| Time & API |
Arguments |
Status |
Return |
Repeated |
1619345054.52211
NtWriteFile
|
file_handle:
0x000002c8
filepath:
\Device\HarddiskVolume1\Boot\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345054.69411
NtWriteFile
|
file_handle:
0x000002b8
filepath:
\Device\HarddiskVolume1\Boot\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345054.85111
NtWriteFile
|
file_handle:
0x000002b8
filepath:
\Device\HarddiskVolume1\Boot\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345059.33511
NtWriteFile
|
file_handle:
0x00000278
filepath:
\Device\HarddiskVolume1\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345059.66311
NtWriteFile
|
file_handle:
0x000002ec
filepath:
\Device\HarddiskVolume1\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345061.85111
NtWriteFile
|
file_handle:
0x0000028c
filepath:
C:\Python27\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345062.75711
NtWriteFile
|
file_handle:
0x000002ec
filepath:
C:\Python27\DLLs\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345062.89711
NtWriteFile
|
file_handle:
0x000002ec
filepath:
C:\Python27\DLLs\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345063.42911
NtWriteFile
|
file_handle:
0x000002ec
filepath:
C:\Python27\DLLs\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345063.75711
NtWriteFile
|
file_handle:
0x000002f8
filepath:
C:\Python27\DLLs\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345063.94411
NtWriteFile
|
file_handle:
0x000002f8
filepath:
C:\Python27\DLLs\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345064.27211
NtWriteFile
|
file_handle:
0x00000290
filepath:
C:\Python27\DLLs\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345064.42911
NtWriteFile
|
file_handle:
0x00000290
filepath:
C:\Python27\DLLs\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345064.75711
NtWriteFile
|
file_handle:
0x00000270
filepath:
C:\Python27\DLLs\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345065.06911
NtWriteFile
|
file_handle:
0x00000308
filepath:
C:\Python27\DLLs\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345065.19411
NtWriteFile
|
file_handle:
0x00000308
filepath:
C:\Python27\DLLs\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345066.91311
NtWriteFile
|
file_handle:
0x00000308
filepath:
C:\Python27\Doc\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345067.06911
NtWriteFile
|
file_handle:
0x00000308
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345067.21011
NtWriteFile
|
file_handle:
0x00000130
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345067.36611
NtWriteFile
|
file_handle:
0x00000130
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345067.50711
NtWriteFile
|
file_handle:
0x00000130
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345067.67911
NtWriteFile
|
file_handle:
0x00000130
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345067.81911
NtWriteFile
|
file_handle:
0x00000130
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345067.96011
NtWriteFile
|
file_handle:
0x00000130
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345068.06911
NtWriteFile
|
file_handle:
0x00000308
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345068.16311
NtWriteFile
|
file_handle:
0x000002e8
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345068.28811
NtWriteFile
|
file_handle:
0x000002e8
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345068.44411
NtWriteFile
|
file_handle:
0x000002e8
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345068.63211
NtWriteFile
|
file_handle:
0x000002e8
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345068.80411
NtWriteFile
|
file_handle:
0x000002e8
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345068.94411
NtWriteFile
|
file_handle:
0x000002e8
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345069.13211
NtWriteFile
|
file_handle:
0x00000308
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345069.22611
NtWriteFile
|
file_handle:
0x00000308
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345069.33511
NtWriteFile
|
file_handle:
0x00000308
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345069.41311
NtWriteFile
|
file_handle:
0x00000308
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345069.49111
NtWriteFile
|
file_handle:
0x00000308
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345069.58511
NtWriteFile
|
file_handle:
0x00000308
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345069.74111
NtWriteFile
|
file_handle:
0x00000308
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345069.81911
NtWriteFile
|
file_handle:
0x00000308
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345069.88211
NtWriteFile
|
file_handle:
0x00000308
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345069.96011
