Home > Paid Traffic Sources > Facebook & Instagram

Facebook Porn Spam (7)

11-15-2011 04:05 PM #1 tijn (Moderator)
Facebook Porn Spam

Anyone know how the porn spam in facebook is spreading?

Not for the porn of course, more interested in how they are getting it to spread as its not something people would spread themselves.

Sounds more like some clever script

And I wanna find out how it works.

You can read more about it here:
http://gawker.com/5859480/facebook-i...-hardcore-porn

11-15-2011 04:11 PM #2 polarbacon (Moderator)

no doubt their Mywot rating should stay at 95% then......makes sense......**** EXCESSIVE SARCASM****

11-15-2011 04:14 PM #3 MJDUB (Senior Member)

I found something that may be relevant when looking for the same script; I found it when i searched the URL the 'video' and content blocker was located

http://pastebin.com/XEj9DHtW

Looks relevant. It was a viral thing going around that went to a fanpage that said 'you will hate miley cyrus after you see this.' I too would LOVE to know how they're using it. I started out with iNeo before getting into paid advertising and I wish there was a working app out there still for me to use.

11-15-2011 04:27 PM #4 tijn (Moderator)

Looks like javascript that pulls data from the page, and then calls /ajax/profile/composer.php with a Ajax call and posts some kind of comment related to one of the pages.

Then it pulls a list of peoples friends using facebook ajax predictive search.

And then goes on to post the same message to those friends.

None of the pages or sites referred to in that script are live.

Have you got a live URL that I can have a look at?

11-15-2011 04:33 PM #5 MJDUB (Senior Member)

It seems he took them all down. that one actually kept on saying 'server timed out' when he sent massive traffic, and he switched to 'woolboost.com'

http://www.whois.net/whois/woolboost.com

What was contained on the fanpage was a button that said something about 'click to play.' then it said 'type j and hit ctrl+v in your address bar.' so i did that, and it pasted a java command, minus the first j, which is why i had to type it. then it took me to the external URL which displayed just a little video player covered by a content blocker from blam. i didn't bother going any further as it was safe to assume the video was nothing.

11-15-2011 04:33 PM #6 tijn (Moderator)

ok line 10 pulls the facebook user ID:

var user_id = document['cookie']['match'](document['cookie']['match'](/c_user=(\d+)/)[1]);
and if you check your cookies when your on facebook, you can see:



Which is me:

http://graph.facebook.com/1758474611

Now this suggests that they are managing to run this Javascript within Facebook!

iFramed pages are not an option for this as they are sandboxed within the iframe and cant therefore access facebook.com cookies.

How oh how oh how do they do this?

11-15-2011 06:48 PM #7 zeno (Administrator)

Viral FB porn case study time.

Home > Paid Traffic Sources > Facebook & Instagram