what do you prefer? i run the malwarebytes pro version all i know is i had avg installed at one point and it would come up clean system, and then i download free version of malwarebytes and it came up with like 100+ viruses! what a joke that was a paid for version of AVG also, that was also a computer i had no crypto on at the time so i was lucky i found how useless the mainstream anti virus programs are.
Gibs187x do you live in the states? did you have your computer delivered? if you had it delivered it would of had to go thru the postal service and that's a government agency would not surprise me if they are hijacking packages with computers of interest, like yours would be being heavily involved in crypto for 4 years, and put shit on it.
yeah sounds like a conspiracy.
but the truth stranger then fiction i have come to find.
trust nothing and nobody anymore those days are long gone.
Topic: [SDC] ShadowCash | Welcome to the UMBRA - page 207. (Read 1289636 times)
lawgicc : ur shadow wallet had a 30+char password, yes?
how the hell could he get it without the pass?
ur blockchain.info is a separate issue, yes?
btw u r handling this remarkably well. u have my sympathy.
how the hell could he get it without the pass?
ur blockchain.info is a separate issue, yes?
btw u r handling this remarkably well. u have my sympathy.
.....
The only wallet qt I have is the newest SDC wallet.
The only wallet qt I have is the newest SDC wallet.
Do a check against the versions: checksum
How, example:
https://www.youtube.com/watch?v=C7ZZqnkrj48
checksuming a good idea (tho few will do it).
ive never seen a prog that checked its own cheksum b4 launch. If the app verified it's checksum by comparing to a value stored on the blockchain… then hmm… is this a solution?
nevertheless in lawgic's case the coins have been stolen by some other means.
what do we know?
1) the attacker did not use shadowsend
2) the attacker staked the wallet with the stolen funds
3) the wallet was protected with a 30+char pass
4) the PC was brand new
My Q
How did they know the pass? lawgic: did u ever enter it? was there maybe a keystroke logger that grabbed it?
It fucking beats me. I literally unwrapped this computer yesterday....No idea how a key logger would have got my new PC key logged that quick....My chromebook with linux was encrypted with 2 paraphrases, and my paraphrases are encrypted with pgp 30+ characters long, numbers+letters+symbols.
Never seen these files before?
any idea?
The Shadow-Qt with the shadow logo does nothing when clicked. I use a different folder/exe to open up the qt. Also the file below was added around the time my coins were lifted and someone tried to access my blockchain wallet.
for as long as I can remember, shadow.exe has been the file included in the .zip releases. and the most recent shadow.exe is ~12MB.
.....
The only wallet qt I have is the newest SDC wallet.
The only wallet qt I have is the newest SDC wallet.
Do a check against the versions: checksum
How, example:
https://www.youtube.com/watch?v=C7ZZqnkrj48
checksuming a good idea (tho few will do it).
ive never seen a prog that checked its own cheksum b4 launch. If the app verified it's checksum by comparing to a value stored on the blockchain… then hmm… is this a solution?
nevertheless in lawgic's case the coins have been stolen by some other means.
what do we know?
1) the attacker did not use shadowsend
2) the attacker staked the wallet with the stolen funds
3) the attacker made 2 withdrawals (robberies) seperated by several hours
4) the wallet was protected with a 30+char pass
5) the PC was brand new
My Q
How did they know the pass? lawgic: did u ever enter it? was there maybe a keystroke logger that grabbed it?
I think the attempts to log in to the blockchain.info account are a valuable clue.
The attacker never entered the right paraphrase to my Blockchain.info wallet or it wouldve logged it. The only log of the attacker was from the TOR ip that was blocked because of my settings. The keylogger has yet to access any of my other accounts..
.....
The only wallet qt I have is the newest SDC wallet.
The only wallet qt I have is the newest SDC wallet.
Do a check against the versions: checksum
How, example:
https://www.youtube.com/watch?v=C7ZZqnkrj48
checksuming a good idea (tho few will do it).
ive never seen a prog that checked its own cheksum b4 launch. If the app verified it's checksum by comparing to a value stored on the blockchain… then hmm… is this a solution?
nevertheless in lawgic's case the coins have been stolen by some other means.
what do we know?
1) the attacker did not use shadowsend
2) the attacker staked the wallet with the stolen funds
3) the wallet was protected with a 30+char pass
4) the PC was brand new
My Q
How did they know the pass? lawgic: did u ever enter it? was there maybe a keystroke logger that grabbed it?
It fucking beats me. I literally unwrapped this computer yesterday....No idea how a key logger would have got my new PC key logged that quick....My chromebook with linux was encrypted with 2 paraphrases, and my paraphrases are encrypted with pgp 30+ characters long, numbers+letters+symbols.
Never seen these files before?
any idea?
The Shadow-Qt with the shadow logo does nothing when clicked. I use a different folder/exe to open up the qt. Also the file below was added around the time my coins were lifted and someone tried to access my blockchain wallet.
.....
The only wallet qt I have is the newest SDC wallet.
The only wallet qt I have is the newest SDC wallet.
Do a check against the versions: checksum
How, example:
https://www.youtube.com/watch?v=C7ZZqnkrj48
checksuming a good idea (tho few will do it).
ive never seen a prog that checked its own cheksum b4 launch. If the app verified it's checksum by comparing to a value stored on the blockchain… then hmm… is this a solution?
nevertheless in lawgic's case the coins have been stolen by some other means.
what do we know?
1) the attacker did not use shadowsend
2) the attacker staked the wallet with the stolen funds
3) the attacker made 2 withdrawals (robberies) seperated by several hours
4) the wallet was protected with a 30+char pass
5) the PC was brand new
My Q
How did they know the pass? lawgic: did u ever enter it? was there maybe a keystroke logger that grabbed it?
I think the attempts to log in to the blockchain.info account are a valuable clue.
didnt look at those screens close but yes lawgicc appears to have fallen prey to a targeted attack.
my q again however is how did they know his pass for his shadow wallet? he must have entered it (typed it) at some point on his new PC which had a keylogger.
lawgicc: where did u buy ur new PC?
.....
The only wallet qt I have is the newest SDC wallet.
The only wallet qt I have is the newest SDC wallet.
Do a check against the versions: checksum
How, example:
https://www.youtube.com/watch?v=C7ZZqnkrj48
checksuming a good idea (tho few will do it).
ive never seen a prog that checked its own cheksum b4 launch. If the app verified it's checksum by comparing to a value stored on the blockchain… then hmm… is this a solution?
nevertheless in lawgic's case the coins have been stolen by some other means.
what do we know?
1) the attacker did not use shadowsend
2) the attacker staked the wallet with the stolen funds
3) the wallet was protected with a 30+char pass
4) the PC was brand new
My Q
How did they know the pass? lawgic: did u ever enter it? was there maybe a keystroke logger that grabbed it?
It fucking beats me. I literally unwrapped this computer yesterday....No idea how a key logger would have got my new PC key logged that quick....My chromebook with linux was encrypted with 2 paraphrases, and my paraphrases are encrypted with pgp 30+ characters long, numbers+letters+symbols.
Never seen these files before?
any idea?
The Shadow-Qt with the shadow logo does nothing when clicked. I use a different folder/exe to open up the qt. Also the file below was added around the time my coins were lifted and someone tried to access my blockchain wallet.
.....
The only wallet qt I have is the newest SDC wallet.
The only wallet qt I have is the newest SDC wallet.
Do a check against the versions: checksum
How, example:
https://www.youtube.com/watch?v=C7ZZqnkrj48
checksuming a good idea (tho few will do it).
ive never seen a prog that checked its own cheksum b4 launch. If the app verified it's checksum by comparing to a value stored on the blockchain… then hmm… is this a solution?
nevertheless in lawgic's case the coins have been stolen by some other means.
what do we know?
1) the attacker did not use shadowsend
2) the attacker staked the wallet with the stolen funds
3) the attacker made 2 withdrawals (robberies) seperated by several hours
4) the wallet was protected with a 30+char pass
5) the PC was brand new
My Q
How did they know the pass? lawgic: did u ever enter it? was there maybe a keystroke logger that grabbed it?
I think the attempts to log in to the blockchain.info account are a valuable clue.
.....
The only wallet qt I have is the newest SDC wallet.
The only wallet qt I have is the newest SDC wallet.
Do a check against the versions: checksum
How, example:
https://www.youtube.com/watch?v=C7ZZqnkrj48
checksuming a good idea (tho few will do it).
ive never seen a prog that checked its own cheksum b4 launch. If the app verified it's checksum by comparing to a value stored on the blockchain… then hmm… is this a solution?
nevertheless in lawgicc's case the coins have been stolen by some other means.
what do we know?
