New scan:

Malware Scanner report for coolwear.co.za

Malicious/Suspicious/Total urls checked
0/0/4
Blacklists
OK
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/0/0
Deface / Content modification
Found
Probably the website is defaced. The following signature was found:

Hacked By azab siyah  (49 websites defaced)

See details below

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Scanned pages/files

RequestServer responseStatus
http://www.coolwear.co.za/
HTTP/1.1 200 OK
Date: Sat, 05 Dec 2015 17:56:37 GMT
Accept-Ranges: bytes
ETag: "c59dd3b94c26d11:f37fe"
Server: Microsoft-IIS/6.0
Content-Length: 10524
Content-Location: http://www.coolwear.co.za/index.htm
Content-Type: text/html
Last-Modified: Tue, 24 Nov 2015 00:11:54 GMT
X-Powered-By: ASP.NET
clean
http://www.coolwear.co.za/index.htm
200 OK
Content-Length: 10524
Content-Type: text/html
suspicious
Deface/Content modification. The following signature was found: Hacked By azab siyah

<script type="text/javascript">
function tb8_makeArray(n){
this.length = n;
return this.length;
}
tb8_messages = new tb8_makeArray(2);
tb8_messages[0] = "Hacked By azab siyah";
tb8_messages[1] = "Ananymous Cyber Team";
tb8_rptType = 'infinite';
tb8_rptNbr = 5;
tb8_speed = 100;
tb8_delay = 2000;
var tb8_counter=1;
var tb8_currMsg=0;
var tb8_tekst ="";
var tb8_i=0;
var tb8_TID = null;
function tb8_pisi(){
tb8_tekst = tb8_tekst + tb8_messages[tb8_currMsg].substring(tb8_i, tb8_i+1);
document.title = tb8_tekst;
tb8_sp=tb8_speed;
tb
...[11934 bytes skipped]...


http://www.coolwear.co.za/ymsgr:addfriend?ll_azab_siyah_ll
404 Not Found
Content-Length: 1635
Content-Type: text/html
clean
http://www.coolwear.co.za/test404page.js
404 Not Found
Content-Length: 1635
Content-Type: text/html
clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: coolwear.co.za

Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: coolwear.co.za
Referer: http://www.google.com/search?q=coolwear.co.za

Result:
The result is similar to the first query. There are no suspicious redirects found.

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=coolwear.co.za

Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://coolwear.co.za/

Result: coolwear.co.za is not infected or malware details are not published yet.