Damnnn! First time I actually win something valuable. I’m talking to OP right now and will make updates here + post a picture of the IPhone when I receive it. Thanks! ![Grin](https://bitcointalk.org/Smileys/default/grin.gif)
|
|
|
Sorry for you lost. ![Undecided](https://bitcointalk.org/Smileys/default/undecided.gif) Unfortunately, there is nothing you can do to recover your coins. Still, I recommend you to reinstall your OS since no one knows if the fake Electrum was also infected with a trojan or keylogger.
|
|
|
so i need to be watching out for these servers. is it humanly possible to be constantly on watchout while being on Auto connect??!!
i thought electrum would be easy. guess i was wrong.
You could just select a trusted server instead of using Auto connect. AFAIK all the server could do is block you from sending transactions (by giving it the error) and show that fake message.
|
|
|
how do i know, i am not connected to an attackers server? i have selected Auto connect.
From the main issue, those are the malicious servers (there could be others): Attacker servers: [ 'gregoire12.mldlab-works.space:50002:s', 'readonly.23734430190.pro:50002:s', 'wireless12.bitquantum.space:50002:s', 'superuser.23734430190.pro:50002:s', 'pacslinkip12.krypto-familar.fun:50002:s', 'topicres.imaginarycoin.info:50002:s', 'wlseuser12.bitcoinplug.website:50002:s', 'operatns.imaginarycoin.info:50002:s', 'superman.cryptoplayer.fun:50002:s', 'lucent01.23734430190.pro:50002:s', 'qtmhhttp12.mldlab-works.space:50002:s', 'plmimservice.bitcoinplug.website:50002:s', 'username.cryptoplayer.fun:50002:s', 'qlpinstall.krypto-familar.fun:50002:s', 'adminstat.imaginarycoin.info:50002:s', 'lessonuser2.cryptoplayer.fun:50002:s', 'utilities12.pebwindkraft.space:50002:s', 'openspirit.cryptoplayer.fun:50002:s', 'qautprof12.coinucopiaspace.xyz:50002:s', 'prodcics12.imaginarycoin.info:50002:s', 'vcoadmin.23734430190.pro:50002:s', 'siteminder.23734430190.pro:50002:s', 'videouser.bitcoinplug.website:50002:s', 'anonymous.bitcoinplug.website:50002:s', 'oraprobe.23734430190.pro:50002:s' ] Source: https://github.com/spesmilo/electrum/issues/4968#issuecomment-450046206You can see in which server you are by going to Tools -> Network.
|
|
|
It's just a false positive. The file is even signed by Electrum Technologies GmbH.
|
|
|
Hey TryNinja, thanks for the reply. i use a windows system & cant do these commands. also- i dont want to install additional softwares like gpg4win etc. what i can do is, use the inbuilt certUtil in Windows cmd to do sha256, sha1, md5 hashes. it would be truly great, if you please do a quick hash of the file and post below. thanks. ![Smiley](https://bitcointalk.org/Smileys/default/smiley.gif) Well, you shouldn't completely trust me, but I did get the hash of my electrum-3.3.2-portable.exe file downloaded from Electrum.org; SHA256 22489e88966a9939cf34a94878f7ddf1dad140cce28ebe5339af6212afa611be SHA1 312afce51cbd22e8e6a93cc5611e03c14995172f MD5 5e9bf05766292e74ebfb08baf15888a2 TLDR: They match.
|
|
|
It's probably better if you verify the PGP Signatures with ThomasV's pubkey. 1. Import ThomasV's pubkey: gpg --keyserver pool.sks-keyservers.net --recv-keys 0x2BD5824B7F9470E6 2. Verify if it's imported: gpg --fingerprint 0x2BD5824B7F9470E6 3. Download the signature file on the website. 4. Verify with: gpg --verify signatureFile.asc electrum-3.3.2-portable.exe
|
|
|
Electrum seems not secured enough, i am not saying the main wallet but that popup notification. How the hell gets it there inside the ORIGINAL SOFTWARE OF ELECTRUM?
