DavidR
13
This is the complete script tag (on your home page) which is outside of the closing HTML tag (generally suspicious as it isn’t standards compliant), see image, click to expand. This is the one that UnmaskParasites is suspicious about.
Now avast isn’t alerting on that page with firefox 6.0 and NoScript (but allowed on that page). I also use RequestPolicy (protects against cross site scripting) and I see lots of scripts for other sites (image2) one of which is just an IP address and that always makes me twitch. I hate things masked in this way, and this IP is In Russia, see image3. Does this ring any bells ?