Fixed that for you..

---

The cryptocurrency market (especially bitcoin) is very irrational.
While an approved ETF might have a positive influence, i wouldn't bet on it.

Especially in times without too much of activity, it seems like the chart doesn't care about any news (neither positive nor negative).

I can very well imagine that an approved ETF would arouse some peoples curiosity, which then could lead to a rising interest again.
But i don't believe it will trigger another bull run as seen in 2017.
At least a positive movement seems to be more probable than a negative one regarding an approved ETF.

To spend single UTXO's you need the corresponding private key.

For a proper backup, it is enough to backup the master private key (starting with xpriv..).


You can get the xpriv by executing these commands:

The first command unlocks your wallet for sensitive actions for 10 minutes.

The second command creates a text file in the data directory of core.
You'll be able to get your xpriv from this file.

The seed extension feature does NOT replace 2FA protection.
Data secured with 2FA needs 2 things to be accessed: Something you know (seed, password, secret information, ...) and something you have (token, mobile phone, ...).

Using the seed extension just adds another thing you need to know. This adds plausible deniability, but that's not 2FA - by definition.




I wouldn't be too sure about that.
Depending on the extended word (which basically is just a password) it might be able to be bruteforced.
The whole security (if you rely on the seed extension as security factor) is dependent from the password (lenght, char set, comlexity, ...) used. And humans are known to choose weak passwords.

If someone has access to the seed, bruteforcing a medium password is definitely an option.

You don't explicitly use addresses for payment. On a technical level addresses don't exist.

What you actually do (or better: your wallet does) is, taking multiple UTXO and combining them to new UTXO's.
A part of these new UTXO's (usually one) is being assigned to the receipent, while another UTXO is being assigned to a new address of yours (your change).

To do this your wallet does need to sign the transaction using the private keys associated to the UTXO's you want to use.


So, all you need to keep care of are the private keys. In modern wallets (almost everyone, including electrum) you only have to backup a 12 or 24 word mnemonic code.
All of your private keys (and therefore also public keys + addresses) can be derived using this word phrase (keep multiple backups AND secured + hidden from curious eyes).




I'd suggest visiting bitcoin.org. You'll find basic information there.
For further interest, google does give you quite a lot useful results.

Using your mobile to access your exchanges account is a very bad idea. Especially if your 2FA device also is your mobile..
In this case you actually don't have any 2FA anymore. It would be enough to compromise your mobile phone, to get access to all of your coins on the exchanges.

Security-wise that's a disaster. Now add that to the fact that most mobile manufacturer skip from 1 up to 4 android-security patches (while showing you the most up-to-date version).
This creates a lot of gateways for an malicious actor to compromise your mobile and therefore also your cryptos stored on the exchange.


I'd heavily suggest NOT to use the mobile phone (or at least not the same device as your 2FA device) for trading etc..

Unfortunately, as others already have mentioned, recovering your coins is not possible.

The best you can do know is to find out how this happened and prevent it in the future.
Can you verify which URL you have used to access MEW and forkdelta ?


The most probable case was that you somehow visited a phishing site (which exactly looks like the original, but is run by an attacker).
If you can verify that the URL's were indeed correct, you should scan your computer for malware. Chances are high in this case that the attacker has gained access to more than just your coins.

Then your client probably isn't properly snyced (check the circle at the bottom right, it should be green - if it is red, you might connect to another server to retrieve the information).
Your address 1Asw9BGefMxkG4TTUhs1fsiKuyCQRmeccy does hold a balance of 0.271.. BCH.

Your address 1Ahw6xqEmarByEaCeVKitLQfprHhEqRjQW contained 0.271 BCH until you sent them to your other address (1Asw9BGefMxkG4TTUhs1fsiKuyCQRmeccy) on 2018-09-24 at 20:30.


You can always check your balance on a block explorer. https://blockchair.com/ for example does support BTC and BCH.

Basically you have 2 possibilities. Using a 3rd party service to integrate payments or build it yourself.
Building it yourself (or using open source projects (please only after a security audit!)) is the correct way (where only you are in possession of your money).

When using a 3rd party service, you need to trust them to handle your payments / secure your money.





This is not automatically possible. The reason is that BTC is irreversible while VISA or paypal are reversible.
This would lead to a high amount of fraud towards the service provider who offers this kind of exchange.

Transactions consist of inputs and outputs.
You can combine as much inputs to as much outputs as you wish (limited by size, logic, etc..).

If you don't have one UTXO >= 1btc, your wallet will combine as many as necessary to reach the 1+BTC.

For example (ignoring fees):
You have received: 0.1, 0.4 and 0.7 BTC.
Now to spend 1 BTC, your wallet will combine 2 inputs (0.4 and 0.7 BTC) to create 2 outputs (1 and 0.1 BTC).

You'll then have 2 UTXO (2 x 0.1 BTC).


Note that simply 'forwarding' your BTC to the same address, does NOT consolidate them into one UTXO.
Each output (receiving from a transaction) is one UTXO.
To properly consolidate your inputs, you'll have to create a transactions using all of your UTXO to create a single new UTXO.

That's not really distro specific (even tho there are some available which have the basic tools for recovery, e.g. knoppix)
The majority of recovery tools are available for all most common distros (e.g. debian based).

You'll have a higher success rate on linux since there are way more (and better) free tools available for linux than for windows.


The chosen tool itself depends on the situation. An example would be:
For imaging / cloning the drive: dd
To correct partition level issues: Testdisk
To recover specific files based on ending (ignores file system): Photorec (is part of Testdisk)

5 months in use has a high probability of overwriting the erased data.
Not saying that it wouldn't be worth a try, but i wouldn't expect too much from it.

Contacting their support might be more helpful, since there already has been cases where people got access to their wallet again after emailing the support with the email address used for their backup.
They might be able to resend you the backup link to your email (set as backup mail in your exodus wallet). If you then still know your password, you'll be able to access it. 

What exactly does 'already used' mean ?
The more data is being written to the hard drive after the file has been deleted, the lower the chance of recovering it is.

How big is the hard drive ? And how much do you guess have been written to it after deleting the file ?

Also, if you have already used some recovery program, tell us the name. We can only suggest you 'better' tools if we know which tools you have tried.


The first step to recover usually is to stop using the hard drive immediately.
Then, create an image (better: multiple) of the drive (e.g. using dd) and perform your recovery on the images (preferably on a fresh image for each try).

That's unusual. I guess you made a mistake when importing your seed into electrum.

Do it again, but follow this guide accurately. Especially read the 4th step precisely.

As long as you have access to your seed words, you will be able to access your coins.

This might be caused by a hardware issue.

Can you verify that your CPU is not overclocked and cooled properly ?
And also check your hard drive (i.e. S.M.A.R.T. values) and your RAM (i.e. memory test).

Core does never overwrite a wallet.dat if it already exists in the directory.
Chances are high that this is your old wallet (if it was in the correct directory).

Core does only create a new wallet.dat if there is no in the data directory (standard directory?)

Even if you have deleted the file, under some circumstances you would be able to recover it using some recovery tool and a linux distro.


But, the phrase from your OP is not related to core in any way (maybe your wallet password?).

You are wrong. It is wrong to assume it 'pretty secure'.
You need a proper source of entropy to create a truly random private key.

If all the private key is based on is the 'entropy' of a human brain, you already lost. This is BY FAR less secure.
The key space to bruteforce is only a small percentage of the overall space in this case.




You do realize that you don't have to pick a 'phrase' for a brainwallet, but pick something. And with a login and a password, you are effectively choosing everything which the private key will be based on.

This is the pure definition of a brainwallet.




 

All of these jr. to member accounts claiming this do either not know what a brainwallet actually is or are somehow related to this wallet.
For me, this seems very fishy.


I would NOT RECOMMEND anyone to download/try/use this wallet!

Security-wise it creates an extremely weak private key (against bruteforcing) compared to a 'proper' desktop-/mobile-/hardware- and even online-wallets.
Additionally it is closed-source. So NO WAY to verify that there is no malware and/or backdoor.

You might feel safer, but in reality you wouldn't actually gain any safety/security.

As long as the checksum file is signed by the correct key AND the binaries you have downloaded match the checksum, you can be sure of having a non-compromised version.
Spreading the same file between 10 more sites doesn't add any security and/or safety. It just adds more hassle when a key has to be revoked (since there are more places to announce the revocation).

You might want to read the thread more carefully.

This is not a 'feature missing from core'. There is no standard yet. It is not defined how to exactly create AND verify messages signed from segwit addresses.

Electrum decided to implement this feature. But those messages will only be verifiable through electrum. Not trough any other wallet which offers segwit message signing.

If core (and any other wallet) was to add this 'feature' without a standard, we'd have 30 different types to create/validate signed messages. And you'd need to always use the same wallet as the signer of the message to verify it.
It is better to first agree on a standard, then let every wallet implement it. This way the messages will be verifiable between different wallets from anyone.

This doesn't make any sense at all.
The private keys are not stored on any server. They are fully stored on your mobile, protected (not encrypted) by a pin.




Compromising an iOS device isn't that hard. All you need is a properly prepared URL and a not-that-smart user.
You don't need to jailbreak a mobile to have it compromised.


Since your funds got stolen the same day you have tried to restore the seed on your friends mobile, this leads to the conclusion that either your friend stole your bitcoin or his mobile was compromised (which forwarded the entered seed to the attacker).
Personally, i believe your 'friend' stole your coins.

Usually the most obvious explanation is the correct one.. And the mycelium staff definitely did not steal your coins.. simply because they can't.
It was someone with access to your / your friends mobile phone.

No, why should they ?
If you receive funds to address X, they will stay associated to address X until you create a new transaction using the private key from address X.
Mycelium does not create any transactions without you explicitly tell it to do so.




You will have to pay fees for any transaction you do, regardless of whether the recipient address belongs to you or someone else.
For each transaction you actively create, mycelium asks you for the fee you want to use. Mycelium is not creating any transaction in the background.