Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy\AC\INetCache\AOYVKG3S\2_11d9e3bcdfede9ce5ce5ace2d129f1c4[1].svg
|
SVG Scalable Vector Graphics image
|
dropped
|
||
|
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy\AC\INetCache\AOYVKG3S\Converged_v22057_mG-wAdV--_sq1kXms675SA2[1].css
|
ASCII text, with very long lines (61112)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy\AC\INetCache\B3UQP68X\ConvergedLoginPaginatedStrings.en-gb_xKLYpPR3cTz1G2q-i7i0Kw2[1].js
|
HTML document, Unicode text, UTF-8 text, with very long lines (32359)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy\AC\INetCache\B3UQP68X\WinJS_vcvx4TydCFioSeM4NLxTDw2[1].js
|
Unicode text, UTF-8 text, with very long lines (32032), with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy\AC\INetCache\MSIMGSIZ.DAT
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy\AC\INetCache\OPITYR77\oneDs_f2e0f4a029670f10d892[1].js
|
ASCII text, with very long lines (65536), with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy\AC\INetCache\OPITYR77\signin-options_3e3f6b73c3f310c31d2c4d131a8ab8c6[1].svg
|
SVG Scalable Vector Graphics image
|
modified
|
||
|
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy\AC\INetCache\Q570FTPW\microsoft_logo_564db913a7fa0ca42727161c6d031bef[1].svg
|
SVG Scalable Vector Graphics image
|
dropped
|
||
|
C:\Users\user\AppData\Local\Packages\Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy\AC\Microsoft\Internet Explorer\DOMStore\RLLV1W2J\microsoft.windows[1].xml
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\AppData\Local\Office\16.0\WebServiceCache\AllUsers\officeclient.microsoft.com\16AD7431-2A52-454E-BCDF-097399330E6C
|
XML 1.0 document, ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Oct 31 05:18:34 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Oct 31 05:18:34 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:05:01 2023, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Oct 31 05:18:34 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Oct 31 05:18:34 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Oct 31 05:18:34 2024, atime=Wed Sep 27 04:28:28
2023, length=1210144, window=hide
|
dropped
|
There are 7 hidden files, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
bg.microsoft.map.fastly.net
|
199.232.214.172
|
||
|
sni1gl.wpc.alphacdn.net
|
152.199.21.175
|
||
|
www.google.com
|
142.250.186.164
|
||
|
lx-capricorn-star-mail.qiye.163.com
|
8.210.52.23
|
||
|
logincdn.msftauth.net
|
unknown
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
142.250.186.68
|
unknown
|
United States
|
||
|
142.250.186.78
|
unknown
|
United States
|
||
|
8.210.52.23
|
lx-capricorn-star-mail.qiye.163.com
|
Singapore
|
||
|
1.1.1.1
|
unknown
|
Australia
|
||
|
52.109.89.18
|
unknown
|
United States
|
||
|
192.168.2.16
|
unknown
|
unknown
|
||
|
13.107.42.16
|
unknown
|
United States
|
||
|
142.250.185.227
|
unknown
|
United States
|
||
|
142.251.168.84
|
unknown
|
United States
|
||
|
20.189.173.25
|
unknown
|
United States
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
20.190.160.22
|
unknown
|
United States
|
||
|
142.250.186.164
|
www.google.com
|
United States
|
||
|
142.250.186.131
|
unknown
|
United States
|
||
|
152.199.21.175
|
sni1gl.wpc.alphacdn.net
|
United States
|
||
|
142.250.184.206
|
unknown
|
United States
|
There are 6 hidden IPs, click here to show them.