[ NEW VIRUS ] THIS ADDY GETS PASTED : 19ZM2pjq6U4jVb283GZkCPNukjeyb2YZ2u - page 2.

BellaBitBit

hero member

Activity: 756

Merit: 500

Quote from: AliceWonderMiscreations on January 17, 2016, 02:24:13 PM

This is why I recommend getting something like an Intel NUC dedicated to bitcoin.

Put Linux on it, and do not run any browser plugins or extensions, and do not use Chrome for Linux (it is closed source) on it.

Such a PC should only be used for your bitcoin activity, not general browsing. Not even browsing this forum. Just use it for bitcoin.

You can run a wallet on your normal PC just like you can keep some fiat cash in your leather wallet, but keep the value low.

btw flash (even in Chrome) is dangerous because flash allows programs loaded from web pages to manipulate the clipboard. Get rid of flash even on computers that you don't use with bitcoin.

Good information here. I have been trying to do all bitcoin activity on only ONE computer in the house, with no internet browsing.

ShrykeZ

hero member

Activity: 630

Merit: 500

Quote from: AliceWonderMiscreations on January 17, 2016, 02:24:13 PM

This is why I recommend getting something like an Intel NUC dedicated to bitcoin.

Put Linux on it, and do not run any browser plugins or extensions, and do not use Chrome for Linux (it is closed source) on it.

Such a PC should only be used for your bitcoin activity, not general browsing. Not even browsing this forum. Just use it for bitcoin.

You can run a wallet on your normal PC just like you can keep some fiat cash in your leather wallet, but keep the value low.

btw flash (even in Chrome) is dangerous because flash allows programs loaded from web pages to manipulate the clipboard. Get rid of flash even on computers that you don't use with bitcoin.

Good idea, if OP is knowledgeable he could even do something similar on a less pricey option such as a Raspberry Pi.

AliceWonderMiscreations

full member

Activity: 182

Merit: 107

This is why I recommend getting something like an Intel NUC dedicated to bitcoin.

Put Linux on it, and do not run any browser plugins or extensions, and do not use Chrome for Linux (it is closed source) on it.

Such a PC should only be used for your bitcoin activity, not general browsing. Not even browsing this forum. Just use it for bitcoin.

You can run a wallet on your normal PC just like you can keep some fiat cash in your leather wallet, but keep the value low.

btw flash (even in Chrome) is dangerous because flash allows programs loaded from web pages to manipulate the clipboard. Get rid of flash even on computers that you don't use with bitcoin.

SmartIphone

legendary

Activity: 1204

Merit: 1000

Quote from: txbtc on January 17, 2016, 02:15:11 PM

Quote from: SmartIphone on January 17, 2016, 02:06:07 PM

As digit asked, can you tell us if you installed any extension (browser add-on) recently, it can be because of that, a few months ago an extension opened automatically a website.

none installed bro
only have these ones : http://prntscr.com/9rbd0z

I think that's the time to install an anti clipboard logger software, take a look here how it works: https://www.spyshelter.com/clipboard-protection/ ,if you still have the issue please install this app and try if it fixes the issue.

txbtc

hero member

Activity: 499

Merit: 500

Quote from: SmartIphone on January 17, 2016, 02:06:07 PM

As digit asked, can you tell us if you installed any extension (browser add-on) recently, it can be because of that, a few months ago an extension opened automatically a website.

none installed bro
only have these ones : http://prntscr.com/9rbd0z

SmartIphone

legendary

Activity: 1204

Merit: 1000

As digit asked, can you tell us if you installed any extension (browser add-on) recently, it can be because of that, a few months ago an extension opened automatically a website.

txbtc

hero member

Activity: 499

Merit: 500

http://prntscr.com/9rb6o0

these are processrunning, any wrong one ?

Hugroll

hero member

Activity: 756

Merit: 500

Quote from: txbtc on January 17, 2016, 08:20:55 AM

I am really horrified now!
I have searched internet more and saw someone else had same issue

please help me !

ive heard about it before, but im not really sure what kind of malware this is. i suggest you download malwarebytes to scan your computer. its free and its pretty good imo.

txbtc

hero member

Activity: 499

Merit: 500

Quote from: pjsonowal on January 17, 2016, 11:48:57 AM

This is because of some file or a script that work in background .It must have come with something . I think it is with some software . I think you have installed a new software which runs the command in cmd to do it.

Can you please give me a view of a task manager- process section & startup section , i think i can crack which file it is working in background. If you want to keep up the softwares and files and dont lose them up . You have to end that process which is working in background everytime you run up your PC or you can remove that up from program startup like this:-

1)Press Win-r . In the "Open:" field, type msconfig and press Enter .
2)Click the Startup tab.
3)Uncheck the items you do not want to launch on startup. Note: ...
4)When you have finished making your selections, click OK.
5)n the box that appears, click Restart to restart your computer.

There is a solution : Reset your PC

Reset is an option which allows you to reinstall OS with the option to KEEP THE FILES OR NOT.

What things affects:-

a) all the software you had installed are gone,but you can keep up with the files.

Quote from: elyas772 on January 17, 2016, 11:43:53 AM

look at this post
https://bitcointalksearch.org/topic/m.13575511

someone use that address

So does that mean bx2.club behind it ? Huh

Hey, thanks really you seem to help me.

Please can u help me, give me ur skype i will tell u all process running on my pc

franky1

legendary

Activity: 4214

Merit: 4458

Quote from: calkob on January 17, 2016, 12:27:30 PM

Quote from: franky1 on January 17, 2016, 12:11:34 PM

seems like its not a virus..
but people naively using blockchain.info to view transactions after its sent..

seems there is a bug on blockchain.info involving how they display transactions on the website

Could you explain abit more about this franky, i use blockchain.info all the time Shocked

although most of my wallets are watch only.

someone else in this thread posted
https://bitcointalksearch.org/topic/m.13575511

it showed people complaining that when they looked at blockchain.info they seen tx's going to that magical address..

later posts mentioned that the transactions appeared where they should have gone and that it was a bug in the blockchain.info service displaying wrong details..

i advise you to not rely on just blockchain.info..

instead use the API of atleast 3 different explorers and a couple lines of code to compare the results from the 3 explorers.. and if one is wrong, ignore it. that way you have more chance of relying on data spoonfed to you if it comes from different sources and compared against each other

calkob

hero member

Activity: 1092

Merit: 520

Quote from: franky1 on January 17, 2016, 12:11:34 PM

seems like its not a virus..
but people naively using blockchain.info to view transactions after its sent..

seems there is a bug on blockchain.info involving how they display transactions on the website

Could you explain abit more about this franky, i use blockchain.info all the time Shocked

although most of my wallets are watch only.

franky1

legendary

Activity: 4214

Merit: 4458

seems like its not a virus..
but people naively using blockchain.info to view transactions after its sent..

seems there is a bug on blockchain.info involving how they display transactions on the website

redsn0w

legendary

Activity: 1778

Merit: 1042

#Free market

Quote from: Lauda on January 17, 2016, 08:24:01 AM

Backup wallet.dat and the blockchain (depending on what wallet you are using) and reinstall OS.

@txbtc, this is the best option that you can do... Next step, improve your security and change your habits.

ShrykeZ

hero member

Activity: 630

Merit: 500

Quote from: elyas772 on January 17, 2016, 11:43:53 AM

look at this post
https://bitcointalksearch.org/topic/m.13575511

someone use that address

Nice find, also further research led me to find someone who uses Bitcoin on facebook who has the name of that user account that may own that address, not sure if there's a naming and shaming policy at all here so will refrain from posting it although it's an easy find.

Blawpaw

legendary

Activity: 1596

Merit: 1027

This is very worrying. Do you know where did you could have gotten that virus? It would be great to know where is this menace coming from.

pjsonowal

sr. member

Activity: 350

Merit: 250

This is because of some file or a script that work in background .It must have come with something . I think it is with some software . I think you have installed a new software which runs the command in cmd to do it.

Can you please give me a view of a task manager- process section & startup section , i think i can crack which file it is working in background. If you want to keep up the softwares and files and dont lose them up . You have to end that process which is working in background everytime you run up your PC or you can remove that up from program startup like this:-

1)Press Win-r . In the "Open:" field, type msconfig and press Enter .
2)Click the Startup tab.
3)Uncheck the items you do not want to launch on startup. Note: ...
4)When you have finished making your selections, click OK.
5)n the box that appears, click Restart to restart your computer.

There is a solution : Reset your PC

Reset is an option which allows you to reinstall OS with the option to KEEP THE FILES OR NOT.

What things affects:-

a) all the software you had installed are gone,but you can keep up with the files.

Quote from: elyas772 on January 17, 2016, 11:43:53 AM

look at this post
https://bitcointalksearch.org/topic/m.13575511

someone use that address

So does that mean bx2.club behind it ? Huh

ShrykeZ

hero member

Activity: 630

Merit: 500

So is this replacing your pasted data, aka if you were to actually recheck the address after pasting would it be the incorrect address?

elyas772

hero member

Activity: 756

Merit: 502

look at this post
https://bitcointalksearch.org/topic/m.13575511

someone use that address

mtnsaa

legendary

Activity: 1568

Merit: 1000

So nobody asks about his technical specs? I'm no IT support but that's the first thing we should be doing I think. It's most likely like others have said that you've installed spyware/malware. This is usually downloaded from pirate download sites, porn sites, etc. Please keep us posted.

Amph

legendary

Activity: 3206

Merit: 1069

virus does not enter into your computer of its own will, so you must have installed somethign suspicious and forget about it

try to run malwarebyte + hitmanpro, then you have combofix, or a secure erase if nathing will solve it

Topic: [ NEW VIRUS ] THIS ADDY GETS PASTED : 19ZM2pjq6U4jVb283GZkCPNukjeyb2YZ2u - page 2. (Read 5941 times)