Suspicious pages on website detected...

[polonus]

See: http://killmalware.com/tuchambelan.com/
See: http://www.domxssscanner.com/scan?url=http%3A%2F%2Ftuchambelan.com
WordPress Plugins
The following plugins were detected by reading the HTML source of the WordPress sites front page.

google-analyticator 6.4.9.6   latest release (6.4.9.6)
http://www.videousermanuals.com/google-analyticator/

WordPress Theme
The theme has been found by examining the path /wp-content/themes/ *theme name* /

 Canvas 5.1.3http://www.woothemes.com/

Warning User Enumeration is possible
The first two user ID's were tested to determine if user enumeration is possible.

ID   User   Login
1      None
2   wp_enftcn   wp_enftcn

Warning Directory Indexing Enabled  Web Server Feature.
Obfuscated iFrame malcode detected. infection campaign is 11/12 hours old, see similar code: https://urlquery.net/report.php?id=1443326805489 & http://urlquery.net/report.php?id=1443242480048 for instance.

Moreover uMatrix has prevented the following page from loading:
-http://load.sumome.com/  * the only widget shown in the tracker tracker report attached.

Nothing detected here: https://sitecheck.sucuri.net/results/tuchambelan.com

Added a tracker tracker report results on the wp include scripts.

google-analyticator/external-tracking.min.js has analyticsFileTypes' undefined & interferes with some themes, also: JS-error.
Americans are starting to learn now how vulnerable these are to Cyber-attack. 
2015-09-26   2   -(www.glowconstruction.net)/wp-content/plugins/google-analyticator/external-tracking.min.js?ver=6.4.9   Malware


polonus (volunteer website security analyst and website error-hunter)