Jump to content

Recommended Posts

Greetings and Good Afternoon - I am conducting a forensic investigation and would like to know if there are logs that record user information at the time mbam is installed on a system?  I would like to know what user installed the software and it does not appear to be captured within the standard mbam LOGS directory.  Any information would be greatly appreciated.  Thank you.

Link to post
Share on other sites

Hello @absrdst    One can get the Date & Time of the last Malwarebytes for Windows setup run by going to these 2 locations via Windows File Explorer.

They wont have the 'user' mentioned in the logs themselves.   However, the 1st one listed below is dependent on the logged-in-Windows user profile.

 %temp%\mbsetup.log 

and    %systemroot%\temp\mbamiservice.log

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.