![]() “Why does this matter?” you are asking, “He could be using a VPN”. Matching the TeamViewer ID in Connections_incoming.txt with these log files I was able to recover his IP: 91.XXX.XX.XX Using the amazing WinHex tool I was able to recover multiple parts of TeamViewer9_Logfile.log and TeamViewer9_Logfile_OLD.log. He tried multiple passwords and was able to get my BTCs when he found the good one. I guess I tried to login using that password (don't know why, maybe I was half sleep that day 2 years ago) and chrome stored that forever. That list included hundreds of passwords for multiple websites I browset these last years, including the wallet encrypt password in a website I forgot I've ever visited (and it wasn’t a good one for that website). With this tool you can see all stored password in chrome in the open. ![]() He forgot about Connections_incoming.txt thankfullyĪlso, using multiple undelete tools I was able to recover a nice little tool he downloaded named "ChromePass". Somebody hacked into my computer using TeamViewer on 5th of December and moved 40.49 BTCs: Īfter further investigation I found a batch file that was set up for running after every reboot with these contents: Without your help (you know who you are guys) I could have not gotten this far. This is a great community and people are very sensible about Bitcoin hacks, even in this case where I recognized my own incompetence. First let me thank all the guys who have contacted me and offered their help. ![]() I promise it’s the last one about this all further steps will be taken privately. Some of you asked to post a new thread instead of keep writing on the original one, were new info could get lost.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |