Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Users\user\Downloads\Unconfirmed 127900.crdownload
|
PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive
|
dropped
|
 |
|
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Apr 18 03:20:55 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Apr 18 03:20:55 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:05:01 2023, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Apr 18 03:20:55 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Apr 18 03:20:55 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Apr 18 03:20:55 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\Downloads\CuratorSetup.exe (copy)
|
PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive
|
dropped
|
||
|
C:\Users\user\Downloads\b658a99a-b7af-4070-b85d-6abba900d484.tmp
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
||
|
Chrome Cache Entry: 111
|
ASCII text, with very long lines (47529)
|
downloaded
|
||
|
Chrome Cache Entry: 112
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian,
direntries=2, orientation=upper-left], baseline, precision 8, 244x79, components 3
|
dropped
|
||
|
Chrome Cache Entry: 113
|
ASCII text, with very long lines (1443), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 115
|
Unicode text, UTF-8 text, with very long lines (8580), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 116
|
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 15815
|
downloaded
|
||
|
Chrome Cache Entry: 117
|
ASCII text, with very long lines (629)
|
downloaded
|
||
|
Chrome Cache Entry: 119
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 120
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 121
|
ASCII text, with very long lines (11488), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 122
|
exported SGML document, ASCII text, with very long lines (3737), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 123
|
ASCII text, with very long lines (64929)
|
downloaded
|
||
|
Chrome Cache Entry: 124
|
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106,
resolutionunit=2, software=Adobe Photoshop CS5.1 Windows, datetime=2017:03:25 13:32:48], baseline, precision 8, 200x202, components
3
|
dropped
|
||
|
Chrome Cache Entry: 125
|
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106,
resolutionunit=2, software=Adobe Photoshop CS5.1 Windows, datetime=2017:03:25 13:36:49], baseline, precision 8, 200x202, components
3
|
dropped
|
||
|
Chrome Cache Entry: 126
|
data
|
downloaded
|
||
|
Chrome Cache Entry: 127
|
Unicode text, UTF-8 text, with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 128
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 129
|
ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 130
|
ASCII text, with very long lines (9959)
|
downloaded
|
||
|
Chrome Cache Entry: 131
|
ASCII text, with very long lines (65536), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 132
|
ASCII text, with very long lines (4143)
|
downloaded
|
||
|
Chrome Cache Entry: 134
|
ASCII text, with very long lines (58392), with CRLF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 135
|
ASCII text, with very long lines (1498), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 136
|
ASCII text, with very long lines (1647), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 137
|
ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 138
|
ASCII text, with very long lines (4080), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 139
|
ASCII text, with very long lines (1379), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 140
|
Unicode text, UTF-8 text, with very long lines (20990)
|
downloaded
|
||
|
Chrome Cache Entry: 141
|
PNG image data, 256 x 256, 8-bit/color RGB, non-interlaced
|
dropped
|
||
|
Chrome Cache Entry: 142
|
ASCII text, with very long lines (1742)
|
downloaded
|
||
|
Chrome Cache Entry: 144
|
ASCII text, with very long lines (41045), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 145
|
ASCII text, with very long lines (31997)
|
downloaded
|
||
|
Chrome Cache Entry: 146
|
ASCII text, with very long lines (10927)
|
downloaded
|
||
|
Chrome Cache Entry: 147
|
ASCII text, with very long lines (1686), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 148
|
ASCII text, with very long lines (32645)
|
downloaded
|
||
|
Chrome Cache Entry: 149
