Scanned pages/files
Request | Server response | Status |
http://www.sfocapitalpartners.com/ | 200 OK Content-Length: 47821 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: w-meta name+AD0AIg-description+ACI content+AD0AIg-HaCked By Ad+AFs-e+AF0-M+ACIAPg +ADw-title+AD4AJg- ...[528 bytes skipped]... s display: block +ACE-important+ADs width: 1px +ACE-important+ADs height: 1px +ACE-important+ADs border-style: none +ACE-important+ADs position: absolute +ACE-important+ADs top: 0px +ACE-important+ADs left: 0px +ACE-important+ADsAIgA+ADw-/object+AD4APA-/meta+AD4APA-head+AD4 +ADw-meta http-equiv+AD0AIg-Content-Type+ACI content+AD0AIg-text/html+ADs charset+AD0-iso-8859-1+ACIAPg +ADw-meta name+AD0AIg-description+ACI content+AD0AIg-HaCked By Ad+AFs-e+AF0-M+ACIAPg +ADw-title+AD4AJg-nbsp+ADs-Hacked by Ad+AFs-e+AF0-M +AHw Tunisian Hacker+ADw-/title+AD4 +ADw-style+AD4 +ADwAIQ---s +ACoAew-padding: 0px+ADs-margin: 0px+ADsAfQ .style75 +AHs color: +ACM-C0C0C0+ADs +AH0 .style65 +AHs text-align: center+ADs +AH0 .style68 +AHs color: +ACM-FFFFFF+ADs +AH0 .style69 +AHs color: +ACM-CC0000+ADs +AH0 .hedr +AHs font-family: Courier New,Tahoma +ADs font-size: 26px+ADs text-shadow: 0px 0px 3px red +ADs +AH0 --+AD4 +ADw-/style+A ...[49724 bytes skipped]... | ||
http://www.sfocapitalpartners.com/wp-includes/js/jquery/jquery.js?ver=1.11.0 | 200 OK Content-Length: 96402 Content-Type: application/javascript | clean |
http://www.sfocapitalpartners.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://www.sfocapitalpartners.com/wp-content/plugins/promotion-slider/js/promo_slider.js?ver=3.9.2 | 200 OK Content-Length: 5998 Content-Type: application/javascript | clean |
http://www.sfocapitalpartners.com/wp-includes/js/comment-reply.min.js?ver=3.9.2 | 200 OK Content-Length: 757 Content-Type: application/javascript | clean |
http://www.sfocapitalpartners.com/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.18 | 200 OK Content-Length: 15021 Content-Type: application/javascript | clean |
http://www.sfocapitalpartners.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=3.3.1 | 200 OK Content-Length: 6859 Content-Type: application/javascript | clean |
http://www.sfocapitalpartners.com/about-us/ | 200 OK Content-Length: 56738 Content-Type: text/html | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.6.1/jquery.min.js | 200 OK Content-Length: 91342 Content-Type: text/javascript | clean |
http://www.sfocapitalpartners.com/wp-content/themes/twentyten/organictabs.jquery.js | 200 OK Content-Length: 2786 Content-Type: application/javascript | clean |
http://www.sfocapitalpartners.com/send-us-great-deals/ | 200 OK Content-Length: 60916 Content-Type: text/html | clean |
http://www.sfocapitalpartners.com/we-send-you-great-deals/ | 200 OK Content-Length: 58927 Content-Type: text/html | clean |
http://www.sfocapitalpartners.com/short-term-lending/ | 200 OK Content-Length: 56682 Content-Type: text/html | clean |
http://www.sfocapitalpartners.com/short-term-lending/function.htmlspecialchars | 404 Not Found Content-Length: 39833 Content-Type: text/html | clean |
http://www.sfocapitalpartners.com/test404page.js | 404 Not Found Content-Length: 39833 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: sfocapitalpartners.com
Result:
GET / HTTP/1.1
Host: sfocapitalpartners.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: sfocapitalpartners.com
Referer: http://www.google.com/search?q=sfocapitalpartners.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: sfocapitalpartners.com
Referer: http://www.google.com/search?q=sfocapitalpartners.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=sfocapitalpartners.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://sfocapitalpartners.com/
Result: sfocapitalpartners.com is not infected or malware details are not published yet.
Result: sfocapitalpartners.com is not infected or malware details are not published yet.