Scanned pages/files
| Request | Server response | Status |
http://www.taxfree.rs/ | HTTP/1.1 303 See other Connection: close Date: Thu, 09 Jul 2015 12:11:25 GMT Location: http://www.taxfree.rs/sr/ Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=utf-8 Set-Cookie: d77394bbc24c02825d6d41cd2667d1e7=9dd922a360d06f7ba58fc8540bb7dc08; path=/ X-Powered-By: PHP/5.3.27 | clean |
http://www.taxfree.rs/sr/ | 200 OK Content-Length: 10705 Content-Type: text/html | clean |
http://www.taxfree.rs/media/system/js/core.js | 200 OK Content-Length: 4225 Content-Type: application/javascript | clean |
http://www.taxfree.rs/media/system/js/mootools-core.js | 200 OK Content-Length: 88540 Content-Type: application/javascript | clean |
http://www.taxfree.rs/media/system/js/caption.js | 200 OK Content-Length: 800 Content-Type: application/javascript | clean |
http://www.taxfree.rs/templates/specialtemplate/js/jquery.js | 200 OK Content-Length: 94019 Content-Type: application/javascript | clean |
http://www.taxfree.rs/modules/mod_PlimunNivoSlider/js/jquery.nivo.slider.js | 200 OK Content-Length: 25016 Content-Type: application/javascript | clean |
http://www.taxfree.rs/sr/espresso-saicaf-bar | 200 OK Content-Length: 12960 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked BY : IllyrianWarriors ...[13421 bytes skipped]... : 14pt;">ZaÅ¡to? Probajte i osetiÄete i Vi...</span></em></p> </div> </div> <div class="container-right"> <div class="module "> <h3>VESTI</h3> <div class="content"> <ul class="mostread"> <li> <a href="/sr/vesti/45-kako-se-piju-kafe-u-italiji"> Hacked BY : IllyrianWarriors</a> </li> <li> <a href="/sr/vesti/47-kakvu-kafu-vi-pijete"> Kakvu kafu vi pijete</a> </li> <li> <a href="/sr/vesti/46-kofein-nije-stetan-za-srce"> Kofein nije Å¡tetan za srce</a> </li> </ul> </div> </div> <div class="module "> <h3>NAJPOSEÄENIJE</h3> <div class="content"> | ||
http://www.taxfree.rs/sr/ledena-espresso-krema | 200 OK Content-Length: 14794 Content-Type: text/html | clean |
http://www.taxfree.rs/media/system/js/mootools-more.js | 200 OK Content-Length: 238128 Content-Type: application/javascript | clean |
http://www.taxfree.rs/plugins/content/sigplus/engines/slimbox/js/slimbox.min.js | 200 OK Content-Length: 4110 Content-Type: application/javascript | clean |
http://www.taxfree.rs/plugins/content/sigplus/engines/slimbox/js/initialization.js | 200 OK Content-Length: 974 Content-Type: application/javascript | clean |
http://www.taxfree.rs/sr/espresso-aparati | 200 OK Content-Length: 14816 Content-Type: text/html | clean |
http://www.taxfree.rs/sr/servis | 200 OK Content-Length: 16891 Content-Type: text/html | clean |
http://www.taxfree.rs/sr/vesti | 200 OK Content-Length: 136961 Content-Type: text/html | clean |
http://www.taxfree.rs/sr/o-nama | 200 OK Content-Length: 13550 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: taxfree.rs
Result:
GET / HTTP/1.1
Host: taxfree.rs
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: taxfree.rs
Referer: http://www.google.com/search?q=taxfree.rs
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: taxfree.rs
Referer: http://www.google.com/search?q=taxfree.rs
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=taxfree.rs
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://taxfree.rs/
Result: taxfree.rs is not infected or malware details are not published yet.
Result: taxfree.rs is not infected or malware details are not published yet.