Pages:
Author

Topic: Report Malware and Suspicious Links here so Mods can take Action ! - page 79. (Read 37960 times)

legendary
Activity: 3178
Merit: 3295
Only Mprep because he is moderating the mining board there , and if you already have pm him so just wait til he comes online and have time for answer your PM.
Maybe explain him the things and link to this thread .

For the detections for the Miners its cleear that they got the detection .

But with the

Endgame
malicious (high confidence)
Invincea
heuristic

i guess it was the reason why it was reported and this is not in every miner software .

Wish good luck with it and i dont have report it , just for saying .
hero member
Activity: 2548
Merit: 626
Thanks guys, now i need a moderator to tell me can the topic be returned or i must make a new one ?

You can PM one of the Global Mods, they can investigate and reinstate your topic if it's a false positive.

I already PM'd to Mprep, but that was 10 hours ago, who else could i contact?
legendary
Activity: 3472
Merit: 1724
Thanks guys, now i need a moderator to tell me can the topic be returned or i must make a new one ?

You can PM one of the Global Mods, they can investigate and reinstate your topic if it's a false positive.
hero member
Activity: 2548
Merit: 626
Thanks guys, now i need a moderator to tell me can the topic be returned or i must make a new one ?
hero member
Activity: 2170
Merit: 612
Online Security & Investment Corporation
Bkav
W64.HfsAutoB.
Endgame
malicious (high confidence)
Invincea
heuristic
Malwarebytes
RiskWare.BitCoinMiner
Microsoft
PUA:Win64/CoinMiner
Rising
PUF.CoinMiner!8.4639 (TFE:5:HVCYVtd0IyI)
Hahah.
Those detected "Coinminer" are the usual false-positives you can get by scanning any/all Mining app using a virustotal.
Most known AVs won't even tag it as positive (check the name of the AV's with positives in your image).

If you're accustomed to mining, you will know if there's really a red flag (through actual usage/different scan results)
But doktor83's miner wasn't one of those.
It's the indirect descendant of this old thread: SRBMiner Cryptonight AMD GPU Miner V1.9.3 - native algo switching

I still can't believe that my topic got deleted because of one (1) false report.

it is so ridiculous. Waiting the topic back. the miner software works well. I am using it on my several mining rigs.
member
Activity: 149
Merit: 11
False report!
every Antivirus report miner as dangerous.
im using it on my 15 rig without problem.
newbie
Activity: 29
Merit: 0
user : https://bitcointalksearch.org/user/doktor83-889929

Ann : SRBMiner-MULTI CPU & AMD GPU Miner 0.1.0 beta

Archived : http://archive.is/w1Pbq

Link Github >> Downloaded and scaning SRBminer file have : https://www.virustotal.com/gui/file/fb9378b3eaca05b3fc6bebb58ad318996600252949a41036aa4028bb697c74f8/detection
Bkav
W64.HfsAutoB.
Endgame
malicious (high confidence)
Invincea
heuristic
Malwarebytes
RiskWare.BitCoinMiner
Microsoft
PUA:Win64/CoinMiner
Rising
PUF.CoinMiner!8.4639 (TFE:5:HVCYVtd0IyI)

https://i.ibb.co/0MWX574/aswer.png


Link Mega : https://www.virustotal.com/gui/url/71216ea7e98991af2c7f6226d581d2ba513e14cc585f8e8d0f6cf04bf112f755/detection

https://i.ibb.co/CMM3Qpq/qw.png



Are you serious... Miner reporteted as miner... What you expect? Yes is the miner, im using it...
hero member
Activity: 2548
Merit: 626
-snip-
There should be a full copy of it in the drafts page: https://bitcointalk.org/index.php?action=drafts.
But ask a moderator for a profile/thread review before trying to post it again because someone might report your thread again.

Yep, it's there, thanks for pointing that out.
Also i was hoping that the deleted topic can be restored by a moderator, rather than creating a new topic.

