Khunsuk Posted June 1, 2015 Report Share Posted June 1, 2015 (edited) I just debugging a new website and 404 came up for http://ads.eurowebcorp.com/www/images/1x1.swf I found this revive 3.1 in table 'rv_zones' in field 'prepend' <object type="application/x-shockwave-flash" data="http://ads.example.com/www/images/1x1.swf" width="1" height="1"></object> Anybody a guess what it is, how it came into that field ? Thanks for your help / comments Edited June 1, 2015 by Erik Geurts removed domain to protect others Quote Link to comment Share on other sites More sharing options...
Erik Geurts Posted June 1, 2015 Report Share Posted June 1, 2015 It looks like your system was hacked. Quote Link to comment Share on other sites More sharing options...
Khunsuk Posted June 1, 2015 Author Report Share Posted June 1, 2015 Hi Erik, Thanks a lot for your reply. BTW: Installed from scratch 1 year ago. I removed all the 'prepend' fields in the rv_zones tables. (checked .. tables for additl. users etc.. nile; checked banners table .. seems fine, no php files in the image dir.) I upgraded today to version 3.2 (as suggested..... extracted the db and imported into a new revive_..32 one.) Do you think I am fine now ? or any suggestion. Thanks a lot. Quote Link to comment Share on other sites More sharing options...
andrewatfornax Posted June 18, 2015 Report Share Posted June 18, 2015 The following may be of help: http://www.reviveconsultant.com/articles/what-to-do-when-you-suspect-your-openx-source-system-has-been-hacked/ Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.