Topic: My bitcoin address is used by someone else (Read 855 times)
I don't know much about how the creation of bitcoin address but in this case I feel confused how could there be said that these rare cases, there may be errors from the system you are using an online wallet service.
since 2 days i am experiencing a hell lot of dust in my BTC address , i thought it is better to watch it and when any big BTC amount will come then i will move it , but today just some hours before i saw someone sweeped the coin to some wallet.
can anyone let me know how is this all stuff happening?
reference thread: https://bitcointalksearch.org/topic/m.15867453
can anyone let me know how is this all stuff happening?
reference thread: https://bitcointalksearch.org/topic/m.15867453
Either coinb.in has a bug/problem and generated the same private key twice, you were the victim of an attack during the creating of the private key (maybe a phising website or something), or your pc is compromised (those seem to be the most likely scenarios).
Hi,
Coinb.in developer here.
I think its fairly unlikely coinb.in was compromised and also unlikely that it generated the same private keys twice. I think its most likely you have been compromised. Let me explain why.
Firstly, I have various honey traps setup on the server, one is as big as 20 BTC. If coinb.in had become compromised, I'm very confident I'd have lost those coins and we'd be hearing about it from multiple users (as there are quite a lot) and not just yourself.
Secondly, I'm not convinced that coinb.in key generation code is a problem. I have over 100 BTC generated in addresses from coinb.in. It is unlikely to generate the same keys twice, heres the code:
Code:
/* generate a new random private key */
coinjs.newPrivkey = function(){
var x = window.location;
x += (window.screen.height * window.screen.width * window.screen.colorDepth);
x += coinjs.random(64);
x += (window.screen.availHeight * window.screen.availWidth * window.screen.pixelDepth);
x += navigator.language;
x += window.history.length;
x += coinjs.random(64);
x += navigator.userAgent;
x += 'coinb.in';
x += (Crypto.util.randomBytes(64)).join("");
x += x.length;
var dateObj = new Date();
x += dateObj.getTimezoneOffset();
x += coinjs.random(64);
x += (document.getElementById("entropybucket")) ? document.getElementById("entropybucket").innerHTML : '';
x += x+''+x;
var r = x;
for(i=0;i<(x).length/25;i++){
r = Crypto.SHA256(r.concat(x));
}
var checkrBigInt = new BigInteger(r);
var orderBigInt = new BigInteger("fffffffffffffffffffffffffffffffebaaedce6af48a03bbfd25e8cd0364141");
while (checkrBigInt.compareTo(orderBigInt) >= 0 || checkrBigInt.equals(BigInteger.ZERO) || checkrBigInt.equals(BigInteger.ONE)) {
r = Crypto.SHA256(r.concat(x));
checkrBigInt = new BigInteger(r);
}
return r;
}
/* generate random string */
coinjs.random = function(length) {
var r = "";
var l = length || 25;
var chars = "!$%^&*()_+{}:@~?><|\./;'#][=-abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890";
for(x=0;x
}
return r;
}
coinjs.newPrivkey = function(){
var x = window.location;
x += (window.screen.height * window.screen.width * window.screen.colorDepth);
x += coinjs.random(64);
x += (window.screen.availHeight * window.screen.availWidth * window.screen.pixelDepth);
x += navigator.language;
x += window.history.length;
x += coinjs.random(64);
x += navigator.userAgent;
x += 'coinb.in';
x += (Crypto.util.randomBytes(64)).join("");
x += x.length;
var dateObj = new Date();
x += dateObj.getTimezoneOffset();
x += coinjs.random(64);
x += (document.getElementById("entropybucket")) ? document.getElementById("entropybucket").innerHTML : '';
x += x+''+x;
var r = x;
for(i=0;i<(x).length/25;i++){
r = Crypto.SHA256(r.concat(x));
}
var checkrBigInt = new BigInteger(r);
var orderBigInt = new BigInteger("fffffffffffffffffffffffffffffffebaaedce6af48a03bbfd25e8cd0364141");
while (checkrBigInt.compareTo(orderBigInt) >= 0 || checkrBigInt.equals(BigInteger.ZERO) || checkrBigInt.equals(BigInteger.ONE)) {
r = Crypto.SHA256(r.concat(x));
checkrBigInt = new BigInteger(r);
}
return r;
}
/* generate random string */
coinjs.random = function(length) {
var r = "";
var l = length || 25;
var chars = "!$%^&*()_+{}:@~?><|\./;'#][=-abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890";
for(x=0;x
}
return r;
}
As you can see, there are lot of random values used to help with key generation before it is hashed a random number of times. Some values will be more unique than others, but as you can see we are using everything from the screen size, language, date+time, static stings, random data and your mouse positions to generate enough entropy to make a key pair. I've also had this code reviewed by a lot of people.
If anyone has any questions, please feel free to get in touch.
Did you share your private keys with anyone? Maybe open any links via skype? Someone couldve hit you with a keylogger and be stealing your accounts
no i haven't talked to anyguys over skype except the the man who has paid me for my signature.your balance your addres only move via sweep if you can share private key
maybe your click link and your follow instruction in link web your visit
wallet is move only private key and phising link
i had stored the private key in my email draft and i had no unauthorized access in my email account.maybe your click link and your follow instruction in link web your visit
wallet is move only private key and phising link
Doesn't really matter who or what happened... If you did not create transaction https://blockchain.info/tx/e9ee203c3cdadc416ab29a7a4b48bfea89d39246286ab101bd61def27e56462e and the address is 100% certainly owned by you, you are compromised in one way or another (either intentionally, or by accident).
Either coinb.in has a bug/problem and generated the same private key twice, you were the victim of an attack during the creating of the private key (maybe a phising website or something), or your pc is compromised (those seem to be the most likely scenarios).
I'd never, ever use that address again, move all funds that belong to you away from this address, make sure my pc was 100% clean (maybe even do a complete reinstall just to be sure) and stay away from online wallets in the future
the address has this incoming transaction 4be3bc47b3d8c5c1c8ef30ebd5a87a09f2acd59183e03aaec189a0ebe7f8c714 . It came from
https://www.walletexplorer.com/txid/4be3bc47b3d8c5c1c8ef30ebd5a87a09f2acd59183e03aaec189a0ebe7f8c714
Seems to be an address belonging to fortunejack... Did you withdraw your gambling winnings? If not, maybe fortunejack can get you into contact with the second user using this private key???
I dont play at fortunejack , i have fiat and i prefer to bet in fiat.Either coinb.in has a bug/problem and generated the same private key twice, you were the victim of an attack during the creating of the private key (maybe a phising website or something), or your pc is compromised (those seem to be the most likely scenarios).
I'd never, ever use that address again, move all funds that belong to you away from this address, make sure my pc was 100% clean (maybe even do a complete reinstall just to be sure) and stay away from online wallets in the future
the address has this incoming transaction 4be3bc47b3d8c5c1c8ef30ebd5a87a09f2acd59183e03aaec189a0ebe7f8c714 . It came from
https://www.walletexplorer.com/txid/4be3bc47b3d8c5c1c8ef30ebd5a87a09f2acd59183e03aaec189a0ebe7f8c714
Seems to be an address belonging to fortunejack... Did you withdraw your gambling winnings? If not, maybe fortunejack can get you into contact with the second user using this private key???
Slightly off-topic. But I've come across address 1EBFEvsGCJWnSKUvpM7vLFjsfU578hMRUj while following the transaction coming out of OP's address (tx1, tx2, this address, received tx). It's a sending address but that address apparently belongs to diodio1 who types exactly like OP.
heard twice of this diodio in my life , all here on the forum. many people types/talk like each other , don't they?_______________________________________________________________________________ ____________________________
I will contact the coinb.in , and most from now i wont use their address , i just thought that generating an address offline will make me secure.
Slightly off-topic. But I've come across address 1EBFEvsGCJWnSKUvpM7vLFjsfU578hMRUj while following the transaction coming out of OP's address (tx1, tx2, this address, received tx). It's a sending address but that address apparently belongs to diodio1 who types exactly like OP.
Doesn't really matter who or what happened... If you did not create transaction https://blockchain.info/tx/e9ee203c3cdadc416ab29a7a4b48bfea89d39246286ab101bd61def27e56462e and the address is 100% certainly owned by you, you are compromised in one way or another (either intentionally, or by accident).
Either coinb.in has a bug/problem and generated the same private key twice, you were the victim of an attack during the creating of the private key (maybe a phising website or something), or your pc is compromised (those seem to be the most likely scenarios).
I'd never, ever use that address again, move all funds that belong to you away from this address, make sure my pc was 100% clean (maybe even do a complete reinstall just to be sure) and stay away from online wallets in the future
the address has this incoming transaction 4be3bc47b3d8c5c1c8ef30ebd5a87a09f2acd59183e03aaec189a0ebe7f8c714 . It came from
https://www.walletexplorer.com/txid/4be3bc47b3d8c5c1c8ef30ebd5a87a09f2acd59183e03aaec189a0ebe7f8c714
Seems to be an address belonging to fortunejack... Did you withdraw your gambling winnings? If not, maybe fortunejack can get you into contact with the second user using this private key???
Either coinb.in has a bug/problem and generated the same private key twice, you were the victim of an attack during the creating of the private key (maybe a phising website or something), or your pc is compromised (those seem to be the most likely scenarios).
I'd never, ever use that address again, move all funds that belong to you away from this address, make sure my pc was 100% clean (maybe even do a complete reinstall just to be sure) and stay away from online wallets in the future
the address has this incoming transaction 4be3bc47b3d8c5c1c8ef30ebd5a87a09f2acd59183e03aaec189a0ebe7f8c714 . It came from
https://www.walletexplorer.com/txid/4be3bc47b3d8c5c1c8ef30ebd5a87a09f2acd59183e03aaec189a0ebe7f8c714
Seems to be an address belonging to fortunejack... Did you withdraw your gambling winnings? If not, maybe fortunejack can get you into contact with the second user using this private key???
your balance your addres only move via sweep if you can share private key
maybe your click link and your follow instruction in link web your visit
wallet is move only private key and phising link
maybe your click link and your follow instruction in link web your visit
wallet is move only private key and phising link
Did you share your private keys with anyone? Maybe open any links via skype? Someone couldve hit you with a keylogger and be stealing your accounts
since 2 days i am experiencing a hell lot of dust in my BTC address , i thought it is better to watch it and when any big BTC amount will come then i will move it , but today just some hours before i saw someone sweeped the coin to some wallet.
can anyone let me know how is this all stuff happening?
reference thread: https://bitcointalksearch.org/topic/m.15867453
can anyone let me know how is this all stuff happening?
reference thread: https://bitcointalksearch.org/topic/m.15867453
Jump to: