Attacked url: http://burmaresor.se/
Attack type: SERP-hijacking (see http://ikyon.com/attack-types/ for description)
Attack detected Sun, 18 Jun 2017 14:14:26 +0200

Visitors with referer are redirected to http://bidr.trellian.com/r2.php?e=cF8L0S4UvzZFbF2sJTBoT7BA%2F1fJaFPtCBCwbbz8RRItXZ7h1cor11Gri1Yz3P4Au4t%2B%2FlfB4jjCw%2FfD8seNpqJSxzNyy1dkA3ADPoB6yKXacrXggI%2BGiinepJvd%2F8qwAseMyifEIMfTNn%2F3MWYdu26C1yEqiBYQNzywpV1aYHjw4eNSMjclm6Jv%2FZdnya1NcldqJ8E11BNeDA%2Fb2W1fzOMPDZFvPDX%2FFXBzxKPOMzIChYqRn2K1%2FWPl1UTv0iGlyAz4TkFOMUZZZaHggMYuLMLmDltCG4nTxO74Lm%2BFId9hRLHRMXjCxLPUucVsh0GD%2FKxLVKcCtbmAf5Vo0jCykGpkkicXbWyJI0kECjIkEp4Ur%2F%2BtWgJsQ41xgVk6pxNV2ismY9A5pYzC8Le8bY0wmQhC6A7OVEQRfeLRiA%2FI9zC2LdKokktAZUBm0u0HCAyLNBrzm9mGtbeNHE36SCq0vA5Msa3zqJSGD2bZ8Aw76tfeyWdOvSNiJV0FIHEYItan7Rg0h1HjXd8tqoSfFKZcYkG1rW0%2FIuNi2TzAgUWiPdW9FoFnEkD5DNarGdpgP%2Bf7

HTTP traffic without referer:
HTTP headers sent:
HEAD / HTTP/1.1
Host: burmaresor.se
Connection: Close

HTTP headers recieved:
HTTP/1.1 302 Found
Date: Sun, 18 Jun 2017 12:14:27 GMT
Server: Apache
X-Powered-By: PHP/5.4.45-0+deb7u8
Set-Cookie: __tad=1497788067.6165244; expires=Wed, 16-Jun-2027 12:14:27 GMT
Location: http://ww11.burmaresor.se/
Connection: close
Content-Type: text/html; charset=UTF-8


HTTP traffic with referer:
HTTP headers sent:
HEAD / HTTP/1.1
Host: burmaresor.se
Referer: http://www.google.com/search?q=burmaresor.se
Connection: Close

HTTP headers recieved:
HTTP/1.1 302 Found
Date: Sun, 18 Jun 2017 12:14:26 GMT
Server: Apache
X-Powered-By: PHP/5.6.30-0+deb8u1
Set-Cookie: __tad=1497788066.2133423; expires=Wed, 16-Jun-2027 12:14:26 GMT; Max-Age=315360000
Location: http://bidr.trellian.com/r2.php?e=cF8L0S4UvzZFbF2sJTBoT7BA%2F1fJaFPtCBCwbbz8RRItXZ7h1cor11Gri1Yz3P4Au4t%2B%2FlfB4jjCw%2FfD8seNpqJSxzNyy1dkA3ADPoB6yKXacrXggI%2BGiinepJvd%2F8qwAseMyifEIMfTNn%2F3MWYdu26C1yEqiBYQNzywpV1aYHjw4eNSMjclm6Jv%2FZdnya1NcldqJ8E11BNeDA%2Fb2W1fzOMPDZFvPDX%2FFXBzxKPOMzIChYqRn2K1%2FWPl1UTv0iGlyAz4TkFOMUZZZaHggMYuLMLmDltCG4nTxO74Lm%2BFId9hRLHRMXjCxLPUucVsh0GD%2FKxLVKcCtbmAf5Vo0jCykGpkkicXbWyJI0kECjIkEp4Ur%2F%2BtWgJsQ41xgVk6pxNV2ismY9A5pYzC8Le8bY0wmQhC6A7OVEQRfeLRiA%2FI9zC2LdKokktAZUBm0u0HCAyLNBrzm9mGtbeNHE36SCq0vA5Msa3zqJSGD2bZ8Aw76tfeyWdOvSNiJV0FIHEYItan7Rg0h1HjXd8tqoSfFKZcYkG1rW0%2FIuNi2TzAgUWiPdW9FoFnEkD5DNarGdpgP%2Bf7
Connection: close
Content-Type: text/html; charset=UTF-8

burmaresor.se is on 103.224.212.188
ASN for 103.224.212.188: 133618
Abusix contact information: abuse@trellian.com (information only)
103.224.212.188 corresponds with lb-212-188.above.com
Abuse.net does not have any reliable address for lb-212-188.above.com
Abuse address not found in whois.
Best guess from abuse.net: abuse@above.com abuse@lb-212-188.above.com