP Headers

GET /minimize.jpg HTTP/1.1
Host: get-ready-to-fix.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-ready-to-fix.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 09 Dec 2023 02:49:39 GMT
content-type: image/jpeg
last-modified: Tue, 31 Oct 2023 14:38:51 GMT
etag: "8c7-6541117b-7cea24045d70f002;;;"
accept-ranges: bytes
content-length: 2247
date: Sat, 02 Dec 2023 02:49:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-VFYJQ389XB

142.250.74.168

200 OK

93 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-VFYJQ389XB
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://get-ready-to-fix.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (5955)
Size
93 kB (93079 bytes)
Hash
cf23357fc5eed12e46916bf213a84c60
ceda414a7552221536f49911b99fc082d0f883f0
e82ddcbd6567c2767924900a75d3e9c0042123783681639d10a9d21e7be73654

HTTP Headers

GET /gtag/js?id=G-VFYJQ389XB HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-ready-to-fix.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 02 Dec 2023 02:49:39 GMT
expires: Sat, 02 Dec 2023 02:49:39 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 93079
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

get-ready-to-fix.xyz/microsoft.png

193.203.185.204

200 OK

1.0 kB

URL GET HTTP/2
get-ready-to-fix.xyz/microsoft.png
IP
193.203.185.204:443
ASN
#0

Requested by
https://get-ready-to-fix.xyz/
Certificate
IssuerLet's Encrypt
Subjectget-ready-to-fix.xyz
FingerprintF4:A0:F6:9A:84:EA:C2:1E:5F:7D:05:F6:58:78:18:8B:FF:4C:CC:85
ValidityTue, 31 Oct 2023 13:47:54 GMT - Mon, 29 Jan 2024 13:47:53 GMT

File type
PNG image data, 47 x 46, 8-bit/color RGBA, non-interlaced\012- data
Size
1.0 kB (1045 bytes)
Hash
bf2b460590fbb9d8e9611a6e9006b816
561e1dab259d61e798b3ce380527b71b61074ff3
ee4bc5fe81fa7c1e8497d79c9c8a96485df217092d334e9b48fa8840fed11d03

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software
OpenPhish	phishing	Office365

HTTP Headers

GET /microsoft.png HTTP/1.1
Host: get-ready-to-fix.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-ready-to-fix.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 09 Dec 2023 02:49:39 GMT
content-type: image/png
last-modified: Tue, 31 Oct 2023 14:38:51 GMT
etag: "415-6541117b-b72a2a01478c75a5;;;"
accept-ranges: bytes
content-length: 1045
date: Sat, 02 Dec 2023 02:49:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

get-ready-to-fix.xyz/setting.png

193.203.185.204

200 OK

364 B

URL GET HTTP/2
get-ready-to-fix.xyz/setting.png
IP
193.203.185.204:443
ASN
#0

Requested by
https://get-ready-to-fix.xyz/
Certificate
IssuerLet's Encrypt
Subjectget-ready-to-fix.xyz
FingerprintF4:A0:F6:9A:84:EA:C2:1E:5F:7D:05:F6:58:78:18:8B:FF:4C:CC:85
ValidityTue, 31 Oct 2023 13:47:54 GMT - Mon, 29 Jan 2024 13:47:53 GMT

File type
PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced\012- data
Size
364 B (364 bytes)
Hash
e144c3378090087c8ce129a30cb6cb4e
59da5466551de941d0215e45c54aa2ceaf436be1
b13a03e0db893734298cbe203bf264407636ffe5dab0a141f83c492d0034dd6a

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software
OpenPhish	phishing	Office365

