Pages:
Author

Topic: [ NEW VIRUS ] THIS ADDY GETS PASTED : 19ZM2pjq6U4jVb283GZkCPNukjeyb2YZ2u - page 2. (Read 6005 times)

hero member
Activity: 756
Merit: 500
This is why I recommend getting something like an Intel NUC dedicated to bitcoin.

Put Linux on it, and do not run any browser plugins or extensions, and do not use Chrome for Linux (it is closed source) on it.

Such a PC should only be used for your bitcoin activity, not general browsing. Not even browsing this forum. Just use it for bitcoin.

You can run a wallet on your normal PC just like you can keep some fiat cash in your leather wallet, but keep the value low.

btw flash (even in Chrome) is dangerous because flash allows programs loaded from web pages to manipulate the clipboard. Get rid of flash even on computers that you don't use with bitcoin.

Good information here. I have been trying to do all bitcoin activity on only ONE computer in the house, with no internet browsing.
hero member
Activity: 630
Merit: 500
This is why I recommend getting something like an Intel NUC dedicated to bitcoin.

Put Linux on it, and do not run any browser plugins or extensions, and do not use Chrome for Linux (it is closed source) on it.

Such a PC should only be used for your bitcoin activity, not general browsing. Not even browsing this forum. Just use it for bitcoin.

You can run a wallet on your normal PC just like you can keep some fiat cash in your leather wallet, but keep the value low.

btw flash (even in Chrome) is dangerous because flash allows programs loaded from web pages to manipulate the clipboard. Get rid of flash even on computers that you don't use with bitcoin.

Good idea, if OP is knowledgeable he could even do something similar on a less pricey option such as a Raspberry Pi.
full member
Activity: 182
Merit: 107
This is why I recommend getting something like an Intel NUC dedicated to bitcoin.

Put Linux on it, and do not run any browser plugins or extensions, and do not use Chrome for Linux (it is closed source) on it.

Such a PC should only be used for your bitcoin activity, not general browsing. Not even browsing this forum. Just use it for bitcoin.

You can run a wallet on your normal PC just like you can keep some fiat cash in your leather wallet, but keep the value low.

btw flash (even in Chrome) is dangerous because flash allows programs loaded from web pages to manipulate the clipboard. Get rid of flash even on computers that you don't use with bitcoin.
legendary
Activity: 1204
Merit: 1000
As digit asked, can you tell us if you installed any extension (browser add-on) recently, it can be because of that, a few months ago an extension opened automatically a website.

none installed bro
only have these ones : http://prntscr.com/9rbd0z
I think that's the time to install an anti clipboard logger software, take a look here how it works: https://www.spyshelter.com/clipboard-protection/ ,if you still have the issue please install this app and try if it fixes the issue.
hero member
Activity: 499
Merit: 500
As digit asked, can you tell us if you installed any extension (browser add-on) recently, it can be because of that, a few months ago an extension opened automatically a website.

none installed bro
only have these ones : http://prntscr.com/9rbd0z
legendary
Activity: 1204
Merit: 1000
As digit asked, can you tell us if you installed any extension (browser add-on) recently, it can be because of that, a few months ago an extension opened automatically a website.
hero member
Activity: 499
Merit: 500
http://prntscr.com/9rb6o0

these are processrunning, any wrong one ?
hero member
Activity: 756
Merit: 500
I am really horrified now!
I have searched internet more and saw someone else had same issue

please help me !
ive heard about it before, but im not really sure what kind of malware this is. i suggest you download malwarebytes to scan your computer. its free and its pretty good imo.
hero member
Activity: 499
Merit: 500
This is because of some file or a script that work in background .It must have come with something . I think it is with some software . I think you have installed a new software which runs the command in cmd to do it.

Can you please give me a view of a task manager- process section & startup section , i think i can crack which file it is working in background. If you want to keep up the softwares and files and dont lose them up . You have to end that process which is working in background everytime you run up your PC or you can remove that up from program startup like this:-


1)Press Win-r . In the "Open:" field, type msconfig and press Enter .
2)Click the Startup tab.
3)Uncheck the items you do not want to launch on startup. Note: ...
4)When you have finished making your selections, click OK.
5)n the box that appears, click Restart to restart your computer.

