Scanned pages/files
Request | Server response | Status |
http://tips2trips.in/ | 200 OK Content-Length: 4777 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked BY ...[744 bytes skipped]... tracks/156161011&color=ff5500&auto_play=true&hide_related=false&show_comments=true&show_user=true&show_reposts=false"></iframe> <font color='white'> <br> <h1><center><b><font color='white' size='7'>Pakis<font color='green'>tan Zindabad</font></font><br> <font color='white' size='6'>Hacked BY <font color='red' size='6'>Mango Warriors</font></font><h1><img src="http://doorsdream.com/products/Untitled.png"</img><br> <font color="white" size="4"> So Indian Kids !!! Got PWned ???<br>Yes You Are Right ;) You Are Again Kicked By <font color="green" size="4">Mango WArriors </font><br> We Have Already Warned You About Re-defacing Pakistani Sites But You Need Some Hard Fuck we guess<br> Ki ...[3938 bytes skipped]... | ||
http://ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js | 200 OK Content-Length: 93100 Content-Type: text/javascript | clean |
http://tips2trips.in/test404page.js | 404 Not Found Content-Length: 4878 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: tips2trips.in
Result:
HTTP/1.1 200 OK
Date: Tue, 04 Nov 2014 07:54:34 GMT
Accept-Ranges: bytes
ETag: "30eff420c6e6cf1:0"
Server: Microsoft-IIS/8.0
Content-Length: 4777
Content-Type: text/html
Last-Modified: Mon, 13 Oct 2014 09:14:44 GMT
X-Powered-By: ASP.NET
...4777 bytes of data.
GET / HTTP/1.1
Host: tips2trips.in
Result:
HTTP/1.1 200 OK
Date: Tue, 04 Nov 2014 07:54:34 GMT
Accept-Ranges: bytes
ETag: "30eff420c6e6cf1:0"
Server: Microsoft-IIS/8.0
Content-Length: 4777
Content-Type: text/html
Last-Modified: Mon, 13 Oct 2014 09:14:44 GMT
X-Powered-By: ASP.NET
...4777 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: tips2trips.in
Referer: http://www.google.com/search?q=tips2trips.in
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: tips2trips.in
Referer: http://www.google.com/search?q=tips2trips.in
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=tips2trips.in
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://tips2trips.in/
Result: tips2trips.in is not infected or malware details are not published yet.
Result: tips2trips.in is not infected or malware details are not published yet.