New scan:

Malware Scanner report for moliwang.net

Malicious/Suspicious/Total urls checked
7/0/25
7 pages have malicious code. See details below
Blacklists
Found
The website is marked by Google as suspicious.

The website "moliwang.net" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
7/0/8
7 malicious iframes found. See details below
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=moliwang.net

Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

RequestServer responseStatus
http://moliwang.net/
200 OK
Content-Length: 13170
Content-Type: text/html
malicious
Page code contains blacklisted domain: www.5898.cc

...[1478 bytes skipped]...
;"></div><script language="javascript" type="text/javascript">var boardxml='',ISAPI_ReWrite = 0,forum_picurl='skins/Default/';</script>
<div class="header">
<table width="100%">
<tr>

<td style="text-align:right;padding:0px;" valign="bottom"><iframe scrolling='no' frameborder='0' marginheight='0' marginwidth='0' width='100%' height='7350' allowTransparency src=http://www.5898.cc/></iframe></td>
</tr>
</table>
<div class="menu">
<span>
<a href="dv_rss.asp?s=xml&boardid=0"><img src="images/rss.gif" alt="" style="margin-right:5px;" /></a>
<script type="text/javascript">
try{
if(self==top){
document.write('<a href="index.asp?action=frameon" target="_top" title="ÏÔʾ×ó²à°æÃæµ¼º½">×óÀ¸</a>');
} src="skins/Default/usergro
...[2527 bytes skipped]...

Malicious iFrame found.
size: 100x7350     
src: http://www.5898.cc/
This URL is marked by Google as suspicious

<iframe scrolling='no' frameborder='0' marginheight='0' marginwidth='0' width='100%' height='7350' allowtransparency src=http://www.5898.cc/>

http://moliwang.net/inc/dv_wnd.js
200 OK
Content-Length: 4011
Content-Type: application/x-javascript
clean
http://moliwang.net/inc/main82.js
200 OK
Content-Length: 23074
Content-Type: application/x-javascript
clean
http://moliwang.net/inc/dv_index.js
200 OK
Content-Length: 4095
Content-Type: application/x-javascript
clean
http://moliwang.net/inc/dv_ajax.js
200 OK
Content-Length: 6347
Content-Type: application/x-javascript
clean
http://moliwang.net/dv_rss.asp?s=xml&boardid=0
200 OK
Content-Length: 1919
Content-Type: text/xml
clean
http://moliwang.net/test404page.js
200 OK
Content-Length: 3173
Content-Type: text/html
clean
http://moliwang.net/cookies.asp?action=dispRight
HTTP/1.1 302 Object moved
Cache-Control: private
Date: Sun, 14 Sep 2014 08:13:26 GMT
Location: index.asp
Server: IIS
Content-Length: 130
Content-Type: text/html; Charset=GB2312
Set-Cookie: Disp=right=1; expires=Sat, 20-Sep-2014 16:00:00 GMT; path=/
Set-Cookie: DvForum+8%2E2%5Fmoliwang%2Enet=StatUserID=7821651858; expires=Sun, 14-Sep-2014 09:13:26 GMT; path=/
Set-Cookie: ASPSESSIONIDSQACBTBC=LAFBMGKCENOKIAOKOBFJFNJE; path=/
X-Powered-By: WAF/2.0
clean
http://moliwang.net/index.asp
200 OK
Content-Length: 13170
Content-Type: text/html
malicious
Page code contains blacklisted domain: www.5898.cc

...[1478 bytes skipped]...
;"></div><script language="javascript" type="text/javascript">var boardxml='',ISAPI_ReWrite = 0,forum_picurl='skins/Default/';</script>
<div class="header">
<table width="100%">
<tr>

<td style="text-align:right;padding:0px;" valign="bottom"><iframe scrolling='no' frameborder='0' marginheight='0' marginwidth='0' width='100%' height='7350' allowTransparency src=http://www.5898.cc/></iframe></td>
</tr>
</table>
<div class="menu">
<span>
<a href="dv_rss.asp?s=xml&boardid=0"><img src="images/rss.gif" alt="" style="margin-right:5px;" /></a>
<script type="text/javascript">
try{
if(self==top){
document.write('<a href="index.asp?action=frameon" target="_top" title="ÏÔʾ×ó²à°æÃæµ¼º½">×óÀ¸</a>');
} src="skins/Default/usergro
...[2527 bytes skipped]...