There is a solution : Reset your PC

Reset is an option which allows you to reinstall OS with the option to KEEP THE FILES OR NOT.

What things affects:-

a) all the software you had installed are gone,but you can keep up with the files.



look at this post
https://bitcointalksearch.org/topic/m.13575511

someone use that address


So does that mean bx2.club behind it ? Huh


Hey, thanks really you seem to help me.

Please can u help me, give me ur skype i will tell u all process running on my pc
legendary
Activity: 4424
Merit: 4794
seems like its not a virus..
but people naively using blockchain.info to view transactions after its sent..

seems there is a bug on blockchain.info involving how they display transactions on the website

Could you explain abit more about this franky, i use blockchain.info all the time  Shocked

although most of my wallets are watch only.

someone else in this thread posted
https://bitcointalksearch.org/topic/m.13575511

it showed people complaining that when they looked at blockchain.info they seen tx's going to that magical address..

later posts mentioned that the transactions appeared where they should have gone and that it was a bug in the blockchain.info service displaying wrong details..

i advise you to not rely on just blockchain.info..

instead use the API of atleast 3 different explorers and a couple lines of code to compare the results from the 3 explorers.. and if one is wrong, ignore it. that way you have more chance of relying on data spoonfed to you if it comes from different sources and compared against each other
hero member
Activity: 1106
Merit: 521
seems like its not a virus..
but people naively using blockchain.info to view transactions after its sent..

seems there is a bug on blockchain.info involving how they display transactions on the website

Could you explain abit more about this franky, i use blockchain.info all the time  Shocked

although most of my wallets are watch only.
legendary
Activity: 4424
Merit: 4794
seems like its not a virus..
but people naively using blockchain.info to view transactions after its sent..

seems there is a bug on blockchain.info involving how they display transactions on the website
legendary
Activity: 1778
Merit: 1043
#Free market
Backup wallet.dat and the blockchain (depending on what wallet you are using) and reinstall OS.

@txbtc, this is the best option that you can do... Next step, improve your security and change your habits.
hero member
Activity: 630
Merit: 500
look at this post
https://bitcointalksearch.org/topic/m.13575511

someone use that address

Nice find, also further research led me to find someone who uses Bitcoin on facebook who has the name of that user account that may own that address, not sure if there's a naming and shaming policy at all here so will refrain from posting it although it's an easy find.
legendary
Activity: 1596
Merit: 1027
This is very worrying. Do you know where did you could have gotten that virus? It would be great to know where is this menace coming from.
sr. member
Activity: 350
Merit: 250
This is because of some file or a script that work in background .It must have come with something . I think it is with some software . I think you have installed a new software which runs the command in cmd to do it.

Can you please give me a view of a task manager- process section & startup section , i think i can crack which file it is working in background. If you want to keep up the softwares and files and dont lose them up . You have to end that process which is working in background everytime you run up your PC or you can remove that up from program startup like this:-


1)Press Win-r . In the "Open:" field, type msconfig and press Enter .
2)Click the Startup tab.
3)Uncheck the items you do not want to launch on startup. Note: ...
4)When you have finished making your selections, click OK.
5)n the box that appears, click Restart to restart your computer.

There is a solution : Reset your PC

Reset is an option which allows you to reinstall OS with the option to KEEP THE FILES OR NOT.

What things affects:-

a) all the software you had installed are gone,but you can keep up with the files.



look at this post
https://bitcointalksearch.org/topic/m.13575511

someone use that address


So does that mean bx2.club behind it ? Huh
hero member
Activity: 630
Merit: 500
So is this replacing your pasted data, aka if you were to actually recheck the address after pasting would it be the incorrect address?
hero member
Activity: 756
Merit: 502
legendary
Activity: 1568
Merit: 1000
So nobody asks about his technical specs? I'm no IT support but that's the first thing we should be doing I think. It's most likely like others have said that you've installed spyware/malware. This is usually downloaded from pirate download sites, porn sites, etc. Please keep us posted.
legendary
Activity: 3248
Merit: 1070
virus does not enter into your computer of its own will, so you must have installed somethign suspicious and forget about it

try to run malwarebyte + hitmanpro, then you have combofix, or a secure erase if nathing will solve it
Pages:
Jump to: