Muhammed Zakir hacked? Account reactivated just now

[hilariousandco]

https://bitcointalk.org/index.php?action=profile;u=320943 Muhammed Zakir

Recently woke up since 2015 and can't seem to provide any verification currently:

Hello everybody! Its been a long time! I had personal issues and weren't able to be active in BT. Although, I was able to login a few months ago, I am unable to login to my pc. After fumbling through my things, I was able to get BT password, however, both my pgp & bitcoin address are lost. I am still trying to recover my pc account. Hopefully, I will recover it, though chances are low!

Btw, did I miss anything important? Especially posts in "Meta", "Bitcoin Discussion" and about popular/prominent users. Please post link to those topics if possible! Thanks in advanced!

Regards,
Muhammed Zakir

I think negative is warranted here until he can provide reasonable proof that this is actually the real Muhammed Zakir.

[1713302104]

1713302104

[1713302104]

1713302104

[1713302104]

1713302104

[1713302104]

1713302104

[1713302104]

1713302104

[Quickseller]

I think there is a decent chance it is hacked. Although his response he gave to your opening of this thread indicates it might not be.

[Muhammed Zakir]

  -snip-
Feedback is there as a precaution as any account that didn't change their password since the 2015 forum hack are likely hacked themselves. I will happily remove it once reasonable proof has been shown.

If you are talking about the attack where theymos(iirc) said to change our passwords*, then, I was there at that time. You can see that by checking my "latest posts". I have changed my password at that time. However, I haven't changed my password after that. If my account did change hands, it should have been changed, right? And also do you really think I would give my personal accounts(Twitter, Github, Facebook, Skype etc...)?

I have exchanged encrypted messages with shorena. Although, I can't say content exactly as it was, but I can say what we have exchanged each other(if shorena is willing, in here, otherwise, in PM or Twitter). I have also exchanged my number with few Indians(eg: chronicsky, Mahin Gupta(Zebpay), Advaith Doosa and few others). Does Mahin Gupta's words have credibility? After all, he is one of the people behind Zebpay and he was previously founder of BuySellBitco.in. BuySellBitco is also his username IIRC.

* I have checked just now and it happened in May. I last posted in October. There hasn't been any attack after that, right?

Edit: It is not BuySellBitco, instead buysellbitcoin (https://bitcointalk.org/index.php?action=profile;u=67318).

[hilariousandco]

  -snip-
Feedback is there as a precaution as any account that didn't change their password since the 2015 forum hack are likely hacked themselves. I will happily remove it once reasonable proof has been shown.

If you are talking about the attack where theymos(iirc) said to change our passwords*, then, I was there at that time. You can see that by checking my "latest posts". I have changed my password at that time. However, I haven't changed my password after that. If my account did change hands, it should have been changed, right? And also do you really think I would give my personal accounts(Twitter, Github, Facebook, Skype etc...)?

I have exchanged encrypted messages with shorena. Although, I can't say content exactly as it was, but I can say what we have exchanged each other(if shorena is willing, in here, otherwise, in PM or Twitter). I have also exchanged my number with few Indians(eg: chronicsky, Mahin Gupta(Zebpay), Advaith Doosa and few others). Does Mahin Gupta's words have credibility? After all, he is one of the people behind Zebpay and he was previously founder of BuySellBitco.in. BuySellBitco is also his username IIRC.

Some of the accounts hacked haven't had their passwords changed (maybe to try avoid detection) but it's possible this and your accounts were compromised some other way (maybe reusing passwords etc). If shorena or someone else of similar stature can confirm details that may be ok but do you not have access to any old bitcoin wallets? I'm sure you didn't lose access to them and a signed message would be enough here.

[LeGaulois]

https://twitter.com/KZM279/status/874962969301536769

[hahay]

  -snip-
Feedback is there as a precaution as any account that didn't change their password since the 2015 forum hack are likely hacked themselves. I will happily remove it once reasonable proof has been shown.

If you are talking about the attack where theymos(iirc) said to change our passwords*, then, I was there at that time. You can see that by checking my "latest posts". I have changed my password at that time. However, I haven't changed my password after that. If my account did change hands, it should have been changed, right? And also do you really think I would give my personal accounts(Twitter, Github, Facebook, Skype etc...)?

I have exchanged encrypted messages with shorena. Although, I can't say content exactly as it was, but I can say what we have exchanged each other(if shorena is willing, in here, otherwise, in PM or Twitter). I have also exchanged my number with few Indians(eg: chronicsky, Mahin Gupta(Zebpay), Advaith Doosa and few others). Does Mahin Gupta's words have credibility? After all, he is one of the people behind Zebpay and he was previously founder of BuySellBitco.in. BuySellBitco is also his username IIRC.

