Virus infection threat reported - searchingmagnified(dot)com

in steemit •  last year 

A new virus infection attempt is spreading on Steemit! Be very careful with any suspicious offer. This could lead to your computer being compromised!

Threat Description

The attacker publish the following comment on user’s post

Or

If you hover your mouse on the link, you will see that the undelying URL is something like http://nullrefer.com/?http://domain.com/

domain.com is used as an example. The real domain name can be different

Nullrefer.com is a link anonymizer. Is is used by scammer to cover their tracks.

If you click on the link, you will be anonymously redirected to the URL contained as a parameter in the anonymizer link and land on a website similar to this one:

Note that the website name can differ from the one displayed on the above picture.

If you look at any of random link generated on the website, you will see that it contains something like

http://www.searchingmagnified.com/fashion_trends.cfm?domain=boostbot.ml&fp=I7Aj….

What is searchingmagnified.com

Searchingmagnified.com is a nasty and harmful computer infection deemed as browser hijacker!

It is a fake search provider created and distributed by cyber crooks to gain illegal profit. It is able to infect any computer system running on Windows OS. searchingmagnified.com virus is a browser based virus and it can work with all famous browsers. It can hijack Google Chrome, MS Edge, Mozilla Firefox, IE, Opera and many others very easily.

Once inside your PC, this deceptive threat will modify your system and browser settings. searchingmagnified.com virus will change the homepage and search engine of your infected browser with its own malicious domain. It looks like a genuine and normal search provider but it show lots of sponsored results, pop-ups, banners, deals and other advertisements. It can also redirect your browser on unknown and malicious web pages automatically.

searchingmagnified.com virus has the main motive to boost the traffic of its partner websites and generate revenue to earn commission. searchingmagnified.com virus mostly intrude your computer through bundled free third party programs, spam emails, suspicious websites, shareware, porn or torrent sites and many other tricks.

Preventive action activated

I will add any account sending these links to the black list of my Warning-Bot and it will issue warnings with a link to this post, notifying users of the malicious activity of those accounts.

To protect yourself, you can:

  • always double check before clicking on a link, especially if this links take you away from steemit.com.
  • verify the reputation of people writing comments on your posts. A user with a low reputation shoud trigger you attention.

Previous threat alerts

If you missed them, please find here the previous alerts I published:

Make the platform safer: spread the words, resteem this post to your friends!


Thanks for reading!


If you notice any new suspect activity like the one, drop a comment on this post or contact me on steem.chat


footer created with steemitboard - click any award to see my board of honor

Support me and my work to protect the Steemit platform.

Vote for my witness

Authors get paid when people like you upvote their post.
If you enjoyed what you read here, create your account today and start earning FREE STEEM!
Sort Order:  

thank you for reporting this @arcange resteemed for more visibility

Thank you for your good activities.

https://steemit.com/kr/@steamsteem/steemd-steemdb#@arcange/re-steemd-steemdb-20180412t124347000z

I am considering to decide which witnesses to support after checking some political viewpoints too. But it may take some time since we are not 100% steemian, but half real world miners... I will surely check your witness page and decide later.

Anyway thank you.

Thanks for informing me first hand on my one post! Much appreciated that you're doing that for the community.

WARNING - The message you received from @tauwil is a CONFIRMED SCAM!
DO NOT FOLLOW any instruction and DO NOT CLICK on any link in the comment!

The information here is very valuable, especially to newer people joining the platform, I'll be sure to resteem this to help spread awareness.

Also I've been seeing your great work with the community and contributions like the Daily hit-parades are great resources and ways to highlight the community. It was great to see my one post featured in the Daily hit-parade for newcomers - 2018.03.30

I've voted for your witness and look forward to more great content, thanks again.

scruffy23 approve witness arcange

Thanks, resteemed and added to my next MAP Resteems post.

Thanks a lot, upvote and re-steem!

I think is not easy to post like this. You need to getting harder. So, I appreciate for your sharing this.


Good job!

thanks information.....My wife account has been hacked
my entry post indonesia...
https://steemit.com/news/@feryza/becarefull-all-my-friends-my-wife-s-steemit-account-has-been-hacked

Thank you for this information @arcange

thank you for the information, I Upvote and Resteem your post

I want to share your post that I translated in Indonesian (my country), do you allow it?

We all better be warned.
DeserveUpvote0001.png

Thank you for the article and warning. Resteemed.

Thanks a lot for your work. Upvoted and resteemed.

Thank you for your concern and great information @arcange in all steemians,😊👍

I received numerous spams like these. Let's get them out of the way asap!

Большое спасибо за полезную информацию, @arcange!

Thanks so much. You saved me today.

Thank you for this information😄

Thanks sir @arcange

From your phone, since you can't hover over links, long-press the link to see the destination url in a browser dialog.IMG_20180410_114139.jpg

bundle of thanks

Thanks for staying on top of this stuff @arcange It seems like its something new every day. Passing this along so my Followers get the Alert as well.

thanks, I added that scam site to my hosts file. If my browser tries to load it, the computer will try to load it from 0.0.0.0 which to my knowledge doesn't exist.

want to play games on your gf, or get your kids off facebook? Yeah, edit that hosts file and enter in

0.0.0.0 www.facebook.com
0.0.0.0 facebook.com
0.0.0.0 m.facebook.com

Or if you really want to confuse them, run apache on said device and have it redirect to the local hosts and load whatever you want there.
127.0.0.1 www.facebook.com
...

Thanks for looking out for me on my blog earlier @arcange. I've been following your work for some time and it's great to know you are making great strides in both showing off our efforts as well as protecting our interests. Cheers mate.

Thank you =)

ok so this sucks, but I got phished into this scam... recently recovered my account but scammer still has access to all my vested SP. What actions should I take to go about trying to obtain all of this hard earned SP that I have accumulated over the past 5 months or??

I really hope there is something able to be done, but my hopes are relatively low since I believe it was my master key that was hacked... Im super pissed but if someone could please respond and help me out that would be much appreciated....

SOS

If you still have access to your account, first thing to do is to change your password.
if not, you can read this post