Avatars were lost. Smilies are recovered, but need to be re-added.

Very few posts should be missing, some attachments, mostly the new ones are most likely gone as well.

well, we shoudl be lucky that the whole server wasnt lost

indeed and the image on the front page was mighty interesting

what precautions are you taking from not having this happen again? what security measures are you taking? and how did they get into the site? i own a site also and would like to know

I'm just glad that we're back up and running. And I hope that this won't happen again. (At first I though my internet was messed up since I wasn't seeing avatars...)

Everybody, please do not start flaming at the ones that hacked the forum. We got it fixed and that's all that matters. Things got straightened out and we'll leave it at that.

Nice job getting everything back. Not a major loss compared to what could've happened..

what precautions are you taking from not having this happen again? what security measures are you taking? and how did they get into the site? i own a site also and would like to know

Is that a joke? The forums are updated to the latest version. We have the latest versions of almost all forum software. Various patches are installed. However, it doesn't really matter since you can exploit damn near anything.

Hmm, seems that avatars are disabled. I tried to re-upload my avatar, says "Unable to save avatar".

Hmm, seems that avatars are disabled. I tried to re-upload my avatar, says "Unable to save avatar".

Already working on it :)

Happy to be back :)

also I cant download attachments but good job re-uploading everything, im happy the database was not screwed up. Good thing there are backups though :D

thanks for the quick fix!

a big hooah to the admins!

this sux like almost everything is missing -.-... I hate those other hacking people the goons or w/e they freaking put porn on front web page...

same :) glad mpc is back, tried going to front page and it showed some porn and a message going "GOON PWNS YOU!!!"

It seems uploading avatars works again.

Good job on resolving whatever issues you guys had. Glad to see one of the best gaming sites back up

let see if uploading attachments works....

It seems uploading avatars works again.
Thanks. I enjoy looking at my avatar. ;) Looks like everything is getting back together.

let see if uploading attachments works....uploading (very-softcore) pron again?

I was going around looking through some threads and all the attachments that arent working contain virus's!
http://www.mpcforum.com/showthread.php?t=131550

It was accually kinda funny. I was looking thru MapleStory section then i went to a link then saw this naked lady with boobs wobbling everywhere saying it was owned by *****. A tryhard krew that cant graph for shiz.

think we should all be allowed to use the naked chick for are avatars...to get the last laugh...
J/k
thanks for fixing it...makes us realize how much we miss the forum when its down...

Pretty poinless and lame as to what they did.

But alls well that ends well.

EDIT

Is the auto edit for double posts broken?

yes I know it's broken I will fix it eventually, listen guiys I've been slaving here for the entire day ****ing fixing the forum and getting everything back up, give it time

yes I know it's broken I will fix it eventually, listen guiys I've been slaving here for the entire day ****ing fixing the forum and getting everything back up, give it timethank you, i appreciate it... i know how much time it took you to customize everything and now you have to start over. I can understand that you are stressed out.

I might have found a backup of the attachments, will set it up if everything is well

might have found a backupamg, i bet it was called "MyPr0nCollection.rar"

well I did find a bit more attachments, unfortunatelly some of them are still lost which is really shitty. But, oh well, we still have the download section and I'm sure all the important attachments can be readded by some people ;)

Any idea who it might have been?Gov. PB?:(

double post prevention added ;)

checking double post prevention

so whats gonna be done about it beside recovering? i whould like to know and if i had the know how i'd fry there servers permently. I see MPC as my home and they invaded it.

Everybody, please do not start flaming at the ones that hacked the forum. anyone listening? and those people who went on their forum and started crying and flaming them thats really not gonna help is it?
Gov. PB?:( Gov? lmao PB? read the thread :P

gj fixing it 2 the admins (-VF), and nice av luck :)

Thanks for working on all this luck, it's great to be getting it all back into shape again, you've done a great job. I'm really annoyed with those people, as I am sure everyone else on the forums is. I'm hoping you can find a very recent backup of the files.

Guys don't go flaming on those people's forum, there's no point to it.

yes hate breeds more hate, so nothing is going to be done

forensics take time and money so we're not going after them, plus no real BAD damage was done so.... all's well that ends well (more or less)

just drop this all, hopefully the problem they had with us was worked out (at least that's what I was told) and that's all that matters.

In the world of computers the best defence against being hacked is to be friendly and easy to deal with so that noone hates you. Sure it may sound a bit "wussy" but.... any system (unless not connected to any network and in a safe) can be exploited and hacked, any one or group of admins cannot really safeguard against all possible attacks (especially if the admins don't get paid anything like we don't) so all we can do it try not to piss anyone on the internet off.


as for the files and attachments.... I uploaded the latest backup I found and mixed it together with whatever was left over after the attack to keep as many attachments as possible; however a large number of them were still lost so I'm counting on all of you guys to help out and upload whatever was lost in the appropriate place.

All forum files were gone and unfortunately the header files are on VFs computer (at least I think he still has them) so... I had to redo all the headers for now, when VF comes back we shall see what we'll add back as we had before and what we'll leave as is now.

Hackers defacing a hacking website? Ironic?

Anyways...did it get hacked twice? I tried a couple times, and you had a link for the radio and such, then it went back to hacked..

Good effort guys, let me know if I can help in any way.

Hackers defacing a hacking website? Ironic? not really :P
Anyways...did it get hacked twice? I tried a couple times, and you had a link for the radio and such, then it went back to hacked..
yeah i think they did it a few times because ppl from here kept goin on their forums and ******* them off.

^^ i think u should warn anyone flaming the :P also ppl have stuff in their sigs :(

Just a question...when a website is defaced...is it serious? Or do they usually just change the front page to show "skillz."

they can do mass defacements.. ***** have done around 840 attacks 524 single ip defacements and 316 mass defacements.. So more homepage than mass but not by that much >.<

this one took out all the files in the http folder

Eek...

So are these good hackers we are dealing with? Or is this just basic defacement?

this one, i think, was a basic defacement but theyre capable of more.. cant believe u've never heard of them.. theres petitions 2 close them down and investigations into them but they never work

Defacers are people who just try to see if they can get past security, other then that they aren't THAT knowledgeable.

It's settled though, so I guess drop it.

:D Quick recover people! Too bad this things happen. And thank god for using back-ups.

That was fast.
I thought it will take longer to get the forums back up.
That's what happens when luck is in charge. Amazing job!

I just hope that it wont happen again.

I hope so too.... but just incase I'm gonna be doing backups twice as often as usual for now, oh and gil don't forget hebe he was here too helping get everything back up and running ;)

Pretty pathetic people, although i had a laugh seeing that chick on the frontpage :X

anywayz gj on putting the boards back up so quickly.

I hope so too.... but just incase I'm gonna be doing backups twice as often as usual for now, oh and gil don't forget hebe he was here too helping get everything back up and running ;)
Of course.
All the admins deserve the props.
You're the tech one so it's easy to point at you. For good or bad ;)

Good job Admins :D

Good Work
really fast restore:bunny: :bunny:
thx all (4 recreating site) :bunny: :bunny:

amg, i bet it was called "MyPr0nCollection.rar"


lol

well my avatar is gone too,

//reupped, working!

gr8 re-uüüing, THNAKS!

ah were back online ^^
great job admins :D
edit: i just noticed, its going alot faster now o_O

I was here the minute it got hacked, i was replying to a message and it came up with an error, i went to the homepage and it said "You have been Owned by *****.***"

The forums are updated to the latest version. We have the latest versions of almost all forum software. Various patches are installed. However, it doesn't really matter since you can exploit damn near anything.

If the government can be hacked by a 12 year old kid, what chances does a forum have?

