ASP NET site with SE visitors redirects....

See: http://killmalware.com/kahramanas.com/
See: https://www.virustotal.com/en/url/39e4a6a625f6365799350ce029521eb06dec2ec606aafbebbdc0d50812c8d743/analysis/#additional-info
index
Severity: Suspicious
Reason: Detected suspicious redirection to external web resources at HTTP level.
Details: Detected HTTP redirection to -http://www.obd4sale.com.
-http://kahramanas.com
Detected libraries:
jquery - 1.2.6 : -http://kahramanas.com/fcs/js/jquery-1.2.6.min.js
Info: Severity: medium
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4969
http://research.insecurelabs.org/jquery/test/
Info: Severity: medium
http://bugs.jquery.com/ticket/11290
http://research.insecurelabs.org/jquery/test/
1 vulnerable library detected

Fail and two warnings: https://asafaweb.com/Scan?Url=kahramanas.com

pol

Avast has nothing to say on the site…

And nice clickjacking, nice for phishing attempts.

Hi Steven Winderlich,

You get it even nicer spelled out while observing the scan results here: http://www.isithacked.com/check/http%3A%2F%2Fkahramanas.com

There is a difference of 307259 bytes between the version of the page you serve to Chrome and the version you serve to GoogleBot. This probably means some code is running on your site that’s trying to hide from browsers but make Google think there’s something else on the page

Spammy looking links
Any links with funky anchor text? Yes there are. I won’t repeat them here, I will not like to spread pharma-spam onto these here forums. Look at the scan results to see these 4 spammy links.

And finally: iframes
Any iframes? Yes there are. show.

Just a note, social media buttons often show up here, if so they often are OK.

pol