FF273E9370A1B116405A7F4775E0AED49EFE6BBEA9441DD05E4ADC0F257791D3 { "applicationVersion" : "4.4.0.117", "chromeSyncResetQueryRequested" : false, "chromeSyncResetQueryResult" : false, "clientID" : "MbamUI", "clientType" : "fullUIScan", "componentsUpdatePackageVersion" : "1.0.1344", "coreDllFileVersion" : "3.0.0.1164", "cpu" : "x64", "dbSDKUpdatePackageVersion" : "1.0.42193", "detectionDateTime" : "2021-06-24T21:45:14Z", "fileSystem" : "NTFS", "id" : "75882148-d535-11eb-b0bc-00ff654cccc4", "isUserAdmin" : true, "licenseState" : "free", "linkagePhaseComplete" : true, "loggedOnUserName" : "MarcPc\\Marc", "machineID" : "", "os" : "Windows 10 (Build 19042.1052)", "schemaVersion" : 19, "sourceDetails" : { "aggressiveMode" : false, "clientMetadata" : { "jobId" : "", "scheduleId" : "", "scheduleTag" : "" }, "ddsigEnabled" : true, "filesScannedByIG" : 7, "objectsScanned" : 353122, "scanEndTime" : "2021-06-24T21:50:13Z", "scanOnlineStatus" : "online", "scanOptions" : { "pumHandling" : "detect", "pupHandling" : "detect", "scanArchives" : true, "scanFileSystem" : true, "scanMemoryObjects" : true, "scanPUMs" : true, "scanPUPs" : true, "scanRookits" : true, "scanStartupAndRegistry" : true, "scanType" : "threat", "useHeuristics" : true }, "scanResult" : "completed", "scanStartTime" : "2021-06-24T21:45:14Z", "scanState" : "completed", "shurikenEnabled" : true, "type" : "scan" }, "threats" : [ { "ddsSigFileVersion" : "", "linkedTraces" : [ ], "mainTrace" : { "archiveMember" : "", "archiveMemberMD5" : "", "cleanAction" : "quarantine", "cleanContext" : { "fileReplaceData" : { "replacementDataFileName" : "C:\\PROGRAMDATA\\MALWAREBYTES\\MBAMSERVICE\\tmp\\EXPLORER.EXEf954549c-d535-11eb-89e8-00ff654cccc4-r.mbam" } }, "cleanResult" : "successful", "cleanResultErrorCode" : 0, "cleanTime" : "2021-06-24T21:50:27Z", "generatedByPostCleanupAction" : false, "hubbleRequestErrorCode" : 0, "id" : "f9a27c62-d535-11eb-ab32-00ff654cccc4", "igExitCode" : "", "isPEFile" : true, "isPEFileValid" : true, "isWhitelistedByAdsInfo" : false, "linkType" : "none", "objectMD5" : "800EF617DDC3C635CD25E20E0EC39CC6", "objectPath" : "C:\\USERS\\MARC\\DESKTOP\\EXPLORER.EXE", "objectSha256" : "100F6AB2737F1AF0746D6650D9DDD0E4B56A9A8583DD087DF64DECA62E77F65B", "objectSize" : -1, "objectType" : "file", "resolvedPath" : "C:\\Users\\Marc\\Desktop\\explorer.exe", "suggestedAction" : { "archiveDir" : false, "chromeExtensionOther" : false, "chromeExtensionPreferences" : false, "chromeExtensionSecurePreferences" : false, "chromeExtensionSyncData" : false, "chromeUrlOther" : false, "chromeUrlSecurePreferences" : false, "chromeUrlSyncData" : false, "chromeUrlWebData" : false, "disableHubbleWhiteListing" : false, "disableSignatureWhiteListing" : false, "fileDelete" : false, "fileReplace" : true, "fileTxtReplace" : false, "folderDelete" : false, "isChromeObject" : false, "isDDS" : false, "isDoppleganging" : false, "isExternalDetection" : false, "isPUP" : false, "isShuriken" : false, "isWMIEventConsumer" : false