Report Malware and Suspicious Links here so Mods can take Action ! - page 28.

dkbit98

legendary

Activity: 2212

Merit: 7064

New 5G ANN with suspicious malware wallet

Thread: [ANN] [♣5G-Cash♣] [POW/POS/MN] BEST MINING COIN!!

User: RiseEvents <------- Please Ban

This user recently woke up from a long period of inactivity.

Github Account was created recently

Archive: https://archive.vn/Hxxs6

Code:

https://github.com/5GCash-Project/5G-Cash/releases/download/v1.2.2.0/Fiveg-qt.zip

dkbit98

legendary

Activity: 2212

Merit: 7064

New Fake ANN for shark

Thread : 🦈[ANN] SharkCoin (SKN) POS + MASTERNODE 🦈

User : vavo17t <------- Please Ban

This user recently woke up from a long period of inactivity.

Github Account was created recently

Archive : https://archive.vn/MGPlp

Code:

https://github.com/SharkCoin-project/SharkCoin/releases/download/3.4/sharkcoin-3.4.zip

Fake Github: https://github.com/SharkCoin-project/SharkCoin/

Real Github: https://github.com/sharkcoin32/Sharkcoin

Original ANN [ANN] SharkCoin (SKN) POS + MASTERNODE

Lafu

legendary

Activity: 3136

Merit: 3213

Next Fake ANN !

Thread : 🦈[ANN] SharkCoin (SKN) POS + MASTERNODE 🦈

User : Igohm <------- Please Ban that User and delete the Thread

This user recently woke up from a long period of inactivity.
Account was registered in October 29, 2014 , Hacked or sold Account

Github Account was created 15 hours ago

Archive : https://archive.fo/wip/R4yMw

Code:

https://github.com/SharkCoin-project/SharkCoin/releases/download/3.4/sharkcoin-3.4.zip

Fake Github : https_://github.com/SharkCoin-project/SharkCoin/

Real Github : https_://github.com/sharkcoin32/Sharkcoin

Original ANN

Thread : [ANN] SharkCoin (SKN) POS + MASTERNODE

User : guiguixx12020

Code:

https://github.com/sharkcoin32/Sharkcoin

morvillz7z

legendary

Activity: 2212

Merit: 2061

Join the world-leading crypto sportsbook NOW!

Fake announcement thread for SharkCoin:

🦈[ANN] SharkCoin (SKN) POS + MASTERNODE 🦈 <-- DELETE

GitHub account is created an hour ago, thread has been started by 2013 account who woke up recently and this is their first and only post.

User: barbarylane
GitHub: https_://github.com/SharkCoin-project/

Code:

https_://github.com/SharkCoin-project/SharkCoin/releases/download/3.4/sharkcoin-3.4.zip

Lafu

legendary

Activity: 3136

Merit: 3213

Next Fake ANN !

Thread : [ANN] [XAL] ALTINLIRA | Stable and equivalent to a gram of gold l LAUNCHED l

User : icepacks <----- Please Ban that User and delete the Thread
This user recently woke up from a long period of inactivity.
Account is registered since 2015 , guess the Account got hacked or sold
And the Thread is selfmodarted

Archive : https://archive.fo/wip/7vXej

Code:

Wallet: [/b]https://github.com/AltinLira-XAL/AltinLira-XAL/releases/download/v0.1/AltinLira-qt.zip
Etherscan Explorer: [/b][url=https://etherscan.io/address/0x61561529350276b2d44227a078b248d52c67b1dc

Fake Github : https_://github.com/AltinLira-XAL/AltinLira-XAL/releases/download/v0.1/AltinLira-qt.zip

Real Github : https_://github.com/AltinLiraXAL/xal-contracts

Original ANN

Thread : [ANN] [XAL] ALTINLIRA | Stable and equivalent to a gram of gold

User : emtia

Code:

][b]LINKS[/b]
Web Address: [/b][url=https://altinlira.eu/en]https://altinlira.eu/en[/url][/size][/font]
Github Repo: [/b][url=https://github.com/AltinLiraXAL/xal-contracts]https://github.com/AltinLiraXAL/xal-contracts[/url][/size][/font]
Etherscan Explorer: [/b][url=https://etherscan.io/address/0x61561529350276b2d44227a078b248d52c67b1dc]https://etherscan.io/address/0x61561529350276b2d44227a078b248d52c67b1dc

Next Fake ANN !

Thread : [ANN] [BTLIR] PoS-Node Coin | Mutual Betting Platform

User : betIIer <----- Please Ban that User and delete the Thread
Just registered on the 8 Dec.

Archive : https://archive.vn/wip/eMOP4

Code:

https://github.com/betIIer/Betller

Fake Github : https_://github.com/betIIer/Betller

Real Github : https_://github.com/betller

Original ANN

Thread : [ANN] [BTLLR] PoS-Node Coin | Mutual Betting Platform

User : betller.io

Code:

https://github.com/betller

Lafu

legendary

Activity: 3136

Merit: 3213

Quote from: Csmiami on December 06, 2020, 03:57:04 PM

PS: your last ETHPHILL archive links aren't showing the actual deleted post or is it me?

Take a look here here https://loyce.club/badposts/ and you can filter the posts by scam and they should be shown then in the list.
Yeb there are a lot of users that was posting the Link but they got instant deleted thanks to @Mitchell and his bot .
Guess sometimes they write there posts diffrent and maybe the bot dont catch all.

Csmiami

copper member

Activity: 1652

Merit: 1325

I'm sometimes known as "miniadmin"

Quote from: Lafu on December 06, 2020, 03:39:46 PM

---

Will be looking at it and fingers crossed that they dont come back fully and spam again there shit around on the Forum.

I see 112 posts containing that link since Friday (113 if we consider yours). Good thing they've been deleted before we even noticed.

PS: your last ETHPHILL archive links aren't showing the actual deleted post or is it me?

Lafu

legendary

Activity: 3136

Merit: 3213

Quote from: Csmiami on December 06, 2020, 10:04:50 AM

Looks like they are back:

https://ninjastic.space/post/55766893

Nice catch and thanks for let me know .
It was an old Account from March 23, 2013 registered "This user recently woke up from a long period of inactivity" that posted this post , so yeah looks like they are back and they have a new webpage .

Code:

https://hashup-utility.info/HashUpUtility.zip

Will be looking at it and fingers crossed that they dont come back fully and spam again there shit around on the Forum.

Csmiami

copper member

Activity: 1652

Merit: 1325

I'm sometimes known as "miniadmin"

Looks like they are back:

https://ninjastic.space/post/55766893

Rikafip

legendary

Activity: 1722

Merit: 5937

Can someone please check dl links in this thread please?
🎲ANN OFFICIAL🎲 DiceNode (DNO) The P2P Cryptocurrencie POS/MN 🎲ANN OFFICIAL🎲

@qwertyup23 reported them for using fake team member photos, but maybe that's not all that is wrong with this ANN. Github account used was made 2 days ago, website laucnhed at the same date as well, and beside those fake team member photos project doesn't have much other info. Very little effort invested in all this, so that's what made me suspicious.

Code:

https://github.com/Marloondev/dicenode/releases/download/v1.0.0.0/daemon-win32.rar

Archived ANN https://archive.fo/oFCZU

Lafu

legendary

Activity: 3136

Merit: 3213

Quote from: DaveF on November 26, 2020, 07:40:13 PM

Hosting info of the site for now:

If anyone else can email their abuse it would probably be good.
If you speak German you can also call too if you think it would help. +49-(0)69-120069-0

remarks: * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *
remarks: * Complaints about internet abuse like spam, hack attacks, scans, etc. *
remarks: * please mail to: --> [email protected] <-- *
remarks: * Requests from law enforcement (only!), send fax to: +49 (0) 69 1200 69 55 *
remarks: * Inquiries can only be processed, if sent to the correct address. *
remarks: * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *

-Dave

I will try to send an email there and explain to them the situation and as there are from germany i can do this in german also,
Guess they will understand that quicker then maybe , but thanks for the Information Dave , thank you.
Hope they will get the Webpage down and offline , and if so that means more work again for the guys behind the malware links.

DaveF

legendary

Activity: 3500

Merit: 6320

Crypto Swap Exchange

Quote from: morvillz7z on November 26, 2020, 08:40:36 PM

They can always buy/set up a new cheap website, it's not worth the effort imo.

Agreed, but getting it off the internet in general can't hurt.
Odds are they paid for the domain and the hosting with stolen money or a stolen card.

-Dave

morvillz7z

legendary

Activity: 2212

Merit: 2061

Join the world-leading crypto sportsbook NOW!

If LoyceV's data is correct there have been over 600 new links (with malware) posted in the last 24 hours alone.

That's gotta be a record, i mean shiiiet, imagine how much butthurt they must be since their posts do not last more than 1 minute now, thanks to Mitchell's bot (and everyone else involved in reporting).

Quote from: DaveF on November 26, 2020, 07:40:13 PM

If anyone else can email their abuse it would probably be good.
If you speak German you can also call too if you think it would help. +49-(0)69-120069-0

They can always buy/set up a new cheap website, it's not worth the effort imo.

DaveF

legendary

Activity: 3500

Merit: 6320

Crypto Swap Exchange

Quote from: Lafu on November 26, 2020, 07:33:04 PM

And here we go again with some Ethpil download links !

...

Hosting info of the site for now:

If anyone else can email their abuse it would probably be good.
If you speak German you can also call too if you think it would help. +49-(0)69-120069-0

remarks: * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *
remarks: * Complaints about internet abuse like spam, hack attacks, scans, etc. *
remarks: * please mail to: --> [email protected] <-- *
remarks: * Requests from law enforcement (only!), send fax to: +49 (0) 69 1200 69 55 *
remarks: * Inquiries can only be processed, if sent to the correct address. *
remarks: * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *

-Dave

Code:

% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf

% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.

% Information related to '212.224.124.64 - 212.224.124.127'

% Abuse contact for '212.224.124.64 - 212.224.124.127' is '[email protected]'

inetnum: 212.224.124.64 - 212.224.124.127
netname: ES-FORNEX
descr: www.fornex.com, Fornex Hosting S.L
country: ES
admin-c: COLO-RIPE
tech-c: COLO-RIPE
remarks: -------------------------------------------------------
remarks: --- please report spam/abuse to [email protected] --
remarks: ---- reports to other addresses won't be processed ----
remarks: -------------------------------------------------------
status: ASSIGNED PA
mnt-by: MNT-FIRSTCOLO
created: 2011-03-10T21:33:01Z
last-modified: 2013-05-10T15:56:24Z
source: RIPE

role: First Colo Ripe Coordination
address: First Colo GmbH
address: Hanauer Landstr. 291b
address: D-60314 Frankfurt am Main
address: Germany
phone: +49-(0)69-120069-0
fax-no: +49-(0)69-120069-55
abuse-mailbox: [email protected]
remarks:
remarks: * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *
remarks: * Complaints about internet abuse like spam, hack attacks, scans, etc. *
remarks: * please mail to: --> abuse [@] first-colo [.] net <-- *
remarks: * Requests from law enforcement (only!), send fax to: +49 (0) 69 1200 69 55 *
remarks: * Inquiries can only be processed, if sent to the correct address. *
remarks: * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *
remarks:
admin-c: LEKR-RIPE
tech-c: LEKR-RIPE
tech-c: LEKR-RIPE
nic-hdl: COLO-RIPE
mnt-by: MNT-FIRSTCOLO
created: 2007-09-28T19:01:39Z
last-modified: 2018-09-28T08:47:18Z
source: RIPE # Filtered

Lafu

legendary

Activity: 3136

Merit: 3213

And here we go again with some Ethpil download links !

Quote from: ?? on ??

Project for hashrate up on miners, absolute free, development of the project idea "ETHlargement" for new video card architectures ProjectEthereumPill release

This project is unique in its kind and is being developed taking into account new video card architectures.
Works with all popular miners and coins such as ETH|ETC|RVN

UPD: Now hashrate up for ETCHash algo also!

Support Algo: Ethash/KawPow/ProgPow

Code:

[b]Download:[/b] https://ethereumpill.info/ProjectEthereumPill.zip

User : hilsa <------- Please Ban or nuke this User and delete the Post
This user recently woke up from a long period of inactivity.

Archive : https://archive.fo/wip/27XEd
Post : https://bitcointalksearch.org/topic/phoenixminer-62c-fastest-ethereumethash-miner-with-lowest-devfee-winlinux-2647654

Next one

User : rktiab <------- Please Ban or nuke this User and delete the Post

Post : https://bitcointalksearch.org/topic/phoenixminer-62c-fastest-ethereumethash-miner-with-lowest-devfee-winlinux-2647654
Archive : https://archive.vn/wip/F098e

Next one !

User : ronrone <------- Please Ban or nuke this User and delete the Post

Post : https://bitcointalksearch.org/topic/gminer-v324-ergokaspazilkawpowequihashcortex-5034735

Mitchell

copper member

Activity: 3948

Merit: 2201

Verified awesomeness ✔

Thank you MindlessElectron and people reporting the spam.

SiNeReiNZzz

legendary

Activity: 1022

Merit: 1043

αLPʜα αɴd ΩMeGa

PhoenixMiner 5.2e: fastest Ethereum/Ethash miner with lowest devfee (Win/Linux)

After I stumbled across a malware infected update earlier, I checked the link with the files in the OP again.
And behold, even though the OP took a lot of merit and is from 2017, it now leads to files that are more than full of malware! (See VirusTotal-Scan)

Thread/Post: https://bitcointalksearch.org/topic/m.26969355 <---- DELETE PLEASE

Virus Total: https://www.virustotal.com/gui/file/fb439a00e77f5735725824a97d8912955f1088ac87a5876f622659201a7d8ffc/detection

Profile Link: PhoenixMiner <---- BAN PLEASE

Archive- LINK

Code:

https://mega.nz/#F!2VskDJrI!lsQsz1CdDe8x5cH3L8QaBw
▼
PhoenixMiner.zip

SiNeReiNZzz

legendary

Activity: 1022

Merit: 1043

αLPʜα αɴd ΩMeGa

PhoenixMiner 5.2f #1

Thread/Post: https://bitcointalksearch.org/topic/phoenixminer-62c-fastest-ethereumethash-miner-with-lowest-devfee-winlinux-2647654 <---- DELETE PLEASE

Virus Total: https://www.virustotal.com/gui/file/3fac4ad4f0b7965557fc586c16e3afd4078a92ceab73705977292439e35d92db/detection

Profile Link: umqlebacl <---- BAN PLEASE

Archive- LINK

Code:

Windows: https://mega.nz/file/IlwAHRSD#H82iNa6Pm9dQvsG8pIlOyKWh7gPe9q0JkIkteIbG3YM
Linux: https://mega.nz/file/J85SlCwS#Rjg0DY23Q6WJFsYWGZAjJWMb_KmvM90MPs5n9yBhCJ4
▼
PhoenixMiner_5.2f_Windows .zip

Lafu

legendary

Activity: 3136

Merit: 3213

Quote from: ?? on ??

ok guys, you won.
You just bothered me with your filters, and every time I find something new, the maximum lasts a day.
No more spam, malwares and more, I'm leaving.

P.S.: say thank you suchmoonbot

I would cant believe you and lets see what the next days or weeks bring and if the Malware links will stop.
Its not only suchmoons bot , there are so many Users that hit the report to moderator button when they see the threads and posts.

If there are not anymore one of this posts and threads it fas a long fight against it and would be bring a lot to the Forum Users safety.

Lafu

legendary

Activity: 3136

Merit: 3213

Just an update for the Ethpil link and Website !

They using now short links in there posts as you can see here in the following post.
If you click on it , it will be redirecting you to the same Webpage as i have written last time.

Short Link:

Code:

https://goo.su/38Yx

The Webpage you will get:

Code:

https://howtohashrateup.medium.com/how-to-hashrate-up-on-popular-mineres-c845e293b636

Quote from: ?? on ??

Code:

[b]"How to up your hashrate"[/b] - [url=https://goo.su/38Yx]Read on Medium[/url]

Please Nuke the User cxema
This user recently woke up from a long period of inactivity.

Archive : https://loyce.club/archive/posts/5567/55671472.html

User : dWarriors88 <------ Please Nuke that User
This user recently woke up from a long period of inactivity.

Quote from: ?? on ??

Code:

[b]"How to up your hashrate"[/b] - [url=https://goo.su/38Yx]Read on Medium[/url]

Topic: Report Malware and Suspicious Links here so Mods can take Action ! - page 28. (Read 36688 times)