Program : RogueKiller Anti-Malware Version : 15.6.1.0 x64 : Yes Program Date : Sep 13 2022 Location : C:\Users\Florenci\Desktop\RogueKiller_portable64.exe Premium : No Company : Adlice Software Website : https://www.adlice.com/ Contact : https://adlice.com/contact/ Website : https://adlice.com/download/roguekiller/ Operating System : Windows 10 (10.0.19043) 64-bit 64-bit OS : Yes Startup : 0 WindowsPE : No User : Florenci User is Admin : Yes Date : 2022/09/30 00:36:35 Type : Scan Aborted : No Scan Mode : Standard Duration : 6695 Found items : 6 Total scanned : 78605 Signatures Version : 20220921_071356 Truesight Driver : Yes Updates Count : 4 ************************* Warnings ************************* (27:4621) C:\Windows\System32, LONG_FOLDER_SCAN [+] path : C:\Windows\System32 [+] message : LONG_FOLDER_SCAN [+] int1 : 27 [+] int2 : 4621 ************************* Updates ************************* Google Chrome (32-bit), version 105.0.5195.127 [+] Available Version : 106.0.5249.62 [+] Wow6432 : Yes [+] Portable : No [+] update_location : C:\Program Files (x86)\Google\Chrome\Application OBS Studio (32-bit), version 27.2.4 [+] Available Version : 28.0.2 [+] Wow6432 : Yes [+] Portable : No qBittorrent 4.4.3.1 (32-bit), version 4.4.3.1 [+] Available Version : 4.4.5 [+] Size : 165 MB [+] Wow6432 : Yes [+] Portable : No Opera Stable 91.0.4516.16 (64-bit), version 91.0.4516.16 [+] Available Version : 91.0.4516.20 [+] Wow6432 : No [+] Portable : No [+] update_location : C:\Users\Florenci\AppData\Local\Programs\Opera ************************* Processes ************************* ************************* Modules ************************* ************************* Services ************************* ************************* Scheduled Tasks ************************* [PUP.HackTool (Potentially Malicious)] \KMSpico Automatic Update Scheduler -- "C:\Program Files\KMSpico\KMSUPD.exe" -> Found ************************* Registry ************************* ************************* WMI ************************* ************************* Hosts File ************************* is_too_big : No hosts_file_path : C:\Windows\System32\drivers\etc\hosts ************************* Filesystem ************************* [Adw.SystemCare (Malicious)] (folder) Perform -- C:\Perform -> Found [PUP.PCReviver (Potentially Malicious)] (folder) ReviverSoft -- C:\Program Files\ReviverSoft -> Found ************************* Web Browsers ************************* >>>>>> Firefox Config %%% [PUM.SearchEngine (Potentially Malicious)] browser.search.defaultenginename (C:\Users\Florenci\AppData\Roaming\Mozilla\Firefox\Profiles\h64f6wrq.Florenci-1584453813094\prefs.js) -- Bing Default Search -> Found %%% [PUM.SearchEngine (Potentially Malicious)] browser.search.selectedEngine (C:\Users\Florenci\AppData\Roaming\Mozilla\Firefox\Profiles\h64f6wrq.Florenci-1584453813094\prefs.js) -- Bing Default Search -> Found %%% [PUM.SearchEngine (Potentially Malicious)] browser.search.selectedEngine (C:\Users\Florenci\AppData\Roaming\Mozilla\Firefox\Profiles\rebb3myb.default-1505571765827\prefs.js) -- Bing Default Search -> Found ************************* Antirootkit *************************