wethepizza_the2ndGuy | 15 points
"Monthly client list.exe" is leaking the private key somewhere online!!!!!
Backstory:
https://www.reddit.com/r/pizzagate/comments/5e0i3m/here_is_the_encrypted_client_list_for_we_the/
Give me an hour and you bitches will have a private key!!!!!!!
GhostOfRobertMichels | 32 points
Oh boy, can't wait to decrypt your minuscule plaintext. Come on, man.
mconeone | 23 points
Be sure to drink your Ovaltine.
coulditbe223 | 14 points
Okay, I fucking loled hard. In the midst of all this seriousness, that got me. But seriously I hope this bullshit charade is over soon.
hildass | 2 points
lol I did too. I bet he doesn't edit this post and makes another new one (if he comes back that is)
coulditbe223 | 5 points
Unless he comes back with a link to a torrent, I believe most people will simply dismiss it entirely.
I feel like I may do the same. And I for damn sure am not downloading any torrent lol.
valet_bonum | 15 points
He's a troll. I knew that he was either going to post what he said he'd post, or endlessly drag this out with ever elusive revelations.
If he were for real, he clearly wouldn't have had the technical knowledge to pull this off.
He probably expected someone to figure out the key, so they'd decrypt it and find trolltext. Then when he realized that the encryption supposedly used can't be hacked, he pretended to find the key so that someone can finally find the joke he's itching to break.
mambomentality | 13 points
That said it's weird that the first half of this joke was to post legit vile child porn. That's a very stupid move, I'd think dumbass troll would keep it for the punchline if anything
valet_bonum | 10 points
Probably some failed /b/tard hoping for 15 minutes of fame.
coulditbe223 | 9 points
Its entirely possible that the two accounts are entirely unrelated to eachother, and this second guy is trolling.
who knows anymore,.
wethepizza_the2ndGuy | 14 points
It's not leaking like I thought. I will post the hard drive clones via torrent as requested.
valet_bonum | 50 points
Do NOT make a SINGLE post or comment until the hard drive clones are uploaded.
One more rabbit trail, and you're finished.
J_O_N_Y_ | 2 points
ban this guy, delete the threads but keep an eye on the leads.
WTP seems clean so far. The site could have gone down because of heavy traffic or they just put it down to figure out wth was going on.
GhostOfRobertMichels | 11 points
Oh? What is the conclusion of your protocol analysis? Post the intercepted traffic so we can look at that. You can do that, yes?
thefirdblu | 11 points
Even if op is incompetent as ever, it's still really odd the restaurant's site got covered up right after this came up.
_Jane_Doe_ | 23 points
Not really. I mean, you suddenly have THOUSANDS of people visiting your website, tearing it apart, looking for clues you're a pedophile, and saying stuff like "RED AND WHITE CHECKED TABLE CLOTHS! CONFIRMED PEDOPHILE!!"
I'd take my site down, too.
bragason | 17 points
It's actually weird that a company website responds this fast though, they are generally just overglorified billboards that get checked on once a month.
But this by itself proves nothing more than some guy deciding to take the website down for a few minutes to save bandwidth.
illBoopYaHead | 4 points
It's technically still being hosted although using less bandwidth as there's not much displaying.
GhostOfRobertMichels | 5 points
This seems like the most likely explanation at this point: a knee jerk reaction to a massive influx of people hunting for every lead they can find.
Duderino732 | 4 points
Or someone who operates the site is behind all of this as a hoax.
GhostOfRobertMichels | 4 points
Seems less likely, but possible. It's worth noting that the site is now back up: http://wethepizza.com/
Perhaps they got spooked themselves, and brought the site down to determine whether any of the claims were true. Sites get hacked all the time, and subsequently abused to share illegal content.
Edit: fixed
coulditbe223 | 5 points
Oh. the site is back up. Thats rather strange.
So i'm gonna speculate HARD here:
Assuming its ALL true (Doubt it), its possible that they put the website into that state (coming soon) as a way to check if anyone had actually accessed the site to steal files (like the first guy claimed he did). But yeah...thats...hugely speculating based off no evidence thanks to our friend the OP of this very thread.
a-SynKronus | 6 points
Or maybe they took down the site to remove any ways of entry and put it back up with better security?
coulditbe223 | 6 points
I mean...I guess....But does a random pizza website really take their site down on a sunday to do that kind of shit? On top of that: There really wasnt any security breach anyway (Guy #2 says guy#1 lied about that to confuse people who might try to track them). And if there WAS a security breach: Why would the pizza website have anything to worry about anyway? Its a fucking pizza web page lol.
I just find it hard to believe that they took the site down to do something on a sunday....
They're not dominos or some shit, they dont really have the infrastructure to just do shit on command like that. on top of that: unless they have some expert coder or something, they edited the source SUPER fast (If they even did), and then subsequently put the site back up, all in a matter of what, 4ish hours? Idk.
I could be wrong though.
a-SynKronus | 3 points
4 hours is plenty-a-time to do something like that.
I mean you can update a site in realtime. But I think they took it down to examine and really lock down everything instead of putting in little patches
Skibiribiripoporopo | 2 points
Sites get hacked all the time
That is very true and we hear/see it all the time.
I have no idea what's happening but my bet they hacked the website before starting this. Then again, I have no idea. He's saying that he'll torrent the drive.
readedited | 2 points
I was thinking the same thing. But still keeping an open mind to every scenario.
PraiseBeKEK | 3 points
I'm usually a skeptic of a lot of shit, but I would take my website down in a heart beat.
huowushi | 1 points
You would? You wouldn't think "hey I have nothing to hide, if I take the site down that might look really suspicious."
_Jane_Doe_ | 1 points
Yes. I absolutely would. In a heartbeat. It might not be the right choice, but I would still do it.
neverNotFlexing | 21 points
lets remember guy1 and guy2 have no provable connection. this guy2 could be trolling when guy1 might have stumbled upon something legitimate
smurfmother | 9 points
and he was never heard from again
19-80-4 | 5 points
People will do anything for attention. Meh.
My faith in this guy and his friend is fading rapidly
nihilistigon | 5 points
While that is uploading, take selective screenshots of the adult faces in the videos and post them immediately.
cvdsande | 3 points
only in the hypothetical instance this will happen we will see some cloned hard drive files with encrypted.exe files on it. This thread should be closed and the mods should help to prevent people falling for trojan horses or whatever the f*ck this person is trying to lure people in.
whatiswalnutsauce | 2 points
Please just update us whenever the hard drive clones are available via torrent. I'm not downloading that shit but I'm sure some people will.
PuffyHerb | 13 points
leaking the private key somewhere online
The hell does that even mean? As a tech guy I can say that makes absolutely zero sense.
neverNotFlexing | 3 points
http://www.reddit.com/r/pizzagate/comments/5e0i3m/here_is_the_encrypted_client_list_for_we_the/da8pzp0
and i bet he wont even give us the private key because his forged message was rushed and isnt an actual list at all. he'll probably just send random names in plaintext so we cant even verify what the original message said.
wethepizza_the2ndGuy | -6 points
I am running this very strange executable in a virtual machine. The executable generates a public PGP message and attempts to send it to 7 different email address (all fail in the machine of course). But, it attempts to send it's private key via an unencrypted channel to an IP address in London. I believe it is literally sending it's own key unprotected.
Strangest program I have EVER seen.
I am waiting on the results, be back in 15!
GhostOfRobertMichels | 19 points
Bullshit bullshit bullshit. Post the executable or fly away. Nobody under duress would be sitting around reversing. They'd dump everything ASAP.
SpinOnThis | 9 points
You do realize that pretty much everyone here thinks you are full of shit now?
Escape_TheMatrix | 8 points
Yeah totally, because people actually program an entire application around a PGP encrypted message to send it to all their people's email... If you're gonna troll, at least try harder.
nihilistigon | 6 points
Then post the fucking email address. Also download lil snitch and see where the program phones home and collect the upload data.
sheik_yerbouti_jr | 4 points
I am waiting on the results, be back in 15!
Dein Englisch is nicht sehr gut.
Your English contains expressions found only in German or Slavic languages. You couldn't have hacked a windows xp machine in Washington, DC.
timdaman250 | 2 points
If you cant explain right now why you can't post the file, no one will believe you any more, most people already don't.
stereoblind | 11 points
Yeah guys, while you're at it be sure to send OP your social security number, credit card information, and shoe size along with it. Everywhere you've lived in the past 5 years would probably help him with this investigation too.
_Jane_Doe_ | 9 points
OP, you've lost ANY credibility you guys might have had. Now you're just the guys that posted kiddie porn on reddit.
_PizzaGate_ | 9 points
Oh, hello James Alefantis... nice try trying to keep us from researching ur pizzeria... hahaha
smurfmother | 8 points
this guy is LARPing and they killed off the first guy..
19-80-4 | 4 points
*steps over body.
Starts really awkward techno-hacker improv
*Jeez tough crowd, eh
imightbewrongwhateve | 1 points
but it's leaking the private key over unencrypted channels to an email address based out of london!!!!
If I were in his position I would power up visual basic, make a GUI interface, and see if I could backtrace the private key emails and come up with an IP address.
Personally I think this is all beta testing for the new season of CSI, they are seeing how much technobabble bullshit audiences can eat up
mambomentality | 7 points
Guys I cracked the code
-----BEGIN PGP MESSAGE----- Version: BCPG C# v1.6.1.0
hQEMA2ecOEycMnEVAQgAoo2ma/dla/9bf4JrN6DURwxQdMg6QluPEh0EIYNfSZOp fe/h6cvejLwMG2pouco6FNJNaJ/nbgf6DlumbselDJe+lpX/hWMdcUTnj4JsEqkd mS7G4Vt1ttfF2IEjJATQtItrWdrCwD3CmMzdZVH5OiwktzaMLrCweJZNsCegBbHG 2PwSwZ1e1suPDfbhMCny3gLU1P2bCIPqD7li7PA6vx/8wVOf+12TXOFaxDK/lVw4 U9fNL1esCz6KdU3XK7P/Yy4gbrDT7tAELi1OR5/q30WL/VaP5TodPyZEITXE9me6 p0SP22/Yja+u9jYQRErNL3jOLtGWnTTcTSnL2tlpjcksCqbChErC8ExMIGOtQSDh BwI/Xewn++SpInxWOyY2sXQb9VJ2kkQPX3Dczmk= =39H1 -----END PGP MESSAGE-----
-----BEGIN PGP PRIVATE KEY BLOCK----- Version: BCPG C# v1.6.1.0
lQOsBFgyK3IBCADLj2Ld1+qzoq9bWSGNPQu0qIYzjik1tKQZI+Ju1k4dH5DPcCvd 6pvBemfOuoQNo2OcpxVYzAgbIbFgsInRnfoYCojudO1bkahXVEarlKdScxSOk5Z4 4v871pJua0R4fIAwehK0s48aZJeMfZxRb9dQSf7ML51q/FwCMutnS2/2WApC7Sr+ WjJ2nyouoTX672wHpuO3yWDXapNiTrQn5GeywUPuCrQzwGxOmE1tKxS3PkSMgfQP Xk1dSnDmDL8KcJSUqUUAVFFlpRr9CA12a02X0PiDACP3vD0TZvaibNp8RW5wKZmx 4N8hYr7UxJ3s18g+ar3IW3Pv3FPXUDKobMDdABEBAAH/AwMC7yQXiJGfqj1gzk6J E6wc75WHq5+dzAOv2Jv32P+bxCiDqNQFQBjWCm8WUZu2ndpPBhheVQJQJpiUy4/E vhMKGoSZNIctVASFV+K7QCDweEBNcM3Wpt9epvt+ZAW7LaKwqBrlSvTEj9kdTVfh vdTRdKIVJbYCdVQaksKL1hsjtJIi5WxFOPYNBdIjfEIfFCD86rui6rgvuwD0CGld MkzploYMJxU1fFn2ItnFAik2o7EAE4nNg6aWK+Ixa+G9Kwd2mjDNcgjRjxsU3u+L eBatT1P7BMDZMa3EMer2mGZcDOftlthA/b3fjWqxdM8wCqZTmcJtw+QV5dSBtzTc ia5TrHt+5A36TsWjAdPo2AO6fXHHuUx7bVwMpYx2tfm+gZXhOSDsEqV7+96S1Dtz kMvAr9aP0Es8Eeb+gHVtcfpSxmTx5/551MfNSAv9gBPG0XswCtuNGJV0dLr+81IV fOKD+iZ2v1Iu9oX1x+ALPonfvOYixsvE3zE2Z7RXSjkEBwxhx1dWr48H42jNrLWl Es8jdmeJBQ7/6drl16LAhhKtcC9Occ8pniXJ62YCIvEImPgInmhTwSdmQuTE/c4e nymEKfAyqv64QEXtWDRmni4sprIGqQiJMVLGB+OSEiR5vytDyvrivfyh6StGDAHC qYlg3f8nnFUeB7Qjqpt6/wP7rxjYJrp31JTLAaJJzVD/1PE+UrwM3wvPPRVEzSbi o5bjVKeRFaV0+9/QZI7ZlwzNvipzTHGgU+hj3by98R1MUgz0BbLPU1Z6YvjSyZ0g V8+5DCOFuUzw5rxrXP1DpUIxugXKYmfUNIBL/7gDQ//DCLkwJ1G1hKGcnRowH5WV /UAQRPUEaJg64v9cMiTfHAmrn1pOM0ze+ZlGbFlqv7QTT1A3NzdAcGl6emFnYXRl LmNvbYkBHAQQAQIABgUCWDIrcgAKCRBnnDhMnDJxFcTfCACvoZ+ybFz/BF/uWLvO 3MuU5D7+Dp8tSwtl7BmBU7jpLqtfAu0xpRTVdO9UQXWwCvWLbqYqIwB0f7cJvvxH 22AJ2z3GL/qtEnSRzlUTIpHFTgiuTN8pgOOBF90SGyrq1ydO2HUzdF5EgRi9J2x8 1RFbjoKT+wQr812feB6cQoH/hSPdTd85jv0qq/BK1dUlZgaeiqInZby4MCbsmb6/ sYtlMFdQQ3rfZV4ag5AwCwExQtmAan1o4MhUIqFWM/cPC0U4GnWpyF2ylGo10SnD DrqAt/g7u/VWRZhdyZ2sb/UL9CwVJLbpMJ7bJ87vrs6V3ZeYzSHyo0ZdEBlRD++w N6bh =5Km1 -----END PGP PRIVATE KEY BLOCK-----
throwawaypiza9203 | 6 points
And after an hour you're going to ask for another hour right? Fuck off you fraudulent piece of shit. The mods should remove these embarrassing threads
Sexypug | 6 points
http://wethepizza.com/ is back online btw.
illBoopYaHead | 3 points
I wonder if anything has been changed.
spontaneousspectator | 4 points
The area of the supposed hack is gone
illBoopYaHead | 3 points
Which area are you referring to?
spontaneousspectator | 4 points
https://web.archive.org/web/20131127172305/http://wethepizza.com/login
The login page, there's the archive for reference. Anon called them a bit ago and pretending to be ordering pizza and asked why the website was down, says the employee changed tones and basically hung up on them after saying 'technical difficulties'
illBoopYaHead | 6 points
You're right, this deserves a new thread in itself! This link still works www.wethepizza.com/admin/login we need to get in there.
thispizzaiswhack | 7 points
Welcome to the Dark Side Of Webpop
illBoopYaHead | 4 points
Hmm it seems to display that page when linked to. If you go to www.wethepizza.com load that page and then add the next bit it gives you the login prompt.
klarrti | 3 points
https://www.instagram.com/p/s-_YTOS3Qo/?taken-by=bearnaiserestaurant http://childrensinn.org/ Children's Inn now offline too!
coulditbe223 | 6 points
Didnt the chefspike site go down too? Why are all these sites simultaneously going down on sunday amidst all of this?
trabidius | 5 points
Post something damning right now then. /pol/ doesn't believe you anymore and soon Reddit won't either. Don't be a cuck, just post.
cvdsande | 5 points
Please ban. This is very disturbing seen the seriousness of what we all try to unfold here. You are a disgrace OP.
SkullSoupBowl | 5 points
Why don't you just torrent the hard drive? I would hate to think that you're trolling an entire sub trying to protect children with real CP. I hope if this is the case, you'll face the same consequences as the real pedos.
SpinOnThis | 6 points
This is what I can't quite wrap my head around. All we know for sure right now is this guy actually has in his possession at least 10(?) images of kids getting raped. If this is all a hoax then I agree he needs locking up as well the sick fuck.
SkullSoupBowl | 4 points
I really hope the mods will make sure this happens if this ends up to be a hoax. They may be onto something with the connections between WTP and Comet, but the tech components are not adding up for me. That just leaves us with someone with a post history connected directly to someone that distributed CP and actively participated in child exploitation. Isn't that exactly what we're here trying to stop?
JuanCarlosI | 4 points
This is most likely fake guys but I will still keep my eye out if anybody gets suicided in that area
nihilistigon | 4 points
Post the price list if you have it. Also, if there are any adults in the videos you need to screenshot their faces and post them now so we can figure out who they are.
EvanGRogers | 3 points
Give me an hour and you bitches will have a private key!!!!!!!
... 4 hours later...
RandyContractor | 2 points
We used social engineering (with the help of our 3 letter friend to go in under cover as a computer repair tech). That's how he got the 2GB pedo photos/videos and unconfirmed Windows XP cloned hard drive. And he just walked out with the data dump. We don't even know where each other currently is at.
So the good news here is that if you cloned the hard drive then you have the MAC addresses of the hardware you cloned. They cannot modify the MAC addresses so the only way for them to cover this up is to utterly destroy this machine and replace it.
Throw that image up on a torrent as others have suggested, then make NYPD aware of it (anonymously) immediately. Make sure NYPD knows that WTP are aware that they have been exposed and are likely destroying evidence so they should get a warrant ASAP. Even if they wipe their server they can't hide the MAC address so they will have to destroy it. Might suggest to them to go dumpster diving. They (WTP) might be that stupid.
NandoRemo | 1 points
Yo, if I only clicked on the ''screenshot'' of the pdf with the prices, but not any of the CP links, am I safe? I'm paranoid as hell right now.
RandyContractor | 2 points
yeah man no worries there. Just like looking at anything else on like sli.img
Sleep easy tonight.
pizzathrowaway777 | 1 points
STOP POSTING NEW POSTS ABOUT THIS AND EDIT YOUR EXISTING POST.
UPDATE
The level of incompetence in this "hack" is extremely concerning. I am not sure what OP was trying to accomplish, but without the private key this is useless
Please provide all of the data/files/html as evidence to MULTIPLE PDs (local or otherwise including the NYPD) before posting on the internet. You need to protect yourself, and establish a chain of evidence. Contacting an attorney is also very critical. If you do not have an attorney, get one asap.
If you do provide "evidence" on the web do it in an encrypted dump in bittorrent, all users should be careful and protect themselves, this could be a honeypot
No one cry wolf without validating OP's "evidence". Bringing false leads to the authorities is a surefire way to lose all credibility for this sub.
edit: Other users have pointed out, with good reason that local PD alone may be complicit and may not be the course of action. Simply linking on the internet is not how you bust these people though. You need to get as many eyes on the evidence as possible and make sure they understand you want to establish a chain of evidence and that your life is in danger.
edit2: added request for encrypted bittorrent dump, and piece about false reporting to authorities
edit3: contact attorney
sceneredacted | 0 points
There's no reason not to delete these threads. Obvious troll.
If that's not the case then when real info is posted we can keep that.
At the moment it's just a distraction.
pizzathrowaway777 | 1 points
Agreed. I want to delete all of these threads but everyone will cry censorship and say the sub is compromised and I don't want to deal with a million posts about that.
w0o0t | 1 points
Ok, so the wethepizza.com site is back up now. Mayby good time to take some bakups.
Now this could be a honeypot if op is right, so BE CAREFUL FOLKS!
There is a login page at:
http://wethepizza.com/admin/login
This did not work in my Tor browser as it went into a endless loop.
But, in the source code is an iframe linkedup at
https://smb.webpop.com/projects/we-the-pizza/login?domain=wethepizza.com
I have no password.
There are also references to the domain yourwebisonline.com
http://static.yourwebisonline.com/admin/assets/smb_login-1347568add00ef316f3b330335f3099d.css
w0o0t | 1 points
Perhaps login as podesta? We got his email and several of his passwords in the emails.
w0o0t | 1 points
https://smb.webpop.com/projects/we-the-pizza/amnesia
You can check email addresses here.
I may or may not have tested the top senders of the Podesta email leaks and none of them existed in the db.
wethepizza_the2ndGuy | -2 points
After I grab the key, I will post most of the find, but me and my friend who is MIA will probably keep some dirt on them for a continued deadman's switch.
PuffyHerb | 20 points
Why not post eg the .exe now? Would take you 60 seconds to upload somewhere.
EDIT: I also want to add that if this is indeed a 'prank' it's a pretty scummy thing to do. We're on this board trying to investigate a real serious issue, people here have limited time and taking resources away from the real leads is wrong.
GhostOfRobertMichels | 9 points
Because forging a portable executable that behaves the way he describes is beyond his skill set.
Sexypug | 9 points
Even if you are legit, I hope you and your friend realize that you posted CP on reddit. Law man is going to be all over this regardless if your BSing or not.
templeofluxor | 6 points
10 minutes ago you said you found the key and the file was decrypted. what happened, lost it along with your integrity?
GhostOfRobertMichels | 3 points
It's over, sorry. You lack the technical proficiency to keep it going.
Escape_TheMatrix | 40 points | Nov 20 2016 22:50:45
He will probably release the private key (Because he generated the PGP encrypted message himself), and it will just be something stupid to make us look like fools. Just package the stuff you found already and show it to us. either share the stuff you got or fuck off.
permalink
StanishInquisition | 14 points | Nov 20 2016 23:24:19
taking bets on whether it is rick roll video or he man video
permalink
Haplo781 | 1 points | Nov 21 2016 01:52:16
Bradley Manning mask.jpg
permalink
debora111 | 2 points | Nov 21 2016 09:55:31
Next time there is such a hoax/honeypot expect it to be less blatantly weak. Keep in mind people whoever did this went through the trouble of procuring not only CP but child snuff pictures (torture). This suggests a very determined OP.
This experience needs to make our investigation stronger, more resilient to disinformation.
Personally this kind of blatant and professional attempts at disinformation makes me only more angry and determined!
Here is what we need to look for next time this happens
https://np.reddit.com/r/pizzagate/comments/5e0kox/how_could_a_pizzagate_hacker_prove_shes_not_full/
permalink
metapop | 7 points | Nov 20 2016 23:02:39
Or it's a honeytrap, and everyone who clicks it gets arrested.
permalink
Escape_TheMatrix | 7 points | Nov 20 2016 23:10:31
I doubt clicking on a public link can get you arrested. unless he says Child porn -----> LINK. and you decide to click on it and browse around.
permalink
w0o0t | 5 points | Nov 21 2016 02:43:09
Courts can be really retarded when it comes to IT stuff, at least in my country, don't count on them being reasonable, take care!
permalink
neverNotFlexing | 5 points | Nov 20 2016 22:52:24
exactly, there's no proof that any of the data he gives us originates from WTP. unless he uploads the supposed clone of the HD he has.
permalink
bonejump | 3 points | Nov 20 2016 22:53:57
This is my guess now too. It'll probably just be something like "kek".
OP, again, you need to post screenshots and/or other files, some real hard evidence. Not just copy/paste text.
permalink
Escape_TheMatrix | 9 points | Nov 20 2016 22:57:49
And what retarded pedo group would create a "Monthly client list.exe" file and then have it generate a PGP encrypted message. come on people, its clear this is bullshit. First thread he says he has a client list. second thread he says he has a PGP encrypted message given by a program and he SUSPECTS it gives the monthly client list. and now the program is literally called "Monthly Client List.exe"? hahaha
permalink