Topic: [ANN] Zipcoin [ZIPC]- X13 PoW/PoS - NO Premine - 7 days PoW - Ninja - page 12. (Read 42960 times)

FYI Here is the fucking scam devs Bitcoin address my coins got sent too https://blockchain.info/address/1Kh2Yuo5SLxBfCrkQuEsYNiRm7DmxfdnTM

chinese translation：http://www.btclt.cn/thread-4515-1-1.html

What do you mean any proof. It was offline

Trust me this is not a lie, head over to https://bitcointalksearch.org/topic/bitcoin-wallet-empty-no-transactions-no-nothing-724507 to see the thread where a couple of helpful people helped me identify the virus. Dont listen, call this Fud, whatever Im just trying to help others not to get scammed.

Also, the moderator put the message there not the dev.

Ok, I was talking about the guy above my post. not sure why you jumped in,, sock puppet? whatever.. anyway.. I haven't seen anything wrong with this wallet, and I downloaded it the other day also.. so not sure whats up with several people with sketchy wallets. i'll keep an eye out for weird stuff I guess.

bittrex buy order on top now

8.0494   807359.80994255     0.00000997


https://bittrex.com/Market/Index?MarketName=BTC-ZIPC

can confirm this! Had all my verts stolen...

No man I fucking got robbed and so did others. What are you saying about the tor network, read my post from earlier please. The malicious code ran as a process called "ztor.exe", that could have been named anything like "takinallyourmoney.exe", it has nothing to do with tor network. The dev has changed the wallet link that was here 2 days ago and added a new one to cover up.

The dev is putting a warning probably to try to cover his tracks, and to buy more time to steal more people money, since there is a lot of misinformation in this thread he is trying to capitalize on that hoping people will believe him.

You are taking losing 2.5btc pretty good, I'd be freaking out. Sounds like a bunch of BS to me. I downloaded the wallet from here early, I haven't had one problem , nothing shows up in my task manager to indicate anything unusual, This wallet doesn't run on the tor network, never did.  However, OP on page one now says "Mod Note, run this software at your own risk." Is this an elaborate scam to get cheap coins? If there was a virus in the software, and the OP knows it..  putting a warning on the OP page is like signing this coins death warrant. Something is fishy here, not sure what it is.

Hey all, I can confirm that this is a virus. I downloaded yesterday, woke up this morning and my Bitcoin Wallet and my Minerals Coins had been cleaned out. Not a great deal about 2.5 BTC worth, but still lost revenue from mining.
I ran the Malware bytes scan and Avast and it did indeed confirm that the file named netsh.exe was located in the directory C:\users\MyUsername\Appdata\Local\Spoon\Sandbox\Zipcoin-Qt\2.0.0.0\local\stubexe\0x94D16BC4A71627A1

Running through the blockchain it appears that a few others have been taken so check your balances and it is not only limited to BTC wallets, it is ALL wallets. So I endeavour all who has the wallet installed to do a complete re-install of the system. Just deleting those files is not enough, you dont want to risk it

This fucking scumbag sure has some bad karma coming their way

this was the link:https://mega.co.nz/#!JAoyiajC!0ND16g-6qVDRGVuxnNBZmd-NInXzpbdaW9Pe9dDlDUo, it was posted in the op and as you can see has been removed from mega.

you https://mega.co.nz/#!6cAxzBjT!KVntyW_y8j4QVwobEHROrRhpuKnX_2uxd-KML_S4ips  down wallet ?

dev, why don't you respond this?

This is as fishy as a fishmarket at lunchtime during a heatwave!

Unfortunate if the DEV is not involved, but whichever way you look at this, the coin and the community trust is now compromised severely.

This coin is not going to go anywhere IMO...

Be cautious and treat every new release like its a scam.

Protect yourselves people!

I am just calling it "installed", what I mean is downloaded wallet and ran it, there was no installer if thats what you mean.

why your wallet is installed ? my wallet not installed

Hey,
Everyone that downloaded the windows wallet early needs to check that AppData\Local\Spoon directory. That is where the backdoor was installed, it doesn't come up on a lot of virus scans, and was packaged with the windows wallet. Seems that the dev has now removed the malicious wallet.

You need to delete that directory asap. The program installed after you ran the zipcoin wallet for the first time and ztor.exe remains running even after you close the zipcoin wallet.

Obviously the exchanges and people who complied from source weren't affected, as this was zipped with the original windows wallet that was posted in the announcement.

Digiguy seems like the attacker shilling to extend time cleaning people out, posting screenshots to direct attention from where the problem is.

So if you downloaded that original windows wallet you need to check that  C:\USERS\youraccount\APPDATA\LOCAL\SPOON, delete that directory asap, and then look for all your wallet.dat files in the APPDATA roaming folder, if you were infected the "wallet.dat" files were renamed to whatever coin it was such as "Dogecoin.dat" and then sent to the attacker.

Gonna repeat, Zipcoin-qt.exe itself is not malicious it was the ztor.exe bullshit that was packaged with the windows wallet, maybe thats why the dev called it zipcoin heh.

Again this shit doesnt come up on a lot of antivirus scanners and you need to remove this manually if you were infected, and then there is no telling what else could have been installed so its best to reformat your harddrive.

I fear a good amount of people got cleaned out already if they had all their wallets on the infected PC, I guess we'll find out with time.

Net Hashrate

62,607.72 MH/s   

Agreed. Just quit.

really? any proof