There is currently some sort of injection attack against WordPress sites that is injected code into the site's .js files. Not so unusual.. except that the payload site in the file changes every half hour or so.
more here.........http://blog.dynamoo.com/2014/09/malicious-wordpress-injection-sending.html
more here.........http://blog.dynamoo.com/2014/09/malicious-wordpress-injection-sending.html