Guest User

Untitled

a guest
May 28th, 2019
264
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. RogueKiller Anti-Malware V13.2.1.0 (x64) [May 22 2019] (Free) by Adlice Software
  2. mail : https://adlice.com/contact/
  3. Website : https://adlice.com/download/roguekiller/
  4. Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits
  5. Started in : Normal mode
  6. User : xxx [Administrator]
  7. Started from : C:\Users\xxx\Downloads\RogueKiller_portable64.exe
  8. Signatures : 20190528_070642, Driver : Loaded
  9. Mode : Standard Scan, Delete -- Date : 2019/05/28 21:39:25 (Duration : 00:17:17)
  10.  
  11. ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Delete ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
  12. [PUP.Gen1 (Potentially Malicious)] \{0D6C97DB-FFB4-47F7-9302-5140508DCAE0} -- C:\Windows\system32\pcalua.exe (-a C:\Users\xxx\AppData\Roaming\istartsurf\UninstallManager.exe -c -ptid=cor) -> Deleted
  13. [PUP.Gen1 (Potentially Malicious)] HKEY_USERS\S-1-5-21-614731021-3141606484-428700027-1000\Software\OCS -- -> Deleted
  14. [PUP.Softsinn (Potentially Malicious)] HKEY_USERS\S-1-5-21-614731021-3141606484-428700027-1000\Software\Softsinn -- -> Deleted
  15. [Suspicious.Path (Potentially Malicious)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{86B0F990-31A3-430D-85BA-13C23F3761C0}C:\users\xxx\appdata\local\fivem\fivem.exe -- [%localappdata%\FiveM\FiveM.exe] -> Deleted
  16. [Suspicious.Path (Potentially Malicious)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{CADDBEB0-8594-4A0F-9FC3-BCC98BAD1086}C:\users\xxx\appdata\local\fivem\fivem.exe -- [%localappdata%\FiveM\FiveM.exe] -> Deleted
  17. [Suspicious.Path (Potentially Malicious)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{39183A36-524C-41AF-973E-37F673EDC9CD}C:\users\xxx\appdata\roaming\gameranger\gameranger\gameranger.exe -- [%_xxx_appdata%\gameranger\gameranger\gameranger.exe] -> Deleted
  18. [Suspicious.Path (Potentially Malicious)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{4ACA1568-1362-4570-85EA-AD4C52E012C1}C:\users\xxx\appdata\roaming\gameranger\gameranger\gameranger.exe -- [%_xxx_appdata%\gameranger\gameranger\gameranger.exe] -> Deleted
  19. [Suspicious.Path (Potentially Malicious)] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{86B0F990-31A3-430D-85BA-13C23F3761C0}C:\users\xxx\appdata\local\fivem\fivem.exe -- [%localappdata%\FiveM\FiveM.exe] -> Deleted
  20. [Suspicious.Path (Potentially Malicious)] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{CADDBEB0-8594-4A0F-9FC3-BCC98BAD1086}C:\users\xxx\appdata\local\fivem\fivem.exe -- [%localappdata%\FiveM\FiveM.exe] -> Deleted
  21. [Suspicious.Path (Potentially Malicious)] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{4ACA1568-1362-4570-85EA-AD4C52E012C1}C:\users\xxx\appdata\roaming\gameranger\gameranger\gameranger.exe -- [%_xxx_appdata%\gameranger\gameranger\gameranger.exe] -> Deleted
  22. [Suspicious.Path (Potentially Malicious)] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{39183A36-524C-41AF-973E-37F673EDC9CD}C:\users\xxx\appdata\roaming\gameranger\gameranger\gameranger.exe -- [%_xxx_appdata%\gameranger\gameranger\gameranger.exe] -> Deleted
  23. [Root.Wajam (Malicious)] NTZhZTA0ZT [technologiejarbon.com] -- %SystemRoot%\System32\drivers\NTZhZTA0ZT -> Deleted
  24. [PUP.OnlineIO (Potentially Malicious)] AdvinstAnalytics -- %localappdata%\AdvinstAnalytics -> Deleted
  25. [Spy.Socelars (Malicious)] App -- %localappdata%\App -> Deleted
RAW Paste Data