Yes content plug-ins should always be checked as every input should be,
as it can have been grossly modified → http://y6cb.stjohnsrc.net/wp-content/plugins/calendar-press/js/overlib/Mini/overlib_mini.js
for malcode consider: http://about-threats.trendmicro.com/Search.aspx?p=MINI-1&language=au

pol