How can i ask for a review, is there a link for that or i write a moderator a PM ? Smiley
legendary
Activity: 2618
Merit: 6452
Self-proclaimed Genius
-snip-
There should be a full copy of it in the drafts page: https://bitcointalk.org/index.php?action=drafts.
But ask a moderator for a profile/thread review before trying to post it again because someone might report your thread again.
hero member
Activity: 2548
Merit: 626
Bkav
W64.HfsAutoB.
Endgame
malicious (high confidence)
Invincea
heuristic
Malwarebytes
RiskWare.BitCoinMiner
Microsoft
PUA:Win64/CoinMiner
Rising
PUF.CoinMiner!8.4639 (TFE:5:HVCYVtd0IyI)
Hahah.
Those detected "Coinminer" are the usual false-positives you can get by scanning any/all Mining app using a virustotal.
Most known AVs won't even tag it as positive (check the name of the AV's with positives in your image).

If you're accustomed to mining, you will know if there's really a red flag (through actual usage/different scan results)
But doktor83's miner wasn't one of those.
It's the indirect descendant of this old thread: SRBMiner Cryptonight AMD GPU Miner V1.9.3 - native algo switching

I still can't believe that my topic got deleted because of one (1) false report.
legendary
Activity: 2618
Merit: 6452
Self-proclaimed Genius
Bkav
W64.HfsAutoB.
Endgame
malicious (high confidence)
Invincea
heuristic
Malwarebytes
RiskWare.BitCoinMiner
Microsoft
PUA:Win64/CoinMiner
Rising
PUF.CoinMiner!8.4639 (TFE:5:HVCYVtd0IyI)
Hahah.
Those detected "Coinminer" are the usual false-positives you can get by scanning any/all Mining app using a virustotal.
Most known AVs won't even tag it as positive (check the name of the AV's with positives in your image).

If you're accustomed to mining, you will know if there's really a red flag (through actual usage/different scan results)
But doktor83's miner wasn't one of those.
It's the indirect descendant of this old thread: SRBMiner Cryptonight AMD GPU Miner V1.9.3 - native algo switching

For the second image:
That's mega.nz (url) that you've scanned.
hero member
Activity: 2548
Merit: 626
user : https://bitcointalksearch.org/user/doktor83-889929

Ann : SRBMiner-MULTI CPU & AMD GPU Miner 0.1.0 beta

Archived : http://archive.is/w1Pbq

Link Github >> Downloaded and scaning SRBminer file have : https://www.virustotal.com/gui/file/fb9378b3eaca05b3fc6bebb58ad318996600252949a41036aa4028bb697c74f8/detection
Bkav
W64.HfsAutoB.
Endgame
malicious (high confidence)
Invincea
heuristic
Malwarebytes
RiskWare.BitCoinMiner
Microsoft
PUA:Win64/CoinMiner
Rising
PUF.CoinMiner!8.4639 (TFE:5:HVCYVtd0IyI)




Link Mega : https://www.virustotal.com/gui/url/71216ea7e98991af2c7f6226d581d2ba513e14cc585f8e8d0f6cf04bf112f755/detection






What the hell man , so my topic got removed because YOU reported it as malware? What the hell moderators, is this serious ?
The binary is PACKED, every AV will report it as dangerous.
I am a miner developer for some time, already got another miner topic on this forum for a long time. Do you think i would post files that contain malware/viruses?
legendary
Activity: 2366
Merit: 2054
user : https://bitcointalksearch.org/user/doktor83-889929

Ann : SRBMiner-MULTI CPU & AMD GPU Miner 0.1.0 beta

Archived : http://archive.is/w1Pbq

Link Github >> Downloaded and scaning SRBminer file have : https://www.virustotal.com/gui/file/fb9378b3eaca05b3fc6bebb58ad318996600252949a41036aa4028bb697c74f8/detection
Bkav
W64.HfsAutoB.
Endgame
malicious (high confidence)
Invincea
heuristic
Malwarebytes
RiskWare.BitCoinMiner
Microsoft
PUA:Win64/CoinMiner
Rising
PUF.CoinMiner!8.4639 (TFE:5:HVCYVtd0IyI)




Link Mega : https://www.virustotal.com/gui/url/71216ea7e98991af2c7f6226d581d2ba513e14cc585f8e8d0f6cf04bf112f755/detection




legendary
Activity: 2324
Merit: 1604
hmph..


If you are need to track how your content engagment, you just need to create utm referral. I don't know what a link behind of your Linktree, because I don't want to take any risk. If, your link behind linktree is for your sites, why you are not just using bit.ly?

May be this tools can help you to track. https://ga-dev-tools.appspot.com/campaign-url-builder/ and edit your post, i will edit my reports. PM me if you are done

//Don't reply, just PM me//
copper member
Activity: 41
Merit: 1
[ANN][DCA] Decracy - A Global Revolution > Global ID, Privacy, Smart Contracts

Thread archives: https://archive.is/jdUWX
Thread creator: Decracy

Case: Creator using shortlink to their website, first he was using bit.ly when I check link behind, it will redirect to linktree. Screenshot https://i.ibb.co/Z2yNVZc/image.png when I scan that domain contain malicious program. Scan results can be found here https://www.virustotal.com/gui/url/2bb4560b0eb19702e6fb2270ebaf76322707e39f3f3b26dae2ffffeeafa58696/detection



Hello BitcoinTalk & Member Masulum.

We have had the opportunity of being notified of this post by a member. Though this post seems to not have been brought to our attention directly.

First, we would like to thank those who are contributing to ensure that the engagement on BitcoinTalk and the content being shared are safe and protected. Creating a safe environment that can be appreciated by the members here on BitcoinTalk.

In addressing a) the virus scan; we would like to express the common knowledge that when scanning a webpage that gathers reports of over '70' different virus defense provides that the result of there being a false-positives is one that is possible - at times even likely.

To be clear, the 'malicious' 1 flag, out of 70 green checks, was given to the service of LinkTree, not of any services owned by Decracy.

Though for the sake of also sharing that we do give detailed attention on all third-party services that we utilize, in verifying that they are of caliber, and of safe convenience for our members, I share with you public articles that show the likes of Expedia, Wix, Red Bull, and countless globally-acclaimed public figures who currently, and safely, utilize the service of 'LinkTree'. LinkTree Article.

A false-positive report was drafted and sent to 'CRDF Labs', by our team, which is the provider that flagged the service of 'LinkTree'. To place in perspective, we would like to state that the most trusted virus defense providers such as Google, Avira, Kaspersky, BitDefender, ESET, Tencent, Opera, + all marked, passed, and verified the same service provider to be safe.

In hindsight, these are things that we fully believe should be considered when reporting links to be 'unsafe', which can sway others to think negatively of certain content or the poster of such content.


Addressing b) the use of 'Bit.ly'; with our operations being on par with the operations of world corporations and entities, our goal, and the goal of our marketing team, is to uphold the most informed environment where we are in the position of better understanding our content, it's delivery, and its acceptance, within the environments that we share such content in. In this case, the same design was being utilized when we incorporated the use of Bit.ly links. It allows for a Grade A environment to be hosted where Decracy may better understand the click-through ratio, and how we may better improve Decracy's content so that it may better align with the interest of the users, in this case, BitcoinTalk users.


We hope that we have well clarified the points above.


Decracy

legendary
Activity: 2324
Merit: 1604
hmph..
[ANN][DCA] Decracy - A Global Revolution > Global ID, Privacy, Smart Contracts

Thread archives: https://archive.is/jdUWX
Thread creator: Decracy

Case: Creator using shortlink to their website, first he was using bit.ly when I check link behind, it will redirect to linktree. Screenshot https://i.ibb.co/Z2yNVZc/image.png when I scan that domain contain malicious program. Scan results can be found here https://www.virustotal.com/gui/url/2bb4560b0eb19702e6fb2270ebaf76322707e39f3f3b26dae2ffffeeafa58696/detection

Updates: User Decracy removed malicious sites already. Trying to check his official website, decracy.com, this sites is clean from virus based on virustotal.com results

Thank you.
legendary
Activity: 3178
Merit: 3295


Nice catch and finding , i already have reported this thread and looking now to the other threads he has created too !
Hope that more reporting it and the virustotal result shows that something is not right with the file .
Or have you checked already his other thread and files ? So i dont have to doing that.
legendary
Activity: 3178
Merit: 3295
Fake ANN again !

[ANN] SPECTRECOIN | Anonymous | Stealth-Staking | Tor | Ring Signatures

User : cbread  <----  Please nuke that User !


Code:
[b]Wallet Downloads[/b][/u][/size][/color]
 The development fund aims to support the long term development and value of Spectrecoin. .[/b][/i]
[url=https://www1.zippyshare.com/d/ktmuBCNS/6739/Spectrecoin.rar][size=10pt]Download[/size][/url]

Fake Download source : https_://www1.zippyshare.com/d/ktmuBCNS/6739/Spectrecoin.rar


Real Download Source : https_://github.com/spectrecoin/spectre/releases

Original ANN and thread :

[ANN] SPECTRECOIN | Anonymous | Stealth-Staking | Tor | Ring Signatures


User : XSPEC-team

Code:
[b]Wallet Downloads[/b][/u][/size][/color]
The development fund aims to support the long term development and value of Spectrecoin.[/b][/i]
[size=14pt]https://github.com/spectrecoin/spectre/releases[/size]
ONLY download wallets from the official Spectrecoin GitHub repo!!!
legendary
Activity: 2324
Merit: 1604
hmph..
[ANN]⚡️[ICO]SEKOPAY EXCHANGE  SEKOPAY POS & MASTERNODES  SEKOPAY APP⚡️[ANN]


FAKE ANN
Thrad: https://bitcointalksearch.org/topic/annicosekopay-exchange-sekopay-pos-masternodes-sekopay-appann-5184137
Creator: https://bitcointalksearch.org/user/pochy123-995704

Wallet scan result:
Zipezip: https://zipezip.com/ufiles/06ee2863318032cae1bbc1e291218f3f

Virusdesk:

Code:
[u]File name: seko-qt.exe[/u]
Scan result : threats detected
Threat name: Trojan-Spy.MSIL.Quasar.iaa
File size: 1.38 MB
File type: PE32/EXE
Scan date: Oct 02 2019 19:39:12
Databases release date: Oct 02 2019 12:31:37 UTC
MD5: 046725a7ae791f4e2129d3fd13c449fc
SHA1: d36e500677524b22f5e3b44f55dc87337910ff1c
SHA256: bd8541c72e2bee43ada2bde6abb9729d0f992b6b43b61d8f58542ce97c741721

[u]FILE NAME: seko-qt.rar[/u]
Scan result: threats detected
Threat name: Trojan-Spy.MSIL.Quasar.iaa
File size 948.08 KB
File type ARC/RAR
Scan date: Oct 02 2019 19:39:12
Databases release date: Oct 02 2019 12:31:37 UTC
MD5: 010d9c752aeaab33d2284e396a6f1c27
SHA1: 9e2ae88355e9289c763bb298d6bd1eaef3e2b42d
SHA256: 720e25d7fc1beebf8941fcf4986adc6f1e7f19361b55b6f1d46e97213cd73f5e

https://github.com/SekoPay/sekopaycoin/releases/download/v2.3.0/SekoPay-v2.3.0-WIN.zip

Screenshot: https://i.imgsafe.org/49/49b089b4ed.png
----------------------------------------------------------------------------------------------------------------
Original ANN based on Coingecko

Thread: https://bitcointalksearch.org/topic/ann-sekopaycoin-seko-masternodes-pos-mno-5046889 (No content)
Official github: https://github.com/sekopaycoin (official github username: sekopaycoin / fake github username: SekoPay)

This is the second FAKE ANN thread I found was created by pochy123.
Pages:
Jump to: