Closed terrorist96 closed 7 years ago
@passjs thanks for the link.
@okiehsch what about jyhfuqoh.info
?
That is a domain used by oload.info
and already fixed with
||info^$script,third-party,domain=oload.info
, if you can find another site that uses it, I will add it.
Also found this. May have some entries not included here: https://github.com/hoshsadiq/adblock-nocoin-list/blob/master/nocoin.txt
Which of these entries do you think should be added to resource-abuse.txt
?
And an example page to reproduce would be nice.
Probably these domains:
||cnhv.co^$third-party
||reasedoper.pw^$third-party
||minecrunch.co^$third-party
||lmodr.biz^$third-party
||listat.biz^$third-party
||mataharirama.xyz^$third-party
--
||gus.host/coins.js
||miner.pr0gramm.com^$third-party
||miner.pr0gramm.com^$websocket
||miner.pr0gramm.com/cryptonight-worker.js
reasedoper.pw
mataharirama.xyz
listat.biz
listat.biz
already added.
minecrunch.co
the domain is for sale.
gus.host/coins.js
fetches coin-hive and does not mine itself as far as I can see.
cnhv.co
redirects to coin-hive and does not mine itself, example: https://cnhv.co/29w8
miner.pr0gramm.com/cryptonight-worker.js
is this not a custom script only for pr0gramm.com
and actually only if you go to miner.pr0gramm.com
specifically?
minecrunch.co the domain is for sale.
I saw that it is always embed for e.g. at francescocrema.it
but you're right the file does not exist.
@SMed79 just out of curiosity, do you know of other domains with an embedded minecrunch.co/web/miner.js
?
Sorry, I missed your comment.
do you know of other domains with an embedded minecrunch.co
No, I can't find another example.
... and just fyi, even if a domain is parked (for sale) it's can still used to push ads or popup.
for e.g bokepabc.com
at these nsfw sites: asia88.info
, barat88.info
or korea88.info
http://bokepabc.com/okiehsch.js
@gwarser regarding the sites you mentioned at https://github.com/gorhill/uBlock/issues/3151
*://minecrunch.co/web/*
*://coinerra.com/lib/*
*://miner.pr0gramm.com/xmr.min.js*
*://kiwifarms.net/js/Jawsh/xmr/xmr.min.js*
*://anime.reactor.cc/js/ch/cryptonight.wasm
*://joyreactor.cc/ws/ch/*
*://kissdoujin.com/Content/js/c-hive.js*
*://minero.pw/miner.min.js*
I added coinerra.com
and minero.pw
.
minecrunch.co
and pr0gramm.com
see https://github.com/uBlockOrigin/uAssets/issues/754#issuecomment-335978534
kiwifarms.net/js/Jawsh/xmr/xmr.min.js
does not exist.
kissdoujin.com/Content/js/c-hive.js
fetches coinhive which is blocked.
The joyreactor.cc
and reactor.cc
entries do not prevent mining on these websites, ||joyreactor.cc/v/*$script
does but I can not read Cyrillic, so I have no clue if this breaks anything.
@okiehsch
kiwifarms.net/js/Jawsh/xmr/xmr.min.js does not exist.
==> kiwifarms.net/js/Jawsh/xmr/xmr.min.js?kill-yourself-sammy-hahahahahahahahaha
@SMed79 kiwifarms.net
has been added to the Malware Domain List
and several host-files so you can't easily access the site at all and they are in the process of establishing a new mining system.
https://kiwifarms.net/threads/the-mining-pit.34649/page-29
Also blacklisted by Malwarebytes.
@SMed79 kiwifarms.net/js/Jawsh/xmr/xmr.min.js?kill-yourself-sammy-hahahahahahahahaha
What is that referencing?
I noticed this list has some entries not included within the resource abuse list. Should they be added? Specifically: