Scanned pages/files
Request | Server response | Status |
http://leftism.co.vu/ | 200 OK Content-Length: 58693 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 1x1 src: http://assets.tumblr.com/assets/html/iframe/teaser.html?_v=132899216dd0023961df2de913189b51#src=http%3a%2f%2fleftism.co.vu%2f&lang=en_us&name=memeufacturing&avatar=http%3a%2f%2f38.media.tumblr.com%2favatar_f206b37ce7b7_64.png&title=the+x+files%3a+ryden+truth%26trade%3b&url=http%3a%2f%2fleftism.co.vu%2f&page_slide=slide <iframe scrolling="no" frameborder="0" src="http://assets.tumblr.com/assets/html/iframe/teaser.html?_v=132899216dd0023961df2de913189b51#src=http%3a%2f%2fleftism.co.vu%2f&lang=en_us&name=memeufacturing&avatar=http%3a%2f%2f38.media.tumblr.com%2favatar_f206b37ce7b7_64.png&title=the+x+files%3a+ryden+truth%26trade%3b&url=http%3a%2f%2fleftism.co.vu%2f&page_slide=slide" id="teaser_iframe" width="1" height="1"> | ||
http://assets.tumblr.com/assets/scripts/pre_tumblelog.js?_v=4407ac63b04a974114891da19b333539 | 200 OK Content-Length: 3361 Content-Type: application/javascript | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.6.2/jquery.min.js | 200 OK Content-Length: 91556 Content-Type: text/javascript | clean |
http://static.tumblr.com/iuw14ew/VSQma1786/jquery.style-my-tooltips.js | 200 OK Content-Length: 4077 Content-Type: application/x-javascript | clean |
http://assets.tumblr.com/assets/scripts/tumblelog.js?_v=454fc1618d865ba96c0749de3c9277c9 | 200 OK Content-Length: 44937 Content-Type: application/javascript | clean |
http://www.wikplayer.com/code.js | 200 OK Content-Length: 4871 Content-Type: application/x-javascript | clean |
http://freehostedscripts.net/clock.php?id=c1 | 200 OK Content-Length: 219 Content-Type: text/html | clean |
http://freehostedscripts.net/test404page.js | 404 Not Found Content-Length: 3300 Content-Type: text/html | clean |
http://freehostedscripts.net/advertisements.js | 200 OK Content-Length: 18 Content-Type: application/javascript | clean |
http://freehostedscripts.net/ocounter.js | 200 OK Content-Length: 17 Content-Type: application/javascript | clean |
http://freehostedscripts.net/ | 200 OK Content-Length: 7284 Content-Type: text/html | clean |
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 27376 Content-Type: text/javascript | clean |
http://freehostedscripts.net/fhsabm.php?id=pdtmjLfVq | 200 OK Content-Length: 813 Content-Type: application/javascript | clean |
http://freehostedscripts.net/tos | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 13 Dec 2015 17:46:40 GMT Location: http://freehostedscripts.net/tos/ Server: cloudflare-nginx Vary: Accept-Encoding Content-Type: text/html; charset=iso-8859-1 CF-RAY: 25437d6032f12af7-WAW Set-Cookie: __cfduid=da59620af8290f480cb5869a5aeb328861450028800; expires=Mon, 12-Dec-16 17:46:40 GMT; path=/; domain=.freehostedscripts.net; HttpOnly | clean |
http://freehostedscripts.net/tos/ | 200 OK Content-Length: 9761 Content-Type: text/html | clean |
http://freehostedscripts.net/fhsabm.php?id=JHEjugGUc | 200 OK Content-Length: 813 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: leftism.co.vu
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 13 Dec 2015 17:46:36 GMT
Vary: X-UA-Device
Content-Type: text/html; charset=utf-8
Link: <http://38.media.tumblr.com/avatar_f206b37ce7b7_128.png>; rel=icon
P3P: CP="Tumblr's privacy policy is available here: https://www.tumblr.com/policy/en/privacy"
X-Tumblr-Pixel: 5
X-Tumblr-Pixel-0: http://px.srvcs.tumblr.com/impixu?T=1450028795&J=eyJ0eXBlIjoidXJsIiwidXJsIjoiaHR0cDpcL1wvbGVmdGlzbS5jby52dVwvIiwicmVxdHlwZSI6MCwicm91dGUiOiJcLyJ9&U=PACCNHHHFK&K=67a507329b99d259a39a14dc992d5ca10e980c0fcbd45b212d0f1861f7005059--http://px.srvcs.tumblr.com/impixu?T=1450028795&J=eyJ0eXBlIjoicG9zdCIsInVybCI6Imh0dHA6XC9cL2xlZnRpc20uY28udnVcLyIsInJlcXR5cGUiOjAsInJvdXRlIjoiXC8iLCJwb3N0cyI6W3sicm9vdF9ibG9naWQiOiI1MjQ0NTk3MyIsInJvb3RfcG9zdGlkIjoiMjQ5ODI3MDk2ODAiLCJwb3N0aWQiOjEzNTEyNDE1MjEwMywiYm
X-Tumblr-Pixel-1: xvZ2lkIjoiMTk3NDMzNDgzIiwic291cmNlIjozM30seyJwb3N0aWQiOiIxMzUxMjI0MTQyMjgiLCJibG9naWQiOiIxOTc0MzM0ODMiLCJzb3VyY2UiOjMzfSx7InJvb3RfYmxvZ2lkIjoiMjE4NDQ1NDcxIiwicm9vdF9wb3N0aWQiOiIxMTA4NTc1MTY3NDciLCJwb3N0aWQiOjEzNTEyMjM2MjI4OCwiYmxvZ2lkIjoiMTk3NDMzNDgzIiwic291cmNlIjozM30seyJwb3N0aWQiOiIxMzUxMjE0ODQyODMiLCJibG9naWQiOiIxOTc0MzM0ODMiLCJzb3VyY2UiOjMzfSx7InJvb3RfYmxvZ2lkIjoiMTI3MDg1ODc3Iiwicm9vdF9wb3N0aWQiOiIxMjI4OTg3OTI0MDciLCJwb3N0aWQiOiIxMzUxMjEyODc5NzMiLCJibG9naWQiOiIxOTc0MzM0ODMiLCJzb3Vy
X-Tumblr-Pixel-2: Y2UiOjMzfSx7InJvb3RfYmxvZ2lkIjoiMTk3NDMzNDgzIiwicm9vdF9wb3N0aWQiOiIxMzUwOTA4NjI0ODgiLCJwb3N0aWQiOiIxMzUxMjEwNjk2MDgiLCJibG9naWQiOiIxOTc0MzM0ODMiLCJzb3VyY2UiOjMzfSx7InBvc3RpZCI6IjEzNTEyMDI4Njc3MyIsImJsb2dpZCI6IjE5NzQzMzQ4MyIsInNvdXJjZSI6MzN9LHsicm9vdF9ibG9naWQiOiIyMTE5OTczNjAiLCJyb290X3Bvc3RpZCI6IjEzMzI3MDUzOTYxMyIsInBvc3RpZCI6IjEzNTEwMjUyODM5OCIsImJsb2dpZCI6IjE5NzQzMzQ4MyIsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiMTM1MTAyNDg1NzE4IiwiYmxvZ2lkIjoiMTk3NDMzNDgzIiwic291cmNlIjozM30seyJwb3N0aWQiOiIxMz
X-Tumblr-Pixel-3: UxMDIzMjQ3NzMiLCJibG9naWQiOiIxOTc0MzM0ODMiLCJzb3VyY2UiOjMzfSx7InBvc3RpZCI6IjEzNTEwMjI0MDk0MyIsImJsb2dpZCI6IjE5NzQzMzQ4MyIsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiMTM1MTAyMTgzOTkzIiwiYmxvZ2lkIjoiMTk3NDMzNDgzIiwic291cmNlIjozM30seyJwb3N0aWQiOiIxMzUxMDIwNTMwMDMiLCJibG9naWQiOiIxOTc0MzM0ODMiLCJzb3VyY2UiOjMzfSx7InBvc3RpZCI6IjEzNTEwMTk1NDkzOCIsImJsb2dpZCI6IjE5NzQzMzQ4MyIsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiMTM1MTAxOTI0Mzc4IiwiYmxvZ2lkIjoiMTk3NDMzNDgzIiwic291cmNlIjozM31dfQ==&U=HDHPGCHNEL&K=e6e90a0780b03d5a
X-Tumblr-Pixel-4: c9e256fd020ef76e382215a4f5aeb77212403c2afe840fcd
X-Tumblr-User: memeufacturing
X-UA-Compatible: IE=Edge,chrome=1
X-UA-Device: desktop
GET / HTTP/1.1
Host: leftism.co.vu
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 13 Dec 2015 17:46:36 GMT
Vary: X-UA-Device
Content-Type: text/html; charset=utf-8
Link: <http://38.media.tumblr.com/avatar_f206b37ce7b7_128.png>; rel=icon
P3P: CP="Tumblr's privacy policy is available here: https://www.tumblr.com/policy/en/privacy"
X-Tumblr-Pixel: 5
X-Tumblr-Pixel-0: http://px.srvcs.tumblr.com/impixu?T=1450028795&J=eyJ0eXBlIjoidXJsIiwidXJsIjoiaHR0cDpcL1wvbGVmdGlzbS5jby52dVwvIiwicmVxdHlwZSI6MCwicm91dGUiOiJcLyJ9&U=PACCNHHHFK&K=67a507329b99d259a39a14dc992d5ca10e980c0fcbd45b212d0f1861f7005059--http://px.srvcs.tumblr.com/impixu?T=1450028795&J=eyJ0eXBlIjoicG9zdCIsInVybCI6Imh0dHA6XC9cL2xlZnRpc20uY28udnVcLyIsInJlcXR5cGUiOjAsInJvdXRlIjoiXC8iLCJwb3N0cyI6W3sicm9vdF9ibG9naWQiOiI1MjQ0NTk3MyIsInJvb3RfcG9zdGlkIjoiMjQ5ODI3MDk2ODAiLCJwb3N0aWQiOjEzNTEyNDE1MjEwMywiYm
X-Tumblr-Pixel-1: xvZ2lkIjoiMTk3NDMzNDgzIiwic291cmNlIjozM30seyJwb3N0aWQiOiIxMzUxMjI0MTQyMjgiLCJibG9naWQiOiIxOTc0MzM0ODMiLCJzb3VyY2UiOjMzfSx7InJvb3RfYmxvZ2lkIjoiMjE4NDQ1NDcxIiwicm9vdF9wb3N0aWQiOiIxMTA4NTc1MTY3NDciLCJwb3N0aWQiOjEzNTEyMjM2MjI4OCwiYmxvZ2lkIjoiMTk3NDMzNDgzIiwic291cmNlIjozM30seyJwb3N0aWQiOiIxMzUxMjE0ODQyODMiLCJibG9naWQiOiIxOTc0MzM0ODMiLCJzb3VyY2UiOjMzfSx7InJvb3RfYmxvZ2lkIjoiMTI3MDg1ODc3Iiwicm9vdF9wb3N0aWQiOiIxMjI4OTg3OTI0MDciLCJwb3N0aWQiOiIxMzUxMjEyODc5NzMiLCJibG9naWQiOiIxOTc0MzM0ODMiLCJzb3Vy
X-Tumblr-Pixel-2: Y2UiOjMzfSx7InJvb3RfYmxvZ2lkIjoiMTk3NDMzNDgzIiwicm9vdF9wb3N0aWQiOiIxMzUwOTA4NjI0ODgiLCJwb3N0aWQiOiIxMzUxMjEwNjk2MDgiLCJibG9naWQiOiIxOTc0MzM0ODMiLCJzb3VyY2UiOjMzfSx7InBvc3RpZCI6IjEzNTEyMDI4Njc3MyIsImJsb2dpZCI6IjE5NzQzMzQ4MyIsInNvdXJjZSI6MzN9LHsicm9vdF9ibG9naWQiOiIyMTE5OTczNjAiLCJyb290X3Bvc3RpZCI6IjEzMzI3MDUzOTYxMyIsInBvc3RpZCI6IjEzNTEwMjUyODM5OCIsImJsb2dpZCI6IjE5NzQzMzQ4MyIsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiMTM1MTAyNDg1NzE4IiwiYmxvZ2lkIjoiMTk3NDMzNDgzIiwic291cmNlIjozM30seyJwb3N0aWQiOiIxMz
X-Tumblr-Pixel-3: UxMDIzMjQ3NzMiLCJibG9naWQiOiIxOTc0MzM0ODMiLCJzb3VyY2UiOjMzfSx7InBvc3RpZCI6IjEzNTEwMjI0MDk0MyIsImJsb2dpZCI6IjE5NzQzMzQ4MyIsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiMTM1MTAyMTgzOTkzIiwiYmxvZ2lkIjoiMTk3NDMzNDgzIiwic291cmNlIjozM30seyJwb3N0aWQiOiIxMzUxMDIwNTMwMDMiLCJibG9naWQiOiIxOTc0MzM0ODMiLCJzb3VyY2UiOjMzfSx7InBvc3RpZCI6IjEzNTEwMTk1NDkzOCIsImJsb2dpZCI6IjE5NzQzMzQ4MyIsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiMTM1MTAxOTI0Mzc4IiwiYmxvZ2lkIjoiMTk3NDMzNDgzIiwic291cmNlIjozM31dfQ==&U=HDHPGCHNEL&K=e6e90a0780b03d5a
X-Tumblr-Pixel-4: c9e256fd020ef76e382215a4f5aeb77212403c2afe840fcd
X-Tumblr-User: memeufacturing
X-UA-Compatible: IE=Edge,chrome=1
X-UA-Device: desktop
Second query (visit from search engine):
GET / HTTP/1.1
Host: leftism.co.vu
Referer: http://www.google.com/search?q=leftism.co.vu
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: leftism.co.vu
Referer: http://www.google.com/search?q=leftism.co.vu
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=leftism.co.vu
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://leftism.co.vu/
Result: leftism.co.vu is not infected or malware details are not published yet.
Result: leftism.co.vu is not infected or malware details are not published yet.