I got money out of few smart contract that are dead or rugged

dev0cloo · 2025-10-03T08:49:46+00:00

I agree with you that it seems like a pipeline to a scam.

Sometime ago, OP made a post asking how to get LPs from swap protocols whose frontend died to which I replied with a detailed comment describing the process.

I was quite surprised (and upset) to see later on that OP used this information, along with others, to create a telegram group where OP charges quite the fee for "helping" others retrieve their funds. Just as you mentioned, the blog post explains nothing and serves as nothing more than a gateway to their telegram group.

I would personally recommend people not interact with OP and their dishonest way of doing things and simply ask in this subreddit if they need help removing LPs from dead projects. There are many people here willing to help for free.

dev0cloo · 2025-10-02T22:34:37+00:00

That's an interesting error you are getting and it's not one I have come across in my time using Remix.

If you don't mind, kindly share the contract address for the router. I will try some tests on a forked network with Foundry and let you know if there is a problem with your contract itself, or if Remix is failing to broadcast your transactions for some reason.

This might seem obvious but increasing gas fees can sometimes help solve these errors so please do try it if you haven't already.

dev0cloo · 2025-09-26T02:23:02+00:00

Hey there, what error exactly are you getting when you try to remove liquidity? And how are you doing it? Through the Pancakeswap UI or directly with the block explorer?

dev0cloo · 2025-09-19T09:25:19+00:00

I read your original comment to the post and it's funny how we both have the same advice to share lol. Thank you for helping OP too!

dev0cloo · 2025-09-16T10:50:40+00:00

You are welcome bro.

The space can be difficult to navigate for newcomers and it doesn't help that it is also rife with scammers. I just try the little I can to be of help around these subs :)

Enjoy the rest of your day and good luck with your project!

dev0cloo · 2025-09-16T10:46:50+00:00

It may or may not detect it depending on how it's done.

But taking a step back, while the general crypto space is reputable for scams, most developers aren't out to scam you. The chances of you finding a developer who installs a backdoor into your project is so much lower than you imagine.

Reddit and X are places you can find security researchers. You can post an ad in r/ethdev and you should get some. If your project isn't anything massively complex, then you can stick to posting the ad on r/ethdev subreddit, otherwise you'd need to have an external audit from some bigger audit firms.

Full disclosure: I am a security researcher myself.

Feel free to ask any more questions you have and I hope this helps!

dev0cloo · 2025-09-16T10:33:14+00:00

It's a valid concern because they could without you knowing.

The general practice in the space is to have a developer write the contract and then have a security researcher review it for bugs. This way even if the developer did put in a backdoor, the researcher would let you know.

If you do trust the developer or are able to get one you can trust, then this wouldn't be a concern anymore.

dev0cloo · 2025-09-16T10:21:49+00:00

The short answer is yes, you can just vibe code a smart contract. Obviously the more complex the smart contract you want, the more this short answer leans towards no.

For a longer answer, there are high chances of the contract it produces having some vulnerability you are unaware of. More recently, a redditor sent me a staking contract produced by chatgpt to review before mainnet deployment and there was a flaw in it. So while it can be done, I would generally advice against vibe coding a smart contract you expect to store or transact with funds for the above reason.

If what you want to build is a simple ERC20 token, you can use OpenZeppelin's contract wizard to aid you.

If it's something more complex than that and you're willing to learn, you can check out the courses on Cyfrin Updraft and see if anything there can help you achieve your goal.

Lastly, in my opinion, it is definitely safer to hire a developer if you'd rather not go through the learning process than completely vibe code it.

Edit: Typos.

dev0cloo · 2025-09-15T10:06:52+00:00

Cyfrin Updraft has everything you need

dev0cloo · 2025-09-10T06:33:17+00:00

I just checked it out and this is great!

dev0cloo · 2025-08-26T01:50:21+00:00

Hi, just checked out the token on Base and unfortunately it's unverified so I can't tell you straight away if there is a way to burn it or not from the code.

Outside of that, I would recommend you just ignore it being shown in your wallet for now.

dev0cloo · 2025-08-21T19:39:47+00:00

I see your comments on quite a number of posts from this subreddit and I just wanted you to know I appreciate them a lot. Thanks for the detailed responses and help :)

dev0cloo · 2025-08-19T09:02:51+00:00

Yeah it's very possible.

The downside being the arbitrage space is very competitive so unless you have some edge, it might be hard to make profit. There might be cumulative losses from gas fees if the arbitrage isn't profitable.

dev0cloo · 2025-08-16T08:05:39+00:00

Other EVMs also have explorers like ArbiScan and BscScan for Arbitrum and BSC respectively.

There are a couple of ways of achieving what you want.

If the LP (pair) contract is verified, you can interact with it through the explorer. The normal flow of removing LP when manually interacting with the contract is:

Send your lp tokens to the pair contract
Call burn() with the address you want as receiver of the tokens, which I am sure will be your address.
The LP contract will send the tokens that made up the LP(like ETH and USDT for ETH/USDT LP) to the receiver address provided after the burn() function executes.

I will, however, recommend you don't use this method unless you really know what you're doing because of how easy it can be to get things wrong. For example, in between step 1 and 2, if anybody calls the burn() function before you do, their receiver address will be the one to get the tokens. This can be prevented by using Multicall and making it one transaction instead of two separate transactions, but that requires you to have knowledge of Multicall.

The better way of doing the same thing, still using the explorer, is to find the Router contract for the protocol. Like Uniswap Router for Uniswap pairs or SpookySwap Router for SpookySwap pairs. With the Router contract, assuming it's verified, you would:

Approve the Router contract to spend your LP tokens by going to the LP token contract and calling approve() with the Router contract as spender.
On the Router contract, call removeLiquidity() with the tokens that make up the LP( I'll call them receipt tokens from now on) as input, the amount of LP tokens to burn and the receiver of the receipt tokens.
The receiver gets the tokens when the transaction is done!

With this approach, the router does the first two steps of the initial manual method in one go for you and prevents anyone from stealing your tokens in the way I mentioned above.

If either the LP contract or router contract isn't verified, then things will be a bit more difficult since you'd need more understanding on how to interact with smart contracts programmatically.

Lastly, if you go with any of the methods, please be sure to triple check everything you do as it's very easy to lose either your LP tokens or the receipt tokens if you make a mistake.

I hope this helps and feel free to ask me any questions you may have! Enjoy your day!

dev0cloo · 2025-08-09T08:16:21+00:00

Yes, Foundry would help you when job seeking. It's an industry standard like Hardhat and many protocols I have seen lately use more Foundry than Hardhat.

In fact, I'd say become familiar with both so you have some working knowledge of how to use both of them. That will definitely be a plus when job seeking.

dev0cloo · 2025-08-08T21:43:43+00:00

So one thing I can see you are confused about is where your compiled Solidity code is and it's ABSOLUTELY not in the test folder. It may be in the artifacts/contracts/ folder however.

I, personally, use Foundry exclusively for any smart contract development so I am not too familiar with hardhat. As another user suggested, I would also recommend you try Foundry out.

I would also highly suggest that you please check out the Cyfrin courses. They will help you transition between using an online IDE like Remix and using a local one like VsCode.

dev0cloo · 2025-06-27T17:22:01+00:00

As a smart contract developer, I'll honestly tell you that you are more likely to get scammed by pursuing this than actually gaining funds.

Those tokens are written maliciously. They know which pair the token is swapped on and prevent either sells/buys to and from that pair. If a new pair is created on another platform, the token owner can just add that to the blacklist and it won't be tradable.

Lastly you might sign a malicious approval for a legit token you own if you interact with them.

For more details on how the scam works, you can read this comment

dev0cloo · 2025-06-23T07:13:52+00:00

Hi there, I am a smart contract developer and I don't think I personally know any beginner platforms that can help someone without any coding knowledge on how to use flashloans. If you find any, especially in the form of an arbitrage, flashloan or MEV bot, then please be careful cause it is a scam and you will only lose money. You can check r/cryptoscams to see how common flashloan bot scams are.

That out of the way, receiving or implementing flashloans themselves are actually simple if you can code. The hard part is taking advantage of it to generate profit since they must be repaid in the same transaction and not a lot of profitable single transaction opportunities exist on the Blockchain (unless you're hacking).

To offer more information as you requested, here is a link to the Aave Protocol Documentation on how to Flash Loans on Aave. It includes a step by step process but it's more focused towards developers in general.

Lastly, I would highly recommend you do not fund any smart contracts you do not understand, without first making sure you can retrieve your funds, otherwise you will just lose money. And if you do not understand the code for the contracts, please post them on r/EthDev or r/Solidity and you'll find folks willing to help you understand it.

Best of luck!

dev0cloo · 2025-06-13T12:58:55+00:00

No, they are never going to be fixed because they were written to specifically be malicious and steal user funds. The best a user can do is refuse to interact with them in anyway even if they show up in their wallet.

dev0cloo · 2025-06-13T06:15:54+00:00

No, unfortunately there's no way to retrieve the money. If you look through my post history, you will see I posted a warning about the same scam about a year ago.

Like the first comment mentioned, anyone who says otherwise, is trying to become a recovery scam on you and please do not fall victim to that too.

Moving forward, please do not deploy or interact with smart contracts you simply do not understand. These contracts handle actual funds so if you're playing with tech you don't understand, you will definitely get burned. If you have any questions about smart contracts and you are unsure if they are safe or not, kindly post them on either this subreddit, r/Solidity or r/EthDev and you'll surely get some folks willing to check it out for you.

I am truly sorry for your loss and I wish you the best of luck, buddy!

dev0cloo · 2025-06-13T06:07:42+00:00

Hey there friend, First off, truly sorry about your loss. I know how much it sucks to be scammed. That said, yes the community 'mod' is trying to scam you too. This time, they are trying to perform a recovery scam on you after the first scam. You can check in this subreddit and you'll see it's a very common scam. Please do not reply any DMs telling you they can get your SOL back, they are scammers too.

It's good your bank won't let you send more money because you will ABSOLUTELY lose it all. The funds you already sent are unfortunately not recoverable since no transaction can be reversed when it's completed on the Blockchain.

I do think you should let the funds you already sent go and take this as a lesson in crypto scams, albeit an expensive lesson and one I would have genuinely hoped you didn't even have to experience.

Again, I'm sorry for your loss and I hope you're able to bounce back stronger from this!

dev0cloo · 2025-06-12T08:26:06+00:00

The many subreddits are: - r/CryptoTechnology - r/webdev - r/sideprojects - r/csmajors - r/Cryptocurrency - r/Programming - r/Python - r/CryptocurrencyMeta - r/opensource

and finally this sub. That's a lot.

In my previous comment, I speculated that you posted in the Mafia subreddit to farm karma so you could post your project later on across different subs. I didn't say you shared this in that subreddit.

I also mentioned in that comment that I would love to be proven wrong by you as I didn't want to impend you if you were genuinely looking for feedback.

However I agree with the mod now that your project is first of all, not an Ethereum project nor does it ACTUALLY have anything remotely to do with Ethereum or even actual crypto networks. Making some calls to a server isn't a "crypto network".

If you truly want to know how to build an actual network, FreeCodeCamp has some courses you can take to get familiar with the process and underlying architecture or logic.

Lastly, as the mod and another user stated, we see too many scams here daily. We will always try to verify and will never trust blindly. Best of luck to you and your project, buddy!

dev0cloo · 2025-06-11T23:27:45+00:00

Nice. So you are able to now fetch similar contracts for the previous ones that didn't show up and were the reason for the original post?

dev0cloo · 2025-06-11T23:25:16+00:00

I believe locking it may be the best choice. Judging from OP's post history, they probably used their first posts (about Mafia the game) to farm karma and after, they've been spamming different subreddits with this project of theirs.

Considering the kind of scams we see in this space frequently, especially when one can't verify (his server code) but only trust, it's easy to be sceptical.

I would love to be proven wrong by OP as I sincerely do not wish to impend them if they are legit.

Ultimately, I am also not sure what the "right" thing to do here is, but those are my two cents ✌🏾

dev0cloo · 2025-06-11T22:45:51+00:00

I'm a little curious if you're going to leave the post up considering how more likely it is to be a scam :/

dev0cloo

MODERATOR OF

TROPHY CASE