Author

Topic: MedusaMiner ??? (Read 4828 times)

sr. member
Activity: 350
Merit: 250
★YoBit.Net★ 350+ Coins Exchange & Dice
July 02, 2014, 08:44:44 AM
#12
the source code shows in C++ - https://github.com/medusaminer/medusaminer , Im sure if you took time to look through the source code rather than accusing you will find this is most likely not a virus, some people have had good results with it, I personally am struggling to build it from source but I found no evidence of any malicious code.

There's a good reason you can't compile it... the source code isn't complete. Even it it were, the source code which is there is clearly just a 99% copy of CGMiner, except for removing any references to the CGMiner name and replacing some of the copyright notices (which itself is a GPL violation...) with bogus names ("Michael Bubble"? really?). In short, the binaries and the source code are not the same.

Just because something claims to be open source, doesn't make it safe.

Really? I retract my former statement then. sounds like a virus.
hero member
Activity: 672
Merit: 504
a.k.a. gurnec on GitHub
July 02, 2014, 08:24:49 AM
#11
the source code shows in C++ - https://github.com/medusaminer/medusaminer , Im sure if you took time to look through the source code rather than accusing you will find this is most likely not a virus, some people have had good results with it, I personally am struggling to build it from source but I found no evidence of any malicious code.

There's a good reason you can't compile it... the source code isn't complete. Even it it were, the source code which is there is clearly just a 99% copy of CGMiner, except for removing any references to the CGMiner name and replacing some of the copyright notices (which itself is a GPL violation...) with bogus names ("Michael Bubble"? really?). In short, the binaries and the source code are not the same.

Just because something claims to be open source, doesn't make it safe.
sr. member
Activity: 350
Merit: 250
★YoBit.Net★ 350+ Coins Exchange & Dice
July 01, 2014, 11:49:58 PM
#10
    Quote from: grue
    • the miner requires admin rights, but no other miners requires that
    • it appears to be a compiled autoit script
    • the miner does not import opencl.dll, which all other miners do
    • if you go on his site, minersforwindows.com, you'll notice that every download has the same executable
    • archive metadata shows that the archive was modified and the proper executable was replaced

    Grue, TheMage

    Are you sure we are not confusing different software/sites? minersforwindows.com & medusaminer.com ? The image you show is of cgminer.exe?

    Doesn't autoit normally give you a trojan warning on virustotal though? I'm quite experienced scripting with autoit, I couldnt decompile medusaminer.exe as autoit script either

    the source code shows in C++ - https://github.com/medusaminer/medusaminer , Im sure if you took time to look through the source code rather than accusing you will find this is most likely not a virus, some people have had good results with it, I personally am struggling to build it from source but I found no evidence of any malicious code.

    https://www.virustotal.com/en/file/6ff2eecf0a2e23f8356a87a45fbaf661d4adb5ae8f82f8d9b527b5900d363add/analysis/1404169029/

    How can you tell this is a virus?

    All your statements above are contradictory to what I have found with MedusaMiner.exe and MedusaMiner.zip, Im not saying its not a virus but I cant find any evidence that it is and it certainly is not an AutoIt Script. You could have just damaged the reputation of an up and coming miner?

    Quote from: grue
    • the miner requires admin rights, but no other miners requires that
    No It Doesnt
    • it appears to be a compiled autoit script
    No It Doesnt
    • the miner does not import opencl.dll, which all other miners do
    Not sure about this I cant read c++ too well but opencl is in there
    • if you go on his site, minersforwindows.com, you'll notice that every download has the same executable
    I thought this thread was about Medusaminer.com?
    • archive metadata shows that the archive was modified and the proper executable was replaced
    No It Doesnt
    [/list]

    Even both sites are on different hosts

    Code:

    C:\Users\Administrator>ping medusaminer.com

    Pinging medusaminer.com [77.72.1.162] with 32 bytes of data:
    Reply from 77.72.1.162: bytes=32 time=12ms TTL=51
    Reply from 77.72.1.162: bytes=32 time=9ms TTL=51
    Reply from 77.72.1.162: bytes=32 time=17ms TTL=51
    Reply from 77.72.1.162: bytes=32 time=10ms TTL=51

    Ping statistics for 77.72.1.162:
        Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
    Approximate round trip times in milli-seconds:
        Minimum = 9ms, Maximum = 17ms, Average = 12ms

    C:\Users\Administrator>ping minersforwindows.com

    Pinging minersforwindows.com [23.229.128.103] with 32 bytes of data:
    Reply from 23.229.128.103: bytes=32 time=176ms TTL=57
    Reply from 23.229.128.103: bytes=32 time=175ms TTL=57
    Reply from 23.229.128.103: bytes=32 time=175ms TTL=57
    Reply from 23.229.128.103: bytes=32 time=176ms TTL=57
    hero member
    Activity: 812
    Merit: 1000
    Litecoin Association Director
    July 01, 2014, 11:40:33 PM
    #9
    IT'S A VIRUS.

    Quote from: grue
    • the miner requires admin rights, but no other miners requires that
    • it appears to be a compiled autoit script
    • the miner does not import opencl.dll, which all other miners do
    • if you go on his site, minersforwindows.com, you'll notice that every download has the same executable
    • archive metadata shows that the archive was modified and the proper executable was replaced

    Thanks for letting other forums know. Litecointalk got the same crap and we dealt with it swiftly after you posted Smiley.


    Big thanks!
    legendary
    Activity: 2058
    Merit: 1452
    July 01, 2014, 07:01:23 PM
    #8
    IT'S A VIRUS.

    Quote from: grue
    • the miner requires admin rights, but no other miners requires that
    • it appears to be a compiled autoit script
    • the miner does not import opencl.dll, which all other miners do
    • if you go on his site, minersforwindows.com, you'll notice that every download has the same executable
    • archive metadata shows that the archive was modified and the proper executable was replaced
    legendary
    Activity: 2632
    Merit: 1450
    July 01, 2014, 09:58:06 AM
    #7
    X11 compared to sgminer better or not?
    sr. member
    Activity: 350
    Merit: 250
    ★YoBit.Net★ 350+ Coins Exchange & Dice
    July 01, 2014, 06:24:43 AM
    #6
    Looks like they have released the source code due to demand.

    https://github.com/medusaminer/medusaminer
    newbie
    Activity: 5
    Merit: 0
    June 30, 2014, 03:57:32 PM
    #5
    Anyone tried this out yet? I seem to get stuck at determining hardware?

    Works perfect for me, seems very impressive, getting a much better hashrate out of my R9 280's than SGMiner. I will use this from now on for sure
    sr. member
    Activity: 350
    Merit: 250
    ★YoBit.Net★ 350+ Coins Exchange & Dice
    June 29, 2014, 08:44:42 PM
    #4
    Anyone tried this out yet? I seem to get stuck at determining hardware?
    newbie
    Activity: 14
    Merit: 0
    June 29, 2014, 07:05:37 AM
    #3
    Yeah im curious about this too, ive seen alot about it on litecointalk, any good reviews?

    They have updated again now?
    Still looking interesting
    And they seem to be doing alot of stuff with it

    You tried it yet?
    sr. member
    Activity: 350
    Merit: 250
    ★YoBit.Net★ 350+ Coins Exchange & Dice
    June 28, 2014, 11:25:18 AM
    #2
    Yeah im curious about this too, ive seen alot about it on litecointalk, any good reviews?
    newbie
    Activity: 14
    Merit: 0
    June 21, 2014, 05:33:51 PM
    #1
    Anyone know anything about this?

    http://medusaminer.com/ mod note: possible virus. see below.
     
    I have been keeping an eye on it And it seems to have mixed reactions
    Although the latest update and the upcoming update look like they have listened to the complaints..

    I'm just always wary when it comes to new stuff

    ===Here is a quote from it===

     This is the last alpha release before 0.1.0 which is going to be a huge release, not only does 0.1.0 include a complete rewrite of the engine (due to messy code) we have even written it in C to ensure stability and speed. v0.0.9 still comes with lots of nice features though so check it out.
     
    We have been trying our hardest to add in your suggestions, thanks to froggy1987 for the API support idea, that will be added in v0.1.0 and thanks to triod for the growl idea that will also be available in v0.1.0
     
    v0.0.9 Features - out now

    + Now compatible with CGMiner/SGminer config files
    + Cleanup of engine - This means faster hashrate
    + Support for more ASIC Devices
     
    Features coming in 0.1.0 - due for release 02/07/2014

    + Complete Rewrite of program for speed and stability.
    + Support for medusa's own style config file.
    + AutoUpdate - No more going onto the site to download the latest version using libcurl
    + More documentation (This has been lacking, sorry)
    + Full API
    + Support for Growl/Prowl/WSM/email to receive messages if hardware failure (Looking to add SMS to that list)  

    Thoughts ?

    Theo S (for Super) Paul
    Jump to: