Malwarebytes Malwarebytes Anti-Malware For Home

Detects and removes malware on an infected computer with industry-leading anti-malware, anti-spyware, and anti-rootkit tech. Scans for the newest and most dangerous threats. Safely removes malware.

Version information of Malwarebytes Anti-Malware For Home:


Product version: 2.2.1.1043
Description: Detects and removes malware on an infected computer with industry-leading anti-malware, anti-spyware, and anti-rootkit tech. Scans for the newest and most dangerous threats. Safely removes malware.
URL: https://www.malwarebytes.org/

System Changes

Related Files

  1. 7Z.DLL
  2. FIREFOX.COM
  3. FIREFOX.EXE
  4. FIREFOX.PIF
  5. FIREFOX.SCR
  6. IEXPLORE.EXE
  7. MBAM-CHAMELEON.COM
  8. MBAM-CHAMELEON.EXE
  9. MBAM-CHAMELEON.PIF
  10. MBAM-CHAMELEON.SCR
  11. MBAM-KILLER.EXE
  12. RUNDLL32.EXE
  13. SVCHOST.EXE
  14. WINDOWS.EXE
  15. WINLOGON.EXE
  16. CLOUD-ENUMERATION.DLL
  17. CLOUD.DLL
  18. QGIF.DLL
  19. QICO.DLL
  20. MBAM.DLL
  21. MBAM.EXE
  22. MBAMCORE.DLL
  23. MBAMDOR.EXE
  24. MBAMEXT.DLL
  25. MBAMPT.EXE
  26. MBAMRESEARCH.EXE
  27. MBAMSCHEDULER.EXE
  28. MBAMSERVICE.EXE
  29. MBAMSRV.DLL
  30. MSVCP100.DLL
  31. MSVCR100.DLL
  32. QWINDOWS.DLL
  33. FIXDAMAGE.EXE
  34. QT5CORE.DLL
  35. QT5GUI.DLL
  36. QT5NETWORK.DLL
  37. QT5WIDGETS.DLL
  38. UNINS000.EXE
  39. MBAM.SYS
  40. MBAMCHAMELEON.SYS
  41. MBAMSWISSARMY.SYS

Created Registry Values:

  1. HKLM\Software\Classes\AllFilesystemObjects\shellex\ContextMenuHandlers\MBAMShlExt\: "{57CE581A-0CB6-4266-9CA0-19364C90A0B3}"
  2. HKLM\Software\Classes\CLSID\{57CE581A-0CB6-4266-9CA0-19364C90A0B3}\VersionIndependentProgID\: "MBAMExt.MBAMShlExt"
  3. HKLM\Software\Classes\CLSID\{57CE581A-0CB6-4266-9CA0-19364C90A0B3}\TypeLib\: "{AFF1A83B-6C83-4342-8E68-1648DE06CB65}"
  4. HKLM\Software\Classes\CLSID\{57CE581A-0CB6-4266-9CA0-19364C90A0B3}\ProgID\: "MBAMExt.MBAMShlExt.1"
  5. HKLM\SOFTWARE\CLASSES\CLSID\{57CE581A-0CB6-4266-9CA0-19364C90A0B3}\INPROCSERVER32\: "%PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\MBAMEXT.DLL"
  6. HKLM\Software\Classes\CLSID\{57CE581A-0CB6-4266-9CA0-19364C90A0B3}\InprocServer32\ThreadingModel: "Apartment"
  7. HKLM\Software\Classes\CLSID\{57CE581A-0CB6-4266-9CA0-19364C90A0B3}\: "MBAMShlExt Class"
  8. HKLM\Software\Classes\Folder\shellex\ContextMenuHandlers\MBAMShlExt\: "{57CE581A-0CB6-4266-9CA0-19364C90A0B3}"
  9. HKLM\Software\Classes\Interface\{015FAC74-0374-494A-A02D-316D562C0FCE}\TypeLib\: "{AFF1A83B-6C83-4342-8E68-1648DE06CB65}"
  10. HKLM\Software\Classes\Interface\{015FAC74-0374-494A-A02D-316D562C0FCE}\TypeLib\Version: "1.0"
  11. HKLM\Software\Classes\Interface\{015FAC74-0374-494A-A02D-316D562C0FCE}\ProxyStubClsid32\: "{00020424-0000-0000-C000-000000000046}"
  12. HKLM\Software\Classes\Interface\{015FAC74-0374-494A-A02D-316D562C0FCE}\ProxyStubClsid\: "{00020424-0000-0000-C000-000000000046}"
  13. HKLM\Software\Classes\Interface\{015FAC74-0374-494A-A02D-316D562C0FCE}\: "IMBAMShlExt"
  14. HKLM\SOFTWARE\CLASSES\TYPELIB\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0\0\WIN32\: "%PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\MBAMEXT.DLL"
  15. HKLM\SOFTWARE\CLASSES\TYPELIB\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0\HELPDIR\: "%PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE"
  16. HKLM\Software\Classes\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0\FLAGS\: "0"
  17. HKLM\Software\Classes\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0\: "MBAMExt 1.0 Type Library"
  18. HKLM\Software\Classes\MBAMExt.MBAMShlExt\CurVer\: "MBAMExt.MBAMShlExt.1"
  19. HKLM\Software\Classes\MBAMExt.MBAMShlExt\CLSID\: "{57CE581A-0CB6-4266-9CA0-19364C90A0B3}"
  20. HKLM\Software\Classes\MBAMExt.MBAMShlExt\: "MBAMShlExt Class"
  21. HKLM\Software\Classes\MBAMExt.MBAMShlExt.1\CLSID\: "{57CE581A-0CB6-4266-9CA0-19364C90A0B3}"
  22. HKLM\Software\Classes\MBAMExt.MBAMShlExt.1\: "MBAMShlExt Class"
  23. HKLM\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION\mbam.exe: 0x00002AF8
  24. HKLM\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WARN_ON_SEC_CERT_REV_FAILED\mbam.exe: 0x00000000
  25. HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\MBAM.EXE\: "%PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\MBAM.EXE"
  26. HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\MBAM.EXE\PATH: "%PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE"
  27. HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Malwarebytes Anti-Malware_is1\Inno Setup: Setup Version: "5.5.6 (a)"
  28. HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\MALWAREBYTES ANTI-MALWARE_IS1\INNO SETUP: APP PATH: "%PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE"
  29. HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\MALWAREBYTES ANTI-MALWARE_IS1\INSTALLLOCATION: "%PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\"
  30. HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Malwarebytes Anti-Malware_is1\Inno Setup: Icon Group: "Malwarebytes Anti-Malware"
  31. HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Malwarebytes Anti-Malware_is1\Inno Setup: User: "Administrator"
  32. HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Malwarebytes Anti-Malware_is1\Inno Setup: Selected Tasks: "desktopicon"
  33. HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Malwarebytes Anti-Malware_is1\Inno Setup: Deselected Tasks: ""
  34. HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Malwarebytes Anti-Malware_is1\Inno Setup: Language: "en"
  35. HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Malwarebytes Anti-Malware_is1\DisplayName: "Malwarebytes Anti-Malware version 2.2.1.1043"
  36. HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\MALWAREBYTES ANTI-MALWARE_IS1\DISPLAYICON: "%PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\MBAM.EXE"
  37. HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\MALWAREBYTES ANTI-MALWARE_IS1\UNINSTALLSTRING: ""%PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\UNINS000.EXE""
  38. HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\MALWAREBYTES ANTI-MALWARE_IS1\QUIETUNINSTALLSTRING: ""%PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\UNINS000.EXE" /SILENT"
  39. HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Malwarebytes Anti-Malware_is1\DisplayVersion: "2.2.1.1043"
  40. HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Malwarebytes Anti-Malware_is1\Publisher: "Malwarebytes"
  41. HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Malwarebytes Anti-Malware_is1\URLInfoAbout: "http://www.malwarebytes.org"
  42. HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Malwarebytes Anti-Malware_is1\NoModify: 0x00000001
  43. HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Malwarebytes Anti-Malware_is1\NoRepair: 0x00000001
  44. HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Malwarebytes Anti-Malware_is1\InstallDate: "20160407"
  45. HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Malwarebytes Anti-Malware_is1\MajorVersion: 0x00000002
  46. HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Malwarebytes Anti-Malware_is1\MinorVersion: 0x00000002
  47. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_IPFILTERDRIVER\0000\Service: "IpFilterDriver"
  48. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_IPFILTERDRIVER\0000\Legacy: 0x00000001
  49. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_IPFILTERDRIVER\0000\ConfigFlags: 0x00000000
  50. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_IPFILTERDRIVER\0000\Class: "LegacyDriver"
  51. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_IPFILTERDRIVER\0000\ClassGUID: "{8ECC055D-047F-11D1-A537-0000F8753ED1}"
  52. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_IPFILTERDRIVER\0000\DeviceDesc: "IP Traffic Filter Driver"
  53. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_IPFILTERDRIVER\0000\Capabilities: 0x00000000
  54. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_IPFILTERDRIVER\NextInstance: 0x00000001
  55. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_MBAMPROTECTOR\0000\Service: "MBAMProtector"
  56. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_MBAMPROTECTOR\0000\Legacy: 0x00000001
  57. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_MBAMPROTECTOR\0000\ConfigFlags: 0x00000000
  58. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_MBAMPROTECTOR\0000\Class: "LegacyDriver"
  59. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_MBAMPROTECTOR\0000\ClassGUID: "{8ECC055D-047F-11D1-A537-0000F8753ED1}"
  60. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_MBAMPROTECTOR\0000\DeviceDesc: "MBAMProtector"
  61. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_MBAMPROTECTOR\NextInstance: 0x00000001
  62. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_MBAMSCHEDULER\0000\Service: "MBAMScheduler"
  63. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_MBAMSCHEDULER\0000\Legacy: 0x00000001
  64. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_MBAMSCHEDULER\0000\ConfigFlags: 0x00000000
