Joe Sandbox Cloud Basic

Want to search on specific fields?


Try our:

Advanced Search

Want to search in depth on all Cloud Basic reports?

Try: Joe Sandbox View

Register Login
sloganpng
top title background image
flash

https://www.sosvirus.net/

Status: finished
Submission Time: 2020-05-24 10:24:54 +02:00
Clean

Comments

Tags

Details

  • Analysis ID:
    232635
  • API (Web) ID:
    361511
  • Analysis Started:
    2020-05-24 10:24:54 +02:00
  • Analysis Finished:
    2020-05-24 10:37:39 +02:00
  • Technologies:

Joe Sandbox

Engine Download Report Detection Info
Full Report Management Report IOC Report
clean
Score: 1
System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

IPs

IP Country Detection
35.241.8.149
 United States
18.130.36.0
 United States
172.217.23.98
 United States
Click to see the 34 hidden entries
185.64.189.115
 United Kingdom
216.58.212.130
 United States
172.217.18.98
 United States
185.33.220.145
 Netherlands
216.58.212.131
 United States
185.64.190.78
 United Kingdom
54.246.208.255
 United States
143.204.201.125
 United States
35.241.44.144
 United States
34.95.120.147
 United States
172.217.23.162
 United States
185.60.216.19
 Ireland
104.20.185.68
 United States
172.217.22.34
 United States
91.228.74.214
 United Kingdom
109.234.162.163
 France
3.212.0.140
 United States
104.244.39.20
 United States
104.31.68.250
 United States
216.58.208.34
 United States
216.58.210.2
 United States
172.217.22.66
 United States
54.38.193.101
 France
185.60.216.35
 Ireland
143.204.201.119
 United States
173.194.76.157
 United States
172.217.23.142
 United States
64.233.166.156
 United States
172.217.22.98
 United States
35.244.218.203
 United States
143.204.201.69
 United States
152.199.21.175
 United States
34.98.67.61
 United States
172.217.18.162
 United States

Domains

Name IP Detection
adservice.google.co.uk
 0.0.0.0
odr.mookie1.com
 0.0.0.0
www.facebook.com
 0.0.0.0
Click to see the 63 hidden entries
e.dlx.addthis.com
 0.0.0.0
dt.adsafeprotected.com
 0.0.0.0
cm.g.doubleclick.net
 0.0.0.0
akz.imgfarm.com
 0.0.0.0
stats.g.doubleclick.net
 0.0.0.0
fw.adsafeprotected.com
 0.0.0.0
googleads4.g.doubleclick.net
 0.0.0.0
d.agkn.com
 0.0.0.0
pixel.everesttech.net
 0.0.0.0
image6.pubmatic.com
 0.0.0.0
www.sosvirus.net
 0.0.0.0
bid.g.doubleclick.net
 0.0.0.0
www.googletagservices.com
 0.0.0.0
securepubads.g.doubleclick.net
 0.0.0.0
ag.innovid.com
 0.0.0.0
www.fromdoctopdf.com
 0.0.0.0
pixel.rubiconproject.com
 0.0.0.0
connect.facebook.net
 0.0.0.0
ak.imgfarm.com
 0.0.0.0
ssum-sec.casalemedia.com
 0.0.0.0
ak.staticimgfarm.com
 0.0.0.0
googleads.g.doubleclick.net
 0.0.0.0
dsum-sec.casalemedia.com
 0.0.0.0
cookies.onetrust.mgr.consensu.org
 0.0.0.0
cms.quantserve.com
 0.0.0.0
free.pdfconverterhq.com
 0.0.0.0
ib.adnxs.com
 0.0.0.0
static.adsafeprotected.com
 0.0.0.0
s0.2mdn.net
 0.0.0.0
cdn.cookielaw.org
 0.0.0.0
sni1gl.wpc.iotacdn.net
 152.199.21.175
us-u.openx.net
 34.95.120.147
pugm22000nf.pubmatic.com
 185.64.189.115
pagead46.l.doubleclick.net
 216.58.208.34
star-mini.c10r.facebook.com
 185.60.216.35
pdfconverterhq.com
 35.244.218.203
a172d4077d8a011e99f600e7b1c4309c-288221225.us-east-1.elb.amazonaws.com
 3.212.0.140
pdfconverterhq.dl.tb.ask.com
 35.244.218.203
id.rlcdn.com
 35.241.8.149
stats.l.doubleclick.net
 173.194.76.157
pagead.l.doubleclick.net
 216.58.210.2
tagr-gcp-odr-euw4.mookie1.com
 34.98.67.61
scontent.xx.fbcdn.net
 185.60.216.19
googlecm.hit.gemius.pl
 54.38.193.101
rtb.openx.net
 35.241.44.144
sosvirus.net
 109.234.162.163
global.px.quantserve.com
 91.228.74.214
amidt.adsafeprotected.com
 104.244.39.20
fcmatch.youtube.com
 172.217.23.142
firewall-external-2134955858.eu-west-1.elb.amazonaws.com
 54.246.208.255
d162h6x3rxav67.cloudfront.net
 143.204.201.119
d2ctznuk6ro1vp.cloudfront.net
 143.204.201.125
fromdoctopdf.com
 35.244.218.203
partnerad.l.doubleclick.net
 216.58.212.130
pugm-lhr.pubmatic.com
 185.64.190.78
sni1gl.wpc.kappacdn.net
 152.199.21.175
www.google.co.uk
 216.58.212.131
seo.macoop.net
 104.31.68.250
ads-bid.l.doubleclick.net
 64.233.166.156
pdfconverterhq.dl.myway.com
 35.244.218.203
ib.anycast.adnxs.com
 185.33.220.145
geolocation.onetrust.com
 104.20.185.68
servingpr-aragorna-kkavyc4sexlt-1232323619.eu-west-2.elb.amazonaws.com
 18.130.36.0

URLs

Name Detection
https://googleads.g.doubleclick.net/
https://www.sosvirus.net/depannages-informatique/.Page
https://www.sosvirus.net/wp-content/uploads/2020/04/cropped-logo-sosvirus-viseur-vert.png
Click to see the 97 hidden entries
https://www.sosvirus.net/telecharger/windows-10-1709-64-bit/
https://www.sosvirus.net/elechargements/os-iso/e/-professionnel-plus/
https://schema.org/Comment
https://www.sosvirus.net/actualite/
http://www.twitter.com/
https://www.sosvirus.net/wp-content/uploads/2018/11/office-professional-plus-2019-300x300.jpg
https://www.usb-antivirus.com
https://www.sosvirus.net/telecharger/windows-7-professionnel-64-bit-x64/
https://www.sosvirus.net/category/actualite/
https://www.sosvirus.net/wp-content/uploads/wpdm-cache/office-professional-plus-2019-200x200.jpg
https://www.sosvirus.net/wp-content/uploads/2018/11/office-professional-plus-2019-400x400.jpg
https://github.com/blueimp/JavaScript-MD5
https://www.sosvirus.net/elechargements/os-iso/e/-professionnel-plus/0&lmt=1590341164&rafmt=1&psa=1&
https://www.sosvirus.net/telechargements/utilitaires/
https://cdn.cookielaw.org/scripttemplates/otSDKStub.js
https://www.sosvirus.net/telecharger/windows-10-professionnel-64-bit/mZjgBf2-u7YFm8bwirYHABACIIecyCI
https://www.sosvirus.net/telecharger/findykill/
https://www.usbfix.net/fr/detection-ransomware-malware-virus-raccourcis-ver-trojan/
http://googleads.g.doubleclick.net
https://www.sosvirus.net/wp-content/uploads/2019/12/ACHETER-ADOBE-PHOTOSHOP-CC-66x66.png
https://www.sosvirus.net/wp-content/uploads/wpdm-cache/usbfix-box-free-h300-200x200.png
https://i.imgur.com/8TMwxet.gif
https://www.sosvirus.net/telecharger/windows-10-professionnel-64-bit/#comment-1262
https://www.sosvirus.net/wp-content/uploads/2020/04/bitdefender-total-bitdefender-400x267.jpg.webp
https://cdn.ampproject.org/
http://woothemes.comhttp://woothemes.comJames
https://www.sosvirus.net/telecharger/office-2010-pro-plus-64-bit/
https://www.sosvirus.net/wp-content/themes/generatepress/js/classList.min.js
https://www.sosvirus.net/telecharger/windows-7-entreprise-64-bit-x64/
https://www.sosvirus.net/telecharger/windows-7-entreprise-32-bit-x86/
http://www.nytimes.com/
https://www.sosvirus.net/wp-content/uploads/2019/12/licence-adobe-acrobat-pro-dc-600px.jpg.webp
https://www.sosvirus.net/telecharger/ccleaner/
http://eula.mindspark.com/privacypolicy/
http://www.taptapnetworks.com/privacy_policy/
https://www.google.co.uk/pagead/1p-user-list/1054533708/?random
https://www.sosvirus.net/tutoriel-usbfix-2016-optimisation/
https://www.sosvirus.net/telechargements/os-iso/amp/
https://support.myway.com/hc/articles/360006416613-Browser-Homepage-and-New-Tab-Reset
https://www.sosvirus.net/wp-content/litespeed/cssjs/0843a.js
https://www.sosvirus.net/rufus-creer-cle-usb-dinstallation-windows-10/
http://pajhome.org.uk/crypt/md5
https://www.sosvirus.net/wp-content/uploads/2018/11/windows-10-home-400x400.jpg.webp
https://www.sosvirus.net/wp-content/uploads/2018/11/windows-10-professionnel-300x300.jpg
https://www.sosvirus.net/telecharger/office-365-business/
https://www.sosvirus.net/wp-content/uploads/2019/10/office-home-and-business-2019-mac-66x66.jpg.webp
https://www.sosvirus.net/telecharger/office-2007-professionnel/
https://www.sosvirus.net/wp-content/uploads/2020/01/acheter-telecharger-windows-7-familiale-premium.
http://www.reddit.com/
https://www.sosvirus.net/wp-content/uploads/wpdm-cache/windows-7-int%C3%A9grale-64-bit-x64-200x200.j
https://www.sosvirus.net/
