Bitcoin Forum>Economy>Trading Discussion>Scam Accusations
Pages:
Author

Topic: Candle coin wallet has a Trojan virus - Dave4You is probably a hacker (Read 1507 times)

a7mos
hero member
Activity: 574
Merit: 500
Candle coin wallet has a Trojan virus - Dave4You is probably a hacker
January 14, 2016, 09:13:20 AM
#25
Quote from: traderbit on January 14, 2016, 03:24:25 AM
Hopefully when i was part of that campaign i used c-cex exchange address, so i didn't risked to get infected, so i do with the currect avatar campaign by using an exchange address, better staying safe.

I did the same thing, i joined the campagin with c-cex address and that is why i did not discover that defected wallet before downloading it when i wanted to try skating.
i will never trust any free coin again except if it has an exchange and i can use that address
traderbit
hero member
Activity: 798
Merit: 1000
Re: Candle coin wallet has a Trojan virus - Dave4You is probably a hacker
January 14, 2016, 03:24:25 AM
#24
Hopefully when i was part of that campaign i used c-cex exchange address, so i didn't risked to get infected, so i do with the currect avatar campaign by using an exchange address, better staying safe.
Hippie Tech
legendary
Activity: 1624
Merit: 1001
All cryptos are FIAT digital currency. Do not use.
Re: Candle coin wallet has a Trojan virus - Dave4You is probably a hacker
January 14, 2016, 01:21:23 AM
#23
Fyi..

How to detect RAT (remote admin tool) --> https://youtu.be/btn9nWE3X7o

Quote from: Hippie Tech on April 01, 2015, 07:39:02 PM
Please check your "program files(x86) and the youruser/appdata/local/TEMP folders ! The ASN client is a remote desktop hack !

https://bitcointalksearch.org/topic/m.10951987



james.lent
hero member
Activity: 602
Merit: 501
Re: Candle coin wallet has a Trojan virus - Dave4You is probably a hacker
January 14, 2016, 12:23:46 AM
#22
Quote from: The Sceptical Chymist on January 13, 2016, 09:49:26 PM
Ok so am I understanding this correctly?  The only wallet used to hold this shitcoin is a trojan and thus this was a scam from the start?  As I said, I'm a bit non-tech oriented, but this sounds kind of scary.

Yeah you're absolutely right. In the future, always run a scan before running it
The Sceptical Chymist
legendary
Activity: 3332
Merit: 6809
Cashback 15%
Re: Candle coin wallet has a Trojan virus - Dave4You is probably a hacker
January 13, 2016, 09:49:26 PM
#21
Ok so am I understanding this correctly?  The only wallet used to hold this shitcoin is a trojan and thus this was a scam from the start?  As I said, I'm a bit non-tech oriented, but this sounds kind of scary.
MbccompanyX
full member
Activity: 182
Merit: 100
★YoBit.Net★ 350+ Coins Exchange & Dice
Re: Candle coin wallet has a Trojan virus - Dave4You is probably a hacker
January 13, 2016, 10:25:10 AM
#20
Quote from: kingaltcoins on January 13, 2016, 09:10:54 AM
Thank god I used YoBit's CD coin address for joining avatar campaign. I got little suspicious when he was not paying for the last 2-3 days. I was going to create a scam accusation against him but he paid me before that.

Woof! Thanks op for this awareness. Luckily I dumped this shitty coin yesterday and got my equivalent BTC. Wink At least I don't have to hold a bag of shit coins now.

N.B I'm also quite suspicious about SwagBucks and AvatarCoin too. Huh

for what a user friend of mine told seems that some free distribution coin are in some kind of network made by scammers... i'm not sure if even those two coins you cited are involved but who knows....
kingaltcoins
hero member
Activity: 784
Merit: 502
Re: Candle coin wallet has a Trojan virus - Dave4You is probably a hacker
January 13, 2016, 09:10:54 AM
#19
Thank god I used YoBit's CD coin address for joining avatar campaign. I got little suspicious when he was not paying for the last 2-3 days. I was going to create a scam accusation against him but he paid me before that.

Woof! Thanks op for this awareness. Luckily I dumped this shitty coin yesterday and got my equivalent BTC. Wink At least I don't have to hold a bag of shit coins now.

N.B I'm also quite suspicious about SwagBucks and AvatarCoin too. Huh
SmartIphone
legendary
Activity: 1204
Merit: 1000
Re: Candle coin wallet has a Trojan virus - Dave4You is probably a hacker
January 13, 2016, 04:21:58 AM
#18
Quote from: mexxer-2 on January 13, 2016, 01:52:55 AM
Now that it seems highly likely that the wallet contained trojan, what about group of people who are still advertising the coin?

People who are/were advertising are the participants from the avatar campaign including me, i got a PM from EcuaMobi thanks to him I removed the avatar.
MbccompanyX
full member
Activity: 182
Merit: 100
★YoBit.Net★ 350+ Coins Exchange & Dice
Re: Candle coin wallet has a Trojan virus - Dave4You is probably a hacker
January 13, 2016, 03:30:23 AM
#17
Quote from: mexxer-2 on January 13, 2016, 01:52:55 AM
Now that it seems highly likely that the wallet contained trojan, what about group of people who are still advertising the coin?

Good question, they maybe didn't even noticed that people found out that the wallet link get swapped time by time or maybe at the end (and i hope that) they used Yobit/Steps Candlecoin wallet (Which, being built from the source makes them clean) but still let's remember that all this debate started almost 3 months ago and there were 3 threads talking about this (Including this one). Even i'm curious to see if all the people advertising the coin will believe the lie of the dev, stop promoting the coin or wait for some serious person to take over (which i don't think will be possible because of the coin reputation)...

P.s. i just noticed that he is now abusing of the trust system by sending different red trust (so the one to EcuaMobi isn't the only one) and he even red trusted the OP like if he did a trade with he (Which never existed), i decided to put a red trust as well because what he did is seriously stupid
mexxer-2
hero member
Activity: 924
Merit: 1003
4 Mana 7/7
Re: Candle coin wallet has a Trojan virus - Dave4You is probably a hacker
January 13, 2016, 01:52:55 AM
#16
Now that it seems highly likely that the wallet contained trojan, what about group of people who are still advertising the coin?
The Sceptical Chymist
legendary
Activity: 3332
Merit: 6809
Cashback 15%
Re: Candle coin wallet has a Trojan virus - Dave4You is probably a hacker
January 13, 2016, 12:07:35 AM
#15
Good, I like seeing scammers getting the smackdown.

I don't know much about candlecoin other than it's avatar campaign.  Is this scammer one of the developers?  I'm a non-techie so I'm sure I would have just downloaded the trojan and lost everything.  Good job, guys.
digit
legendary
Activity: 1672
Merit: 1010
Re: Candle coin wallet has a Trojan virus - Dave4You is probably a hacker
January 12, 2016, 11:16:16 PM
#14
@a7mos heres what i posted that was deleted, the guy also changed the link after he deleted.  
cache/snapshot of OP can be seen here https://archive.is/VbszE (20 Dec 2015 14:02:59 UTC), https://archive.is/BPKDA (12 Jan 2016 13:15:12 UTC), https://archive.is/HZpoI (12 Jan 2016 19:48:13 UTC)


Quote from: ?? on ??
I can not run the wallet because of the anti virus. is it clean or what is this message ?


confirmed
rar file - https://www.virustotal.com/en/file/433cff9ddd3038e7c7ac5b9245ce3cd0b739314078caf536be5353752e293ac2/analysis/1452604948/
extracted candleqt.exe - https://www.virustotal.com/en/file/b6b6072bda8202eb22aa5c8ace04f4b8a16516dfd3d192e4cb86ececc367732f/analysis/

VT results link in OP is for completely different file then what is downloaded from windowsqt link provided by dev  Angry

might be a false positive but then there is this it reports its internal/original name as "audioadg.exe" a windows7 system file



note its also not the first time this dev has been accused of hiding a trojan in his wallet links, and really concerning how distributed this wallet is from the signature campaign he is running

Quote from: Dave4You on January 12, 2016, 09:14:24 PM
Candle have new dev from today!For all info and for giveaway please contact new dev.Thank you!
Contact dev  

i got a post deletion notice, checked the thread/OP and he had also edited again the links to windows qt download, i was allowing him some time give an explanation before i was going make a new post about it, but instead he has posted this and locked the thread.  
nikkers
hero member
Activity: 566
Merit: 500
Re: Candle coin wallet has a Trojan virus - Dave4You is probably a hacker
January 12, 2016, 09:39:43 PM
#13
https://bitcointalksearch.org/topic/virus-in-candle-exe-are-we-surprised-1257893

Me and some others called this noob out a long time ago, and warned others but he just kept deleting posts in his main thread.

Glad the douche has finally been caught again, i just wonder how many folks he infected Sad
james.lent
hero member
Activity: 602
Merit: 501
Re: Candle coin wallet has a Trojan virus - Dave4You is probably a hacker
January 12, 2016, 09:21:15 PM
#12
Quote from: eddie13 on January 12, 2016, 09:16:26 PM
The thread is locked now and it appears that EcuaMobi is the new candlecoin DEV

https://bitcointalksearch.org/topic/m.13533306

Edie: Now this one too... https://bitcointalksearch.org/topic/m.13533312

the scammer is now butt hurt lol
eddie13
legendary
Activity: 2296
Merit: 2262
BTC or BUST
Re: Candle coin wallet has a Trojan virus - Dave4You is probably a hacker
January 12, 2016, 09:16:26 PM
#11
The thread is locked now and it appears that EcuaMobi is the new candlecoin DEV

https://bitcointalksearch.org/topic/m.13533306

Edie: Now this one too... https://bitcointalksearch.org/topic/m.13533312
james.lent
hero member
Activity: 602
Merit: 501
Re: Candle coin wallet has a Trojan virus - Dave4You is probably a hacker
January 12, 2016, 09:10:25 PM
#10
Quote from: Dave4You on January 12, 2016, 08:13:01 PM
Link is not changed!
Only can be that account was violated and the hacker changed the wallets.But password not changed Huh
I will deep scan pc now.

Dude you have had a history of changing the files in the download link. Dont blame the hacker now, because you're the one doing it.
EcuaMobi
legendary
Activity: 1862
Merit: 1469
https://Ecua.Mobi
Re: Candle coin wallet has a Trojan virus - Dave4You is probably a hacker
January 12, 2016, 08:55:41 PM
#9
Quote from: Dave4You on January 12, 2016, 08:13:01 PM
Link is not changed!
Only can be that account was violated and the hacker changed the wallets.But password not changed Huh
I will deep scan pc now.
The fact you just lie proves everything. Thanks for making it easy.
Dave4You
full member
Activity: 182
Merit: 100
Re: Candle coin wallet has a Trojan virus - Dave4You is probably a hacker
January 12, 2016, 08:13:01 PM
#8
Link is not changed!
Only can be that account was violated and the hacker changed the wallets.But password not changed Huh
I will deep scan pc now.
zazarb
legendary
Activity: 3374
Merit: 1548
Get loan in just five minutes goo.gl/8WMW6n
Re: Candle coin wallet has a Trojan virus - Dave4You is probably a hacker
January 12, 2016, 04:30:24 PM
#7
about that I write month ago: https://bitcointalksearch.org/topic/beware-trojan-1296561


there is Two different version- healthy and infected with trojan.
a7mos
hero member
Activity: 574
Merit: 500
Re: Candle coin wallet has a Trojan virus - Dave4You is probably a hacker
January 12, 2016, 04:16:32 PM
#6
I downloaded from the link with FySMA at the end of the url now on vps and I unrarthe file and tested it on virustool and here is the result : https://www.virustotal.com/en/file/543e3874be615567bb08b509685b4d527175de09501c6d6de329b34e9c4daeb4/analysis/

Quote
SHA256:   543e3874be615567bb08b509685b4d527175de09501c6d6de329b34e9c4daeb4
File name:   Candle-qt.exe
Detection ratio:   1 / 54
Analysis date:   2016-01-12 13:14:57 UTC ( 7 hours ago )

so even virus total said it is not completely clean !

Edit: I remembered something, the link i downloaded was bigger than 10 megabytes as i best as i remember. the current one is 8 megabytes

so maybe there is two files as zazarb said
Pages:
Bitcoin Forum>Economy>Trading Discussion>Scam Accusations
Jump to: