Program : RogueKiller Anti-Malware Version : 15.8.0.0 x64 : Yes Program Date : Jan 26 2023 Location : D:\Tools\RogueKiller_portable64.exe Premium : No Company : Adlice Software Website : https://www.adlice.com/ Contact : https://adlice.com/contact/ Website : https://adlice.com/download/roguekiller/ Operating System : Windows 10 (10.0.19045) 64-bit 64-bit OS : Yes Startup : 0 WindowsPE : No User : lukas User is Admin : Yes Date : 2023/02/20 21:58:48 Type : Scan Aborted : No Scan Mode : Standard Duration : 355 Found items : 6 Total scanned : 82377 Signatures Version : 20230220_124148 Truesight Driver : Yes Updates Count : 4 ************************* Warnings ************************* ************************* Updates ************************* Docker Desktop (64-bit), version 4.11.0 [+] Available Version : 4.16.3 [+] Wow6432 : No [+] Portable : No [+] update_location : C:\Program Files\Docker\Docker Git (64-bit), version 2.37.3 [+] Available Version : 2.39.2 [+] Size : 266 MB [+] Wow6432 : No [+] Portable : No [+] update_location : D:\Tools\Programming\Git\ Google Chrome (32-bit), version 110.0.5481.97 [+] Available Version : 110.0.5481.104 [+] Wow6432 : Yes [+] Portable : No [+] update_location : C:\Program Files\Google\Chrome\Application Discord (64-bit), version 1.0.9005 [+] Available Version : 1.0.9010 [+] Size : 78,3 MB [+] Wow6432 : No [+] Portable : No [+] update_location : C:\Users\lukas\AppData\Local\Discord ************************* Processes ************************* ************************* Modules ************************* ************************* Services ************************* ************************* Scheduled Tasks ************************* ************************* Registry ************************* >>>>>> O87 - Firewall %%% [Suspicious.Path (Potencjalnie zBo[liwy)] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{FD14ACC3-A60B-4234-B802-FFBE7B1202A5}C:\users\lukas\appdata\local\faceit\app-1.31.7\faceit.exe -- v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\users\lukas\appdata\local\faceit\app-1.31.7\faceit.exe|Name=faceit.exe|Desc=faceit.exe|Defer=User| (missing) -> Wykryto %%% [Suspicious.Path (Potencjalnie zBo[liwy)] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{11A28510-8BD3-44FA-A577-F6D312A84E14}C:\users\lukas\appdata\local\faceit\app-1.31.7\faceit.exe -- v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\users\lukas\appdata\local\faceit\app-1.31.7\faceit.exe|Name=faceit.exe|Desc=faceit.exe|Defer=User| (missing) -> Wykryto %%% [Suspicious.Path (Potencjalnie zBo[liwy)] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{2BEAFD67-560B-44E9-BA2C-F782DC981463}C:\users\lukas\appdata\local\faceit\app-1.31.9\faceit.exe -- v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\users\lukas\appdata\local\faceit\app-1.31.9\faceit.exe|Name=faceit.exe|Desc=faceit.exe|Defer=User| (missing) -> Wykryto %%% [Suspicious.Path (Potencjalnie zBo[liwy)] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{E8FE3362-ABDD-402A-8417-62B9254087C2}C:\users\lukas\appdata\local\faceit\app-1.31.9\faceit.exe -- v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\users\lukas\appdata\local\faceit\app-1.31.9\faceit.exe|Name=faceit.exe|Desc=faceit.exe|Defer=User| (missing) -> Wykryto %%% [Suspicious.Path (Potencjalnie zBo[liwy)] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{359F7275-8BDA-44CE-B2FE-8207CD3C18AD}C:\users\lukas\appdata\local\faceit\app-1.31.10\faceit.exe -- v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\users\lukas\appdata\local\faceit\app-1.31.10\faceit.exe|Name=faceit.exe|Desc=faceit.exe|Defer=User| (missing) -> Wykryto %%% [Suspicious.Path (Potencjalnie zBo[liwy)] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{09D1AB59-FA55-44C5-A918-07BFB399BB6D}C:\users\lukas\appdata\local\faceit\app-1.31.10\faceit.exe -- v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\users\lukas\appdata\local\faceit\app-1.31.10\faceit.exe|Name=faceit.exe|Desc=faceit.exe|Defer=User| (missing) -> Wykryto ************************* WMI ************************* ************************* Hosts File ************************* is_too_big : No hosts_file_path : C:\Windows\System32\drivers\etc\hosts ************************* Filesystem ************************* ************************* Web Browsers ************************* ************************* Antirootkit *************************