Scanned pages/files
| Request | Server response | Status |
http://fdrr.gov.ba/ | 200 OK Content-Length: 19572 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by Kosova Warriors Group ...[4705 bytes skipped]... s="ctr-color1"> <div id="col1wrap"> <div id="col1pad"> <div id="col1"> <div class="component-pad"> <div class="blog"> <div class="leading"> <h2 class="contentheading"> Hacked by Kosova Warriors Group</h2> <p class="buttonheading"> <a href="/index.php?view=article&id=1:organizacijska-struktura&format=pdf" title="PDF" onclick="window.open(this.href,'win2','status=no,toolbar=no,scrollbars=yes,titlebar=no,menubar=no,resizable=yes,width=640,height=480,directories=no,location=no'); return false;" rel="nofollow"><span class="icon pdf"></span></a><a href="/index.php?view=article&id=1:organizacijska- ...[18724 bytes skipped]... | ||
http://fdrr.gov.ba/propisi/zakon-o-robnim-rezervama | 200 OK Content-Length: 13724 Content-Type: text/html | clean |
http://fdrr.gov.ba/propisi/ | 404 Not Found Content-Length: 1437 Content-Type: text/html | clean |
http://fdrr.gov.ba/index.php | 200 OK Content-Length: 19593 Content-Type: text/html | clean |
http://fdrr.gov.ba/propisi/zakon-o-javnim-nabavkama | 200 OK Content-Length: 13493 Content-Type: text/html | clean |
http://fdrr.gov.ba/propisi/uredbe | 200 OK Content-Length: 13325 Content-Type: text/html | clean |
http://fdrr.gov.ba/propisi/odluke | 200 OK Content-Length: 13530 Content-Type: text/html | clean |
http://fdrr.gov.ba/kontakt | 200 OK Content-Length: 16508 Content-Type: text/html | clean |
http://fdrr.gov.ba/media/system/js/validate.js | 200 OK Content-Length: 4246 Content-Type: application/x-javascript | clean |
http://fdrr.gov.ba/kontakt/kontakt-info | 200 OK Content-Length: 15517 Content-Type: text/html | clean |
http://fdrr.gov.ba/kontakt/ | 200 OK Content-Length: 16499 Content-Type: text/html | clean |
http://fdrr.gov.ba/test404page.js | 404 Not Found Content-Length: 957 Content-Type: text/html | clean |
http://fdrr.gov.ba/kontakt/kontakt-info?format=pdf | 200 OK Content-Length: 242019 Content-Type: application/pdf | clean |
http://fdrr.gov.ba/kontakt/kontakt-info?tmpl=component&print=1&page= | 200 OK Content-Length: 4521 Content-Type: text/html | clean |
http://fdrr.gov.ba/media/system/js/caption.js | 200 OK Content-Length: 1963 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: fdrr.gov.ba
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sat, 15 Nov 2014 20:43:08 GMT
Pragma: no-cache
Server: Apache
Content-Length: 19572
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Sat, 15 Nov 2014 20:43:10 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 44a254b1626b124016a14bd4a7b7f24d=jnc6egcjp7sjfa96t9s8t0efj5; path=/
X-Powered-By: PleskLin
...19572 bytes of data.
GET / HTTP/1.1
Host: fdrr.gov.ba
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sat, 15 Nov 2014 20:43:08 GMT
Pragma: no-cache
Server: Apache
Content-Length: 19572
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Sat, 15 Nov 2014 20:43:10 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 44a254b1626b124016a14bd4a7b7f24d=jnc6egcjp7sjfa96t9s8t0efj5; path=/
X-Powered-By: PleskLin
...19572 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: fdrr.gov.ba
Referer: http://www.google.com/search?q=fdrr.gov.ba
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: fdrr.gov.ba
Referer: http://www.google.com/search?q=fdrr.gov.ba
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=fdrr.gov.ba
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://fdrr.gov.ba/
Result: fdrr.gov.ba is not infected or malware details are not published yet.
Result: fdrr.gov.ba is not infected or malware details are not published yet.