How could the hacker transfer the money ? I had the wallet secured by a password as well ?
This is quite easy if the attacker had a keylogger installed on your system. A little patience and sooner or later he would see you typing in your password.
Topic: My wallet on the computer was robbed (Read 2467 times)
This is quite easy if the attacker had a keylogger installed on your system. A little patience and sooner or later he would see you typing in your password.
Hi, an intruder robbed my bitcoins. What can I do ? Any suggestions ?
transaction ID of this please? Thanks for your advice, I felt safe, because I had Bitdefender anti virus programme installed, but that one completely disappeared. Looks like the attacker could delete it.
Which version of Bitdefender you were using? Still there is something fishy here. I don't think the intruder can remotely disable or remove Bitdefender from your system. Do you regularly update your anti-virus?
So, when I am running a new security programme with scanning and all kind of options to debug my computer, will it still not be safe for future attacks ?
Of course I will not store any Bitcoins anymore, just for normal operations.....does it mean that these standard security programmes are not protecting my computer against a pro attack at all ? (obviously Bitdefender did not do the job).
If this is the case I see no future for a digital currency.....
Of course I will not store any Bitcoins anymore, just for normal operations.....does it mean that these standard security programmes are not protecting my computer against a pro attack at all ? (obviously Bitdefender did not do the job).
If this is the case I see no future for a digital currency.....
they can help, but they will not offer 100% protection, for 100% protection you must build a separate machine and don't surf internet or download anything
for now you should do a format c, to be sure your machine is clear
So, when I am running a new security programme with scanning and all kind of options to debug my computer, will it still not be safe for future attacks ?
Of course I will not store any Bitcoins anymore, just for normal operations.....does it mean that these standard security programmes are not protecting my computer against a pro attack at all ? (obviously Bitdefender did not do the job).
If this is the case I see no future for a digital currency.....
Of course I will not store any Bitcoins anymore, just for normal operations.....does it mean that these standard security programmes are not protecting my computer against a pro attack at all ? (obviously Bitdefender did not do the job).
If this is the case I see no future for a digital currency.....
Amph
ok, I understand, but how could he manage to delete my security software (bitdefender), obviously he hacked my computer and then deleted this programme....
There is a lot of criminal energy involved to achieve this...well like in any other robbery of course.
But longterm this could kill the Bitcoin. If in a case like this, you cannot mark your coins as stolen to block them for further usage at least, not even talking about tracing the coins to the new "owner".
ok, I understand, but how could he manage to delete my security software (bitdefender), obviously he hacked my computer and then deleted this programme....
There is a lot of criminal energy involved to achieve this...well like in any other robbery of course.
But longterm this could kill the Bitcoin. If in a case like this, you cannot mark your coins as stolen to block them for further usage at least, not even talking about tracing the coins to the new "owner".
if he controlling your pc at kernel level, you are screwed, he can do basically everything with your machine, the only option now is to secure erase
next time i would suggest to keep a small amount in your client that is running on your main machine(like 0.01 btc), all your other funds in a different wallet(cold storage, no internet connection)
if your 0.01 vanishes one day, you know you are infected, and you can clean your machine with a minimal loss, it's the best strategy against those malicious guy
Amph
ok, I understand, but how could he manage to delete my security software (bitdefender), obviously he hacked my computer and then deleted this programme....
There is a lot of criminal energy involved to achieve this...well like in any other robbery of course.
But longterm this could kill the Bitcoin. If in a case like this, you cannot mark your coins as stolen to block them for further usage at least, not even talking about tracing the coins to the new "owner".
ok, I understand, but how could he manage to delete my security software (bitdefender), obviously he hacked my computer and then deleted this programme....
There is a lot of criminal energy involved to achieve this...well like in any other robbery of course.
But longterm this could kill the Bitcoin. If in a case like this, you cannot mark your coins as stolen to block them for further usage at least, not even talking about tracing the coins to the new "owner".
Marking (Tainting) wouldnt help you. He looks like a pro so you can be very sure that he knows how to exchange his coins to fresh untainted coins. So at the time your coins are found and stopped, they only belong to another innocent person.
I wonder what would happen. Is money marked as belonging to a robbery is seized? I guess so. Maybe then those coins would be seized too and the innocent person would be the victim.
Amph
ok, I understand, but how could he manage to delete my security software (bitdefender), obviously he hacked my computer and then deleted this programme....
There is a lot of criminal energy involved to achieve this...well like in any other robbery of course.
But longterm this could kill the Bitcoin. If in a case like this, you cannot mark your coins as stolen to block them for further usage at least, not even talking about tracing the coins to the new "owner".
ok, I understand, but how could he manage to delete my security software (bitdefender), obviously he hacked my computer and then deleted this programme....
There is a lot of criminal energy involved to achieve this...well like in any other robbery of course.
But longterm this could kill the Bitcoin. If in a case like this, you cannot mark your coins as stolen to block them for further usage at least, not even talking about tracing the coins to the new "owner".
MegaFall: Or could have simply found the private keys...
What does that mean exactly ?
What does that mean exactly ?
if he infected your pc with a rat, he can take control of your pc, and see your private key after you access your wallet, so it doesn't even need to type the password, he just wait you to do so and steal your private key
MegaFall: Or could have simply found the private keys...
What does that mean exactly ?
What does that mean exactly ?
nothing you can do at this point, unless thinking cold storage or hardware wallet..
sorry for your loss..
sorry for your loss..
How could the hacker transfer the money ? I had the wallet secured by a password as well ?
This is quite easy if the attacker had a keylogger installed on your system. A little patience and sooner or later he would see you typing in your password.
Or could have simply found the private keys...
OnkelPaul: How do you know the IP addresses?
Thanks for your message. The IP address was used to attack my exchange account at the same time. I know he might have used some vpn, nevertheless I try my best. I also filed a fraud report in the meantime.
Thanks for your message. The IP address was used to attack my exchange account at the same time. I know he might have used some vpn, nevertheless I try my best. I also filed a fraud report in the meantime.
How could the hacker transfer the money ? I had the wallet secured by a password as well ?
This is quite easy if the attacker had a keylogger installed on your system. A little patience and sooner or later he would see you typing in your password.
You may want to consider your computer compromised. 
Is it a windows PC? Then you may also want to consider installing Linux in a partition. That way you can boot up Linux when you need better security. (Not that it's fool proof). It may be hard to determine where you picked up some mal-ware, but avoid downloading programs related to BTC unless they are open source. Anyway, sorry to hear about your loss.
Is it a windows PC? Then you may also want to consider installing Linux in a partition. That way you can boot up Linux when you need better security. (Not that it's fool proof). It may be hard to determine where you picked up some mal-ware, but avoid downloading programs related to BTC unless they are open source. Anyway, sorry to hear about your loss.
Thanks, I always wanted to do this, use a cold computer also, but well, too busy with other things, so stupid.
How could the hacker transfer the money ? I had the wallet secured by a password as well ?
Any specialist out there who has a good idea please contact me !
How could the hacker transfer the money ? I had the wallet secured by a password as well ?
Any specialist out there who has a good idea please contact me !
I recommend buying an old decent quality laptop from ebay. Maybe an IBM Thinkpad with fingerprint recognition. Do a DOD wipe/rewrite of the hard drive or replace it. Install a linux distro. Only connect it to the internet for security updates, Bitcoin core updates, to update the blockchain and to perform Bitcoin transactions. Also, after you installed and updated Bitcoin, disconnect from internet, encrypt wallet in the Bitcoin Core and save a copy into a truecrypt v7 container. I would also encrypt the entire hard drive with truecrypt v7 as well. Use very strong and unique passphrases for each the wallet, portable truecrypt container, and disk encryption.
Here is an example of a very strong passphrase: "My Daughter was born on May 13, 2003 in Hamburg Hospital in Room 213 @ 7:03am."
Here is an example of a very strong passphrase: "My Daughter was born on May 13, 2003 in Hamburg Hospital in Room 213 @ 7:03am."
One attack came from this IP: 51.21.9.22 Netherland, NL
Second one from here: 198.38.94.199 ALAMO, CALIFORNIA, UNITED STATES 2015-04-09 06:59:08 EST
Second one from here: 198.38.94.199 ALAMO, CALIFORNIA, UNITED STATES 2015-04-09 06:59:08 EST
How do you know the IP addresses? It is extremely difficult to find the actual source of malware because by the time it gets active, the traces of its installation are normally gone.
If you're just looking at IP addresses recorded by your firewall software, just ignore them, any computer on the internet is constantly bombarded with "attack" IP packets that are not any more than simple knocks at the door. The firewall has already prevented connections from these IP addresses, but it will not report the real source of a successful attack because it can't - otherwise it would have prevented the attack.
Malware on windows computers is mostly installed either by yourself (when you installed something downloaded from the internet) or by your browser when an attacker exploits a browser security hole.
Onkel Paul
Thanks for your advice, I felt safe, because I had Bitdefender anti virus programme installed, but that one completely disappeared. Looks like the attacker could delete it.
My bitcoins went to this address: 1GgJkUADnzZ6kNF13toGpv7o8bCj3WYQov
One attack came from this IP: 51.21.9.22 Netherland, NL
Second one from here: 198.38.94.199 ALAMO, CALIFORNIA, UNITED STATES 2015-04-09 06:59:08 EST
Can somebody help me to trace this guy ?
My bitcoins went to this address: 1GgJkUADnzZ6kNF13toGpv7o8bCj3WYQov
One attack came from this IP: 51.21.9.22 Netherland, NL
Second one from here: 198.38.94.199 ALAMO, CALIFORNIA, UNITED STATES 2015-04-09 06:59:08 EST
Can somebody help me to trace this guy ?
if he deleted the wallet, you have probably a rootkit or rat, because some antivirus have protection against cancellation from malware(i know malwarebyte has chamaleont)
tracing him would be really hard because it seems he is using a proxy/vpn
Thanks for your advice, I felt safe, because I had Bitdefender anti virus programme installed, but that one completely disappeared. Looks like the attacker could delete it.
My bitcoins went to this address: 1GgJkUADnzZ6kNF13toGpv7o8bCj3WYQov
One attack came from this IP: 51.21.9.22 Netherland, NL
Second one from here: 198.38.94.199 ALAMO, CALIFORNIA, UNITED STATES 2015-04-09 06:59:08 EST
Can somebody help me to trace this guy ?
My bitcoins went to this address: 1GgJkUADnzZ6kNF13toGpv7o8bCj3WYQov
One attack came from this IP: 51.21.9.22 Netherland, NL
Second one from here: 198.38.94.199 ALAMO, CALIFORNIA, UNITED STATES 2015-04-09 06:59:08 EST
Can somebody help me to trace this guy ?
Jump to: