diff --git a/nxc/modules/powershell_history.py b/nxc/modules/powershell_history.py
index ce42b76ba..5e897cc8d 100644
--- a/nxc/modules/powershell_history.py
+++ b/nxc/modules/powershell_history.py
@@ -37,9 +37,7 @@ def on_admin_login(self, context, connection):
                             connection.conn.getFile("C$", file_path, buf.write)
                             buf.seek(0)
                             file_content = buf.read().decode("utf-8", errors="ignore")
-                            # Use temporary lowercase version for searching
-                            file_content_lower = file_content.lower()
-                            keywords = [keyword.upper() for keyword in self.sensitive_keywords if keyword.lower() in file_content_lower]
+                            keywords = [keyword.upper() for keyword in self.sensitive_keywords if keyword.lower() in file_content.lower()]
                             if len(keywords):
                                 context.log.highlight(f"C:\\{file_path} [ {' '.join(keywords)} ]")
                             else: