|Page 1 of 1|
|Author:||Canadaman1975 [ Sun Dec 31, 2006 1:27 am ]|
|Post subject:||Abuse Report|
One of your members hacked, rooted our server and used it as a bot in your IRC Channels.
Here is the information below:
Thu Dec 28 14:13:21 :Listener created :0.0.0.0 port 99989
Thu Dec 28 14:13:21 :psyBNC2.3.1-cBtITLdDMSNp started (PID :14597)
Thu Dec 28 14:13:21 :Loading all Users..
Thu Dec 28 14:13:21 :No Users found.
Thu Dec 28 14:13:30 :connect from host-85-114-250-107.adsl.caucasus.net
Thu Dec 28 14:13:33 :New User:Robi (Robi RiveRra) added by Robi
Thu Dec 28 14:13:44 :User Robi () trying astro.dal.net port 6667 ().
Thu Dec 28 14:14:18 :Hop requested by Robi. Quitting.
Thu Dec 28 14:14:18 :User Robi got disconnected from server.
Thu Dec 28 14:14:31 :User Robi () trying matrix.dal.net port 6667 ().
Thu Dec 28 14:15:16 :User Robi: cant connect to matrix.dal.net port 6667.
Thu Dec 28 14:15:17 :User Robi () trying astro.dal.net port 6667 ().
Thu Dec 28 14:15:44 :Hop requested by Robi. Quitting.
Thu Dec 28 14:15:44 :User Robi got disconnected from server.
I have no issues with anybody wanting to use IRC for whatever purpose they wish but rooting a web server that does nothing but cause problems for hundreds of people trying to conduct thier ecommerce business is nothing short of criminal and very tastless.
A copy of all files have been forward to the FBI's Cybercrime unit. I assume Undernet.org will take action against this user and not contribute to this problem.
|Author:||Canadaman1975 [ Sun Dec 31, 2006 2:36 am ]|
And this seems to be what they named the channel:
|Author:||xplora [ Sun Dec 31, 2006 7:28 am ]|
1. if it's who I think it is, we already know about him, he's a well known hacker.
2. while the settings include a server to connect to undernet with, the log you include shows him trying to connect to dal.net which is another irc network, you might want to notify them as well.
For future reference you can email this kind of thing to firstname.lastname@example.org, email@example.com (if you want help fixing your server), and firstname.lastname@example.org (will need your servers host to identify any registered usernames/channels they may have used).
I hope your server is ok.
- Errors fixed, Etherfast, this is a post not an email.
|Author:||Etherfast [ Sun Dec 31, 2006 10:27 am ]|
There's a slight mark-up error on the second e-mail xplora wrote:)
|Page 1 of 1||All times are UTC [ DST ]|
|Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group