Joe Sandbox Cloud Basic

Want to search on specific fields?


Try our:

Advanced Search

Want to search in depth on all Cloud Basic reports?

Try: Joe Sandbox View

Register Login
sloganpng
top title background image
flash

http://www.coronavirustoday.com

Status: finished
Submission Time: 2020-09-18 15:35:52 +02:00
Malicious

Comments

Tags

Details

  • Analysis ID:
    287413
  • API (Web) ID:
    469969
  • Analysis Started:
    2020-09-18 15:35:54 +02:00
  • Analysis Finished:
    2020-09-18 15:43:51 +02:00
  • Technologies:

Joe Sandbox

Engine Download Report Detection Info
Full Report Management Report IOC Report
malicious
Score: 48
System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

Third Party Analysis Engines

malicious

IPs

IP Country Detection
104.16.95.65
 United States
13.224.103.124
 United States
52.70.222.8
 United States
Click to see the 37 hidden entries
35.244.159.8
 United States
216.58.207.130
 United States
23.185.0.3
 United States
91.228.74.226
 United Kingdom
13.224.103.12
 United States
172.217.20.226
 United States
13.224.103.59
 United States
52.41.232.40
 United States
185.64.190.78
 United Kingdom
35.186.253.211
 United States
104.26.7.139
 United States
104.24.104.14
 United States
34.98.64.218
 United States
13.224.103.47
 United States
3.120.3.178
 United States
35.178.131.166
 United States
13.224.100.124
 United States
217.182.200.20
 France
66.211.183.107
 United States
13.224.103.108
 United States
104.83.83.83
 United States
172.217.23.35
 United States
172.217.23.34
 United States
13.224.103.36
 United States
13.224.103.34
 United States
52.30.152.201
 United States
52.44.100.16
 United States
185.29.135.181
 United Kingdom
172.217.22.194
 United States
169.50.137.176
 United States
216.58.207.162
 United States
64.233.166.155
 United States
104.18.70.113
 United States
216.58.207.161
 United States
172.67.70.134
 United States
35.244.174.68
 United States
34.98.67.61
 United States

Domains

Name IP Detection
adservice.google.co.uk
 0.0.0.0
e.dlx.addthis.com
 0.0.0.0
cm.g.doubleclick.net
 0.0.0.0
Click to see the 64 hidden entries
platform-api.sharethis.com
 0.0.0.0
content.tapnative.com
 0.0.0.0
token.rubiconproject.com
 0.0.0.0
static.zdassets.com
 0.0.0.0
insight.adsrvr.org
 0.0.0.0
stats.g.doubleclick.net
 0.0.0.0
www.coronaviruspreventionnetwork.org
 0.0.0.0
d.agkn.com
 0.0.0.0
pixel.everesttech.net
 0.0.0.0
image6.pubmatic.com
 0.0.0.0
www.googletagservices.com
 0.0.0.0
ag.innovid.com
 0.0.0.0
d1r0ldx4ccoewq.cloudfront.net
 13.224.103.47
aragornapp-v2-prod-uk-lbj.inbake.com
 35.178.131.166
cms.quantserve.com
 0.0.0.0
rover.ebay.com
 0.0.0.0
c.sharethis.mgr.consensu.org
 0.0.0.0
ads.tapnative.com
 0.0.0.0
sync.mathtag.com
 0.0.0.0
cdn.ampproject.org
 0.0.0.0
l.sharethis.com
 0.0.0.0
sb.scorecardresearch.com
 0.0.0.0
fdyn.pubwise.io
 0.0.0.0
dpdiexdaja3hj.cloudfront.net
 13.224.103.108
secureir.ebaystatic.com
 0.0.0.0
googleads.g.doubleclick.net
 0.0.0.0
ssum-sec.casalemedia.com
 0.0.0.0
www.pixel.labcorp.com
 0.0.0.0
pixel.rubiconproject.com
 0.0.0.0
odr.mookie1.com
 0.0.0.0
js.adsrvr.org
 0.0.0.0
certify.alexametrics.com
 13.224.103.34
www.vaxbeforetravel.com
 104.24.104.14
covpn.oracle.com
 104.83.83.83
httplogserver-lb.global.unified-prod.sharethis.net
 3.120.3.178
ac2409ed291e04841b424223a3ec4991-926974307.us-west-2.elb.amazonaws.com
 52.41.232.40
googlecm.hit.gemius.pl
 217.182.200.20
rtb.openx.net
 35.186.253.211
dg2iu7dxxehbo.cloudfront.net
 13.224.100.124
www.coronavirustoday.com
 23.185.0.3
tagr-gcp-odr-euw4.mookie1.com
 34.98.67.61
eu-u.openx.net
 34.98.64.218
certify-js.alexametrics.com
 13.224.103.124
cf.zdassets.com
 104.18.70.113
global.px.quantserve.com
 91.228.74.226
static.cloudflareinsights.com
 104.16.95.65
widget.privy.com
 104.26.7.139
events.privy.com
 172.67.70.134
pixel-origin.mathtag.com
 185.29.135.181
pagead.l.doubleclick.net
 172.217.22.194
cdn-content.ampproject.org
 216.58.207.161
id.rlcdn.com
 35.244.174.68
rover.intl.g.ebay.com
 66.211.183.107
pagead46.l.doubleclick.net
 172.217.20.226
tag.simpli.fi
 169.50.137.176
us-u.openx.net
 35.244.159.8
stats.l.doubleclick.net
 64.233.166.155
dualstack.direct-alb-1640710162.us-east-1.elb.amazonaws.com
 52.44.100.16
d2ctznuk6ro1vp.cloudfront.net
 13.224.103.36
insight-566961044.eu-west-1.elb.amazonaws.com
 52.30.152.201
dlaj66hdiarg7.cloudfront.net
 13.224.103.59
cdn.tapnative.com
 13.224.103.12
pugm-lhr.pubmatic.com
 185.64.190.78
www.google.co.uk
 172.217.23.35

URLs

Name Detection
https://certify.alexametrics.com/atrk.gif?
https://certify.alexametrics.com/atrk.gif?account=AFGhu1Fx9f207i
https://www.pixel.labcorp.com/sites/all/themes/contrib/omega/omega/css/modules/user/user.base.css?qg
Click to see the 97 hidden entries
https://www.cdc.gov/coronavirus/2019-ncov/faq.html#Basics
https://www.vaxbeforetravel.com/travel-vaccines
https://www.coronavirustoday.com/newsletter
https://www.coronavirustoday.com/sites/default/files/js/js_EebRuRXFlkaf356V0T2K_8cnUVfCKesNTxdvvPSEh
http://tapnative.com/tapnative-advertisers.html
https://www.vaxbeforetravel.com/sites/default/files/styles/teaser_thumbnail/public/nick-fewings-Swbs
https://www.vaxbeforetravel.com/sites/default/files/css/css_mQF5jmmkFl7x8clZrYjdtIJF5281yVBpmKp_3k3d
https://www.pixel.labcorp.com/sites/all/modules/contrib/jquery_update/replace/ui/external/jquery.coo
https://www.pixel.labcorp.com/sites/all/libraries/swiper/js/swiper.min.js?qgsn5e
https://www.kcl.ac.uk/news/six-distinct-types-of-covid-19-identified
https://github.com/jquery/jquery/blob/3.4.0/dist/jquery.js#L4712
https://www.coronaviruspreventionnetwork.org/travel.com/healthy-travel-dealsRoot
https://www.labcorp.com/coronavirus-disease-covid-19/patient-information/covid-19-testing-options
https://www.coronavirustoday.com/newsletterel-deals
https://fontawesome.com/license/free
https://www.coronavirustoday.com/#organization
https://cdn.ampproject.org
http://www.twitter.com/
https://www.coronavirustoday.com/coronavirus-vaccines
https://www.etihad.com/en-us/news/etihad-airways-keeps-guests-protected-with-global-covid-19-insuran
https://github.com/ampproject/amphtml/blob/master/spec/amp-iframe-origin-policy.md
http://www.cdc.gov/coronavirus/about/prevention.html
https://www.pixel.labcorp.com/sites/all/themes/custom/omega_labcorp/external/font-awesome/css/font-a
https://cdn.ampproject.org/rtv/%
https://www.pixel.labcorp.com/sites/all/themes/custom/omega_labcorp/css/omega-labcorp.reset.css?qgsn
http://jquery.thewikies.com/browser
https://www.pixel.labcorp.com/sites/all/modules/contrib/date/date_api/date.css?qgsn5e
https://www.moh.gov.sg/news-highlights/details/tracetogether-and-safeentry-to-be-enhanced-in-prepara
https://developer.mozilla.org/en-US/docs/Web/HTML/Element
https://www.precisionvaccinations.com/vaccines/cvncov-sars-cov-2-vaccine
https://www.pixel.labcorp.com/sites/default/files/how_to_-_concise_buy_kit.svg
https://www.coronavirustoday.com/sites/default/files/styles/teaser_thumbnail/public/cube-2209365.jpg
https://www.pixel.labcorp.com/sites/default/files/price_breakdown_concise_lab_fees.svg
https://www.coronavirustoday.com/sites/default/files/styles/teaser_thumbnail/public/prasesh-shiwakot
https://getbootstrap.com/)
https://www.coronavirustoday.com/sites/default/files/styles/teaser_thumbnail/public/dna-4334173_0.jp
https://mantodea.mantisadnetwork.com
https://bugs.jquery.com/ticket/10076
https://www.coronavirustoday.com/sites/default/files/styles/teaser_thumbnail/public/planet-581239.jp
https://wwwnc.cdc.gov/eid/article/26/6/20-0233_article
https://3p.ampproject.net
https://elixirgentherapeutics.com/news/grants-and-funding/elixirgen-therapeutics-planning-to-begin-p
http://developer.a-blogcms.jp
https://z.moatads.com/ampanalytics093284/iframe.html
http://www.nytimes.com/
http://materializecss.com)
https://www.coronavirustoday.com/sites/default/files/styles/teaser_thumbnail/public/alex-mecl-0Sd09h
http://ogp.me/ns/video#
https://www.coronavirustoday.com/coronavirus-vaccinesPCoronavirus
https://www.nature.com/articles/s41577-020-0389-z?s=09
https://www.coronavirustoday.com/sites/all/themes/pv/images/logos/coronavirustoday-email.gif
https://www.pixel.labcorp.com/sites/all/themes/contrib/omega/omega/css/modules/system/system.message
https://espanol.coronaviruspreventionnetwork.org/
https://github.com/jquery/jquery/blob/1.5/jquery.js#L4960