HTTP Headers

GET /setting.png HTTP/1.1
Host: get-ready-to-fix.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-ready-to-fix.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 09 Dec 2023 02:49:39 GMT
content-type: image/png
last-modified: Tue, 31 Oct 2023 14:38:51 GMT
etag: "16c-6541117b-213d39e2c3370402;;;"
accept-ranges: bytes
content-length: 364
date: Sat, 02 Dec 2023 02:49:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

get-ready-to-fix.xyz/que.png

193.203.185.204

200 OK

349 B

URL GET HTTP/2
get-ready-to-fix.xyz/que.png
IP
193.203.185.204:443
ASN
#0

Requested by
https://get-ready-to-fix.xyz/
Certificate
IssuerLet's Encrypt
Subjectget-ready-to-fix.xyz
FingerprintF4:A0:F6:9A:84:EA:C2:1E:5F:7D:05:F6:58:78:18:8B:FF:4C:CC:85
ValidityTue, 31 Oct 2023 13:47:54 GMT - Mon, 29 Jan 2024 13:47:53 GMT

File type
PNG image data, 13 x 13, 8-bit/color RGB, non-interlaced\012- data
Size
349 B (349 bytes)
Hash
7454c652e0733d92de6c920c2d646ae0
34a5bd8c7401f95e346895b0e5ccffbf0e9ad638
44f752b0bd2e48052d538bc6aca5379f3630ca64da945f794690ddf47e8eaef7

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software
OpenPhish	phishing	Office365

HTTP Headers

GET /que.png HTTP/1.1
Host: get-ready-to-fix.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-ready-to-fix.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 09 Dec 2023 02:49:39 GMT
content-type: image/png
last-modified: Tue, 31 Oct 2023 14:38:51 GMT
etag: "15d-6541117b-abceab387b820fd1;;;"
accept-ranges: bytes
content-length: 349
date: Sat, 02 Dec 2023 02:49:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

get-ready-to-fix.xyz/fullscreen.js

193.203.185.204

200 OK

245 B

URL GET HTTP/2
get-ready-to-fix.xyz/fullscreen.js
IP
193.203.185.204:443
ASN
#0

Requested by
https://get-ready-to-fix.xyz/
Certificate
IssuerLet's Encrypt
Subjectget-ready-to-fix.xyz
FingerprintF4:A0:F6:9A:84:EA:C2:1E:5F:7D:05:F6:58:78:18:8B:FF:4C:CC:85
ValidityTue, 31 Oct 2023 13:47:54 GMT - Mon, 29 Jan 2024 13:47:53 GMT

File type
ASCII text, with CRLF line terminators
Size
245 B (245 bytes)
Hash
62f519fe72808a3ec681392b7ff47417
2ee16112e35feb9d6d48ae0f4e66187514dec811
43703d37b8fe2769cb2e12db7aa281dbcca175124d05ff4b0cc3d152534698a4

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software
OpenPhish	phishing	Office365

HTTP Headers

GET /fullscreen.js HTTP/1.1
Host: get-ready-to-fix.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-ready-to-fix.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 09 Dec 2023 02:49:39 GMT
content-type: application/x-javascript
last-modified: Tue, 31 Oct 2023 14:38:50 GMT
etag: "f5-6541117a-7ef29d70cc8c1ca7;;;"
accept-ranges: bytes
content-length: 245
date: Sat, 02 Dec 2023 02:49:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

get-ready-to-fix.xyz/before.js

193.203.185.204

404 Not Found

912 B

URL GET HTTP/2
get-ready-to-fix.xyz/before.js
IP
193.203.185.204:443
ASN
#0

Requested by
https://get-ready-to-fix.xyz/
Certificate
IssuerLet's Encrypt
Subjectget-ready-to-fix.xyz
FingerprintF4:A0:F6:9A:84:EA:C2:1E:5F:7D:05:F6:58:78:18:8B:FF:4C:CC:85
ValidityTue, 31 Oct 2023 13:47:54 GMT - Mon, 29 Jan 2024 13:47:53 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (355)
Size
912 B (912 bytes)
Hash
e53fdf76753edcd8773ab17ae968bfd6
4bea38cd83442080bdf51cd1db206715f9198955
3d70ce95eb1eb78620cc57fe1a6a479e6f2d70508bf813238e573863df000d6e

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software
OpenPhish	phishing	Office365

