See: https://www.virustotal.com/nl/url/d127a9f00f651805d67e8a00451f3b6c1151eb43bfefb9c856cb1a5c22ce9c6c/analysis/1438085171/ (no detections)
Detected here: http://killmalware.com/tr-japan.net/# (kind of speciality of this scanner - the preferred scanner to find up defacements and SE redirects).
System Details:
Running on: Apache/2.2.29
Powered by: PHP/5.3.3-7.7+hw2
Web application details:
Application: WordPress 4.1.6 - http://www.wordpress.org
Web application version:
WordPress version: WordPress 4.1.6
WordPress theme: htxp://www.reddeerhotyoga.ca/wp-content/themes/typominima/
Wordpress internal path: -/home/nas1r0/03/03/8200303/web/wp-content/themes/typominima/index.php
WordPress version outdated: Upgrade required.
Outdated WordPress Found: WordPress Under 4.2
Outdated plug-in: WordPress Plugins
The following plugins were detected by reading the HTML source of the WordPress sites front page.
contact-form-7 4.1 latest release (4.2.1) Update required
http://contactform7.com/
The theme has been found by examining the path /wp-content/themes/ theme name /
Typominima 1.0
Warning User Enumeration is possible
The first two user ID’s were tested to determine if user enumeration is possible.
User ID 1 : admin
User ID 2 : jasondiep
It is recommended to rename the admin user account to reduce the chance of brute force attacks occurring. As this will reduce the chance of automated password attackers gaining access. However it is important to understand that if the author archives are enabled it is usually possible to enumerate all users within a WordPress installation.
Quttera also missed detection, but Sucuri has it in full detail:
ISSUE DETECTED DEFINITION INFECTED URL
Website Malware MW:HTA:7 htxp://reddeerhotyoga.ca/aeed.html?h=1003251 ( View Payload )
Website Malware MW:HTA:7 htxp://reddeerhotyoga.ca/aeed.html?h=1354881 ( View Payload )
Website Malware MW:HTA:7 htxp://reddeerhotyoga.ca/aeed.html?h=1394094 ( View Payload )
Domain detected on spam or phishing campaigns. Details: http://sucuri.net/malware/entry/MW:HTA:7
This specific URL was identified in malicious campaigns to disseminate malware.
See: https://www.virustotal.com/nl/ip-address/64.40.126.64/information/
See: https://www.virustotal.com/nl/url/4ec89c1da885e0e033883fae059c067de45414739dc8635405aeee16b3da4a1b/analysis/
A known infection source also detected by DrWeb URL checker as such.
XSS DOM sinks and sources detected: http://www.domxssscanner.com/scan?url=http%3A%2F%2Fwww.reddeerhotyoga.ca%2F
and consider: http://www.domxssscanner.com/scan?url=http%3A%2F%2Ftr-japan.net
polonus (volunteer website security analyst and website error-hunter)