Ran Rogue Killer and Found Pickerhost.exe

February 4, 2019 at 15:13:22
Specs: Window 10, Intel i5
Ran Rogue Killer and Found Pickerhost.exe. Here are the logs. Should I be worried?

RogueKiller Anti-Malware V13.1.4.0 (x64) [Feb 4 2019] (Free) by Adlice Software
mail : https://adlice.com/contact/
Website : https://adlice.com/download/rogueki...
Operating System : Windows 10 (10.0.17134) 64 bits
Started in : Normal mode
User : Bangk [Administrator]
Started from : C:\Program Files\RogueKiller\RogueKiller64.exe
Signatures : 20190204_072850, Driver : Loaded
Mode : Standard Scan, Scan -- Date : 2019/02/04 15:17:31 (Duration : 00:18:36)
Switches : -refid 3

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Processes ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
[Proc.Hidden (Malicious)] PickerHost.exe (14324) -- C:\Windows\System32\PickerHost.exe -> Found

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Process Modules ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Services ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Tasks ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Registry ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ WMI ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Hosts File ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Files ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Web browsers ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤


# -------------------------------
# Malwarebytes AdwCleaner 7.2.7.0
# -------------------------------
# Build: 01-30-2019
# Database: 2019-01-31.3 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 02-04-2019
# Duration: 00:00:36
# OS: Windows 10 Home
# Scanned: 31793
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########

#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 02-04-2019
# Duration: 00:00:10
# OS: Windows 10 Home
# Cleaned: 0
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1250 octets] - [04/02/2019 15:52:26]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########


See More: Ran Rogue Killer and Found Pickerhost.exe

Reply ↓  Report •

#1
February 4, 2019 at 15:29:34
Pull up the file's details in Windows Explorer. Is the file signed by Microsoft? If so, your anti-malware tool sucks.

How To Ask Questions The Smart Way


Reply ↓  Report •

#2
February 4, 2019 at 20:32:14
From File.net, a Microsoft partner:

"PickerHost.exe file information

The process known as File Picker UI Host belongs to software Microsoft Windows Operating System by Microsoft (www.microsoft.com).

Description: The original PickerHost.exe is an important part of Windows and rarely causes problems. PickerHost.exe is located in the C:\Windows\System32 folder. Known file sizes on Windows 10/8/7/XP are 97,664 bytes (50% of all occurrences) or 84,416 bytes. https://www.file.net/process/picker...
PickerHost.exe is a Windows core system file. It is a trustworthy file from Microsoft. The program is not visible. The file has a digital signature. Therefore the technical security rating is 0% dangerous.
Uninstalling this variant: If you have any problems with PickerHost.exe, you may also do the following:

go to the support area of the Microsoft website
uninstall Microsoft Windows from your computer using the Control Panel applet Uninstall a Program

Recommended: Identify PickerHost.exe related errors

If PickerHost.exe is located in a subfolder of C:\Windows, the security rating is 0% dangerous. The file size is 25,712 bytes. The file is a Windows system file. It is a Microsoft signed file. The program is not visible. The file has a digital signature. PickerHost.exe appears to be a compressed file.

Important: Some malware disguises itself as PickerHost.exe, particularly when not located in the C:\Windows\System32 folder. Therefore, you should check the PickerHost.exe process on your PC to see if it is a threat. We recommend Security Task Manager for verifying your computer's security. This was one of the Top Download Picks of The Washington Post and PC World."

You have to be a little bit crazy to keep you from going insane.


Reply ↓  Report •

#3
February 5, 2019 at 14:21:09
It's located in the right place. Seems like it's a false positive from Rogue Killer - these can happen.

Always pop back and let us know the outcome - thanks


Reply ↓  Report •
Related Solutions


Ask Question