strange transaction

[reg]

background: the following transaction caused me to do a rescan (incorrectly). psy assisted me recover my client (detailed in tech support) and thought it would resolve this transaction. It did not! here it is:

 Status: 2130 confirmations
Date: 3/5/13 17:10
Debit: -0.04516 BTC
Debit: -0.00717549 BTC
Debit: -0.00716474 BTC
Net amount: -0.05950023 BTC
Transaction ID: e7fcb782ce3d36e5d33858ac112a1c29ce118f65a4f8ed25ee641e11050b6a8d

No send address for this amount was generated by me?. The "recent transactions box" shows an arrow both in and out? The transaction history shows just a debit for this in my client.

Would someone who is very very clever kindly have a look at this and offer an explanation as to how this occured?. If it can be recovered all the better but a rescan did not work? It is a small amount and if it is gone it is gone but if it happens again to a larger amount or to someone important it needs in principle to be understood!. regards reg.

This program uses Qt version 4.7.3.

[pc]

If I look it up on blockchain.info, those amounts are from inputs you had at 1BJA1fDyHuvfszeGRdcx4GhDrMF6vR2AtX. It looks like you spent 2 BTC to 1JvacmU94xRzPc1fPqJKrFg6qSJJK2mxEj. If the other inputs (179hJEkRo9rF7Mx3E7ZJAbHX993qNEWkzi, 13mxQXPUWHEpr3jLVHofyEeKoKrRCnzuDL, and 1KeiKrSvMU9BKkPGVxWR34jFzLfp4jvHrf) aren't in your wallet, I'm guessing something happened where you restored a backup of something from before your wallet had those address in it, or you had imported the key for 1BJA1fDyHuvfszeGRdcx4GhDrMF6vR2AtX into another wallet which is the one that you spent the 2 BTC from, or something like that.

[reg]

hi, thanks for looking for me. It probably was close to your suggestion as I have only one wallet and the older wallet.dat has (by me) somehow in doing a back up got imposed on my client. So my problem is if those three debits are in fact dividend payments to me- why are they now debits and can they be recovered? I am unsure now how to proceed? can you suggest anything? . reg

[Stephen Gornick]

background: the following transaction caused me to do a rescan (incorrectly). psy assisted me recover my client (detailed in tech support) and thought it would resolve this transaction. It did not! here it is:

 Status: 2130 confirmations
Date: 3/5/13 17:10
Debit: -0.04516 BTC
Debit: -0.00717549 BTC
Debit: -0.00716474 BTC
Net amount: -0.05950023 BTC
Transaction ID: e7fcb782ce3d36e5d33858ac112a1c29ce118f65a4f8ed25ee641e11050b6a8d

No send address for this amount was generated by me?. The "recent transactions box" shows an arrow both in and out? The transaction history shows just a debit for this in my client.

Would someone who is very very clever kindly have a look at this and offer an explanation as to how this occured?. If it can be recovered all the better but a rescan did not work? It is a small amount and if it is gone it is gone but if it happens again to a larger amount or to someone important it needs in principle to be understood!. regards reg.

This program uses Qt version 4.7.3.

v4.7.3 is so old.  I don't even remember what "arrow both in and out" would refer to. [Edit: That number of confirmations is what shows on your client, correct?  And that corresponds to the number of confirmations that show on Blockchain.info, correct?
 - http://blockchain.info/tx-index/58464860/e7fcb782ce3d36e5d33858ac112a1c29ce118f65a4f8ed25ee641e11050b6a8d
]

What is clear is that the blockchain shows those amounts spent and confirmed (in e7fcb782ce3d36e5d33858ac112a1c29ce118f65a4f8ed25ee641e11050b6a8d ), however the addresses those funds were spent from still have balances available for spending.

I'm not sure your familiarity with Bitcoin so let me describe something basic, in case you weren't aware.   You didn't have to spend 0.04516 anywhere for there to be a 0.04516 spend from your wallet.  The transaction in which those amounts were spent was for an amount of either 2.0 BTC or 0.01293025 BTC with the other one likely being change returned.

So if you didn't make that spend transaction on March 5th, 2013 then somehow somewhere your private keys are being used to spend, which could possibly mean a compromised wallet.dat or computer system (or both).   I've no idea if that's what happened but if you are saying you didn't spend either 2.0 BTC or 0.01293025 BTC on March 5th, 2013 then you should presume your system is not secure at this point.   [And the response to that is to use a different system that is secure, generate a Bitcoin address .. like using Blockchain.info/EWallet, and from your suspect system send your remaining funds to that address until you can rule out any chance that you have a wallet and/or system that is not secure.]

[reg]

 I've no idea if that's what happened but if you are saying you didn't spend either 2.0 BTC or 0.01293025 BTC on March 5th, 2013 then you should presume your system is not secure at this point.   [And the response to that is to use a different system that is secure, generate a Bitcoin address .

Thanks, I did send 2 btc to another address and it was received ok. However the other inputs which were input correctly then (strangely) debited   remain a mystery as to how that happened?. I will transfer the remaining balance to another wallet I will create on blockchain info. The amounts are small but my main concern is to retain the private key of the glbse payout which is used to send me dividends from various issuers. I do have another copy (uncorrupted) of my old wallet.dat I could eventually delete this client and reload on the new version of the client with that?. regards. reg.           

[Stephen Gornick]

Thanks, I did send 2 btc to another address and it was received ok. However the other inputs which were input correctly then (strangely) debited   remain a mystery as to how that happened?.

Well, technically you did not send 2 BTC.  

Instead, your client chose the following UTXO transactions and sent:
  1.2251 BTC, plus
  0.04516 BTC, plus
  0.575 BTC, plus
  0.15333002 BTC, plus
  0.00717549 BTC, plus
  0.00716474 BTC

Which all combined totals: 2.01293025 BTC.  From that you specified that 2.0 BTC of it goes to a certain address and then the change, 0.01293025 BTC came back to you at another address from your wallet.

Or are we somehow talking past each other here?

[reg]

Or are we somehow talking past each other here?

Hi steve, no you have a better understanding of the details than me. I am trying to comprehehend whats gone wrong as it still does not quite add up and why I have been left with a debit? I accept the system uses the method you outlined and normally we do not see it. But in this case the transaction was at first correct and then of its own volition during an update debited 0.0590023 ?. I received the 2 btc ok and spent them and the three inputs totalling 0.0590023 were credited as normal but then debited?  I accept the transaction is as you kindly outlined but the debited amount has not been sent anywhere else (presumably) and I was hoping the rescan would recover it. It did not, so I am left with a strange box with arrows in and out,that has n/a as a description and no address,  that almost no one has seen before,a debit that I can't explain where it is, and a worry that my wallet.dat has lost a critical private key to an address that I receive dividend payments on from separate sources as defined by nefario?. it just all seems strange that my client is regarding inputs as debits and I do not know if I can do anything?. reg.

[pc]

The description is "n/a" with those arrows as you described when your current wallet has some but not all of the keys for the inputs that were used in the transaction.

It sounds like the key for 1BJA1fDyHuvfszeGRdcx4GhDrMF6vR2AtX is in your current wallet, and the keys for 179hJEkRo9rF7Mx3E7ZJAbHX993qNEWkzi, 13mxQXPUWHEpr3jLVHofyEeKoKrRCnzuDL, and 1KeiKrSvMU9BKkPGVxWR34jFzLfp4jvHrf are not. But at some point you had a wallet with all 4 keys in it to make a 2 BTC payment. Since your current wallet doesn't have those other three keys in it, you are now only seeing the debits from 1BJA1fDyHuvfszeGRdcx4GhDrMF6vR2AtX and not the debits from the addresses that aren't in your wallet. (Since they aren't in your wallet, neither the receives to them or the spends from them would show up.) It sounds like the transaction you're worried about happened fine, but since that point you've switched to a wallet that only has one of the 4 keys that were involved in the transaction.

Now if you're trying to figure out why those three keys aren't in your wallet anymore, that I'm not sure we can help you figure out without knowing what you did with your wallet files. If you're messing with moving wallet.dat files around directly, then perhaps you have an old wallet.dat where you meant to have a different one, or something like that? But if you want to spend the payments from those three keys in the future, you need to find that wallet.dat file that has them and either import the keys to your current wallet or swap it out for your current wallet or the like.

[reg]

pc

 But if you want to spend the payments from those three keys in the future, you need to find that wallet.dat file that has them and either import the keys to your current wallet or swap it out for your current wallet or the like.

thanks pc. at the time of the transaction I only had 1 wallet and an old copy (on a memory stick) of the wallet.dat. however after the transaction and before I tried a rescan I copied the current wallet.dat to my memory stick. If the keys are any where they should be there. I cant recover them but I know a man who can. I will ask him and see. thanks reg.