It was just an exploit like almost anything can be exploited... Thats why government servers can be hacked by 12yr olds... It's just too ez :s

Pretty pathetic people.

and howz that? doesn't say much for the people on this forum then does it? cos they hack games!

same kind of shit really aint it!

i think u guys deserved it and i hope it happens again sometime soon lol

and howz that? doesn't say much for the people on this forum then does it? cos they hack games!

same kind of shit really aint it!

i think u guys deserved it and i hope it happens again sometime soon lol

:wht:
No need blahlahb, no need...

Nice job getting everything back. Not a major loss compared to what could've happened..

ill say

nicely done luck

:wht:
No need blahlahb, no need...


sorry but had to be said, and i'm quite suprised it doesn't happen more often, u guys ruin alot of things for other people so why shouldn't the same thing be done to u guys?

true aint it!

not very nice is it?

sorry but had to be said, and i'm quite suprised it doesn't happen more often, u guys ruin alot of things for other people so why shouldn't the same thing be done to u guys?

true aint it!

not very nice is it?


ahem, WE dont ruin it, the people that use the cheats sometimes choose to rage the server.

We simply provide them with the tanks, their ammo is up to them.

nice job on quick recovery luck <3

sorry but had to be said

there was no need for that, your only gonna get warned for anticheat behavior.

not very nice is it?

i couldn't care less.

:o man i'll get a warning lol they've banned me twice the other day as it is rofl

like i give a shit rofl

doesn't say much for the people on this forum then does it? cos they hack games!

i wonder how u came across this site, what were u searching for... lol

double post prevention added ;)

checking double post prevention

So you wouldnt mind...

If i were to test it..

on a tripple post?

Wow it even does 4! Beat the edit button ;)

i wonder how u came across this site, what were u searching for... lol

But what if we quote? Will the double post still work?

ok you win.. ill stop now :(

Ok, Guys..

Apperently They Hacked this site because they could, and it was easy!!

Also They Did It With a Basic Mysql Injection or something,

also they said they did it because people pay lots of money for security on forums and stuff but you got it for free...

K.


Cheers

KaK

:o man i'll get a warning lol they've banned me twice the other day as it is rofl

like i give a shit rofl

YOU should not have registered (again)... =25 warning points + evading ban = perm ban

*****, they even put their name on the front page

geez, why would anyone do such things. besides, where a peacefull community here.

Im glad things are ok for now...
Thanks for bringing it back on!

Just a question...when a website is defaced...is it serious? Or do they usually just change the front page to show "skillz."what they mostly do is known as "own the box", meaning they get root/admin rights on it, normally through a remote console, and then they can do whatever they want with it. deleting the wwwroot folder is not that dramatic.... sometimes they put their own backdoors on it (meaning no av detects them) and then fix the security hole they used to come in so nobody else can take _their_ box

forum is look almost 100% now, good job

im only missing the images for my sig :P

i know it can't be discussed but how on earth did they manage it?

yeah my avatar was gone but put it back on

edit: when it was down it hand a link on the word MPCradio it was a download for listen.pls (which firefox says is a type of mp3 playlist) did any1 download this? i didn't cuz i thought they might have posted a virus

the page with the forum link etc. was what we replaced their page with. The listen.pls is the file that is needed for mpcradio

Ok, Guys..

Apperently They Hacked this site because they could, and it was easy!!

Also They Did It With a Basic Mysql Injection or something,

also they said they did it because people pay lots of money for security on forums and stuff but you got it for free...

K.


Cheers

KaK

We got security on our forums for free? I don't understand what you are even saying.

MPC doesn't get anything for free, and despite the number of ads we have, we don't make any money. We barely make enough to cover server costs, and here people think we get things for free....

btw- We are still running updates and optimizations, so expect some random downtimes.

Well you see hebe, people here think it's all served in a silver platter.. well it's not guys.. That's why we keep asking you to donate... We need cash for the server costs... We don't get anything from it.

