Earlier hacked - Retirable and XSS vulnerable jQuery script...

See: http://www.domxssscanner.com/scan?url=http%3A%2F%2Fwww.whsh.us%2Findex.php
See: http://retire.insecurity.today/#!/scan/9a26c863aae36f6c3706fc0fa5a21c6cc8b41ae06adffe04873776a7dc6aa30a
2 vulnerable.
location redirect: https://aw-snap.info/file-viewer/?tgt=http%3A%2F%2Fwhsh.us&ref_sel=GSP2&ua_sel=ff&fs=1

polonus