Website is flagged by Unmasked Parasites: http://www.unmaskparasites.com/web-page-options/?url=http%3A//villeroyandboch.org&susp=1
Site plug-in infected by AddToAny Plugin Share Buttons by Lokertz,
See image attached:
Reported to virus At avast dot com,
polonus
The exploit AddToAny uses is very wordpress, if my assumption that wp means wordpress is correct.1
As for the AddToAny javascript, its algorithized method is hard to understand, since it is over 1,500 lines and the variables keep changing.2 :-\
Hi !Donovan,
Well the script is flagged with Google Safebrowsing as long suspicious script, also because of the place where it was found, e.g. outside the page footer, and that is why it was also flagged as suspicous at the Virus Watch list and given as “unknown html malware”.
But going here: http://share.lockerz.com/buttons/customize/asynchronous_loading I think the unmasked parasites flag is a false positive for what seems a quite normal social sites sharing button. Whether you like to have this or consider this as a form of adware is an additional contenplation, but that does not make it malicious perse!
So as I observed just somewhat earlier also where Unmasked Parasites/Zulu Zscaler flagged script is concerned all obfuscation or inline scripts are not suspicious as such and could well be benign for that reason. So de-obfuscate and check the purposes of the de-obfuscated script. As was demonstrated here. Thanks for helping me to come to these conclusions. Some more insight gained,
polonus