Two kind of malcode - mw-redir-fakeav533 & MW:HTA:7 "*

See: http://sitecheck.sucuri.net/results/janiro.si
and here: http://killmalware.com/janiro.si/
SE visitors redirects
Visitors from search engines are redirected
to: htxp://penetrateperil.ru/restyle?8
97 sites infected with redirects to this URL

"*This attack uses the .htaccess file to redirect users to a site serving malware (or spam). In some cases, the index.php is also modified to do the redirection as well.

One of the 20 biggest redirectors: http://belsec.skynetblogs.be/archive/2012/10/31/why-it-does-make-still-sense-to-block-ru-if-you-don-t-need-i.html
See: http://www.unmaskparasites.com/security-report/?page=janiro.si

pol

nopeā€¦
https://www.metascan-online.com/en/scanresult/file/8f5bbad442c84a979361188b099e69f9
https://www.virustotal.com/nb/file/e2bcd4ebf612a868fc396e3249c3230bb0341a4f542f36afae934769cbf949f2/analysis/1416333215/

and the redirect site seems to be down http://www.downforeveryoneorjustme.com/http://penetrateperil.ru/restyle?8

Could well be, Pondus as the last known redirect was on 2014-06-05, see: http://evuln.com/labs/redirect/penetrateperil.ru/
No longer registered domain: http://whois.domaintools.com/penetrateperil.ru
Address is blocked by Google SafeWeb: htxp://penetrateperil.ru/
http://toolbar.netcraft.com/site_report/?url=http%3A%2F%2Fpenetrateperil.ru%2F
risk 10 out of 10 red!
Historical WOT rep: https://www.mywot.com/en/scorecard/penetrateperil.ru?utm_source=addon&utm_content=contextmenu

pol