  65. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_MBAMSCHEDULER\0000\Class: "LegacyDriver"
  66. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_MBAMSCHEDULER\0000\ClassGUID: "{8ECC055D-047F-11D1-A537-0000F8753ED1}"
  67. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_MBAMSCHEDULER\0000\DeviceDesc: "MBAMScheduler"
  68. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_MBAMSCHEDULER\NextInstance: 0x00000001
  69. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_MBAMSERVICE\0000\Service: "MBAMService"
  70. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_MBAMSERVICE\0000\Legacy: 0x00000001
  71. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_MBAMSERVICE\0000\ConfigFlags: 0x00000000
  72. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_MBAMSERVICE\0000\Class: "LegacyDriver"
  73. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_MBAMSERVICE\0000\ClassGUID: "{8ECC055D-047F-11D1-A537-0000F8753ED1}"
  74. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_MBAMSERVICE\0000\DeviceDesc: "MBAMService"
  75. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_MBAMSERVICE\NextInstance: 0x00000001
  76. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_MBAMSWISSARMY\0000\Service: "MBAMSwissArmy"
  77. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_MBAMSWISSARMY\0000\Legacy: 0x00000001
  78. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_MBAMSWISSARMY\0000\ConfigFlags: 0x00000000
  79. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_MBAMSWISSARMY\0000\Class: "LegacyDriver"
  80. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_MBAMSWISSARMY\0000\ClassGUID: "{8ECC055D-047F-11D1-A537-0000F8753ED1}"
  81. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_MBAMSWISSARMY\0000\DeviceDesc: "MBAMSwissArmy"
  82. HKLM\System\CurrentControlSet\Enum\Root\LEGACY_MBAMSWISSARMY\NextInstance: 0x00000001
  83. HKLM\System\CurrentControlSet\Services\MBAMProtector\Instances\MBAMProtector Instance\Altitude: "328800"
  84. HKLM\System\CurrentControlSet\Services\MBAMProtector\Instances\MBAMProtector Instance\Flags: 0x00000000
  85. HKLM\System\CurrentControlSet\Services\MBAMProtector\Security\Security: 01 00 14 80 90 00 00 00 9C 00 00 00 14 00 00 00 30 00 00 00 02 00 1C 00 01 00 00 00 02 80 14 00 FF 01 0F 00 01 01 00 00 00 00 00 01 00 00 00 00 02 00 60 00 04 00 00 00 00 00 14 00 FD 01 02 00 01 01 00 00 00 00 00 05 12 00 00 00 00 00 18 00 FF 01 0F 00 01 02 00 00 00 00 00 05 20 00 00 00 20 02 00 00 00 00 14 00 8D 01 02 00 01 01 00 00 00 00 00 05 0B 00 00 00 00 00 18 00 FD 01 02 00 01 02 00 00 00 00 00 05 20 00 00 00 23 02 00 00 01 01 00 00 00 00 00 05 12 00 00 00 01 01 00 00 00 00 00 05 12 00 00 00
  86. HKLM\System\CurrentControlSet\Services\MBAMProtector\Parameters\PassThruFile: "mbampt.exe"
  87. HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\MBAMPROTECTOR\PARAMETERS\PRODUCTPATH: "%PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE"
  88. HKLM\System\CurrentControlSet\Services\MBAMProtector\Instances\DefaultInstance: "MBAMProtector Instance"
  89. HKLM\System\CurrentControlSet\Services\MBAMProtector\Type: 0x00000002
  90. HKLM\System\CurrentControlSet\Services\MBAMProtector\Start: 0x00000003
  91. HKLM\System\CurrentControlSet\Services\MBAMProtector\ErrorControl: 0x00000001
  92. HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\MBAMPROTECTOR\IMAGEPATH: "\??\%SYSDIR%\DRIVERS\MBAM.SYS"
  93. HKLM\System\CurrentControlSet\Services\MBAMProtector\Group: "FSFilter Anti-Virus"
  94. HKLM\System\CurrentControlSet\Services\MBAMProtector\DependOnService: 'FltMgr'
  95. HKLM\System\CurrentControlSet\Services\MBAMProtector\DependOnGroup: 00
