 Show Posts
|
|
Pages: [1]
|
good job!!! I imagine many people will see a boost in their hash rate at the pools on there SHA256 miners.. I tried to find the thread earlier, there was something talking about 4/5TH loss at the pool and their TCPDUMP showed same connection to the 192.169.6.241 address, that thread was about 8 months old so this virus has been out for sometime. Awesome to see the community come together, edit: was able to find the thread https://bitcointalk.org/index.php?topic=5172514.0 |
|
|
|
|
I will investigate more, I am wondering if this virus may have created a hidden partition on boot up, I will check partition layout on good ant miner. I have seen others post that they have installed latest firmware from bitmain and the virus comes back after a day or two.
I am wondering if this partition does not get wipe durning a firmware upgrade and when the miner is rebooted that partition boots first and then loads the miner software.
Also: I have seen other threads showing this active connection to : 192.169.6.241, that is a USA hosting company, filing a complaint against that HOST.
Thoughts?
|
|
|
|
I recently purchased some Antminer S9's from eBay with bitmain firmware on them, I started seeing some abnormals in hash reporting vs actual hash rate at the pool. I have seen numerous threads with people with the same problem but no resolve. What I found: tcpdump: listening on eth1, link-type EN10MB (Ethernet), capture size 262144 bytes
11:22:36.264415 IP (tos 0x0, ttl 64, id 9890, offset 0, flags [DF], proto TCP (6), length 60)
192.168.1.45.36302 > 192.169.6.241.48748: Flags [S], cksum 0xb9fd (correct), seq 2314096459, win 29200, options [mss 1460,sackOK,TS val 8285329 ecr 0,nop,wscale 5], length 0
0x0000: 4500 003c 26a2 4000 4006 8aaa c0a8 012d E..<&.@.@......-
0x0010: c0a9 06f1 8dce be6c 89ee 4f4b 0000 0000 .......l..OK....
0x0020: a002 7210 b9fd 0000 0204 05b4 0402 080a ..r.............
0x0030: 007e 6c91 0000 0000 0103 0305 .~l.........
11:22:37.245654 IP (tos 0x0, ttl 64, id 4740, offset 0, flags [DF], proto TCP (6), length 60)
192.168.1.48.33514 > 192.169.6.241.48748: Flags [S], cksum 0x6562 (correct), seq 3083763706, win 29200, options [mss 1460,sackOK,TS val 8285566 ecr 0,nop,wscale 5], length 0
0x0000: 4500 003c 1284 4000 4006 9ec5 c0a8 0130 E..<..@.@......0
0x0010: c0a9 06f1 82ea be6c b7ce 7ffa 0000 0000 .......l........
0x0020: a002 7210 6562 0000 0204 05b4 0402 080a ..r.eb..........
0x0030: 007e 6d7e 0000 0000 0103 0305 .~m~........
11:22:38.244593 IP (tos 0x0, ttl 64, id 4741, offset 0, flags [DF], proto TCP (6), length 60)
192.168.1.48.33514 > 192.169.6.241.48748: Flags [S], cksum 0x64fe (correct), seq 3083763706, win 29200, options [mss 1460,sackOK,TS val 8285666 ecr 0,nop,wscale 5], length 0
0x0000: 4500 003c 1285 4000 4006 9ec4 c0a8 0130 E..<..@.@......0
0x0010: c0a9 06f1 82ea be6c b7ce 7ffa 0000 0000 .......l........
0x0020: a002 7210 64fe 0000 0204 05b4 0402 080a ..r.d...........
0x0030: 007e 6de2 0000 0000 0103 0305 .~m.........
11:22:40.244595 IP (tos 0x0, ttl 64, id 4742, offset 0, flags [DF], proto TCP (6), length 60)
192.168.1.48.33514 > 192.169.6.241.48748: Flags [S], cksum 0x6436 (correct), seq 3083763706, win 29200, options [mss 1460,sackOK,TS val 8285866 ecr 0,nop,wscale 5], length 0
0x0000: 4500 003c 1286 4000 4006 9ec3 c0a8 0130 E..<..@.@......0
0x0010: c0a9 06f1 82ea be6c b7ce 7ffa 0000 0000 .......l........
0x0020: a002 7210 6436 0000 0204 05b4 0402 080a ..r.d6..........
0x0030: 007e 6eaa 0000 0000 0103 0305 .~n.........
^C
4 packets captured
5 packets received by filter
0 packets dropped by kernel
This is a ANTBLEED VIRUS CLONE! What this does: The infected ant miner will boot up and connect to 192.169.6.241 on port: 48748 once connected: the miner will receive remote hashing and pool switching, AKA dev fee (BOT NETWORK) "192.169.6.241" IS NOT YOUR LOCAL NETWORK... This is a hosted company hosting for the virus The Virus will then change any SSH password on the local device and then begin a network subnet scan and try to install itself on other miners You can tell in several ways this virus is on your network of miners, 1. that the WEBUI for the miner will show its status page VERY SLOW! this is due to the 100% CPU load and the MODIFIED bminer software that is on it. 2. Your miner with show HW errors on all chains, this is due to the modified bminer overclocking the miner to get better hash rate for the attacker! Check your miner or router for ESTABLISHED CONNECTION to: 192.169.6.241 - If its there you have the virus Solutions: 1. BLOCK ALL TRAFFIC to 192.169.6.0/24 on your network, and if you cannot block subnets, BLOCK 192.169.6.241 all protocols 2. Pull your miners off your network 3. CHANGE PASSWORDS on all your miners, don't leave default password 4. SD Card your miner and install latest firmware from your miner manufacture. Where did the virus come from? Unknown I only purchased 3 Antminer S9's off eBay and had them on the test bench when I noticed it. It appeared to be running latest bitmain firmware from May/2019 LP |
|
|
|
[...]
I know this is a old thread, however I have some information that might help you. I had a few miners that I purchased online and had similar issues.. This is what I found, The connection you have "192.169.6.241" is not needed for the miner and its a botnet/bittorrent connection.. you can google port 48748 to see what I am referring to. I was able to wireshark the connection and noticed this would connect after about 15 minutes after first boot. This is using sshd2 to make a secure connection to 192.169.6.241 (note this looks deceiving cause most private networks are on 192.168.X). To remove this, I reset ant miner S9 to factory defaults, then flashed latest Bitmain S9 JULY 2019 (NOTE THIS CLOSES SSH "USE CAUTION) and then setup worker pool, no issues. (2) Option go into your router and block in/out traffic for destination 192.169.6.0/24 or 192.169.6.0-192.168.6.254 Also did you ever load non stock firmware on these miners? Hope that helps LP |
|
|
|
|
Altcoins with large market cap will follow BTC trend in most cases.
for the last 10 days the market has continued to bleed out,
BTC went from 9,400$ to $8,100, so if you had 10 BTC ten days ago, you would be at a 13k loss right now with the same holding. ETH having the same issue: ETH was at 190$ and fell to $176 and continues to bleed, if you had 100 ETH 10 days ago, today you would be at a loss of $1400. BNB: 10 Day high was 21.50$ and today is $18.70 if you had 100 BNB you would have a loss of $270 today.
Too me it looks to be following the same downward trend, attest for the top 10
Key factors influence the market more then speculation.
1: Facebook libra, sumer 2019 was announced causing bitcoin to soar to 13K, after months of regulation and negative publicity, the market saw a decline as investors lost hope for a early adoption of libra.
2: Facebook testimony earlier this month to regulators caused bitcoin panic and crypto prices dropped significantly within minutes after the announcement
2: Chinese President announced this month in the media that china had interest in crypto currency and this cause the market to boost from low of $7100 to 10K in just hours. Since then the president has been toning down his stance on crypto causing the market once again to fall.
In my opinion BTC and altcoins will only benefit from positive media and significant adoption by major players to get investor hope back into investing.
|
|
|
|
|
This coin is DEAD developer left, check discord for further information
|
|
|
|
|
Its really sad to say, since JAN 1st 2019, their discord has stated that developer had to have surgery and he is not available to do coding anymore. The devs have stopped responding to people on discord, and its a matter of time before all links to website, GitHub and discord are closed..
There is no exchange, there is no value to this coin.. This coin is DEAD!
|
|
|
|
Adding the amd eth pill anytime soon? Really wanting this in hive please.
I have confirmed this working on Vega64 went from 38Mh/s on claymore to 51Mh/s claymore (linux only) but damn!!! Would love to see it in HIVEOS |
|
|
|
|
New Update 1.0.1 Fixed output to pipe to brainflayer, version 1.0 just created the 12words.txt file and didnt pipe output to std.out
|
|
|
|
|
Since I accidentally posted in this forum and it was deleted from the technical forum, info again.
Bip39 Super Fast Generator for BTC Crypto
This uses automated python scripts to generate 3,6, and 12 random word phrases to use with brainflayer, The speed on this is super fast
Usage
Just running the script from the commandline will randomly generate 3, 6, 12 BIP39 code phrases::
The Python Dependencies are listed below
- evolve roman
- limit endeavor
- askari cobras
- hellspawn mystic
- manpower anvil
Running the script is simple
USAGE EXAMPLES:
Make it super simple I have encluded the BIP39.txt files for the different languages, all you need to do is choose your target. I will update and work on this more.. However right now all you need to do is for EXAMPLE english, copy the english.txt to wordlist.txt In unix its cp english.txt wordlist.txt This sets up the wordlist for your target or you can use the -w flash for wordlist file
./generate12words.py -n 5000000
In this example the script generates 12 random words per line of a text file, the -n specifys the # of lines you wish to make your txt file, and then save them to 12words.txt as output file NOTE This can create VERY LARGE .txt files depending how many <-n> you pass to the script
This example Does not create any massive txt file and directs output directly to brainflayer, this is the most effect and fastest way to start checking BIP39 phrases
./brain12words.py -n 9000000000000000000 | ../brainflayer/brainflayer -v -m tablefile.tab -o foundkeys.txt -b testfile.blm
SAMPLE OUTPUT:
rate: 270111.98 p/s found: 0/786432 elapsed: 11.218 s
Operators
-n
Generates code phrases. Without selecting this option the default is 5.
-w or --wordlist
Imports file to use for generating random phrases instead of the default wordlist.txt.
Multiple operators can be used together.
License
Free and OpenSource to the public
If you find this useful and wish to donate:
BTC Address: 1PJbzgqXDcbeqv2NXccQhY7HFWFxeURE22
|
|
|
|
|
Can anyone confirm if solo.ckpool.org supports ASIC BOOST, read through tons of pages didnt find anything on it... I could be blind however lol.
|
|
|
|
There is an error in the install script for Masternode the apt-add-resportory command is not correct as its backwards here is the correct command to run to install your linux VPS: apt-get update -y && apt-get install software-properties-common build-essential libtool autotools-dev automake pkg-config libssl-dev libevent-dev bsdmainutils -y && apt-get install libboost-all-dev -y && apt-add-repository ppa:bitcoin/bitcoin -y && apt-get update -y && apt-get update -y && apt-get install libdb4.8-dev libdb4.8++-dev -y && apt-get install libminiupnpc-dev libzmq3-dev libevent-pthreads-2.0-5 -y && apt-get install unzip -y && wget https://primestone.global/wp-content/uploads/2018/06/prime_linux.zip && unzip prime_linux.zip && chmod -R 755 ~/prime_linux && cd ~ && mkdir /swap && fallocate -l 1G /swap/swapfile && chmod 600 /swap/swapfile && mkswap /swap/swapfile && echo '/swap/swapfile none swap sw 0 0' | sudo tee -a /etc/fstab && cd ~/prime_linux && ./primestoned --daemon && cd ~ && cd ~/.primestonecore && nano primestone.conf That will fix your errors!!! LP PSC Address: XeSHNYEEAqrhEpGXtx6TEBS4ZxUs3Lagv4 |
|
|
|
What is the premine of this coin didnt find it anywhere
website contains very less information , block reward scheme is totally cheap
ya its true, they have not mentioned any where about the premine and even the block reward scheme is not proper bcoz they have started there reward from 26 coins and now reduced to 1 I am not sure what you mean block reward reduced to 1, Here is my stats of today. My Masternode makes 18.x Coins every 2hrs or so, and my staking of coins gets me about 3.x coins every hr I believe, That is with 188 master nodes active on the network, so not bad reward, and coins are trading good on graviex as well. |
|
|
|
|
Huge PREMINE, would get the never seen devs over $2+ million dollars once this hits the exchange and they can exit SCAM before the new year.
I would do my research, it it appears to go to the be true, it is.
Why is PREMINE such an issue, is because the block reward is so low to do anything you would have to buy the coin in the exchange, and 90% of the time on new projects this leads to a PUMP/DUMP scam.
For example DELIZ and DELIV created (2) separate coins and sold tons of master nodes, and after their chain ran into a bug, the decided to EXIT SCAM early, taking a TON OF CASH from
I would say BEWARE and until proven otherwise this is a SCAM.
|
|
|
|
|
I am beginning to wonder about this project and hope its not another Pump and dump scam, hopefully a dev can clear this up:
1. The summit was November 8th (20) Days ago, no XYO tokens have been sent to the E20 Address as promised within (2) Weeks
Along with this the team promoted PORTIS, now abandoned this and went to a google chrome extension, Why?
2. The coin that you get for investing in the project, its a Minted coin, decided after other discussions on discord to have it appraised, $1.50 USD, this is why there were able to mass produce them, at the summit they were selling the coin for $75.00 a coin
3. The technology is smart contract based with the sentinels and a main node, from a tech stand point this is nothing more then a raspberry PI and some tiles you find on amazon, you would think a 20million dollar company would 70 employee's would have a main hardware vendor they would partner with. Oh forgot to mention they were selling this for $400.00 at the summit, price on newegg $50 with RPI and 3 tiles.
4. There was a ton of cash spent on celeb's and the venue/party at PARQ night club, all a part of hype??? Aka Ed Helms, and Dennis Rodman.
Last and most important is most of the employee's are very young and have not worked at XYO for more then a year, most of them just a few months, I am not sure how this project is going to go to the moon when it relies on putting these tracking devices (sentinels) into the hands of everyone. As an investor I am glad I only spent minimal amount, I hope that they come through with their token promise and actually send the coins to boost confidence and show us why XYO is the NEXT BEST THING.
|
|
|
|
I just wanted to confirm that version 0.3.5 works for initialization of all cards, even with my turbo-disabled super slow celeron 3885U.
The performance gain is huge, however during the night half of my rigs hanged or crashed, even if I use lower settings than JCE or SRBminer. This miner taps into parts of Vega that are normaly not touched by slower miners, so it will take some time to tune the rigs properly.
keep up with development, thanks
Me too. I increase the voltage and reduce the memory frequency, but the mine crash will still crash in about 2 hours. This happens on my Vega56 mine and the vega64 mine is running normally. I have the same problem, works for a few hours then crash's and reboots the machine, was able to capture it doing it, it appears to be when the miner switches from mining to the dev fee, the driver pukes with OPENCL_INITIALIZATION error on windows 10, rebooting the machine and starting over works and then issue repeats itself when dev fee kicks in. |
|
|
|
|
I get on Lyra2v2 68MH/s on 1080TI with CCminer, and Dredge.0.9.1 I get 74-75MH/s
on 1060TI I get 21.5-22mh/s with CCMiner and Dredge I get 25mh/s
|
|
|
|
|
I there anyway to add solo ming support back into the miner...
I get the following error when trying to solo mine small alt coins:
Empty data received in JSON-RPC call
get_work failed, retry after 30 seconds
unknown option -- coinbase-addr=
|
|
|
|
|