We got security on our forums for free? I don't understand what you are even saying.

He brought that quote from their IRC, I saw it too.
It means that other sites pays money for testing their security. While they did it for us for free.
lol, very nice of them ;)

He brought that quote from their IRC, I saw it too.
It means that other sites pays money for testing their security. While they did it for us for free.
lol, very nice of them ;)

Ah, ok, I understand it now. Thanks for clearing that up.

It means that other sites pays money for testing their security. While they did it for us for free.
lol, very nice of them ;)yeah except the other sites get a nice report on what to fix etc and don't lose any files during the testing :x

yeah except the other sites get a nice report on what to fix etc and don't lose any files during the testing :x


And don't get any defacement of any sort, especially pornographic related...

And don't get any defacement of any sort, especially pornographic related...
since when porn is bad? ;)

since when porn is bad? ;)
Since it became visible to minors. Or at least people <15. ;)

Eerm, can this be fixed?


You have 315 post(s) in this thread, last Today

http://img83.imageshack.us/img83/4962/anoying5ud.jpg

It makes the forum real... messy...

Eerm, can this be fixed?


You have 315 post(s) in this thread, last Today

http://img83.imageshack.us/img83/4962/anoying5ud.jpg

It makes the forum real... messy...
Informed the admins about it, lets hope they can fix it soon. I can see how that can become annoying. :)

Oh, and 315 posts in that thread is simply rediculous. ;)

if you click on the banner ads that appear at the top and bottom of the forum, does that make you money? i will do it more if it does

Since it became visible to minors. Or at least people <15. ;)
Oh, don't start being picky xD

:o man i'll get a warning lol they've banned me twice the other day as it is rofl

like i give a shit rofl


You must think your superman. I think ppl forget that this is all free. It takes alot of time and effort to maintain a site of this size.


To the fellow admins here at mpc who do a fine good job:

There were popups used with wmf exploits two days before the site went down.

The files used were:
xpl.wmf " http://www.google.com/search?hl=en&lr=&q=xpl.wmf "
sploit.anr " http://www.google.com/search?hl=en&lr=&q=sploit.anr "

You guys should use the .htaccess file more if you dont already do to deny access to the admin panel.

Share with other cheat site admins the ips used to "hack" the site so we can ban those as well. I understand that mostlikely in this case there were proxies used but there are addons to deny access to a site if a person is using a proxy server or a tunnel.

There is a project on sourceforge that gathers daily or weekly proxy ips. It takes on click and replacing one file to deny access to those proxys here.

You can also check out: http://www.vbulletin.org/forum/showthread.php?t=96318

<?php
// Anti-Poroxy

/*
Title:
Proxy Detection

Version:
v2.0

Description:
This will detect any suspicious open socket
that the user is running and if found in an
array, it will not let the user proceed to
the website, and the ability to allow certain
hosts to pass the scan.

Author:
Jonathan Anders
geminii@citcom.net
http://www.unixcon.net/~datalogik/scripts/

Usage:
Just include this page in any webpage you want protected.

Notes:
If you like this code and use it, I would like to inform you of a much larger
project that I am working on named 'phpPPS - Protection Suite' which uses the
same concept but in a much larger, multiple-user oriented way.
*/

/* Modify these next few lines to whatever you like. */

$Ports = array( '80', '81', '1080', '8080', '3128', '8000', '8888'); // To hold the list of ports.
$AllowedHosts = array('localhost', 'otherhost.com'); // To hold the list of allowed hosts.
$DisallowedHosts = array('proxyserver.com', 'agnitum.com'); // To hold the list of disallowed hosts.
$Redirect = "http://www.mysite.com/forum/proxyerror.html"; // Redirect page
$SocketTimeout = 1; // Higher the number, the longer it takes.

/* End of modification. */

if ((!in_array ($REMOTE_ADDR, $AllowedHosts)) && (!in_array ($REMOTE_ADDR, $DisallowedHosts)))
{

$x = 1;

while ($Ports[$x])
{
$fSockPointer = fsockopen($REMOTE_ADDR, $Ports[$x], $errno, $errstr, $SocketTimeout);
if ($fSockPointer)
{
header ("Location: $Redirect");
fclose($fSockPointer);
}
$x++;
}
} else {
if (in_array ($REMOTE_ADDR, $AllowedHosts))
{
die();
} else {
header ("Location: $Redirect");
die();
}
}
?>

############################################
# Hack Name: Proxy Detector v1.0
# Author: Takara (Steph Sauvé, wizzyx@rogers.com)
# Date: 07.05.02
############################################
# Version of vB: 2.2.5
# Description: This is little hack detects via the Environmental Variable
# HTTP_X_FORWARDED_FOR if the user is using a proxy. Most proxys give out this
# variable. If it is it will display it out for you, and allow you to view the
# real IP of the person, and proxy IP/hostmask when you click the link.
#
# Files Edited: newthread.php, newreply.php
# Templates Modified: threads_displayip
# Templates Added: None
# SQL Columns Added: proxyip
#
# Notes: I borrowed this install file layout from someone (I don't
# remember), thanks though! Aswell remember to backup your files
# and your DB before making any changes!
############################################


### Run the Following SQL Query

ALTER TABLE post ADD proxyip VARCHAR(255) not null AFTER ipaddress;

### Open newreply.php

### Find

if ($logip==1 or $logip==2) {
$ipaddress=iif(getenv("REMOTE_ADDR")!="",getenv("REMOTE_ADDR"),$HTTP_HOST);
} else {
$ipaddress="";
}

### After That Add

if (getenv("HTTP_FORWARDED")!="") {
$proxyip=getenv("HTTP_FORWARDED");$proxyip="<P>Proxy Detected. Real IP: $proxyip<br><small>Because a proxy has been detected, the above IPs are those of the proxy</small></P>";
} elseif (getenv("HTTP_X_FORWARDED_FOR")!="") {
$proxyip=getenv("HTTP_X_FORWARDED_FOR");$proxyip="<P>Proxy Detected. Real IP: $proxyip<br><small>Because a proxy has been detected, the above IPs are those of the proxy</small></P>";
} elseif (getenv("HTTP_CLIENT_IP")!="") {
$proxyip=getenv("HTTP_CLIENT_IP");$proxyip="<P>Proxy Detected. Real IP: $proxyip<br><small>Because a proxy has been detected, the above IPs are those of the proxy</small></P>";
} else {
$proxyip="";
}

### Find

$DB_site->query("INSERT INTO post (postid,threadid,title,username,userid,dateline,at tachmentid,pagetext, allowsmilie,showsignature,ipaddress,iconid,visible ) VALUES (NULL,'$threadid','".addslashes(htmlspecialchars($subject))."','" . addslashes($postusername)."' ,'$bbuserinfo[userid]','".time()."','$attachmentid','".addslashes($message). "','$allowsmilie','$signature','$ipaddress','$iconi d','1')");

### Replace By

$DB_site->query("INSERT INTO post (postid,threadid,title,username,userid,dateline,at tachmentid,pagetext, allowsmilie,showsignature,ipaddress,proxyip,iconid ,visible) VALUES (NULL,'$threadid','".addslashes(htmlspecialchars($subject))."','" .addslashes($postusername)."','$bbuserinfo[userid]','". time()."','$attachmentid','".addslashes($message)."','$allowsmilie', '$signature','$ipaddress','$proxyip','$iconid','1' )");

### Close newreply.php


### Open newthread.php

### Find

if ($logip==1 or $logip==2) {
$ipaddress=iif(getenv("REMOTE_ADDR")!="",getenv("REMOTE_ADDR"),$HTTP_HOST);
} else {
$ipaddress="";
}