, "killProcess" : false, "minimalWhiteListing" : false, "moduleUnload" : false, "noLinking" : true, "physicalSectorReplace" : false, "priorityHigh" : false, "priorityNormal" : false, "priorityUrgent" : true, "processUnload" : false, "regKeyDelete" : false, "regValueDelete" : false, "regValueReplace" : false, "shortcutReplace" : false, "silentMode" : false, "singleDelete" : false, "treatAsRootkit" : true, "useDDA" : true, "verifyResolvedPath" : true, "whitelistCheckError" : false } }, "ruleID" : 293543, "ruleString" : "", "rulesVersion" : "0.0.0", "srcEngineComponent" : "ame", "srcEngineThreatNames" : [ ], "threatID" : 5651, "threatName" : "RiskWare.HeuristicsReservedWordExploit" }, { "ddsSigFileVersion" : "", "linkedTraces" : [ ], "mainTrace" : { "archiveMember" : "", "archiveMemberMD5" : "", "cleanAction" : "quarantine", "cleanContext" : { }, "cleanResult" : "successful", "cleanResultErrorCode" : 0, "cleanTime" : "2021-06-24T21:50:28Z", "generatedByPostCleanupAction" : false, "hubbleRequestErrorCode" : 0, "id" : "06e4ac56-d536-11eb-84e4-00ff654cccc4", "igExitCode" : "", "isPEFile" : true, "isPEFileValid" : true, "isWhitelistedByAdsInfo" : false, "linkType" : "none", "objectMD5" : "72A56FCC22AD0F507269C9C4159AB29B", "objectPath" : "C:\\USERS\\MARC\\DOWNLOADS\\FFSETUPLITE5.6.0.0.EXE", "objectSha256" : "43ADFF34FE971D51B53C19DE97FFAC37DAF8FA5CF545FD3D3E65D097853E74E8", "objectSize" : 1558096, "objectType" : "file", "resolvedPath" : "C:\\Users\\Marc\\Downloads\\FFSetupLite5.6.0.0.exe", "suggestedAction" : { "archiveDir" : false, "chromeExtensionOther" : false, "chromeExtensionPreferences" : false, "chromeExtensionSecurePreferences" : false, "chromeExtensionSyncData" : false, "chromeUrlOther" : false, "chromeUrlSecurePreferences" : false, "chromeUrlSyncData" : false, "chromeUrlWebData" : false, "disableHubbleWhiteListing" : true, "disableSignatureWhiteListing" : true, "fileDelete" : true, "fileReplace" : false, "fileTxtReplace" : false, "folderDelete" : false, "isChromeObject" : false, "isDDS" : false, "isDoppleganging" : false, "isExternalDetection" : false, "isPUP" : true, "isShuriken" : false, "isWMIEventConsumer" : false, "killProcess" : false, "minimalWhiteListing" : false, "moduleUnload" : false, "noLinking" : false, "physicalSectorReplace" : false, "priorityHigh" : false, "priorityNormal" : false, "priorityUrgent" : false, "processUnload" : false, "regKeyDelete" : false, "regValueDelete" : false, "regValueReplace" : false, "shortcutReplace" : false, "silentMode" : false, "singleDelete" : false, "treatAsRootkit" : false, "useDDA" : false, "verifyResolvedPath" : true, "whitelistCheckError" : false }, "winVerifyTrustResult" : { "expectedError" : false, "lastErrorCode" : 0, "wvtCalled" : true, "wvtResult" : 0 } }, "ruleID" : 935457, "ruleString" : "", "rulesVersion" : "1.0.42193", "srcEngineComponent" : "ame", "srcEngineThreatNames" : [ ], "threatID" : 14484, "threatName" : "PUP.Optional.DotSetupIo.BundleInstaller" } ], "threatsDetected" : 2 }