Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=petroneonline.net
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://petroneonline.net/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 26 Apr 2014 05:06:07 GMT Location: http://www.petroneonline.net/ Server: Apache Content-Length: 237 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.petroneonline.net/ | HTTP/1.1 301 Moved Permanently Cache-Control: private Date: Sat, 26 Apr 2014 05:06:07 GMT Location: http://www.petroneonline.com Server: Microsoft-IIS/6.0 Content-Length: 0 Content-Type: text/html Set-Cookie: ASPSESSIONIDCSQRCATC=DAFPGIJBFEPEIKNNHOAJFPCB; path=/ X-Powered-By: ASP.NET | clean |
http://www.petroneonline.com/ | HTTP/1.1 302 Found Cache-Control: private Date: Sat, 26 Apr 2014 05:06:11 GMT Location: /scripts/eCom/Vetrina.aspx Server: Microsoft-IIS/6.0 Content-Length: 143 Content-Type: text/html; charset=utf-8 Set-Cookie: ASP.NET_SessionId=upgb3dalpsmh5mlqdlhw13lt; path=/; HttpOnly X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET | clean |
http://www.petroneonline.com/scripts/ecom/vetrina.aspx | 200 OK Content-Length: 63643 Content-Type: text/html | clean |
http://www.petroneonline.com/scripts/library.js | 404 Not Found Content-Length: 1635 Content-Type: text/html | clean |
http://www.petroneonline.com/test404page.js | 404 Not Found Content-Length: 1635 Content-Type: text/html | clean |
http://petroneonline.net/scripts/AC_RunActiveContent.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 26 Apr 2014 05:06:12 GMT Location: http://www.petroneonline.net/scripts/AC_RunActiveContent.js Server: Apache Content-Length: 267 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.petroneonline.net/scripts/ac_runactivecontent.js | 404 Not Found Content-Length: 1635 Content-Type: text/html | clean |
http://petroneonline.net//translate.google.com/translate_a/element.js?cb=googleTranslateElementInit/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 26 Apr 2014 05:06:12 GMT Location: http://www.petroneonline.net//translate.google.com/translate_a/element.js?cb=googleTranslateElementInit/ Server: Apache Content-Length: 312 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.petroneonline.net//translate.google.com/translate_a/element.js?cb=googletranslateelementinit/ | 404 Not Found Content-Length: 1635 Content-Type: text/html | clean |
http://codicepro.shinystat.com/cgi-bin/getcod.cgi?USER=11Petrone&P=1&ICO=508 | 200 OK Content-Length: 4190 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) <!-- function cCk(nm,vl,mn){var ex=cdm="";var _sscdom="";if (_sscdom && _sscdom!="") { cdm=" domain="+_sscdom; if (mn) {document.cookie=nm+"=; expires=Thu, 01-Jan-70 00:00:01 GMT; path=/;";}}if (mn) {var d=new Date();d.setTime(d.getTime()+(mn*6*1000)); ex="; expires="+d.toGMTString();} document.cookie=nm+"="+vl+ex+"; path=/;"+cdm+"";} function rCk(nm){var nEQ=nm+"=";var ca=document.cookie.split(';');for(var i=0;i<ca.length;i++){var c=ca[i]; while(c.charAt(0)==' ') c=c.subst if (ssqS_.indexOf("NODW=yes")>-1){var ig_=new Image(1,1);ig_.src=ssqS_+"&RM="+Math.round(Math.random()*2147483647);ig_.onload=function(){_ssvoid();}} else{document.write("<a href=\"http://s6.shinystat.com/cgi-bin/shinystatv.cgi?USER="+us_+"&NH=1\" Target=\"_new\"><img src=\""+ssqS_+"\" border=\"0\"/></a>"); } Antivirus reports:
|
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: petroneonline.net
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Sat, 26 Apr 2014 05:06:07 GMT
Location: http://www.petroneonline.net/
Server: Apache
Content-Length: 237
Content-Type: text/html; charset=iso-8859-1
...237 bytes of data.
GET / HTTP/1.1
Host: petroneonline.net
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Sat, 26 Apr 2014 05:06:07 GMT
Location: http://www.petroneonline.net/
Server: Apache
Content-Length: 237
Content-Type: text/html; charset=iso-8859-1
...237 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: petroneonline.net
Referer: http://www.google.com/search?q=petroneonline.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: petroneonline.net
Referer: http://www.google.com/search?q=petroneonline.net
Result:
The result is similar to the first query. There are no suspicious redirects found.