Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: quarco.ru
Result:
HTTP/1.1 200 OK
Cache-Control: public
Connection: close
Date: Fri, 01 Aug 2014 10:33:14 GMT
Pragma: no-cache
ETag: 6666cd76f96956469e7be39d750cc7d9
Server: nginx/1.2.9
Vary: Accept-Encoding
Vary: Accept-Encoding
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Fri, 01 Aug 2014 10:33:14 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: d835eb1bf886816fe4caf077bf8d3750=09eb221528090b7621d3ab742f643916; path=/
X-Powered-By: PHP/5.2.17
X-UA-Compatible: IE=Edge,chrome=1
GET / HTTP/1.1
Host: quarco.ru
Result:
HTTP/1.1 200 OK
Cache-Control: public
Connection: close
Date: Fri, 01 Aug 2014 10:33:14 GMT
Pragma: no-cache
ETag: 6666cd76f96956469e7be39d750cc7d9
Server: nginx/1.2.9
Vary: Accept-Encoding
Vary: Accept-Encoding
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Fri, 01 Aug 2014 10:33:14 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: d835eb1bf886816fe4caf077bf8d3750=09eb221528090b7621d3ab742f643916; path=/
X-Powered-By: PHP/5.2.17
X-UA-Compatible: IE=Edge,chrome=1
Second query (visit from search engine):
GET / HTTP/1.1
Host: quarco.ru
Referer: http://www.google.com/search?q=quarco.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: quarco.ru
Referer: http://www.google.com/search?q=quarco.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://quarco.ru/ | 200 OK Content-Length: 30176 Content-Type: text/html | clean |
http://quarco.ru/plugins/content/joomthumbnail/gallery/highslide/highslide-with-gallery.js | 200 OK Content-Length: 47439 Content-Type: application/x-javascript | clean |
http://ajax.googleapis.com/ajax/libs/swfobject/2.1/swfobject.js | 200 OK Content-Length: 9759 Content-Type: text/javascript | clean |
http://quarco.ru/http://quarco.ru/templates/quarco/js/jquery.js | 404 Not Found Content-Length: 325 Content-Type: text/html | clean |
http://quarco.ru/test404page.js | 404 Not Found Content-Length: 293 Content-Type: text/html | clean |
http://quarco.ru//yandex.st/share/share.js/ | 404 Not Found Content-Length: 2161 Content-Type: text/html | clean |
http://quarco.ru/index.php | 200 OK Content-Length: 30185 Content-Type: text/html | clean |
http://quarco.ru/index.php/about?view=item | 200 OK Content-Length: 20069 Content-Type: text/html | clean |
http://quarco.ru/index.php/products/frontpage | 200 OK Content-Length: 27478 Content-Type: text/html | clean |
http://quarco.ru/index.php/service?view=category | 200 OK Content-Length: 20032 Content-Type: text/html | clean |
http://quarco.ru/index.php/news?view=category | 200 OK Content-Length: 19480 Content-Type: text/html | clean |
http://quarco.ru/index.php/partners?view=item | 200 OK Content-Length: 17278 Content-Type: text/html | clean |
http://quarco.ru/index.php/catalog?view=item | 200 OK Content-Length: 20844 Content-Type: text/html | clean |
http://quarco.ru/index.php/contacts?view=item | 200 OK Content-Length: 23941 Content-Type: text/html | clean |
http://quarco.ru/images/flshveyzar.jpg | 200 OK Content-Length: 24180 Content-Type: image/jpeg | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=quarco.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://quarco.ru/
Result: quarco.ru is not infected or malware details are not published yet.
Result: quarco.ru is not infected or malware details are not published yet.