See:
https://www.virustotal.com/nl/url/9dae50befdf22adfff9fb27d9c187410c66be5fe095c0fa4c418beda6f91ffd9/analysis/1385765755/Quttera scan flags:
/wp-content/themes/Office/js/jquery.carouFredSel-5.5.0-packed.js?ver=5.5.0
Severity: Potentially Suspicious
Reason: Detected potentially suspicious content.
Details: Detected potentially suspicious initialization of function pointer to JavaScript method eval <code> __tmpvar967954396 = eval; <code/>
Threat dump: ->
http://jsunpack.jeek.org/?report=9fdcb8949f7f800036d2611794f4fcd43b72793c potentiall WP abuse *
File size[byte]: 32332
File type: ASCII
MD5: 10F9818E88337A8806707F9BB92EFE11
Scan duration[sec]: 0.181000
Javascript Check: Suspicious
href='htxp://www.liveinternet.ru/click' "+ "target=_blank><img src='//counter.yadro dot ru/hit?t44.6;r"+ escape(document.referrer)+((typeof(screen)=="undefined")?"": ";s"+screen.wi...
Unknown includes, consider:
Suspicious Script:
htxp://www.1c-programmist.com/wp-content/plugins/layerslider/js/layerslider.kreaturamedia.jquery-min.js?ver=2.0.0
.ru/click' "+ "target=_blank><img src='//counter.yadro dot ru/hit?t44.6;r"+ escape(document.referrer)+((typeof(screen)=="undefined")?"": ";s"
Suspicious Script:
htxp://www.1c-programmist.com/wp-content/plugins/layerslider/js/jquery-easing-1.3.js?ver=2.0.0
.ru/click' "+ "target=_blank><img src='//counter.yadro dot ru/hit?t44.6;r"+ escape(document.referrer)+((typeof(screen)=="undefined")?"": ";s"
Suspicious 404 Page:
.ru/click' "+ "target=_blank><img src='//counter.yadro dot ru/hit?t44.6;r"+ escape(document.referrer)+((typeof(screen)=="u
Flagged as with Detected SutraTDS URL pattern ->
http://urlquery.net/report.php?id=8065473Also detected here:
http://sitecheck.sucuri.net/results/1c-programmist.com/ * WordPress version outdated: Upgrade required.
Phishing IP:
http://support.clean-mx.de/clean-mx/phishing?id=1118864polonus