  96. HKLM\System\CurrentControlSet\Services\MBAMScheduler\Security\Security: 01 00 14 80 90 00 00 00 9C 00 00 00 14 00 00 00 30 00 00 00 02 00 1C 00 01 00 00 00 02 80 14 00 FF 01 0F 00 01 01 00 00 00 00 00 01 00 00 00 00 02 00 60 00 04 00 00 00 00 00 14 00 FD 01 02 00 01 01 00 00 00 00 00 05 12 00 00 00 00 00 18 00 FF 01 0F 00 01 02 00 00 00 00 00 05 20 00 00 00 20 02 00 00 00 00 14 00 8D 01 02 00 01 01 00 00 00 00 00 05 0B 00 00 00 00 00 18 00 FD 01 02 00 01 02 00 00 00 00 00 05 20 00 00 00 23 02 00 00 01 01 00 00 00 00 00 05 12 00 00 00 01 01 00 00 00 00 00 05 12 00 00 00
  97. HKLM\System\CurrentControlSet\Services\MBAMScheduler\Type: 0x00000010
  98. HKLM\System\CurrentControlSet\Services\MBAMScheduler\Start: 0x00000002
  99. HKLM\System\CurrentControlSet\Services\MBAMScheduler\ErrorControl: 0x00000001
  100. HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\MBAMSCHEDULER\IMAGEPATH: ""%PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\MBAMSCHEDULER.EXE""
  101. HKLM\System\CurrentControlSet\Services\MBAMScheduler\ObjectName: "LocalSystem"
  102. HKLM\System\CurrentControlSet\Services\MBAMScheduler\Description: "Malwarebytes Anti-Malware scheduler"
  103. HKLM\System\CurrentControlSet\Services\MBAMService\Security\Security: 01 00 14 80 90 00 00 00 9C 00 00 00 14 00 00 00 30 00 00 00 02 00 1C 00 01 00 00 00 02 80 14 00 FF 01 0F 00 01 01 00 00 00 00 00 01 00 00 00 00 02 00 60 00 04 00 00 00 00 00 14 00 FD 01 02 00 01 01 00 00 00 00 00 05 12 00 00 00 00 00 18 00 FF 01 0F 00 01 02 00 00 00 00 00 05 20 00 00 00 20 02 00 00 00 00 14 00 8D 01 02 00 01 01 00 00 00 00 00 05 0B 00 00 00 00 00 18 00 FD 01 02 00 01 02 00 00 00 00 00 05 20 00 00 00 23 02 00 00 01 01 00 00 00 00 00 05 12 00 00 00 01 01 00 00 00 00 00 05 12 00 00 00
  104. HKLM\System\CurrentControlSet\Services\MBAMService\Type: 0x00000010
  105. HKLM\System\CurrentControlSet\Services\MBAMService\Start: 0x00000002
  106. HKLM\System\CurrentControlSet\Services\MBAMService\ErrorControl: 0x00000001
  107. HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\MBAMSERVICE\IMAGEPATH: ""%PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\MBAMSERVICE.EXE""
  108. HKLM\System\CurrentControlSet\Services\MBAMService\DependOnService: 'MBAMProtector'
  109. HKLM\System\CurrentControlSet\Services\MBAMService\DependOnGroup: 00
  110. HKLM\System\CurrentControlSet\Services\MBAMService\ObjectName: "LocalSystem"
  111. HKLM\System\CurrentControlSet\Services\MBAMService\Description: "Malwarebytes Anti-Malware service"
  112. HKLM\System\CurrentControlSet\Services\MBAMSwissArmy\Instances\MBAMSwissArmy Instance\Flags: 0x00000000
  113. HKLM\System\CurrentControlSet\Services\MBAMSwissArmy\Security\Security: 01 00 14 80 90 00 00 00 9C 00 00 00 14 00 00 00 30 00 00 00 02 00 1C 00 01 00 00 00 02 80 14 00 FF 01 0F 00 01 01 00 00 00 00 00 01 00 00 00 00 02 00 60 00 04 00 00 00 00 00 14 00 FD 01 02 00 01 01 00 00 00 00 00 05 12 00 00 00 00 00 18 00 FF 01 0F 00 01 02 00 00 00 00 00 05 20 00 00 00 20 02 00 00 00 00 14 00 8D 01 02 00 01 01 00 00 00 00 00 05 0B 00 00 00 00 00 18 00 FD 01 02 00 01 02 00 00 00 00 00 05 20 00 00 00 23 02 00 00 01 01 00 00 00 00 00 05 12 00 00 00 01 01 00 00 00 00 00 05 12 00 00 00
  114. HKLM\System\CurrentControlSet\Services\MBAMSwissArmy\Instances\DefaultInstance: "MBAMSwissArmy Instance"
  115. HKLM\System\CurrentControlSet\Services\MBAMSwissArmy\Type: 0x00000002
  116. HKLM\System\CurrentControlSet\Services\MBAMSwissArmy\Start: 0x00000003
  117. HKLM\System\CurrentControlSet\Services\MBAMSwissArmy\ErrorControl: 0x00000001
  118. HKLM\System\CurrentControlSet\Services\MBAMSwissArmy\Tag: 0x00000004
  119. HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\MBAMSWISSARMY\IMAGEPATH: "\??\%SYSDIR%\DRIVERS\MBAMSWISSARMY.SYS"
  120. HKLM\System\CurrentControlSet\Services\MBAMSwissArmy\DisplayName: "MBAMSwissArmy"
  121. HKLM\System\CurrentControlSet\Services\MBAMSwissArmy\Group: "FSFilter Activity Monitor"

