Do you know what hXtp://wonder.tempors.com is? Your site references it.
Other sites with the same situation have a hidden iframe of it, so I’d assume malicious.
~!Donovan