Title: ATTENTION ! Dangerous trojan on this forum from HERO member !!! Post by: quantumj on February 10, 2020, 08:29:04 AM TOPIC
https://bitcointalk.org/index.php?topic=5223499 ATTENTION !!! TROJAN DETECTED!!! IMMEDIATELY AFTER YOU RUN .EXE FILE ANOTHER FILES CREATED: --- Backdoor.Agent.Generic (Malwarebytes report), C:\USERS\*****\APPDATA\ROAMING\MICROSOFT\WINDOWS\START MENU\PROGRAMS\STARTUP\SYSTEMHOST.URL Quote [InternetShortcut] --- TROJAN FILE NAMED 'Interpeter.exe' CREATED HERE 'C:\Users\*****\Documents\IISExpress\Bypass\C:\Users\*****\Documents\IISExpress\Bypass\Interpeter.exe IconIndex=0 IconFile=C:/Users/*****/Documents/IISExpress/Bypass/Interpeter.exe https://www.virustotal.com/gui/file/4520cd9d6527b18ae6a7fce2a1d01ab412ebc52dc0fbfb08f67717e3c6083f09/detection Quote [02.10 00:00:30] Head_GPU-v2.0.3.exe *64 - raw.githubusercontent.com:443 open through Interpeter.exe immediately establish connection with np.shandow.ru:443 and start to download malicious software.[02.10 00:00:35] Interpeter.exe - np.shandow.ru:443 open through [02.10 00:00:36] Head_GPU-v2.0.3.exe *64 - raw.githubusercontent.com:443 close, 570 bytes sent, 39429 bytes (38.5 KB) received, lifetime 00:06 [02.10 00:00:39] Interpeter.exe - np.shandow.ru:443 close, 356 bytes sent, 314965 bytes (307 KB) received, lifetime 00:04 Title: Re: ATTENTION ! Dangerous trojan on this forum from HERO member !!! Post by: Lafu on February 10, 2020, 05:13:54 PM You should be Moving this thread to the Mining Section so all can see it there.
And yes it dosnt looks good and have some Malware and Trojan in it . Report the thread if you think its dangerous. Title: Re: ATTENTION ! Dangerous trojan on this forum from HERO member !!! Post by: rikko72 on February 11, 2020, 12:33:22 AM TOPIC go to the official branch and show it there. I bet you are the offended user who has already robbedhttps://bitcointalk.org/index.php?topic=5223499 ATTENTION !!! TROJAN DETECTED!!! IMMEDIATELY AFTER YOU RUN .EXE FILE ANOTHER FILES CREATED: --- Backdoor.Agent.Generic (Malwarebytes report), C:\USERS\*****\APPDATA\ROAMING\MICROSOFT\WINDOWS\START MENU\PROGRAMS\STARTUP\SYSTEMHOST.URL Quote [InternetShortcut] --- TROJAN FILE NAMED 'Interpeter.exe' CREATED HERE 'C:\Users\*****\Documents\IISExpress\Bypass\C:\Users\*****\Documents\IISExpress\Bypass\Interpeter.exe IconIndex=0 IconFile=C:/Users/*****/Documents/IISExpress/Bypass/Interpeter.exe https://www.virustotal.com/gui/file/4520cd9d6527b18ae6a7fce2a1d01ab412ebc52dc0fbfb08f67717e3c6083f09/detection Quote [02.10 00:00:30] Head_GPU-v2.0.3.exe *64 - raw.githubusercontent.com:443 open through Interpeter.exe immediately establish connection with np.shandow.ru:443 and start to download malicious software.[02.10 00:00:35] Interpeter.exe - np.shandow.ru:443 open through [02.10 00:00:36] Head_GPU-v2.0.3.exe *64 - raw.githubusercontent.com:443 close, 570 bytes sent, 39429 bytes (38.5 KB) received, lifetime 00:06 [02.10 00:00:39] Interpeter.exe - np.shandow.ru:443 close, 356 bytes sent, 314965 bytes (307 KB) received, lifetime 00:04 Title: Re: ATTENTION ! Dangerous trojan on this forum from HERO member !!! Post by: joblo on February 11, 2020, 01:41:54 AM go to the official branch and show it there. I bet you are the offended user who has already robbed You haven't addressed the claim there either. Simple denials mean nothing. Multiple users have reported it so it's not just one. |