Program : RogueKiller Anti-Malware Version : 15.8.0.0 x64 : No Program Date : Jan 26 2023 Location : E:\Program Files\RogueKiller\RogueKiller.exe Premium : No Company : Adlice Software Website : https://www.adlice.com/ Contact : https://adlice.com/contact/ Website : https://adlice.com/download/roguekiller/ Operating System : Windows 7 (6.1.7601 Service Pack 1) 32-bit 64-bit OS : No Startup : 0 WindowsPE : No User : MAC User is Admin : Yes Date : 2023/03/04 18:56:01 Type : Removal Aborted : No Scan Mode : Standard Duration : 1959 Found items : 17 Total scanned : 46206 Signatures Version : 20230220_124148 Truesight Driver : Yes Updates Count : 7 ************************* Warnings ************************* ************************* Removal ************************* [PUP.Outbyte (Potencjalnie złośliwy)] ObDrvMonPCRSrv [Outbyte Computing Pty Ltd] -- %ProgramFiles%\Outbyte\PC Repair\DrvMonX86.sys -> Zatrzymano [+] scan_what : 0 [+] vendors : PUP.Outbyte [+] Name : ObDrvMonPCRSrv [Outbyte Computing Pty Ltd] [+] value : %ProgramFiles%\Outbyte\PC Repair\DrvMonX86.sys [+] Type : Service [+] file_hash : A6EFE3C11C49327AE47194797F390CDB02EC081C6B8716C0256CE887B1B4FCDF [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 0 [+] status : 3 [+] status_str : Zatrzymano [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.Outbyte (Potencjalnie złośliwy)] HKEY_CLASSES_ROOT\CLSID\{16870BDE-2DD8-43FC-B754-69B9F9F2EC37} -- [%ProgramFiles%\Outbyte\PC Repair\LibraryHelper.Agent.dll] -> Usunięto [+] scan_what : 2 [+] vendors : PUP.Outbyte [+] Name : HKEY_CLASSES_ROOT\CLSID\{16870BDE-2DD8-43FC-B754-69B9F9F2EC37} [+] value : [%ProgramFiles%\Outbyte\PC Repair\LibraryHelper.Agent.dll] [+] Type : Registry [+] file_hash : 989A4D4C7E225B67F1AC598E33C35DC7AD7D9E12DBF206D20097C6271394D514 [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 1 [+] status : 3 [+] status_str : Usunięto [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.Outbyte (Potencjalnie złośliwy)] HKEY_CLASSES_ROOT\CLSID\{93469602-4134-4012-A6BC-F5ED88675F39} -- [%ProgramFiles%\Outbyte\PC Repair\BrowserPluginsHelper.Agent.x32.dll] -> Usunięto [+] scan_what : 2 [+] vendors : PUP.Outbyte [+] Name : HKEY_CLASSES_ROOT\CLSID\{93469602-4134-4012-A6BC-F5ED88675F39} [+] value : [%ProgramFiles%\Outbyte\PC Repair\BrowserPluginsHelper.Agent.x32.dll] [+] Type : Registry [+] file_hash : C6F38032C46FC66227CAFC800E617F4C1801A9D65AB6922AD3ACB6E4C664EF9E [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 2 [+] status : 3 [+] status_str : Usunięto [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.Outbyte (Potencjalnie złośliwy)] HKEY_CLASSES_ROOT\CLSID\{CC89327D-D094-134D-82CB-F989EE26FC51} -- [%ProgramFiles%\Outbyte\PC Repair\ShellExtension.ContextMenu.x32.dll] -> Usunięto [+] scan_what : 2 [+] vendors : PUP.Outbyte [+] Name : HKEY_CLASSES_ROOT\CLSID\{CC89327D-D094-134D-82CB-F989EE26FC51} [+] value : [%ProgramFiles%\Outbyte\PC Repair\ShellExtension.ContextMenu.x32.dll] [+] Type : Registry [+] file_hash : 8037EBF087207684B5E2F961EFB94FA965706B414CD1AB9E1C01A72A406CF632 [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 3 [+] status : 3 [+] status_str : Usunięto [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.Outbyte (Potencjalnie złośliwy)] HKEY_LOCAL_MACHINE\Software\Outbyte -- -> Usunięto [+] scan_what : 2 [+] vendors : PUP.Outbyte [+] Name : HKEY_LOCAL_MACHINE\Software\Outbyte [+] Type : Registry [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 4 [+] status : 3 [+] status_str : Usunięto [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.Outbyte (Potencjalnie złośliwy)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\ObDrvMonPCRSrv -- [%ProgramFiles%\Outbyte\PC Repair\DrvMonX86.sys] -> Usunięto [+] scan_what : 2 [+] vendors : PUP.Outbyte [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet001\Services\ObDrvMonPCRSrv [+] value : [%ProgramFiles%\Outbyte\PC Repair\DrvMonX86.sys] [+] Type : Registry [+] file_hash : A6EFE3C11C49327AE47194797F390CDB02EC081C6B8716C0256CE887B1B4FCDF [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 5 [+] status : 3 [+] status_str : Usunięto [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.Outbyte (Potencjalnie złośliwy)] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\ObDrvMonPCRSrv -- [%ProgramFiles%\Outbyte\PC Repair\DrvMonX86.sys] -> Usunięto [+] scan_what : 2 [+] vendors : PUP.Outbyte [+] Name : HKEY_LOCAL_MACHINE\System\ControlSet002\Services\ObDrvMonPCRSrv [+] value : [%ProgramFiles%\Outbyte\PC Repair\DrvMonX86.sys] [+] Type : Registry [+] file_hash : A6EFE3C11C49327AE47194797F390CDB02EC081C6B8716C0256CE887B1B4FCDF [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 6 [+] status : 3 [+] status_str : Usunięto [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [Tr.Gen (Złośliwy)] found.000 -- %SystemDrive%\found.000 -> Usunięto [+] scan_what : 1 [+] vendors : Tr.Gen [+] Name : found.000 [+] value : %SystemDrive%\found.000 [+] Type : File/Folder [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 7 [+] status : 3 [+] status_str : Usunięto [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.Outbyte (Potencjalnie złośliwy)] PC Repair.lnk -- %USERPROFILE%\Desktop\PC Repair.lnk (lnk => E:\PROGRA~1\Outbyte\PCREPA~1\PCRepair.exe []) -> Usunięto [+] scan_what : 1 [+] vendors : PUP.Outbyte [+] Name : PC Repair.lnk [+] value : %USERPROFILE%\Desktop\PC Repair.lnk (lnk => E:\PROGRA~1\Outbyte\PCREPA~1\PCRepair.exe []) [+] Type : File/Folder [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 8 [+] status : 3 [+] status_str : Usunięto [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.Outbyte (Potencjalnie złośliwy)] Outbyte -- %programdata%\Microsoft\Windows\Start Menu\Programs\Outbyte -> Usunięto [+] scan_what : 1 [+] vendors : PUP.Outbyte [+] Name : Outbyte [+] value : %programdata%\Microsoft\Windows\Start Menu\Programs\Outbyte [+] Type : File/Folder [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 9 [+] status : 3 [+] status_str : Usunięto [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.Outbyte (Potencjalnie złośliwy)] Outbyte -- %programdata%\Outbyte -> Usunięto [+] scan_what : 1 [+] vendors : PUP.Outbyte [+] Name : Outbyte [+] value : %programdata%\Outbyte [+] Type : File/Folder [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 10 [+] status : 3 [+] status_str : Usunięto [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [Tr.Gen (Złośliwy)] UBlockPlugin -- %programdata%\UBlockPlugin -> Usunięto [+] scan_what : 1 [+] vendors : Tr.Gen [+] Name : UBlockPlugin [+] value : %programdata%\UBlockPlugin [+] Type : File/Folder [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 11 [+] status : 3 [+] status_str : Usunięto [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [Tr.Gen (Złośliwy)] z Before install v4.60.2161 [2019.12.08 20-57-29].zip -- %ProgramFiles%\AIMP\!Backup\z Before install v4.60.2161 [2019.12.08 20-57-29].zip -> Usunięto [+] scan_what : 1 [+] vendors : Tr.Gen [+] Name : z Before install v4.60.2161 [2019.12.08 20-57-29].zip [+] value : %ProgramFiles%\AIMP\!Backup\z Before install v4.60.2161 [2019.12.08 20-57-29].zip [+] Type : File/Folder [+] file_hash : 1AFF64C0AC00DD35DEE26239391494EDFC3D8C7793721439BC14A1E27C95CA3D [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 2 [+] id : 12 [+] status : 3 [+] status_str : Usunięto [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.Outbyte (Potencjalnie złośliwy)] Outbyte -- %ProgramFiles%\Outbyte -> Usunięto [+] scan_what : 1 [+] vendors : PUP.Outbyte [+] Name : Outbyte [+] value : %ProgramFiles%\Outbyte [+] Type : File/Folder [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 13 [+] status : 3 [+] status_str : Usunięto [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.AutoIt.Gen (Potencjalnie złośliwy)] memBoost.exe -- %USERPROFILE%\Desktop\memboost_1959\memBoost.exe -> Usunięto [+] scan_what : 1 [+] vendors : PUP.AutoIt.Gen [+] Name : memBoost.exe [+] value : %USERPROFILE%\Desktop\memboost_1959\memBoost.exe [+] Type : File/Folder [+] file_hash : 8804538E7F5D2A86237DBC1563C4DD633365B5052DBF262A7A85C1C48C6CFE64 [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 14 [+] status : 3 [+] status_str : Usunięto [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0 [PUP.Outbyte (Potencjalnie złośliwy)] PC Repair.lnk -- %USERPROFILE%\Desktop\PC Repair.lnk (lnk => E:\PROGRA~1\Outbyte\PCREPA~1\PCRepair.exe []) -> Wykryto [+] scan_what : 1 [+] vendors : PUP.Outbyte [+] Name : PC Repair.lnk [+] value : %USERPROFILE%\Desktop\PC Repair.lnk (lnk => E:\PROGRA~1\Outbyte\PCREPA~1\PCRepair.exe []) [+] Type : File/Folder [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 15 [+] status : 1 [+] status_str : Wykryto [+] removed : No [+] status_choice : 2 [+] malpe_score : 0 [PUP.AutoIt.Gen (Potencjalnie złośliwy)] memboost_1959.zip -- %USERPROFILE%\Downloads\Memory Booster\memboost_1959.zip -> Usunięto [+] scan_what : 1 [+] vendors : PUP.AutoIt.Gen [+] Name : memboost_1959.zip [+] value : %USERPROFILE%\Downloads\Memory Booster\memboost_1959.zip [+] Type : File/Folder [+] file_hash : 355E7D3D0E021084B10C6D870A00ADB42409B9FA0F8B953AE07027CEE074257A [+] file_vtscore : 0 [+] file_vttotal : 0 [+] is_malicious : Yes [+] detection_level : 3 [+] id : 16 [+] status : 3 [+] status_str : Usunięto [+] removed : Yes [+] status_choice : 2 [+] malpe_score : 0