Trojan.Generic.1389340 (B) on website...

See: http://killmalware.com/coyoteugly.ru/#
See: https://www.virustotal.com/en/url/790ba205133ecabdad9f01e200732e22d5d24fb6f7b3015b9741f4a2a43d52ac/analysis/#additional-info (none detect here…)

WP issues: Web application version:
WordPress version: WordPress 4.3.2
Wordpress version from source: 4.3.2
Wordpress Version 4.1 based on: -http://coyoteugly.ru/wp-includes/js/autosave.js
WordPress theme: -http://coyoteugly.ru/wp-content/themes/coyoteugly/
Wordpress internal path: /var/www/u0108123/data/www/coyoteugly.ru/wp-content/themes/coyoteugly/index.php

WordPress Version
4.3.2
Version does not appear to be latest 4.4 - update now.

WordPress Plugins
The following plugins were detected by reading the HTML source of the WordPress sites front page.

photo-gallery 1.2.75 latest release (1.2.86) Update required
https://web-dorado.com/products/wordpress-photo-gallery-plugin.html
real3d-flipbook
contact-form-7 4.3.1 latest release (4.3.1)
http://contactform7.com/
scroll-back-to-top 1.1.4 latest release (1.1.3)
http://www.webtipblog.com/scroll-back-top-wordpress-plugin/

Warning User Enumeration is possible :o

Detected libraries:
jquery-mobile - 1.3.2 : -http://coyoteugly.ru/wp-content/plugins/photo-gallery/js/jquery.mobile.js?ver=1.2.75
jquery-migrate - 1.2.1 : -http://coyoteugly.ru/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
Info: Severity: medium
http://bugs.jquery.com/ticket/11290
http://research.insecurelabs.org/jquery/test/
jquery - 1.11.3 : (active1) -http://coyoteugly.ru/wp-includes/js/jquery/jquery.js?ver=1.11.3
jquery-mobile - 1.4.5 : -http://coyoteugly.ru/wp-content/themes/coyoteugly/js/jquery.mobile.custom.min.js?ver=4.3.2
(active) - the library was also found to be active by running code
1 vulnerable library detected

Malicious link: -http://coyoteugly.ru/wp-content/plugins/photo-gallery/js/jquery.fullscreen-0.4.1.js?ver=0.4.1

See: http://www.domxssscanner.com/scan?url=http%3A%2F%2Fcoyoteugly.ru%2Fwp-content%2Fplugins%2Fphoto-gallery%2Fjs%2Fjquery.fullscreen-0.4.1.js%3Fver%3D0.4.1

63% of the trackers on this site could be protecting you from NSA snooping. Tell coyoteugly.ru to fix it.

http://toolbar.netcraft.com/site_report?url=http://coyoteugly.ru

See: reports → https://cymon.io/37.140.192.213

polonus

This info is revealing for what could be wrong with javascript: http://www.moock.org/lectures/troublewithjs/

https://oscarotero.com/embed/demo/index.php?url=http%3A%2F%2Fcoyoteugly.ru%2Fwp-content%2Fplugins%2Fphoto-gallery%2Fjs%2Fjquery.fullscreen-0.4.1.js%3Fver%3D0.4.1&options[minImageWidth]=0&options[minImageHeight]=0&options[facebookAccessToken]=&options[embedlyKey]=&options[soundcloudClientId]=YOUR_CLIENT_ID&options[oembedParameters]=
Here they give it as probably harmless (file detection): https://www.virustotal.com/en/file/19e3bcd44b9c726bc12f4138ee4dece9f85487a7b54ea467f6444e323de2207f/analysis/1453450500/

polonus