Some of the accounts hacked haven't had their passwords changed (maybe to try avoid detection) but it's possible this and your accounts were compromised some other way (maybe reusing passwords etc). If shorena or someone else of similar stature can confirm details that may be ok but do you not have access to any old bitcoin wallets? I'm sure you didn't lose access to them and a signed message would be enough here.

This makes sense and I agree with hilariou, supposedly great guy like Zakir will definitely give his old address with signed message which I think it's a very simple proof, but i also do not see Zakir giving it and his just explaining the classic reason.
I personally did not know much about Zakir in the past but after seeing his good reputation from him I was glad to see Zakir come back here again. Hopefully you can provide solid evidence to solve this problem. Good luck!

[shorena]

lets make it short

#1 I was contacted (publicly!) by MZ via twitter. I know this will not be accepted as proof.
#2 The breach hilarious is referencing was announced by theymos 25.05.2015[1]. If this is not the case, please provide a link to a thread discussing the incident in question.
#3 Archive.is has a pretty good history[2] of the seclog.php[3] page
#4 MZ changed the password the same day[4]. Due to my timezone settings and my lack of enthusiasm I didnt bother to check how many hours passed.

I thus consider the accusation refuted and opose the rating until another accusation should be presented (if any).


Edit: No other Password change was archived until the reawakening
-> https://archive.fo/wkYjc#selection-5069.0-5073.10

I also was contacted by MZ via twitter last year (6.2016 according to the rating left by EcuaMobi) during their absence to help repaiy the loan the still owed.

[1] https://bitcointalk.org/index.php?topic=1067985.0
[2] https://archive.fo/https://bitcointalk.org/seclog.php
[3] https://bitcointalk.org/seclog.php
[4] https://archive.fo/HQBSM#selection-117829.0-117836.0

[ibminer]

It is a little odd that you seem to be unable to sign a message from a prior known address.
What is the problem with your PC?  Why are chances low of recovery??

[Lauda]

lets make it short

#1 I was contacted (publicly!) by MZ via twitter. I know this will not be accepted as proof.
#2 The breach hilarious is referencing was announced by theymos 25.05.2015[1]. If this is not the case, please provide a link to a thread discussing the incident in question.
#3 Archive.is has a pretty good history[2] of the seclog.php[3] page
#4 MZ changed the password the same day[4]. Due to my timezone settings and my lack of enthusiasm I didnt bother to check how many hours passed.

You make a decent case.

I thus consider the accusation refuted and opose the rating until another accusation should be presented (if any).

I do not primarily because of this:

It is a little odd that you seem to be unable to sign a message from a prior known address.
What is the problem with your PC?  Why are chances low of recovery??

Not being able to sign from any prior known address or PGP key makes me even more suspicious.

[Chevas Regal]

Not being able to sign from any prior known address or PGP key makes me even more suspicious.

We are in digital ecosystem, a sign will ward off all the possibilities whether he is real or a jacked account.
Why don't we make it simple, If the guy is real MZ then i hope he would have access to his old online wallets, maybe some exchange or Bit-x?? which has 2fa with registered mobile number   , why don't he send a large volume to the address which is significantly larger than his account and prove the truth.

[Muhammed Zakir]

@shorena: Thank you!

@hilariousandco: So, what do you think?


You may not know about this, but before I completely understood how valuable *personal* BTC address is, I sold 2 addresses, which were addresses I created when I got involved in Bitcoin, and someone (buyer of those addresses iirc) has already publicly posted private keys of those 2 addresses. It was a pretty stupid thing and I regretted selling it later! Therefore, I can only sign using either my pgp key or main BTC address - 1MZakirz92c76pK6BNy1NAEmbWYpDcP7mh. But you already know I can't sign from either of them.

  -snip-
What is the problem with your PC?  Why are chances low of recovery??

I am unable to login to my profile. I am using windows and have 2 profiles, 1 admin & 1 standard user. I am not exactly sure what is the problem, but I guess it is related to password. I tried many times, but I can't login. It is not possible to recover password using recovery tools because of the length of password. So I am only left with cracking it with a software available online. Like I said earlier, chances for logging in again is very low.

  -snip-
Why don't we make it simple, If the guy is real MZ then i hope he would have access to his old online wallets, maybe some exchange or Bit-x?? which has 2fa with registered mobile number  , why don't he send a large volume to the address which is significantly larger than his account and prove the truth.

If you have read my posts, you can see that I have already said I have access to those accounts, including BIT-X.

