Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: rusfurs.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Wed, 04 Mar 2015 02:30:27 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
P3P: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
Set-Cookie: PHPSESSID=4ff9e7430ed0767a35976ecdd06758d2; path=/
X-Powered-By: PHP/5.4.38
X-Powered-CMS: Bitrix Site Manager (8aaf1c6caf99ef0ef6da7e86791760ba)
GET / HTTP/1.1
Host: rusfurs.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Wed, 04 Mar 2015 02:30:27 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
P3P: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
Set-Cookie: PHPSESSID=4ff9e7430ed0767a35976ecdd06758d2; path=/
X-Powered-By: PHP/5.4.38
X-Powered-CMS: Bitrix Site Manager (8aaf1c6caf99ef0ef6da7e86791760ba)
Second query (visit from search engine):
GET / HTTP/1.1
Host: rusfurs.ru
Referer: http://www.google.com/search?q=rusfurs.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: rusfurs.ru
Referer: http://www.google.com/search?q=rusfurs.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://rusfurs.ru/ | 200 OK Content-Length: 22218 Content-Type: text/html | clean |
http://rusfurs.ru/bitrix/js/main/core/core.js?1368368831 | 200 OK Content-Length: 74588 Content-Type: application/javascript | clean |
http://rusfurs.ru/bitrix/js/main/core/core_ajax.js?1368368831 | 200 OK Content-Length: 28446 Content-Type: application/javascript | clean |
http://rusfurs.ru/bitrix/js/main/session.js?1366963750 | 200 OK Content-Length: 3157 Content-Type: application/javascript | clean |
http://rusfurs.ru/bitrix/templates/rusfurs_main/components/bitrix/menu/horizontal_mainpagetop/script.js?1366963754 | 200 OK Content-Length: 469 Content-Type: application/javascript | clean |
http://rusfurs.ru/bitrix/templates/rusfurs_main/js/soundmanager2-nodebug-jsmin.js | 200 OK Content-Length: 26021 Content-Type: application/javascript | clean |
http://tools.spylog.ru/counter2.2.js | 200 OK Content-Length: 5066 Content-Type: application/javascript | clean |
http://bs.yandex.ru/resource/watch.js | 200 OK Content-Length: 59699 Content-Type: application/x-javascript | clean |
http://rusfurs.ru/about/ | 200 OK Content-Length: 21125 Content-Type: text/html | clean |
http://rusfurs.ru/bitrix/templates/rusfurs/components/bitrix/menu/horizontal_top/script.js?1366963754 | 200 OK Content-Length: 469 Content-Type: application/javascript | clean |
http://rusfurs.ru/bitrix/templates/rusfurs/components/bitrix/menu/horizontal_footer/script.js?1366963754 | 200 OK Content-Length: 469 Content-Type: application/javascript | clean |
http://rusfurs.ru/news/ | 200 OK Content-Length: 22984 Content-Type: text/html | clean |
http://rusfurs.ru/prices/ | 200 OK Content-Length: 19760 Content-Type: text/html | clean |
http://rusfurs.ru/shops/ | 200 OK Content-Length: 17944 Content-Type: text/html | clean |
http://rusfurs.ru/garantii/ | 200 OK Content-Length: 19457 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=rusfurs.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://rusfurs.ru/
Result: rusfurs.ru is not infected or malware details are not published yet.
Result: rusfurs.ru is not infected or malware details are not published yet.