Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=artbabble.net
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://artbabble.net/ | 200 OK Content-Length: 26943 Content-Type: text/html | clean |
http://artbabble.net/sites/all/modules/jquery_update/replace/jquery.min.js?Y | 200 OK Content-Length: 55749 Content-Type: application/x-javascript | clean |
http://artbabble.net/misc/drupal.js?Y | 200 OK Content-Length: 9780 Content-Type: application/x-javascript | clean |
http://artbabble.net/sites/all/modules/fivestar/js/fivestar.js?Y | 200 OK Content-Length: 16336 Content-Type: application/x-javascript | clean |
http://artbabble.net/sites/all/modules/google_analytics/googleanalytics.js?Y | 200 OK Content-Length: 2268 Content-Type: application/x-javascript | clean |
http://artbabble.net/sites/all/modules/panels/js/panels.js?Y | 200 OK Content-Length: 729 Content-Type: application/x-javascript | clean |
http://artbabble.net/sites/all/modules/thickbox/thickbox.js?Y | 200 OK Content-Length: 18237 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) Drupal.behaviors.initThickbox = function (context) { $('a,area,input', context).filter('.thickbox:not(.initThickbox-processed)').addClass('initThickbox-processed').click(function() { var t = this.title || this.name || null; var a = this.href || this.alt; var g = this.rel || false; tb_show(t,a,g); this.blur(); return false; }); }; function tb_show(caption, url, imageGroup) { var settings = Drupal.settings.thickbox; t Antivirus reports:
| ||
http://artbabble.net/sites/all/modules/extlink/extlink.js?Y | 200 OK Content-Length: 7848 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function ($) { function extlinkAttach(context) { var pattern = /^(([^\/:]+?\.)*)([^\.:]{4,})((\.[a-z]{1,4})*)(:[0-9]{1,5})?$/; var host = window.location.host.replace(pattern, '$3$4'); var subdomain = window.location.host.replace(pattern, '$1'); if (Drupal.settings.extlink.extSubdomains) { var subdomains = "([^/]*\\.)?"; } else if (subdomain == 'www.' || subdomain == '') { var subdomains = "(www\\.)?"; } else { var Antivirus reports:
| ||
http://artbabble.net/sites/all/modules/views/js/base.js?Y | 200 OK Content-Length: 3493 Content-Type: application/x-javascript | clean |
http://artbabble.net/sites/all/modules/views/js/ajax_view.js?Y | 200 OK Content-Length: 6789 Content-Type: application/x-javascript | clean |
http://artbabble.net/sites/all/modules/jquery_ui/jquery.ui/ui/minified/ui.core.min.js?Y | 200 OK Content-Length: 8100 Content-Type: application/x-javascript | clean |
http://artbabble.net/sites/all/modules/jquery_ui/jquery.ui/ui/minified/ui.tabs.min.js?Y | 200 OK Content-Length: 9352 Content-Type: application/x-javascript | clean |
http://artbabble.net/sites/default/themes/babblicious/js/page-front.js?Y | 200 OK Content-Length: 4516 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) $(document).ready(function() { $('#block-views-recent_videos-block_1,' + '#block-views-popular_videos-block_1') .insertAfter('#video-lists') .wrapAll('<div id="home-video-tabs"></div>'); $('#video-lists ul.nav').tabs({ selected: 0, fx: { opacity: 'toggle', duration: 'fast' } }); if (($.browser.msie && $.browser.v Antivirus reports:
| ||
http://artbabble.net/sites/default/themes/babblicious/js/babble-utils.js?Y | 200 OK Content-Length: 4225 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function babble_ajax_post(url, data_type, success_func, error_message) {
$.ajax({ type: 'POST', url: Drupal.settings.basePath + url, cache: false, dataType: data_type, error: function(XMLHttpRequest, textStatus, errorThrown) { alert('Error: ' + error_message); }, success: function(data, textStatus) { if (data) { success_func(data); } else { alert(error_message); } }, timeo Antivirus reports:
| ||
http://artbabble.net/sites/default/themes/babblicious/js/flashembed.js?Y | 200 OK Content-Length: 12348 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function() { var jQ = typeof jQuery == 'function'; function isDomReady() { if (domReady.done) { return false; } var d = document; if (d && d.getElementsByTagName && d.getElementById && d.body) { clearInterval(domReady.timer); domReady.timer = null; for (var i = 0; i < domReady.ready.length; i++) { domReady.ready[i].call(); } domReady.ready = null; domReady.done Antivirus reports:
|
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: artbabble.net
Result:
HTTP/1.1 200 OK
Cache-Control: must-revalidate
Connection: close
Date: Thu, 18 Dec 2014 22:51:12 GMT
ETag: "773aeeb1c18c504f108c80659ecb1d1c"
Server: Apache/2.2.9 (Fedora)
Vary: Accept-Encoding,User-Agent
Content-Type: text/html; charset=utf-8
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Sat, 26 Apr 2014 07:14:08 GMT
Set-Cookie: SESS6859c340c32cd0e93a1d1a37b9996c7d=7fa5ha74h6qjvd8e5auv6kji15; expires=Sun, 11-Jan-2015 02:24:32 GMT; path=/; domain=.artbabble.net
X-Powered-By: PHP/5.2.17 ZendServer/5.0
GET / HTTP/1.1
Host: artbabble.net
Result:
HTTP/1.1 200 OK
Cache-Control: must-revalidate
Connection: close
Date: Thu, 18 Dec 2014 22:51:12 GMT
ETag: "773aeeb1c18c504f108c80659ecb1d1c"
Server: Apache/2.2.9 (Fedora)
Vary: Accept-Encoding,User-Agent
Content-Type: text/html; charset=utf-8
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Sat, 26 Apr 2014 07:14:08 GMT
Set-Cookie: SESS6859c340c32cd0e93a1d1a37b9996c7d=7fa5ha74h6qjvd8e5auv6kji15; expires=Sun, 11-Jan-2015 02:24:32 GMT; path=/; domain=.artbabble.net
X-Powered-By: PHP/5.2.17 ZendServer/5.0
Second query (visit from search engine):
GET / HTTP/1.1
Host: artbabble.net
Referer: http://www.google.com/search?q=artbabble.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: artbabble.net
Referer: http://www.google.com/search?q=artbabble.net
Result:
The result is similar to the first query. There are no suspicious redirects found.