Cross-posted on litecoin forum too.
April 1: I installed litecoin-0.6.3c-win32.zip downloaded from Github at
https://github.com/litecoin-project/litecoin/downloads which I assumed was a clean source.
I was also running Bitcoin v0.8.0-beta and GUIMiner v2012-12-03 on the same PC. I've used these previously with no evidence of trouble or weirdness. GUIMiner is pointing to the
https://mining.bitcoin.cz/ pool, which has paid out for me in the past.
I signed up for a Litecoin mining pool at
https://coinotron.com but was unable to join due to "minerd not found in path" error in the client. I decided it was too much effort to find a fix and left the Litecoin client mining solo locally.
10 hours later, while no one was at home, the
Bitcoin client showed the entire contents of my Bitcoin wallet had been transferred out to an unknown third party. Gone. Completely empty. At current market rates it's $1000 or so.
The destination address:
1LqhY8juudQsA7TGJhnijyEeqH9UZPMVoj I am 100% certain no person was at my PC. This was only possible if my system was compromised in some way, either remotely or by one of the client apps.
The anonymity of Bitcoin/Litecoin is both a tremendous strength and a devastating annoyance if you're the target of fraud. I assume I have no recourse. I hope whatever affected my BitCoin client was local to my system and hasn't been trapping keystrokes for months. *shudder*
I'm running a malware scan now and will report any findings.
Is there any way to determine how a Bitcoin transfer command could have been triggered from my system? Does Litecoin have any access to the Bitcoin wallet? Could it have sent RPC commands or such to the Bitcoin client? Is there a log to indicate if the transfer "happened" at the GUI at my PC, vs. was "picked up" in the block chains and just magically appeared?
I have a backup of my wallet before this happened, but I'm not certain that's going to be helpful at this point.
How does one attempt to research fraud with BitCoin? Can a restored wallet.dat "roll back" transactions?