|
Rikafip
Legendary
Offline
Activity: 1792
Merit: 6121
Iznad svih Hrvatska!
|
|
January 20, 2021, 03:25:49 PM |
|
|
|
|
|
|
|
|
|
|
Lafu (OP)
Legendary
Offline
Activity: 3010
Merit: 3128
|
|
February 06, 2021, 06:03:33 PM |
|
4 of that 8 detections are false positive as it looks , and the others for sure dosnt looks nice. Archive.Trojan.Agent.IY4X2W is a modded version of some kind of Malware that operates in th backdoors. Win32:Malware-gen is Malware and helps to get a remote control of the PC and also can be used to steal personal data and other things. Source : https://dieviren.de/win32malware-gen/
|
|
|
|
Lafu (OP)
Legendary
Offline
Activity: 3010
Merit: 3128
|
|
February 07, 2021, 02:08:58 PM |
|
Fake ANN ! Thread : [ANN] [SCHO] SCHOLARSHIP - send money to friends and businesses [ASIC/Scrypt]User : ScholarshipCoin <------ Please ban that User and delete the ThreadJust registered Today The Fake Github was just registered 4 Hours ago Archive : https://archive.fo/wip/LXTjK[b]Wallets[/b] Windows: [url=https://github.com/scholarshlpcoin/scholarshipcoin/releases/download/v0.18.4/Scholarship-QT-Windows.zip]https://github.com/scholarshipcoin/scholarshipcoin/releases/download/v0.18.4/Scholarship-QT-Windows.zip[/url]
Fake Github : https_://github.com/scholarshlpcoin/scholarshipcoin/releases/download/v0.18.4/Scholarship-QT-Windows.zip And there is only this one download file with a size of 18.9 MB Real Github : https_://github.com/scholarshipcoin/scholarshipcoin/releases/download/v0.18.4/Scholarship-QT-Windows.zipHere are many download and other Files and the zip file has a size of 16.6 MB The difference between this 2 Links are : Fake Github is scholarsh lpcoin Real Github is scholarsh ipcoin There is no ANN as i havnt found one but on there Website you can see and find the Real Github and download link. Website : https://scholarshipcoin.org/
|
|
|
|
jerry0
|
|
February 09, 2021, 06:44:47 AM |
|
What about links on peoples profiles? Wouldn't many of those links probalby have malware/keylogger?
|
|
|
|
rat03gopoh
|
|
February 09, 2021, 07:29:21 AM |
|
What about links on peoples profiles? Wouldn't many of those links probalby have malware/keylogger?
This forum ism't also equipped with a report button on the profile page. Maybe you can report it here or create a new thread on the Meta board for faster handling by global mods.
|
|
|
|
▓██ ██▓ ▒█████ █ ██ ██▀███ ██ ▄█▀▓█████▓██ ██▓ ██████ ▒██ ██▒▒██▒ ██▒ ██ ▓██▒▓██ ▒ ██▒ ██▄█▒ ▓█ ▀ ▒██ ██▒▒██ ▒ ▒██ ██░▒██░ ██▒▓██ ▒██░▓██ ░▄█ ▒ ▓███▄░ ▒███ ▒██ ██░░ ▓██▄ ░ ▐██▓░▒██ ██░▓▓█ ░██░▒██▀▀█▄ ▓██ █▄ ▒▓█ ▄ ░ ▐██▓░ ▒ ██▒ ░ ██▒▓░░ ████▓▒░▒▒█████▓ ░██▓ ▒██▒ ▒██▒ █▄░▒████▒ ░ ██▒▓░▒██████▒▒ ██▒▒▒ ░ ▒░▒░▒░ ░▒▓▒ ▒ ▒ ░ ▒▓ ░▒▓░ ▒ ▒▒ ▓▒░░ ▒░ ░ ██▒▒▒ ▒ ▒▓▒ ▒ ░ ▓██ ░▒░ ░ ▒ ▒░ ░░▒░ ░ ░ ░▒ ░ ▒░ ░ ░▒ ▒░ ░ ░ ░▓██ ░▒░ ░ ░▒ ░ ░ ▒ ▒ ░░ ░ ░ ░ ▒ ░░░ ░ ░ ░░ ░ ░ ░░ ░ ░ ▒ ▒ ░░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░░ ░ ░ ░ ░ ░ ░ | ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀▄▄██▀▀⠀▄▄▄⠀⠀▀▀█▄▄▄⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀▄█▀▀⠀⠀⠀⠀⠀███⠀⠀⠀⠀⠀⠀⠀▐▀█▄⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀▀⠀⠀⠀⠀⠀⠀⠀⠀▐████████████⠀⠀█⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀▄▄⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀██████████████▄⠀⠀⠀⠀⠀⠀⠀⠀⠀▄⠀▄⠀⠀⠀⠀⠀ ⠀⠀██▀⠀⠀⠀⠀⠀⠀▄▄▄⠀⠀⠀⠀⠀⠀▀█████████████⠀⠀⠀⠀⠀⠀⠀▐██████▄▄⠀⠀⠀ ⠀⠀▐⠀⠀⠀⠀⠀⠀⠀⠀█▄██▄⠀⠀⠀⠀⠀⠀▀███████████⠀▄⠀⠀⠀⠀⠀⠀██⠀⠀⠀██▌⠀⠀ ⠀⠀⠀⠀⠀⠀▄⠀⠀⠀⠀███▄▄▌⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀▀█▀⠀⠀█▌⠀⠀⠀⠀██▀▀██▀⠀⠀⠀ ⠀⠀⠀⠀⠀█▌⠀⠀⠀▐▀███▀▄█▄▄▄▄▄▄▄▄▄▄⠀⠀⠀⠀⠀⠀▀█▌⠀⠀⠀⠀▄██▌⠀⠀▄██⠀⠀⠀ ⠀⠀⠀⠀⠀█▌⠀⠀⠀⠀███⠀⠀██▀██▀██▀██▀████▄⠀⠀██⠀⠀⠀⠀⠀⠀█▀▀█▀▀▀⠀⠀⠀ ⠀⠀⠀⠀▐██⠀⠀⠀⠀█▀⠀⠀⠀⠀▀⠀▀▀⠀▀▀⠀▀█⠀█▀█▀██⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀█▌⠀⠀⠀⠀`⠀⠀▄⠀▐██████▄▄⠀⠀▀▐▀██▀██⠀⠀⠀⠀⠀⠀⠀▄██▀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀▀█⠀⠀⠀⠀⠀⠀██⠀█⠀⠀▀██████▄▄⠀⠀█▀⠀▀⠀⠀⠀⠀⠀⠀███▀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀▄⠀⠀██⠀▄⠀⠀⠀`▀███⠀█⠀▀▀██████▄⠀⠀⠀██⠀⠀⠀▄███⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀█⠀⠀⠀▀⠀⠀▀▀▄▄⠀⠀▀████▀▄⠀▀██████▄▄▄█▄█████⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀▀▌⠀⠀⠀⠀⠀⠀⠀⠀▀▌⠀⠀⠀▐███▄█⠀▄⠀▀▀█████████▀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀█⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀█⠀⠀⠀⠀⠀██████▄▀⠀⠀▀▀▀▀▀⠀⠀▄⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀▄⠀⠀⠀⠀⠀▌▀▀⠀⠀▄⠀⠀⠀⠀⠀⠀⠀▀█⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀▀▀███▀▀⠀⠀▐█⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ | ▓██ ██▓ ▒█████ █ ██ ██▀███ ██▀███ ▓█████ ██████ ██▓███ ▒█████ ███▄ █ ██████ ██▓ ▄▄▄▄ ██▓ ██▓ ██▓▄▄▄█████▓▓██ ██▓ ▒██ ██▒▒██▒ ██▒ ██ ▓██▒▓██ ▒ ██▒ ▓██ ▒ ██▒▓█ ▀ ▒██ ▒ ▓██░ ██▒▒██▒ ██▒ ██ ▀█ █ ▒██ ▒ ▓██▒▓█████▄ ▓██▒▓██▒ ▓██▒▓ ██▒ ▓▒ ▒██ ██▒ ▒██ ██░▒██░ ██▒▓██ ▒██░▓██ ░▄█ ▒ ▓██ ░▄█ ▒▒███ ░ ▓██▄ ▓██░ ██▓▒▒██░ ██▒▓██ ▀█ ██▒░ ▓██▄ ▒██▒▒██▒ ▄██▒██▒▒██░ ▒██▒▒ ▓██░ ▒░ ▒██ ██░ ░ ▐██▓░▒██ ██░▓▓█ ░██░▒██▀▀█▄ ▒██▀▀█▄ ▒▓█ ▄ ▒ ██▒▒██▄█▓▒ ▒▒██ ██░▓██▒ ▐▌██▒ ▒ ██▒░██░▒██░█▀ ░██░▒██░ ░██░░ ▓██▓ ░ ░ ▐██▓░ ░ ██▒▓░░ ████▓▒░▒▒█████▓ ░██▓ ▒██▒ ░██▓ ▒██▒░▒████▒▒██████▒▒▒██▒ ░ ░░ ████▓▒░▒██░ ▓██░▒██████▒▒░██░░▓█ ▀█▓░██░░██████▒░██░ ▒██▒ ░ ░ ██▒▓░ ██▒▒▒ ░ ▒░▒░▒░ ░▒▓▒ ▒ ▒ ░ ▒▓ ░▒▓░ ░ ▒▓ ░▒▓░░░ ▒░ ░▒ ▒▓▒ ▒ ░▒▓▒░ ░ ░░ ▒░▒░▒░ ░ ▒░ ▒ ▒ ▒ ▒▓▒ ▒ ░░▓ ░▒▓███▀▒░▓ ░ ▒░▓ ░░▓ ▒ ░░ ██▒▒▒ ▓██ ░▒░ ░ ▒ ▒░ ░░▒░ ░ ░ ░▒ ░ ▒░ ░▒ ░ ▒░ ░ ░ ░░ ░▒ ░ ░░▒ ░ ░ ▒ ▒░ ░ ░░ ░ ▒░░ ░▒ ░ ░ ▒ ░▒░▒ ░ ▒ ░░ ░ ▒ ░ ▒ ░ ░ ▓██ ░▒░ ▒ ▒ ░░ ░ ░ ░ ▒ ░░░ ░ ░ ░░ ░ ░░ ░ ░ ░ ░ ░ ░░ ░ ░ ░ ▒ ░ ░ ░ ░ ░ ░ ▒ ░ ░ ░ ▒ ░ ░ ░ ▒ ░ ░ ▒ ▒ ░░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ |
|
|
|
Lafu (OP)
Legendary
Offline
Activity: 3010
Merit: 3128
|
|
February 09, 2021, 10:43:53 AM |
|
What about links on peoples profiles? Wouldn't many of those links probalby have malware/keylogger?
