Site Hacked?
Moderators: Balthagor, Legend, Empier4552, Moderators
-
- Captain
- Posts: 110
- Joined: May 08 2005
- Location: St. Louis, MO (nationality--Turkey)
- Son of Moose
- Colonel
- Posts: 376
- Joined: May 19 2004
- Location: Cape Town, South Africa
It would seem that something decidedly weird is going on at the moment.
Admittedly, I actually quite like the more intense colour scheme.
Admittedly, I actually quite like the more intense colour scheme.
Last edited by Son of Moose on May 10 2005, edited 1 time in total.
-
- General
- Posts: 327
- Joined: Jun 04 2002
- Contact:
-
- Captain
- Posts: 110
- Joined: May 08 2005
- Location: St. Louis, MO (nationality--Turkey)
- Son of Moose
- Colonel
- Posts: 376
- Joined: May 19 2004
- Location: Cape Town, South Africa
-
- Sergeant
- Posts: 23
- Joined: May 02 2005
-
- General
- Posts: 327
- Joined: Jun 04 2002
- Contact:
LOL. Well i sent off an email to george and such. Although I do maintain the boards to a degree I have to admit i got lax in it and never bothered to update it with new patches for security issues (my fault! ill take the fall on this one). But right now im waiting on the Bg staff to decide how to proceed i already advised that they should try and track down the person in this case..I'm not going into specifics on the attack but this time I think it warrants prosecution.
- Son of Moose
- Colonel
- Posts: 376
- Joined: May 19 2004
- Location: Cape Town, South Africa
-
- Sergeant
- Posts: 14
- Joined: Apr 08 2005
- Location: Calgary, Alberta
- Son of Moose
- Colonel
- Posts: 376
- Joined: May 19 2004
- Location: Cape Town, South Africa
- ainsworth74
- Colonel
- Posts: 484
- Joined: Apr 17 2004
- Location: Middlesborough, UK
Son of Moose:
Who will provide the pitch forks!!!
But on a more serious note, this sort of thing is becoming more and more common. it is being seen every where, the online community as a whole needs to camp down on this sort of adolecent behavure.
Most definitely .... as this is totally unacceptable.
Who will provide the pitch forks!!!
But on a more serious note, this sort of thing is becoming more and more common. it is being seen every where, the online community as a whole needs to camp down on this sort of adolecent behavure.
All that is required for evil to prevail is for good men to do nothing.
Sir Edmund Burke
Sir Edmund Burke
-
- Brigadier Gen.
- Posts: 775
- Joined: Aug 14 2004
- Location: Canada, BC
- ainsworth74
- Colonel
- Posts: 484
- Joined: Apr 17 2004
- Location: Middlesborough, UK
- Balthagor
- Supreme Ruler
- Posts: 22101
- Joined: Jun 04 2002
- Human: Yes
- Location: BattleGoat Studios
-
- Sergeant
- Posts: 21
- Joined: Apr 09 2005
Unfortunately, for the hacker/spammer he spammed the wrong person (in my case).
The United States has severe penalties for spammers/hackers.
In California for example, that state has several laws to deal with spammers alone, including prison and fines.
I am assuming that the person who spammed me (using battlegoat name) is also the same person who hacked this site.
I have experience in tracking this type of spammer.
For Battlegoat I offer the following information. I hope you can use it:
First I did a trace of the Internet Protocol address that I found from the spammer
TraceRoute to 66.235.217.107 [host07.ipowerweb.com]
Hop (ms) (ms) (ms) IP Address Host name
1 0 0 0 66.98.244.1 gphou-66-98-244-1.ev1.net
2 1 0 0 66.98.241.4 gphou-66-98-241-4.ev1.net
3 0 0 1 66.98.240.6 gphou-66-98-240-6.ev1.net
4 2 1 1 129.250.10.229 ge-2-1-0.r02.hstntx01.us.bb.verio.net
5 10 10 10 129.250.5.100 p16-0-3-0.r21.dllstx09.us.bb.verio.net
6 10 10 10 129.250.9.38 p16-0.att.dllstx09.us.bb.verio.net
7 9 9 11 12.123.17.82 tbr1-p012101.dlstx.ip.att.net
8 37 38 37 12.122.10.50 tbr1-cl2.la2ca.ip.att.net
9 37 37 37 12.122.11.142 gbr6-p100.la2ca.ip.att.net
10 37 37 38 12.123.28.198 gar3-p370.la2ca.ip.att.net
11 37 37 38 12.122.255.250 mdf1-gsr12-1-pos-7-0.lax1.attens.net
12 38 38 38 12.129.192.42 mdf1-bi8k-1-eth-1-2.lax1.attens.net
13 37 37 38 12.129.230.139 -
14 38 37 37 66.235.217.107 host07.ipowerweb.com
Findings:
The spammer in this case has an internet connnection through IPOWERWEB.COM
Second, I did a trace through Ipower.com and found the following:
66.235.217.107 = [ host07.ipowerweb.com ]
OrgName: iPowerWeb Inc.
