Silk Road forums
Discussion => Security => Topic started by: blippa on July 21, 2012, 09:29 pm
-
I used get-bitcoin.com, made a deposit at a Wells Fargo, and then sent the 30 coins to instawallet.org. It never showed up in instawallet though.
While looking on blockchain.info, I can now see that my money has been sent on to some other wallet which is not mine. I know for a fact that I have only visited this Instawallet over HTTPS through Tor, so the URL should still be secret.
Either my machine is compromised, or Instawallet is. I keep my machine very safe, so Instawallet is my suspicion.
For my next try, I will use bitcoinfog.
-
bitinstant, and dont use a Tor, use a public computer and transter to another anonymous bitcoin address you own. you gotta flip
-
Ok, bitinstant seems a bit better. It can deposit directly to a bitcoin address so that's nice.
If one goes through bitcoinfog, is it then safe enough to use your credit card in the first place?
Can you elaborate on "flip" please:)
-
it can be like a simple rotation of the bit transfer just in case u want to feel that extra reassured, so like for example i open up an address like on SR or wherever and brand new with no transaction history as the receiver of the transfer from you deposit, then you can send from that address to your regular address you normally use or where you really want the coins to be saved on, thus a "flip" from one to another, if you want to get tech savvy, you can use different computers and usb's with your Tor browser AFTER you completed the transfer , to go shop on whatever u need your coins for.
-
So I gave up on my 30 coins through Instawallet – that wallet is still empty. Interesting that.
My next try is bitinstant (cash at bank) -> bitcoinfog -> SR
Bouncing more before hitting SR seems moot. Do people use two tumblers sometimes? SR tumbles too, so it's seems pretty well tumbled:)
Call me a gambler, but I'm upping the stakes for this round.
-
:-X now thats exactly what it is.. you should write your own "coin scrubin" manual..
thats on POINT- PERFECT.
-
You might be reading blockchain.info wrong. You'll see numerous transfers out of your existing Instawallet account and this is completely normal. It does NOT mean someone is stealing your BTC's. All you need to verify is that blockchain is reporting your transfer to your instawallet address AND that there are two confirmations. The BTC won't show up in your instawallet account until there are two confirmations.
If you're still having issues contact instawallet support and I'm sure they will help you out as long as you definitely sent it to the correct address.
-
Should I see transfers out if I never transferred anything out of Instawallet? Would love to know how I'm reading it wrong. Do they withdraw from the receiving address and put into some other internal address? I guess it's not prudent to post a link to blockchain here.
So with my most recent test:
bitinstant –> bitcoinfog -> SR
I'm seeing something terrible on blockchain again. For every small amount that bitcoinfog puts in, there is a withdrawal for the same amount a few minutes later. This is for the SR wallet. I have only accessed SR through Tor on this computer.
Are there trojans and other hacks in circulation that might compromise my computer?
-
instawallet always works fine for me (as a wallet, not a mixer)
it seems you either sent your coins to the wrong address or else the link has been comprised and someone else has access to your wallet, but it tells you the last time it was visited. not exactly secure.
but instawallet is not scamming you as you claim in your title...
-
I used get-bitcoin.com, made a deposit at a Wells Fargo, and then sent the 30 coins to instawallet.org. It never showed up in instawallet though.
While looking on blockchain.info, I can now see that my money has been sent on to some other wallet which is not mine. I know for a fact that I have only visited this Instawallet over HTTPS through Tor, so the URL should still be secret.
Either my machine is compromised, or Instawallet is. I keep my machine very safe, so Instawallet is my suspicion.
For my next try, I will use bitcoinfog.
You must have written the wrong bitcoin address when you placed the order at get-bitcoin.com. That's the only explanation. You lost the coins because of your error.
On blockchain.info, it shows the destination address and the origination one. But you couldn't have found your coins by accident since you didn't know the real destination address where the coins went.
Your post makes no sense. You say you saw that your coins went to the wrong address. This is in principle impossible.
goblin
-
My next try is bitinstant (cash at bank) -> bitcoinfog -> SR
This is a perfectly fine way to do it.
SR tumbles too, so it's seems pretty well tumbled:)
No, SR's tumbler is when coins are going out, not when they're coming in.
goblin
-
So I have learned now that it is normal for a receiving address to pass on to another address. Every coin I sent to my SR account has shown up properly in SR, even though if I look at blockchain it looks like they were taken out after they were deposited.
I'm presuming that SR internally transfers from one wallet to another, and the public-facing key does not actually represent 'your' wallet. Rather, it is just a temporary receiver.
It still remains though that my instawallet.org balance is not showing up on instawallet, even though blockchain is showing that the funds were taken from the receiver key. If they had support I would ask them.
-
i copied and pasted this response to the wallet scam:
This glitch executable file steals the wallet.dat file from the victim's computer and send it to your email as an attachment. When the file is executed there is no indications and no visible activity, but in background the thief sends the file to you.
There is an option to hide the thief in another executable file and What is required:
a working email account. In order to work, the thief requires email account which supports smtp. The wallet.dat file will be sent on that email account.
how they get you: they can send them via email or make a torrent with the thief or they just setup a webpage with download link,whats messed up is that this thing spreads depending on how they use it.
And when it all boils down to it, its who knows you and if you trust the people around you