Bitcoin Forum
November 14, 2024, 12:35:06 PM *
News: Latest Bitcoin Core release: 28.0 [Torrent]
 
   Home   Help Search Login Register More  
Pages: [1]
  Print  
Author Topic: we are infected (Trojan.Encoder) and lost all data, access keys to BTC,LTC,ETH..  (Read 908 times)
cryptmount (OP)
Newbie
*
Offline Offline

Activity: 20
Merit: 0


View Profile
August 23, 2017, 06:50:36 PM
 #1

More than a day ago we were infected (Trojan.Encoder) with our workstations.  Undecided Cry

All files are encrypted.
We already have documents from our police that an investigation is underway and that we are trying to decipher the data after the hacker attack.  Cool

At the moment we do not have access keys to our accounts :

BTC wallets:
1DMB2Xt8mFPABcCLkcGZrEbGvVS1bf416u ;
1ExQZcTWXXav6D5EwkgsD1iJLd7NsgzRKZ ;
1CADht6cxVigKuVaDn6CBcZtViBFUWUzhU ;

LTC wallets:
LXxnQe1ZziHfTBFhrUaG15yL2LbUa25ePb ;
LM8AyBmevwfo5vjKPC5JNrdQGN893YYgXn ;
LRVhZVxdaUZGAN2SzpVD4Fqs45nfZvnms9 ;

ETH wallets:
0x09B8b644Fbfc6eE8e5dd0f450A030e5F381A5CFa ;
0x41E40B666A093806551cB4891AD687778ce74bc8 ;
0x9af3bF0B0A117D3fbFb37DFc7Fa67f9A645488FC ;
0xd28232ccc22eb037394dc71a6a4274260a965920 ;
0xD5347709EA55f4Cc154050A8D8ba5A8ceCe6606E ;


In this regard, I (Jhon Kelerman, CEO CryptMount) ask us to refrain from transferring to these accounts any funds. With many of you, we agreed on the transfer of tokens, investments and other payments, please do not do it in the near future! So,access to the addresses listed below we still do not have and are not responsible for any transactions.


Suggested addresses of hackers, the drain of our investments:0x1B1a2baec66d33c2A7A7D41Aa3C80FA53067d562 0xfc67f02b2c7712de840fd836791491ca03e4ea90

Data leakage occurred from an unprotected node and spread to all our workstations. Decoding all the information will take a long time.


We warn everyone to be safer with your investments. At the moment we do not have access to more than 1 million dollars.

jager
Newbie
*
Offline Offline

Activity: 38
Merit: 0


View Profile
August 23, 2017, 08:29:16 PM
 #2

Thanks for sharing and the warning.
Coin-Keeper
Hero Member
*****
Offline Offline

Activity: 762
Merit: 606



View Profile
August 23, 2017, 08:31:17 PM
 #3

While I don't know you guys at all, I am just baffled that anyone would continue to store their coins with an online exchange.  The private means such as Electrum and hardware wallets are absolutely bullet proof.  Any user that does not have the understanding to store their own coins probably should not be involved except maybe at novice levels.  e.g. under 5 btc while they learn.

BTC: 1PYSBbuKM3kW19xe9TXJQfq64rPhd8XorF
Staked and Verified: https://bitcointalk.org/index.php?topic=996318.msg17102755#msg17102755
Velkro
Legendary
*
Offline Offline

Activity: 2296
Merit: 1014



View Profile
August 23, 2017, 10:34:38 PM
 #4



We warn everyone to be safer with your investments. At the moment we do not have access to more than 1 million dollars.


If i would invest 1 million dollars in crypto i would be more carefull.
Well keeping it on windows machine in windows network is like almost wanting trouble :/

Learn more about security please.
cryptmount (OP)
Newbie
*
Offline Offline

Activity: 20
Merit: 0


View Profile
August 24, 2017, 05:46:38 AM
 #5

We have already been attacked last time. result hack - could not make any translations. :-\We made a transaction, saw it at our site, but on the sites we saw either an existing or not executed transaction. So it was with all the coins.System has been completely replaced, low-level formatting.

We did not use KeePass + KeeOTP to store our keys. But now they have already adjusted it.

Used to protect AVS Firewall 2.1.2.241
Now, have a complete system ESET Endpoint Protection Advanced
See what will happen
Naty1312
Newbie
*
Offline Offline

Activity: 2
Merit: 0


View Profile
August 25, 2017, 07:56:54 PM
 #6

More than a day ago we were infected (Trojan.Encoder) with our workstations.  Undecided Cry

All files are encrypted.
We already have documents from our police that an investigation is underway and that we are trying to decipher the data after the hacker attack.  Cool

At the moment we do not have access keys to our accounts :

BTC wallets:
1DMB2Xt8mFPABcCLkcGZrEbGvVS1bf416u ;
1ExQZcTWXXav6D5EwkgsD1iJLd7NsgzRKZ ;
1CADht6cxVigKuVaDn6CBcZtViBFUWUzhU ;

LTC wallets:
LXxnQe1ZziHfTBFhrUaG15yL2LbUa25ePb ;
LM8AyBmevwfo5vjKPC5JNrdQGN893YYgXn ;
LRVhZVxdaUZGAN2SzpVD4Fqs45nfZvnms9 ;

ETH wallets:
0x09B8b644Fbfc6eE8e5dd0f450A030e5F381A5CFa ;
0x41E40B666A093806551cB4891AD687778ce74bc8 ;
0x9af3bF0B0A117D3fbFb37DFc7Fa67f9A645488FC ;
0xd28232ccc22eb037394dc71a6a4274260a965920 ;
0xD5347709EA55f4Cc154050A8D8ba5A8ceCe6606E ;


In this regard, I (Jhon Kelerman, CEO CryptMount) ask us to refrain from transferring to these accounts any funds. With many of you, we agreed on the transfer of tokens, investments and other payments, please do not do it in the near future! So,access to the addresses listed below we still do not have and are not responsible for any transactions.


Suggested addresses of hackers, the drain of our investments:0x1B1a2baec66d33c2A7A7D41Aa3C80FA53067d562 0xfc67f02b2c7712de840fd836791491ca03e4ea90

Data leakage occurred from an unprotected node and spread to all our workstations. Decoding all the information will take a long time.


We warn everyone to be safer with your investments. At the moment we do not have access to more than 1 million dollars.





Hello, my address ( 0x09B8b644Fbfc6eE8e5dd0f450A030e5F381A5CFa ) has nothing to do with the theft ! I bought ETH from BTC on Shapeshift which I will never use again (and they should go to fuck off), I'm available for any help I could give






Naty1312
Newbie
*
Offline Offline

Activity: 2
Merit: 0


View Profile
August 25, 2017, 09:08:59 PM
 #7

More than a day ago we were infected (Trojan.Encoder) with our workstations.  Undecided Cry

All files are encrypted.
We already have documents from our police that an investigation is underway and that we are trying to decipher the data after the hacker attack.  Cool

At the moment we do not have access keys to our accounts :

BTC wallets:
1DMB2Xt8mFPABcCLkcGZrEbGvVS1bf416u ;
1ExQZcTWXXav6D5EwkgsD1iJLd7NsgzRKZ ;
1CADht6cxVigKuVaDn6CBcZtViBFUWUzhU ;

LTC wallets:
LXxnQe1ZziHfTBFhrUaG15yL2LbUa25ePb ;
LM8AyBmevwfo5vjKPC5JNrdQGN893YYgXn ;
LRVhZVxdaUZGAN2SzpVD4Fqs45nfZvnms9 ;

ETH wallets:
0x09B8b644Fbfc6eE8e5dd0f450A030e5F381A5CFa ;
0x41E40B666A093806551cB4891AD687778ce74bc8 ;
0x9af3bF0B0A117D3fbFb37DFc7Fa67f9A645488FC ;
0xd28232ccc22eb037394dc71a6a4274260a965920 ;
0xD5347709EA55f4Cc154050A8D8ba5A8ceCe6606E ;


In this regard, I (Jhon Kelerman, CEO CryptMount) ask us to refrain from transferring to these accounts any funds. With many of you, we agreed on the transfer of tokens, investments and other payments, please do not do it in the near future! So,access to the addresses listed below we still do not have and are not responsible for any transactions.


Suggested addresses of hackers, the drain of our investments:0x1B1a2baec66d33c2A7A7D41Aa3C80FA53067d562 0xfc67f02b2c7712de840fd836791491ca03e4ea90

Data leakage occurred from an unprotected node and spread to all our workstations. Decoding all the information will take a long time.


We warn everyone to be safer with your investments. At the moment we do not have access to more than 1 million dollars.





Hi

Phishing is Shapeshift

https://etherscan.io/tx/0xfcae50a8fd6437d40ba50661d8f4566366b987a7d8359f4431985c96f2c3d678

address
0x09B8b644Fbfc6eE8e5dd0f450A030e5F381A5CFa ;
0x9af3bF0B0A117D3fbFb37DFc7Fa67f9A645488FC


Are my accounts, ETH by Shapeshift, please remove these 2 addresses from the list





cryptmount (OP)
Newbie
*
Offline Offline

Activity: 20
Merit: 0


View Profile
August 30, 2017, 07:07:17 AM
 #8

stop lies
Ionut Bornea
Newbie
*
Offline Offline

Activity: 9
Merit: 0


View Profile
August 31, 2017, 02:17:08 PM
 #9

Sorry to hear about your loss. I have a small portfolio of coins, worth around 500 euros, so I've invested another 80 bucks to buy a Ledger Nano S hardware wallet to store my keys.

Now I sleep better knowing that my investments are safe.

Hope you find a solution to this problem, although I don't see any that might bring your money back to your control.

Regards,
profitgenerator212
Sr. Member
****
Offline Offline

Activity: 714
Merit: 251



View Profile
September 01, 2017, 02:22:15 AM
 #10

People should just really learn to use Linux.

There is really no excuse not to use Linux by 2017. Unless you want to be infected by crappy Windows based viruses.


                            █████
                        █████████████
                     █████████████
                 ██████████████        █████
              █████████████        ████████████
          ██████████████        █████████████
       █████████████        █████████████       ██████
       ██████████        ████████████           ██████
       ███████       █████████████       ███    ██████
       ███████    █████████████       ██████    ██████
       ████████████████████       ██████████    ██████
       █████████████████       █████████████    ██████
       █████████████       █████████████        ██████
       ██████████       █████████████           ██████
       ███████      ██████████████       ███    ██████
       ██████    █████████████       ███████    ██████
       ██████    ██████████       ██████████    ██████
       ██████    ██████        █████████████    ██████
       ██████    ███       █████████████        ██████
       ██████           █████████████       ██████████
       ██████       █████████████        █████████████
                 █████████████       █████████████
              ████████████        █████████████
                  ████         ████████████
                           █████████████
                         ███████████
                            █████
Ferrum Network • Interoperability Network for Financial Applications
cryptmount (OP)
Newbie
*
Offline Offline

Activity: 20
Merit: 0


View Profile
September 01, 2017, 04:51:55 AM
 #11

People should just really learn to use Linux.

There is really no excuse not to use Linux by 2017. Unless you want to be infected by crappy Windows based viruses.

It does not protect your data at 100%.
Of course, it gives a guarantee of protection against the most common attacks. But if that is purposefully-chance of hacking is very large. More precisely it rests only in the human factor, experience, etc.
Pages: [1]
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!