Scanned pages/files
| Request | Server response | Status |
http://www.internoma.com/ | HTTP/1.1 200 OK Connection: close Date: Sat, 11 Oct 2014 00:44:33 GMT Accept-Ranges: bytes ETag: "cc2034-93a-504b63a411bc2" Server: Apache Vary: Accept-Encoding Content-Length: 2362 Content-Type: text/html Last-Modified: Mon, 06 Oct 2014 00:33:11 GMT X-Powered-By: PleskLin | clean |
http://twitter.com/ayyildizorg | HTTP/1.1 301 Moved Permanently Date: Sat, 11 Oct 2014 00:44:33 UTC Location: https://twitter.com/ayyildizorg Server: tsa_b Content-Length: 0 Set-Cookie: guest_id=v1%3A141298827383712803; Domain=.twitter.com; Path=/; Expires=Mon, 10-Oct-2016 00:44:33 UTC X-Connection-Hash: c621ac476136d73fd47765fa39ecf84c | clean |
https://twitter.com/ayyildizorg | 200 OK Content-Length: 243468 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: abavictory.com <!DOCTYPE html> <!--[if IE 8]><html class="lt-ie10 ie8" lang="en data-scribe-reduced-action-queue="true""><![endif]--> <!--[if IE 9]><html class="lt-ie10 ie9" lang="en data-scribe-reduced-action-queue="true""><![endif]--> <!--[if gt IE 9]><!--><html lang="en" data-scribe-reduced-action-queue="true"><!--<![endif]--> <head> ...[4234 bytes skipped]... | ||
https://abs.twimg.com/c/swift/en/init.692051e2ee953555f75e507460e9a8a8757a5791.js | 200 OK Content-Length: 303967 Content-Type: application/javascript | clean |
http://www.internoma.com/?lang=id | HTTP/1.1 200 OK Connection: close Date: Sat, 11 Oct 2014 00:44:39 GMT Accept-Ranges: bytes ETag: "cc2034-93a-504b63a411bc2" Server: Apache Vary: Accept-Encoding Content-Length: 2362 Content-Type: text/html Last-Modified: Mon, 06 Oct 2014 00:33:11 GMT X-Powered-By: PleskLin | clean |
http://twitter.com/test404page.js | HTTP/1.1 301 Moved Permanently Date: Sat, 11 Oct 2014 00:44:39 UTC Location: https://twitter.com/test404page.js Server: tsa_b Content-Length: 0 Set-Cookie: guest_id=v1%3A141298827944001307; Domain=.twitter.com; Path=/; Expires=Mon, 10-Oct-2016 00:44:39 UTC X-Connection-Hash: 8bd10e9ea95d055e99e58759d635773f | clean |
https://twitter.com/test404page.js | 404 Not Found Content-Length: 4311 Content-Type: text/html | clean |
https://abs.twimg.com/errors/404-4f54405af9c0bcdecbe656ca8893f7a9.js | 200 OK Content-Length: 10803 Content-Type: application/javascript | clean |
https://twitter.com/ | 200 OK Content-Length: 55717 Content-Type: text/html | clean |
https://twitter.com/?lang=id | 200 OK Content-Length: 56191 Content-Type: text/html | clean |
https://abs.twimg.com/c/swift/id/init.140ef81882893f6aea3e445a81bba8b86bd0a2b9.js | 200 OK Content-Length: 304013 Content-Type: application/javascript | clean |
https://twitter.com/?lang=msa | 200 OK Content-Length: 56368 Content-Type: text/html | clean |
https://abs.twimg.com/c/swift/msa/init.4f4b5cf6ea730b7a43b7650c9ef98c2c20b2acf1.js | 200 OK Content-Length: 302719 Content-Type: application/javascript | clean |
https://twitter.com/?lang=cs | 200 OK Content-Length: 56606 Content-Type: text/html | clean |
https://abs.twimg.com/c/swift/cs/init.17b7bda7b9d0fbbbdbae0d09c728e0edce5e084e.js | 200 OK Content-Length: 300814 Content-Type: application/javascript | clean |
https://twitter.com/?lang=da | 200 OK Content-Length: 56016 Content-Type: text/html | clean |
https://abs.twimg.com/c/swift/da/init.a1b29436c3211c3cd2e5095b6764bb18fd73b18a.js | 200 OK Content-Length: 303874 Content-Type: application/javascript | clean |
https://twitter.com/?lang=de | 200 OK Content-Length: 56698 Content-Type: text/html | clean |
https://abs.twimg.com/c/swift/de/init.e859a4ceeb04611698cc8022b61b943662e2cfad.js | 200 OK Content-Length: 303263 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: internoma.com
Result:
GET / HTTP/1.1
Host: internoma.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: internoma.com
Referer: http://www.google.com/search?q=internoma.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: internoma.com
Referer: http://www.google.com/search?q=internoma.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=internoma.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://internoma.com/
Result: internoma.com is not infected or malware details are not published yet.
Result: internoma.com is not infected or malware details are not published yet.