Scanned pages/files
Request | Server response | Status |
http://www.fordparts.com/ | 200 OK Content-Length: 46172 Content-Type: text/html | clean |
http://www.fordparts.com/WebResource.axd?d=cfKZSDsW9C4FWnLKgGxN16G9Kli26rF0VdUjav5DVm8EvI6Txbxt2L7wvRxL8W2uMb3acRTxBFl_CrzL4HYYIymXioU1&t=635294914417495136 | 200 OK Content-Length: 20794 Content-Type: application/x-javascript | clean |
http://www.fordparts.com/js/ajax.js?v=26 | 200 OK Content-Length: 270440 Content-Type: application/x-javascript | clean |
http://www.fordparts.com/ScriptResource.axd?d=kwM3ii_7hzxhI3jgotUxIeJKrP1RKpFHwyaIWqSc2LBFpZyT7T-s6m9sWucPZX5bRxIi4CHo4qz7rHjzXjyNN5lTNTszQghQ85z8AmUTfEJuicqN3Q03RD59-w9bJDv9cZUuf5s6Pq6y3kIDcNL9gDMRYbK1gyWQrqXgMlYlduOsOb9fmTNWWm1zleo4uvLOZGh7pNqRNIXB7ZhI-iWwGBumiiX1-S6iNUxMq9InU2o0dYVxTUCiWUk2-oQY6EEsPWCCP_0X4WntkuQzzuJeqgEnXo1wfK1sFcweYjmhFjsHKn8vSH8UKi5g6no3TOq4i38mxyPiSCCpPgnawcRepgkXnPfKu8gZf_qQD2vaRo7Z8Hp_0 | 200 OK Content-Length: 257802 Content-Type: text/javascript | clean |
http://www.fordparts.com/WebResource.axd?d=Ve5TGXLEsMLSM3cJbHfgGZP2pRrTnUoGkPe1wJadtsOVBTqLnNcTr4L_Z73Uas0-izKvlL3dQvOcYlx8gORRlcE4STen004sJfzm52-pP4xOotUkOHSElBT5tawGNVRZZXGZ54WSC7m6mjGBkf--3PlQ6jI1&t=635367833700000000 | 200 OK Content-Length: 87974 Content-Type: text/javascript | clean |
http://www.fordparts.com/WebResource.axd?d=pkJcvXGq0eAMLvZMniUIlhBc_CfczBgLVO4c9uEyv9WTTj07163VM0z7nTepxf5w_bv7IebmA0XHNHTicMrcZexzfkZYitRaQp3Q0arPdhjR3rbbXJaCP69H3o7r_RJPmQWru1X92ACE8_YLhUenMdHdxXs1&t=635367833700000000 | 200 OK Content-Length: 1117 Content-Type: text/javascript | clean |
http://www.fordparts.com/js/Search.js?v=1 | 200 OK Content-Length: 17665 Content-Type: application/x-javascript | clean |
http://www.fordparts.com/js/jQuery/jquery.jcarousel.min.js?v=26 | 200 OK Content-Length: 15956 Content-Type: application/x-javascript | clean |
http://www.fordparts.com/js/Home.js?v=1 | 200 OK Content-Length: 3241 Content-Type: application/x-javascript | clean |
http://www.fordparts.com/js/modernizr.custom.91475.js?v=26 | 200 OK Content-Length: 10436 Content-Type: application/x-javascript | clean |
http://ips-invite.iperceptions.com/webValidator.aspx?sdfc=c7b9588c-103980-4e5f0e01-4eba-42b0-ab74-10c884b4c4d8&lID=1&loc=STUDY&cD=90&rF=False&iType=1&domainname=0 | 200 OK Content-Length: 84 Content-Type: text/javascript | clean |
https://ws.sharethis.com/button/buttons.js?v=26 | 200 OK Content-Length: 149179 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) if(typeof(stlib)=="undefined"){var stlib={}}if(!stlib.functions){stlib.functions=[];stlib.functionCount=0}stlib.global={};stlib.global.hash=document.location.href.split("#");stlib.global.hash.shift();stlib.global.hash=stlib.global.hash.join("#");stlib.dynamicOn=true;stlib.debugOn=false;stlib.debug={count:0,messages:[],debug:function(b,a){if(a&&(typeof console)!="undefined"){console.log(b)}stlib.debug.messages.push(b)},show:function(a){for(message in stlib.debug.messages){if((typeof conso Antivirus reports:
| ||
http://www.fordparts.com/js/Omniture.js?v=26 | 200 OK Content-Length: 51033 Content-Type: application/x-javascript | clean |
http://www.fordparts.com/js/TrackingHelper.js?v=26 | 200 OK Content-Length: 8077 Content-Type: application/x-javascript | clean |
http://www.fordparts.com/Default.aspx | 200 OK Content-Length: 46172 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: fordparts.com
Result:
GET / HTTP/1.1
Host: fordparts.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: fordparts.com
Referer: http://www.google.com/search?q=fordparts.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: fordparts.com
Referer: http://www.google.com/search?q=fordparts.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=fordparts.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://fordparts.com/
Result: fordparts.com is not infected or malware details are not published yet.
Result: fordparts.com is not infected or malware details are not published yet.