If you found some Accounts or Users that have that kind of links in there signature or profiles just post it in here with all the Information about , and if possible a proof of that the links are Malware or other shady Software. Username and link to the Userprofile and what kind of link . Use the Code fubction for the link so nobody can click it. One of the Moderators or Global Mods checking this Thread everytime a new post is done and they can take some action if needed.
|
|
|
|
qwertyup23
|
|
February 10, 2021, 02:38:54 AM Merited by morvillz7z (1) |
|
1. Malware from Github link and Fake Wallet Thread: [ANN] [VK7R] [Vektorcoin] Worlds best upcoming esports coin <---- DELETEProfile Link: owvids----> Last post November 09, 2017Archive: https://archive.fo/ghDxD Virus Total Link/s: https://dl.walletbuilders.com/download?customer=5e9b9527c50fbb9e27cc83d3589f1c03014b9ba7fd7d20d0f6&filename=vektorcoin-qt-windows.zip
https://dl.walletbuilders.com/download?customer=5e9b9527c50fbb9e27cc83d3589f1c03014b9ba7fd7d20d0f6&filename=vektorcoin-qt-linux.tar.gz
|
|
|
|
|
|
|
DaveF
Legendary
Offline
Activity: 3514
Merit: 6354
Crypto Swap Exchange
|
|
February 15, 2021, 01:02:10 AM |
|
Walletbuilders used to be a legitimate service. I don't know if it still is. But, malwarebytes desktop blocks it by default, sonicwall blocks it by default and Norton blocks it by default.
I can't tell if they went "evil" or it's just a generic bitcoin / miner block.
Will have to check later to see if I can dig though it. So for now its a bit tough to tell if the people posting wallets from there are legit bad, or just caught up in a big net. Or, if they built a free wallet and did not even know it was bad.
-Dave
|
|
|
|
qwertyup23
|
|
February 15, 2021, 10:23:15 AM |
|
<snip..>
Hi, Lafu! Thanks for the heads up and reminding me that the ones that I reported (recently) were false-positive detection by virus total. If I may ask, how do you determine if such wallet that looks infected, is indeed a false-positive detection? I would like to know so I can avoid posting/reporting links that appear infected facially but in truth, a false-positive. I hope for your feed back and reply! Thank you as always, Lafu.
|
|
|
|
DaveF
Legendary
Offline
Activity: 3514
Merit: 6354
Crypto Swap Exchange
|
|
February 15, 2021, 12:12:32 PM |
|
<snip..>
Hi, Lafu! Thanks for the heads up and reminding me that the ones that I reported (recently) were false-positive detection by virus total. If I may ask, how do you determine if such wallet that looks infected, is indeed a false-positive detection? I would like to know so I can avoid posting/reporting links that appear infected facially but in truth, a false-positive. I hope for your feed back and reply! Thank you as always, Lafu. You can always check the files at https://www.hybrid-analysis.com/. It gives a bit more detail and you can pick and choose the OS that the file runs on. It will take you a bit more time as the running is not always instant if they are busy, but it will let you see what the file is doing in different OS. For the most part, I feel that these files are if not malware, at least crap. IMO any "legitimate" new coin is going to run their wallets through a scanner to make sure they don't pop positive and if they do they would fix them. Also, no source code on github (or similar) that you can verify, even if it's not a virus, the coin is probably not legit. -Dave
|
|
|
|
|
|