https://www.sosvirus.net/#content
http://getbootstrap.com)
https://www.sosvirus.net/wp-content/uploads/2015/07/windows-10-famille-650x366.jpg.webp
https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-3235250918460796&output=html&h=280&slot
https://www.sosvirus.net/wp-content/uploads/2020/04/bitdefender-total-bitdefender.jpg
https://schema.org/WPSideBar
https://www.sosvirus.net/telecharger/usbfix-gratuit/#comment-2292
https://www.sosvirus.net/wp-content/uploads/2019/10/acheter-telecharger-windows-7-professionnel-600x
https://www.sosvirus.net/wp-content/uploads/wpdm-cache/office-2016-professional-plus-200x200.jpg
https://free.pdfconverterhq.com/index.jhtml?partner=%5eCAM%5exdm106&s1=27733462804&gclid=EAIaIQobChM
https://www.sosvirus.net/telecharger/windows-10-professioRoot
https://www.sosvirus.net/depannages-informatique/viewtopic.php?p=228344&sid=9bbb28a219cb4e3c9ee3
https://www.usb-antivirus.com/fr/
https://www.sosvirus.net/wp-content/uploads/2019/10/office-home-and-business-2019-mac-300x300.jpg
https://ak.imgfarm.com/images/download/spokesperson/html5/audio/IEOnClick.mp3
https://www.sosvirus.net/wp-content/plugins/wp-postratings/images/stars/rating_over.gif
https://www.sosvirus.net/wp-content/uploads/2019/10/office-home-and-business-2019-mac-300x300.jpg.we
https://www.sosvirus.net/wp-content/uploads/wpdm-cache/windows-7-familiale-premium-64-bit-x64-200x20
https://www.sosvirus.net/wp-content/uploads/wpdm-cache/windows-7-entreprise-64-bit-x64-200x200.jpg
https://www.sosvirus.net/wp-content/uploads/2020/01/acheter-telecharger-windows-7-familiale-premium-
https://www.sosvirus.net/telecharger/windows-7-familiale-basique-32-bit-x86/
https://googleads.g.doubleclick.net/pagead/images/mtad/x_blue.png
https://www.sosvirus.net/telecharger/office-2019-professionnel-plus-32-bit/
https://www.sosvirus.net/telecharger-et-installer-windows-8/
https://www.sosvirus.net/wp-content/uploads/2014/02/UsbFix-Premium-2020-FR-FR-750x584.jpg.webp
https://googleads.g.doubleclick.net/aclk?sa=L&ai=CICquuy_KXvLKNJCi-gbzmZjgBf2-u7YFm8bwirYHABAJIIecyC
https://www.sosvirus.net/wp-content/uploads/2020/03/depannage-informatique-a-distance-100x100.jpg
https://free.pdfconverterhq.com
https://www.sosvirus.net/telecharger/iso-windows-10-famille-64-bit/
https://www.sosvirus.net/wp-content/uploads/wpdm-cache/Microsoft-Office-2016-Famille-et-Etudiants-20
https://schema.org/ListItem
https://www.sosvirus.net/telecharger/windows-10-professionnel-64-bit/#comment-1228
https://www.sosvirus.net/telechargements/iso-office/-professionnel-plus/
https://www.sosvirus.net/wp-content/uploads/wpdm-cache/windows-7-professionnel-32-bit-x86-200x200.jp
https://www.sosvirus.net/wp-content/litespeed/cssjs/aaf1c.js
https://www.sosvirus.net/telecharger/windows-10-professionnel-64-bit/#comment-1227
https://www.sosvirus.net/telecharger/office-2013-professionnel-plus-32-bit/
https://googleads.g.doubleclick.net/pagead/images/mtad/back_blue.png
https://www.sosvirus.net/telecharger/roguekiller-anti-malware/
https://www.sosvirus.net/telecharger/iso-windows-10-home-64-bit/
https://www.sosvirus.net/wp-content/uploads/2019/10/office-home-and-business-2019-mac-400x400.jpg
https://www.sosvirus.net/telecharger-et-installer-windows-7/
https://www.sosvirus.net/telecharger/usbfix-gratuit/#comment-10
https://www.sosvirus.net/telecharger/media-creation-tool-windows-10/
https://www.sosvirus.net/wp-content/uploads/2018/11/office-professional-plus-2019-100x100.jpg
http://schema.org/SiteNavigationElement