Malicious iFrame found.
size: 100x7350     
src: http://www.5898.cc/
This URL is marked by Google as suspicious

<iframe scrolling='no' frameborder='0' marginheight='0' marginwidth='0' width='100%' height='7350' allowtransparency src=http://www.5898.cc/>

http://moliwang.net/login.asp
200 OK
Content-Length: 7703
Content-Type: text/html
malicious
Page code contains blacklisted domain: www.5898.cc

...[1490 bytes skipped]...
;"></div><script language="javascript" type="text/javascript">var boardxml='',ISAPI_ReWrite = 0,forum_picurl='skins/Default/';</script>
<div class="header">
<table width="100%">
<tr>

<td style="text-align:right;padding:0px;" valign="bottom"><iframe scrolling='no' frameborder='0' marginheight='0' marginwidth='0' width='100%' height='7350' allowTransparency src=http://www.5898.cc/></iframe></td>
</tr>
</table>
<div class="menu">
<span>
<a href="dv_rss.asp?s=xml&boardid=0"><img src="images/rss.gif" alt="" style="margin-right:5px;" /></a>
<script type="text/javascript">
try{
if(self==top){
document.write('<a href="index.asp?action=frameon" target="_top" title="ÏÔʾ×ó²à°æÃæµ¼º½">×óÀ¸</="clear:both" />
<li>
&
...[2587 bytes skipped]...

Malicious iFrame found.
size: 100x7350     
src: http://www.5898.cc/
This URL is marked by Google as suspicious

<iframe scrolling='no' frameborder='0' marginheight='0' marginwidth='0' width='100%' height='7350' allowtransparency src=http://www.5898.cc/>

http://moliwang.net/inc/ajax_log.js
200 OK
Content-Length: 5636
Content-Type: application/x-javascript
clean
http://moliwang.net/reg.asp?action=apply
HTTP/1.1 302 Object moved
Cache-Control: private
Date: Sun, 14 Sep 2014 08:13:32 GMT
Location: showerr.asp?ErrCodes=<li>±¾ÂÛ̳ÔÝʱֹͣע²á¡£&action=OtherErr
Server: IIS
Content-Length: 192
Content-Type: text/html; Charset=GB2312
Set-Cookie: geturl=%2Freg%2Easp%3Faction%3Dapply; path=/
Set-Cookie: DvForum+8%2E2%5Fmoliwang%2Enet=StatUserID=7821652491; expires=Sun, 14-Sep-2014 09:13:32 GMT; path=/
Set-Cookie: ASPSESSIONIDSQACBTBC=OAFBMGKCMLMANLIMPMJLPKNK; path=/
X-Powered-By: WAF/2.0
clean
http://moliwang.net/showerr.asp?errcodes=<li>±¾ÂÛ̳ÔÝʱֹͣע²á¡£&action=othererr
200 OK
Content-Length: 7158
Content-Type: text/html
malicious
Page code contains blacklisted domain: www.5898.cc

...[1494 bytes skipped]...
;"></div><script language="javascript" type="text/javascript">var boardxml='',ISAPI_ReWrite = 0,forum_picurl='skins/Default/';</script>
<div class="header">
<table width="100%">
<tr>

<td style="text-align:right;padding:0px;" valign="bottom"><iframe scrolling='no' frameborder='0' marginheight='0' marginwidth='0' width='100%' height='7350' allowTransparency src=http://www.5898.cc/></iframe></td>
</tr>
</table>
<div class="menu">
<span>
<a href="dv_rss.asp?s=xml&boardid=0"><img src="images/rss.gif" alt="" style="margin-right:5px;" /></a>
<script type="text/javascript">
try{
if(self==top){
document.write('<a href="index.asp?action=frameon" target="_top" title="ÏÔʾ×ó²à°æÃæµ¼º½">×óiddle" colspan="2" align="center" height="25">ÄúÉÐ
...[2483 bytes skipped]...

