Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ns1.halasport.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://ns1.halasport.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://ns1.halasport.com/ | 200 OK Content-Length: 69491 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: hibasex.com ...[1166 bytes skipped]... ur, turkish, persian, kuwaiti, arabia,free sex ,sex videos ,sex tube ,free sex vids ,free sex movies" /> <title>HibaSex هبة سكس Free porn sex videos is the ultimate free sex community. Amateurs upload, Pornstars افلام جنس اباحي - hibasex.com Free Porn Arab</title> <link rel="shortcut icon" href="favicon.ico" /> <link href="http://ns1.halasport.com/templates/black-yellow/css/style.css" rel="stylesheet" type="text/css" /> <!--[if IE]> <link href="http://ns1.halasport.com/templates/black-yellow/css/ie.css" media="screen" rel="stylesheet" type="text/css" /> <![endif]--> <script type="text/javascript" src="http://ns1.halasport.com/js/jqu ...[2461 bytes skipped]... | ||
http://ns1.halasport.com/js/jquery.min.js | 200 OK Content-Length: 72174 Content-Type: application/javascript | clean |
http://ns1.halasport.com/js/modal.popup.js | 200 OK Content-Length: 7669 Content-Type: application/javascript | clean |
http://ns1.halasport.com/js/loginplay.js | 200 OK Content-Length: 969 Content-Type: application/javascript | clean |
http://ns1.halasport.com/js/languageswitcher.js | 200 OK Content-Length: 1845 Content-Type: application/javascript | clean |
http://ns1.halasport.com/js/jquery.combine.js | 200 OK Content-Length: 18694 Content-Type: application/javascript | clean |
http://ns1.halasport.com/js/combinejs.js | 200 OK Content-Length: 1532 Content-Type: application/javascript | clean |
http://ns1.halasport.com/player/ktplayer/swfobject.js | 200 OK Content-Length: 10220 Content-Type: application/javascript | clean |
http://ns1.halasport.com/js/jscroller2-1.61.js | 200 OK Content-Length: 6103 Content-Type: application/javascript | clean |
http://ns1.halasport.com/js/swfobject.js | 200 OK Content-Length: 6880 Content-Type: application/javascript | clean |
http://ads.adxpansion.com/public/js/showads.php?zone_id=141074&ver=1 | 200 OK Content-Length: 2762 Content-Type: text/javascript | clean |
http://ns1.halasport.com/pop.js | 200 OK Content-Length: 3567 Content-Type: application/javascript | clean |
http://adspaces.ero-advertising.com/adspace/230205.js | 200 OK Content-Length: 1832 Content-Type: application/javascript | clean |
http://cdn.popcash.net/pop.js | 200 OK Content-Length: 2863 Content-Type: application/x-javascript | clean |
http://ns1.halasport.com/mobile | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 11 Sep 2014 05:21:40 GMT Location: http://ns1.halasport.com/mobile/ Server: Apache/2.2.27 (Unix) mod_ssl/2.2.27 OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.3.28 Content-Length: 240 Content-Type: text/html; charset=iso-8859-1 | clean |
http://ns1.halasport.com/mobile/ | 200 OK Content-Length: 7975 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: hibasex.com <!doctype html> <html lang="en"> <head> <meta charset="utf-8" /> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <title>hibasex.com Free Porn Arab Mobile</title> <link href="http://ns1.halasport.com/mobile/css/jquery.mobile-1.2.0.min.css" rel="stylesheet" type="text/css" media="all"/> <link href="http://ns1.halasport.com/mobile/css/style.css" rel="stylesheet" type="text/css" /> <script src="http://ns1.halasport.com/mobile/js/jquery-1.8.2.min.js" type="text/javascript"></script> <script src="http://ns1.halasp ...[4491 bytes skipped]... | ||
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ns1.halasport.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 11 Sep 2014 05:21:37 GMT
Pragma: no-cache
Server: Apache/2.2.27 (Unix) mod_ssl/2.2.27 OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.3.28
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=5e6aecb999f6ea0c43c4faa1b56bd588; path=/
X-Powered-By: PHP/5.3.28
GET / HTTP/1.1
Host: ns1.halasport.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 11 Sep 2014 05:21:37 GMT
Pragma: no-cache
Server: Apache/2.2.27 (Unix) mod_ssl/2.2.27 OpenSSL/1.0.1e-fips mod_bwlimited/1.4 PHP/5.3.28
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=5e6aecb999f6ea0c43c4faa1b56bd588; path=/
X-Powered-By: PHP/5.3.28
Second query (visit from search engine):
GET / HTTP/1.1
Host: ns1.halasport.com
Referer: http://www.google.com/search?q=ns1.halasport.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ns1.halasport.com
Referer: http://www.google.com/search?q=ns1.halasport.com
Result:
The result is similar to the first query. There are no suspicious redirects found.