See: http://killmalware.com/motel-rubin.ru/# 508 sites with such a conditional redirect.
Detected suspicious redirection to external web resources at HTTP level.
Final URL after redirect: htxp://tatkuchma.com/components/com_weblinks/2/separator.php
Also infested: http://sitecheck.sucuri.net/results/tatkuchma.com
Web application version:
Joomla Version 1.5.8 to 1.5.14 for: htxp://tatkuchma.com/media/system/js/caption.js
Joomla Version 1.5.2 to 1.5.7 for: htxp://tatkuchma.com/language/en-GB/en-GB.ini
Joomla version outdated: Upgrade required.
Outdated Joomla Found: Joomla under 2.5.26 or 3.3.5
Outdated Web Server Nginx Found: nginx/1.4.4
Serious insecurities in header configuration:
Security Headers for htxp://motel-rubin.ru
Using user-agent for IE 9.0-Win7 64-bit
Result Category Name Actual Value Our Recommendation Show All Details
Missing Framing X-Frame-Options Use ‘sameorigin’
Missing Transport Strict-Transport-Security Use ‘max-age=31536000; includeSubDomains’
Missing Content X-Content-Type-Options Use ‘nosniff’
Correct Content Content-Type text/html; charset=utf-8 Use ‘text/html;charset=utf-8’
Missing XSS X-XSS-Protection Use ‘1; mode=block’
Warning Cookies Set-Cookie 9049055fb8f7380d3551…0r8f13dkbni2; path=/ Add ‘secure; httponly;’
Warning Caching Cache-Control no-cache Add ‘no-store, must-revalidate’
Correct Caching Pragma no-cache Use ‘no-cache’
Missing Caching Expires Use ‘-1’
Missing Access Control X-Permitted-Cross-Domain-Policies Use ‘master-only’
Missing Content Security Policy Content-Security-Policy Try Content-Security-Policy-Report-Only to start. Include default-src ‘self’, avoid ‘unsafe-inline’ and ‘unsafe-eval’
Warning Server Information Server Microsoft-IIS/8.5 Avoid version numbers
Warning Server Information X-Powered-By PHP/5.4.24 Avoid header
Warning Server Information X-Powered-By ASP.NET Avoid header
Warning Privacy P3P CP=“NOI ADM DEV PSAi…UR OTRo STP IND DEM” Remove obsolete header
IP blacklisted three times: http://www.ip-finder.me/91.149.157.142/
hoster badness history: http://sitevet.com/db/asn/AS43146
pol