Malicious iFrame found.
size: 100x7350     
src: http://www.5898.cc/
This URL is marked by Google as suspicious

<iframe scrolling='no' frameborder='0' marginheight='0' marginwidth='0' width='100%' height='7350' allowtransparency src=http://www.5898.cc/>

http://moliwang.net/cookies.asp?action=stylemod&boardid=0
HTTP/1.1 302 Object moved
Cache-Control: private
Date: Sun, 14 Sep 2014 08:13:38 GMT
Location: index.asp
Server: IIS
Content-Length: 130
Content-Type: text/html; Charset=GB2312
Set-Cookie: skin=skinid%5F0=; expires=Sat, 20-Sep-2014 16:00:00 GMT; path=/
Set-Cookie: DvForum+8%2E2%5Fmoliwang%2Enet=StatUserID=7821653074; expires=Sun, 14-Sep-2014 09:13:38 GMT; path=/
Set-Cookie: ASPSESSIONIDSQACBTBC=ABFBMGKCGFJFDGMODOEKMCMK; path=/
X-Powered-By: WAF/2.0
clean
http://moliwang.net/show.asp?boardid=0
HTTP/1.1 302 Object moved
Cache-Control: private
Date: Sun, 14 Sep 2014 08:13:39 GMT
Location: showerr.asp?BoardID=0&ErrCodes=54&action=%C2%DB%CC%B3%D5%B9%C7%F8
Server: IIS
Content-Length: 194
Content-Type: text/html; Charset=GB2312
Set-Cookie: geturl=%2Fshow%2Easp%3Fboardid%3D0; path=/
Set-Cookie: DvForum+8%2E2%5Fmoliwang%2Enet=StatUserID=7821653149; expires=Sun, 14-Sep-2014 09:13:38 GMT; path=/
Set-Cookie: ASPSESSIONIDSQACBTBC=BBFBMGKCMPCGDBNPDJIIFCAH; path=/
X-Powered-By: WAF/2.0
clean
http://moliwang.net/showerr.asp?boardid=0&errcodes=54&action=%c2%db%cc%b3%d5%b9%c7%f8
200 OK
Content-Length: 7665
Content-Type: text/html
malicious
Page code contains blacklisted domain: www.5898.cc

...[1494 bytes skipped]...
;"></div><script language="javascript" type="text/javascript">var boardxml='',ISAPI_ReWrite = 0,forum_picurl='skins/Default/';</script>
<div class="header">
<table width="100%">
<tr>

<td style="text-align:right;padding:0px;" valign="bottom"><iframe scrolling='no' frameborder='0' marginheight='0' marginwidth='0' width='100%' height='7350' allowTransparency src=http://www.5898.cc/></iframe></td>
</tr>
</table>
<div class="menu">
<span>
<a href="dv_rss.asp?s=xml&boardid=0"><img src="images/rss.gif" alt="" style="margin-right:5px;" /></a>
<script type="text/javascript">
try{
if(self==top){
document.write('<a href="index.asp?action=frameon" target="_top" title="ÏÔʾ×ó²à°æÃæµ¼º½">×óright; padding:10px" class="tablebody1" ><b>
...[2524 bytes skipped]...

Malicious iFrame found.
size: 100x7350     
src: http://www.5898.cc/
This URL is marked by Google as suspicious

<iframe scrolling='no' frameborder='0' marginheight='0' marginwidth='0' width='100%' height='7350' allowtransparency src=http://www.5898.cc/>

