Outdated Joomla software on website, also suspicious/malicious?

[polonus]

See: https://www.virustotal.com/nl/url/6d4d17371791290cbe4c084cc8e71308c0bcda078288523e0de54df9b1976422/analysis/1442531651/
and 3 suspicious files flagged:
/images/stories/downloads/demoresultados2014.pdf
Severity:   Suspicious
Reason:   Modified PDF format.
Details:   Detected malformed PDF file
File size[byte]:   672378
File type:   PDF
Page/File MD5:   53F47AEC78E9F35E5E3B8EBACFB0473D
Scan duration[sec]:   0.002000

/images/stories/downloads/demofluxos2014.pdf
Severity:   Suspicious
Reason:   Modified PDF format.
Details:   Detected malformed PDF file
File size[byte]:   744302
File type:   PDF
Page/File MD5:   EE8D0460635A9B17C68A14E99AC08C7B

/images/stories/downloads/balanco2014.pdf
Severity:   Suspicious
Reason:   Modified PDF format.
Details:   Detected malformed PDF file
File size[byte]:   988080
File type:   PDF
Page/File MD5:   EBE25F80C016CBE01CD20CB29E71A896

Web application version:
Joomla Version 1.5.8 to 1.5.14 for: http://adscvc.com/media/system/js/caption.js
Joomla Version 1.5.14 for: http://adscvc.com/language/en-GB/en-GB.ini
Joomla version outdated: Upgrade required.
Outdated Joomla Found: Joomla under 2.5.28 or 3.4.3

Joomla Version
1.5
Found in META Generator Tag

Joomla Modules, Components and Plugins
The following modules were detected from the HTML source of the Joomla front page.
mod_jaslideshow2
mod_janews

The following plugins were detected from the HTML source of the Joomla front page.
ja_tabs

See DOM XSS vuln in second script: http://www.domxssscanner.com/scan?url=http%3A%2F%2Fadscvc.com%2Fplugins%2Fcontent%2Fja_tabs%2Fja_tabs.js

Results from scanning URL: //cdn2.editmysite.com/js/site/main.js?buildTime=1389395857
Number of sources found: 38
Number of sinks found: 21
And spam web rep status: https://www.mywot.com/en/scorecard/cdn2.editmysite.com?utm_source=addon&utm_content=rw-viewsc

polonus