NtWriteFile
|
file_handle:
0x00000308
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345070.06911
NtWriteFile
|
file_handle:
0x00000308
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345070.13211
NtWriteFile
|
file_handle:
0x00000308
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345070.22611
NtWriteFile
|
file_handle:
0x00000308
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345070.31911
NtWriteFile
|
file_handle:
0x00000308
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345070.47611
NtWriteFile
|
file_handle:
0x00000308
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345070.63211
NtWriteFile
|
file_handle:
0x00000308
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345070.97611
NtWriteFile
|
file_handle:
0x00000308
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345071.16311
NtWriteFile
|
file_handle:
0x00000308
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|
1619345071.30411
NtWriteFile
|
file_handle:
0x000002f4
filepath:
C:\Python27\include\Recovery_Instructions.html
buffer:
<html>
<style type="text/css">
body {
background-color: #f5f5f5;
}
h1, h3{
text-align: center;
text-transform: uppercase;
font-weight: normal;
}
/*---*/
.tabs1{
display: block;
margin: auto;
}
.tabs1 .head{
text-align: center;
float: top;
padding: 0px;
text-transform: uppercase;
font-weight: normal;
display: block;
background: #81bef7;
color: #DF0101;
font-size: 30px;
}
.tabs1 .identi {
font-size: 10px;
text-align: center;
float: top;
padding: 15px;
display: block;
background: #81bef7;
color: #DFDFDF;
}
.tabs .content {
background: #f5f5f5;
/*text-align: center;*/
color: #000000;
padding: 25px 15px;
font-size: 15px;
font-weight: 400;
line-height: 20px; }
.tabs .content a {
color: #df0130;
font-size: 23px;
font-style: italic;
text-decoration: none;
line-height: 35px; }
.tabs .content .text{
padding: 25px;
line-height: 1.2;
}
</style>
<body>
<div class="tabs1">
<div class="head" ><b>Your personal ID:</b></div>
<div class="identi">
<span style="width:1000px; color: #ffffff; font-size: 10px;">96B15FC03DCA8D175790CC1A893EEB4568E36CF6777F6CE5568ECDD6C33CDC4DC3B8A0AEBE17D5659209E6C658CCE1BE380E6C5350653A8A972180DDF12A276C<br>AF73EB431A73371B04B5BC86AEAACC8E3FC88B2F0E84D9C76161510D333EBD7686343FD08363EBC6A4D72ECCB63DB9C57C7AA9679310D262EB981A91960D<br>69A70480CD61A2D1DA4976232C86AA805C5B4389E7C04A8C9F65D5F80755A928BA67A0B7D9B5C5CA24883A4D8F4BD33CDEC232E5EFAB57377DE59B168050<br>2696BCA82218CA139ED899AD3837F84CF746A6FE76077F43A9DAFE9540482DB1415DAFC5559354C7E40262E301797BE8C3846F42A90AB20A4DF3462C44EC<br>A25F788CBCA026EA628E63C223A27603710293A1DDF2CABDE3C276BA5C79066F5199B66174620070248310D761B7E4DE7AA3667D4273B71A26A82665E0A1<br>D468573772BFA7618599E04F5124F8B0FAD9B7D6DB0052484E499F049C2E5E400C836E66FE8027CA345FCF44A91BB58CD7077E46091938E100DDCA98E33E<br>015E73596ADADAD1533B831EEDAF489F1FCC1316E4494C9F161C4768FE5F449AB8BE1243B39CF3CD885429DB86B7995E0957715D83511FAEB69A44C7225D<br>07D1C95F152B367363080F26DA65A2CF7CE7FCA38622B3BBCEDD3CCB76AB3B64E6F01FC13FB5E9B4215C6EC3471763678A48FAA7CF7C0180274464B845E5<br>17439641C9A3690410E686D1B601</span> <br>
<!-- !!! dont changing this !!! -->
</div>
</div>
<!-- -->
<div class="tabs">
<!--tab-->
<div class="tab">
<div id="tab-content1" class="content">
<div class="text">
<!--text data -->
<b>/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\</b><br>
<b>ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!</b><br><br>
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES) <br><br>
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE<br>
WILL PERMENANTLY DESTROY YOUR FILE.<br>
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.<br><br>
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE<br>
SOLUTION TO YOUR PROBLEM.<br><br>
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA<br>
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE<br>
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY<br>
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO<br>
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.<br><br>
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL<br>
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES<br>
BACK.<br><br>
<!--text data -->
<hr>
<b>Contact us for price and get decryption software.</b><br><br>
<a href="">http://gvlay6u4g53rxdi5.onion/21-Al9gJCAJ2fd8LgNEdEBLhNUw5QUOgJlP-JVMF20wIlKxlS7OrHBXpCbCONEIVsdhU</a><br>
* Note that this server is available via Tor browser only<br><br>
Follow the instructions to open the link:<br>
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.<br>
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.<br>
3. Now you have Tor browser. In the Tor Browser open "{
offset:
0
|
success
|
0 |
0
|