Offering my services to fix the hacking of PServers

Quote:

Originally Posted by pushipu but why he drop only accounts when he can wipe everything? And database credentials will not help you if you don't have access to database (only local or port closed) or I am wrong?

You're right if the database is closed then you can't access it but the fun thing is a lot of servers have multiple dedicated servers and instead of creating some internal network and still keep those mssql ports blocked they have everything open and connect trough the internet with the mssql server. so that's why you can easily access it.

Edit. He wiped also SK_Silk :)
All ports was closed and only 2nd server had access to 1433 but he did it through one of service (not Cert) because cert was not open.

Quote:

Originally Posted by pushipu Edit. He wiped also SK_Silk :) All ports was closed and only 2nd server had access to 1433 but he did it through one of service (not Cert) because cert was not open.

Did you change your database login credentials after you closed the port?:)

Quote:

Originally Posted by kevin_owner You're right if the database is closed then you can't access it but the fun thing is a lot of servers have multiple dedicated servers and instead of creating some internal network and still keep those mssql ports blocked they have everything open and connect trough the internet with the mssql server. so that's why you can easily access it.

For example my sql server open only for website registration connection via firewall and remote connection closed. Have a chance to connect via global?

I love your guessing games :)

Quote:

Originally Posted by Zo0YorK3h I love your guessing games :)

sometimes it works, guessing make other ppl realize of their mistakes

Quote:

Originally Posted by kevin_owner Did you change your database login credentials after you closed the port?:)

No I didn't but I closed ports one day before db wipe :)
I don't think he come get credentials after leave to come next day...
Anw I will try all I can until there will be at least some hints on how to fix this issue.
I like doing it on my own, but for now I have no idea where all this start. It's like trying to touch the sky lol

Moderator should close this topic.
People keep trolling and saying stupid shits, deal with it and find the "issue" yourself.

About the pushedx stuff, well, people change and I'm not saying his the guy blabla, but for the blind stupid people, remember that with the time people change, and don't expect to much from someone that at the end can betray you, you don't know someone because you talked with him for years, this is the internet boys.

If any moderator see this shit.
Close it :)

For me he just wiped TB_User
lawl

Quote:

Originally Posted by Anonymous1266 Moderator should close this topic. People keep trolling and saying stupid shits, deal with it and find the "issue" yourself. About the pushedx stuff, well, people change and I'm not saying his the guy blabla, but for the blind stupid people, remember that with the time people change, and don't expect to much from someone that at the end can betray you, you don't know someone because you talked with him for years, this is the internet boys. If any moderator see this shit. Close it :)

agree at the trolling stuff, but some can help ppl fix security holes on their servers
i can say mod should clean up thread or let this die on oblivion soon

Use [Only registered and activated users can see links. Click Here To Register...] to trace the all queries made to the db. That way you can detect suspicious queries.

Quote:

Originally Posted by xavi Use [Only registered and activated users can see links. Click Here To Register...] to trace the all queries made to the db. That way you can detect suspicious queries.

making a trigger to insert on a table what user/ip executed a query and what was the query

Quote:

Originally Posted by LastThief i lost 350€ due to that '-' // j'ai predu 350 euro à cause de pirater ontopic: 1500$->700$->500$->250$->KRALLL

I have talk about this problem to my friends.
My best friend NoEx who knows my skills on Network Admin & Dev. You can ask him if you have doubts ;)

//
J'ai parlé à des copains de cette faille de sécurité.
NoEx est mon meilleur pote qui connait très bien mes compétences d'admin reseau et du developpement. Vous pouvez lui demander si vous avez des doutes ;)

Quote:

Originally Posted by PortalDark making a trigger to insert on a table what user/ip executed a query and what was the query

Very bad solution for 2 solutions :
The first one will make lags server and memory overflow wich cause a screen of death.

the second solution will make lags and a huge database

Quote:

Originally Posted by Anonymous1266 Moderator should close this topic. People keep trolling and saying stupid shits, deal with it and find the "issue" yourself. About the pushedx stuff, well, people change and I'm not saying his the guy blabla, but for the blind stupid people, remember that with the time people change, and don't expect to much from someone that at the end can betray you, you don't know someone because you talked with him for years, this is the internet boys. If any moderator see this shit. Close it :)

+1

Close the thread and let them to solve the problem.

First of all, all of you hackers are fucken idiots get a life please were just trying to have fun with our servers.. And for this guy who is selling help fuck you to 250+$?? wtf!! are u retarded? we can find the solutions on our own people are just stupid and dont know how. Fuck u all. - BasedGod yee!

Quote:

Originally Posted by benco Very bad solution for 2 solutions : The first one will make lags server and memory overflow wich cause a screen of death.

It's Server Side Trace.

Quote:

Difference between Profiler Trace and Server Side Trace Client-side traces dragged transaction throughput down as compare to Server Side Trace. Profiler trace can consume a significant amount of network bandwidth. The server-side trace consumes no network bandwidth because it runs on the server.