|
ASCII text, with very long lines (9833), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 151
|
Unicode text, UTF-8 text, with very long lines (38766)
|
downloaded
|
||
|
Chrome Cache Entry: 152
|
HTML document, Unicode text, UTF-8 text, with very long lines (8738), with CRLF, LF line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 153
|
ASCII text, with very long lines (7711)
|
downloaded
|
||
|
Chrome Cache Entry: 154
|
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
|
downloaded
|
||
|
Chrome Cache Entry: 155
|
ASCII text, with very long lines (1665), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 156
|
Unicode text, UTF-8 text, with very long lines (18418), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 157
|
ASCII text, with very long lines (1408), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 158
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 159
|
ASCII text, with very long lines (32058), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 160
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian,
direntries=2, orientation=upper-left], baseline, precision 8, 79x79, components 3
|
dropped
|
||
|
Chrome Cache Entry: 161
|
ASCII text, with very long lines (7081), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 163
|
ASCII text, with very long lines (5555), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 164
|
ASCII text, with very long lines (31997)
|
downloaded
|
||
|
Chrome Cache Entry: 165
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 166
|
ASCII text, with very long lines (526)
|
downloaded
|
||
|
Chrome Cache Entry: 167
|
ASCII text, with very long lines (62142)
|
downloaded
|
||
|
Chrome Cache Entry: 168
|
ASCII text, with very long lines (9322), with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 169
|
ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 171
|
SVG Scalable Vector Graphics image
|
downloaded
|
||
|
Chrome Cache Entry: 172
|
Unicode text, UTF-8 text, with very long lines (34747), with NEL line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 173
|
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, modules
|
downloaded
|
||
|
Chrome Cache Entry: 174
|
ASCII text, with very long lines (1572)
|
downloaded
|
There are 57 hidden files, click here to show them.
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://ortelia.com/download-ortelia-curator/
|
|
||
|
https://ortelia.com/download-ortelia-curator/
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
ortelia.com
|
139.99.130.163
|
||
|
analytics-alv.google.com
|
216.239.34.181
|
||
|
ortelia.onfastspring.com
|
44.194.213.178
|
||
|
cdnjs.cloudflare.com
|
104.17.24.14
|
||
|
www.google.com
|
142.250.9.105
|
||
|
sbl.onfastspring.com
|
3.161.136.90
|
||
|
d8y8nchqlnmka.cloudfront.net
|
3.163.78.121
|
||
|
s.w.org
|
192.0.77.48
|
||
|
d1f8f9xcsvx3ha.cloudfront.net
|
3.161.169.25
|
||
|
stats.g.doubleclick.net
|
142.250.105.157
|
||
|
analytics.google.com
|
unknown
|
There are 1 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
64.233.177.94
|
unknown
|
United States
|
||
|
3.163.78.183
|
unknown
|
United States
|
||
|
64.233.177.84
|
unknown
|
United States
|
||
|
104.17.24.14
|
cdnjs.cloudflare.com
|
United States
|
||
|
64.233.177.95
|
unknown
|
United States
|
||
|
74.125.138.102
|
unknown
|
United States
|
||
|
1.1.1.1
|
unknown
|
Australia
|
||
|
142.250.105.94
|
unknown
|
United States
|
||
|
139.99.130.163
|
ortelia.com
|
Canada
|
||
|
142.250.9.105
|
www.google.com
|
United States
|
||
|
44.194.213.178
|
ortelia.onfastspring.com
|
United States
|
||
|
3.163.78.121
|
d8y8nchqlnmka.cloudfront.net
|
United States
|
||
|
216.239.34.181
|
analytics-alv.google.com
|
United States
|
||
|
142.250.105.157
|
stats.g.doubleclick.net
|
United States
|
||
|
192.168.2.16
|
unknown
|
unknown
|
||
|
172.253.124.139
|
unknown
|
United States
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
142.251.15.97
|
unknown
|
United States
|
||
|
64.233.176.101
|
unknown
|
United States
|
||
|
3.161.169.25
|
d1f8f9xcsvx3ha.cloudfront.net
|
United States
|
||
|
3.161.136.90
|
sbl.onfastspring.com
|
United States
|
||
|
34.199.6.151
|
unknown
|
United States
|
||
|
74.125.138.95
|
unknown
|
United States
|
||
|
3.161.136.116
|
unknown
|
United States
|
There are 14 hidden IPs, click here to show them.