Dropped files

Name File Type Hashes Detection
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\css[3].css
 ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\f[4].txt
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\f[3].txt
 ASCII text, with very long lines
 #
Click to see the 97 hidden entries
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\f[2].txt
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\f[1].txt
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\f[10].txt
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\fP81QCZD1.txt
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\f3XPNI87Z.txt
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\dpixel[1].gif
 GIF image data, version 89a, 1 x 1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\downsize_200k_v1[1].jpg
 JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1200x628, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\depannage-informatique-rapide[1].htm
 HTML document, UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\depannage-informatique-a-distance-400x266[1].jpg
 "Compressed by jpeg-recompress", baseline, precision 8, 400x266, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\css[4].css
 ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\f[5].txt
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\css[2].css
 ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\css[1].css
 ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\ads[9].htm
 HTML document, ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\ads[8].htm
 HTML document, UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\ads[7].htm
 HTML document, UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\ads[6].htm
 HTML document, UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\ads[5].htm
 HTML document, UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\ads[4].htm
 HTML document, UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\ads[3].htm
 HTML document, ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\ads[2].htm
 HTML document, ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\ads[1].htm
 HTML document, UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\info_48[1]
 PNG image data, 47 x 48, 8-bit/color RGBA, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\wta_icon_2x[1].png
 PNG image data, 26 x 26, 8-bit/color RGBA, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\windows-10-professionnel-32-64-bit[1].htm
 HTML document, UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\sodar2[1].js
 HTML document, ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\sidebar_dynamic[1].css
 ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\pixel[1].png
 PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\otPcTab[1].json
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\otFlat[1].json
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\osd[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\matomo[1].gif
 GIF image data, version 89a, 1 x 1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\localStorage[2].htm
 HTML document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\localStorage[1].htm
 HTML document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\js[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\ads[10].htm
 HTML document, UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\index[1].htm
 HTML document, UTF-8 Unicode text, with very long lines, with CRLF, LF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\ga-audiences[1].gif
 GIF image data, version 89a, 1 x 1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\g9[1].png
 PNG image data, 110 x 110, 8-bit/color RGBA, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\fontawesome-webfont[1].eot
 Embedded OpenType (EOT), FontAwesome family
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\fbevents[2].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\fbevents[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\favicon[1].ico
 MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\f[9].txt
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\f[8].txt
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\f[7].txt
 ASCII text, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\f[6].txt
 ASCII text, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-21706820\msapplication.xml
 XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\1078404757212121027[1].jpg
 JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 380x200, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\1054533708[2].gif
 GIF image data, version 89a, 1 x 1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\1054533708[1].gif
 GIF image data, version 89a, 1 x 1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\0a6bcb1f712bfb717cf9bfef72621c29[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\01546f2ab01423a3e2c35e562c5c4915[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\imagestore\6aw4uvh\imagestore.dat
