Scanned pages/files
Request | Server response | Status |
http://www.upb.ba/ | 200 OK Content-Length: 14732 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by Kosova Warriors Group ...[10403 bytes skipped]... > <div id="rightcolumn"> <div class="module"> <div> <div> <div> <h3>Obavještenje</h3> <div class="mod_placehere"><div style="overflow:auto;" class="mod_placehere_leading even"> <p class="buttonheading"> </p> <p>Hacked by Kosova Warriors Group</p> <!--[if gte mso 9]><xml> <o:DocumentProperties> <o:Author>Guest1</o:Author> <o:LastAuthor>Guest1</o:LastAuthor> <o:Revision>4</o:Revision> <o:TotalTime>13</o:TotalTime> <o:Created>2014-01-10T15:13:00Z</o:Created> <o:LastSaved>2014-01-10T15:25:00Z</o:LastSaved> <o:Pages>1</o:Pages> <o:Words>127</o:Words> <o:Characters>729</o:Charact ...[7672 bytes skipped]... | ||
http://www.upb.ba/media/system/js/caption.js | 200 OK Content-Length: 2150 Content-Type: application/x-javascript | clean |
http://www.upb.ba/index.php | 200 OK Content-Length: 14741 Content-Type: text/html | clean |
http://www.upb.ba/index.php/ba/naslovnad | 200 OK Content-Length: 17820 Content-Type: text/html | clean |
http://www.upb.ba/index.php/ba/propisi | 200 OK Content-Length: 11959 Content-Type: text/html | clean |
http://www.upb.ba/index.php/ba/kontakt | 200 OK Content-Length: 12375 Content-Type: text/html | clean |
http://www.upb.ba/index.php/ba/lanovi | 200 OK Content-Length: 12643 Content-Type: text/html | clean |
http://www.upb.ba/index.php/ba/skuptina | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 29 Nov 2015 05:04:37 GMT Location: http://www.upb.ba/index.php?option=com_user&view=login&return=aHR0cDovL3d3dy51cGIuYmEvaW5kZXgucGhwL3NrdXB0aW5hP2xhbmc9YmE= Server: Apache/2.2.3 (CentOS) Content-Length: 0 Content-Type: text/html P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM" Set-Cookie: fc368292e45d86122385c1f795efc95f=08ng46ifgbg6lno844ji9ekeg2; path=/ Set-Cookie: lang=deleted; expires=Sat, 29-Nov-2014 05:04:36 GMT; path=/ Set-Cookie: jfcookie=deleted; expires=Sat, 29-Nov-2014 05:04:36 GMT; path=/ Set-Cookie: jfcookie[lang]=ba; expires=Mon, 30-Nov-2015 05:04:37 GMT; path=/ | clean |
http://www.upb.ba/index.php?option=com_user&view=login&return=ahr0cdovl3d3dy51cgiuymevaw5kzxgucghwl3nrdxb0aw5hp2xhbmc9yme= | 200 OK Content-Length: 11801 Content-Type: text/html | clean |
http://www.upb.ba/index.php/ba/component/user/login?return=ahr0cdovl3d3dy51cgiuymevaw5kzxgucghwl3nrdxb0aw5hp2xhbmc9yme%3D | 200 OK Content-Length: 11822 Content-Type: text/html | clean |
http://www.upb.ba/index.php/hr/component/user/login?return=ahr0cdovl3d3dy51cgiuymevaw5kzxgucghwl3nrdxb0aw5hp2xhbmc9yme%3D | 200 OK Content-Length: 6213 Content-Type: text/html | clean |
http://www.upb.ba/index.php/hr/naslovnad | 200 OK Content-Length: 8685 Content-Type: text/html | clean |
http://www.upb.ba/index.php/hr/propisi | 200 OK Content-Length: 6337 Content-Type: text/html | clean |
http://www.upb.ba/index.php/hr/kontakt | 200 OK Content-Length: 6764 Content-Type: text/html | clean |
http://www.upb.ba/index.php/hr/lanovi | 200 OK Content-Length: 7032 Content-Type: text/html | clean |
http://www.upb.ba/index.php/hr/skuptina | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 29 Nov 2015 05:04:41 GMT Location: http://www.upb.ba/index.php?option=com_user&view=login&return=aHR0cDovL3d3dy51cGIuYmEvaW5kZXgucGhwL3NrdXB0aW5hP2xhbmc9aHI= Server: Apache/2.2.3 (CentOS) Content-Length: 0 Content-Type: text/html P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM" Set-Cookie: fc368292e45d86122385c1f795efc95f=c18li01kti84lfrainoriv6dc0; path=/ Set-Cookie: lang=deleted; expires=Sat, 29-Nov-2014 05:04:40 GMT; path=/ Set-Cookie: jfcookie=deleted; expires=Sat, 29-Nov-2014 05:04:40 GMT; path=/ Set-Cookie: jfcookie[lang]=hr; expires=Mon, 30-Nov-2015 05:04:41 GMT; path=/ | clean |
http://www.upb.ba/index.php?option=com_user&view=login&return=ahr0cdovl3d3dy51cgiuymevaw5kzxgucghwl3nrdxb0aw5hp2xhbmc9ahi= | 200 OK Content-Length: 11801 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: upb.ba
Result:
GET / HTTP/1.1
Host: upb.ba
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: upb.ba
Referer: http://www.google.com/search?q=upb.ba
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: upb.ba
Referer: http://www.google.com/search?q=upb.ba
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=upb.ba
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://upb.ba/
Result: upb.ba is not infected or malware details are not published yet.
Result: upb.ba is not infected or malware details are not published yet.