Säkrare hemsida med .sehttp://custome.se/ (103.224.212.194) - Serp-hijackingAttacked url: http://custome.se/<br>Attack type: SERP-hijacking (see http://ikyon.com/attack-types/ for description)<br>Attack detected Wed, 21 Jun 2017 12:33:57 +0200<br><br>Visitors with referer are redirected to http://bidr.trellian.com/r2.php?e=cF8L0S4UvzZFbF2sJTBoT3OnBIzJNWcR%2BqbJJlwzrrKzgt4luon%2BNVV7nxgFthsJbp9OJ8q3yXBQiOqsMRpMsuI47GYTc8NHwPisnaLfO122qK1cZz69PBaUeaJ4uzNcitmOnHfs0%2BO5haOFwtA7sJQH4HgKmSyoHQmj6m5EZ3F3lmk5VeTK7wylvkNyOFdXObCUzWIpaSMNf1iI5Pg9IE9aZcUNK8Yah4%2BOYtrfwhXGC2ivxOOwPY9DPZ13TzTSPy5dP0Y%2FRaFCRjb56cw5ywaYtVs8jvpjJjcnI%2FvoIoiqa1uXMbC5EW8bSEUBMWWkQGMqwWDh2%2FerX8ShefP7ziRoHETp7rnQqVdTvDL%2BOVgNT%2BCPxVh6PnK4%2FQE5Y%2FP7Qc6zsmTMsnW1pfnxbcZELMXs0JCyhSE0RLjYNasW1tjb%2FKygEykpFAJwdQnXJmrLR36xgoNQMCLVJaqlF96b1iXtBVAdyiNjrStv6dQic%2BFTqoRws3AXkHaeY67kyEzKX9NQBAzmM7ofb3yfesvqRBDPXACDwNqeroGqozAak%2BY%3D <br><br>HTTP traffic without referer:<br>HTTP headers sent:<br>HEAD / HTTP/1.1 <br>Host: custome.se <br>Connection: Close <br> <br>HTTP headers recieved:<br>HTTP/1.1 302 Found <br>Date: Wed, 21 Jun 2017 10:33:58 GMT <br>Server: Apache <br>X-Powered-By: PHP/5.4.45-0+deb7u8 <br>Set-Cookie: __tad=1498041238.7405988; expires=Sat, 19-Jun-2027 10:33:58 GMT <br>Location: http://ww11.custome.se/ <br>Connection: close <br>Content-Type: text/html; charset=UTF-8 <br> <br><br>HTTP traffic with referer:<br>HTTP headers sent:<br>HEAD / HTTP/1.1 <br>Host: custome.se <br>Referer: http://www.google.com/search?q=custome.se <br>Connection: Close <br> <br>HTTP headers recieved:<br>HTTP/1.1 302 Found <br>Date: Wed, 21 Jun 2017 10:33:57 GMT <br>Server: Apache <br>X-Powered-By: PHP/5.6.30-0+deb8u1 <br>Set-Cookie: __tad=1498041237.7087007; expires=Sat, 19-Jun-2027 10:33:57 GMT; Max-Age=315360000 <br>Location: http://bidr.trellian.com/r2.php?e=cF8L0S4UvzZFbF2sJTBoT3OnBIzJNWcR%2BqbJJlwzrrKzgt4luon%2BNVV7nxgFthsJbp9OJ8q3yXBQiOqsMRpMsuI47GYTc8NHwPisnaLfO122qK1cZz69PBaUeaJ4uzNcitmOnHfs0%2BO5haOFwtA7sJQH4HgKmSyoHQmj6m5EZ3F3lmk5VeTK7wylvkNyOFdXObCUzWIpaSMNf1iI5Pg9IE9aZcUNK8Yah4%2BOYtrfwhXGC2ivxOOwPY9DPZ13TzTSPy5dP0Y%2FRaFCRjb56cw5ywaYtVs8jvpjJjcnI%2FvoIoiqa1uXMbC5EW8bSEUBMWWkQGMqwWDh2%2FerX8ShefP7ziRoHETp7rnQqVdTvDL%2BOVgNT%2BCPxVh6PnK4%2FQE5Y%2FP7Qc6zsmTMsnW1pfnxbcZELMXs0JCyhSE0RLjYNasW1tjb%2FKygEykpFAJwdQnXJmrLR36xgoNQMCLVJaqlF96b1iXtBVAdyiNjrStv6dQic%2BFTqoRws3AXkHaeY67kyEzKX9NQBAzmM7ofb3yfesvqRBDPXACDwNqeroGqozAak%2BY%3D <br>Connection: close <br>Content-Type: text/html; charset=UTF-8<br><br>custome.se is on 103.224.212.194<br>ASN for 103.224.212.194: 133618<br>Abusix contact information: abuse@trellian.com (information only)<br>103.224.212.194 corresponds with lb-212-194.above.com<br>Abuse.net does not have any reliable address for lb-212-194.above.com<br>Abuse address not found in whois.<br>Best guess from abuse.net: abuse@lb-212-194.above.com abuse@above.com1498050380http://ydrekommun.se/ (103.224.212.194) - Serp-hijackingAttacked url: http://ydrekommun.se/<br>Attack type: SERP-hijacking (see http://ikyon.com/attack-types/ for description)<br>Attack detected Tue, 20 Jun 2017 22:31:09 +0200<br><br>Visitors with referer are redirected to http://bidr.trellian.com/r2.php?e=cF8L0S4UvzZFbF2sJTBoT3OnBIzJNWcRjbwNGFEWTS7m3yGkGG9nHJ3WpFA8X2w7UchZA669xCFJy3FJqFMmZF92ho0ECdfg0yfe3pGWouKfbS1Zkm0QVKiMpF%2FQI4pCgEyObkQdiUHiq7B%2B4lHfsd5strzuPf2xh32%2BjLJ02qyJCy%2BBwg%2FUmAsthfzmBLsHCYl8RP1KSMu8fdVH5kwXvekY3uqxQKaGNmR7XiOO%2FxvmmWmSO4oApiLnJOfxVw1neQpBHeKfad8aBTv1BEbzbyPW3dpfZA5D1Y3GOF60XrN9nP3mrDdAyt%2B66OqhQroP4f5IR5GJRAcsdb4pHtWqZOE%2B4OqX4qmSQr%2F32arCztHykLpdnnPkulhbdgqFRkXnxewOtjpqkN8TavkCzXO0NSGT5wDAZAeXQv8L%2BtGcpdrM5cypNY9y%2FKYadZgr%2F2SO%2Bx5%2BqFyvNidcnrQ3n0sZtcBVk4Q0OTC57uA099xJ23ww11Rbs7IBJzoPfXAbB9d4CPSHs2HuZMdIIjOpPjNtvoqT9aI708c%2BqLCm2boKPAJp%2BmZ0fg4aAg%3D%3D <br><br>HTTP traffic without referer:<br>HTTP headers sent:<br>HEAD / HTTP/1.1 <br>Host: ydrekommun.se <br>Connection: Close <br> <br>HTTP headers recieved:<br>HTTP/1.1 302 Found <br>Date: Tue, 20 Jun 2017 20:31:09 GMT <br>Server: Apache <br>X-Powered-By: PHP/5.6.30-0+deb8u1 <br>Set-Cookie: __tad=1497990669.6161816; expires=Fri, 18-Jun-2027 20:31:09 GMT; Max-Age=315360000 <br>Location: http://ww11.ydrekommun.se/ <br>Connection: close <br>Content-Type: text/html; charset=UTF-8 <br> <br><br>HTTP traffic with referer:<br>HTTP headers sent:<br>HEAD / HTTP/1.1 <br>Host: ydrekommun.se <br>Referer: http://www.google.com/search?q=ydrekommun.se <br>Connection: Close <br> <br>HTTP headers recieved:<br>HTTP/1.1 302 Found <br>Date: Tue, 20 Jun 2017 20:31:08 GMT <br>Server: Apache <br>X-Powered-By: PHP/5.6.30-0+deb8u1 <br>Set-Cookie: __tad=1497990668.3961200; expires=Fri, 18-Jun-2027 20:31:08 GMT; Max-Age=315360000 <br>Location: http://bidr.trellian.com/r2.php?e=cF8L0S4UvzZFbF2sJTBoT3OnBIzJNWcRjbwNGFEWTS7m3yGkGG9nHJ3WpFA8X2w7UchZA669xCFJy3FJqFMmZF92ho0ECdfg0yfe3pGWouKfbS1Zkm0QVKiMpF%2FQI4pCgEyObkQdiUHiq7B%2B4lHfsd5strzuPf2xh32%2BjLJ02qyJCy%2BBwg%2FUmAsthfzmBLsHCYl8RP1KSMu8fdVH5kwXvekY3uqxQKaGNmR7XiOO%2FxvmmWmSO4oApiLnJOfxVw1neQpBHeKfad8aBTv1BEbzbyPW3dpfZA5D1Y3GOF60XrN9nP3mrDdAyt%2B66OqhQroP4f5IR5GJRAcsdb4pHtWqZOE%2B4OqX4qmSQr%2F32arCztHykLpdnnPkulhbdgqFRkXnxewOtjpqkN8TavkCzXO0NSGT5wDAZAeXQv8L%2BtGcpdrM5cypNY9y%2FKYadZgr%2F2SO%2Bx5%2BqFyvNidcnrQ3n0sZtcBVk4Q0OTC57uA099xJ23ww11Rbs7IBJzoPfXAbB9d4CPSHs2HuZMdIIjOpPjNtvoqT9aI708c%2BqLCm2boKPAJp%2BmZ0fg4aAg%3D%3D <br>Connection: close <br>Content-Type: text/html; charset=UTF-8<br><br>ydrekommun.se is on 103.224.212.194<br>ASN for 103.224.212.194: 133618<br>Abusix contact information: abuse@trellian.com (information only)<br>103.224.212.194 corresponds with lb-212-194.above.com<br>Abuse.net does not have any reliable address for lb-212-194.above.com<br>Abuse address not found in whois.<br>Best guess from abuse.net: abuse@lb-212-194.above.com abuse@above.com1498050053http://ludvikakomun.se/ (103.224.212.194) - Serp-hijackingAttacked url: http://ludvikakomun.se/<br>Attack type: SERP-hijacking (see http://ikyon.com/attack-types/ for description)<br>Attack detected Sun, 18 Jun 2017 12:40:23 +0200<br><br>Visitors with referer are redirected to http://bidr.trellian.com/r2.php?e=cF8L0S4UvzZFbF2sJTBoT7BA%2F1fJaFPtZqvow9Q7a%2B%2FtGZIjTaFsRmt1sb59TUdbyObwzSHsLiPw%2BRKX4MVnJVwr1IJIsrUA%2FEVC%2B%2FUX%2BUnQrVLCBxJ0jTJ2a%2BtZkg%2FYwgPvMwaFkLvPJxPtYoXTcxXqDXO0Hu%2BWLNkjKgNycRZs2VY%2Bi%2BjCxJF77zJCl%2B0Pi9wv7bDf6fliZW6aQqj%2BmfcyITkcH85GgxBkcijAkbYsr6al%2BGNYUcv4AZSrMxIeIJ5%2BWt6FDFkZ9Ud3DNxHmWZLHu9TJUDlSim4lxn69Z74Oni1SkLeJJPC3bTT9X69XWiObe1oY0Dpt2ChLAb5TeFihh4Evi%2BUJnhSzqhA8rcHBvdE8OygUWVQmyrTpiCnxjMsXutPmgixTFg4zQL0YdZMKywKeEko0DMJDa40j9NhQiuYzgoflJotqhs%2B62LlFMPdii%2FUCixD49BEU%2BJsF4hyACCCMKaE%2FrhdkC1iMJWOFkWAKxouuSwVWFyb%2Fv65WIli9699TMmpH1jJKeQznb1%2FM1%2F0xAVOIDxGrXqbYprMRFHndfciR0p7Xmu4PiASvc5WeV0xzTZpcYiTnhcLHl7gepVpe0Iq <br><br>HTTP traffic without referer:<br>HTTP headers sent:<br>HEAD / HTTP/1.1 <br>Host: ludvikakomun.se <br>Connection: Close <br> <br>HTTP headers recieved:<br>HTTP/1.1 302 Found <br>Date: Sun, 18 Jun 2017 10:40:24 GMT <br>Server: Apache <br>X-Powered-By: PHP/5.6.30-0+deb8u1 <br>Set-Cookie: __tad=1497782424.3227931; expires=Wed, 16-Jun-2027 10:40:24 GMT; Max-Age=315360000 <br>Location: http://ww11.ludvikakomun.se/ <br>Connection: close <br>Content-Type: text/html; charset=UTF-8 <br> <br><br>HTTP traffic with referer:<br>HTTP headers sent:<br>HEAD / HTTP/1.1 <br>Host: ludvikakomun.se <br>Referer: http://www.google.com/search?q=ludvikakomun.se <br>Connection: Close <br> <br>HTTP headers recieved:<br>HTTP/1.1 302 Found <br>Date: Sun, 18 Jun 2017 10:40:23 GMT <br>Server: Apache <br>X-Powered-By: PHP/5.4.45-0+deb7u8 <br>Set-Cookie: __tad=1497782423.4915702; expires=Wed, 16-Jun-2027 10:40:23 GMT <br>Location: http://bidr.trellian.com/r2.php?e=cF8L0S4UvzZFbF2sJTBoT7BA%2F1fJaFPtZqvow9Q7a%2B%2FtGZIjTaFsRmt1sb59TUdbyObwzSHsLiPw%2BRKX4MVnJVwr1IJIsrUA%2FEVC%2B%2FUX%2BUnQrVLCBxJ0jTJ2a%2BtZkg%2FYwgPvMwaFkLvPJxPtYoXTcxXqDXO0Hu%2BWLNkjKgNycRZs2VY%2Bi%2BjCxJF77zJCl%2B0Pi9wv7bDf6fliZW6aQqj%2BmfcyITkcH85GgxBkcijAkbYsr6al%2BGNYUcv4AZSrMxIeIJ5%2BWt6FDFkZ9Ud3DNxHmWZLHu9TJUDlSim4lxn69Z74Oni1SkLeJJPC3bTT9X69XWiObe1oY0Dpt2ChLAb5TeFihh4Evi%2BUJnhSzqhA8rcHBvdE8OygUWVQmyrTpiCnxjMsXutPmgixTFg4zQL0YdZMKywKeEko0DMJDa40j9NhQiuYzgoflJotqhs%2B62LlFMPdii%2FUCixD49BEU%2BJsF4hyACCCMKaE%2FrhdkC1iMJWOFkWAKxouuSwVWFyb%2Fv65WIli9699TMmpH1jJKeQznb1%2FM1%2F0xAVOIDxGrXqbYprMRFHndfciR0p7Xmu4PiASvc5WeV0xzTZpcYiTnhcLHl7gepVpe0Iq <br>Connection: close <br>Content-Type: text/html; charset=UTF-8<br><br>ludvikakomun.se is on 103.224.212.194<br>ASN for 103.224.212.194: 133618<br>Abusix contact information: abuse@trellian.com (information only)<br>103.224.212.194 corresponds with lb-212-194.above.com<br>Abuse.net does not have any reliable address for lb-212-194.above.com<br>Abuse address not found in whois.