And yet thinks that open source web == PHP... or it was a phishing attempt in its own right:
If they can provide the files and an empty database for me just to configure by my own then I think I will have more than enough or I will have to use SMF for the forum.
I'd say Occam's razor says that BitcoinGirl.Club didn't give the info to the troll voluntarily. There would be nothing to be gained from that. Password changes in 2018 probably have nothing to do with it. Password reset via e-mail probably means someone got into his e-mail account and IIRC his e-mail address was known publicly but I can't find that info now.