1) the attacker did not use shadowsend
2) the attacker staked the wallet with the stolen funds
3) the attacker made 2 withdrawals (robberies) seperated by several hours
4) the wallet was protected with a 30+char pass
5) the PC was brand new
My Q
How did they know the pass? lawgicc: did u ever enter it? was there maybe a keystroke logger that grabbed it?
.....
The only wallet qt I have is the newest SDC wallet.
The only wallet qt I have is the newest SDC wallet.
i first went to the website to download it then that didnt work i kept getting error messages so i downloaded it from the repost from Erok that was a repost of rynomaster....that didnt work so i went to the OP and that verison worked....Then my balance went to 0 once fully synced. Feels awesome.
.....
The only wallet qt I have is the newest SDC wallet.
The only wallet qt I have is the newest SDC wallet.
Do a check against the versions: checksum
How, example:
https://www.youtube.com/watch?v=C7ZZqnkrj48
.....
The only wallet qt I have is the newest SDC wallet.
The only wallet qt I have is the newest SDC wallet.
Are you sure you didn't get really high last night before bed, wake up in the middle of the night super paranoid of your new computer having NSA backdoors, create a new wallet on your old pc and send the SDC to it, enable it for staking, take another super fat dab and fall back asleep, waking up with no memory of the middle night paranoia fit?
i love people that try to down others that smoke weed. I can be blunted off an eighth to the dome and function perfectly fine. your lame joke would be somewhat humerous if i didnt just lose 55k sdc. its good though atleast dasource has verified the SDC didnt get sent from my wallets. Why would i make this all up?? For what??? a couple free extra SDC and a pitty party? fuck off yo i dont even want anyones sdc its good
-img-
it wasn't a joke, it was a serious inquiry. stranger things have happened and i certainly have nothing against cannabis.
so either your wallet.dat got lifted from your computer, or someone brute forced your private key.
even if someone lifted my wallet.dat file theyd have to have my paraphrase....which is pretty damn impressive if they cracked that.
please elaborate what a brute force of my private key is?
I dont believe it was a keylogger....I tested it myself, with wrong passwords, wrong auth codes, and the only access the attacker did was inbetween the red and blue lines. (This is on my blockchain wallet, same day my SDC coins go missing.)
The only wallet qt I have is the newest SDC wallet.
Are you sure you didn't get really high last night before bed, wake up in the middle of the night super paranoid of your new computer having NSA backdoors, create a new wallet on your old pc and send the SDC to it, enable it for staking, take another super fat dab and fall back asleep, waking up with no memory of the middle night paranoia fit?
i love people that try to down others that smoke weed. I can be blunted off an eighth to the dome and function perfectly fine. your lame joke would be somewhat humerous if i didnt just lose 55k sdc. its good though atleast dasource has verified the SDC didnt get sent from my wallets. Why would i make this all up?? For what??? a couple free extra SDC and a pitty party? fuck off yo i dont even want anyones sdc its good
Sorry you're having this horrible experience. I don't understand how such a thing is possible, it seems very weird! I'm not very tech savvy so I don't get much of the discussion but if you don't find your coins, even if you don't wanna anyone's SDC I'll happily donate a little something for solidarity.
Should we all fear for our coins? It would be great if someone could identify how these coins got hacked and explain the other how to protect their coins from this to happen.
it's not the responsibility of the devs to make sure everyone's coins are safe from malware. pulling coins off of the network would negatively impact the security of the network.
Here are some apps i would like to see on sold in the shadowapp store one day
1. shadowvault a program that stores your wallet securely like the many vault programs, but using shadowtech because the ones out there now suck.
2. A shadow version of Authy for optional 2FA in the SDC wallet
If we had these i would store my wallet wallet.dat all in vault with PW and 2FA , then i would have my wallet with another PW and 2FA try breaking into that bitch.
1. shadowvault a program that stores your wallet securely like the many vault programs, but using shadowtech because the ones out there now suck.
2. A shadow version of Authy for optional 2FA in the SDC wallet
If we had these i would store my wallet wallet.dat all in vault with PW and 2FA , then i would have my wallet with another PW and 2FA try breaking into that bitch.
