See: http://urlquery.net/report.php?id=1490704902278
Threat Name: Infostealer.Limitail
Location: -https://hacmint.com/cgi_bin/Invoice-Report.zip
Magento not updated, listed here: https://sitecheck.sucuri.net/results/hacmint.com
Update to: recommend version 1.9.2.4 or 2.0.7
Several issues not being patched: https://www.magereport.com/scan/?s=https://hacmint.com/
Two issues: https://sritest.io/#report/e54ed076-1d76-48a3-b3ca-0ee2f85b9d43
Vulnerable jQuery library to be retired: http://retire.insecurity.today/#!/scan/2d58d47ef3c2fef15d649f91f4725338f6e2177635f49f32d4aaf5409297e5ee
F-F-status: https://observatory.mozilla.org/analyze.html?host=hacmint.com
-/skin/frontend/default/theme224k/js/scripts.js
Severity: Potentially Suspicious
Reason: Detected procedure that is commonly used in suspicious activity.
Details: Too low entropy detected in string [[‘.input-box select, .input-box input, input.qty, .data-table textarea, .input-box textarea, .advanced’]] of length 126 which may point to obfuscation or shellcode.
Consider: http://www.domxssscanner.com/scan?url=https%3A%2F%2Fhacmint.com%2Fskin%2Ffrontend%2Fdefault%2Ftheme224k%2Fjs%2Fscripts.js
overflowing code to -http://dev.techsoup.nl/sites/all/modules/jquery_update/compat.js for instance…
polonus