### After That Add

if (getenv("HTTP_FORWARDED")!="") {
$proxyip=getenv("HTTP_FORWARDED");$proxyip="<P>Proxy Detected. Real IP: $proxyip<br><small>Because a proxy has been detected, the above IPs are those of the proxy</small></P>";
} elseif (getenv("HTTP_X_FORWARDED_FOR")!="") {
$proxyip=getenv("HTTP_X_FORWARDED_FOR");$proxyip="<P>Proxy Detected. Real IP: $proxyip<br><small>Because a proxy has been detected, the above IPs are those of the proxy</small></P>";
} elseif (getenv("HTTP_CLIENT_IP")!="") {
$proxyip=getenv("HTTP_CLIENT_IP");$proxyip="<P>Proxy Detected. Real IP: $proxyip<br><small>Because a proxy has been detected, the above IPs are those of the proxy</small></P>";
} else {
$proxyip="";
}

### Find

$DB_site->query("INSERT INTO post (postid,threadid,title,username,userid,dateline,at tachmentid,pagetext, allowsmilie,showsignature,ipaddress,iconid,visible ) VALUES (NULL,'$threadid','".addslashes(htmlspecialchars($subject))."', '".addslashes($postusername)."','$bbuserinfo[userid]','".time()."','$attachmentid', '".addslashes($message)."','$allowsmilie','$signature','$ipaddress','$iconi d','1')");

### Replace By

$DB_site->query("INSERT INTO post (postid,threadid,title,username,userid,dateline,at tachmentid,pagetext, allowsmilie,showsignature,ipaddress,proxyip,iconid ,visible) VALUES (NULL,'$threadid','".addslashes(htmlspecialchars($subject))."','". addslashes($postusername)."','$bbuserinfo[userid]','".time()."', '$attachmentid','".addslashes($message)."','$allowsmilie','$signature', '$ipaddress','$proxyip','$iconid','1')");

### Close newthread.php


### Login to your control panel

## Go to Templates -> Thread Management Templates -> threads_displayip
### Replace ALL with:

The IP Address is: $postinfo[ipaddress]. The host name is: $postinfo[hostaddress].$proxyipPlease click <a href="showthread.php?s=$session[sessionhash]&threadid=$threadid">here</a> to return to the thread.

### Done in the control panel

### Ok, done editing everything, now upload all the files that were edited (newthread.php, newreply.php). And you're done.


For phpbb forums i know this works it may help you guys out:

Here is the schtuff..

- In the includes directory create a new file call proxyblocker_scan.php

- Cut and paste the following into it.

Code:
< ?php
//
// Is this a new proxy using known proxy ports ?
// could have used port 80 but many dialups use it on their servers...
$ports = array( 3128, 1080, 8080 );
$target = $_SERVER['REMOTE_ADDR'];
while( $port = array_pop( $ports ))
{
$isproxy = 0;
// open a socket to the connecting host on well known proxy sockets
$socket = @fsockopen( \"tcp://$target\", $port, $errno, $errstr, 3 );
if( $errno == 0 )
{
$request = "GET http://www.google.com/ HTTP/1.0\r\n\";
$request .= "Proxy-Connection: Keep-Alive\r\n\";
$request .= "Pragma: no-cache\r\n\";
$request .= "Host: www.google.com\r\n\";
$request .= "User-Agent: MSIE 6.0\r\n\";
$request .= "\r\n\";

fputs($socket, $request);
$response = fputs($socket, 128);
if(strlen(stristr($response, \"200\")) > 0){
$isproxy = 1;
}

if( $isproxy )
{
fclose($socket);
die();
} else {
fclose($socket);
}
}
}
?>


- Save and close the file.

- In the includes directory create and open a file called proxyblocker_dnsbl.php
- Cut and paste the following into the file:

Code:

< ?php

$reverse_ip = get_reversed_ip( $_SERVER['REMOTE_ADDR'] );

// array of rbl servers
$rbl_dns_servers = array(
'.http.dnsbl.sorbs.net',
'.socks.dnsbl.sorbs.net',
'.misc.dnsbl.sorbs.net',
'.proxies.blackholes.easynet.nl',
'.list.dsbl.org'
);

// loop through list of rbl servers
while( $reverse_dns = array_pop( $rbl_dns_servers ))
{
// check for ip on a rbl server
if( check_rbl( $reverse_ip, $reverse_dns ))
{
// discovered a proxy on one of the servers
die();
}
}

?>



- Save and Close the File

- Create and Open file in includes directory called ‘functions_proxyblock.php’

- Cut and paste the following into file:

Code:

< ?php

// checks to see if a ip is on a dns server
function check_rbl( $reverse_ip, $reverse_dns )
{
$is_bad_ip = FALSE;

$rlookup = $reverse_ip . $reverse_dns;

if( $rlookup == gethostbyname($rlookup))
{
// returned the same info so not on list
} else {
// returned information so is on list
$is_bad_ip = TRUE;
}
return $is_bad_ip;
}

// takes an ip address passed to it and returns a revered ip
function get_reversed_ip( $ip )
{
$ip_exploded = explode('.', $ip );
$reverse_ip = "$ip_exploded[3].$ip_exploded[2].$ip_exploded[1].$ip_exploded[0]\";
return $reverse_ip;
}

?>



- Open common.php

- FIND include($phpbb_root_path . ‘includes/db.’.$phpEx);
- AFTER WRITE include($phpbb_root_path . ‘includes/functions_proxyblock.’.$phpEx);
- SAVE & CLOSE common.php

- OPEN login.php
- FIND include($phpbb_root_path . ‘common.’.$phpEx);
- AFTER ADD

Code:

include($phpbb_root_path . ‘proxyblocker_scan.’.$phpEx);
include($phpbb_root_path . ‘proxyblocker_dnsbl.’.$phpEx);


You guys did a great job bringing the site back online. Keep up the good work.

There were popups used with wmf exploits two days before the site went down.

The files used were:
xpl.wmf " http://www.google.com/search?hl=en&lr=&q=xpl.wmf "
sploit.anr " http://www.google.com/search?hl=en&lr=&q=sploit.anr "

I can varify that.
Kaspersky deleted those files right when the popup popped.


Thanks for the useful post.
I'm sure the admins are appreciating any kind of help :)

np gil , gl guys.

Anyone got a screenie of the site hacked. I got a ton of hits from my msn guys from mpc about it, but i never looked. Just curious i guess

If u really wanna see.. http://www.zone-h.org/en/defacements/view/id=3611995/ :x

Do you guys know EXACTLY the method used to gain entry to your Acp/Ftp? Curious how they got in...

If u really wanna see.. http://www.zone-h.org/en/defacements/view/id=3611995/

nice.. i never saw it, did the forum just stop loading and then when you refreshed it came up with that

and how did you find that site? do ***** publish their defacements there? or do people report them?

lmao, goons (with 0's of course) got filtered :P

i dont know ive seen that site a few times.. keeps records of all the defacements its like an internet league to see who can deface the most sites :x but its not. Its weird.

Looking at this: http://www.zone-h.org/en/defacements/filter/filter_defacer=*****/ (not sure if the link will not work because it will filter out goons lmao.. they deface several websites a day sometimes. And all they did was delete some files in the html folder and replace them with theyre own.

ok, i'll look into it, thanks for the link

nice recover

How did MPC get hacked though? I thought we were hackers. Not the script kiddies from g00nz or what ever they call themselves

We're cheaters, not hackers there is a difference.

Very few of the people with MPC (that I know) actually have any knowledge of hacking, those that do usually don't bother to get back or are stopped from doing something stupid like getting back at anyone for something like that.

As for how we were hacked.... a hacker has to succeed once, a systems admin has to succeed every time.
Simply put the odds are greatly skewed against us. I don’t have the will or the time to get anyone back for that, and it’s a lot simpler to upload a recent backup and get everything running than to secure the site.
To secure a site such as a forum requires me to basically rewrite the entire forum software as a lot of the requirements for forum additions and the forums themselves require a lot of compromises in server security (you need to post attachments so some directories need to be write enabled for everyone, this is a real pain for securing the server).

To reload backups and replace lost things requires basically…. a day max.

Risk Management 101:

Cost of Risk(event) = Probability(event) * Cost(event)


The cost (in time) of reloading a backup in the chance of us getting hacked is a lot less than the cost (in time) of securing the site, and since no one gets paid any money or makes any money off of MPC the time spent on it is the only cost.

Man no fair, why cant they just stick on there own forums; i mean just becuase they loose members to us doesnt mean they need to cry.

they don't they're not even cheaters and for the most part they say they don't play games either so..... we're not in any way connected with their forums.

it was apparently because were affliated with myg0t.. whoever they are :x whats that about?

it was apparently because were affliated with myg0t.. whoever they are :x whats that about?
It's not related.

isn't it? thats what i heard

someone definately said that. Or they think we/myg0t are some sort or 'organised gaming group' which they dont like :x but maybe nothing 2 do with myg0t, however someone here did say that.. i thought it was luck :confused: maybe not

right... they are quite strange really... they don't like gamers > so they crash servers and game websites > for what they call fun :P right

This issue had nothing to do with myg0t.

ok, but sudden said he heard that... then he told me... oh well :P

Stop discussing about it. You got your answer from hebe, and also I told you the same few posts above. :x

@Sudden Death : I never said that, I'm sure I didn't. Oh and if you think deleting a post will actually delete it you're wrong ;) :P

Oh and if you think deleting a post will actually delete it you're wrong ahh hax, well i wondered why there was a 'reason for deletion' option lol.. Whatever gil. Well someone said it anyway, actually i think i now remember it was someone on the IRC at the time ;) anyway who cares now.. and i'd better stop now anyway like gil said, its answered.. Thats why i deleted it in the first place ;)

are there any other hacking groups apart from goons? just wondering...

There are myriads of hacking groups. Some formed of true hackers, the rest formed of script kiddies.

Indeed Sudden Death, even if you delete something, we have the ability to restore it (if you want it back and accidentally deleted for instance).

Please guys could you re-add the BuzZ Hook 1.7 because it went down with the attachement. It would be appreciated by most of ESF players. :D

Hello... someone...?

we can't just readd something because we may not have it to readd it, post in that thread and ask, if somone has it I am sure they will be more than happy to upload it again ;)

Please guys could you re-add the BuzZ Hook 1.7 because it went down with the attachement. It would be appreciated by most of ESF players. :D
Did you check at www.mpcdownloads.com ?

I thought you had backups? shouldnt you be able in any way to restore all attachments?

the backups, yes we had backups, but since file backups weren't made daily at that time (I think weekly is what we did) some files such as attachmnets were still lost

The database backups were made daily but since the attachments are not in the database...

so are all the attachments back? because i imagine that the older hacks would not be there cus the creator may no longer be around or no1 here has the file...

Nope all attachments are gone and need to be re-uploaded. I guess if no-one has it to re-upload it cant have been that great anyway :) im waiting to see if anyone has D4RK's universal crosshair but no1 responded 2 the thread :(

Yeah I checked at MPC Downloads it wasn't there but I asked someone to re-upload it here (http://www.mpcforum.com/showthread.php?t=24174&page=29) and I got the hack! :)

but that’s not D4RKs universal laser dot crosshair that’s buzz hook ;)

Could someone re-attach the TFC anti conc + bhop cheat? I just want a chance to use this magnificent hack. thanks guys

i could have some use for that too