**** New Official DayZ Thread *****

Yes, a hacker has tried to install a rootkit and keylogger on our dedi box, luckily I was online when it was happening, they'd created a temporary account (dont know how) with access and were trying to copy everything. Managed to shut the door, remove all the rogue scripts/programs and reboot the server, however, the server failed to reboot. GTX currently working on it.
 
Yeah, GTX want to backup our files and re-install Windows Server, i've stated that if they can't backup everything as a shadow of the hdd's then we won't bother continuing with their hosting as with 3 massive databases and all the associated programs that would need re-installing and re-configuring, I honestly don't have the time to sit there and do that.

had to laugh at this

http://www.youtube.com/watch?v=eaBq6bPBPYw
 
Last edited:
dave_beast said:
Yes, a hacker has tried to install a rootkit and keylogger on our dedi box, luckily I was online when it was happening, they'd created a temporary account (dont know how) with access and were trying to copy everything. Managed to shut the door, remove all the rogue scripts/programs and reboot the server, however, the server failed to reboot. GTX currently working on it.
Click to expand...

Jesus man, I know we have had some trolling sessions in the past etc but I hope you or GTX catch that mofo and something gets done about it. End of the day what has the hacker actually gained??? Really sucks, must be someone you know to go to that extreme length?? Good luck though
 
voorhees1979 said:
Jesus man, I know we have had some trolling sessions in the past etc but I hope you or GTX catch that mofo and something gets done about it. End of the day what has the hacker actually gained??? Really sucks, must be someone you know to go to that extreme length?? Good luck though
Click to expand...

Cheers bro, water under the bridge :)

I removed a keylogger, backdoor programs, explorer wrappers and other stuff including the rogue user account, it might not be traceable. GTX are trying to get the server back up without re-installing Windows.

Things like this make you think, is it really worth it, have been fighting this attack since Sunday morning as it's someone who is really determined, and I think the deleted a core Windows component before I finally got rid of them because they knew they were on the eletronic ropes ;)

Fingers crossed, I have external backups of the databases, but mission files, installs, programs, automated routines are not.

I'd just written a new batch file for Epoch that deleted all vehicles status "1", refilled the empty traders and lots of other cool stuff as well :rolleyes:
 
dave_beast said:
Cheers bro, water under the bridge :)

I removed a keylogger, backdoor programs, explorer wrappers and other stuff including the rogue user account, it might not be traceable. GTX are trying to get the server back up without re-installing Windows.

Things like this make you think, is it really worth it, have been fighting this attack since Sunday morning as it's someone who is really determined, and I think the deleted a core Windows component before I finally got rid of them because they knew they were on the eletronic ropes ;)

Fingers crossed, I have external backups of the databases, but mission files, installs, programs, automated routines are not.

I'd just written a new batch file for Epoch that deleted all vehicles status "1", refilled the empty traders and lots of other cool stuff as well :rolleyes:
Click to expand...


Glad you fought off this *****. Such a shame theres people out there doing this.

Even though I never played it thanks for hosting a server and giving OCUK members a place to go, it doesn't go unnoticed. :)
 
theonejat said:
Glad you fought off this *****. Such a shame theres people out there doing this.

Even though I never played it thanks for hosting a server and giving OCUK members a place to go, it doesn't go unnoticed. :)
Click to expand...

Cheers buddy, our host is backing up our files as we speak and re-installing Windows Server 2008 on it, they say the backup should just copy over the top and it'll be ready to go, i've explained to them that I am the only backend guy :eek: and if all the schedules/MySQL'ings and stuff is borked i'm pulling the plug and off to pastures new.... Bad times
 
The thing is...stuff like this can obviously and could break a community server, which is such a shame when people take the time to help and bring the users of OCUK together like this.
 
I mailed GTX about it to try and find out if we maybe in the firing line, was more curious if it was a targetted attack on the server providers customers than anything else, they said its very rare and likely caused by an insecure program or insecure ports, checked everything over and I think we're good on that front. Hopefully it is a rare thing like they say but as a precaution, backed everything up. Probably just got unlucky with someone scanning for IPs that could be breached.

Keeping on topic, I really thought the new DayZ patch would come out today but I totally forgot about it but like always we're let down.

With standalone, do we know (havent really kept up on the dev side of it, watched a few vids but keeping it a suprise mostly) if servers will be on dediboxes run by them or ones we can run ourselves?
 
What is the matter with people that do these things? What benefit do they get from it other than ruining other peoples enjoyment? :mad:

Good luck with it Dave, hope you get it sorted with out it driving you mad
 
1.7.7 is out but not on dayz commander yet :( dl here

http://dayzmod.com/forum/index.php?/topic/129843-dayz-mod-177-patch/


Quick Install Info:

Full

Download Full Client Files and beta files from links above.
Navigate to your arma 2 operation arrowhead directory
Extract the @Dayz-1.7.7-Full.rar into your arma 2 operation arrowhead directory and install the newest beta.
To start DayZ use a command line string like the below

Expansion\beta\ARMA2OA.exe -mod=@Dayz;CA;Expansion\beta;Expansion\beta\Expansion -noFilePatching -skipIntro -nosplash -noPause -world=Chernarus

Patch

Download Patch Client Files and beta files from links above.
Navigate to your arma 2 operation arrowhead directory
Extract the @Dayz-1.7.7-Patch.rar into your arma 2 operation arrowhead directory and install the newest beta.
To start DayZ use a command line string like the below

Expansion\beta\ARMA2OA.exe -mod=@Dayz;CA;Expansion\beta;Expansion\beta\Expansion -noFilePatching -skipIntro -nosplash -noPause -world=Chernarus

Steam

Right click Arma2: DayZ Mod, select properties.
When the window pops up go to the "BETAS" tab
Now Select 1.7.7 in the drop down box.
The files should now should now update
Launch as normal
 
Last edited:
It is indeed a different level of hacker. It's just such a shame that people actually go to these lengths just for some kind of kick. They actually need mental help.

The worst thing about it is, the sheer amount of work that Dave puts into our server on a daily basis, all for it to just be ruined by some ****.
85.236.100.85:10717 - Temp MGT Teamspeak
 
Last edited:
running dedi boxes is almost like a second job ! it takes a lot of work glad i dont do that crap anymore :p

hope you get it sorted soon dave.

servers are already popping up for the new 1.7.7 patch just been on one nearly full already. :eek:
 
dave_beast said:
Yes, a hacker has tried to install a rootkit and keylogger on our dedi box, luckily I was online when it was happening, they'd created a temporary account (dont know how) with access and were trying to copy everything. Managed to shut the door, remove all the rogue scripts/programs and reboot the server, however, the server failed to reboot. GTX currently working on it.
Click to expand...

Did they get in through the SQL database? I recently setup our forums which uses phpbb/MySQL and there were about 3 or 4 different default/guest accounts that I had to change the passwords for.
 
You must log in or register to reply here.
Back
Top Bottom