Do you know what hXtp://wonder.tempors.com is? Your site references it.

Other sites with the same situation have a hidden iframe of it, so I’d assume malicious.

~!Donovan