Technical Information
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] 'Malwarebytes' Anti-Malware' = '%ProgramFiles%\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent'
- '<SYSTEM32>\regsvr32.exe' /s "%ProgramFiles%\Malwarebytes' Anti-Malware\ssubtmr6.dll"
- '<SYSTEM32>\regsvr32.exe' /s "%ProgramFiles%\Malwarebytes' Anti-Malware\vbalsgrid6.ocx"
- '%ProgramFiles%\Malwarebytes' Anti-Malware\mbam.exe' /updated /errorsilent
- '%ProgramFiles%\Malwarebytes' Anti-Malware\mbamgui.exe' /uninstall
- '%TEMP%\7ZipSfx.000\malwarebytes.exe' /VERYSILENT /SUPPRESSMSGBOXES /NORESTART /SP-
- '%TEMP%\is-D2N2I.tmp\malwarebytes.tmp' /SL5="$30092,9041948,54272,%TEMP%\7ZipSfx.000\malwarebytes.exe" /VERYSILENT /SUPPRESSMSGBOXES /NORESTART /SP-
- '<SYSTEM32>\regsvr32.exe' /s "%ProgramFiles%\Malwarebytes' Anti-Malware\mbamext.dll"
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-H5SNT.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-QJOBT.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-2R67O.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-4521O.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-2MPA8.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-QAH0A.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-0NCB8.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-SSO56.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-9NSS6.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-6NILI.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-7LK50.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-21GLU.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-6DIBA.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-9C2VF.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-GH16O.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-SEB77.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-BIQ61.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-AENI4.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-J4EH7.tmp
- %ALLUSERSPROFILE%\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes' Anti-Malware.lnk
- %ALLUSERSPROFILE%\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes' Anti-Malware Help.lnk
- <DRIVERS>\is-EJI38.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\is-STGAS.tmp
- %ALLUSERSPROFILE%\Start Menu\Programs\Malwarebytes' Anti-Malware\Uninstall Malwarebytes' Anti-Malware.lnk
- %ProgramFiles%\Malwarebytes' Anti-Malware\unins000.dat
- %TEMP%\~DF4D71.tmp
- %ALLUSERSPROFILE%\Desktop\Malwarebytes' Anti-Malware.lnk
- %ProgramFiles%\Malwarebytes' Anti-Malware\unins000.msg
- %ALLUSERSPROFILE%\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\is-8VSCH.tmp
- %ALLUSERSPROFILE%\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\is-U4EEJ.tmp
- %ALLUSERSPROFILE%\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\is-7T0RB.tmp
- %ALLUSERSPROFILE%\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\is-309B5.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\is-TVF15.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\is-QGRQ1.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\is-7OITC.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\is-UBP77.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\is-AKOJQ.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\is-E54KM.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\mbamext.dll
- <DRIVERS>\mbam.sys
- %ProgramFiles%\Malwarebytes' Anti-Malware\is-JTUCT.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\is-132KU.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\is-TEL3N.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\is-P9KF0.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\is-QRQKD.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\is-7D48T.tmp
- %TEMP%\is-39G87.tmp\_isetup\_RegDLL.tmp
- %TEMP%\is-39G87.tmp\_isetup\_shfoldr.dll
- %TEMP%\7ZipSfx.000\malwarebytes.exe
- %TEMP%\is-D2N2I.tmp\malwarebytes.tmp
- %TEMP%\is-39G87.tmp\mbam.dll
- %ProgramFiles%\Malwarebytes' Anti-Malware\is-MGRHQ.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\is-TS89P.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\is-00CDV.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\is-URA72.tmp
- %ALLUSERSPROFILE%\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\is-CUH1O.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-5UUNU.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-FG6MM.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-TSPIJ.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-H246E.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-2R6KM.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-1HLVB.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-B9AIT.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-M66VR.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-TUK1S.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-6S2IP.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-B4RFL.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-NF72O.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-JN0NS.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-0SEF5.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-U0TVP.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-G96MS.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-945OT.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-4NS71.tmp
- %TEMP%\is-39G87.tmp\mbam.dll
- %TEMP%\~DF4D71.tmp
- %TEMP%\is-39G87.tmp\_isetup\_shfoldr.dll
- %TEMP%\is-39G87.tmp\_isetup\_RegDLL.tmp
- %ProgramFiles%\Malwarebytes' Anti-Malware\mbamext-32.dll
- %ProgramFiles%\Malwarebytes' Anti-Malware\mbam-filter-32.sys
- %ProgramFiles%\Malwarebytes' Anti-Malware\mbam-ssdt-32.sys
- %ProgramFiles%\Malwarebytes' Anti-Malware\mbamext-64.dll
- %ProgramFiles%\Malwarebytes' Anti-Malware\mbam-filter-64.sys
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-4521O.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\romanian.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-2R67O.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\portuguesePT.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-SEB77.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\portugueseBR.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-H5SNT.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\russian.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-SSO56.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\slovenian.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-2MPA8.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\slovak.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-QJOBT.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\serbian.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-GH16O.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\polish.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-6NILI.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\korean.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-6DIBA.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\italian.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-21GLU.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\hungarian.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-7LK50.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\latvian.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-AENI4.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\norwegian.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-BIQ61.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\macedonian.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-9C2VF.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\lithuanian.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\is-AKOJQ.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\mbamnet.dll
- from %ProgramFiles%\Malwarebytes' Anti-Malware\is-UBP77.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\mbamcore.dll
- from %ProgramFiles%\Malwarebytes' Anti-Malware\is-TVF15.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\mbam.dll
- from %ProgramFiles%\Malwarebytes' Anti-Malware\is-QGRQ1.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\ssubtmr6.dll
- from %ProgramFiles%\Malwarebytes' Anti-Malware\is-STGAS.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\mbamservice.exe
- from <DRIVERS>\is-EJI38.tmp to <DRIVERS>\mbamswissarmy.sys
- from %ProgramFiles%\Malwarebytes' Anti-Malware\is-7OITC.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\vbalsgrid6.ocx
- from %ALLUSERSPROFILE%\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\is-U4EEJ.tmp to %ALLUSERSPROFILE%\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\local.conf
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-0NCB8.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\turkish.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-QAH0A.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\swedish.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-9NSS6.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\spanish.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-J4EH7.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\vietnamese.lng
- from %ALLUSERSPROFILE%\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\is-8VSCH.tmp to %ALLUSERSPROFILE%\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\news.conf
- from %ALLUSERSPROFILE%\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\is-309B5.tmp to %ALLUSERSPROFILE%\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\config.conf
- from %ALLUSERSPROFILE%\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\is-7T0RB.tmp to %ALLUSERSPROFILE%\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Configuration\build.conf
- from %ProgramFiles%\Malwarebytes' Anti-Malware\is-P9KF0.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\changes.rtf
- from %ProgramFiles%\Malwarebytes' Anti-Malware\is-TEL3N.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\license.txt
- from %ProgramFiles%\Malwarebytes' Anti-Malware\is-7D48T.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\mbam.chm
- from %ALLUSERSPROFILE%\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\is-CUH1O.tmp to %ALLUSERSPROFILE%\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\rules.ref
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-6S2IP.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\bosnian.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-JN0NS.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\belarusian.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-NF72O.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\arabic.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\is-QRQKD.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\mbamgui.exe
- from %ProgramFiles%\Malwarebytes' Anti-Malware\is-MGRHQ.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\mbam-filter-32.sys
- from %ProgramFiles%\Malwarebytes' Anti-Malware\is-URA72.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\mbam-ssdt-32.sys
- from %ProgramFiles%\Malwarebytes' Anti-Malware\is-00CDV.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\unins000.exe
- from %ProgramFiles%\Malwarebytes' Anti-Malware\is-TS89P.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\mbam-filter-64.sys
- from %ProgramFiles%\Malwarebytes' Anti-Malware\is-132KU.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\mbam.exe
- from %ProgramFiles%\Malwarebytes' Anti-Malware\is-E54KM.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\mbamext-64.dll
- from %ProgramFiles%\Malwarebytes' Anti-Malware\is-JTUCT.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\mbamext-32.dll
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-2R6KM.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\finnish.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-FG6MM.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\estonian.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-5UUNU.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\english.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-M66VR.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\french.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-B9AIT.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\hebrew.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-1HLVB.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\greek.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-TUK1S.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\german.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-H246E.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\dutch.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-945OT.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\chineseSI.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-0SEF5.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\catalan.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-B4RFL.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\bulgarian.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-4NS71.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\chineseTR.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-TSPIJ.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\danish.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-G96MS.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\czech.lng
- from %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\is-U0TVP.tmp to %ProgramFiles%\Malwarebytes' Anti-Malware\Languages\croatian.lng
- ClassName: 'Shell_TrayWnd' WindowName: ''