[ANN] Zipcoin [ZIPC]- X13 PoW/PoS - NO Premine - 7 days PoW - Ninja

[oreoeater]

sorry took a while...here is what i believe to be the virus QT...

https://mega.co.nz/#!L1IBwTzB!sHUsuf3fLQ-PJrtScL7IZaT99DPNesSSrUfJ_ehFjkg

[EntryPoint]

wouldnt pools have a major issue than with this virues?? wouldnt they have shut it down already instead of keep running and allowing miners to mine and possibly get compromised??
i dont get it, i have had nothing stolen and i dl the wallet a cpl days ago...

No, the source code is clean, and pools and exchanges compile from the source code. The keylogger/backdoor was packaged with the already compiled windows wallet that was in the ann.

[EntryPoint]

sorry took a while...here is what i believe to be the virus QT...

https://mega.co.nz/#!L1IBwTzB!sHUsuf3fLQ-PJrtScL7IZaT99DPNesSSrUfJ_ehFjkg

Thanks, I just tested this and it is the same thing that happened on my compromised PC. This was the original windows wallet that was posted. It starts with the ztor.exe process, and creates the C:/user/Appdata/local/spoon backdoor program.

Anyone in doubt should test this themselves on a vm or sandbox, DO NOT RUN THAT EXE ON YOUR NORMAL SYSTEM.

[oreoeater]

sorry took a while...here is what i believe to be the virus QT...

https://mega.co.nz/#!L1IBwTzB!sHUsuf3fLQ-PJrtScL7IZaT99DPNesSSrUfJ_ehFjkg

Thanks, I just tested this and it is the same thing that happened on my compromised PC. This was the original windows wallet that was posted. It starts with the ztor.exe process, and creates the C:/user/Appdata/local/spoon backdoor program.

Anyone in doubt should test this themselves on a vm or sandbox, DO NOT RUN THAT EXE ON YOUR NORMAL SYSTEM.

NP thanks for verify. Could some more people do this for credibility please?

[EntryPoint]

look at the op guys, its from zipdev
the wallet you noobs downloaded is form a guy named zipdev _
DIFFERANT PEOPLE, SECOND ONE IS JUST A COPYCAT SCANNER THAT GOT U NOOBS WHO DONT PAY ATTENTION TO DOWNLOAD A FAKE WALLET. GOOD JOB
never dl anything except from OP ANN!!!

What? the fake zipdev _ made his first post like 30 mins ago and he didnt even post any wallets.

I downloaded the wallet from the OP and so did others.

Can everyone who comes across this post check the directory C:\users\MyUsername\Appdata\Local\Spoon\Sandbox\Zipcoin-Qt\2.0.0.0\local\stubexe and look for 2 files, 1 called ztor.exe and the other is zipcoin-qt.exe Im pretty sure the zipcoin-qt.exe in the stubexe directory is only named that and not the actual wallet itself
Be sure to enable hidden files and folders http://www.bleepingcomputer.com/tutorials/show-hidden-files-in-windows-7/
These are the viruses.

EDIT: netsh.exe is also in there

For information.: https://cryptocointalk.com/topic/13908-zipcoin-zip-information/

Could all who have the infected windows qt wallet post the md5sum of the file?

Here is MD5: B6D4AD693400D53AC8F34D8237C98AD2

[3months18w]

https://mega.co.nz/#!6cAxzBjT!KVntyW_y8j4QVwobEHROrRhpuKnX_2uxd-KML_S4ips

So the wallet link on OP now is safe ?

[melfrecords]

https://mega.co.nz/#!6cAxzBjT!KVntyW_y8j4QVwobEHROrRhpuKnX_2uxd-KML_S4ips

So the wallet link on OP now is safe ?

Nope, on your own risk. Just like the moderator warns you in the OP.

What is safe though is to conclude that this coin is a major scam coin.

[TheFridge]

https://mega.co.nz/#!6cAxzBjT!KVntyW_y8j4QVwobEHROrRhpuKnX_2uxd-KML_S4ips

So the wallet link on OP now is safe ?

Supposed to be. The op only left the infected wallet up for a few hours. But would you risk downloading from someone who you know for certain is in control of a virus?

[Jookly]

https://mega.co.nz/#!6cAxzBjT!KVntyW_y8j4QVwobEHROrRhpuKnX_2uxd-KML_S4ips

So the wallet link on OP now is safe ?

Supposed to be. The op only left the infected wallet up for a few hours. But would you risk downloading from someone who you know for certain is in control of a virus?

So is there a way I can determine for sure whether I ran the infected version?

[vegasguy]

Superantispyware was the ONLY antivirus that was able to find it, and its free

[vegasguy]

I took a chance and emailed the bitcoindark dev to see if there is ANYTHING he can do to reverse the 7700 BTCD I lost. I dont know if he can roll back the chain or reverse this. I doubt it, but I dont know what else to do

[EntryPoint]

https://mega.co.nz/#!6cAxzBjT!KVntyW_y8j4QVwobEHROrRhpuKnX_2uxd-KML_S4ips

So the wallet link on OP now is safe ?

Supposed to be. The op only left the infected wallet up for a few hours. But would you risk downloading from someone who you know for certain is in control of a virus?

So is there a way I can determine for sure whether I ran the infected version?

read this post: https://bitcointalk.org/index.php?topic=721306.msg8194785#msg8194785

Look for a process running called "ztor.exe" and then navigate to the appdata/local directory and look for the "spoon" folder and the files in it, if you have those then you had the infected wallet.

[guanchayuan]

Please look for the OP above wallet icon ，

[digiguy]

OK so i wake up and FUD people still trying to get cheap wow bottom feeders

[EntryPoint]

OK so i wake up and FUD people still trying to get cheap wow bottom feeders

what exactly is the FUD? its a fact that a shitload of coins have been stolen through the fucking malicious windows wallet that was posted in the OP, when this thread was first started. If you are not the dev still trying to throw people off are actually believe its FUD, download the wallet: https://mega.co.nz/#!L1IBwTzB!sHUsuf3fLQ-PJrtScL7IZaT99DPNesSSrUfJ_ehFjkg, and then run it and see that you have ztor.exe process and the C:/user/APPDATA/LOCAL/SPOON, and that most of your coins wallet.dats have been renamed to whatever coin it was.

If you are the dev trying to prolong your scam, you should give up, apologize, and give back the coins you have taken. Really fucked up what you did.

[digiguy]

look at my old post and u will see that i did my home work like i always do tested everything and i found no virus and i have all my coins trust is alot of coins

[guanchayuan]

OK so i wake up and FUD people still trying to get cheap wow bottom feeders

what exactly is the FUD? its a fact that a shitload of coins have been stolen through the fucking malicious windows wallet that was posted in the OP, when this thread was first started. If you are not the dev still trying to throw people off are actually believe its FUD, download the wallet: https://mega.co.nz/#!L1IBwTzB!sHUsuf3fLQ-PJrtScL7IZaT99DPNesSSrUfJ_ehFjkg, and then run it and see that you have ztor.exe process and the C:/user/APPDATA/LOCAL/SPOON, and that most of your coins wallet.dats have been renamed to whatever coin it was.

If you are the dev trying to prolong your scam, you should give up, apologize, and give back the coins you have taken. Really fucked up what you did.

You point the wrong Download it。In another website to see ZIPCOIN 。Download wallet virus

[digiguy]

Fucking FUD people will always be broke because they alway like to sound smart but deep down inside they are stupid and don't know how to invest so they will alway cry 

[guanchayuan]

OK so i wake up and FUD people still trying to get cheap wow bottom feeders

what exactly is the FUD? its a fact that a shitload of coins have been stolen through the fucking malicious windows wallet that was posted in the OP, when this thread was first started. If you are not the dev still trying to throw people off are actually believe its FUD, download the wallet: https://mega.co.nz/#!L1IBwTzB!sHUsuf3fLQ-PJrtScL7IZaT99DPNesSSrUfJ_ehFjkg, and then run it and see that you have ztor.exe process and the C:/user/APPDATA/LOCAL/SPOON, and that most of your coins wallet.dats have been renamed to whatever coin it was.

If you are the dev trying to prolong your scam, you should give up, apologize, and give back the coins you have taken. Really fucked up what you did.

https://mega.co.nz/#!6cAxzBjT!KVntyW_y8j4QVwobEHROrRhpuKnX_2uxd-KML_S4ips  Official Download
Safe, no virus  

you In another website to see ZIPCOIN  Download wallet virus , Your own fault .

[EntryPoint]

look at my old post and u will see that i did my home work like i always do tested everything and i found no virus and i have all my coins trust is alot of coins

Yes I did look at your posts and you posted screenshots that dont show the correct process or the directory in which the backdoor is located, thus why I am wondering why you would do that.

Read my post here that has the correct information https://bitcointalk.org/index.php?topic=721306.msg8194785#msg8194785.

Note that the dev tries to cover his tracks as the windows wallet in the ann now appears to be not malicious, at least not the same backdoor as the original wallet, the one that was up the first two days though was, so please test the original wallet on a vm and realize that you are wrong:  https://mega.co.nz/#!L1IBwTzB!sHUsuf3fLQ-PJrtScL7IZaT99DPNesSSrUfJ_ehFjkg.