HTTP Headers

GET /before.js HTTP/1.1
Host: get-ready-to-fix.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-ready-to-fix.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
content-type: text/html
last-modified: Tue, 24 Oct 2023 21:05:10 GMT
etag: "999-65383186-d39e84720b0c6fe9;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 912
date: Sat, 02 Dec 2023 02:49:39 GMT
server: LiteSpeed
platform: hostinger
X-Firefox-Spdy: h2

get-ready-to-fix.xyz/main.js

193.203.185.204

200 OK

308 B

URL GET HTTP/2
get-ready-to-fix.xyz/main.js
IP
193.203.185.204:443
ASN
#0

Requested by
https://get-ready-to-fix.xyz/
Certificate
IssuerLet's Encrypt
Subjectget-ready-to-fix.xyz
FingerprintF4:A0:F6:9A:84:EA:C2:1E:5F:7D:05:F6:58:78:18:8B:FF:4C:CC:85
ValidityTue, 31 Oct 2023 13:47:54 GMT - Mon, 29 Jan 2024 13:47:53 GMT

File type
ASCII text, with CRLF line terminators
Size
308 B (308 bytes)
Hash
94a15bd8a4d1784c96df9f27b3f52c88
4735f6b639b3b0dd63d22c04acdfb712a176dc02
2210f65a3949b4192ec099e6d44ff48ebf434c09e1e6119e659de3deb94fce29

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET /main.js HTTP/1.1
Host: get-ready-to-fix.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-ready-to-fix.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 09 Dec 2023 02:49:39 GMT
content-type: application/x-javascript
last-modified: Tue, 31 Oct 2023 14:38:50 GMT
etag: "4e4-6541117a-a2a2bd8345038257;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 308
date: Sat, 02 Dec 2023 02:49:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

get-ready-to-fix.xyz/light.js

193.203.185.204

200 OK

203 B

URL GET HTTP/2
get-ready-to-fix.xyz/light.js
IP
193.203.185.204:443
ASN
#0

Requested by
https://get-ready-to-fix.xyz/
Certificate
IssuerLet's Encrypt
Subjectget-ready-to-fix.xyz
FingerprintF4:A0:F6:9A:84:EA:C2:1E:5F:7D:05:F6:58:78:18:8B:FF:4C:CC:85
ValidityTue, 31 Oct 2023 13:47:54 GMT - Mon, 29 Jan 2024 13:47:53 GMT

File type
ASCII text, with CRLF line terminators
Size
203 B (203 bytes)
Hash
cd6c33fbc221d0271c910af910e6ebed
9b52f24d6f10b885bb19db1c4b531469f96d2914
318698ae5e67c32550d6b40ac09848d598f6317f51a8f09638ba925f6e7cc479

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software
OpenPhish	phishing	Office365

HTTP Headers

GET /light.js HTTP/1.1
Host: get-ready-to-fix.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-ready-to-fix.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 09 Dec 2023 02:49:39 GMT
content-type: application/x-javascript
last-modified: Tue, 31 Oct 2023 14:38:50 GMT
etag: "1f7-6541117a-b3ddfe1dc1cd3522;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 203
date: Sat, 02 Dec 2023 02:49:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

get-ready-to-fix.xyz/virus-scan.png

193.203.185.204

200 OK

26 kB

URL GET HTTP/2
get-ready-to-fix.xyz/virus-scan.png
IP
193.203.185.204:443
ASN
#0

Requested by
https://get-ready-to-fix.xyz/
Certificate
IssuerLet's Encrypt
Subjectget-ready-to-fix.xyz
FingerprintF4:A0:F6:9A:84:EA:C2:1E:5F:7D:05:F6:58:78:18:8B:FF:4C:CC:85
ValidityTue, 31 Oct 2023 13:47:54 GMT - Mon, 29 Jan 2024 13:47:53 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size
26 kB (25871 bytes)
Hash
2c497dfff84bd8c5af9254c9d6278ce1
667e72e7ba6f00a54629e28133317022d4b59af6
b2dc4153ee7019c70a1095d5d1304d540e3bba045d99e141f63e5b13362e5a4e

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software
OpenPhish	phishing	Office365

HTTP Headers

GET /virus-scan.png HTTP/1.1
Host: get-ready-to-fix.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-ready-to-fix.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 09 Dec 2023 02:49:39 GMT
content-type: image/png
last-modified: Tue, 31 Oct 2023 14:38:51 GMT
etag: "650f-6541117b-fe20e29b2a021b3;;;"
accept-ranges: bytes
content-length: 25871
date: Sat, 02 Dec 2023 02:49:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

get-ready-to-fix.xyz/bell.png

193.203.185.204

200 OK

1.1 kB

URL GET HTTP/2
get-ready-to-fix.xyz/bell.png
IP
193.203.185.204:443
ASN
#0

Requested by
https://get-ready-to-fix.xyz/
Certificate
IssuerLet's Encrypt
Subjectget-ready-to-fix.xyz
FingerprintF4:A0:F6:9A:84:EA:C2:1E:5F:7D:05:F6:58:78:18:8B:FF:4C:CC:85
ValidityTue, 31 Oct 2023 13:47:54 GMT - Mon, 29 Jan 2024 13:47:53 GMT

File type
PNG image data, 13 x 13, 8-bit/color RGBA, non-interlaced\012- data
Size
1.1 kB (1108 bytes)
Hash
a3555871399f1f67bfacaf437974b03a
b6337de87cd7a75a73cd804774651d14c83fe76a
2e48fef820929c21295e13444901f60e3aed61ba6f8c773ff1466e6843e76b49

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software
OpenPhish	phishing	Office365

HTTP Headers

GET /bell.png HTTP/1.1
Host: get-ready-to-fix.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-ready-to-fix.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 09 Dec 2023 02:49:39 GMT
content-type: image/png
last-modified: Tue, 31 Oct 2023 14:38:50 GMT
etag: "454-6541117a-c77d211392fbdbbf;;;"
accept-ranges: bytes
content-length: 1108
date: Sat, 02 Dec 2023 02:49:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

get-ready-to-fix.xyz/def.png

193.203.185.204

200 OK

3.8 kB

URL GET HTTP/2
get-ready-to-fix.xyz/def.png
IP
193.203.185.204:443
ASN
#0

Requested by
https://get-ready-to-fix.xyz/
Certificate
IssuerLet's Encrypt
Subjectget-ready-to-fix.xyz
FingerprintF4:A0:F6:9A:84:EA:C2:1E:5F:7D:05:F6:58:78:18:8B:FF:4C:CC:85
ValidityTue, 31 Oct 2023 13:47:54 GMT - Mon, 29 Jan 2024 13:47:53 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
3.8 kB (3834 bytes)
Hash
77a2ffc5545f87551d74781201de9b3b
c9c3798afd2ae95aa3bba3c428335d49c8255b06
316e6a6737bd296ab30aca2ef7fa36f119d15786a2432d01e31fdc130272f15c

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software
OpenPhish	phishing	Office365

HTTP Headers

GET /def.png HTTP/1.1
Host: get-ready-to-fix.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-ready-to-fix.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 09 Dec 2023 02:49:39 GMT
content-type: image/png
last-modified: Tue, 31 Oct 2023 14:38:50 GMT
etag: "efa-6541117a-7ae0e8376cbdfaa7;;;"
accept-ranges: bytes
content-length: 3834
date: Sat, 02 Dec 2023 02:49:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

get-ready-to-fix.xyz/pc.png

193.203.185.204

200 OK

4.9 kB

URL GET HTTP/2
get-ready-to-fix.xyz/pc.png
IP
193.203.185.204:443
ASN
#0

Requested by
https://get-ready-to-fix.xyz/
Certificate
IssuerLet's Encrypt
Subjectget-ready-to-fix.xyz
FingerprintF4:A0:F6:9A:84:EA:C2:1E:5F:7D:05:F6:58:78:18:8B:FF:4C:CC:85
ValidityTue, 31 Oct 2023 13:47:54 GMT - Mon, 29 Jan 2024 13:47:53 GMT

File type
PNG image data, 166 x 92, 8-bit/color RGBA, non-interlaced\012- data
Size
4.9 kB (4949 bytes)
Hash
cc5132b56ba46b03dd998aa1fe220106
403e007a0b17d76a9945fa5ec46a9d01733b3040
598699133be5eef63e3b9b5540609ec0dc91d7af9c7f70a3b890e57491a70ae0

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software
OpenPhish	phishing	Office365

HTTP Headers

GET /pc.png HTTP/1.1
Host: get-ready-to-fix.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-ready-to-fix.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 09 Dec 2023 02:49:39 GMT
content-type: image/png
last-modified: Tue, 31 Oct 2023 14:38:51 GMT
etag: "1355-6541117b-6ee7f077b6e4086a;;;"
accept-ranges: bytes
content-length: 4949
date: Sat, 02 Dec 2023 02:49:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

get-ready-to-fix.xyz/virus-images.jpg

193.203.185.204

200 OK

8.2 kB

URL GET HTTP/2
get-ready-to-fix.xyz/virus-images.jpg
IP
193.203.185.204:443
ASN
#0

Requested by
https://get-ready-to-fix.xyz/
Certificate
IssuerLet's Encrypt
Subjectget-ready-to-fix.xyz
FingerprintF4:A0:F6:9A:84:EA:C2:1E:5F:7D:05:F6:58:78:18:8B:FF:4C:CC:85
ValidityTue, 31 Oct 2023 13:47:54 GMT - Mon, 29 Jan 2024 13:47:53 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 254x71, components 3\012- data
Size
8.2 kB (8196 bytes)
Hash
5fc559a242f0ea0a023f10830887d2af
9d744c2f3a6bf5b715496350c8de7124cdd7ddc8
3b531d403dc8ce7cbb0efb1a0c307cfb2bbaaf21feaff9f3546f13bebda71887

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software
OpenPhish	phishing	Office365

HTTP Headers

GET /virus-images.jpg HTTP/1.1
Host: get-ready-to-fix.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-ready-to-fix.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 09 Dec 2023 02:49:39 GMT
content-type: image/jpeg
last-modified: Tue, 31 Oct 2023 14:38:51 GMT
etag: "2004-6541117b-b34ab3215403d76;;;"
accept-ranges: bytes
content-length: 8196
date: Sat, 02 Dec 2023 02:49:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

get-ready-to-fix.xyz/warning.mp3

193.203.185.204

206 Partial Content

8.4 kB

URL GET HTTP/3
get-ready-to-fix.xyz/warning.mp3
IP
193.203.185.204:443
ASN
#0

Requested by
https://get-ready-to-fix.xyz/
Certificate
IssuerLet's Encrypt
Subjectget-ready-to-fix.xyz
FingerprintF4:A0:F6:9A:84:EA:C2:1E:5F:7D:05:F6:58:78:18:8B:FF:4C:CC:85
ValidityTue, 31 Oct 2023 13:47:54 GMT - Mon, 29 Jan 2024 13:47:53 GMT

File type
Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 56 kbps, 44.1 kHz, Monaural\012- data
Size
8.4 kB (8405 bytes)
Hash
8618fbb0911e3b8fc96725dee8bfd81f
1bbcb78922946d0cf18fbf3a9e092e36453eb767
0589be7715d2320e559eae6bd26f3528e97450c70293da2e1e8ce45f77f99ab1

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software
OpenPhish	phishing	Office365

HTTP Headers

GET /warning.mp3 HTTP/1.1
Host: get-ready-to-fix.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://get-ready-to-fix.xyz/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 206 Partial Content
content-type: audio/mpeg
last-modified: Tue, 31 Oct 2023 14:38:51 GMT
etag: "20d5-6541117b-fd8a391388d50198;;;"
content-range: bytes 0-8404/8405
content-length: 8405
date: Sat, 02 Dec 2023 02:49:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"

get-ready-to-fix.xyz/cross.png

193.203.185.204

200 OK

44 kB

URL GET HTTP/2
get-ready-to-fix.xyz/cross.png
IP
193.203.185.204:443
ASN
#0

Requested by
https://get-ready-to-fix.xyz/
Certificate
IssuerLet's Encrypt
Subjectget-ready-to-fix.xyz
FingerprintF4:A0:F6:9A:84:EA:C2:1E:5F:7D:05:F6:58:78:18:8B:FF:4C:CC:85
ValidityTue, 31 Oct 2023 13:47:54 GMT - Mon, 29 Jan 2024 13:47:53 GMT

File type
PNG image data, 2080 x 2080, 8-bit/color RGBA, non-interlaced\012- data
Size
44 kB (44098 bytes)
Hash
4487a588bf2a07e3d1936d705c5ceefd
db193b3e2ab9fbee6eae99ced2366b1ef5f16971
3821ef20f5904fdb993e34d87ff8fb9c5786a382efb0eeee8b4f00c91428b701

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software
OpenPhish	phishing	Office365

HTTP Headers

GET /cross.png HTTP/1.1
Host: get-ready-to-fix.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-ready-to-fix.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 09 Dec 2023 02:49:39 GMT
content-type: image/png
last-modified: Tue, 31 Oct 2023 14:38:50 GMT
etag: "ac42-6541117a-d43a1b8e2b0edfe6;;;"
accept-ranges: bytes
content-length: 44098
date: Sat, 02 Dec 2023 02:49:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

get-ready-to-fix.xyz/background.png

193.203.185.204

200 OK

387 kB

URL GET HTTP/2
get-ready-to-fix.xyz/background.png
IP
193.203.185.204:443
ASN
#0

Requested by
https://get-ready-to-fix.xyz/
Certificate
IssuerLet's Encrypt
Subjectget-ready-to-fix.xyz
FingerprintF4:A0:F6:9A:84:EA:C2:1E:5F:7D:05:F6:58:78:18:8B:FF:4C:CC:85
ValidityTue, 31 Oct 2023 13:47:54 GMT - Mon, 29 Jan 2024 13:47:53 GMT

File type
PNG image data, 1920 x 1126, 8-bit/color RGBA, non-interlaced\012- data
Size
387 kB (386648 bytes)
Hash
db2c775d2583118bf4464dd65a58535b
45413378bf16997decf585915931305788e55328
de9fbe2de348e17bd4948011260ef297c4102b69068692daaba02bf632acd291

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software
OpenPhish	phishing	Office365

HTTP Headers

GET /background.png HTTP/1.1
Host: get-ready-to-fix.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-ready-to-fix.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 09 Dec 2023 02:49:39 GMT
content-type: image/png
last-modified: Tue, 31 Oct 2023 14:38:50 GMT
etag: "5e658-6541117a-c789d383a2382b00;;;"
accept-ranges: bytes
content-length: 386648
date: Sat, 02 Dec 2023 02:49:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

api.ipify.org/?format=json

104.237.62.212

200 OK

21 B

URL GET HTTP/1.1
api.ipify.org/?format=json
IP
104.237.62.212:443
ASN
#18450 WEBNX

Requested by
https://get-ready-to-fix.xyz/
Certificate
IssuerSectigo Limited
Subject*.ipify.org
FingerprintF4:76:2D:2C:65:D1:15:BE:19:A4:C5:E0:8D:EB:89:1A:B6:75:4A:54
ValidityTue, 07 Feb 2023 00:00:00 GMT - Sun, 18 Feb 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
21 B (21 bytes)
Hash
7d69c71af0f191e9a72db6153f8018d1
f67c5f2887bc05654b47f76e9621e53a4091aed1
5bac6e06cf0e1ad38c55f9f9d12122272bf4b8157877629fe68cd33fe2133c65

HTTP Headers

GET /?format=json HTTP/1.1
Host: api.ipify.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://get-ready-to-fix.xyz
DNT: 1
Connection: keep-alive
Referer: https://get-ready-to-fix.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.25.2
Date: Sat, 02 Dec 2023 02:49:40 GMT
Content-Type: application/json
Content-Length: 21
Connection: keep-alive
Access-Control-Allow-Origin: *
Vary: Origin

get-ready-to-fix.xyz/favicon.ico

193.203.185.204

404 Not Found

912 B

URL GET HTTP/3
get-ready-to-fix.xyz/favicon.ico
IP
193.203.185.204:443
ASN
#0

Requested by
https://get-ready-to-fix.xyz/
Certificate
IssuerLet's Encrypt
Subjectget-ready-to-fix.xyz
FingerprintF4:A0:F6:9A:84:EA:C2:1E:5F:7D:05:F6:58:78:18:8B:FF:4C:CC:85
ValidityTue, 31 Oct 2023 13:47:54 GMT - Mon, 29 Jan 2024 13:47:53 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (355)
Size
912 B (912 bytes)
Hash
e53fdf76753edcd8773ab17ae968bfd6
4bea38cd83442080bdf51cd1db206715f9198955
3d70ce95eb1eb78620cc57fe1a6a479e6f2d70508bf813238e573863df000d6e

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software
OpenPhish	phishing	Office365

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: get-ready-to-fix.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-ready-to-fix.xyz/
Cookie: _ga_VFYJQ389XB=GS1.1.1701485384.1.0.1701485384.0.0.0; _ga=GA1.1.1113414491.1701485385
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
content-type: text/html
last-modified: Tue, 24 Oct 2023 21:05:10 GMT
etag: "999-65383186-d39e84720b0c6fe9;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 912
date: Sat, 02 Dec 2023 02:49:40 GMT
server: LiteSpeed
platform: hostinger

maxcdn.bootstrapcdn.com/font-awesome/4.5.0/fonts/fontawesome-webfont.woff2?v=4.5.0

104.18.11.207

200 OK

67 kB

URL GET HTTP/3
maxcdn.bootstrapcdn.com/font-awesome/4.5.0/fonts/fontawesome-webfont.woff2?v=4.5.0
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://get-ready-to-fix.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint34:BC:91:5F:B9:EC:32:2C:D9:73:C7:88:C3:6C:FB:77:E7:70:8D:04
ValidityThu, 30 Nov 2023 00:15:17 GMT - Wed, 28 Feb 2024 00:15:16 GMT

File type
Web Open Font Format (Version 2), TrueType, length 66624, version 4.262\012- data
Size
67 kB (66624 bytes)
Hash
db812d8a70a4e88e888744c1c9a27e89
638c652d623280a58144f93e7b552c66d1667a11
ff82aeed6b9bb6701696c84d1b223d2e682eb78c89117a438ce6cfea8c498995

HTTP Headers

GET /font-awesome/4.5.0/fonts/fontawesome-webfont.woff2?v=4.5.0 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://get-ready-to-fix.xyz
DNT: 1
Connection: keep-alive
Referer: https://maxcdn.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 02 Dec 2023 02:49:42 GMT
content-type: font/woff2
content-length: 66624
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "db812d8a70a4e88e888744c1c9a27e89"
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 10/31/2023 18:48:08
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: f4b68d2a1b8d21974089cb993362e3a0
cdn-cache: HIT
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 82f042172bdd712a-OSL
alt-svc: h3=":443"; ma=86400

get-ready-to-fix.xyz/alertms.mp3

193.203.185.204

206 Partial Content

38 kB

URL GET HTTP/3
get-ready-to-fix.xyz/alertms.mp3
IP
193.203.185.204:443
ASN
#0

Requested by
https://get-ready-to-fix.xyz/
Certificate
IssuerLet's Encrypt
Subjectget-ready-to-fix.xyz
FingerprintF4:A0:F6:9A:84:EA:C2:1E:5F:7D:05:F6:58:78:18:8B:FF:4C:CC:85
ValidityTue, 31 Oct 2023 13:47:54 GMT - Mon, 29 Jan 2024 13:47:53 GMT

File type
Audio file with ID3 version 2.3.0, contains:\012- MPEG ADTS, layer III, v2, 64 kbps, 22.05 kHz, Monaural\012- data
Size
38 kB (37672 bytes)
Hash
3e04c973ecf8a154eea45419acd3bfbf
6360b1271d09a811e837de8f71f4c7181df6169b
e1864f3d73cb17334a8cd64f9ee0e37116f49fd2360b4b862f0a9fb0974d463c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET /alertms.mp3 HTTP/1.1
Host: get-ready-to-fix.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://get-ready-to-fix.xyz/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 206 Partial Content
content-type: audio/mpeg
last-modified: Sat, 25 Nov 2023 14:19:27 GMT
etag: "31080-6562026f-39a1bacb16a31e09;;;"
content-range: bytes 0-200831/200832
content-length: 200832
date: Sat, 02 Dec 2023 02:49:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests

get-ready-to-fix.xyz/alertms.mp3

193.203.185.204

206 Partial Content

35 kB

URL GET HTTP/3
get-ready-to-fix.xyz/alertms.mp3
IP
193.203.185.204:443
ASN
#0

Requested by
https://get-ready-to-fix.xyz/
Certificate
IssuerLet's Encrypt
Subjectget-ready-to-fix.xyz
FingerprintF4:A0:F6:9A:84:EA:C2:1E:5F:7D:05:F6:58:78:18:8B:FF:4C:CC:85
ValidityTue, 31 Oct 2023 13:47:54 GMT - Mon, 29 Jan 2024 13:47:53 GMT

File type
Audio file with ID3 version 2.3.0, contains:\012- MPEG ADTS, layer III, v2, 64 kbps, 22.05 kHz, Monaural\012- data
Size
35 kB (34975 bytes)
Hash
fa9fc100be4414fe671b19a99dab3a61
26bb1b723be718bf5caca9ce4ff0f8c4951ca303
adc979b8c3a158f4f9aa5e01e88d0662a54d1da608dfbe0093e39c3abe31bb0a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET /alertms.mp3 HTTP/1.1
Host: get-ready-to-fix.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://get-ready-to-fix.xyz/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 206 Partial Content
content-type: audio/mpeg
last-modified: Sat, 25 Nov 2023 14:19:27 GMT
etag: "31080-6562026f-39a1bacb16a31e09;;;"
content-range: bytes 0-200831/200832
content-length: 200832
date: Sat, 02 Dec 2023 02:49:39 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests

get-ready-to-fix.xyz/

193.203.185.204

200 OK

42 kB

URL User Request GET HTTP/2
get-ready-to-fix.xyz/
IP
193.203.185.204:443
ASN
#0

Certificate
IssuerLet's Encrypt
Subjectget-ready-to-fix.xyz
FingerprintF4:A0:F6:9A:84:EA:C2:1E:5F:7D:05:F6:58:78:18:8B:FF:4C:CC:85
ValidityTue, 31 Oct 2023 13:47:54 GMT - Mon, 29 Jan 2024 13:47:53 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Size
42 kB (41790 bytes)
Hash
689e19acb91d26377610e8f8fccec3fe
633486f5a3b0f6e6f2e09309d3e5f2d612ea2956
ba6d3c6e1d7d7777708c70668be3d93573b2c37723bde1236e8bf179c0142c27

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Office365

HTTP Headers

GET / HTTP/1.1
Host: get-ready-to-fix.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-powered-by: PHP/8.1.24
content-type: text/html; charset=UTF-8
content-encoding: br
vary: Accept-Encoding
date: Sat, 02 Dec 2023 02:49:38 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css

104.18.11.207

200 OK

28 kB

URL GET HTTP/2
maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://get-ready-to-fix.xyz/
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint34:BC:91:5F:B9:EC:32:2C:D9:73:C7:88:C3:6C:FB:77:E7:70:8D:04
ValidityThu, 30 Nov 2023 00:15:17 GMT - Wed, 28 Feb 2024 00:15:16 GMT

File type
ASCII text, with very long lines (27303)
Size
28 kB (27466 bytes)
Hash
4fbd15cb6047af93373f4f895639c8bf
12d6861075de8e293265ff6ff03b1f3adcb44c76
ddd92f10ad162c7449eff0acaf40598c05b1111739587edb75e5326b6697c5d5

HTTP Headers

GET /font-awesome/4.5.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-ready-to-fix.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 02 Dec 2023 02:49:39 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"4fbd15cb6047af93373f4f895639c8bf"
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 10/31/2023 18:58:32
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1047
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 25754c75fb460a03a208e88579fbc0b3
cdn-cache: HIT
cf-cache-status: HIT
age: 589024
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 82f04204287f56a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (24)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by