See: http://urlquery.net/report.php?id=1489961389554
Not flagged here: https://urlscan.io/result/5e604a60-74d9-4f40-950e-e3773eeadb27#summary
nor at Sucuri’s.
Quttera says potentially suspicious: wp-content/themes/betheme/js/scripts.js?ver=15.2
Severity: Potentially Suspicious
Reason: Detected procedure that is commonly used in suspicious activity.
Details: Too low entropy detected in string [[‘current-menu-item current-menu-parent current-menu-ancestor current_page_item current_page_parent cu’]] of length 119 which may point to obfuscation or shellcode.
Threat dump: View code
Threat dump MD5: A0238F644D53EF05F4814E754FE17677
File size[byte]: 61818
File type: ASCII
Page/File MD5: 71674B53EDDD65A15711C2D957881FBC
Scan duration[sec]: 4.424000
Look for vuln. here: X-Powered-By: PHP/5.6.27, PleskLin
Outdated plugin: contact-form-7 4.6 latest release (4.7) Update required
https://contactform7.com/
Warning User Enumeration is possible
The first two user ID’s were tested to determine if user enumeration is possible.
ID User Login
1 None mariusz
2 None
It is recommended to rename the admin user account to reduce the chance of brute force attacks occurring. As this will reduce the chance of automated password attackers gaining access. However it is important to understand that if the author archives are enabled it is usually possible to enumerate all users within a WordPress installation.
Retirable jQuery library: -http://lipinskiwalcz.pl/
Detected libraries:
jquery-migrate - 1.4.1 : -http://lipinskiwalcz.pl/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
jquery - 1.12.4 : (active1) -http://lipinskiwalcz.pl/wp-includes/js/jquery/jquery.js?ver=1.12.4
Info: Severity: medium
https://github.com/jquery/jquery/issues/2432
http://blog.jquery.com/2016/01/08/jquery-2-2-and-1-12-released/
jPlayer - 2.5.0 : (active1) -http://lipinskiwalcz.pl/wp-content/themes/betheme/assets/jplayer/jplayer.min.js?ver=15.2
jquery.prettyPhoto - 3.1.6 : (active1) -http://lipinskiwalcz.pl/wp-content/themes/betheme/js/plugins.js?ver=15.2
(active) - the library was also found to be active by running code
One sri- tag issue: Stylesheets 1 issues
Tag Result
See: https://observatory.mozilla.org/analyze.html?host=lipinskiwalcz.pl & https://aw-snap.info/file-viewer/?protocol=not-secure&tgt=lipinskiwalcz.pl%2F&ref_sel=GSP2&ua_sel=ff&fs=1
polonus (volunteer website security analyst and website error-hunter)
P.S. On the hoster in Roubaix, France: http://webcache.googleusercontent.com/search?q=cache:EM5cgbGm0f4J:95.34.115.158/report/06c62502-9176-44d8-be5d-7c75af0bde7e+&cd=5&hl=pl&ct=clnk&gl=nl