Re: http://www.xoc.biz/login/?from=/
Control Panel - Sign in padlock icon
www.xoc.biz
Alerts (1)
Insecure login (1)
Password will be transmited in clear to http://www.xoc.biz/login/?from=/
Infos (1)
Encryption (HTTPS) (1)
Communication is NOT encrypted → http://toolbar.netcraft.com/site_report?url=http://www.xoc.biz
No vulnerable jQuery libraries found

HTTP Server: nginx 1.2.1 (Outdated) when that server software has not been updated and patched,
at least there is server header version info proliferation.

polonus