Eyedol-X
|
|
October 11, 2016, 02:03:34 PM |
|
It is a false positive. Malwarebytes Antimalware says it's fine. Avast captured the file and uploaded it for further analysis but I created an exception anyway. Later I got a pop up message from Avast thanking me for the upload and saying all was fine. edit: of course, I could be wrong I just dug through systems I attempted to run V4 on and I don't see anything abnormal. If its not a false positive, they hid the infected file that runs on the system extremely well.
|
|
|
|
tr8kr
|
|
October 11, 2016, 02:09:21 PM |
|
It is a false positive. Malwarebytes Antimalware says it's fine. Avast captured the file and uploaded it for further analysis but I created an exception anyway. Later I got a pop up message from Avast thanking me for the upload and saying all was fine. edit: of course, I could be wrong edit2: check here - Avast says it's good and they had the file for further inspection. better safe than sorry but i'm thinking that could be a false positif too digging through hex and dont see anything bad.
|
|
|
|
Vorksholk
Legendary
Offline
Activity: 1713
Merit: 1029
|
|
October 11, 2016, 02:18:12 PM |
|
Ran a malware bytes scan on the VM that I built that PascalCoin wallet on, and it didn't find anything interesting. When I get home later, I'll build a completely fresh VM and compile it again--see if the issue goes away.
If you downloaded any version of my PascalCoin.exe wallet, you should probably run a virus scan, and if you want to be extra safe, change important passwords on an unrelated device.
This is embarassing, I didn't even think to run a virus scan on a file I compiled myself. The only thing I can imagine happening is someone using a browser exploit against my VM while I was on somewhat-sketchy sites trying to find a way to get an older version of Delphi, and then installing some program that automatically infects EXE files I compile?
|
|
|
|
Eyedol-X
|
|
October 11, 2016, 02:37:50 PM |
|
Ran a malware bytes scan on the VM that I built that PascalCoin wallet on, and it didn't find anything interesting. When I get home later, I'll build a completely fresh VM and compile it again--see if the issue goes away.
If you downloaded any version of my PascalCoin.exe wallet, you should probably run a virus scan, and if you want to be extra safe, change important passwords on an unrelated device.
This is embarassing, I didn't even think to run a virus scan on a file I compiled myself. The only thing I can imagine happening is someone using a browser exploit against my VM while I was on somewhat-sketchy sites trying to find a way to get an older version of Delphi, and then installing some program that automatically infects EXE files I compile?
Well the potential virus in question infects executables actively but honestly I think this is just a false positive because it's picking up on pieces of code that look similar to this virus. Claymore has had similar issues with his miners before
|
|
|
|
Vorksholk
Legendary
Offline
Activity: 1713
Merit: 1029
|
|
October 11, 2016, 02:41:20 PM |
|
Ran a malware bytes scan on the VM that I built that PascalCoin wallet on, and it didn't find anything interesting. When I get home later, I'll build a completely fresh VM and compile it again--see if the issue goes away.
If you downloaded any version of my PascalCoin.exe wallet, you should probably run a virus scan, and if you want to be extra safe, change important passwords on an unrelated device.
This is embarassing, I didn't even think to run a virus scan on a file I compiled myself. The only thing I can imagine happening is someone using a browser exploit against my VM while I was on somewhat-sketchy sites trying to find a way to get an older version of Delphi, and then installing some program that automatically infects EXE files I compile?
Well the potential virus in question infects executables actively but honestly I think this is just a false positive because it's picking up on pieces of code that look similar to this virus. Claymore has had similar issues with his miners before It certainly could be, and I hope it is just a false positive. What makes me suspicious though is that the original PascalCoin wallet compiled by the developer is 100% clean, but when I upload my copy of PascalCoinWallet.exe that I compiled, I get issues. Could be a different library version, some included dll that Delphi threw in, etc., but it does seem pretty odd. Usually when cryptocurrency-related software gets picked up though, it's because sometime like it has been embedded in a real malware's payload to mine on systems that a virus infects. This is a bit different in that it's not the usual false-positives, and it's not the mining software being picked up. All of my CUDA miner binaries appear absolutely clean, and those are the usual suspects for false positives for "unwanted mining software" or the like.
|
|
|
|
MAREVA1956
Newbie
Offline
Activity: 2
Merit: 0
|
|
October 11, 2016, 03:11:52 PM |
|
Can somebody share the amd GPU miner?
|
|
|
|
arielbit
Legendary
Offline
Activity: 3416
Merit: 1059
|
|
October 11, 2016, 04:18:33 PM |
|
waiting for amd miner too
|
|
|
|
btcmacroecon
|
|
October 11, 2016, 04:24:38 PM |
|
@HankRules ...i think you need to send the invite to slack you set up for pascal. I may come by for some dumb questions! but couldnt access it with link you sent fyi
|
|
|
|
tr8kr
|
|
October 11, 2016, 04:25:10 PM |
|
waiting for amd miner too
me too i dont care to pay a fee for using the miner like the wolfo dual miner or other.
|
|
|
|
anorganix
Copper Member
Sr. Member
Offline
Activity: 970
Merit: 287
Per aspera ad astra
|
|
October 11, 2016, 04:43:34 PM |
|
It seems to be a false positive, I got detections since 1st release, but they were random (aka wallet shutting down after X hours, only to find it in quarantine).
|
I will never send private messages with payment requests for my auctions. I only communicate transparently via the forum (not Telegram, Discord, Skype & others). Please be wary of scammers.
|
|
|
Aetsen
|
|
October 11, 2016, 04:47:57 PM |
|
It's likely also that they are throwing false positives because of the code. Delphi accidentally distributed a virus in it's source code a few years ago. Look into the Win32/Induc. A Virus which infected Delphi files at compile time.
|
|
|
|
mirny
Legendary
Offline
Activity: 1108
Merit: 1005
|
|
October 11, 2016, 06:31:08 PM |
|
waiting for amd miner too
me too i dont care to pay a fee for using the miner like the wolfo dual miner or other. wolf0 have some dualminer? can you post link?
|
This is my signature...
|
|
|
hankrules
|
|
October 11, 2016, 06:51:22 PM |
|
@HankRules ...i think you need to send the invite to slack you set up for pascal. I may come by for some dumb questions! but couldnt access it with link you sent fyi
If you send me your email address, i can invite you. There doesn't appear to be a way to openly invite people.
|
|
|
|
Vorksholk
Legendary
Offline
Activity: 1713
Merit: 1029
|
|
October 11, 2016, 08:13:04 PM |
|
Someone pointed out that the unneutered miner somehow lost the device parameter. Looks like when I reverted to the unneutered code, I reverted back too far and lost the argument. Anyhow, here's a new version of the unneutered miner which adds back in the device argument: https://github.com/Vorksholk/PascalCoin-CUDA/releases/download/v1.01/CUDA_Pascal_v1.01.zipYou can just copy-paste the .exe file you want back to where your old .exe file was, and use it instead.
|
|
|
|
theo1996
Newbie
Offline
Activity: 31
Merit: 0
|
|
October 11, 2016, 08:40:20 PM |
|
i tried the gpu miner with sm_20 and my card is 2.1 so it is supposed to workmbut it doesnt.And prints cuda driver 7.1 error allocation : driver version s insufficient for runtme version what to do?I installed Cuda 8.0 Have almost the latest nvidia drivers.
|
|
|
|
Eyedol-X
|
|
October 11, 2016, 08:44:16 PM |
|
Someone pointed out that the unneutered miner somehow lost the device parameter. Looks like when I reverted to the unneutered code, I reverted back too far and lost the argument. Anyhow, here's a new version of the unneutered miner which adds back in the device argument: https://github.com/Vorksholk/PascalCoin-CUDA/releases/download/v1.01/CUDA_Pascal_v1.01.zipYou can just copy-paste the .exe file you want back to where your old .exe file was, and use it instead. Thanks for this update, unfortunately sm30 still does this for me. 1.00(v4) and 1.01 unfortunately do not work but the older V3 miner works fine. This is what I see after 15 minutes. If I use the V3 Sm3 neutered miner, it works fine and starts hashing. Here is V3 after 7 minutes EDIT: After posting this, V3 immediately found a block lol
|
|
|
|
toto31
|
|
October 11, 2016, 08:58:40 PM |
|
Can someone give me an account please? Here's my public key: 3Ghhbopx4jxWKoV2EiDBVRGw6bvuBVZCrK4nYEDsN7CPw7Hz9Fx1VhvmHs1npqS74swpQbiSswM7HsY Db2evXTmUS2sg2YherUBxo2
|
|
|
|
xhomerx10
Legendary
Offline
Activity: 3976
Merit: 8645
|
|
October 11, 2016, 09:41:29 PM |
|
Can someone give me an account please? Here's my public key: 3Ghhbopx4jxWKoV2EiDBVRGw6bvuBVZCrK4nYEDsN7CPw7Hz9Fx1VhvmHs1npqS74swpQbiSswM7HsY Db2evXTmUS2sg2YherUBxo2
Why do you need an account? If it's for research I might donate one otherwise PASCAL COIN + ACCOUNT TRADING THREAD This is a better place to go.
|
|
|
|
toto31
|
|
October 11, 2016, 10:18:15 PM |
|
Can someone give me an account please? Here's my public key: 3Ghhbopx4jxWKoV2EiDBVRGw6bvuBVZCrK4nYEDsN7CPw7Hz9Fx1VhvmHs1npqS74swpQbiSswM7HsY Db2evXTmUS2sg2YherUBxo2
Why do you need an account? If it's for research I might donate one otherwise PASCAL COIN + ACCOUNT TRADING THREAD This is a better place to go. Well, I just want one to make tests and possibly buy some coins. But what's the point in having 99 useless more?
|
|
|
|
Aetsen
|
|
October 11, 2016, 10:29:45 PM |
|
Can someone give me an account please? Here's my public key: 3Ghhbopx4jxWKoV2EiDBVRGw6bvuBVZCrK4nYEDsN7CPw7Hz9Fx1VhvmHs1npqS74swpQbiSswM7HsY Db2evXTmUS2sg2YherUBxo2
Why do you need an account? If it's for research I might donate one otherwise PASCAL COIN + ACCOUNT TRADING THREAD This is a better place to go. Well, I just want one to make tests and possibly buy some coins. But what's the point in having 99 useless more? Not sure why you put a space in the public key, but I sent you an empty account you should get it in a bit.
|
|
|
|
|