Bitdefender TrafficLight flags the website as malware site: htxp://tweeps.us
Quttera detects one suspicious file → index
Severity: Suspicious
Reason: Detected suspicious redirection to external web resources at HTTP level.
Details: Detected HTTP redirection to -http://clcktrck.net/path/lp.php?trvid=10003%26trvx=3721aa50%26search=detox%20cleanse%20reviews%26smid=DfzfI371aWL71X8fx7N9t5J34kg09eG%26dom=-tweeps.us.
File size[byte]: 0
File type: Unknown
Page/File MD5: 00000000000000000000000000000000
Scan duration[sec]: 0.001000
Detected libraries to be retired:
jquery - 1.7.2 : (active1) -http://tweeps.us
Info: Severity: medium
http://bugs.jquery.com/ticket/11290
http://research.insecurelabs.org/jquery/test/
backbone.js - 0.9.2 : (active1) -http://tweeps.us
handlebars.js - 1.0.beta.6 : (active1) -http://tweeps.us
Info: Severity: medium
https://github.com/wycats/handlebars.js/pull/68
Info: Severity: medium
https://github.com/wycats/handlebars.js/pull/1083
(active) - the library was also found to be active by running code
2 vulnerable libraries detected
Three XSS attacks exploitable: http://www.domxssscanner.com/scan?url=http%3A%2F%2Ftweeps.us%2Fcdn-cgi%2Fse%2Fjavascripts%2Fmodernizr.js
Chain of redirects found: http://killmalware.com/tweeps.us/#
I now get: “The page you are looking for cannot be found”. “SmartErrors powered by CloudFlarePrivacy policy”.
Unique IDs about your web browsing habits have been insecurely sent to third parties.
ajax.cloudflare.com __cfduid
tweeps.us __cfduid
d5fb79cb4xxxxxxxxxxxxxxxxxx1445965753 local.adguard.com
See Cloudflare abuse for IP: https://www.virustotal.com/en/ip-address/104.24.103.115/information/
ssl-google-analytics.com code but link to -9b.5b.c0ad.ip4.static.sl-reverse.com was blocked by MBAM as malicious.
See reverse DNS: http://toolbar.netcraft.com/site_report?url=http://api.swiftype.com
polonus