Can My Wallet Gets Infected if I use that to connect to Dapps via Wallet Connect

[spiker777]

So Here is what happened, My Laptop Got a nasty Trojan/Malware a few months ago. I lost about $1000 BNB and other Assets from my metamask wallet in different chains.
So I Erased everything from my laptop and Reinsalled the Windows. then installed metamask again with a new Wallet.
Last Week I made a deposit to my metamask and the funds Stolen right after they arrived in that metamask wallet. I got so shocked. (I still am   )

What I am thinking is Either that Maleware managed to bypass the erasing and reinstalling windows and stayed within the laptop somehow or I got a new Maleware again by somewhere. (even I tried my best to be careful and not download any software)

Now I think it is not safe at all to use A Browswer wallet or any wallet in that Laptop. and since last formatting and erasing didn't help. I am thinking there is no point to do that again. (it was a huge hassle at first time removing all the data and important stuffs I had) I don't want to go through that again.

So I have Decided to use only Mobile Wallet (Trustwallet to be more specifice) and whenever I need to use a Dapp or Project I will connect with my mobile wallet using the Wallet Connect Feature.

Now Coming To my question.

My question is Is it safe to connect with dapps using Wallet connect in this laptop which might have malware? or there is chances that my Mobile wallet will also gets hacked by doing that?

I need some expert advices (if there is any in bitcointalk   in this matter.


PS Oh and BTW. I've ran Several Virus Scans and Every time the result came clean. either Antiviruses cannot dedect that maleware or there is no maleware at all. and my wallet was compromised by some otherway. IDK.


Sorry if it is not the right board,  in that case, I request to Mods to move it to the right board

[NotATether]

In this case I don't think it's malware, but the fact that you were using Wallet Connect and the dApp you connected to somehow stole your seed phrase or private keys.

So given that the virus scans on your computer are turning up clean, it is more likely that your wallet is compromised.

However, there is one theory that can disprove this.

Did you create a new wallet after you formatted and installed and sent funds there, or did you use the old wallet?

[spiker777]

In this case I don't think it's malware, but the fact that you were using Wallet Connect and the dApp you connected to somehow stole your seed phrase or private keys.

So given that the virus scans on your computer are turning up clean, it is more likely that your wallet is compromised.

That is right. the wallet is definitely compromised. but what confusing me is how the wallet was compromised.
the only logical thing coming to my mind is that it was compromised by some type of malware that either monitors my display activity. or controls my system remotely. (remote control malewares does exist btw)  so whenever I was creating a new wallet. the hacker stole the keys that time.
but then the question is why antivirus software not detecting that.

I know there are a lot of phishing sites, and scam dapps that steal people's money. but they  onlyn steal a certain coin or tokens (and that also only when people sign a specific transaction they prompt) they cannot steal private keys or seed phrase (without me entering them manually)

However, there is one theory that can disprove this.

Did you create a new wallet after you formatted and installed and sent funds there, or did you use the old wallet?

Yes, I did creat a new wallet, I mentioned that in first post as well

[NotATether]

That is right. the wallet is definitely compromised. but what confusing me is how the wallet was compromised.
the only logical thing coming to my mind is that it was compromised by some type of malware that either monitors my display activity. or controls my system remotely. (remote control malewares does exist btw)  so whenever I was creating a new wallet. the hacker stole the keys that time.
but then the question is why antivirus software not detecting that.

I know there are a lot of phishing sites, and scam dapps that steal people's money. but they  onlyn steal a certain coin or tokens (and that also only when people sign a specific transaction they prompt) they cannot steal private keys or seed phrase (without me entering them manually)

You should try formatting the system to Linux and installing the GRUB bootloader (the installation process will do this automatically) and see if the problem still persists.

If it is a Windows malware then it should be eliminated by this change.

But if it is in the BIOS/UEFI firmware then this will not fully eradicate the malware but it will prevent it from injecting stuff into Linux libraries if it was not written with Linux in mind. If that is the case then you should look into replacing the motherboard.

[m2017]

That is right. the wallet is definitely compromised. but what confusing me is how the wallet was compromised.
the only logical thing coming to my mind is that it was compromised by some type of malware that either monitors my display activity. or controls my system remotely. (remote control malewares does exist btw)  so whenever I was creating a new wallet. the hacker stole the keys that time.
but then the question is why antivirus software not detecting that.

I know there are a lot of phishing sites, and scam dapps that steal people's money. but they  onlyn steal a certain coin or tokens (and that also only when people sign a specific transaction they prompt) they cannot steal private keys or seed phrase (without me entering them manually)

You should try formatting the system to Linux and installing the GRUB bootloader (the installation process will do this automatically) and see if the problem still persists.

If it is a Windows malware then it should be eliminated by this change.

But if it is in the BIOS/UEFI firmware then this will not fully eradicate the malware but it will prevent it from injecting stuff into Linux libraries if it was not written with Linux in mind. If that is the case then you should look into replacing the motherboard.

The BIOS can be flashed and I think this will allow you to remove a malicious program if one has gotten into the BIOS of this laptop.

So Here is what happened, My Laptop Got a nasty Trojan/Malware a few months ago.

Replacing the motherboard on a laptop is possible, but difficulties arise with finding a similar (exactly the same model, suitable in size and dimensions) replacement motherboard, as well as disassembling and reassembling the device, which is not limited to unscrewing a couple of screws. This is not the same as PC replacement, where you can install any model of motherboard from any manufacturer.

Therefore, first you should try to reflash the BIOS, as a simpler solution, and if this does not help (which I doubt), then move on to more complex solutions - replacing the motherboard.

For preventive purposes, the best solution would be to carry out a set of measures: completely formatting the hard drive (preferably from another OS, like Linux) and flashing the BIOS.

[spiker777]

Thank you guys for all the valuable advice and suggestions.
But I would be very much grateful if my actual question gets an answer.

[NotATether]

Thank you guys for all the valuable advice and suggestions.
But I would be very much grateful if my actual question gets an answer.

Technically yes, if the dApp requests permission to make transactions from your web3 wallet, then this can also be captured by the malware.