Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=x-clip.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://x-clip.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://x-clip.com/ | 200 OK Content-Length: 106630 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: maturesfucktube.com <!DOCTYPE html> <html> <head><script type="text/javascript">window.NREUM||(NREUM={}),__nr_require=function(t,n,e){function r(e){if(!n[e]){var o=n[e]={exports:{}};t[e][0].call(o.exports,function(n){var o=t[e][1][n];return r(o?o:n)},o,o.exports)}return n[e].exports}if("function"==typeof __nr_require)return __nr_require;for(var o=0;o<e.length;o++)r(e[o]);return r}({D5DuLP:[function(t,n){function e(t,n){var e=r[t];return ...[4261 bytes skipped]... | ||
https://code.jquery.com/jquery.js | 200 OK Content-Length: 282766 Content-Type: application/x-javascript | clean |
http://x-clip.com//maxcdn.bootstrapcdn.com/bootstrap/3.2.0/js/bootstrap.min.js/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 16 Sep 2014 02:50:39 GMT Location: http://x-clip.com/maxcdn.bootstrapcdn.com/bootstrap/3.2.0/js/bootstrap.min.js Server: Apache/2.2.15 (CentOS) Content-Length: 361 Content-Type: text/html; charset=iso-8859-1 | clean |
http://x-clip.com/maxcdn.bootstrapcdn.com/bootstrap/3.2.0/js/bootstrap.min.js | HTTP/1.1 302 Found Cache-Control: no-cache Connection: close Date: Tue, 16 Sep 2014 02:50:40 GMT Location: http://x-clip.com Server: Apache/2.2.15 (CentOS) Content-Type: text/html; charset=UTF-8 Set-Cookie: laravel_session=eyJpdiI6Ik1ES1N1eEtZU3JLeVVlM1JtTzNVNHc9PSIsInZhbHVlIjoiR2xiclJybDAwdU5zTFMxUUxsWVpvVDdpSVB5TTRKY2NwakFBNFJjanVSWVJOd0dIZnJrakxDSlBESEFPQklSeTNpbUlBdDFHb1FQQVZ5V1h5dHgrYnc9PSIsIm1hYyI6Ijk5NTYyZDY1OGJjMjgwZmRmOWMzMzM1M2FjOGI5ZmU2NjcwODE1NTQ4NmNjOWQyZGFhYjc4ZGY2ODc3MzFmMzkifQ%3D%3D; expires=Tue, 16-Sep-2014 04:50:40 GMT; path=/; httponly X-Powered-By: PHP/5.4.32 | clean |
http://x-clip.com/test404page.js | HTTP/1.1 302 Found Cache-Control: no-cache Connection: close Date: Tue, 16 Sep 2014 02:50:40 GMT Location: http://x-clip.com Server: Apache/2.2.15 (CentOS) Content-Type: text/html; charset=UTF-8 Set-Cookie: laravel_session=eyJpdiI6IndVUVN3Q3BndnBkUTZiSjduOVFCU2c9PSIsInZhbHVlIjoianVIT1R5M1NMRCtWT05XamJSRnN4UHEzV2QxRkkrNStySkpkNTlQWm1zY3JVNCtDTjVXXC9rc1lrSExWMGM5QlhjWU1iNEJNZUNGckFESHE1aXFCMWFBPT0iLCJtYWMiOiIxNTUwYmU4ZDE3ODIzZGViNGM0Mzg3MjFkM2Y1YmFmY2I1NzU1ZTgxZGFlMWMzNGU2MmVjNGI0MjUzZDE1ODRmIn0%3D; expires=Tue, 16-Sep-2014 04:50:41 GMT; path=/; httponly X-Powered-By: PHP/5.4.32 | clean |
http://syndication.exoclick.com/splash.php?idzone=1079950&type=4 | 200 OK Content-Length: 4491 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: x-clip.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Tue, 16 Sep 2014 02:50:37 GMT
Server: Apache/2.2.15 (CentOS)
Content-Type: text/html; charset=UTF-8
Set-Cookie: laravel_session=eyJpdiI6IkUwcnk4OEJqOGp6Z1FJNER6eUVPVmc9PSIsInZhbHVlIjoidlRMM1JVQTJPXC8xczJBTjdGK2JcLzBhaW9aM2N0Q3JSMlVPU0RaaFQ3XC9OSXB6YndXMlhsV3d1Vk80eGYxRjZmY3pYd0RCWkRTUDNmZHR0SUFYUmZnZWc9PSIsIm1hYyI6ImUzN2M3ZDBiMTEyZTI2YzZlNzBlNWE2ZWMwMTM3YjVmZjJlNGU1NDAwZjhhMTU1YjA5ZDdkODA0OTBlMDFiYWMifQ%3D%3D; expires=Tue, 16-Sep-2014 04:50:38 GMT; path=/; httponly
X-Powered-By: PHP/5.4.32
GET / HTTP/1.1
Host: x-clip.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Tue, 16 Sep 2014 02:50:37 GMT
Server: Apache/2.2.15 (CentOS)
Content-Type: text/html; charset=UTF-8
Set-Cookie: laravel_session=eyJpdiI6IkUwcnk4OEJqOGp6Z1FJNER6eUVPVmc9PSIsInZhbHVlIjoidlRMM1JVQTJPXC8xczJBTjdGK2JcLzBhaW9aM2N0Q3JSMlVPU0RaaFQ3XC9OSXB6YndXMlhsV3d1Vk80eGYxRjZmY3pYd0RCWkRTUDNmZHR0SUFYUmZnZWc9PSIsIm1hYyI6ImUzN2M3ZDBiMTEyZTI2YzZlNzBlNWE2ZWMwMTM3YjVmZjJlNGU1NDAwZjhhMTU1YjA5ZDdkODA0OTBlMDFiYWMifQ%3D%3D; expires=Tue, 16-Sep-2014 04:50:38 GMT; path=/; httponly
X-Powered-By: PHP/5.4.32
Second query (visit from search engine):
GET / HTTP/1.1
Host: x-clip.com
Referer: http://www.google.com/search?q=x-clip.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: x-clip.com
Referer: http://www.google.com/search?q=x-clip.com
Result:
The result is similar to the first query. There are no suspicious redirects found.