Säkrare hemsida med .sehttp://prpellerheads.se/ (103.224.212.191) - Serp-hijackingAttacked url: http://prpellerheads.se/<br>Attack type: SERP-hijacking (see http://ikyon.com/attack-types/ for description)<br>Attack detected Wed, 21 Jun 2017 00:31:38 +0200<br><br>Visitors with referer are redirected to http://bidr.trellian.com/r2.php?e=cF8L0S4UvzZFbF2sJTBoT3OnBIzJNWcRE2%2Byq3Sn0scxs3%2F5KmCsVnl7PUBYsGhh99ZZQ%2BGmi1oHV5TeLSa%2FlQL5CfEs0Na4wYgVTmc8sKZQl4WorCFwZizk41TkToEXU%2BXTGpVmphoGZOuCbBW41PYjE3Pk4Wh1eWBrp04dvh1h%2FYGG72kjv1%2BjXeWiFSzWzEW8CYyoReZ3b2BQXKbSvGkPY2i%2BZSkInl9loHBYe5ViJNaYOl5KNT6owZ%2B4ajM6jBr7k0EuDK5v3m44Us5vs8xMEFAwixgvkaowSW63kUVb0IMLMnSoXHQ23RgCbbqrd35SA1NNqSE9J07HMQJ%2Fi1L%2B76P9xVODxWdLxWNBVBatJGS%2FRZfP9z3Le5IbG8l6ulL8YP%2FGR9hva3ygtabYbWumd%2BG57oLtGTlXu%2FtF9jcFVi1qTdo28LI20vuLUQbxwJDufwrkvQRNjN1IGE4JHJSrTb%2B00uoqHOaBC%2Fb2Hv00ygo768QyVeEFKzt4DiQ%2BUuTcyRHNSpHvEApQu2UP%2BXvRYDQicIA5x65OF6jPwD%2FMy8g2fc9zsJZWjmM9uQ1iE8mzQHStT2c%3D <br><br>HTTP traffic without referer:<br>HTTP headers sent:<br>HEAD / HTTP/1.1 <br>Host: prpellerheads.se <br>Connection: Close <br> <br>HTTP headers recieved:<br>HTTP/1.1 302 Found <br>Date: Tue, 20 Jun 2017 22:31:39 GMT <br>Server: Apache <br>X-Powered-By: PHP/5.4.45-0+deb7u8 <br>Set-Cookie: __tad=1497997899.3491548; expires=Fri, 18-Jun-2027 22:31:39 GMT <br>Location: http://ww11.prpellerheads.se/ <br>Connection: close <br>Content-Type: text/html; charset=UTF-8 <br> <br><br>HTTP traffic with referer:<br>HTTP headers sent:<br>HEAD / HTTP/1.1 <br>Host: prpellerheads.se <br>Referer: http://www.google.com/search?q=prpellerheads.se <br>Connection: Close <br> <br>HTTP headers recieved:<br>HTTP/1.1 302 Found <br>Date: Tue, 20 Jun 2017 22:31:38 GMT <br>Server: Apache <br>X-Powered-By: PHP/5.6.30-0+deb8u1 <br>Set-Cookie: __tad=1497997898.7315708; expires=Fri, 18-Jun-2027 22:31:38 GMT; Max-Age=315360000 <br>Location: http://bidr.trellian.com/r2.php?e=cF8L0S4UvzZFbF2sJTBoT3OnBIzJNWcRE2%2Byq3Sn0scxs3%2F5KmCsVnl7PUBYsGhh99ZZQ%2BGmi1oHV5TeLSa%2FlQL5CfEs0Na4wYgVTmc8sKZQl4WorCFwZizk41TkToEXU%2BXTGpVmphoGZOuCbBW41PYjE3Pk4Wh1eWBrp04dvh1h%2FYGG72kjv1%2BjXeWiFSzWzEW8CYyoReZ3b2BQXKbSvGkPY2i%2BZSkInl9loHBYe5ViJNaYOl5KNT6owZ%2B4ajM6jBr7k0EuDK5v3m44Us5vs8xMEFAwixgvkaowSW63kUVb0IMLMnSoXHQ23RgCbbqrd35SA1NNqSE9J07HMQJ%2Fi1L%2B76P9xVODxWdLxWNBVBatJGS%2FRZfP9z3Le5IbG8l6ulL8YP%2FGR9hva3ygtabYbWumd%2BG57oLtGTlXu%2FtF9jcFVi1qTdo28LI20vuLUQbxwJDufwrkvQRNjN1IGE4JHJSrTb%2B00uoqHOaBC%2Fb2Hv00ygo768QyVeEFKzt4DiQ%2BUuTcyRHNSpHvEApQu2UP%2BXvRYDQicIA5x65OF6jPwD%2FMy8g2fc9zsJZWjmM9uQ1iE8mzQHStT2c%3D <br>Connection: close <br>Content-Type: text/html; charset=UTF-8<br><br>prpellerheads.se is on 103.224.212.191<br>ASN for 103.224.212.191: 133618<br>Abusix contact information: abuse@trellian.com (information only)<br>103.224.212.191 corresponds with lb-212-191.above.com<br>Abuse.net does not have any reliable address for lb-212-191.above.com<br>Abuse address not found in whois.<br>Best guess from abuse.net: abuse@above.com abuse@lb-212-191.above.com1498050154http://upplyssningen.se/ (103.224.212.191) - Serp-hijackingAttacked url: http://upplyssningen.se/<br>Attack type: SERP-hijacking (see http://ikyon.com/attack-types/ for description)<br>Attack detected Tue, 20 Jun 2017 19:48:51 +0200<br><br>Visitors with referer are redirected to http://bidr.trellian.com/r2.php?e=cF8L0S4UvzZFbF2sJTBoT3OnBIzJNWcRbV%2FSkcN5fQnrfGj%2BRB90xoQR3IoOE0jZmxT5QPwu%2Fha79YoLkOld7yXNdufbKurLhCDpYa3T%2BND4Vw7Boxg2v6BgDIOirsKg04GRJNk2VLSDveewjV2OKvPwFuhQHGeVbhYlrzesu3GGMqHJcK1v%2BGFe%2FuTJhSIALfwpkiHrQ9zd6mRi%2FfsZScT0CammeSdN2LHQ2u96NROuAv%2BgtVGp42p6U8srxTpkgAbrVjiA42HQ%2F0Ic0kNEu6jCWuSS2NXrdk3RNQJKF7d6qcuic%2FIeS6f75XGhoBliKcGH5yDM4BCIcI8AO3JXaZmJ67sTaC9dafe8ZU0Qy5h260tB6fg55Wh%2FLZo3fxxvWhVsCdHhQc0Ofwl8hMfXZu7cOO9rewMdrYmSMxf28CdZrxzuH0xYnTN6V%2FoI8AVVhrE0bXyvgkFUEIfhTLM6zVg2JSqHhYYg3pm5GtqgZtERjh88%2F%2BOiKCLnU4rwL2Z58iNgpiakNW%2FEoVAUlM0uSZTJ5Ojpqy9h3xbesCxhLN8Hz8SKgoaPJzToWyBLF7Eh <br><br>HTTP traffic without referer:<br>HTTP headers sent:<br>HEAD / HTTP/1.1 <br>Host: upplyssningen.se <br>Connection: Close <br> <br>HTTP headers recieved:<br>HTTP/1.1 302 Found <br>Date: Tue, 20 Jun 2017 17:48:51 GMT <br>Server: Apache <br>X-Powered-By: PHP/5.6.30-0+deb8u1 <br>Set-Cookie: __tad=1497980931.8484170; expires=Fri, 18-Jun-2027 17:48:51 GMT; Max-Age=315360000 <br>Location: http://ww11.upplyssningen.se/ <br>Connection: close <br>Content-Type: text/html; charset=UTF-8 <br> <br><br>HTTP traffic with referer:<br>HTTP headers sent:<br>HEAD / HTTP/1.1 <br>Host: upplyssningen.se <br>Referer: http://www.google.com/search?q=upplyssningen.se <br>Connection: Close <br> <br>HTTP headers recieved:<br>HTTP/1.1 302 Found <br>Date: Tue, 20 Jun 2017 17:48:50 GMT <br>Server: Apache <br>X-Powered-By: PHP/5.6.30-0+deb8u1 <br>Set-Cookie: __tad=1497980930.6636569; expires=Fri, 18-Jun-2027 17:48:50 GMT; Max-Age=315360000 <br>Location: http://bidr.trellian.com/r2.php?e=cF8L0S4UvzZFbF2sJTBoT3OnBIzJNWcRbV%2FSkcN5fQnrfGj%2BRB90xoQR3IoOE0jZmxT5QPwu%2Fha79YoLkOld7yXNdufbKurLhCDpYa3T%2BND4Vw7Boxg2v6BgDIOirsKg04GRJNk2VLSDveewjV2OKvPwFuhQHGeVbhYlrzesu3GGMqHJcK1v%2BGFe%2FuTJhSIALfwpkiHrQ9zd6mRi%2FfsZScT0CammeSdN2LHQ2u96NROuAv%2BgtVGp42p6U8srxTpkgAbrVjiA42HQ%2F0Ic0kNEu6jCWuSS2NXrdk3RNQJKF7d6qcuic%2FIeS6f75XGhoBliKcGH5yDM4BCIcI8AO3JXaZmJ67sTaC9dafe8ZU0Qy5h260tB6fg55Wh%2FLZo3fxxvWhVsCdHhQc0Ofwl8hMfXZu7cOO9rewMdrYmSMxf28CdZrxzuH0xYnTN6V%2FoI8AVVhrE0bXyvgkFUEIfhTLM6zVg2JSqHhYYg3pm5GtqgZtERjh88%2F%2BOiKCLnU4rwL2Z58iNgpiakNW%2FEoVAUlM0uSZTJ5Ojpqy9h3xbesCxhLN8Hz8SKgoaPJzToWyBLF7Eh <br>Connection: close <br>Content-Type: text/html; charset=UTF-8<br><br>upplyssningen.se is on 103.224.212.191<br>ASN for 103.224.212.191: 133618<br>Abusix contact information: abuse@trellian.com (information only)<br>103.224.212.191 corresponds with lb-212-191.above.com<br>Abuse.net does not have any reliable address for lb-212-191.above.com<br>Abuse address not found in whois.<br>Best guess from abuse.net: abuse@lb-212-191.above.com abuse@above.com1498049969http://ifmetallakassa.se/ (103.224.212.191) - Serp-hijackingAttacked url: http://ifmetallakassa.se/<br>Attack type: SERP-hijacking (see http://ikyon.com/attack-types/ for description)<br>Attack detected Tue, 20 Jun 2017 05:01:25 +0200<br><br>Visitors with referer are redirected to http://bidr.trellian.com/r2.php?e=cF8L0S4UvzZFbF2sJTBoT4XKo%2Fgxkdz1ZjM7aoRp8SSztnYuEPHsm22fFTf1KMZ9gkjmlneMP5W5yQtmPaKG%2BekAiU33k4y4eU3PcUvQbVaiuRbBRT2cFe3GiWsnXt1r%2BilVn0cmUBp8nBRia0Mz6bT8mbMweTyIvMKqytP4ScuVAHXtMUBUgKnAJ0PH6e46jqueyqVCJkaP9MZQ86asCIrsdnsMFDSJnmRF0NwXU49r%2FL%2FdtUco4WFjJqcUF5ZiXTqUr7Tv7x3YxctpbzoCwoiwGQRKnAHqPaGFpoqBwHfH1RVl5J4zUz6FoatZUrx9AfZiouRFvkeTMCa5q%2FI221WyvH7yL9zQ84iLAsQsTmc%2Fx1WW%2BSB3SKQqOzEqH2OlYK6kALKzpuSmg0nWT%2F0bBESILo3ak%2FSmeFOZR9sDN%2Bz%2BvjFBFrZUArjocr1PrxnbxykpNLcxRkIjuwHYMiTvLlEiEtw21t9Y47Z5ZeNKnG8Hyl64KArcDBSjsBwTMbGrUoLvH8o5JNi%2BuSeU6zrVHb1r2POfN2u1prQf1Jzqay1Xe5bGs4%2FKZ54Nu%2B43t7wm <br><br>HTTP traffic without referer:<br>HTTP headers sent:<br>HEAD / HTTP/1.1 <br>Host: ifmetallakassa.se <br>Connection: Close <br> <br>HTTP headers recieved:<br>HTTP/1.1 302 Found <br>Date: Tue, 20 Jun 2017 03:01:26 GMT <br>Server: Apache <br>X-Powered-By: PHP/5.4.45-0+deb7u8 <br>Set-Cookie: __tad=1497927686.3997423; expires=Fri, 18-Jun-2027 03:01:26 GMT <br>Location: http://ww38.ifmetallakassa.se/ <br>Connection: close <br>Content-Type: text/html; charset=UTF-8 <br> <br><br>HTTP traffic with referer:<br>HTTP headers sent:<br>HEAD / HTTP/1.1 <br>Host: ifmetallakassa.se <br>Referer: http://www.google.com/search?q=ifmetallakassa.se <br>Connection: Close <br> <br>HTTP headers recieved:<br>HTTP/1.1 302 Found <br>Date: Tue, 20 Jun 2017 03:01:25 GMT <br>Server: Apache <br>X-Powered-By: PHP/5.6.30-0+deb8u1 <br>Set-Cookie: __tad=1497927685.5615534; expires=Fri, 18-Jun-2027 03:01:25 GMT; Max-Age=315360000 <br>Location: http://bidr.trellian.com/r2.php?e=cF8L0S4UvzZFbF2sJTBoT4XKo%2Fgxkdz1ZjM7aoRp8SSztnYuEPHsm22fFTf1KMZ9gkjmlneMP5W5yQtmPaKG%2BekAiU33k4y4eU3PcUvQbVaiuRbBRT2cFe3GiWsnXt1r%2BilVn0cmUBp8nBRia0Mz6bT8mbMweTyIvMKqytP4ScuVAHXtMUBUgKnAJ0PH6e46jqueyqVCJkaP9MZQ86asCIrsdnsMFDSJnmRF0NwXU49r%2FL%2FdtUco4WFjJqcUF5ZiXTqUr7Tv7x3YxctpbzoCwoiwGQRKnAHqPaGFpoqBwHfH1RVl5J4zUz6FoatZUrx9AfZiouRFvkeTMCa5q%2FI221WyvH7yL9zQ84iLAsQsTmc%2Fx1WW%2BSB3SKQqOzEqH2OlYK6kALKzpuSmg0nWT%2F0bBESILo3ak%2FSmeFOZR9sDN%2Bz%2BvjFBFrZUArjocr1PrxnbxykpNLcxRkIjuwHYMiTvLlEiEtw21t9Y47Z5ZeNKnG8Hyl64KArcDBSjsBwTMbGrUoLvH8o5JNi%2BuSeU6zrVHb1r2POfN2u1prQf1Jzqay1Xe5bGs4%2FKZ54Nu%2B43t7wm <br>Connection: close <br>Content-Type: text/html; charset=UTF-8<br><br>ifmetallakassa.se is on 103.224.212.191<br>ASN for 103.224.212.191: 133618<br>Abusix contact information: abuse@trellian.com (information only)<br>103.224.212.191 corresponds with lb-212-191.above.com<br>Abuse.net does not have any reliable address for lb-212-191.above.com<br>Abuse address not found in whois.<br>Best guess from abuse.net: abuse@above.com abuse@lb-212-191.above.com1497971104http://swefilmers.se/ (103.224.212.191) - Serp-hijackingAttacked url: http://swefilmers.se/<br>Attack type: SERP-hijacking (see http://ikyon.com/attack-types/ for description)<br>Attack detected Sun, 18 Jun 2017 21:37:30 +0200<br><br>Visitors with referer are redirected to http://bidr.trellian.com/r2.php?e=cF8L0S4UvzZFbF2sJTBoT9c2HXXKlhVj2qNfgiOy%2BYdsEPPuQSwitKzsFjtfJOhLX5r7S0b%2BG7ayqLn9onlEhdesdpL%2Bc1Mrkf8LGeTfUQ3OOaRhWWTg93WBWl72zWDqEv1guIFH5P%2BgOuSPuWMv0he9GYJxgc5kfSkw3roupOykaY9TSI06NnRYYuRuqiJtTglU82JKK4EkRsWtX4%2F5%2BEDINpCueue7JnXqeZJ3fsmqpRAyJ3CUiE7l97iSIzwtfi38%2FGtdkxoUreM7qJmLJ5K%2FQGFOncUevEvjUxA0gDfoh8PJPai%2BGDes%2BW52L3TtSEn3z4v7XB0Vc5aXplJa%2BQOleOIQO0CKQOV4%2B%2BoTc4ao5osUZM1vzvR8ijmfwEVj8KSl5qUQZNns8%2BCV116LlGCiN3GuGP86IuR0H85LSLH3gwdo3bMsHUDc%2BbiRyW9zKpcVzeNxNRJY76hGixfO2aRIDgp7pQibzHhsl59ZqilEujuKgEyU3NB04sWAg1KHyeZRok12aRWdE98dBs5j19kxJsg2YV1AoH0xdjffWbZrTeM%2Bp6ONiA%3D%3D <br><br>HTTP traffic without referer:<br>HTTP headers sent:<br>HEAD / HTTP/1.1 <br>Host: swefilmers.se <br>Connection: Close <br> <br>HTTP headers recieved:<br>HTTP/1.1 302 Found <br>Date: Sun, 18 Jun 2017 19:37:30 GMT <br>Server: Apache <br>X-Powered-By: PHP/5.4.45-0+deb7u8 <br>Set-Cookie: __tad=1497814650.7859357; expires=Wed, 16-Jun-2027 19:37:30 GMT <br>Location: http://ww11.swefilmers.se/ <br>Connection: close <br>Content-Type: text/html; charset=UTF-8 <br> <br><br>HTTP traffic with referer:<br>HTTP headers sent:<br>HEAD / HTTP/1.1 <br>Host: swefilmers.se <br>Referer: http://www.google.com/search?q=swefilmers.se <br>Connection: Close <br> <br>HTTP headers recieved:<br>HTTP/1.1 302 Found <br>Date: Sun, 18 Jun 2017 19:37:29 GMT <br>Server: Apache <br>X-Powered-By: PHP/5.6.30-0+deb8u1 <br>Set-Cookie: __tad=1497814649.5195256; expires=Wed, 16-Jun-2027 19:37:29 GMT; Max-Age=315360000 <br>Location: http://bidr.trellian.com/r2.php?e=cF8L0S4UvzZFbF2sJTBoT9c2HXXKlhVj2qNfgiOy%2BYdsEPPuQSwitKzsFjtfJOhLX5r7S0b%2BG7ayqLn9onlEhdesdpL%2Bc1Mrkf8LGeTfUQ3OOaRhWWTg93WBWl72zWDqEv1guIFH5P%2BgOuSPuWMv0he9GYJxgc5kfSkw3roupOykaY9TSI06NnRYYuRuqiJtTglU82JKK4EkRsWtX4%2F5%2BEDINpCueue7JnXqeZJ3fsmqpRAyJ3CUiE7l97iSIzwtfi38%2FGtdkxoUreM7qJmLJ5K%2FQGFOncUevEvjUxA0gDfoh8PJPai%2BGDes%2BW52L3TtSEn3z4v7XB0Vc5aXplJa%2BQOleOIQO0CKQOV4%2B%2BoTc4ao5osUZM1vzvR8ijmfwEVj8KSl5qUQZNns8%2BCV116LlGCiN3GuGP86IuR0H85LSLH3gwdo3bMsHUDc%2BbiRyW9zKpcVzeNxNRJY76hGixfO2aRIDgp7pQibzHhsl59ZqilEujuKgEyU3NB04sWAg1KHyeZRok12aRWdE98dBs5j19kxJsg2YV1AoH0xdjffWbZrTeM%2Bp6ONiA%3D%3D <br>Connection: close <br>Content-Type: text/html; charset=UTF-8<br><br>swefilmers.se is on 103.224.212.191<br>ASN for 103.224.212.191: 133618<br>Abusix contact information: abuse@trellian.com (information only)<br>103.224.212.191 corresponds with lb-212-191.above.com<br>Abuse.net does not have any reliable address for lb-212-191.above.com<br>Abuse address not found in whois.<br>Best guess from abuse.net: abuse@above.com abuse@lb-212-191.above.com1497853506http://pricerunnere.se/ (103.224.212.191) - Serp-hijackingAttacked url: http://pricerunnere.se/<br>Attack type: SERP-hijacking (see http://ikyon.com/attack-types/ for description)<br>Attack detected Fri, 16 Jun 2017 09:54:41 +0200<br><br>Visitors with referer are redirected to http://bidr.trellian.com/r2.php?e=cF8L0S4UvzZFbF2sJTBoT1U1o%2BKUv4rfXH2IwEPeiz%2BHLr16nCdI96hxWGtUPzzGcvrvX6%2BxdyVT34D0fevQKUWSNa5QH32nrB9T31sa5lRTi%2B5ysEAMLsv%2FMUxZNOS9ntCGCGH93m%2FsLiUCsbO%2Bq01NArzJG78Dm4840O2XJPdkMVoO1bezr6P4aoqebfnIRFZjUwm8ebr1rFhf0If9EoI3NfRgZpronRx7TQAdiUlWYo9mF1pSP4i5mkx5bk4hAKgtaSjAeFQq4ArKkMYl1tzq%2B4o0luk1zbEmioP7VC3SxB%2FMdbIzvGAqK%2FjXe%2BWKONBya9YxeMd8HIwYTNm44sthF9Q8owZYxprTc7V7YkWXyShl8YkBh%2FIBgaHn%2F6VX5JSsILmsqRub01n6LGZBmC0b0vJ2cQzquh4RSFfS3UYpbKP81QQhsXWgTFWBYcLmY0UV3dFH0keInAhT3F9cmS7DMSQNhbvKhAEiRBftlNUEfZhzswx%2FyVCsMwy5AUUpGLfR%2BH%2BWxO6lj8Cb%2F3VcELAPzma5xLwj9IQSOiQeyyIxiK6kvAaGcRVP40y1jxgzLmUY7w7wz9o%3D <br><br>HTTP traffic without referer:<br>HTTP headers sent:<br>HEAD / HTTP/1.1 <br>Host: pricerunnere.se <br>Connection: Close <br> <br>HTTP headers recieved:<br>HTTP/1.1 302 Found <br>Date: Fri, 16 Jun 2017 07:54:41 GMT <br>Server: Apache <br>X-Powered-By: PHP/5.4.45-0+deb7u8 <br>Set-Cookie: __tad=1497599681.5624479; expires=Mon, 14-Jun-2027 07:54:41 GMT <br>Location: http://ww11.pricerunnere.se/ <br>Connection: close <br>Content-Type: text/html; charset=UTF-8 <br> <br><br>HTTP traffic with referer:<br>HTTP headers sent:<br>HEAD / HTTP/1.1 <br>Host: pricerunnere.se <br>Referer: http://www.google.com/search?q=pricerunnere.se <br>Connection: Close <br> <br>HTTP headers recieved:<br>HTTP/1.1 302 Found <br>Date: Fri, 16 Jun 2017 07:54:40 GMT <br>Server: Apache <br>X-Powered-By: PHP/5.4.45-0+deb7u8 <br>Set-Cookie: __tad=1497599680.8211206; expires=Mon, 14-Jun-2027 07:54:40 GMT <br>Location: http://bidr.trellian.com/r2.php?e=cF8L0S4UvzZFbF2sJTBoT1U1o%2BKUv4rfXH2IwEPeiz%2BHLr16nCdI96hxWGtUPzzGcvrvX6%2BxdyVT34D0fevQKUWSNa5QH32nrB9T31sa5lRTi%2B5ysEAMLsv%2FMUxZNOS9ntCGCGH93m%2FsLiUCsbO%2Bq01NArzJG78Dm4840O2XJPdkMVoO1bezr6P4aoqebfnIRFZjUwm8ebr1rFhf0If9EoI3NfRgZpronRx7TQAdiUlWYo9mF1pSP4i5mkx5bk4hAKgtaSjAeFQq4ArKkMYl1tzq%2B4o0luk1zbEmioP7VC3SxB%2FMdbIzvGAqK%2FjXe%2BWKONBya9YxeMd8HIwYTNm44sthF9Q8owZYxprTc7V7YkWXyShl8YkBh%2FIBgaHn%2F6VX5JSsILmsqRub01n6LGZBmC0b0vJ2cQzquh4RSFfS3UYpbKP81QQhsXWgTFWBYcLmY0UV3dFH0keInAhT3F9cmS7DMSQNhbvKhAEiRBftlNUEfZhzswx%2FyVCsMwy5AUUpGLfR%2BH%2BWxO6lj8Cb%2F3VcELAPzma5xLwj9IQSOiQeyyIxiK6kvAaGcRVP40y1jxgzLmUY7w7wz9o%3D <br>Connection: close <br>Content-Type: text/html; charset=UTF-8<br><br>pricerunnere.se is on 103.224.212.191<br>ASN for 103.224.212.191: 133618<br>Abusix contact information: abuse@trellian.com (information only)<br>103.224.212.191 corresponds with lb-212-191.above.com<br>Abuse.net does not have any reliable address for lb-212-191.above.com<br>Abuse address not found in whois.<br>Best guess from abuse.net: abuse@above.com abuse@lb-212-191.above.com1497625709http://nordencamping.se/ (103.224.212.191) - Serp-hijackingAttacked url: http://nordencamping.se/<br>Attack type: SERP-hijacking (see http://ikyon.com/attack-types/ for description)<br>Attack detected Thu, 15 Jun 2017 17:21:16 +0200<br><br>Visitors with referer are redirected to http://bidr.trellian.com/r2.php?e=cF8L0S4UvzZFbF2sJTBoT1U1o%2BKUv4rfJ6fWKAJy5hAi8VeEKBge5CrwaDxFRyn9aLgjYyV8YuqplGDxWLJCc%2Bp63FdO%2BZ3C4o2jYT%2FQ0fz3CyHXaMkAQj2LOk0iYYjBDC7Hk5%2F3Z1dOQHp48EtLUlA0vj6LH8D40OpF6oQ71MCeHLyNxqDuA77IOSVe%2BJy2m7eFjcJF6bf0NGWzUebB45lwQRsITzbXQimcMwXjMON6KvfTGmJt%2F%2F41cCzDJG%2FHCeTSnYewbbRM%2BXObRfVkip%2F%2Bk%2BppCsP39v37VoB3%2BwfhDSCq9ox%2BZpwzE%2B773zhAnJ2BAuvS1BnlFx0F%2F3D8O48BcpGcxMgwiaS7kgRSsrNKP21J7SYLtCoCEBpC5HmbWSZ9M9oQJWQGyL%2FuCYaxClgbAzsqbWvjmoemHueglE2XlYD30QDunLL%2BjoN%2BpNfRPsi5%2FhlDkb%2FIgW4iDw4pNE9OuQd9TV%2Bh3Se%2FC1ORAu3KBdwx9bM03UIWw4KB22XZ8wBuJViL4oGqdXMBIQGXIEMd7dloDo19XMHAbctyh%2F9Kzi4c6FXFpgsK9YcB5t%2BB%2BSX9Qlu21zg%3D <br><br>HTTP traffic without referer:<br>HTTP headers sent:<br>HEAD / HTTP/1.1 <br>Host: nordencamping.se <br>Connection: Close <br> <br>HTTP headers recieved:<br>HTTP/1.1 302 Found <br>Date: Thu, 15 Jun 2017 15:21:16 GMT <br>Server: Apache <br>X-Powered-By: PHP/5.4.45-0+deb7u8 <br>Set-Cookie: __tad=1497540076.1806771; expires=Sun, 13-Jun-2027 15:21:16 GMT <br>Location: http://ww11.nordencamping.se/ <br>Connection: close <br>Content-Type: text/html; charset=UTF-8 <br> <br><br>HTTP traffic with referer:<br>HTTP headers sent:<br>HEAD / HTTP/1.1 <br>Host: nordencamping.se <br>Referer: http://www.google.com/search?q=nordencamping.se <br>Connection: Close <br> <br>HTTP headers recieved:<br>HTTP/1.1 302 Found <br>Date: Thu, 15 Jun 2017 15:21:15 GMT <br>Server: Apache <br>X-Powered-By: PHP/5.4.45-0+deb7u8 <br>Set-Cookie: __tad=1497540076.7974564; expires=Sun, 13-Jun-2027 15:21:16 GMT <br>Location: http://bidr.trellian.com/r2.php?e=cF8L0S4UvzZFbF2sJTBoT1U1o%2BKUv4rfJ6fWKAJy5hAi8VeEKBge5CrwaDxFRyn9aLgjYyV8YuqplGDxWLJCc%2Bp63FdO%2BZ3C4o2jYT%2FQ0fz3CyHXaMkAQj2LOk0iYYjBDC7Hk5%2F3Z1dOQHp48EtLUlA0vj6LH8D40OpF6oQ71MCeHLyNxqDuA77IOSVe%2BJy2m7eFjcJF6bf0NGWzUebB45lwQRsITzbXQimcMwXjMON6KvfTGmJt%2F%2F41cCzDJG%2FHCeTSnYewbbRM%2BXObRfVkip%2F%2Bk%2BppCsP39v37VoB3%2BwfhDSCq9ox%2BZpwzE%2B773zhAnJ2BAuvS1BnlFx0F%2F3D8O48BcpGcxMgwiaS7kgRSsrNKP21J7SYLtCoCEBpC5HmbWSZ9M9oQJWQGyL%2FuCYaxClgbAzsqbWvjmoemHueglE2XlYD30QDunLL%2BjoN%2BpNfRPsi5%2FhlDkb%2FIgW4iDw4pNE9OuQd9TV%2Bh3Se%2FC1ORAu3KBdwx9bM03UIWw4KB22XZ8wBuJViL4oGqdXMBIQGXIEMd7dloDo19XMHAbctyh%2F9Kzi4c6FXFpgsK9YcB5t%2BB%2BSX9Qlu21zg%3D <br>Connection: close <br>Content-Type: text/html; charset=UTF-8<br><br>nordencamping.se is on 103.224.212.191<br>ASN for 103.224.212.191: 133618<br>Abusix contact information: abuse@trellian.com (information only)<br>103.224.212.191 corresponds with lb-212-191.above.com<br>Abuse.net does not have any reliable address for lb-212-191.above.com<br>Abuse address not found in whois.<br>Best guess from abuse.net: abuse@above.com abuse@lb-212-191.above.com1497624889