http://moliwang.net/show.asp?filetype=0&boardid=0
HTTP/1.1 302 Object moved
Cache-Control: private
Date: Sun, 14 Sep 2014 08:13:41 GMT
Location: showerr.asp?BoardID=0&ErrCodes=54&action=%C2%DB%CC%B3%D5%B9%C7%F8
Server: IIS
Content-Length: 194
Content-Type: text/html; Charset=GB2312
Set-Cookie: geturl=%2Fshow%2Easp%3Ffiletype%3D0%26boardid%3D0; path=/
Set-Cookie: DvForum+8%2E2%5Fmoliwang%2Enet=StatUserID=7821653347; expires=Sun, 14-Sep-2014 09:13:40 GMT; path=/
Set-Cookie: ASPSESSIONIDSQACBTBC=DBFBMGKCJNGFEGILLOLONGGF; path=/
X-Powered-By: WAF/2.0
clean
http://moliwang.net/show.asp?filetype=1&boardid=0
HTTP/1.1 302 Object moved
Cache-Control: private
Date: Sun, 14 Sep 2014 08:13:41 GMT
Location: showerr.asp?BoardID=0&ErrCodes=54&action=%C2%DB%CC%B3%D5%B9%C7%F8
Server: IIS
Content-Length: 194
Content-Type: text/html; Charset=GB2312
Set-Cookie: geturl=%2Fshow%2Easp%3Ffiletype%3D1%26boardid%3D0; path=/
Set-Cookie: DvForum+8%2E2%5Fmoliwang%2Enet=StatUserID=7821653413; expires=Sun, 14-Sep-2014 09:13:40 GMT; path=/
Set-Cookie: ASPSESSIONIDSQACBTBC=EBFBMGKCMOLAEOCMJPAAAOJH; path=/
X-Powered-By: WAF/2.0
clean
http://moliwang.net/show.asp?filetype=2&boardid=0
HTTP/1.1 302 Object moved
Cache-Control: private
Date: Sun, 14 Sep 2014 08:13:42 GMT
Location: showerr.asp?BoardID=0&ErrCodes=54&action=%C2%DB%CC%B3%D5%B9%C7%F8
Server: IIS
Content-Length: 194
Content-Type: text/html; Charset=GB2312
Set-Cookie: geturl=%2Fshow%2Easp%3Ffiletype%3D2%26boardid%3D0; path=/
Set-Cookie: DvForum+8%2E2%5Fmoliwang%2Enet=StatUserID=7821653521; expires=Sun, 14-Sep-2014 09:13:42 GMT; path=/
Set-Cookie: ASPSESSIONIDSQACBTBC=FBFBMGKCIMPFCMEADEELEPAL; path=/
X-Powered-By: WAF/2.0
clean
http://moliwang.net/show.asp?filetype=3&boardid=0
HTTP/1.1 302 Object moved
Cache-Control: private
Date: Sun, 14 Sep 2014 08:13:43 GMT
Location: showerr.asp?BoardID=0&ErrCodes=54&action=%C2%DB%CC%B3%D5%B9%C7%F8
Server: IIS
Content-Length: 194
Content-Type: text/html; Charset=GB2312
Set-Cookie: geturl=%2Fshow%2Easp%3Ffiletype%3D3%26boardid%3D0; path=/
Set-Cookie: DvForum+8%2E2%5Fmoliwang%2Enet=StatUserID=7816395462; expires=Sun, 14-Sep-2014 09:13:42 GMT; path=/
Set-Cookie: ASPSESSIONIDSQACBTBC=GBFBMGKCBEHANFPNHLEIKDMJ; path=/
X-Powered-By: WAF/2.0
clean
http://moliwang.net/show.asp?filetype=4&boardid=0
HTTP/1.1 302 Object moved
Cache-Control: private
Date: Sun, 14 Sep 2014 08:13:44 GMT
Location: showerr.asp?BoardID=0&ErrCodes=54&action=%C2%DB%CC%B3%D5%B9%C7%F8
Server: IIS
Content-Length: 194
Content-Type: text/html; Charset=GB2312
Set-Cookie: geturl=%2Fshow%2Easp%3Ffiletype%3D4%26boardid%3D0; path=/
Set-Cookie: DvForum+8%2E2%5Fmoliwang%2Enet=StatUserID=7821653652; expires=Sun, 14-Sep-2014 09:13:44 GMT; path=/
Set-Cookie: ASPSESSIONIDSQACBTBC=HBFBMGKCEHJBHDENEEPFNMHB; path=/
X-Powered-By: WAF/2.0
clean
http://moliwang.net/Query.asp
HTTP/1.1 302 Object moved
Cache-Control: private
Date: Sun, 14 Sep 2014 08:13:45 GMT
Location: showerr.asp?BoardID=0&ErrCodes=60&action=%B7%C3%CE%CA%CC%EC%C3%A8%B9%FA%BC%CA%D3%E9%C0%D6%CD%F8
Server: IIS
Content-Length: 224
Content-Type: text/html; Charset=GB2312
Set-Cookie: DvForum+8%2E2%5Fmoliwang%2Enet=StatUserID=7821653777; expires=Sun, 14-Sep-2014 09:13:44 GMT; path=/
Set-Cookie: ASPSESSIONIDSQACBTBC=IBFBMGKCPIMLFLDFFCNPGCFF; path=/
X-Powered-By: WAF/2.0
clean
http://moliwang.net/showerr.asp?boardid=0&errcodes=60&action=%b7%c3%ce%ca%cc%ec%c3%a8%b9%fa%bc%ca%d3%e9%c0%d6%cd%f8
200 OK
Content-Length: 7691
Content-Type: text/html
malicious
Page code contains blacklisted domain: www.5898.cc