Are you sure you didn't get really high last night before bed, wake up in the middle of the night super paranoid of your new computer having NSA backdoors, create a new wallet on your old pc and send the SDC to it, enable it for staking, take another super fat dab and fall back asleep, waking up with no memory of the middle night paranoia fit?
i love people that try to down others that smoke weed. I can be blunted off an eighth to the dome and function perfectly fine. your lame joke would be somewhat humerous if i didnt just lose 55k sdc. its good though atleast dasource has verified the SDC didnt get sent from my wallets. Why would i make this all up?? For what??? a couple free extra SDC and a pitty party? fuck off yo i dont even want anyones sdc its good
Sorry you're having this horrible experience. I don't understand how such a thing is possible, it seems very weird! I'm not very tech savvy so I don't get much of the discussion but if you don't find your coins, even if you don't wanna anyone's SDC I'll happily donate a little something for solidarity.
Should we all fear for our coins? It would be great if someone could identify how these coins got hacked and explain the other how to protect their coins from this to happen.
it's not the responsibility of the devs to make sure everyone's coins are safe from malware. pulling coins off of the network would negatively impact the security of the network.
Should we all fear for our coins? It would be great if someone could identify how these coins got hacked and explain the other how to protect their coins from this to happen.
It is the same as any other hack ... you get affected by malware and the rest is history.
The best way to protect yourself if you have a sizable investment (by your own admission) and you wish to stake is to use a separate device. (if you have the know how use multisig).
Part of the development on the ShadowCore over the past month has been to bring the likes of BIP32/39 etc. Hopefully once we have these on the main-net we can get some interest from a hardware vendor to support Shadow Hardware Wallet so everyone can sleep at night better knowing there Shadows are more secure than ever.
Generally speaking the message today post this unfortunate incident is the same as always, be extra careful where, how and what you do on devices where any sums of any crypto is present.
Are you sure you didn't get really high last night before bed, wake up in the middle of the night super paranoid of your new computer having NSA backdoors, create a new wallet on your old pc and send the SDC to it, enable it for staking, take another super fat dab and fall back asleep, waking up with no memory of the middle night paranoia fit?
i love people that try to down others that smoke weed. I can be blunted off an eighth to the dome and function perfectly fine. your lame joke would be somewhat humerous if i didnt just lose 55k sdc. its good though atleast dasource has verified the SDC didnt get sent from my wallets. Why would i make this all up?? For what??? a couple free extra SDC and a pitty party? fuck off yo i dont even want anyones sdc its good
Sorry you're having this horrible experience. I don't understand how such a thing is possible, it seems very weird! I'm not very tech savvy so I don't get much of the discussion but if you don't find your coins, even if you don't wanna anyone's SDC I'll happily donate a little something for solidarity.
Should we all fear for our coins? It would be great if someone could identify how these coins got hacked and explain the other how to protect their coins from this to happen.
Are you sure you didn't get really high last night before bed, wake up in the middle of the night super paranoid of your new computer having NSA backdoors, create a new wallet on your old pc and send the SDC to it, enable it for staking, take another super fat dab and fall back asleep, waking up with no memory of the middle night paranoia fit?
i love people that try to down others that smoke weed. I can be blunted off an eighth to the dome and function perfectly fine. your lame joke would be somewhat humerous if i didnt just lose 55k sdc. its good though atleast dasource has verified the SDC didnt get sent from my wallets. Why would i make this all up?? For what??? a couple free extra SDC and a pitty party? fuck off yo i dont even want anyones sdc its good
-img-
it wasn't a joke, it was a serious inquiry. stranger things have happened and i certainly have nothing against cannabis.
so either your wallet.dat got lifted from your computer, or someone brute forced your private key.
Are you sure you didn't get really high last night before bed, wake up in the middle of the night super paranoid of your new computer having NSA backdoors, create a new wallet on your old pc and send the SDC to it, enable it for staking, take another super fat dab and fall back asleep, waking up with no memory of the middle night paranoia fit?
i love people that try to down others that smoke weed. I can be blunted off an eighth to the dome and function perfectly fine. your lame joke would be somewhat humerous if i didnt just lose 55k sdc. its good though atleast dasource has verified the SDC didnt get sent from my wallets. Why would i make this all up?? For what??? a couple free extra SDC and a pitty party? fuck off yo i dont even want anyones sdc its good
Sorry you're having this horrible experience. I don't understand how such a thing is possible, it seems very weird! I'm not very tech savvy so I don't get much of the discussion but if you don't find your coins, even if you don't wanna anyone's SDC I'll happily donate a little something for solidarity.
Should we all fear for our coins? It would be great if someone could identify how these coins got hacked and explain the other how to protect their coins from this to happen.
Jump to: