Scanned pages/files
| Request | Server response | Status |
http://howtobeachocolatier.com/ | HTTP/1.1 301 Moved Permanently Cache-Control: max-age=900 Connection: close Date: Sat, 02 Aug 2014 21:38:30 GMT Age: 1 Location: http://www.chocoley.com Server: Microsoft-IIS/7.5 Content-Length: 0 Content-Type: text/html X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET | clean |
http://www.chocoley.com/ | 200 OK Content-Length: 46992 Content-Type: text/html | clean |
http://static.chocoley.com/chocoley/assets/js/jquery-all.js | 200 OK Content-Length: 300024 Content-Type: application/x-javascript | clean |
http://static.chocoley.com/chocoley/assets/js/custom.js | 200 OK Content-Length: 27 Content-Type: application/x-javascript | clean |
http://static.chocoley.com/chocoley/assets/js/functions.js | 200 OK Content-Length: 21826 Content-Type: application/x-javascript | clean |
http://static.chocoley.com/chocoley/assets/js/startup.js | 200 OK Content-Length: 86583 Content-Type: application/x-javascript | clean |
http://w.sharethis.com/button/buttons.js | 200 OK Content-Length: 149265 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) if(typeof(stlib)=="undefined"){var stlib={}}if(!stlib.functions){stlib.functions=[];stlib.functionCount=0}stlib.global={};stlib.global.hash=document.location.href.split("#");stlib.global.hash.shift();stlib.global.hash=stlib.global.hash.join("#");stlib.dynamicOn=true;stlib.debugOn=false;stlib.debug={count:0,messages:[],debug:function(b,a){if(a&&(typeof console)!="undefined"){console.log(b)}stlib.debug.messages.push(b)},show:function(a){for(message in stlib.debug.messages){if((typeof conso Antivirus reports:
| ||
https://www.sc.pages04.net/lp/static/js/iMAWebCookie.js?1ed9adbc-132d51cb0e7-7ed8ba187b62142e84dccb0910cb2101&h=www.pages04.net | 200 OK Content-Length: 13380 Content-Type: text/javascript | clean |
http://static.chocoley.com/chocoley/assets/js/shop-categories.js | 200 OK Content-Length: 2821 Content-Type: application/x-javascript | clean |
https://app.videogenie.com/c/mon/4e3_m/what-do-you-love-about-chocoley.js | 200 OK Content-Length: 17974 Content-Type: text/javascript | clean |
http://howtobeachocolatier.com//www.googleadservices.com/pagead/conversion.js/ | HTTP/1.1 301 Moved Permanently Cache-Control: max-age=900 Connection: close Date: Sat, 02 Aug 2014 21:38:45 GMT Age: 1 Location: http://www.chocoley.com/www.googleadservices.com/pagead/conversion.js/ Server: Microsoft-IIS/7.5 Content-Length: 0 Content-Type: text/html X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET | clean |
http://www.chocoley.com/www.googleadservices.com/pagead/conversion.js/ | HTTP/1.1 301 Moved Permanently Date: Sat, 02 Aug 2014 21:39:06 GMT Location: http://www.chocoley.com/www.googleadservices.com/pagead/conversion.js Server: Microsoft-IIS/7.5 Content-Length: 192 Content-Type: text/html; charset=UTF-8 Access-Control-Allow-Headers: Content-Type Access-Control-Allow-Methods: GET,PUT,POST Access-Control-Allow-Origin: http://www.chocoley.com X-Powered-By: ASP.NET | clean |
http://www.chocoley.com/www.googleadservices.com/pagead/conversion.js | 404 Not Found Content-Length: 39085 Content-Type: text/html | clean |
http://www.chocoley.com//www.googleadservices.com/pagead/conversion.js/ | HTTP/1.1 301 Moved Permanently Date: Sat, 02 Aug 2014 21:39:07 GMT Location: http://www.chocoley.com/www.googleadservices.com/pagead/conversion.js Server: Microsoft-IIS/7.5 Content-Length: 192 Content-Type: text/html; charset=UTF-8 Access-Control-Allow-Headers: Content-Type Access-Control-Allow-Methods: GET,PUT,POST Access-Control-Allow-Origin: http://www.chocoley.com X-Powered-By: ASP.NET | clean |
http://www.chocoley.com/test404page.js | 404 Not Found Content-Length: 39085 Content-Type: text/html | clean |
http://www.chocoley.com/order-status.htm | 200 OK Content-Length: 40281 Content-Type: text/html | clean |
http://www.chocoley.com/contact | 200 OK Content-Length: 43426 Content-Type: text/html | clean |
http://www.chocoley.com/shop-cart.htm | 200 OK Content-Length: 41758 Content-Type: text/html | clean |
http://static.chocoley.com/chocoley/assets/js/shop-cart.js | 200 OK Content-Length: 3590 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: howtobeachocolatier.com
Result:
HTTP/1.1 301 Moved Permanently
Cache-Control: max-age=900
Connection: close
Date: Sat, 02 Aug 2014 21:38:30 GMT
Age: 1
Location: http://www.chocoley.com
Server: Microsoft-IIS/7.5
Content-Length: 0
Content-Type: text/html
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
...0 bytes of data.
GET / HTTP/1.1
Host: howtobeachocolatier.com
Result:
HTTP/1.1 301 Moved Permanently
Cache-Control: max-age=900
Connection: close
Date: Sat, 02 Aug 2014 21:38:30 GMT
Age: 1
Location: http://www.chocoley.com
Server: Microsoft-IIS/7.5
Content-Length: 0
Content-Type: text/html
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: howtobeachocolatier.com
Referer: http://www.google.com/search?q=howtobeachocolatier.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: howtobeachocolatier.com
Referer: http://www.google.com/search?q=howtobeachocolatier.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=howtobeachocolatier.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://howtobeachocolatier.com/
Result: howtobeachocolatier.com is not infected or malware details are not published yet.
Result: howtobeachocolatier.com is not infected or malware details are not published yet.