Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=usa.dreams-travel.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://usa.dreams-travel.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://usa.dreams-travel.com/ | 200 OK Content-Length: 136479 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) window._bd_share_config={ "common":{ "bdSnsKey":{}, "bdText":"", "bdMini":"2", "bdMiniList":false, "bdPic":"", "bdStyle":"0", "bdSize":"24" }, "share":{} }; with(document)0[(getElementsByTagName('head')[0]||body).appendChild(createElement('script')).src='http://bdimg.share.baidu.com/static/api/js/share.js?v=89860593.js?cdnversion='+~(-new Date()/36e5)]; Antivirus reports:
| ||
http://pw4.dreams-travel.com/Public/js/jquery.min.js | 200 OK Content-Length: 12852 Content-Type: text/javascript | clean |
http://pw4.dreams-travel.com/Public/js/jquery.tools.min.js | 200 OK Content-Length: 46539 Content-Type: text/javascript | clean |
http://pw4.dreams-travel.com/Public/js/cyaccordion.js | 200 OK Content-Length: 27569 Content-Type: text/javascript | clean |
http://s94.cnzz.com/stat.php?id=4104670&web_id=4104670 | 200 OK Content-Length: 9321 Content-Type: application/javascript | clean |
http://cs.ecqun.com/?id=299471&scheme=2 | 200 OK Content-Length: 7370 Content-Type: application/x-javascript | clean |
http://usa.dreams-travel.com/dszpaytype_npay | 200 OK Content-Length: 40457 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) window._bd_share_config={ "common":{ "bdSnsKey":{}, "bdText":"", "bdMini":"2", "bdMiniList":false, "bdPic":"", "bdStyle":"0", "bdSize":"24" }, "share":{} }; with(document)0[(getElementsByTagName('head')[0]||body).appendChild(createElement('script')).src='http://bdimg.share.baidu.com/static/api/js/share.js?v=89860593.js?cdnversion='+~(-new Date()/36e5)]; Antivirus reports:
| ||
http://usa.dreams-travel.com/user/dsztourorder_searchone | 200 OK Content-Length: 21390 Content-Type: text/html | clean |
http://lib.sinaapp.com/js/jquery/1.7.2/jquery.min.js | 200 OK Content-Length: 94840 Content-Type: application/javascript | clean |
http://usa.dreams-travel.com/dszfaq_all | 200 OK Content-Length: 44468 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) window._bd_share_config={ "common":{ "bdSnsKey":{}, "bdText":"", "bdMini":"2", "bdMiniList":false, "bdPic":"", "bdStyle":"0", "bdSize":"24" }, "share":{} }; with(document)0[(getElementsByTagName('head')[0]||body).appendChild(createElement('script')).src='http://bdimg.share.baidu.com/static/api/js/share.js?v=89860593.js?cdnversion='+~(-new Date()/36e5)]; Antivirus reports:
| ||
http://usa.dreams-travel.com/html/aboutme.htm | 200 OK Content-Length: 19694 Content-Type: text/html | clean |
http://usa.dreams-travel.com/dsztours_tourslist_keyword_è¿é¿å¯ | 200 OK Content-Length: 64080 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) window._bd_share_config={ "common":{ "bdSnsKey":{}, "bdText":"", "bdMini":"2", "bdMiniList":false, "bdPic":"", "bdStyle":"0", "bdSize":"24" }, "share":{} }; with(document)0[(getElementsByTagName('head')[0]||body).appendChild(createElement('script')).src='http://bdimg.share.baidu.com/static/api/js/share.js?v=89860593.js?cdnversion='+~(-new Date()/36e5)]; Antivirus reports:
| ||
http://usa.dreams-travel.com/dsztours_tourslist_keyword_å¤å¨å¤· | 200 OK Content-Length: 54918 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) window._bd_share_config={ "common":{ "bdSnsKey":{}, "bdText":"", "bdMini":"2", "bdMiniList":false, "bdPic":"", "bdStyle":"0", "bdSize":"24" }, "share":{} }; with(document)0[(getElementsByTagName('head')[0]||body).appendChild(createElement('script')).src='http://bdimg.share.baidu.com/static/api/js/share.js?v=89860593.js?cdnversion='+~(-new Date()/36e5)]; Antivirus reports:
| ||
http://usa.dreams-travel.com/dsztours_tourslist_keyword_纽约 | 200 OK Content-Length: 64105 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) window._bd_share_config={ "common":{ "bdSnsKey":{}, "bdText":"", "bdMini":"2", "bdMiniList":false, "bdPic":"", "bdStyle":"0", "bdSize":"24" }, "share":{} }; with(document)0[(getElementsByTagName('head')[0]||body).appendChild(createElement('script')).src='http://bdimg.share.baidu.com/static/api/js/share.js?v=89860593.js?cdnversion='+~(-new Date()/36e5)]; Antivirus reports:
| ||
http://usa.dreams-travel.com/dsztours_tourslist_keyword_æ´æç¶ | 200 OK Content-Length: 67585 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) window._bd_share_config={ "common":{ "bdSnsKey":{}, "bdText":"", "bdMini":"2", "bdMiniList":false, "bdPic":"", "bdStyle":"0", "bdSize":"24" }, "share":{} }; with(document)0[(getElementsByTagName('head')[0]||body).appendChild(createElement('script')).src='http://bdimg.share.baidu.com/static/api/js/share.js?v=89860593.js?cdnversion='+~(-new Date()/36e5)]; Antivirus reports:
|
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: usa.dreams-travel.com
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=600
Connection: close
Date: Tue, 16 Sep 2014 11:06:23 GMT
Accept-Ranges: bytes
Server: Apache/2.2.22 (Win32) PHP/5.2.0
Vary: Accept-Encoding
Content-Language: zh-CN
Content-Length: 136479
Content-Type: text/html
Expires: Tue, 16 Sep 2014 11:16:23 GMT
Last-Modified: Wed, 10 Sep 2014 05:21:15 GMT
...136479 bytes of data.
GET / HTTP/1.1
Host: usa.dreams-travel.com
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=600
Connection: close
Date: Tue, 16 Sep 2014 11:06:23 GMT
Accept-Ranges: bytes
Server: Apache/2.2.22 (Win32) PHP/5.2.0
Vary: Accept-Encoding
Content-Language: zh-CN
Content-Length: 136479
Content-Type: text/html
Expires: Tue, 16 Sep 2014 11:16:23 GMT
Last-Modified: Wed, 10 Sep 2014 05:21:15 GMT
...136479 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: usa.dreams-travel.com
Referer: http://www.google.com/search?q=usa.dreams-travel.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: usa.dreams-travel.com
Referer: http://www.google.com/search?q=usa.dreams-travel.com
Result:
The result is similar to the first query. There are no suspicious redirects found.