Khunsuk Posted June 1, 2015 Report Posted June 1, 2015 (edited) I just debugging a new website and 404 came up for http://ads.eurowebcorp.com/www/images/1x1.swf I found this revive 3.1 in table 'rv_zones' in field 'prepend' <object type="application/x-shockwave-flash" data="http://ads.example.com/www/images/1x1.swf" width="1" height="1"></object> Anybody a guess what it is, how it came into that field ? Thanks for your help / comments Edited June 1, 2015 by Erik Geurts removed domain to protect others Quote
Erik Geurts Posted June 1, 2015 Report Posted June 1, 2015 It looks like your system was hacked. Quote
Khunsuk Posted June 1, 2015 Author Report Posted June 1, 2015 Hi Erik, Thanks a lot for your reply. BTW: Installed from scratch 1 year ago. I removed all the 'prepend' fields in the rv_zones tables. (checked .. tables for additl. users etc.. nile; checked banners table .. seems fine, no php files in the image dir.) I upgraded today to version 3.2 (as suggested..... extracted the db and imported into a new revive_..32 one.) Do you think I am fine now ? or any suggestion. Thanks a lot. Quote
andrewatfornax Posted June 18, 2015 Report Posted June 18, 2015 The following may be of help: http://www.reviveconsultant.com/articles/what-to-do-when-you-suspect-your-openx-source-system-has-been-hacked/ Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.