<br>Best guess from abuse.net: abuse@above.com abuse@lb-212-194.above.com1497853344http://www-scandorama.se/ (103.224.212.194) - Serp-hijackingAttacked url: http://www-scandorama.se/<br>Attack type: SERP-hijacking (see http://ikyon.com/attack-types/ for description)<br>Attack detected Fri, 16 Jun 2017 10:43:41 +0200<br><br>Visitors with referer are redirected to http://bidr.trellian.com/r2.php?e=cF8L0S4UvzZFbF2sJTBoT1U1o%2BKUv4rf8lkofOqHcTnTiFo7SozFq6Zhgy0%2FV1F%2BVNK7pws8%2B%2BSEHsbqVaquDFz58k1II8xAMZm5PTHb1yLt132UR6paPOdIoM6myMVlq8HPCTclicqT3nxobQqcemjrw5S8jSzHEk%2F9TPSuPEPsGyjjbWlqeenaLbXDi4O32pD7yc2CidY5Bkk7dcme02Pmk27R4JehBTqQjwjaY5XBDBzD0TwoyQVv73iO0lNA6Q7rjUk%2B%2By8hNm5ZN0mBMzlQJLYJrgBOt8VJRwF%2BOe6ZcFX%2B88tDpBdjYnJ6t4dXNc1i126J2KtmyCOj1pQn88%2BLIbUDkCxZrGLeQ0HBRwCJfvBwcojZotQ%2BHQbzTwMtN%2FeiL3UhIvoZCceGTn7fCx7uKNi5uiCO5idDvLs4z1IRE6eJMHl0Kp9FJvza0g5BzNcxfdJHxTYMUvzC2%2FciCBd%2FhXBkQOJhRCnWSshWZJUoSC4p03h1rPt31CB5MrUkxeCgrw4W3bGEFTBEe6nbO9p6hrOajrBXQxfy2hM%2FlxQO4MEQqVx6TFw6z3GG2FDl3wmQuovrVXI%3D <br><br>HTTP traffic without referer:<br>HTTP headers sent:<br>HEAD / HTTP/1.1 <br>Host: www-scandorama.se <br>Connection: Close <br> <br>HTTP headers recieved:<br>HTTP/1.1 302 Found <br>Date: Fri, 16 Jun 2017 08:43:41 GMT <br>Server: Apache <br>X-Powered-By: PHP/5.4.45-0+deb7u8 <br>Set-Cookie: __tad=1497602621.7638532; expires=Mon, 14-Jun-2027 08:43:41 GMT <br>Location: http://ww11.www-scandorama.se/ <br>Connection: close <br>Content-Type: text/html; charset=UTF-8 <br> <br><br>HTTP traffic with referer:<br>HTTP headers sent:<br>HEAD / HTTP/1.1 <br>Host: www-scandorama.se <br>Referer: http://www.google.com/search?q=www-scandorama.se <br>Connection: Close <br> <br>HTTP headers recieved:<br>HTTP/1.1 302 Found <br>Date: Fri, 16 Jun 2017 08:43:41 GMT <br>Server: Apache <br>X-Powered-By: PHP/5.4.45-0+deb7u8 <br>Set-Cookie: __tad=1497602621.7563985; expires=Mon, 14-Jun-2027 08:43:41 GMT <br>Location: http://bidr.trellian.com/r2.php?e=cF8L0S4UvzZFbF2sJTBoT1U1o%2BKUv4rf8lkofOqHcTnTiFo7SozFq6Zhgy0%2FV1F%2BVNK7pws8%2B%2BSEHsbqVaquDFz58k1II8xAMZm5PTHb1yLt132UR6paPOdIoM6myMVlq8HPCTclicqT3nxobQqcemjrw5S8jSzHEk%2F9TPSuPEPsGyjjbWlqeenaLbXDi4O32pD7yc2CidY5Bkk7dcme02Pmk27R4JehBTqQjwjaY5XBDBzD0TwoyQVv73iO0lNA6Q7rjUk%2B%2By8hNm5ZN0mBMzlQJLYJrgBOt8VJRwF%2BOe6ZcFX%2B88tDpBdjYnJ6t4dXNc1i126J2KtmyCOj1pQn88%2BLIbUDkCxZrGLeQ0HBRwCJfvBwcojZotQ%2BHQbzTwMtN%2FeiL3UhIvoZCceGTn7fCx7uKNi5uiCO5idDvLs4z1IRE6eJMHl0Kp9FJvza0g5BzNcxfdJHxTYMUvzC2%2FciCBd%2FhXBkQOJhRCnWSshWZJUoSC4p03h1rPt31CB5MrUkxeCgrw4W3bGEFTBEe6nbO9p6hrOajrBXQxfy2hM%2FlxQO4MEQqVx6TFw6z3GG2FDl3wmQuovrVXI%3D <br>Connection: close <br>Content-Type: text/html; charset=UTF-8<br><br>www-scandorama.se is on 103.224.212.194<br>ASN for 103.224.212.194: 133618<br>Abusix contact information: abuse@trellian.com (information only)<br>103.224.212.194 corresponds with lb-212-194.above.com<br>Abuse.net does not have any reliable address for lb-212-194.above.com<br>Abuse address not found in whois.<br>Best guess from abuse.net: abuse@lb-212-194.above.com abuse@above.com1497625719http://varmdokomun.se/ (103.224.212.194) - Serp-hijackingAttacked url: http://varmdokomun.se/<br>Attack type: SERP-hijacking (see http://ikyon.com/attack-types/ for description)<br>Attack detected Fri, 16 Jun 2017 08:10:39 +0200<br><br>Visitors with referer are redirected to http://bidr.trellian.com/r2.php?e=cF8L0S4UvzZFbF2sJTBoT1U1o%2BKUv4rf%2BzKnwfR5ohpcv0zWKV3nxsrpvZd4FAWCfGDSyVm8Kd3R4XlUYvWarN6SAK6p1c%2B%2BwqmMQ5eWKJzH675q2FbnsiS1IQFXa34LoS2NXrux2FwRtxuU3tAo2ruVxhEJgNx2Y4xYpEJlTvCk5XfiBgq644Z%2BCEaxVSw%2B%2FVKz7ufV72Ajx1kR%2BxgIEElNDVqK5TBTsOsSM8MQWtS5oiBvzmnCKyeL0DRuq%2FxiqdlVd4YTvOjqgIcLo%2F2XH7nqybTYEGGCJGiDCRJqLoP76nAxU8nl9pgtcYdBACE8xIr0WrJICiFN%2FBAXP7kunQ6vHb0yVtcUQh%2BKDoCwJ1It1ugzPvBWQI8ELrzDvAlLmlo22Qmqktz%2BSOTlvb1yoTFwMXhaq7%2BG8JZU5vYPWo60psVYybF3twdHsoYgXuEVU1jT8%2Bn9JTPaco5DNdYDHoKAsYPgpoQ0q2ZP%2By0IyJERLtFywDK7R4oV0evaTWWG%2F8hPr0DVmzKnOwaDrHmF3pYG48D928865c%2BWRpN4y2Re658es4oZng%3D%3D <br><br>HTTP traffic without referer:<br>HTTP headers sent:<br>HEAD / HTTP/1.1 <br>Host: varmdokomun.se <br>Connection: Close <br> <br>HTTP headers recieved:<br>HTTP/1.1 302 Found <br>Date: Fri, 16 Jun 2017 06:10:39 GMT <br>Server: Apache <br>X-Powered-By: PHP/5.6.30-0+deb8u1 <br>Set-Cookie: __tad=1497593439.3966714; expires=Mon, 14-Jun-2027 06:10:39 GMT; Max-Age=315360000 <br>Location: http://ww11.varmdokomun.se/ <br>Connection: close <br>Content-Type: text/html; charset=UTF-8 <br> <br><br>HTTP traffic with referer:<br>HTTP headers sent:<br>HEAD / HTTP/1.1 <br>Host: varmdokomun.se <br>Referer: http://www.google.com/search?q=varmdokomun.se <br>Connection: Close <br> <br>HTTP headers recieved:<br>HTTP/1.1 302 Found <br>Date: Fri, 16 Jun 2017 06:10:38 GMT <br>Server: Apache <br>X-Powered-By: PHP/5.4.45-0+deb7u8 <br>Set-Cookie: __tad=1497593438.5020789; expires=Mon, 14-Jun-2027 06:10:38 GMT <br>Location: http://bidr.trellian.com/r2.php?e=cF8L0S4UvzZFbF2sJTBoT1U1o%2BKUv4rf%2BzKnwfR5ohpcv0zWKV3nxsrpvZd4FAWCfGDSyVm8Kd3R4XlUYvWarN6SAK6p1c%2B%2BwqmMQ5eWKJzH675q2FbnsiS1IQFXa34LoS2NXrux2FwRtxuU3tAo2ruVxhEJgNx2Y4xYpEJlTvCk5XfiBgq644Z%2BCEaxVSw%2B%2FVKz7ufV72Ajx1kR%2BxgIEElNDVqK5TBTsOsSM8MQWtS5oiBvzmnCKyeL0DRuq%2FxiqdlVd4YTvOjqgIcLo%2F2XH7nqybTYEGGCJGiDCRJqLoP76nAxU8nl9pgtcYdBACE8xIr0WrJICiFN%2FBAXP7kunQ6vHb0yVtcUQh%2BKDoCwJ1It1ugzPvBWQI8ELrzDvAlLmlo22Qmqktz%2BSOTlvb1yoTFwMXhaq7%2BG8JZU5vYPWo60psVYybF3twdHsoYgXuEVU1jT8%2Bn9JTPaco5DNdYDHoKAsYPgpoQ0q2ZP%2By0IyJERLtFywDK7R4oV0evaTWWG%2F8hPr0DVmzKnOwaDrHmF3pYG48D928865c%2BWRpN4y2Re658es4oZng%3D%3D <br>Connection: close <br>Content-Type: text/html; charset=UTF-8<br><br>varmdokomun.se is on 103.224.212.194<br>ASN for 103.224.212.194: 133618<br>Abusix contact information: abuse@trellian.com (information only)<br>103.224.212.194 corresponds with lb-212-194.above.com<br>Abuse.net does not have any reliable address for lb-212-194.above.com<br>Abuse address not found in whois.<br>Best guess from abuse.net: abuse@above.com abuse@lb-212-194.above.com1497625651http://vwkortet.se/ (103.224.212.194) - Serp-hijackingAttacked url: http://vwkortet.se/<br>Attack type: SERP-hijacking (see http://ikyon.com/attack-types/ for description)<br>Attack detected Fri, 16 Jun 2017 01:26:04 +0200<br><br>Visitors with referer are redirected to http://bidr.trellian.com/r2.php?e=cF8L0S4UvzZFbF2sJTBoT1U1o%2BKUv4rfAWgz1f%2Fal%2BqYjr%2BEruEoBQ4A%2FsVfiH05deHApP%2FwOk%2FCtMgLHdx7tJCIqCULL4wVAVJEfdRo2FSIpIwhRW8jMe3HmhE%2FcEJ%2BodXjw53I22mvgZM92TfmNiP%2Fz%2BiLlv6O4QJLEw5PyarIOx9GTVaI132xWB%2BX5kN7r8pmY7%2FGzoXfK79c0TIY4PoIcRQljj2gZjdj4yyLRFTlUWwnpXFYhfl%2FPOy4Qx9PAuVo665thmMG30TVuVbLRFTuruyEzGpvlqX3A%2FohUouULfTEe5MSAw9oErRLIX1Vc0fUw6RfAaQ93djyb5hbegni39E%2B7TcUEj1xbG6HEyfV30Q5K%2FxBTCsQN%2F9se1Jv4VUyfaTAlP%2Fn0DUegzIlBYL7kuNkhstSZQB5sc0cddsPGDrq2pGtkICHQpdhj0uiuCAsa7mo%2FHgoluHa7hxwRGopjL54bJ47wGrcMi52TwVkqcViz1IeFWLUcXEff%2Fz2cqJskyXmEqxgBLf2RDqlyhL27ElOP0wNOhyj7z3505s%3D <br><br>HTTP traffic without referer:<br>HTTP headers sent:<br>HEAD / HTTP/1.1 <br>Host: vwkortet.se <br>Connection: Close <br> <br>HTTP headers recieved:<br>HTTP/1.1 302 Found <br>Date: Thu, 15 Jun 2017 23:26:12 GMT <br>Server: Apache <br>X-Powered-By: PHP/5.4.45-0+deb7u8 <br>Set-Cookie: __tad=1497569172.4622706; expires=Sun, 13-Jun-2027 23:26:12 GMT <br>Location: http://ww1.vwkortet.se/ <br>Connection: close <br>Content-Type: text/html; charset=UTF-8 <br> <br><br>HTTP traffic with referer:<br>HTTP headers sent:<br>HEAD / HTTP/1.1 <br>Host: vwkortet.se <br>Referer: http://www.google.com/search?q=vwkortet.se <br>Connection: Close <br> <br>HTTP headers recieved:<br>HTTP/1.1 302 Found <br>Date: Thu, 15 Jun 2017 23:26:11 GMT <br>Server: Apache <br>X-Powered-By: PHP/5.4.45-0+deb7u8 <br>Set-Cookie: __tad=1497569171.5911873; expires=Sun, 13-Jun-2027 23:26:11 GMT <br>Location: http://bidr.trellian.com/r2.php?e=cF8L0S4UvzZFbF2sJTBoT1U1o%2BKUv4rfAWgz1f%2Fal%2BqYjr%2BEruEoBQ4A%2FsVfiH05deHApP%2FwOk%2FCtMgLHdx7tJCIqCULL4wVAVJEfdRo2FSIpIwhRW8jMe3HmhE%2FcEJ%2BodXjw53I22mvgZM92TfmNiP%2Fz%2BiLlv6O4QJLEw5PyarIOx9GTVaI132xWB%2BX5kN7r8pmY7%2FGzoXfK79c0TIY4PoIcRQljj2gZjdj4yyLRFTlUWwnpXFYhfl%2FPOy4Qx9PAuVo665thmMG30TVuVbLRFTuruyEzGpvlqX3A%2FohUouULfTEe5MSAw9oErRLIX1Vc0fUw6RfAaQ93djyb5hbegni39E%2B7TcUEj1xbG6HEyfV30Q5K%2FxBTCsQN%2F9se1Jv4VUyfaTAlP%2Fn0DUegzIlBYL7kuNkhstSZQB5sc0cddsPGDrq2pGtkICHQpdhj0uiuCAsa7mo%2FHgoluHa7hxwRGopjL54bJ47wGrcMi52TwVkqcViz1IeFWLUcXEff%2Fz2cqJskyXmEqxgBLf2RDqlyhL27ElOP0wNOhyj7z3505s%3D <br>Connection: close <br>Content-Type: text/html; charset=UTF-8<br><br>vwkortet.se is on 103.224.212.194<br>ASN for 103.224.212.194: 133618<br>Abusix contact information: abuse@trellian.com (information only)<br>103.224.212.194 corresponds with lb-212-194.above.com<br>Abuse.net does not have any reliable address for lb-212-194.above.com<br>Abuse address not found in whois.<br>Best guess from abuse.net: abuse@above.com abuse@lb-212-194.above.com1497625470