It was an exploit the hacker found out. He created a few Electrum servers which handled a customized error message when you tried to send a transaction. Unfortunately, you could make the custom error message show up as an Electrum pop up message. So the hacker created the fake "update right now" warning and made it show up for those who were connected to his server. This was already fixed in the latest version 3.3.2, but unfortunately, you were one of the victims of the hacker. ![Undecided](https://bitcointalk.org/Smileys/default/undecided.gif) More info here: https://github.com/spesmilo/electrum/issues/4968
|
|
|
that's actually false and i know my version was a real version. I also just saw the comments on their GitHub page. It is coming from malicious servers through official electrum client. Which prompts a pop up to download the malicious client. https://github.com/spesmilo/electrum/issues/4968Yeah. I thought this thread was the older one from the other user and missed the OP. Sorry about that. Unfortunately, there is still nothing you can do to recover your coins.
|
|
|
Yes i fell for it because i was in a hurry and didn't expect a pop-up within a legit version to be a phishing link. Do you know if they think it was just the standalone client that is the issue or is it malicious files aside from it? I plan on wiping and reinstalling OS in the morning but don't want to if i don't have to ( i know, i know i probably should just to be safe)
Either you already had a malicious version of Electrum, or the pop up was coming from a different malicious software/website. There is not even a single chance the pop up came from the official Electrum. That's a fact.Edit: thought that this was the first post from the user and literally missed the OP. Sorry.
|
|
|
any other benefit of it?
With it, you can: post images, do an action every 90 seconds (login, post, report, etc...) and have a Member-like signature.
|
|
|
This isn't the original Electrum. You fell for a fake version of it. Unfortunately, there is nothing you can do. Your coins are gone and your computer is compromised. Reinstall your OS and create a new wallet from the ORIGINAL Electrum. This is the ONLY legit Github link: https://github.com/spesmilo/electrum
|
|
|
Pior que a gente nunca espera uma noticia dessas. ![Undecided](https://bitcointalk.org/Smileys/default/undecided.gif) Principalmente sendo alguem que era da comunidade e que era tão novo (apenas 24 anos). RIP Guto ![Cry](https://bitcointalk.org/Smileys/default/cry.gif)
|
|
|
Yes there is.
Take a screenshot of the page, upload it in imgur or any image hosting service and post it here.
|
|
|
"Once your transaction has 1 confirmation, revisit this page and then use the form which will appear in order to wear your new membership. Your transaction will not be registered until it has 1 confirmation. Bitcoin network fees and exchange/wallet withdrawal fees will not count toward your payment."
Who will tell, I paid, but the form never appeared, after what time it appears approximately
Check the address in a block explorer. Does the transaction have at least 1 confirmation?
|
|
|
maybe you should not be rude. I asked a question politely. And didn't need a rude response. There is a lot of information to read here. And when i was a member before there was not the merit system. So please if your not going to be helpful in a courteous way keep your comments to yourself. Thank you
Look, it's not hard. The info you were looking for was literally the first thing at the top of the thread. Anyone reading this thread would literally get the answer in seconds. The fact that you had to ask that question instead of searching yourself just shows that you were lazy. My answer was simple and direct: read first, ask later if you have any doubts.
|
|
|
Is their a gap or lull between changing ranks? Was wondering because i made over 30 activity awhile ago and am still a newbie.
Thanks in advance
Maybe you should start reading then. Literally at the top of the thread (in bold):
|
|
|
I want to update my Electrum to the latest version and was advised to be sure to save my SEED. But, checking it revealed a blank box. ![Shocked](https://bitcointalk.org/Smileys/default/shocked.gif) Go to Wallet -> Seed. Does it show your seed there? I have ONE wallet 'key?' (all this is new terms to me) that I have already given to someone to send funds to.
That's your address. Saving it is irrelevant. IF I update to the latest version will I still see THAT wallet ID/Key?? I have saved the Master Public Key...
That's not what you need. Your Master Public Key doesn't guarantee that you will have access to your wallet or can restore it in the future if anything happens (it's not used for this).
|
|
|
|