Sie sind auf Seite 1von 13

HackerTarget.

com Joomla Security Report

Joomla Security Report


HackerTarget.com

HackerTarget.com is the world leader in online open source intelligence and security assessments. All scanning tools are on-line for easy and convenient access.

All HackerTarget.com Vulnerability Scan options are Free (limit of 4 / day) Server / IP Nmap Port Scan OpenVas Scan SSL Check Web Sites WhatWeb Site Fingerprint SQL Injection Test Nikto Web Scan BlindElephant Scan Intelligence DomainProfiler Fierce Domain Scan Hosting Server Info CMS WordPress Scan Joomla Scan Drupal Scan

Professional Services Security Scanning Membership Manual Security Assessment additional scanning ($7 / month or $49 / year) professional assessment with full report (from $400 USD)

This report is autogenerated using various sources and scripts. No guarantee is made to the accuracy of the information found. See http://hackertarget.com for full Terms of Service.

Design and Layout is licensed under a Creative Commons Attribution 3.0 Unported License.

Joomla Security Scan by HackerTarget.com LLC

1 of 13

HackerTarget.com Joomla Security Report

Table of Content Joomla Security Report


HackerTarget.com

1
1

Table of Content Joomla Site Info


Domain Reputation Check Robots.txt found

2 3
3 4

Site Links and Scripts


External Site Links Javascript links and Scripts found Internal Site Links

5
5 5 5

Hosting Information for suitinteak.com


Websites sharing your IP

6
6

Appendix A : Additional Resources


The Basics Advanced Security Testing Further Information

13
13 13 13

Joomla Security Scan by HackerTarget.com LLC

2 of 13

HackerTarget.com Joomla Security Report

This report is based on an automated security scan using passive data collection after crawling the nominated site. It was generated on Tue Jul 26 05:03:55 2011 More Information

Joomla Site Info


Site URI: suitinteak.com No joomla found! The hiding of the version of joomla is good security practice. If you have not hidden it through hardening doublecheck your url and path. Web Server: Page Title: Apache Suitin | Nice Room Nice Furniture

Domain Reputation Check


The site suitinteak.com has been checked against web reputation services
Ref Service Google Safebrowsing finds this site as safe Norton SafeWeb determines this site to be Untested Site Check Result SAFE UNTESTED

Joomla Security Scan by HackerTarget.com LLC

3 of 13

HackerTarget.com Joomla Security Report

Robots.txt found
The robots.txt is used to tell search engines to ignore parts of your site. It can also be used by attackers to find stuff you may not want to be public and other interesting directories.
raw file User-agent: * Disallow: /administrator/ Disallow: /cache/ Disallow: /components/ Disallow: /images/ Disallow: /includes/ Disallow: /installation/ Disallow: /language/ Disallow: /libraries/ Disallow: /media/ Disallow: /modules/ Disallow: /plugins/ Disallow: /templates/ Disallow: /tmp/ Disallow: /xmlrpc/

Joomla Security Scan by HackerTarget.com LLC

4 of 13

HackerTarget.com Joomla Security Report

Site Links and Scripts


Links and scripts to external sites and unknown javascript may indicate the presence of malware or malicious scripting. Examine the results below, linking to sites of poor reputation or malware can result in blacklisting by google and other search engines.

External Site Links


Links to external sites, assessed for reputation
link Google Safe Browse MyWOT Reputation

Javascript links and Scripts found


Google Analytics Account ID : UA-24060712-1

Internal Site Links


The full site has not been crawled, these are the links from the main index page
links /home

Joomla Security Scan by HackerTarget.com LLC

5 of 13

HackerTarget.com Joomla Security Report

Hosting Information for suitinteak.com


The following details about the server and hosting provider have been discovered.
Domain: IP: Organization: AS Name: ISP: City: Country: suitinteak.com 174.123.117.162 THEPLANET.COM INTERNET SERVICES THEPLANET-AS THEPLANET.COM INTERNET SERVICES INC Houston United States

Websites sharing your IP


These sites have been found to be sharing the servers IP address
link 7deadly-sins.com a2-solutions.com abstract-artpaintings.com aeroswan-cargo.com airtechindonesia.com akpelni.ac.id al3a.net alfarindo.com alteregostuff.com anggi-destiyarto.web.id annurpurwodadi.com antiloops.com aplikasikasir.com architecchi.com aseanyoungleaders.com ayopintar.com aziezalfauzi.id.or.id b-dutch.com bajinterior.com bali-homestay-cepaka.com balinext.com baliprivatetours.net balividyalaya.org bamboorealty.co.id barangpromosiku.com basaudan.org batamhouse.com bayoucomputerservices.com beritasekolah.com Google Safe Browse SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE MyWOT Reputation ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ???

Joomla Security Scan by HackerTarget.com LLC

6 of 13

HackerTarget.com Joomla Security Report


best-surgery-solution.com bisnislarismanis.com bisnissoftware.com blu-raymovie.us borobudurexpedition.com cariva-raya.com cobakredit.com cv-hanura.com dana-tunai.com darulhijrah.com designarz.com di.co.id dibaca.net dirname.org dirtbike-shop.com djoyo.net dmc-indonesia.com dragandroid.info dtowing.com e-technews.com educateyourevent.com ekosusilo.com enormo-andorra.com floraswallpaper.com fo-interior.com for-xxx.com forum.dotamdo.co.in forum.klontongan.com free-plr.net future-educational.com gairahpasutri.net get.profitswordpress.com getguidefrom.us gpib-immanuel-jakarta.org grahalangit.com gtu-logistics.com gubug-it.com hagutech.com halitosis-treatment.com hearingvision.biz hikmahbudhi.or.id i-smartschool.com icococha.com idjogja.com idrfx.com iif.co.id iklanmobiljogja.com imworks.org indojava-ck.com indonesiajenius.com indosniper.com SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? 70

Joomla Security Scan by HackerTarget.com LLC

7 of 13

HackerTarget.com Joomla Security Report


indriautama.com inogame.com instrukturyoga.com interio-design.com ipad-rock.com ivoryvan.com jadikaya.penawaran.net javaexpedition.com javaoverlandtour.com jeparapromo.com jinggabu.com jobs-vacancies.net jogjatourindonesia.com kbm-printing.com kesinisaja.com koifurniture.biz kompasuang.com komporlistrik.com krisanbutik.com kukucantengan.com lakusuma.biz ldcub.com lgericsson.net lima-s.com lulusubs.com lumaguda.com majumapanorganik.com manajemen-insani.org manoriantravel.com masmediabooks.com masterkantor.com mediametropolisnews.com mediumfund.com menarajaya.com mesinkeripikbuah.com mesinpenetas.com metroniaga.com mina.co.id mobilerepairmanual.info moesubs.com mpsmsc.com mtbkab.com mukhlason.com muntigsiokan.org murtila.com nasmircapsules.co.id nurillahi.com nutrisisehat.net nutritionfordiet.com oemama.com omgogel.com SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? 90 ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ???

Joomla Security Scan by HackerTarget.com LLC

8 of 13

HackerTarget.com Joomla Security Report


ommuzid.com one-chip.com orisuper.com otherwish.com outboundmurah.com oxyjogja.com pasangiklanbarisku.com pembalut-sehat.com pembuatanwebsite.penawaran.net penawaran.net pesatbandung.com pewangipakaian.com pharmacybounty.com polres-bojonegoro.com ponpesalhikmah1.or.id popcas.com pplconsultants.com produkmutu.com promotortraining.com ptpinasthikaciptapersada.com punmobile.net putraputribantul.com qolzam.com rainbowenglishcourse.com rajascript.com rattanfurnitureset.com redporta.com rekainti.com reviewacaiberry.com risdayapalindo.com rizkionline.com rumahukm.com sakaido.com sanlogistics.com sarah-net.com saritatour.com scrapcine.com scxracezone.com sejatiweddingphotography.com servisindoartha.com shop-ipad.com shop-line.net simpliboutique.com sman1kandanghaur.sch.id smpnegeri1jepara.sch.id speedmaxi.com sptnetwork.com sughema.com sumber.web.id suropeji.com SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? 30 ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ???

Joomla Security Scan by HackerTarget.com LLC

9 of 13

HackerTarget.com Joomla Security Report


tamanharmoni.com tangkas.com tasmurahgratis.com tempatuang.com tentangibu.net theideaminers.com times.imkrisna.com tips-sharing.com titikbillboard.com tivelos.com toko-bunga-palembang.com toko-bunga-pekanbaru.com tokobungabandung.net tokobungamalang.net tokobungapekalongan.com tokobungaponorogo.com transportindo.com trimitraabadi.com tuneflick.com tyrex-indonesia.com unique.tokopoltek.com usedcartridgesindonesia.com vanillalaundry.com vcdanak.com warisanmultitenun.com wheyproteinwhey.com worldgamesblog.com www.1nfohealth.com www.aeroswan-cargo.com www.agiel-fc.com www.alumni-sman1bir.com www.anekarupa.com www.apparel-hoodie.com www.arsitekbandung.com www.asiacargoexpress.com www.asolole.web.id www.azkalix.com www.batuborong.com www.big1star.net www.bisnissuperlaba.com www.bl-skincare.com www.blkd.info www.cintabayi.com www.coalinindonesia.com www.cobakredit.com www.coconutgallery.com www.datainfonak.net www.dedamelan.com www.eceran.net www.energy4greenworld.com www.ensteen.com SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE ??? 2 ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? 40 ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ???

Joomla Security Scan by HackerTarget.com LLC

10 of 13

HackerTarget.com Joomla Security Report


www.fhazil.com www.ftfservices.biz www.gamafund.com www.gesrental.com www.gratis-iklanbaris.com www.gresidabagas.com www.gudegjogja.net www.haditour.com www.healthcomplication.net www.highspeedinternetprovider-s.com www.hojot.net www.iambaa.com www.idtraining.net www.ilmusoftware.com www.indogaharu.com www.indonesialaboursupplier.com www.indonesiamanpowerrecruitmentagency.c www.indonesiarecruitmentagency.com www.indoprimaexpress.com www.infosindo.com www.jadwalpelatihan.com www.jagopakaian.com www.jelome.com www.jogjarott.com www.jualantanah.com www.kadamchoeling.or.id www.kapsugengpamudji.com www.kenzionlineshop.com www.kloningspoon.com www.klontongan.com www.kokopellifashion.com www.kursusdahsyat.com www.langsunglangsing.net www.lebihok.com www.lima-s.com www.match-property.com www.mesinsuper.com www.momandbabycare.com www.mommyfordummy.com www.music4glory.com www.newbalance-hiking-shoes.com www.nidna.com www.nitacollection.com www.nitrofund.com www.omertacosca.com www.op2motorsport.com www.orisuper.com www.oshi.co.id www.padalarang.net www.pesonaindonesia.com www.ponselbangka.com SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? 78 ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ???

Joomla Security Scan by HackerTarget.com LLC

11 of 13

HackerTarget.com Joomla Security Report


www.pplconsultants.com www.primamobil.com www.profilperusahaan.net www.ptdayamandiri.co.id www.puspagraha.com www.queen-furniture.com www.rajascript.com www.salmantour.com www.sariagung.com www.saritatour.com www.sejahterafitofarma.com www.semuadapat.com www.sewalaptopbandung.net www.shoewardrobe.net www.sinaronlineelektronik.com www.singaporerentalhouse.com www.sman1-trk.sch.id www.smslagi.com www.solusindo-indonesia.com www.solusiumroh.com www.soundnesia.com www.stie-yppi.ac.id www.suburmulia.com www.tabunganbca.com www.tahitiannonijuiceint.com www.taproplus.com www.thebabyboo.com www.thebestcigarettes.com www.titisan.com www.urban-panda.com www.usahainternasional.com www.vanectro.com www.yogidipta.com www.zuhrif-reza.com yogya-edu.org yogyakarta-accommodation-expat-tips.com yogyatoursindonesia.com zedgewallpapers.com SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE SAFE ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? 70 ??? ??? ??? ??? ??? ??? ??? ??? ???

Joomla Security Scan by HackerTarget.com LLC

12 of 13

HackerTarget.com Joomla Security Report

Appendix A : Additional Resources


Joomla is a stable and powerful content management system. A few simple steps can increase the security of the platform a great deal.

The Basics
* Back It Up - Be ready to lose it all at anytime. If you have an up to date backup restoring is much easier * Keep Joomla System up to date * Keep all Plugins and Modules up to date * Beware of untrusted Themes and Modules * Rename admin account to a non-generic name * Use strong passwords ( a dictionary word with a number after it is not a strong password! ) * Keep your password safe! Do not re-use it on other sites. * Ensure you have up to date AV on your Windows Machine. Malware collects passwords. * The underlying server must be well managed and in a secure state * VPS or Dedicated server? Set up server monitoring (http://www.ossec.net is a good start)

Advanced Security Testing


This report has been generated using automated scripts and tools, while it provides a good overview of the general security of the site and any obvious problems, it is far from a comprehensive security assessment. HackerTarget.com has a comprehensive security assessment offering that is in effect a simulated hacker attack against the target system. This assessment by its nature is much more aggressive than the automated review you are looking at now, and provides a full report with any security holes found along with recommendations for increasing the security of the system.

Alternatively there is a collection of security tools available for free and online for testing at HackerTarget.com.

Further Information
There are a thousand and one guides for drupal security tips. Some of the best information is from the source. Security Checklist for Joomla.org

Joomla Security Scan by HackerTarget.com LLC

13 of 13