Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: creative-zone.ch
Result:
HTTP/1.1 200 OK
Cache-Control: post-check=0, pre-check=0
Connection: close
Date: Fri, 22 Aug 2014 06:33:24 GMT
Pragma: no-cache
Server: Apache
Content-Length: 20197
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Fri, 22 Aug 2014 06:33:25 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: edb2aa598cb375a74edecaa42e53d334=ad6dc1327281adc37c938d4fc7bc7d75; path=/
X-Powered-By: PHP/5.4.29
...20197 bytes of data.
GET / HTTP/1.1
Host: creative-zone.ch
Result:
HTTP/1.1 200 OK
Cache-Control: post-check=0, pre-check=0
Connection: close
Date: Fri, 22 Aug 2014 06:33:24 GMT
Pragma: no-cache
Server: Apache
Content-Length: 20197
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Fri, 22 Aug 2014 06:33:25 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: edb2aa598cb375a74edecaa42e53d334=ad6dc1327281adc37c938d4fc7bc7d75; path=/
X-Powered-By: PHP/5.4.29
...20197 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: creative-zone.ch
Referer: http://www.google.com/search?q=creative-zone.ch
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: creative-zone.ch
Referer: http://www.google.com/search?q=creative-zone.ch
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://creative-zone.ch/ | 200 OK Content-Length: 20197 Content-Type: text/html | clean |
http://creative-zone.ch/media/system/js/caption.js | 200 OK Content-Length: 1963 Content-Type: application/javascript | clean |
http://creative-zone.ch/components/com_gantry/js/gantry-totop.js | 200 OK Content-Length: 730 Content-Type: application/javascript | clean |
http://creative-zone.ch/components/com_gantry/js/gantry-buildspans.js | 200 OK Content-Length: 725 Content-Type: application/javascript | clean |
http://creative-zone.ch/components/com_gantry/js/gantry-inputs.js | 200 OK Content-Length: 2965 Content-Type: application/javascript | clean |
http://creative-zone.ch/components/com_gantry/js/gantry-smartload.js | 200 OK Content-Length: 2151 Content-Type: application/javascript | clean |
http://creative-zone.ch/modules/mod_swmenufree/DropDownMenuX_Packed.js | 200 OK Content-Length: 6176 Content-Type: application/javascript | clean |
http://creative-zone.ch/modules/mod_swmenufree/jquery-1.2.6.pack.js | 200 OK Content-Length: 72173 Content-Type: application/javascript | clean |
http://creative-zone.ch/modules/mod_PlimunNivoSlider/js/jquery-1.6.1.min.js | 200 OK Content-Length: 91342 Content-Type: application/javascript | clean |
http://creative-zone.ch/modules/mod_PlimunNivoSlider/js/jquery.nivo.slider.js | 200 OK Content-Length: 25016 Content-Type: application/javascript | clean |
http://creative-zone.ch/index.php/home.html | 200 OK Content-Length: 20216 Content-Type: text/html | clean |
http://creative-zone.ch/index.php/creative-zone.html | 200 OK Content-Length: 18777 Content-Type: text/html | clean |
http://creative-zone.ch/index.php/our-work.html | 200 OK Content-Length: 27940 Content-Type: text/html | clean |
http://creative-zone.ch/modules/mod_artuniversallightbox/artuniversallightbox/artsexylightbox/js/jquery.js | 200 OK Content-Length: 57254 Content-Type: application/javascript | clean |
http://creative-zone.ch/modules/mod_artuniversallightbox/artuniversallightbox/artsexylightbox/js/jquery.easing.1.3.js | 200 OK Content-Length: 6698 Content-Type: application/javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=creative-zone.ch
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://creative-zone.ch/
Result: creative-zone.ch is not infected or malware details are not published yet.
Result: creative-zone.ch is not infected or malware details are not published yet.