Looks like block explorer is back up!
http://87.230.14.1/nxt/nxt.cgi?action=3000&acc=13891739725946840876
Topic: NXT :: descendant of Bitcoin - Updated Information - page 1943. (Read 2761645 times)
Quote
So basically we have 4 different people saying they got it from 3 different places.
1 person on a wget using the IP address
1 person from mega.co
1 person from nxtcrypto.org
1 person from nextcoin.org
1 person on a wget using the IP address
1 person from mega.co
1 person from nxtcrypto.org
1 person from nextcoin.org
Since I got the bad client from an IP address via wget, the question is where did I get that link. mega.co isn't a possibility, correct? The only history my browser shows for nextcoin.org since I installed 0.4.8 is:
https://nextcoin.org/index.php
https://nextcoin.org/index.php/topic,797.0.html
https://nextcoin.org/index.php/board,46.0.html
https://nextcoin.org/index.php/topic,1588.0.html
Those don't look like pages I could have copied the link from. That leaves nxtcrypto.org and I also think bitcointalk.org is a possibility. Since firefox brings visited pages to the top of the history list when they are re-visted (and I didn't realize this before) it may be impossible to say which one is the culprit at this point. HOWEVER, the first time I looked at the history list before things got rearranged, I thought it was nxtcrypto.org for sure. Since then the history has been altered so I can't double-check this but that was my first impression. Looking at the history, it is certainly also possible that I got the link from bitcointalk.org within the 0.4.8 discussion.
IMPORTANT: I'm going to bed and there will be too many posts to catch up on by the time I wake up. Please PM me if there is something I should read. You can link me to posts if you like.
So I guess this was the first confirmed NXTploit.
Don't hate me because I'm beautiful.
Don't hate me because I'm beautiful.
I don't even know when I'll check if it's in there, I'm freaked until the *confirmed client.. hah
Yeah, I'm pretty freaked out too. Been using http://22k.io/-account/
About my another account that was stolen:
this account is my first account,and it has a weaker passphrase,
so I left it, and almost never use it.
the last time I logon with this account, if I remember it right, was 2013.12.30 09:05:27 GMT, when I assigned a few aliases. and at that time, the client I used should be 0.4.7e!!!
so, friends, be careful about your account!!!!
this account is my first account,and it has a weaker passphrase,
so I left it, and almost never use it.
the last time I logon with this account, if I remember it right, was 2013.12.30 09:05:27 GMT, when I assigned a few aliases. and at that time, the client I used should be 0.4.7e!!!
so, friends, be careful about your account!!!!
I recalled another thing about the client,
my 360safeguard(a security software on my PC) reported several times that java(or start.bat which start the client, I don't remember exactly) was uploading private information when I had the client running! the client version might be earlier than 0.4.7e!!!
so, WARNING again!!!
Quote
Is 17480583094667840121 your new account?
That is not my account.
Sorry that was directed to PaulyC.
That's very generous! thanks Gbeirn.
I don't even know when I'll check if it's in there, I'm freaked until the *confirmed client.. hah
Edit** Decided as everyone should to start fresh new Acct#
with the windows installer from Pg. 1. Check sum'd and Hash good. thanks to anyone who can contribute.
NXT
14008664550450326382
I did get a pm from another poster who mentioned setting up a bounty for me, so I don't know what the protocol is here, sorry. thanks!
About my another account that was stolen:
this account is my first account,and it has a weaker passphrase,
so I left it, and almost never use it.
the last time I logon with this account, if I remember it right, was 2013.12.30 09:05:27 GMT, when I assigned a few aliases. and at that time, the client I used should be 0.4.7e!!!
so, friends, be careful about your account!!!!
this account is my first account,and it has a weaker passphrase,
so I left it, and almost never use it.
the last time I logon with this account, if I remember it right, was 2013.12.30 09:05:27 GMT, when I assigned a few aliases. and at that time, the client I used should be 0.4.7e!!!
so, friends, be careful about your account!!!!
When did you download the client?
I shall look into it. I deleted former versions,
it could be difficult since they all have the same name "nxt.zip"
Any actual roadmap? What would happen @ 32k?
thank you for remind! I just changed it
another account of mine was also stolen, it happened exactly the same time as former one, but only 93 nxt lost.
the accounts my money goes:
9793828175536096502 balance 18197, contains all my stolen nxt
6164081464868000542 balance 9528, my 92 nxt goes here
the transactions happend at 2014.1.1 12:04:50 GMT
the accounts my money goes:
9793828175536096502 balance 18197, contains all my stolen nxt
6164081464868000542 balance 9528, my 92 nxt goes here
the transactions happend at 2014.1.1 12:04:50 GMT
I see your signature still has 16886318053889080545 listed. You can't use that address again -- it belongs to the thief now. You should consider all of your old addresses as compromised. Do a fresh install of the NXT client that has the correct SHA-256 hash and select a new passphrase. You have to start new.
Sorry man.
Quote
Is 17480583094667840121 your new account?
That is not my account.
Sorry that was directed to PaulyC.
About my another account that was stolen:
this account is my first account,and it has a weaker passphrase,
so I left it, and almost never use it.
the last time I logon with this account, if I remember it right, was 2013.12.30 09:05:27 GMT, when I assigned a few aliases. and at that time, the client I used should be 0.4.7e!!!
so, friends, be careful about your account!!!!
this account is my first account,and it has a weaker passphrase,
so I left it, and almost never use it.
the last time I logon with this account, if I remember it right, was 2013.12.30 09:05:27 GMT, when I assigned a few aliases. and at that time, the client I used should be 0.4.7e!!!
so, friends, be careful about your account!!!!
When did you download the client?
Quote
Is 17480583094667840121 your new account?
That is not my account.
Quote
I figure I downloaded it from a link on this page:
https://bitcointalk.org/index.php?topic=345619.11920
What an idiot I am for doing that. To reiterate, I DO NOT think I downloaded the bad client zip from nxtcrypto.org.
https://bitcointalk.org/index.php?topic=345619.11920
What an idiot I am for doing that. To reiterate, I DO NOT think I downloaded the bad client zip from nxtcrypto.org.
Quote
Are you sure? that page has a post about you upgrading your VPSs to 0.4.8, so I would think it happened before that
My post on that page was at 4:07PM and the first post on that page was at 3:19PM which is much more than enough time to upgrade. I wish we could see the edit history of those posts.
But I can't be sure at all. Firefox is making this really difficult. I realized halfway through my investigation that it removes pages from your history once you access them again and it puts them back at the top of the list. How stupid. It also could have been nxtcrypto.org since I accessed it during my investigation because that means it wouldn't appear in its proper place in my history any more. It looks like it also could have been one page back on this forum from the post of mine I linked to above:
https://bitcointalk.org/index.php?topic=345619.11900
About my another account that was stolen:
this account is my first account,and it has a weaker passphrase,
so I left it, and almost never use it.
the last time I logon with this account, if I remember it right, was 2013.12.30 09:05:27 GMT, when I assigned a few aliases. and at that time, the client I used should be 0.4.7e!!!
so, friends, be careful about your account!!!!
this account is my first account,and it has a weaker passphrase,
so I left it, and almost never use it.
the last time I logon with this account, if I remember it right, was 2013.12.30 09:05:27 GMT, when I assigned a few aliases. and at that time, the client I used should be 0.4.7e!!!
so, friends, be careful about your account!!!!
I think I downloaded the bad client zip from here:
http://www.nxtcrypto.org/
I can't be sure yet and I still don't understand some of my timestamps, but I see in my browser logs that I accessed that page at around the time I updated to 0.4.8 and I'm pretty sure I remember using the link on that page.
EDIT: I think I even remember laughing about how silly it was that that page pointed to an IP address for the download.
http://www.nxtcrypto.org/
I can't be sure yet and I still don't understand some of my timestamps, but I see in my browser logs that I accessed that page at around the time I updated to 0.4.8 and I'm pretty sure I remember using the link on that page.
EDIT: I think I even remember laughing about how silly it was that that page pointed to an IP address for the download.
Not that I don't think you could have DL'ed yours there. I'm pretty much positive (I don't have the browser proof since i've cleared my history probably 10x since then!)
mine was DL'd from nextcoin.org, via the Mega link that was there at the time I DL'd it.
The only reason I mention it is I DL'd that client.zip from nxtcrypto.org as well, and never touched it.
Btw. that's awesome you got yours out.
Is 17480583094667840121 your new account?
I figure I downloaded it from a link on this page:
https://bitcointalk.org/index.php?topic=345619.11920
What an idiot I am for doing that. To reiterate, I DO NOT think I downloaded the bad client zip from nxtcrypto.org.
Are you sure? that page has a post about you upgrading your VPSs to 0.4.8, so I would think it happened before that
I think I downloaded the bad client zip from here:
http://www.nxtcrypto.org/
I can't be sure yet and I still don't understand some of my timestamps, but I see in my browser logs that I accessed that page at around the time I updated to 0.4.8 and I'm pretty sure I remember using the link on that page.
EDIT: I think I even remember laughing about how silly it was that that page pointed to an IP address for the download.
http://www.nxtcrypto.org/
I can't be sure yet and I still don't understand some of my timestamps, but I see in my browser logs that I accessed that page at around the time I updated to 0.4.8 and I'm pretty sure I remember using the link on that page.
EDIT: I think I even remember laughing about how silly it was that that page pointed to an IP address for the download.
this is extremely disconcerting to me.. As far as I know there is only 1 person who has access to do stuff on www.nxtcrypto.org
Keep in mind we have www.nxtcrypto.org and also we host the files at info.nxtcrypto.org and at forums.nxtcrypto.org So please be 100% sure you got it at the www site because then we will be in a bind as to what do do about the person who runs it (QBTC at nextcoin). Ive had to reason so far to mistrust her. I notice that paulyc says he did not get his from nxtcrypto.org but that he got it from a mega link.
So basically we have 4 different people saying they got it from 3 different places.
1 person on a wget using the IP address
1 person from mega.co
1 person from nxtcrypto.org
1 person from nextcoin.org
What a mess. Hopefully you guys can figure out where it really came from?
Guys I will post a proper thread but I just wanted to get the news out. I am selling 34 ASICMINER direct shares for NXT! PM me your best offer. I repeat I do not accept BTC for those shares only NXT. PM your best offer.
-Lophie
-Lophie
sent a few coins to pauly
added up fine
EC7C30A100717E60D8ABE50EEDB23641952847D91FF90B9B05A74FF98D8A4CF2
Can anyone confirm the download link on the first page of this thread is good? I think it is, but I'm not taking anything for granted now.
https://nextcoin.org/index.php?topic=1858.0added up fine
EC7C30A100717E60D8ABE50EEDB23641952847D91FF90B9B05A74FF98D8A4CF2
Jump to: