General > Off-Topic
Server was recently hijacked
The Asian Aimbot:
Hi guys! I'm concerned about a few things after someone hacked my server. it's port-forwarded, so it made the matter much worse due to the fact that it's forwarded onto my IP.
Basically, the hijacker got aggravated when I used GeoIP to capture his data, this set him off, and then he asked "May I capture your GeoIP information?" A couple minutes after, we were all demoted to guest, and loud shrek music began playing which was funny, and he also spammed like 20 or so bombs from HBOMBS. I tried to do gmod_admin_cleanup from the console as I was no longer an admin, but that didn't work either. I immediately shutdown SRCDS and closed the ports that the server was forwarded to.
Throughout the time he was connected, a random song would begin playing, which I can't name, but I heard before. I asked where the music was coming from and no one responded until the hijacker did. He simply said "lol". Me and another admin were also spectating him, as we believed he had aimbot.
Edit: ULX appears to be completely broken.
What I want to know is:
1.
Any files that may have been affected in the server directory
2.
Anything that may happen to me, or my copy of Gmod
3.
Anything else that I may need or want to know.
4.
Also, if someone knows your IP, can they learn anything substantially personal from/about you?
Thanks,
~Asian! :3
Caustic Soda-Senpai:
1. How would we know?
2. Nothing's going to happen to YOU....unless it's that cough thing again..
3. Learn how to properly secure your server.
4. Eh.....not really..they can learn your general area and your ISP but it's not like in movies where it traces back to your room.
Recommendation: Full server wipe, start from scratch, fresh installation of ULX.
Also how did "loud shrek music" begin to play? Either the guy had to play it through the mic or the sound file was already on the server.
P.S. Even if YOU are not an admin, ANY and ALL commands run through the SRCDS Prompt are run as superadmin (Technically server, but you know what I mean).
Undercover Orange:
for 3 i suggest purchasing a server with really good DDOS protection and an anticheat. (cake being the best)
The Asian Aimbot:
--- Quote from: Caustic Soda-Senpai on August 10, 2016, 11:57:55 PM ---1. How would we know?
2. Nothing's going to happen to YOU....unless it's that cough thing again..
3. Learn how to properly secure your server.
4. Eh.....not really..they can learn your general area and your ISP but it's not like in movies where it traces back to your room.
Recommendation: Full server wipe, start from scratch, fresh installation of ULX.
Also how did "loud shrek music" begin to play? Either the guy had to play it through the mic or the sound file was already on the server.
P.S. Even if YOU are not an admin, ANY and ALL commands run through the SRCDS Prompt are run as superadmin (Technically server, but you know what I mean).
--- End quote ---
Thanks! And also, the shrek music was already installed on the server. It just randomly started playing before the crash though.
P.S.
I did try to run gmod_admin_cleanup through the srcds prompt, however it would not go through.
The Asian Aimbot:
--- Quote from: Undercover Orange on August 11, 2016, 11:10:18 AM ---for 3 i suggest purchasing a server with really good DDOS protection and an anticheat. (cake being the best)
--- End quote ---
I wish I could lol
Navigation
[0] Message Index
[#] Next page
Go to full version