[ibminer]

I am unable to login to my profile. I am using windows and have 2 profiles, 1 admin & 1 standard user. I am not exactly sure what is the problem, but I guess it is related to password. I tried many times, but I can't login. It is not possible to recover password using recovery tools because of the length of password. So I am only left with cracking it with a software available online. Like I said earlier, chances for logging in again is very low.

What version of Windows?  There should be ways to get around the password issue. Is it telling you the password has failed or is it giving you another message?  As long as the drive is readable, which it is if you are loading Windows, the data should be retrievable. I assume this machine is where the PGP & wallet exists?  

And you don't know your password but you know how long it is?  

[Lauda]

I am unable to login to my profile. I am using windows and have 2 profiles, 1 admin & 1 standard user. I am not exactly sure what is the problem, but I guess it is related to password. I tried many times, but I can't login. It is not possible to recover password using recovery tools because of the length of password. So I am only left with cracking it with a software available online. Like I said earlier, chances for logging in again is very low.

What version of Windows?  There should be ways to get around the password issue. As long as the drive is readable, which it is if you are loading Windows, the data should be retrievable. I assume this machine is where the PGP & wallet exists?   .. And you don't know your password but you know how long it is? 

You don't even need to do that. There are ways of just deleting the Windows password from outside of the system. I'm 100% positive that I've done it a long time ago with Windows 7.

[ibminer]

You don't even need to do that. There are ways of just deleting the Windows password from outside of the system. I'm 100% positive that I've done it a long time ago with Windows 7.

Do what? This is what I was referring to in my post... there are ways to get around the password issue, depending on the version, I should be able to give instructions... or everyone can just google it.  

Edit: @Lauda, I see the confusion, I was giving 2 methods of recovery. But yes the easiest should be clearing/resetting the password assuming there are not other factors involved (I'm leaving information out of my response on purpose... I don't want to give out excuses or reasons, just want the truth). I'm not 100% sure if it is even the password that he's claiming is the issue because his last post seems to be altering what the issue may be. Hopefully the story doesn't start changing! 

[Lauda]

You don't even need to do that. There are ways of just deleting the Windows password from outside of the system. I'm 100% positive that I've done it a long time ago with Windows 7.

Do what? This is what I was referring to in my post... there are ways to get around the password issue, depending on the version, I should be able to give instructions.

I assumed that you were specifically implying taking out the drive and plugging it into another system. Old habits, sorry.

[sho_road_warrior]

So the new accusation is: "I don't trust them because they lost access to an empty wallet and pgp key"?

I can't help with that, but as MZ offered a proof of knowledge. Would that be acceptable? I can think of a question only they should be able to answer based on our past exchange of encrypted messages.

[CoinProfiters]

CORRUPTION AT ITS FINEST.

Base your trust on FACTS! A trust rating should NEVER include "possibly" or "likely" in it!

Stop abusing your trust! SOMETHING NEEDS TO CHANGE!

[ibminer]

So the new accusation is: "I don't trust them because they lost access to an empty wallet and pgp key cannot sign a message proving their identity"?

I can't help with that, but as MZ offered a proof of knowledge. Would that be acceptable? I can think of a question only they should be able to answer based on our past exchange of encrypted messages.

FTFY


It seems like Muhammed Zakir is well aware that a signed message is needed to prove identity:




His own demands to require a signed message are being honored.

CORRUPTION AT ITS FINEST.

Base your trust on FACTS! A trust rating should NEVER include "possibly" or "likely" in it!

Stop abusing your trust! SOMETHING NEEDS TO CHANGE!

Nice to see another account waking up to defend this woken up account. 

[CoinProfiters]

CORRUPTION AT ITS FINEST.

Base your trust on FACTS! A trust rating should NEVER include "possibly" or "likely" in it!

Stop abusing your trust! SOMETHING NEEDS TO CHANGE!

Nice to see another account waking up to defend this woken up account. 

YOU'RE FUCKIN STUPID.

I've been logged into this accout for 3 weeks straight retard!

Always full of assumptions! CORRUPTION ALERT. CORRUPTION ALERT

[Lauda]

So the new accusation is: "I don't trust them because they lost access to an empty wallet and pgp key"?

I'd expect someone like you to know better than that. Statements like these are part of the reason for which we have failed to prevent a number of scams. One of the most recent cases is nachius.

I can't help with that, but as MZ offered a proof of knowledge. Would that be acceptable? I can think of a question only they should be able to answer based on our past exchange of encrypted messages.

That is proof-of-proxy, i.e. you. Whether you can be trusted with that is debatable for each individual. I'd prefer cryptography over trust. Anyhow, the password problem with Windows can be semi-easily mitigated and thus voids the excuse.