 data
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin8215062560\msapplication.xml
 XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20332743330\msapplication.xml
 XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20259167780\msapplication.xml
 XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-8760897390\msapplication.xml
 XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-6757900\msapplication.xml
 XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-4759708130\msapplication.xml
 XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\1178[1].png
 PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-18270793970\msapplication.xml
 XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-17529550060\msapplication.xml
 XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{C216E582-9DE3-11EA-AADD-C25F135D3C65}.dat
 Microsoft Word Document
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{C216E581-9DE3-11EA-AADD-C25F135D3C65}.dat
 Microsoft Word Document
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{908B7A1A-9DE3-11EA-AADD-C25F135D3C65}.dat
 Microsoft Word Document
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{8A07BDDE-9DE3-11EA-AADD-C25F135D3C65}.dat
 Microsoft Word Document
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{8A07BDDC-9DE3-11EA-AADD-C25F135D3C65}.dat
 Microsoft Word Document
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\D1YBPPLZ\www.sosvirus[1].xml
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\D1YBPPLZ\pdfconverterhq.dl.tb.ask[1].xml
 ASCII text, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\C16CYV4I\pdfconverterhq.dl.myway[1].xml
 ASCII text, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\9K719AIK\googleads.g.doubleclick[1].xml
 ASCII text, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\2076313506083323656[1].jpg
 JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 600x500, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\activeview[1].gif
 GIF image data, version 89a, 1 x 1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\QQ8OVLOP.htm
 HTML document, UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\83760bffa65798f3914784eea4b5e68a[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\818305267092147662[1].png
 PNG image data, 195 x 102, 8-bit colormap, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwlxdo[1].woff
 Web Open Font Format, TrueType, length 20204, version 1.1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdo[1].woff
 Web Open Font Format, TrueType, length 20096, version 1.1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7j[1].woff
 Web Open Font Format, TrueType, length 20180, version 1.1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\673742565193750105[1].jpg
 JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1200x627, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\5873677223384917597[1].jpg
 JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 380x200, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\5873502681525174442[1].png
 PNG image data, 336 x 280, 8-bit colormap, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\4017478901309828042[1].jpg
 JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 720x377, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\2175[1].gif
 GIF image data, version 89a, 1 x 1
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\1FBVMPHM\ak.staticimgfarm[1].xml
 ASCII text, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\15822997392195235443[1].png
 PNG image data, 764 x 400, 8-bit/color RGB, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\1513718886316[1].gif
 GIF image data, version 89a, 1 x 1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\1513285093574[1].png
 PNG image data, 290 x 182, 8-bit colormap, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\1512151785697[1].png
 PNG image data, 300 x 300, 8-bit colormap, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\1512151770681[1].png
 PNG image data, 300 x 300, 8-bit colormap, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\1511883351692[1].png
 PNG image data, 81 x 91, 8-bit colormap, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\1511883342300[1].png
 PNG image data, 81 x 91, 8-bit colormap, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\15076998832508249033[1].jpg
 JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 380x200, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\14844400773735680491[1].jpg
 JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 380x200, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\1410717919190065[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\KSU5XQMC\12445159049052764283[1].jpg
 JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 380x200, frames 3
 #