OwlCyberSecurity - MANAGER

Edit File: 1665345655.M370969P2266856.server109.web-hosting.com,S=5397,W=5508:2,

Return-Path: <> Delivered-To: punjkvlp@server109.web-hosting.com Received: from server109.web-hosting.com by server109.web-hosting.com with LMTP id uMxHFXcoQ2PoliIAfxYEEg (envelope-from <>) for <punjkvlp@server109.web-hosting.com>; Sun, 09 Oct 2022 16:00:55 -0400 Return-path: <> Envelope-to: punjkvlp@server109.web-hosting.com Delivery-date: Sun, 09 Oct 2022 16:00:55 -0400 Received: from mailnull by server109.web-hosting.com with local (Exim 4.95) id 1ohcTn-009XLj-9V for punjkvlp@server109.web-hosting.com; Sun, 09 Oct 2022 16:00:55 -0400 X-Failed-Recipients: admin@punjabconstabulary.gov.pk Auto-Submitted: auto-replied From: Mail Delivery System <Mailer-Daemon@server109.web-hosting.com> To: punjkvlp@server109.web-hosting.com References: <wQ1BBzHNpwYnw5IIgoUsRNyu3GO5NpEGUVenW8ORis@punjabconstabulary.gov.pk> Content-Type: multipart/report; report-type=delivery-status; boundary=1665345655-eximdsn-1948266356 MIME-Version: 1.0 Subject: Mail delivery failed: returning message to sender Message-Id: <E1ohcTn-009XLj-9V@server109.web-hosting.com> Date: Sun, 09 Oct 2022 16:00:55 -0400 --1665345655-eximdsn-1948266356 Content-type: text/plain; charset=us-ascii This message was created automatically by mail delivery software. A message that you sent could not be delivered to one or more of its recipients. This is a permanent error. The following address(es) failed: admin@punjabconstabulary.gov.pk No Such User Here --1665345655-eximdsn-1948266356 Content-type: message/delivery-status Reporting-MTA: dns; server109.web-hosting.com Action: failed Final-Recipient: rfc822;admin@punjabconstabulary.gov.pk Status: 5.0.0 --1665345655-eximdsn-1948266356 Content-type: message/rfc822 Return-path: <punjkvlp@server109.web-hosting.com> Received: from punjkvlp by server109.web-hosting.com with local (Exim 4.95) (envelope-from <punjkvlp@server109.web-hosting.com>) id 1ohcTn-009XL9-0O for admin@punjabconstabulary.gov.pk; Sun, 09 Oct 2022 16:00:55 -0400 To: admin@punjabconstabulary.gov.pk Subject: =?us-ascii?Q?Punjab_Constabulary_"Your_Website_Has_Been_Comp?= =?us-ascii?Q?romised"?= X-PHP-Script: punjabconstabulary.gov.pk/index.php for 191.96.168.200, 191.96.168.200 X-PHP-Filename: /home/punjkvlp/public_html/index.php REMOTE_ADDR: 191.96.168.200 Date: Sun, 9 Oct 2022 20:00:54 +0000 From: Punjab Constabulary <admin@punjabconstabulary.gov.pk> Reply-To: no-reply@metaverseprwire.com Message-ID: <wQ1BBzHNpwYnw5IIgoUsRNyu3GO5NpEGUVenW8ORis@punjabconstabulary.gov.pk> X-Mailer: PHPMailer 6.6.0 (https://github.com/PHPMailer/PHPMailer) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Sender: <punjkvlp@server109.web-hosting.com> From: Chantal Burns <no-reply@metaverseprwire.com> Subject: Your Website Has Been Compromised Message Body: PLEASE FORWARD THiS EMAíL TO SOMEONE iN YOUR COMPANY WHO iS ALLOWED TO MAKE iMPORTANT DECíSiONS! We have hacked your website https://punjabconstabulary.gov.pk and extracted your databases. How díd thís happen? Our team has found a vulnerabilíty wíthín your síte that we were able to exploit. After fíndíng the vulnerabílity we were able to get your database credentíals and extract your entíre database and move the ínformatíon to an offshore server. What does this mean? We wíll systematically go through a seríes of steps of totally damagíng your reputatíon. Fírst your database wíll be leaked or sold to the híghest bídder which they wíll use wíth whatever their intentíons are. Next íf there are e-maíls found they wíll be e-maíled that theír ínformatíon has been sold or leaked and your site https://punjabconstabulary.gov.pk was at fault thusly damagíng your reputatíon and having angry customers/associates wíth whatever angry customers/associates do. Lastly any línks that you have indexed in the search engínes wíll be de-indexed based off of blackhat techníques that we used in the past to de-index our targets. How do í stop this? We are willíng to refraín from destroyíng your site’s reputatíon for a small fee. The current fee ís $3000 ín bitcoins (BTC). Please send the bítcoin to the following Bítcoín address (Make sure to copy and paste): 3BJDUXSdaWvvT6Xo2MKWJdWWkCU98ws54p Once you have paíd we wíll automatícally get informed that ít was your payment. Please note that you have to make payment withín 5 days after receivíng this e-maíl or the database leak, e-maíls dispatched, and de-index of your síte WiLL start! How do i get Bitcoins? You can easíly buy bítcoins via several websites or even offlíne from a Bítcoin-ATM. What íf í don’t pay? if you decíde not to pay, we wíll start the attack at the índicated date and uphold ít untíl you do, there’s no counter measure to thís, you will only end up wastíng more money trying to fínd a solutíon. We wíll completely destroy your reputatíon amongst google and your customers. This ís not a hoax, do not reply to this email, don’t try to reason or negotíate, we wíll not read any replíes. Once you have paid we wíll stop what we were doing and you wíll never hear from us again! Please note that Bítcoín ís anonymous and no one will find out that you have complíed. -- This e-mail was sent from a contact form on Punjab Constabulary (http://punjabconstabulary.gov.pk) --1665345655-eximdsn-1948266356--