how to prevent injection in game

[ramispo]

i need help to all who knows out there

first my chainfo always drop
all chainfo table was deleted
then we found solution to it by not using sa
and make new user with limited permission

now they can still update the table, running without website
just pure game running
still they can update

i saw this logs in my server
but i dont know what it says
take a look

i dont understand that much
any pros in sql
please explain

and please help about this injection in game

thanks

declare @RegPathParams sysname
declare @Arg sysname
declare @Param sysname
declare @MasterPath nvarchar(512)
declare @LogPath nvarchar(512)
declare @ErrorLogPath nvarchar(512)
declare @n int

select @n=0
select
@RegPathParams=N'Software\Microsoft\MSSQLServer\MSSQLServer'+'\Parameters'
select @Param='dummy'
while(not @Param is null)
begin
select @Param=null
select @Arg='SqlArg'+convert(nvarchar,@n)

exec master.dbo.xp_instance_regread N'HKEY_LOCAL_MACHINE',
@RegPathParams, @Arg, @Param OUTPUT
if(@Param like '-d%')
begin
select @Param=substring(@Param, 3, 255)
select @MasterPath=substring(@Param, 1, len(@Param) -
charindex('\', reverse(@Param)))
end
else if(@Param like '-l%')
begin
select @Param=substring(@Param, 3, 255)
select @LogPath=substring(@Param, 1, len(@Param) -
charindex('\', reverse(@Param)))
end
else if(@Param like '-e%')
begin
select @Param=substring(@Param, 3, 255)
select @ErrorLogPath=substring(@Param, 1, len(@Param) -
charindex('\', reverse(@Param)))
end

select @n=@n+1
end


declare @SmoRoot nvarchar(512)
exec master.dbo.xp_instance_regread N'HKEY_LOCAL_MACHINE',
N'SOFTWARE\Microsoft\MSSQLServer\Setup', N'SQLPath', @SmoRoot OUTPUT
SELECTCAST(case when 'a' <> 'A' then 1 else 0 end AS bit) AS [IsCaseSensitive],CAST(FULLTEXTSERVICEPROPERTY('IsFullTextInstalled') AS bit) AS [IsFullTextInstalled],@LogPath AS [MasterDBLogPath],@MasterPath AS [MasterDBPath],@ErrorLogPath AS [ErrorLogPath],@@MAX_PRECISION AS [MaxPrecision],@SmoRoot AS [RootDirectory],SERVERPROPERTY(N'ProductVersion') AS [VersionString],CAST(SERVERPROPERTY(N'MachineName') AS sysname) AS [NetName],CAST(SERVERPROPERTY(N'Edition') AS sysname) AS [Edition],CAST(SERVERPROPERTY(N'ProductLevel') AS sysname) AS [ProductLevel],CAST(SERVERPROPERTY('IsClustered') AS bit) AS [IsClustered],CAST(SERVERPROPERTY('IsSingleUser') AS bit) AS [IsSingleUser],CAST(SERVERPROPERTY('EngineEdition') AS int) AS [EngineEdition],convert(sysname, serverproperty(N'collation')) AS [Collation]

look at my login server now size changes

 

[starstrokers]

i still don't know about this^_^

 

[ramispo]

yes those hackers are really poop!!

I STILL dont know how to prevent this one
i still get update chainfo
it just same as delete chainfo
how can we prevent this kind of attacks

i hope some share their fix
i know many here know how to stop this one

i think graveyard has it already and enterprise ran

 

[starstrokers]

how about backing-up your database every hour...
but, the most thing we need is
anti-inject or prevent injection...

tools/softwares or whatever it is...
we really need those....

 

[ramispo]

awts!!! it here again
im still ijected

same process as above

that script i quoted

once it appears

after few minutes
they can update may database

 

[starstrokers]

wew!!! that was very sad thing to know...
-----------------------------------------
hope someone could give us any
query,codes, or script
on how to prevent this...