THIS IS A STATIC MIRROR OF USERSCRIPTS.ORG - LOGINS DO NOT WORK

Spam and malware

in Userscripts.org discussion
Subscribe to Spam and malware 3530 posts, 606 voices



Jefferson Scher Scriptwright
FirefoxWindows

replica_rolex posted this spam.

 
Adam Olsen User
FirefoxWindows

<a href=“https://userscripts-mirror.org/users/520580”>goldscripts</a> posted <a href=“https://userscripts-mirror.org/scripts/show/170459”>this malware</a> and probably everything else by them. I dug through some of the evals and sourcing and it led to another script which did stuff on facebook.

I’m with Seifer: we desperately need better reporting buttons, better warnings, and even an initial state of “this could be malware”.

 
Bjorn Stromberg Scriptwright
ChromeWindows

This guy has over 200 renamed, malwarified scripts - https://userscripts-mirror.org/users/520580

 
JoeSimmons Scriptwright
FirefoxWindows

Seifer wrote:
The 1% would stop certain people going marking heaps of even vaguely-popular scripts as scams.
Would it really? What if a bot just uses proxies to click it a bunch, or a bot repeatedly just clicks it?

Bjorn Stromberg wrote:
This guy has over 200 renamed, malwarified scripts - https://userscripts-mirror.org/users/520580
Yeah, he even copied mine. All his malware scripts add this script to the page as a <script> tag and run malicious code.
 
Erik Lundmark Scriptwright
FirefoxX11

replica rolex spammed this: https://userscripts-mirror.org/reviews/42251

 
Erik Lundmark Scriptwright
FirefoxX11

top replica rolex spammed this: https://userscripts-mirror.org/scripts/reviews/125001

 
daughterofch... User
FirefoxWindows

Hi. If someone could, please let me know if I am reporting this correctly in the correct spot/thread. (Thanks!)

Per the user: https://userscripts-mirror.org/users/442265:
These scripts look fishy to me:
https://userscripts-mirror.org/scripts/show/168891
https://userscripts-mirror.org/scripts/show/168860
They don't look like they are for Yahoo Mail at all? (As they both say.)

He has 597 scripts that were all added in just eight days. His website link looks like spam to me.

Thanks and take care.

 
Playboy81 User
FirefoxWindows

Hey guys, I have heard rumor that the new battle tab script for Kingdoms of Camelot. Has anyone heard about this?

this is the script link https://userscripts-mirror.org/scripts/show/170798

anyone that can help me with this, it would be much appreciated

Playboy

 
lespea Scriptwright
FirefoxWindows

This user is spamming tons of scripts that only interact with facebook and have nothing to do with any of the sites they claim they are for. https://userscripts-mirror.org/users/talibecp

 
JoeSimmons Scriptwright
FirefoxWindows

daughterofch... wrote:
Hi. If someone could, please let me know if I am reporting this correctly in the correct spot/thread.
Yes, you are. Good find.
 
Azraell666 User
OperaWindows

We really need an easier way to report a spammer like the 2 above - i've only stumbled in this forum section by accident. And we really need a faster reaction to the notifications received - all the scripts from these 2 scammers are still here, ready to be downloaded by everybody.
Please remember that not everybody knows how to check the legitimity of a script taken from a supposedly reputable and secure site.

 
armvdw User
FirefoxWindows

SPYWARE script that steals your facebook logins : https://userscripts-mirror.org/scripts/show/168982

 
Digifan23 User
FirefoxWindows

reporting a spam script:

https://userscripts-mirror.org/scripts/show/170838

 
Michael J. Scriptwright
FirefoxWindows

This user has 594 FAKE SPAM scripts. Please either remove this user and or create some kind of ability for us to report abusive users and spammers.

https://userscripts-mirror.org/users/talibecp

 
LouCypher Scriptwright
FirefoxWindows

Michael J. wrote:
This user has 594 FAKE SPAM scripts. Please either remove this user and or create some kind of ability for us to report abusive users and spammers.
https://userscripts-mirror.org/users/talibecp
Same person:
https://userscripts-mirror.org/users/516272/scripts
+ fake ★★★★★ reviews by users/talibecp above

 
Lazza Scriptwright
ChromeX11

This guy: https://userscripts-mirror.org/users/talibecp

Has around 600 scripts, of which at least one has copied a title of my legit script and is using JS to put some "Like" on Facebook.

REAL: https://userscripts-mirror.org/scripts/show/158622
FAKE: https://userscripts-mirror.org/scripts/show/170007

PS: sorry, I didn't notice that daughterofchaucer already wrote it here. :)

 
Phil Cazz Scriptwright
FirefoxWindows

Malware:

https://userscripts-mirror.org/scripts/show/155364

 
Maluce50 User
FirefoxWindows

This guy https://userscripts-mirror.org/users/521146
One source code as example:

// ==UserScript==
// @name Legit ways of increasing twitter follows , retweets , fb likes and follows ,, youtube views and subscribers etc etc
// @description Legit ways of increasing twitter follows , retweets , fb likes and follows ,, youtube views and subscribers etc etc
// @version ultimate
// ==/UserScript==
//
//
Go to the sites mentioned below , they will get your free witter follows fav and retweets ,, free facebook likes and follows and shares ,, free youtube views and subscribers etc

http://xxxx/xxxx or http://xxxxx/xxxx

Links edited for safety.

 
Gaming4JC Scriptwright
FirefoxWindows

Malware versions of popular scripts. Totally pathetic. And yes, we need moderators going through these, and a big "Report as malware" button to get these taken off ASAP; for the sake of newbies.
https://userscripts-mirror.org/users/442265

 
Phil Cazz Scriptwright
FirefoxWindows

This script is the one loaded by a bunch of the malware/fake crap this guy loaded:

https://userscripts-mirror.org/scripts/show/171360

 
Cletus Scriptwright
FirefoxWindows

Empty topic

 
BKDotCom Scriptwright
FirefoxWindows

as far as I can tell, most scripts on userscripts-mirror.org are now malicious.
Does that make userscripts-mirror.org a malicious site?

 
Jefferson Scher Scriptwright
FirefoxWindows

BKDotCom wrote:
as far as I can tell, most scripts on userscripts-mirror.org are now malicious.
Does that make userscripts-mirror.org a malicious site?
It might be only a matter of time before the government seizes the domain and shuts down the site. We should all make backups now.

 
Marti Scriptwright
FirefoxX11

Jefferson Scher wrote:
... seizes the domain ...
Highly unlikely because it would need to be all SCM sites and that would be outside of jurisdiction.

BKDotCom wrote:
... most scripts on userscripts-mirror.org are now malicious.
Not all of them thankfully but the obfuscation level is definitely increasing. Some of the malware code can be achieved through a bookmarklet too so it is not specific to user scripts.

Jefferson Scher wrote:
We should all make backups now.
Backups are always good though. :)

 
Jefferson Scher Scriptwright
FirefoxWindows

Marti wrote:
Jefferson Scher wrote:
... seizes the domain ...
Highly unlikely because it would need to be all SCM sites and that would be outside of jurisdiction.
I don't know what that means (SCM sites?). In the kind of seizure I'm talking about, they just go to the domain registry and force a DNS change: [http://www.pir.org/why/takedowns].