New scan:

Malware Scanner report for usa.dreams-travel.com

Malicious/Suspicious/Total urls checked
7/0/15
7 pages have malicious code. See details below
Blacklists
Found
The website is marked by Yandex as suspicious.

The website "usa.dreams-travel.com" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/0/0
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=usa.dreams-travel.com

Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://usa.dreams-travel.com/

Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

RequestServer responseStatus
http://usa.dreams-travel.com/
200 OK
Content-Length: 136479
Content-Type: text/html
malicious
Malicious code - confirmed by antiviruses (see below)


window._bd_share_config={
"common":{
"bdSnsKey":{},
"bdText":"",
"bdMini":"2",
"bdMiniList":false,
"bdPic":"",
"bdStyle":"0",
"bdSize":"24"
},
"share":{}
};
with(document)0[(getElementsByTagName('head')[0]||body).appendChild(createElement('script')).src='http://bdimg.share.baidu.com/static/api/js/share.js?v=89860593.js?cdnversion='+~(-new Date()/36e5)];

Antivirus reports:

Emsisoft
Gen:Variant.Graftor.127341 (B)

http://pw4.dreams-travel.com/Public/js/jquery.min.js
200 OK
Content-Length: 12852
Content-Type: text/javascript
clean
http://pw4.dreams-travel.com/Public/js/jquery.tools.min.js
200 OK
Content-Length: 46539
Content-Type: text/javascript
clean
http://pw4.dreams-travel.com/Public/js/cyaccordion.js
200 OK
Content-Length: 27569
Content-Type: text/javascript
clean
http://s94.cnzz.com/stat.php?id=4104670&web_id=4104670
200 OK
Content-Length: 9321
Content-Type: application/javascript
clean
http://cs.ecqun.com/?id=299471&scheme=2
200 OK
Content-Length: 7370
Content-Type: application/x-javascript
clean
http://usa.dreams-travel.com/dszpaytype_npay
200 OK
Content-Length: 40457
Content-Type: text/html
malicious
Malicious code - confirmed by antiviruses (see below)


window._bd_share_config={
"common":{
"bdSnsKey":{},
"bdText":"",
"bdMini":"2",
"bdMiniList":false,
"bdPic":"",
"bdStyle":"0",
"bdSize":"24"
},
"share":{}
};
with(document)0[(getElementsByTagName('head')[0]||body).appendChild(createElement('script')).src='http://bdimg.share.baidu.com/static/api/js/share.js?v=89860593.js?cdnversion='+~(-new Date()/36e5)];

Antivirus reports:

Emsisoft
Gen:Variant.Graftor.127341 (B)

http://usa.dreams-travel.com/user/dsztourorder_searchone
200 OK
Content-Length: 21390
Content-Type: text/html
clean
http://lib.sinaapp.com/js/jquery/1.7.2/jquery.min.js
200 OK
Content-Length: 94840
Content-Type: application/javascript
clean
http://usa.dreams-travel.com/dszfaq_all
200 OK
Content-Length: 44468
Content-Type: text/html
malicious
Malicious code - confirmed by antiviruses (see below)


window._bd_share_config={
"common":{
"bdSnsKey":{},
"bdText":"",
"bdMini":"2",
"bdMiniList":false,
"bdPic":"",
"bdStyle":"0",
"bdSize":"24"
},
"share":{}
};
with(document)0[(getElementsByTagName('head')[0]||body).appendChild(createElement('script')).src='http://bdimg.share.baidu.com/static/api/js/share.js?v=89860593.js?cdnversion='+~(-new Date()/36e5)];

Antivirus reports:

Emsisoft
Gen:Variant.Graftor.127341 (B)

http://usa.dreams-travel.com/html/aboutme.htm
200 OK
Content-Length: 19694
Content-Type: text/html
clean
http://usa.dreams-travel.com/dsztours_tourslist_keyword_迈阿密
200 OK
Content-Length: 64080
Content-Type: text/html
malicious
Malicious code - confirmed by antiviruses (see below)


window._bd_share_config={
"common":{
"bdSnsKey":{},
"bdText":"",
"bdMini":"2",
"bdMiniList":false,
"bdPic":"",
"bdStyle":"0",
"bdSize":"24"
},
"share":{}
};
with(document)0[(getElementsByTagName('head')[0]||body).appendChild(createElement('script')).src='http://bdimg.share.baidu.com/static/api/js/share.js?v=89860593.js?cdnversion='+~(-new Date()/36e5)];

Antivirus reports:

Emsisoft
Gen:Variant.Graftor.127341 (B)

http://usa.dreams-travel.com/dsztours_tourslist_keyword_夏威夷
200 OK
Content-Length: 54918
Content-Type: text/html
malicious
Malicious code - confirmed by antiviruses (see below)


window._bd_share_config={
"common":{
"bdSnsKey":{},
"bdText":"",
"bdMini":"2",
"bdMiniList":false,
"bdPic":"",
"bdStyle":"0",
"bdSize":"24"
},
"share":{}
};
with(document)0[(getElementsByTagName('head')[0]||body).appendChild(createElement('script')).src='http://bdimg.share.baidu.com/static/api/js/share.js?v=89860593.js?cdnversion='+~(-new Date()/36e5)];

Antivirus reports:

Emsisoft
Gen:Variant.Graftor.127341 (B)

http://usa.dreams-travel.com/dsztours_tourslist_keyword_纽约
200 OK
Content-Length: 64105
Content-Type: text/html
malicious
Malicious code - confirmed by antiviruses (see below)


window._bd_share_config={
"common":{
"bdSnsKey":{},
"bdText":"",
"bdMini":"2",
"bdMiniList":false,
"bdPic":"",
"bdStyle":"0",
"bdSize":"24"
},
"share":{}
};
with(document)0[(getElementsByTagName('head')[0]||body).appendChild(createElement('script')).src='http://bdimg.share.baidu.com/static/api/js/share.js?v=89860593.js?cdnversion='+~(-new Date()/36e5)];

Antivirus reports:

Emsisoft
Gen:Variant.Graftor.127341 (B)

http://usa.dreams-travel.com/dsztours_tourslist_keyword_洛杉矶
200 OK
Content-Length: 67585
Content-Type: text/html
malicious
Malicious code - confirmed by antiviruses (see below)


window._bd_share_config={
"common":{
"bdSnsKey":{},
"bdText":"",
"bdMini":"2",
"bdMiniList":false,
"bdPic":"",
"bdStyle":"0",
"bdSize":"24"
},
"share":{}
};
with(document)0[(getElementsByTagName('head')[0]||body).appendChild(createElement('script')).src='http://bdimg.share.baidu.com/static/api/js/share.js?v=89860593.js?cdnversion='+~(-new Date()/36e5)];

Antivirus reports:

Emsisoft
Gen:Variant.Graftor.127341 (B)


Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: usa.dreams-travel.com

Result:
HTTP/1.1 200 OK
Cache-Control: max-age=600
Connection: close
Date: Tue, 16 Sep 2014 11:06:23 GMT
Accept-Ranges: bytes
Server: Apache/2.2.22 (Win32) PHP/5.2.0
Vary: Accept-Encoding
Content-Language: zh-CN
Content-Length: 136479
Content-Type: text/html
Expires: Tue, 16 Sep 2014 11:16:23 GMT
Last-Modified: Wed, 10 Sep 2014 05:21:15 GMT

...136479 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: usa.dreams-travel.com
Referer: http://www.google.com/search?q=usa.dreams-travel.com

Result:
The result is similar to the first query. There are no suspicious redirects found.