Modified Registry Values:

  • (-) HKLM\Software\Microsoft\DirectDraw\MostRecentApplication\Name: "flashplayer19pp_ha_install.exe"
  • (+) HKLM\Software\Microsoft\DirectDraw\MostRecentApplication\Name: "mbam.exe"
  • (-) HKLM\Software\Microsoft\DirectDraw\MostRecentApplication\ID: 0x5602682F
  • (+) HKLM\Software\Microsoft\DirectDraw\MostRecentApplication\ID: 0x56E065B4

Created Folders:

  1. %COMMON APPDATA%\MALWAREBYTES
  2. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE
  3. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\CONFIGURATION
  4. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\CONFIGURATION\RESTORE
  5. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\LOGS
  6. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\QUARANTINE
  7. %ALLUSERSPROFILE%\START MENU\PROGRAMS\MALWAREBYTES ANTI-MALWARE
  8. %ALLUSERSPROFILE%\START MENU\PROGRAMS\MALWAREBYTES ANTI-MALWARE\TOOLS
  9. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE
  10. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\CHAMELEON
  11. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\CHAMELEON\WINDOWS
  12. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\IMAGEFORMATS
  13. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES
  14. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\PLATFORMS
  15. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\PLUGINS

Created Files:

  1. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\ACTIONS.REF
  2. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\AKADOMAINS.REF
  3. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\AKAIPS.REF
  4. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\CONFIGURATION\BUILD.CONF
  5. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\CONFIGURATION\DATABASE.CONF
  6. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\CONFIGURATION\GATEKEEPER.CONF
  7. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\CONFIGURATION\LICENSE.CONF
  8. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\CONFIGURATION\MANIFEST.CONF
  9. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\CONFIGURATION\MARKETING.CONF
  10. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\CONFIGURATION\NET.CONF
  11. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\CONFIGURATION\NOTIFICATIONS.CONF
  12. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\CONFIGURATION\RESTORE\BUILD.CONF
  13. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\CONFIGURATION\RESTORE\DATABASE.CONF
  14. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\CONFIGURATION\RESTORE\GATEKEEPER.CONF
  15. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\CONFIGURATION\RESTORE\LICENSE.CONF
  16. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\CONFIGURATION\RESTORE\MANIFEST.CONF
  17. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\CONFIGURATION\RESTORE\MARKETING.CONF
  18. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\CONFIGURATION\RESTORE\NET.CONF
  19. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\CONFIGURATION\RESTORE\NOTIFICATIONS.CONF
  20. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\CONFIGURATION\RESTORE\SCHEDULER.CONF
  21. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\CONFIGURATION\RESTORE\SETTINGS.CONF
  22. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\CONFIGURATION\RESTORE\STATISTICS.CONF
  23. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\CONFIGURATION\SCHEDULER.CONF
  24. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\CONFIGURATION\SETTINGS.CONF
  25. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\CONFIGURATION\STATISTICS.CONF
  26. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\DOMAINS.REF
  27. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\EXCLUSIONS.DAT
  28. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\IPS.REF
  29. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\LOGS\PROTECTION-LOG-2016-04-07.XML
  30. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\RULES.REF
  31. %COMMON APPDATA%\MALWAREBYTES\MALWAREBYTES ANTI-MALWARE\SWISSARMY.REF
  32. %ALLUSERSPROFILE%\DESKTOP\MALWAREBYTES ANTI-MALWARE.LNK
  33. %ALLUSERSPROFILE%\START MENU\PROGRAMS\MALWAREBYTES ANTI-MALWARE\MALWAREBYTES ANTI-MALWARE.LNK
  34. %ALLUSERSPROFILE%\START MENU\PROGRAMS\MALWAREBYTES ANTI-MALWARE\TOOLS\MALWAREBYTES ANTI-MALWARE CHAMELEON.LNK
  35. %ALLUSERSPROFILE%\START MENU\PROGRAMS\MALWAREBYTES ANTI-MALWARE\UNINSTALL MALWAREBYTES ANTI-MALWARE.LNK
  36. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\7Z.DLL
  37. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\CHAMELEON\WINDOWS\CHAMELEON.CHM
  38. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\CHAMELEON\WINDOWS\FIREFOX.COM
  39. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\CHAMELEON\WINDOWS\FIREFOX.EXE
  40. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\CHAMELEON\WINDOWS\FIREFOX.PIF
  41. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\CHAMELEON\WINDOWS\FIREFOX.SCR
  42. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\CHAMELEON\WINDOWS\IEXPLORE.EXE
  43. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\CHAMELEON\WINDOWS\MBAM-CHAMELEON.COM
  44. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\CHAMELEON\WINDOWS\MBAM-CHAMELEON.EXE
  45. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\CHAMELEON\WINDOWS\MBAM-CHAMELEON.PIF
  46. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\CHAMELEON\WINDOWS\MBAM-CHAMELEON.SCR
  47. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\CHAMELEON\WINDOWS\MBAM-KILLER.EXE
  48. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\CHAMELEON\WINDOWS\RUNDLL32.EXE
  49. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\CHAMELEON\WINDOWS\SVCHOST.EXE
  50. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\CHAMELEON\WINDOWS\WINDOWS.EXE
  51. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\CHAMELEON\WINDOWS\WINLOGON.EXE
  52. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\CHANGES.TXT
  53. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\CLOUD-ENUMERATION.DLL
  54. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\CLOUD.DLL
  55. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\IMAGEFORMATS\QGIF.DLL
  56. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\IMAGEFORMATS\QICO.DLL
  57. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_AR.QM
  58. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_BG.QM
  59. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_CA.QM
  60. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_CS.QM
  61. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_DA.QM
  62. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_DE.QM
  63. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_EL.QM
  64. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_EN.QM
  65. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_ES.QM
  66. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_ET.QM
  67. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_FI.QM
  68. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_FR.QM
  69. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_HE.QM
  70. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_HU.QM
  71. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_ID.QM
  72. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_IT.QM
  73. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_JA.QM
  74. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_KO.QM
  75. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_LT.QM
  76. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_LV.QM
  77. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_NL.QM
  78. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_NO.QM
  79. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_PL.QM
  80. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_PT_BR.QM
  81. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_PT_PT.QM
  82. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_RO.QM
  83. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_RU.QM
  84. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_SK.QM
  85. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_SL.QM
  86. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_SV.QM
  87. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_TR.QM
  88. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_VI.QM
  89. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LANGUAGES\LANG_ZH_TW.QM
  90. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\LICENSE.RTF
  91. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\MASTER.CONF
  92. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\MBAM.DLL
  93. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\MBAM.EXE
  94. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\MBAMCORE.DLL
  95. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\MBAMDOR.EXE
  96. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\MBAMEXT.DLL
  97. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\MBAMPT.EXE
  98. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\MBAMRESEARCH.EXE
  99. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\MBAMSCHEDULER.EXE
  100. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\MBAMSERVICE.EXE
  101. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\MBAMSRV.DLL
  102. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\MSVCP100.DLL
  103. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\MSVCR100.DLL
  104. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\PLATFORMS\QWINDOWS.DLL
  105. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\PLUGINS\FIXDAMAGE.EXE
  106. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\QT5CORE.DLL
  107. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\QT5GUI.DLL
  108. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\QT5NETWORK.DLL
  109. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\QT5WIDGETS.DLL
  110. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\UNINS000.DAT
  111. %PROGRAM FILES%\MALWAREBYTES ANTI-MALWARE\UNINS000.EXE
  112. %SYSDIR%\DRIVERS\MBAM.SYS
  113. %SYSDIR%\DRIVERS\MBAMCHAMELEON.SYS
  114. %SYSDIR%\DRIVERS\MBAMSWISSARMY.SYS
Go Top

Dmitry Sokolov recommends UnHackMe!

UnHackMe is a powerful tool against malware.

Free Download