Crypto_Cumbrian (OP)
Member
 Offline
Activity: 113
Merit: 10
|
 |
February 17, 2014, 11:10:49 PM |
|
Just booted my PC and sync'd my Wallet, only to find I have been robbed.
Status: 310 confirmations
Date: 16/02/2014 03:43
To: 1JJewUpXpBHNDWVqzkKk7kWa7pQzRGfzpG
Debit: -11.24 BTC
Transaction fee: -0.0006 BTC
Net amount: -11.2406 BTC
Transaction ID: df776f8492caaee7004594f9e8b399342e24ce7febd8b79621ac7ded958b78ba
Anyone know of how this can be traced or should I just accepted I have been robbed and their nothing I can do.
Heeeeelp
C_C
|
|
|
|
|
Malexo
Newbie
Offline
Activity: 56
Merit: 0
|
|
February 17, 2014, 11:26:09 PM |
|
Encrypted wallet?
|
|
|
|
|
Crypto_Cumbrian (OP)
Member
Offline
Activity: 113
Merit: 10
|
|
February 17, 2014, 11:29:00 PM |
|
Yep
16 Characters , Alpha, Numeric, Specials, upper and lowercase.
|
|
|
|
|
|
|
Crypto_Cumbrian (OP)
Member
Offline
Activity: 113
Merit: 10
|
|
February 17, 2014, 11:34:39 PM |
|
Possible. But Not used the Wallet for over a Month, so not typed my Key(password) since 22/01/2014.
|
|
|
|
|
|
The Avenger
|
|
February 17, 2014, 11:40:32 PM |
|
If I followed it correctly, your coins seem to have gone to 1QB8Ds5KbGYBLQa5RyDQ2sVUeSKWf7qgkZ, which I believe is bitmain's. Looks like your stolen coins are being used to buy antminers.
Contact bitmain??
|
"I am not The Avenger"
1AthxGvreWbkmtTXed6EQfjXMXXdSG7dD6
|
|
|
roslinpl
Legendary
Offline
Activity: 2212
Merit: 1199
|
|
February 17, 2014, 11:43:12 PM |
|
Possible. But Not used the Wallet for over a Month, so not typed my Key(password) since 22/01/2014.
It might happens only if someone had keys and password  as we know.  very sorry for your lost. |
|
|
|
|
Crypto_Cumbrian (OP)
Member
Offline
Activity: 113
Merit: 10
|
|
February 17, 2014, 11:43:45 PM |
|
Cheers Avenger sent Bitmain a PM.
|
|
|
|
|
roslinpl
Legendary
Offline
Activity: 2212
Merit: 1199
|
|
February 17, 2014, 11:44:40 PM |
|
If I followed it correctly, your coins seem to have gone to 1QB8Ds5KbGYBLQa5RyDQ2sVUeSKWf7qgkZ, which I believe is bitmain's. Looks like your stolen coins are being used to buy antminers.
Contact bitmain??
Nice hehe. Maybe little mistake will let you find a person  that would be lucky (or not) |
|
|
|
|
|
1Neptune
|
|
February 17, 2014, 11:48:47 PM |
|
If I followed it correctly, your coins seem to have gone to 1QB8Ds5KbGYBLQa5RyDQ2sVUeSKWf7qgkZ, which I believe is bitmain's. Looks like your stolen coins are being used to buy antminers.
Contact bitmain??
Follow it a bit further. It looks like a few transactions down it gets split three ways. |
|
|
|
|
roslinpl
Legendary
Offline
Activity: 2212
Merit: 1199
|
|
February 17, 2014, 11:58:44 PM |
|
at least thief put 0.0006 BTC fee |
|
|
|
|
|
Xer0
|
|
February 17, 2014, 11:59:56 PM |
|
If I followed it correctly, your coins seem to have gone to 1QB8Ds5KbGYBLQa5RyDQ2sVUeSKWf7qgkZ, which I believe is bitmain's. Looks like your stolen coins are being used to buy antminers.
Contact bitmain?? Follow it a bit further. It looks like a few transactions down it gets split three ways. if wallet really belongs to bitmain, thats just them reusing the coins or cashing out |
|
|
|
|
substratum
Newbie
Offline
Activity: 36
Merit: 0
|
|
February 18, 2014, 12:00:45 AM |
|
Possible. But Not used the Wallet for over a Month, so not typed my Key(password) since 22/01/2014.
Was the wallet encrypted from day one? No chance of an forgotten unencrypted backup sitting in a Dropbox account? |
|
|
|
|
Crypto_Cumbrian (OP)
Member
Offline
Activity: 113
Merit: 10
|
|
February 18, 2014, 12:06:04 AM |
|
Encrypted from day 1 with a Strong Password. Only backups are on two separate Pen drives.
Pen drives not moved or used since I did the backup.
If it was a Key-logger, I last entered the Key 22/01/2014 why wait so long to steal ?
|
|
|
|
|
soy
Legendary
Offline
Activity: 1428
Merit: 1013
|
|
February 18, 2014, 01:17:25 AM |
|
May I ask what router you use? I'm wondering if it's related to the Linksys Exxx router exploit. The exploit was aired on hackernews. If you have a Linksys router among those listed, the hacker could have gained access to the router then to your network. Although if he hacked your very ling QT password then I suppose he could have hacked the router without the exploit.
The following story is only by way of rumor and probably isn't true. There was this matoza ball soup shop and the owners were banking a nice penny every year like clockwork. The owner had a safe in his bedroom. Somehow the owner's daughter's boyfriend got the combination and removed a lot of cash. He was found killed with a bullet to the head according to rumor.
Do you have a daughter with a boyfriend having computer skills?
|
|
|
|
|
|
joeventura
|
|
February 18, 2014, 01:18:37 AM |
|
I feel really bad for you, the advice I give is if you have coins in your wallet that you have no intention of using in the short term,
put them in a paper wallet.
|
|
|
|
|
soy
Legendary
Offline
Activity: 1428
Merit: 1013
|
|
February 18, 2014, 01:19:54 AM |
|
I sometimes wonder about AI. Consider the address: 1JJewUpXpBHNDWVqzkKk7kWa7pQzRGfzpG
How often would a string happen containing Jew and kkk?
|
|
|
|
|
soy
Legendary
Offline
Activity: 1428
Merit: 1013
|
|
February 18, 2014, 01:33:38 AM |
|
Would having an encrypted wallet backup that one could drop onto the blockchain.info wallet recovery page be of any use in recovering the bitcoins?
|
|
|
|
|
|
Rawted
|
|
February 18, 2014, 01:37:42 AM |
|
Installed any random altcoin clients lately? Another member reporting that may be the culprit.
|
|
|
|
|
|
pvnamk19
|
|
February 18, 2014, 01:49:19 AM |
|
You should contact Augusto Croppo, he has helped members to detect and recover lost from CTS Miner cheating. PM him at https://bitcointalk.org/index.php?action=profile;u=50315BTW, my Malwarebytes sometimes block outgoing connections originated from Qt Client 0.8.6, for example: IP-BLOCK 93.115.84.122 (Type: outgoing, Port: 56233, Process: bitcoin-qt.exe) If anyone knows about this, please share your knowledge. Thanks! |
|
|
|
|
|
