Latest on Dream Market - my findings

So, I decided to go and snoop around a little bit... https://snag.gy/mcbryR.jpg I think the blue line on the screenshot says it all.

I was able to stumble on one of the sites where this phishing URL spreads from: https://darknetmark***org/Markets (pay attetion to URL)

Doesn't seem to be an exit scam... The question, though, where are admins? Is this a combination of admins behind bars + site being phished on? For some reason I have one more possible explanation: site got phished, taken over - and operator are locked out and probably in another end of the world. Why else would this go on, and on, and on, and on?

Now, in addition to the above I was able to identify all 4 IP-addresses, on which Dream Market is likely hosted.

Either way - spread the word and someone please find a way to contact DuckDuckGo, because the url (https://*uckduckgo.com/?q=dream+market&t=disconnect&ia=web) is TOP4 result :(

I'll step off the train. Just gonna try to move my left over coins out of there....


Comments


[12 Points] qpquestion:

By George I think he's got it. I feel so honored that a legendary computer genius such as yourself has graced us with your presence. Just to warn you, theres gonna be like 5 bucks that you won't be able to get out of your dream account. No that's not more evidence of an exit scam either


[7 Points] PM_UR_COVFEFE_GURL:

That is old news. That's been there for a long time..i think it was concluded that it might show up under certain circumstances if the page was copied or it thought you got phished. All that other stuff you said without proof is just FUD ..


[8 Points] y0ur3a434lh4ck3r:

you seem to pretty new to the internet, html, and anything going further than that...

check the complete code visible and its pretty obviously what this is for...

please post more...it actually made me laugh xD


[7 Points] datadotzip:

You're retarded. Dream is notorious for leaving small easter eggs in their code ("debug" IP in javascript). This has been reported on since 2015. Disregard as FUD.


[1 Points] HardC0r3:

I do have the same thing. if you inspect the code youll find this: https://puu.sh/x5DRZ/f1e01a34e9.png

Its on the mirrors aswell.


[1 Points] None:

Too late I already hacked dream...

Proof https://anonimage.net/db/full/361dNRttQ8.jpg


[1 Points] Dream_Marketplace:

Guys are you serious?

I am not even going to begin explaining how retarded this comment is and shows a distinct lack in knowledge of the relevant subjects to be able to pass such comments.

smh


[0 Points] ecstasais:

https://i.snag.gy/Yd65pe.jpg

See the identical timestamps that come in pairs? Or perhaps the additional timestamp of 2013 that's coming from their Clearnet hosts?

Why the fuck should DMs operators steal the money yet add phishing tags in the html? Why it all started as these phishing sites appeared? Why are coins in my account (and in my whole account) untouched?

Pulling off an exit scam would take about 2 minutes. No longer. Shut the servers down, leave with wallet keys. Bye bye.

Who the fuck would drag this for weeks like that? Do I have to hand these IPs over to authorities to save them who haven't been phished yet?

FUD MY ASS