Scanned pages/files
Request | Server response | Status |
http://www.vimt.in/ | 200 OK Content-Length: 13741 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By ...[11643 bytes skipped]... ht="6" /></td> </tr> </table></td> <td width="10" align="left" valign="top"> </td> <td width="733" align="left" valign="top"> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td bgcolor="#FFFFFF" class="heading" style="padding-left:5px;">Hacked By "3xp1r3 Cyber Army"</td> </tr> <tr> <td bgcolor="#FFFFFF" class="text"><p><script type="text/javascript">ANCHORFREE_VERSION="623161526"</script><script type='text/javascript'>(function(){if(typeof(_AF2$runned)!='undefined'&&_AF2$runned==true){return}_AF2$runned=true;_AF2$ = {'SN':'HSSHIELD00BD','IP':'203.98.92.160','CH':'HSSCNL000395','CT':'z308,z234','HST':'&bFi ...[4910 bytes skipped]... | ||
http://www.vimt.in/js/script.js | 200 OK Content-Length: 1269 Content-Type: application/javascript | clean |
http://www.vimt.in/js/jquery-1.6.1.min.js | 200 OK Content-Length: 91342 Content-Type: application/javascript | clean |
http://www.vimt.in/js/jquery.nivo.slider.pack.js | 200 OK Content-Length: 15853 Content-Type: application/javascript | clean |
http://www.vimt.in/index.php | 200 OK Content-Length: 13741 Content-Type: text/html | clean |
http://www.vimt.in/content_detail.php?id=1 | 200 OK Content-Length: 36151 Content-Type: text/html | clean |
http://www.vimt.in/content_detail.php?id=3 | 200 OK Content-Length: 26759 Content-Type: text/html | clean |
http://www.vimt.in/content_detail.php?id=4 | 200 OK Content-Length: 13997 Content-Type: text/html | clean |
http://www.vimt.in/content_detail.php?id=5 | 200 OK Content-Length: 23544 Content-Type: text/html | clean |
http://www.vimt.in/content_detail.php?id=6 | 200 OK Content-Length: 17956 Content-Type: text/html | clean |
http://www.vimt.in/ic_center.php?action=ABROAD | 200 OK Content-Length: 9558 Content-Type: text/html | clean |
http://www.vimt.in/ic_center.php?action=india | 200 OK Content-Length: 12640 Content-Type: text/html | clean |
http://www.vimt.in/sample.php | 200 OK Content-Length: 9700 Content-Type: text/html | clean |
http://www.vimt.in/content.php?id=10 | 200 OK Content-Length: 10795 Content-Type: text/html | clean |
http://www.vimt.in/content.php?id=6 | 200 OK Content-Length: 9811 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 1x1 src: http://static.audienceinsights.net//iframe.html#dmfyigltzya9igrvy3vtzw50lmnyzwf0zuvszw1lbnqoj2ltzycpoybpbwcuc3r5bguuzglzcgxhesa9icdub25ljzsgaw1nlnnyyz0nahr0chm6ly9sb2fkzxuuzxhlbgf0b3iuy29tl2xvywqvp3a9nziyjmc9mdaxjmo9mczqvulepuewmtfkzmi5nmeynwjlm2i0ngyxotc5zgfizmi1mdy5njbkyic7ihzhcibib2r5id0gzg9jdw1lbnquz2v0rwxlbwvudhncevrhz05hbwuoj2jvzhknkvswxtsgawygkcfib2r5ksb7igjvzhkgpsbkb2n1bwvudc5kb2n1bwvudevszw1lbnq7ih0gym9kes5hchblbmrdaglszchpbwcpow== <iframe width="1px" height="1px" src="http://static.audienceinsights.net//iframe.html#dmfyigltzya9igrvy3vtzw50lmnyzwf0zuvszw1lbnqoj2ltzycpoybpbwcuc3r5bguuzglzcgxhesa9icdub25ljzsgaw1nlnnyyz0nahr0chm6ly9sb2fkzxuuzxhlbgf0b3iuy29tl2xvywqvp3a9nziyjmc9mdaxjmo9mczqvulepuewmtfkzmi5nmeynwjlm2i0ngyxotc5zgfizmi1mdy5njbkyic7ihzhcibib2r5id0gzg9jdw1lbnquz2v0rwxlbwvudhncevrhz05hbwuoj2jvzhknkvswxtsgawygkcfib2r5ksb7igjvzhkgpsbkb2n1bwvudc5kb2n1bwvudevszw1lbnq7ih0gym9kes5hchblbmrdaglszchpbwcpow==" style="position: absolute; top: -42px; left: -42px;"> Hidden iFrame found. size: 1x1 src: http://static.audienceinsights.net/lso.html <iframe width="1px" height="1px" src="http://static.audienceinsights.net/lso.html" id="pus_lso_iframe" name="pus_lso_iframe" style="position: absolute; top: -42px; left: -42px;"> |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: vimt.in
Result:
GET / HTTP/1.1
Host: vimt.in
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: vimt.in
Referer: http://www.google.com/search?q=vimt.in
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: vimt.in
Referer: http://www.google.com/search?q=vimt.in
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=vimt.in
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://vimt.in/
Result: vimt.in is not infected or malware details are not published yet.
Result: vimt.in is not infected or malware details are not published yet.