See: http://www.domxssscanner.com/scan?url=http%3A%2F%2Fdomain.dot.tk%2Fp%2F%3Fd%3DPOFIGUTOS.ML%26i%3D173.255.233.124%26c%3D1%26ro%3D0%26ref%3Dhttp%253A%252F%252Fsucuri.net%26_%3D1445956813031

where this came from? Re: https://sitecheck.sucuri.net/results/pofigutos.ml Compromised website.

Server vuln.: http://nginx.org/en/security_advisories.html
index.html
Severity: Potentially Suspicious
Reason: Detected unconditional redirection to external web resource.
Details:

Threat dump MD5: 6F246CD7BE2218D6CCB65939E71F55F6
File size[byte]: 654
File type: HTML
Page/File MD5: 2319636EBDB5E183B3000BE9C865FFB5
Scan duration[sec]: 0.044000

polonus