API tools faq
paste
Advertisement
1ZRR4H

ProxyLogon Webshells (Tasklist)

1ZRR4H
Mar 13th, 2021
4,041
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 10.44 KB | None | 0 0
raw download clone embed print report
  1.  
  2. Image Name PID Session Name Session# Mem Usage
  3. ========================= ======== ================ =========== ============
  4. System Idle Process 0 Services 0 4 K
  5. System 4 Services 0 132 K
  6. smss.exe 356 Services 0 200 K
  7. csrss.exe 456 Services 0 2,344 K
  8. csrss.exe 520 Console 1 1,580 K
  9. wininit.exe 528 Services 0 172 K
  10. winlogon.exe 556 Console 1 452 K
  11. services.exe 620 Services 0 8,896 K
  12. lsass.exe 628 Services 0 33,976 K
  13. svchost.exe 684 Services 0 5,708 K
  14. svchost.exe 728 Services 0 5,516 K
  15. dwm.exe 820 Console 1 2,308 K
  16. svchost.exe 872 Services 0 20,088 K
  17. svchost.exe 912 Services 0 81,596 K
  18. svchost.exe 936 Services 0 8,376 K
  19. svchost.exe 68 Services 0 14,812 K
  20. svchost.exe 660 Services 0 8,856 K
  21. spoolsv.exe 1136 Services 0 2,752 K
  22. winagent.exe 1164 Services 0 25,352 K
  23. svchost.exe 1240 Services 0 6,072 K
  24. BASupSrvcUpdater.exe 1256 Services 0 8,852 K
  25. BASupSrvc.exe 1324 Services 0 25,604 K
  26. mysqld.exe 1416 Services 0 41,928 K
  27. CSBFltSrv.exe 1444 Services 0 1,144 K
  28. CSBUIService-64.exe 1528 Services 0 123,752 K
  29. conhost.exe 1540 Services 0 664 K
  30. svchost.exe 1608 Services 0 4,356 K
  31. epintegrationservice.exe 1636 Services 0 10,060 K
  32. epprotectedservice.exe 1720 Services 0 2,108 K
  33. bdredline.exe 1800 Services 0 7,564 K
  34. epsecurityservice.exe 1852 Services 0 73,608 K
  35. epupdateservice.exe 1932 Services 0 6,796 K
  36. fms.exe 2008 Services 0 8,196 K
  37. g2ax_service.exe 2096 Services 0 2,512 K
  38. hostcontrollerservice.exe 2208 Services 0 25,856 K
  39. inetinfo.exe 2368 Services 0 16,952 K
  40. g2ax_comm_customer.exe 2832 Services 0 7,496 K
  41. updateservice.exe 2144 Services 0 10,628 K
  42. g2ax_system_customer.exe 2388 Services 0 5,516 K
  43. MSExchangeHMHost.exe 2508 Services 0 105,516 K
  44. ForefrontActiveDirectoryC 2304 Services 0 24,896 K
  45. mqsvc.exe 2828 Services 0 2,500 K
  46. SMSvcHost.exe 2924 Services 0 8,200 K
  47. sftracing.exe 1412 Services 0 4,420 K
  48. svchost.exe 3112 Services 0 7,580 K
  49. svchost.exe 3128 Services 0 9,720 K
  50. WMSvc.exe 3160 Services 0 2,428 K
  51. ZCBService.exe 3332 Services 0 1,892 K
  52. ZWCService.exe 3352 Services 0 1,152 K
  53. Microsoft.Exchange.Direct 3416 Services 0 44,396 K
  54. SMSvcHost.exe 3640 Services 0 1,324 K
  55. Microsoft.Exchange.Antisp 3792 Services 0 13,056 K
  56. MSExchangeDagMgmt.exe 3856 Services 0 37,920 K
  57. Microsoft.Exchange.Search 4020 Services 0 70,512 K
  58. noderunner.exe 4048 Services 0 84,672 K
  59. noderunner.exe 2728 Services 0 305,220 K
  60. noderunner.exe 3152 Services 0 29,828 K
  61. noderunner.exe 4188 Services 0 92,932 K
  62. WmiPrvSE.exe 4240 Services 0 17,984 K
  63. WmiPrvSE.exe 4460 Services 0 9,692 K
  64. fmplugin.exe 5220 Services 0 18,336 K
  65. conhost.exe 5196 Services 0 524 K
  66. Microsoft.Exchange.Store. 5880 Services 0 37,720 K
  67. MSExchangeMailboxAssistan 2736 Services 0 133,776 K
  68. MSExchangeMailboxReplicat 5988 Services 0 72,220 K
  69. msexchangerepl.exe 3016 Services 0 53,704 K
  70. Microsoft.Exchange.Servic 4328 Services 0 94,248 K
  71. MSExchangeTransportLogSea 4812 Services 0 42,292 K
  72. umservice.exe 5352 Services 0 36,476 K
  73. scanningprocess.exe 6800 Services 0 31,348 K
  74. scanningprocess.exe 6884 Services 0 31,768 K
  75. scanningprocess.exe 6940 Services 0 52,140 K
  76. w3wp.exe 8920 Services 0 104,172 K
  77. w3wp.exe 4872 Services 0 288,044 K
  78. WebProtection.exe 9012 Services 0 84,480 K
  79. svchost.exe 9096 Services 0 3,136 K
  80. svchost.exe 9420 Services 0 2,684 K
  81. svchost.exe 9512 Services 0 1,956 K
  82. MSExchangeThrottling.exe 9580 Services 0 10,632 K
  83. w3wp.exe 9904 Services 0 99,576 K
  84. VSSVC.exe 3992 Services 0 5,392 K
  85. Microsoft.Exchange.Store. 10620 Services 0 136,260 K
  86. w3wp.exe 10796 Services 0 219,116 K
  87. epconsole.exe 8852 Console 1 920 K
  88. taskhostex.exe 6436 Console 1 2,920 K
  89. TrayIcon.exe 8188 Console 1 13,112 K
  90. g2ax_user_customer.exe 10580 Console 1 3,808 K
  91. explorer.exe 952 Console 1 21,656 K
  92. svchost.exe 11696 Services 0 1,368 K
  93. shutdown.exe 11892 Console 1 632 K
  94. conhost.exe 11904 Console 1 292 K
  95. ManagedAntivirus.exe 11860 Services 0 76,028 K
  96. ServerManager.exe 11992 Console 1 38,564 K
  97. GoogleCrashHandler.exe 11980 Services 0 1,196 K
  98. msdtc.exe 4408 Services 0 1,208 K
  99. GoogleCrashHandler64.exe 12224 Services 0 916 K
  100. jusched.exe 11628 Console 1 7,192 K
  101. BASupSrvcCnfg.exe 9892 Console 1 5,356 K
  102. NetworkManagement.exe 11292 Services 0 54,200 K
  103. w3wp.exe 11984 Services 0 186,108 K
  104. w3wp.exe 4404 Services 0 127,612 K
  105. w3wp.exe 12004 Services 0 107,820 K
  106. w3wp.exe 13240 Services 0 136,544 K
  107. jucheck.exe 8196 Console 1 924 K
  108. w3wp.exe 12484 Services 0 92,084 K
  109. LogonUI.exe 8788 Console 1 1,736 K
  110. MSExchangeSubmission.exe 8636 Services 0 86,196 K
  111. MSExchangeFrontendTranspo 11400 Services 0 129,152 K
  112. MSExchangeTransport.exe 13092 Services 0 27,344 K
  113. EdgeTransport.exe 9848 Services 0 162,380 K
  114. conhost.exe 3464 Services 0 332 K
  115. svchost.exe 9448 Services 0 2,428 K
  116. w3wp.exe 20840 Services 0 100,504 K
  117. cmd.exe 4724 Services 0 948 K
  118. conhost.exe 18624 Services 0 480 K
  119. powershell.exe 4672 Services 0 412 K
  120. Microsoft.Exchange.UM.Cal 17000 Services 0 28,564 K
  121. w3wp.exe 19196 Services 0 257,028 K
  122. MSExchangeDelivery.exe 19336 Services 0 120,060 K
  123. w3wp.exe 6360 Services 0 170,504 K
  124. UMWorkerProcess.exe 21308 Services 0 94,356 K
  125. Microsoft.Exchange.RpcCli 19156 Services 0 85,264 K
  126. w3wp.exe 22388 Services 0 107,980 K
  127. MSExchangeHMWorker.exe 21124 Services 0 386,644 K
  128. conhost.exe 7664 Services 0 2,864 K
  129. Microsoft.Exchange.Diagno 20464 Services 0 121,684 K
  130. cmd.exe 6352 Services 0 1,988 K
  131. conhost.exe 22840 Services 0 3,252 K
  132. tasklist.exe 22668 Services 0 5,944 K
  133. cmd.exe 1348 Services 0 1,988 K
  134. cmd.exe 13728 Services 0 1,988 K
  135. conhost.exe 21676 Services 0 3,220 K
  136. conhost.exe 3620 Services 0 3,232 K
  137. tasklist.exe 16972 Services 0 5,652 K
  138. tasklist.exe 16532 Services 0 5,652 K
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!