widca5472 and vdfre27 belongs to same person?

[coinlary]

Widca5472 and vdfre27 belong to same person?

This topic isn’t about their connection but what they actually promote.
Can someone lecture me the possible reason why you should create a fork of an open source tool and then upload it to Mega.zn instead of GitHub after a modification?

vdfre27 replied to this thread with :

This open source Bitcoin wallet password and seed recovery tool helped me.
BTCrecover

Hiding their modified tool under the legit tool name and details because this site : https://bitenttion.com/programs/btcrecover/
uses same details as the open source  tool , even the GitHub URL too , only to redirect victims  to the mega.zn upload after clicking the Download Button


widica5472 on the other hand, posted:

I used the 1.6.7 and it bricked my rx 460. Now I cant even reflashed it coz it wont detect the card anymore. I just figured out that bios editor copied the 1600 straps and even put it on 1500 which I believe that screwed it. Now I need help on reviving my card. Lenovo rx 460 4gb (micron)

Try using the patcher program Atikmdag. This program is commonly used for RX400 series graphics cards that are detected by the system after BIOS modification with error 43.

Atikmdag is on same bittention domain https://bittention.com , the embedded url https://bittention.com/programs/pixel-patcher-atikmdag/.

Now after it, was another post from vidfre27:

i downloaded this tool, and i had all kinda malware hit my pc, now granted this was the ONLY thing i downloaded that day.
and somehow my wallet got emptied they stole all my coins around 250-300 worth so be careful of this thing. ill never use it again  ill stick to SRB for editing bios

that is, what you downloaded in the previous days does not bother you?

Unfortunately the thread itself is moderated and I couldn’t get the gist behind the particular post..

[logfiles]

They could be linked, but if both accounts are spreading malware (it has to be proven though that the uploaded file is indeed a malware) then the easiest way to get read of them is to report to this thread about what they are trying to do.
I am quite certain their accounts will get banned as soon as possible. The posts might as well get deleted.

[ABCbits]

I did quick check,
1. For BTCRecover from that size give .zip that contain source code. But i don't have ability or time to check whether there's no malicious modification.
2. For pixel patcher, i uploaded the .exe inside .zip to VirusTotal. But it says 1/70 detection, https://www.virustotal.com/gui/file/f3b0e3ba3beb72ad455f478bca6347fbcabbce4ddfa2a6e34f72f11412502434.

However, i would recommend everyone to stay away from that website. I also reported those posts as SEO spam, since the post edited few days after it's created which is common way to perform SEO spam while evading moderation.

Edit: To OP, please edit your thread so none of the link is clickable. It's necessary to prevent the website have higher position on google search result.

[The Cryptovator]

Widca5472 and vdfre27 belong to same person?

This topic isn’t about their connection but what they actually promote.
Can someone lecture me the possible reason why you should create a fork of an open source tool and then upload it to Mega.zn instead of GitHub after a modification?

It doesn't matter whether these accounts belong to the same person or not. But both accounts were shilling a website that possibly included malware. In such a case, if you notice something similar, then report it to the moderator. Newbie accounts often get banned if they post with malware. They would be modified to include malware there, so we have to be careful if asked to download something or click on any links.

To OP, please edit your thread so none of the link is clickable. It's necessary to prevent the website have higher position on google search result.

Agree. Even someone would curious to download something and fall into trap. Write the website link into code would be best practice.

[coinlary]

They could be linked, but if both accounts are spreading malware (it has to be proven though that the uploaded file is indeed a malware) then the easiest way to get read of them is to report to this thread about what they are trying to do.

Thanks for the link.

I did quick check,
1. For BTCRecover from that size give .zip that contain source code. But i don't have ability or time to check whether there's no malicious modification.
2. For pixel patcher, i uploaded the .exe inside .zip to VirusTotal. But it says 1/70 detection, https://www.virustotal.com/gui/file/f3b0e3ba3beb72ad455f478bca6347fbcabbce4ddfa2a6e34f72f11412502434.

Got something similar  but related to Ransom/lockfile  on the btcrpass.py file  but the flag is loose:
https://www.virustotal.com/gui/file/3b64a71b52f6133771fb3799060a1995ca45b444f289afe029366976022fe0f3
Behaves like malware anyways:
https://vtbehaviour.commondatastorage.googleapis.com/3b64a71b52f6133771fb3799060a1995ca45b444f289afe029366976022fe0f3_Zenbox.html

It doesn't matter whether these accounts belong to the same person or not. But both accounts were shilling a website that possibly included malware. In such a case, if you notice something similar, then report it to the moderator.

Yeah, it's  the main reason I opened the thread , I didn't  want to just report the thread  as they would only get deleted. I don't have  any strong evidence  against them either but I know something can't  be right when you're  disguising your tool with every available  details of a legit tool .
It takes not more than a single to two line to explain  that it's  their tool and the reason why they made it non-open just as the original  tool.

[obuoma]

If you cannot ascertain that they are spreading malicious software by their actions, when you have the suspicion, immediately report them to the forum moderator. Admin like Wesh is very good in that area and he will be able to verify that and do the needful. Spreading harmful software online is a serious offense and should be stopped at all cost before them they succeed in harming people.