Publicité
Publicité
Format du document : text/plain
Prévisualisation
FF273E9370A1B116405A7F4775E0AED49EFE6BBEA9441DD05E4ADC0F257791D3
{
"applicationVersion" : "4.4.0.117",
"chromeSyncResetQueryRequested" : false,
"chromeSyncResetQueryResult" : false,
"clientID" : "MbamUI",
"clientType" : "fullUIScan",
"componentsUpdatePackageVersion" : "1.0.1344",
"coreDllFileVersion" : "3.0.0.1164",
"cpu" : "x64",
"dbSDKUpdatePackageVersion" : "1.0.42193",
"detectionDateTime" : "2021-06-24T21:45:14Z",
"fileSystem" : "NTFS",
"id" : "75882148-d535-11eb-b0bc-00ff654cccc4",
"isUserAdmin" : true,
"licenseState" : "free",
"linkagePhaseComplete" : true,
"loggedOnUserName" : "MarcPc\\Marc",
"machineID" : "",
"os" : "Windows 10 (Build 19042.1052)",
"schemaVersion" : 19,
"sourceDetails" : {
"aggressiveMode" : false,
"clientMetadata" : {
"jobId" : "",
"scheduleId" : "",
"scheduleTag" : ""
},
"ddsigEnabled" : true,
"filesScannedByIG" : 7,
"objectsScanned" : 353122,
"scanEndTime" : "2021-06-24T21:50:13Z",
"scanOnlineStatus" : "online",
"scanOptions" : {
"pumHandling" : "detect",
"pupHandling" : "detect",
"scanArchives" : true,
"scanFileSystem" : true,
"scanMemoryObjects" : true,
"scanPUMs" : true,
"scanPUPs" : true,
"scanRookits" : true,
"scanStartupAndRegistry" : true,
"scanType" : "threat",
"useHeuristics" : true
},
"scanResult" : "completed",
"scanStartTime" : "2021-06-24T21:45:14Z",
"scanState" : "completed",
"shurikenEnabled" : true,
"type" : "scan"
},
"threats" : [
{
"ddsSigFileVersion" : "",
"linkedTraces" : [
],
"mainTrace" : {
"archiveMember" : "",
"archiveMemberMD5" : "",
"cleanAction" : "quarantine",
"cleanContext" : {
"fileReplaceData" : {
"replacementDataFileName" : "C:\\PROGRAMDATA\\MALWAREBYTES\\MBAMSERVICE\\tmp\\EXPLORER.EXEf954549c-d535-11eb-89e8-00ff654cccc4-r.mbam"
}
},
"cleanResult" : "successful",
"cleanResultErrorCode" : 0,
"cleanTime" : "2021-06-24T21:50:27Z",
"generatedByPostCleanupAction" : false,
"hubbleRequestErrorCode" : 0,
"id" : "f9a27c62-d535-11eb-ab32-00ff654cccc4",
"igExitCode" : "",
"isPEFile" : true,
"isPEFileValid" : true,
"isWhitelistedByAdsInfo" : false,
"linkType" : "none",
"objectMD5" : "800EF617DDC3C635CD25E20E0EC39CC6",
"objectPath" : "C:\\USERS\\MARC\\DESKTOP\\EXPLORER.EXE",
"objectSha256" : "100F6AB2737F1AF0746D6650D9DDD0E4B56A9A8583DD087DF64DECA62E77F65B",
"objectSize" : -1,
"objectType" : "file",
"resolvedPath" : "C:\\Users\\Marc\\Desktop\\explorer.exe",
"suggestedAction" : {
"archiveDir" : false,
"chromeExtensionOther" : false,
"chromeExtensionPreferences" : false,
"chromeExtensionSecurePreferences" : false,
"chromeExtensionSyncData" : false,
"chromeUrlOther" : false,
"chromeUrlSecurePreferences" : false,
"chromeUrlSyncData" : false,
"chromeUrlWebData" : false,
"disableHubbleWhiteListing" : false,
"disableSignatureWhiteListing" : false,
"fileDelete" : false,
"fileReplace" : true,
"fileTxtReplace" : false,
"folderDelete" : false,
"isChromeObject" : false,
"isDDS" : false,
"isDoppleganging" : false,
"isExternalDetection" : false,
"isPUP" : false,
"isShuriken" : false,
"isWMIEventConsumer" : false,
"killProcess" : false,
"minimalWhiteListing" : false,
"moduleUnload" : false,
"noLinking" : true,
"physicalSectorReplace" : false,
"priorityHigh" : false,
"priorityNormal" : false,
"priorityUrgent" : true,
"processUnload" : false,
"regKeyDelete" : false,
"regValueDelete" : false,
"regValueReplace" : false,
"shortcutReplace" : false,
"silentMode" : false,
"singleDelete" : false,
"treatAsRootkit" : true,
"useDDA" : true,
"verifyResolvedPath" : true,
"whitelistCheckError" : false
}
},
"ruleID" : 293543,
"ruleString" : "",
"rulesVersion" : "0.0.0",
"srcEngineComponent" : "ame",
"srcEngineThreatNames" : [
],
"threatID" : 5651,
"threatName" : "RiskWare.HeuristicsReservedWordExploit"
},
{
"ddsSigFileVersion" : "",
"linkedTraces" : [
],
"mainTrace" : {
"archiveMember" : "",
"archiveMemberMD5" : "",
"cleanAction" : "quarantine",
"cleanContext" : {
},
"cleanResult" : "successful",
"cleanResultErrorCode" : 0,
"cleanTime" : "2021-06-24T21:50:28Z",
"generatedByPostCleanupAction" : false,
"hubbleRequestErrorCode" : 0,
"id" : "06e4ac56-d536-11eb-84e4-00ff654cccc4",
"igExitCode" : "",
"isPEFile" : true,
"isPEFileValid" : true,
"isWhitelistedByAdsInfo" : false,
"linkType" : "none",
"objectMD5" : "72A56FCC22AD0F507269C9C4159AB29B",
"objectPath" : "C:\\USERS\\MARC\\DOWNLOADS\\FFSETUPLITE5.6.0.0.EXE",
"objectSha256" : "43ADFF34FE971D51B53C19DE97FFAC37DAF8FA5CF545FD3D3E65D097853E74E8",
"objectSize" : 1558096,
"objectType" : "file",
"resolvedPath" : "C:\\Users\\Marc\\Downloads\\FFSetupLite5.6.0.0.exe",
"suggestedAction" : {
"archiveDir" : false,
"chromeExtensionOther" : false,
"chromeExtensionPreferences" : false,
"chromeExtensionSecurePreferences" : false,
"chromeExtensionSyncData" : false,
"chromeUrlOther" : false,
"chromeUrlSecurePreferences" : false,
"chromeUrlSyncData" : false,
"chromeUrlWebData" : false,
"disableHubbleWhiteListing" : true,
"disableSignatureWhiteListing" : true,
"fileDelete" : true,
"fileReplace" : false,
"fileTxtReplace" : false,
"folderDelete" : false,
"isChromeObject" : false,
"isDDS" : false,
"isDoppleganging" : false,
"isExternalDetection" : false,
"isPUP" : true,
"isShuriken" : false,
"isWMIEventConsumer" : false,
"killProcess" : false,
"minimalWhiteListing" : false,
"moduleUnload" : false,
"noLinking" : false,
"physicalSectorReplace" : false,
"priorityHigh" : false,
"priorityNormal" : false,
"priorityUrgent" : false,
"processUnload" : false,
"regKeyDelete" : false,
"regValueDelete" : false,
"regValueReplace" : false,
"shortcutReplace" : false,
"silentMode" : false,
"singleDelete" : false,
"treatAsRootkit" : false,
"useDDA" : false,
"verifyResolvedPath" : true,
"whitelistCheckError" : false
},
"winVerifyTrustResult" : {
"expectedError" : false,
"lastErrorCode" : 0,
"wvtCalled" : true,
"wvtResult" : 0
}
},
"ruleID" : 935457,
"ruleString" : "",
"rulesVersion" : "1.0.42193",
"srcEngineComponent" : "ame",
"srcEngineThreatNames" : [
],
"threatID" : 14484,
"threatName" : "PUP.Optional.DotSetupIo.BundleInstaller"
}
],
"threatsDetected" : 2
}
{
"applicationVersion" : "4.4.0.117",
"chromeSyncResetQueryRequested" : false,
"chromeSyncResetQueryResult" : false,
"clientID" : "MbamUI",
"clientType" : "fullUIScan",
"componentsUpdatePackageVersion" : "1.0.1344",
"coreDllFileVersion" : "3.0.0.1164",
"cpu" : "x64",
"dbSDKUpdatePackageVersion" : "1.0.42193",
"detectionDateTime" : "2021-06-24T21:45:14Z",
"fileSystem" : "NTFS",
"id" : "75882148-d535-11eb-b0bc-00ff654cccc4",
"isUserAdmin" : true,
"licenseState" : "free",
"linkagePhaseComplete" : true,
"loggedOnUserName" : "MarcPc\\Marc",
"machineID" : "",
"os" : "Windows 10 (Build 19042.1052)",
"schemaVersion" : 19,
"sourceDetails" : {
"aggressiveMode" : false,
"clientMetadata" : {
"jobId" : "",
"scheduleId" : "",
"scheduleTag" : ""
},
"ddsigEnabled" : true,
"filesScannedByIG" : 7,
"objectsScanned" : 353122,
"scanEndTime" : "2021-06-24T21:50:13Z",
"scanOnlineStatus" : "online",
"scanOptions" : {
"pumHandling" : "detect",
"pupHandling" : "detect",
"scanArchives" : true,
"scanFileSystem" : true,
"scanMemoryObjects" : true,
"scanPUMs" : true,
"scanPUPs" : true,
"scanRookits" : true,
"scanStartupAndRegistry" : true,
"scanType" : "threat",
"useHeuristics" : true
},
"scanResult" : "completed",
"scanStartTime" : "2021-06-24T21:45:14Z",
"scanState" : "completed",
"shurikenEnabled" : true,
"type" : "scan"
},
"threats" : [
{
"ddsSigFileVersion" : "",
"linkedTraces" : [
],
"mainTrace" : {
"archiveMember" : "",
"archiveMemberMD5" : "",
"cleanAction" : "quarantine",
"cleanContext" : {
"fileReplaceData" : {
"replacementDataFileName" : "C:\\PROGRAMDATA\\MALWAREBYTES\\MBAMSERVICE\\tmp\\EXPLORER.EXEf954549c-d535-11eb-89e8-00ff654cccc4-r.mbam"
}
},
"cleanResult" : "successful",
"cleanResultErrorCode" : 0,
"cleanTime" : "2021-06-24T21:50:27Z",
"generatedByPostCleanupAction" : false,
"hubbleRequestErrorCode" : 0,
"id" : "f9a27c62-d535-11eb-ab32-00ff654cccc4",
"igExitCode" : "",
"isPEFile" : true,
"isPEFileValid" : true,
"isWhitelistedByAdsInfo" : false,
"linkType" : "none",
"objectMD5" : "800EF617DDC3C635CD25E20E0EC39CC6",
"objectPath" : "C:\\USERS\\MARC\\DESKTOP\\EXPLORER.EXE",
"objectSha256" : "100F6AB2737F1AF0746D6650D9DDD0E4B56A9A8583DD087DF64DECA62E77F65B",
"objectSize" : -1,
"objectType" : "file",
"resolvedPath" : "C:\\Users\\Marc\\Desktop\\explorer.exe",
"suggestedAction" : {
"archiveDir" : false,
"chromeExtensionOther" : false,
"chromeExtensionPreferences" : false,
"chromeExtensionSecurePreferences" : false,
"chromeExtensionSyncData" : false,
"chromeUrlOther" : false,
"chromeUrlSecurePreferences" : false,
"chromeUrlSyncData" : false,
"chromeUrlWebData" : false,
"disableHubbleWhiteListing" : false,
"disableSignatureWhiteListing" : false,
"fileDelete" : false,
"fileReplace" : true,
"fileTxtReplace" : false,
"folderDelete" : false,
"isChromeObject" : false,
"isDDS" : false,
"isDoppleganging" : false,
"isExternalDetection" : false,
"isPUP" : false,
"isShuriken" : false,
"isWMIEventConsumer" : false,
"killProcess" : false,
"minimalWhiteListing" : false,
"moduleUnload" : false,
"noLinking" : true,
"physicalSectorReplace" : false,
"priorityHigh" : false,
"priorityNormal" : false,
"priorityUrgent" : true,
"processUnload" : false,
"regKeyDelete" : false,
"regValueDelete" : false,
"regValueReplace" : false,
"shortcutReplace" : false,
"silentMode" : false,
"singleDelete" : false,
"treatAsRootkit" : true,
"useDDA" : true,
"verifyResolvedPath" : true,
"whitelistCheckError" : false
}
},
"ruleID" : 293543,
"ruleString" : "",
"rulesVersion" : "0.0.0",
"srcEngineComponent" : "ame",
"srcEngineThreatNames" : [
],
"threatID" : 5651,
"threatName" : "RiskWare.HeuristicsReservedWordExploit"
},
{
"ddsSigFileVersion" : "",
"linkedTraces" : [
],
"mainTrace" : {
"archiveMember" : "",
"archiveMemberMD5" : "",
"cleanAction" : "quarantine",
"cleanContext" : {
},
"cleanResult" : "successful",
"cleanResultErrorCode" : 0,
"cleanTime" : "2021-06-24T21:50:28Z",
"generatedByPostCleanupAction" : false,
"hubbleRequestErrorCode" : 0,
"id" : "06e4ac56-d536-11eb-84e4-00ff654cccc4",
"igExitCode" : "",
"isPEFile" : true,
"isPEFileValid" : true,
"isWhitelistedByAdsInfo" : false,
"linkType" : "none",
"objectMD5" : "72A56FCC22AD0F507269C9C4159AB29B",
"objectPath" : "C:\\USERS\\MARC\\DOWNLOADS\\FFSETUPLITE5.6.0.0.EXE",
"objectSha256" : "43ADFF34FE971D51B53C19DE97FFAC37DAF8FA5CF545FD3D3E65D097853E74E8",
"objectSize" : 1558096,
"objectType" : "file",
"resolvedPath" : "C:\\Users\\Marc\\Downloads\\FFSetupLite5.6.0.0.exe",
"suggestedAction" : {
"archiveDir" : false,
"chromeExtensionOther" : false,
"chromeExtensionPreferences" : false,
"chromeExtensionSecurePreferences" : false,
"chromeExtensionSyncData" : false,
"chromeUrlOther" : false,
"chromeUrlSecurePreferences" : false,
"chromeUrlSyncData" : false,
"chromeUrlWebData" : false,
"disableHubbleWhiteListing" : true,
"disableSignatureWhiteListing" : true,
"fileDelete" : true,
"fileReplace" : false,
"fileTxtReplace" : false,
"folderDelete" : false,
"isChromeObject" : false,
"isDDS" : false,
"isDoppleganging" : false,
"isExternalDetection" : false,
"isPUP" : true,
"isShuriken" : false,
"isWMIEventConsumer" : false,
"killProcess" : false,
"minimalWhiteListing" : false,
"moduleUnload" : false,
"noLinking" : false,
"physicalSectorReplace" : false,
"priorityHigh" : false,
"priorityNormal" : false,
"priorityUrgent" : false,
"processUnload" : false,
"regKeyDelete" : false,
"regValueDelete" : false,
"regValueReplace" : false,
"shortcutReplace" : false,
"silentMode" : false,
"singleDelete" : false,
"treatAsRootkit" : false,
"useDDA" : false,
"verifyResolvedPath" : true,
"whitelistCheckError" : false
},
"winVerifyTrustResult" : {
"expectedError" : false,
"lastErrorCode" : 0,
"wvtCalled" : true,
"wvtResult" : 0
}
},
"ruleID" : 935457,
"ruleString" : "",
"rulesVersion" : "1.0.42193",
"srcEngineComponent" : "ame",
"srcEngineThreatNames" : [
],
"threatID" : 14484,
"threatName" : "PUP.Optional.DotSetupIo.BundleInstaller"
}
],
"threatsDetected" : 2
}