OrgID: IPOWE
Address: 2800 28th Street Suite 205
City: Santa Monica
StateProv: CA
PostalCode: 90405
Country: US
NetRange: 66.235.192.0 - 66.235.223.255
CIDR: 66.235.192.0/19
NetName: IPOWERWEB-NET
NetHandle: NET-66-235-192-0-1
Parent: NET-66-0-0-0-0
NetType: Direct Allocation
NameServer: RDNS1.IPOWERWEB.NET
NameServer: RDNS2.IPOWERWEB.NET
Comment:
RegDate: 2003-07-07
Updated: 2004-07-02
OrgTechHandle: PMA9-ARIN
OrgTechName: Marcus Philip
OrgTechPhone: 1-310-314-1606
OrgTechEmail: pmarcus@ipowerweb.com
CONCLUSION:
It would appear that the spammer is located in or near Santa Monica, California at IP 66.235.217.107. It would also appear that this spammer is also probably the hacker who attacked your gaming site.
This spammer/hacker has an internet connection through IPOWERWEB.NET.
If you send an email to pmarcus@ipowerweb.com detailing the problems you have had, Ipowerweb can then do a trace to find the individual using their service.
The penalties for such activities are severe.
Best of luck.
The United States has severe penalties for spammers/hackers.
In California for example, that state has several laws to deal with spammers alone, including prison and fines.
I am assuming that the person who spammed me (using battlegoat name) is also the same person who hacked this site.
I have experience in tracking this type of spammer.
For Battlegoat I offer the following information. I hope you can use it:
First I did a trace of the Internet Protocol address that I found from the spammer
TraceRoute to 66.235.217.107 [host07.ipowerweb.com]
Hop (ms) (ms) (ms) IP Address Host name
1 0 0 0 66.98.244.1 gphou-66-98-244-1.ev1.net
2 1 0 0 66.98.241.4 gphou-66-98-241-4.ev1.net
3 0 0 1 66.98.240.6 gphou-66-98-240-6.ev1.net
4 2 1 1 129.250.10.229 ge-2-1-0.r02.hstntx01.us.bb.verio.net
5 10 10 10 129.250.5.100 p16-0-3-0.r21.dllstx09.us.bb.verio.net
6 10 10 10 129.250.9.38 p16-0.att.dllstx09.us.bb.verio.net
7 9 9 11 12.123.17.82 tbr1-p012101.dlstx.ip.att.net
8 37 38 37 12.122.10.50 tbr1-cl2.la2ca.ip.att.net
9 37 37 37 12.122.11.142 gbr6-p100.la2ca.ip.att.net
10 37 37 38 12.123.28.198 gar3-p370.la2ca.ip.att.net
11 37 37 38 12.122.255.250 mdf1-gsr12-1-pos-7-0.lax1.attens.net
12 38 38 38 12.129.192.42 mdf1-bi8k-1-eth-1-2.lax1.attens.net
13 37 37 38 12.129.230.139 -
14 38 37 37 66.235.217.107 host07.ipowerweb.com
Findings:
The spammer in this case has an internet connnection through IPOWERWEB.COM
Second, I did a trace through Ipower.com and found the following:
66.235.217.107 = [ host07.ipowerweb.com ]
OrgName: iPowerWeb Inc.
OrgID: IPOWE
Address: 2800 28th Street Suite 205
City: Santa Monica
StateProv: CA
PostalCode: 90405
Country: US
NetRange: 66.235.192.0 - 66.235.223.255
CIDR: 66.235.192.0/19
NetName: IPOWERWEB-NET
NetHandle: NET-66-235-192-0-1
Parent: NET-66-0-0-0-0
NetType: Direct Allocation
NameServer: RDNS1.IPOWERWEB.NET
NameServer: RDNS2.IPOWERWEB.NET
Comment:
RegDate: 2003-07-07
Updated: 2004-07-02
OrgTechHandle: PMA9-ARIN
OrgTechName: Marcus Philip
OrgTechPhone: 1-310-314-1606
OrgTechEmail: pmarcus@ipowerweb.com
CONCLUSION:
It would appear that the spammer is located in or near Santa Monica, California at IP 66.235.217.107. It would also appear that this spammer is also probably the hacker who attacked your gaming site.
This spammer/hacker has an internet connection through IPOWERWEB.NET.
If you send an email to pmarcus@ipowerweb.com detailing the problems you have had, Ipowerweb can then do a trace to find the individual using their service.
The penalties for such activities are severe.
Best of luck.