Scanned pages/files
Request | Server response | Status |
http://te.com.ba/ | 200 OK Content-Length: 44730 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by Kosova Warriors Group ...[17088 bytes skipped]... : 3, "counter_text": '<strong>Page:</strong>' }; //]]> </script> </div> </div> <div id="mainbox2"> <div class="moduletable"> <h3>Najnoviji Älanci</h3> <ul class="latestnews"> <li class="latestnews"> <a href="/index.php/toneri/381-toneri" class="latestnews"> Hacked by Kosova Warriors Group</a> </li> <li class="latestnews"> <a href="/index.php/toneri/380-ekvivalentni-toneri" class="latestnews"> Ekvivalentni toneri</a> </li> <li class="latestnews"> <a href="/index.php/toneri/379-ekvivalentni-toneri" class="latestnews"> Ekvivalentni toneri</a> </li> <li class="latestnews"> <a href="/index.php/toneri/378-ekvivalentni-toneri" cl ...[39717 bytes skipped]... | ||
http://te.com.ba/plugins/system/cdscriptegrator/libraries/highslide/js/highslide-full.min.js | 200 OK Content-Length: 71530 Content-Type: application/javascript | clean |
http://te.com.ba/plugins/system/cdscriptegrator/libraries/jquery/js/jquery-1.4.2.min.js | 200 OK Content-Length: 72174 Content-Type: application/javascript | clean |
http://te.com.ba/plugins/system/cdscriptegrator/libraries/jquery/js/jquery-noconflict.js | 200 OK Content-Length: 20 Content-Type: application/javascript | clean |
http://te.com.ba/plugins/system/cdscriptegrator/libraries/jquery/js/ui/jquery-ui-1.8.2.custom.min.js | 200 OK Content-Length: 206991 Content-Type: application/javascript | clean |
http://te.com.ba/media/system/js/caption.js | 200 OK Content-Length: 1963 Content-Type: application/javascript | clean |
http://te.com.ba/plugins/content/emailprotect/em.js | 200 OK Content-Length: 584 Content-Type: application/javascript | clean |
http://te.com.ba/modules/mod_news_pro_gk4/interface/scripts/engine.js | 200 OK Content-Length: 8789 Content-Type: application/javascript | clean |
http://te.com.ba/index.php/o-nama | 200 OK Content-Length: 14886 Content-Type: text/html | clean |
http://te.com.ba/index.php/klijenti | 200 OK Content-Length: 17268 Content-Type: text/html | clean |
http://te.com.ba/index.php/kontakt | 200 OK Content-Length: 16641 Content-Type: text/html | clean |
http://te.com.ba/media/system/js/validate.js | 200 OK Content-Length: 4246 Content-Type: application/javascript | clean |
http://te.com.ba/index.php/servis | 200 OK Content-Length: 16133 Content-Type: text/html | clean |
http://te.com.ba/index.php/fiskalizacija | 200 OK Content-Length: 24576 Content-Type: text/html | clean |
http://te.com.ba/index.php?Itemid=86&option= | HTTP/1.1 303 See Other Connection: close Date: Thu, 25 Sep 2014 23:23:34 GMT Location: http://te.com.ba/index.php/component/search/?ordering=newest&searchphrase=any&searchword=inde Server: Apache Content-Type: text/html P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM" Set-Cookie: ef7601e7bfd864bfc3c88ccb2b55953d=852ad763cd03f147559418e9c3cee967; path=/ X-Powered-By: PHP/4.4.9 | clean |
http://te.com.ba/index.php/component/search/?ordering=newest&searchphrase=any&searchword=inde | 200 OK Content-Length: 16174 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: te.com.ba
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 25 Sep 2014 23:23:26 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Thu, 25 Sep 2014 23:23:27 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: ef7601e7bfd864bfc3c88ccb2b55953d=bc17ceb608e393ab99026335bd7d6862; path=/
X-Powered-By: PHP/4.4.9
GET / HTTP/1.1
Host: te.com.ba
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 25 Sep 2014 23:23:26 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Thu, 25 Sep 2014 23:23:27 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: ef7601e7bfd864bfc3c88ccb2b55953d=bc17ceb608e393ab99026335bd7d6862; path=/
X-Powered-By: PHP/4.4.9
Second query (visit from search engine):
GET / HTTP/1.1
Host: te.com.ba
Referer: http://www.google.com/search?q=te.com.ba
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: te.com.ba
Referer: http://www.google.com/search?q=te.com.ba
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=te.com.ba
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://te.com.ba/
Result: te.com.ba is not infected or malware details are not published yet.
Result: te.com.ba is not infected or malware details are not published yet.