...[1504 bytes skipped]...
;"></div><script language="javascript" type="text/javascript">var boardxml='',ISAPI_ReWrite = 0,forum_picurl='skins/Default/';</script>
<div class="header">
<table width="100%">
<tr>

<td style="text-align:right;padding:0px;" valign="bottom"><iframe scrolling='no' frameborder='0' marginheight='0' marginwidth='0' width='100%' height='7350' allowTransparency src=http://www.5898.cc/></iframe></td>
</tr>
</table>
<div class="menu">
<span>
<a href="dv_rss.asp?s=xml&boardid=0"><img src="images/rss.gif" alt="" style="margin-right:5px;" /></a>
<script type="text/javascript">
try{
if(self==top){
document.write('<a href="index.asp?action=frameon" target="_top" title="ÏÔʾ×ó²à°æright; padding:10px" class="tablebody1" ><b>ÇëÊäÈëÄúµÄÂÛÌ
...[2511 bytes skipped]...

Malicious iFrame found.
size: 100x7350     
src: http://www.5898.cc/
This URL is marked by Google as suspicious

<iframe scrolling='no' frameborder='0' marginheight='0' marginwidth='0' width='100%' height='7350' allowtransparency src=http://www.5898.cc/>

http://moliwang.net/plus_popwan.asp
200 OK
Content-Length: 5979
Content-Type: text/html
malicious
Page code contains blacklisted domain: www.5898.cc

...[1490 bytes skipped]...
;"></div><script language="javascript" type="text/javascript">var boardxml='',ISAPI_ReWrite = 0,forum_picurl='skins/Default/';</script>
<div class="header">
<table width="100%">
<tr>

<td style="text-align:right;padding:0px;" valign="bottom"><iframe scrolling='no' frameborder='0' marginheight='0' marginwidth='0' width='100%' height='7350' allowTransparency src=http://www.5898.cc/></iframe></td>
</tr>
</table>
<div class="menu">
<span>
<a href="dv_rss.asp?s=xml&boardid=0"><img src="images/rss.gif" alt="" style="margin-right:5px;" /></a>
<script type="text/javascript">
try{
if(self==top){
document.write('<a href="index.asp?action=frameon" target="_top" title="ÏÔʾ×ó²à°æÃæµ¼º½">×óÀ¸</ipt language="JavaScript">setTimeout('Activ
...[2505 bytes skipped]...

Malicious iFrame found.
size: 100x7350     
src: http://www.5898.cc/
This URL is marked by Google as suspicious

<iframe scrolling='no' frameborder='0' marginheight='0' marginwidth='0' width='100%' height='7350' allowtransparency src=http://www.5898.cc/>

http://moliwang.net/Plus_popwan/fuc_script.js
200 OK
Content-Length: 2557
Content-Type: application/x-javascript
clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: moliwang.net

Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Sun, 14 Sep 2014 08:13:14 GMT
Server: IIS
Content-Length: 13170
Content-Type: text/html; Charset=GB2312
Set-Cookie: geturl=%2Findex%2Easp%3F; path=/
Set-Cookie: DvForum+8%2E2%5Fmoliwang%2Enet=StatUserID=7821650647; expires=Sun, 14-Sep-2014 09:13:14 GMT; path=/
Set-Cookie: ASPSESSIONIDSQACBTBC=JAFBMGKCHNCOHEMBAIMFMEBP; path=/
Set-Cookie: safedog-flow-item=47A3CF19FD1498A577A2C94613FAE711; expires=Wen, 21-Oct-2150 09:46:30 GMT; domain=moliwang.net; path=/
X-Powered-By: WAF/2.0

...13170 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: moliwang.net
Referer: http://www.google.com/search?q=moliwang.net

Result:
The result is similar to the first query. There are no suspicious redirects found.