Scanned pages/files
Request | Server response | Status |
http://www.themescollections.net/ | 200 OK Content-Length: 28786 Content-Type: text/html | clean |
http://www.themescollections.net/lions_nous_accueil.html | 200 OK Content-Length: 928 Content-Type: text/html | clean |
http://www.themescollections.net/test404page.js | 404 Not Found Content-Length: 287 Content-Type: text/html | clean |
http://www.themescollections.net/lions_2005_portail.htm | 200 OK Content-Length: 16885 Content-Type: text/html | clean |
http://www.swisstools.net/counter.asp?id=111855&type=2&digits=4&cache=no | 200 OK Content-Length: 859 Content-Type: text/html | clean |
http://www.swisstools.net/fr/membre/counter.asp | 200 OK Content-Length: 45396 Content-Type: text/html | clean |
http://a01.gestionpub.com/GP3718a60202c829 | 200 OK Content-Length: 1706 Content-Type: application/x-javascript | clean |
https://count.carrierzone.com/app/count_server/count.js | 200 OK Content-Length: 36029 Content-Type: text/javascript | clean |
http://www.swisstools.net/fr/default/default.asp | 200 OK Content-Length: 81149 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function gen_help(page){ fenetre=window.open(page,'','toolbar=no,location=no,directories=no, top=50, left=100, status=no,scrollbars=yes,resizable=yes,copyhistory=no,width=600,height=400') } Antivirus reports:
| ||
http://www.free-pagerank.com/js/free-pagerank.js | 200 OK Content-Length: 791 Content-Type: application/x-javascript | clean |
http://www.swisstools.net/fr/default/visite_guidee.asp | 200 OK Content-Length: 40256 Content-Type: text/html | clean |
http://www.swisstools.net/fr/membre/commentaire.asp | 200 OK Content-Length: 45737 Content-Type: text/html | clean |
http://www.swisstools.net/commentaire_nbre.asp?id=2&style=Verdana&taille=1&couleur=000000&txtav=Déjà&txtap=réactions&newtxtav=(dont&newtxtap= depuis votre dernière visite !) | 200 OK Content-Length: 160 Content-Type: text/html | clean |
http://www.swisstools.net/fr/membre/motdepasse.asp | 200 OK Content-Length: 50650 Content-Type: text/html | clean |
http://www.swisstools.net/fr/membre/annuaire.asp | 200 OK Content-Length: 41768 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: themescollections.net
Result:
GET / HTTP/1.1
Host: themescollections.net
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: themescollections.net
Referer: http://www.google.com/search?q=themescollections.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: themescollections.net
Referer: http://www.google.com/search?q=themescollections.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=themescollections.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://themescollections.net/
Result: themescollections.net is not infected or malware details are not published yet.
Result: themescollections.net is not infected or malware details are not published yet.