Scanned pages/files
Request | Server response | Status |
http://navkite.com/ | 200 OK Content-Length: 11468 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: hacked by aminos the hunter ...[6947 bytes skipped]... t; <!-- InstanceBeginEditable name="EditRegion3" --> <table align="left" cellspacing="10"> <tr> <td><img src="source/pix4site/nk.png" width="26" height="23" alt="logo navkite" /></td> <td align="left" width="95%"><div class="titlePres">hacked by aminos the hunter</div></td> </tr> <tr> <td colspan="2">hacked by aminos the hunter<br></td> </tr> </table> <!-- InstanceEndEditable --> </div> <!-- slideshow --> &l ...[5999 bytes skipped]... | ||
http://navkite.com/shadowbox/shadowbox.js | 200 OK Content-Length: 65991 Content-Type: application/javascript | clean |
http://navkite.com/js/jquery.js | 200 OK Content-Length: 57254 Content-Type: application/javascript | clean |
http://navkite.com/lib/jquery.jcarousel.min.js | 200 OK Content-Length: 15956 Content-Type: application/javascript | clean |
http://maps.google.com/maps?file=api&v=2&key=ABQIAAAAq6_yQk2y6UrX2qGFmoDMLxQY0lSI7AoPGilqh9x9z1MtxJyCJBTzu62yiUY_6jLGSmEOzBm9z8Wj3Q | 200 OK Content-Length: 5106 Content-Type: text/javascript | clean |
http://navkite.com/index.php | 200 OK Content-Length: 11468 Content-Type: text/html | clean |
http://navkite.com/public/page.php?pixvid=on&slide=off | 200 OK Content-Length: 15978 Content-Type: text/html | clean |
http://navkite.com/public/../shadowbox/shadowbox.js | 200 OK Content-Length: 65991 Content-Type: application/javascript | clean |
http://navkite.com/public/../js/jquery.js | 200 OK Content-Length: 57254 Content-Type: application/javascript | clean |
http://navkite.com/public/../lib/jquery.jcarousel.min.js | 200 OK Content-Length: 15956 Content-Type: application/javascript | clean |
http://navkite.com/public/../index.php | 200 OK Content-Length: 11468 Content-Type: text/html | clean |
http://navkite.com/public/../public/page.php?pixvid=on&slide=off | 200 OK Content-Length: 15978 Content-Type: text/html | clean |
http://navkite.com/public/../public/../shadowbox/shadowbox.js | 200 OK Content-Length: 65991 Content-Type: application/javascript | clean |
http://navkite.com/public/../public/../js/jquery.js | 200 OK Content-Length: 57254 Content-Type: application/javascript | clean |
http://navkite.com/public/../public/../lib/jquery.jcarousel.min.js | 200 OK Content-Length: 15956 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: navkite.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 31 Jul 2014 21:59:29 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
P3P: CP="DSP COR NID CURa"
Set-Cookie: PHPSESSID=742139c19dd293a5e19c3681e35b019f; path=/
GET / HTTP/1.1
Host: navkite.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 31 Jul 2014 21:59:29 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
P3P: CP="DSP COR NID CURa"
Set-Cookie: PHPSESSID=742139c19dd293a5e19c3681e35b019f; path=/
Second query (visit from search engine):
GET / HTTP/1.1
Host: navkite.com
Referer: http://www.google.com/search?q=navkite.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: navkite.com
Referer: http://www.google.com/search?q=navkite.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=navkite.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://navkite.com/
Result: navkite.com is not infected or malware details are not published yet.
Result: navkite.com is not infected or malware details are not published yet.