http://www.reddit.com/
https://www.coronavirustoday.com/sites/default/files/styles/teaser_thumbnail/public/laboratory-28156
http://www.who.int/health-topics/coronavirus
http://stickyjs.com/
https://sharethis.com/platform/share-buttons?
https://www.pixel.labcorp.com/sites/all/themes/contrib/omega/omega/apple-touch-icon-precomposed-72x7
https://www.cdc.gov/coronavirus/2019-ncov/prevent-getting-sick/cloth-face-cover.html
http://ogp.me/ns/product#
https://www.vaxbeforetravel.com/sites/default/files/js/js_jNhWzrF8cd0TxnO3jQOXWheiXy-nxthuJtdzmXwvGn
https://www.pixel.labcorp.com/sites/default/files/googleanalytics/analytics.js?qgsn5e
https://github.com/twbs/bootstrap/graphs/contributors)
http://www.opensource.org/licenses/mit-license.php
https://fontawesome.comhttps://fontawesome.comFont
https://health.tamu.edu/bcgtrial/index.html
https://www.pixel.labcorp.com/sites/all/modules/contrib/views/css/views.css?qgsn5e
https://www.coronavirustoday.com/sites/default/files/js/js_bK8a361ckZXtSv0WBgqgZaVFG2sYzb41TjpYvGe0N
https://www.coronavirustoday.com/sites/default/files/styles/teaser_thumbnail/public/gold-513062.jpg
https://www.cdc.gov/coronavirus/2019-ncov/specific-groups/high-risk-complications.html
https://www.coronavirustoday.com/covid-19-diseaseHCOVID-19
https://www.cdc.gov/coronavirus/2019-ncov/lab/index.html?CDC_AA_refVal=https%3A%2F%2Fwww.cdc.gov%2Fc
http://ogp.me/ns/fb
https://www.wsj.com/articles/contact-tracing-the-wests-big-hope-for-suppressing-covid-19-is-in-disar
https://c.sharethis.mgr.consensu.org/portal-v2.html
https://www.coronavirustoday.com/coronavirusasenes
https://www.nih.gov/
https://www.pixel.labcorp.com/sites/all/modules/contrib/date/date_popup/themes/datepicker.1.7.css?qg
http://googleads.g.doubleclick.net
https://www.pixel.labcorp.com/sites/all/themes/contrib/omega/omega/css/modules/field/field.theme.css
https://www.pixel.labcorp.com/covid-19travel-dealsn
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11023
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11022
https://github.com/cure53/DOMPurify/blob/2.0.11/dist/purify.js#L128
https://www.coronavirustoday.com/coronavirus-tests
https://support.pixel.labcorp.com/hc/en-us/sections/360007814854-COVID-19
https://dmx.districtm.io/b/v1
https://www.coronavirustoday.com/sites/default/files/css/css_mQF5jmmkFl7x8clZrYjdtIJF5281yVBpmKp_3k3
https://github.com/twada/licensify)
https://github.com/jquery/jquery/blob/1.5/jquery.js#L4957
https://data.adxcel-ec2.com/pixel/
https://github.com/jquery/jquery/blob/1.5/jquery.js#L4958
https://www.citi.com/credit-cards/credit-card-details/citi.action?ID=aadvantage-mile-up-credit-card#
https://www.pixel.labcorp.com/sites/all/modules/contrib/forcejs/forcejs.js?qgsn5e
https://www.niaid.nih.gov/

Dropped files

Name File Type Hashes Detection
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\downsize_200k_v1[3].jpg
 JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 399x209, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\jquery.reject[1].css
 ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\jquery.min[1].js
 ASCII text, with very long lines
 #
Click to see the 97 hidden entries
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\joshua-coleman-fXls-tVemno-unsplash[1].jpg
 gd-jpeg v1.0 (using IJG JPEG v62), quality = 70", baseline, precision 8, 200x150, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\icon[1].png
 PNG image data, 15 x 15, 16-bit/color RGBA, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\how_to_-_concise_buy_kit[1].svg
 SVG Scalable Vector Graphics image
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\hanny-QVk7c7qnNCk-unsplash[1].jpg
 gd-jpeg v1.0 (using IJG JPEG v62), quality = 70", baseline, precision 8, 200x150, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\glyphicons-halflings-regular[1].eot
 Embedded OpenType (EOT), GLYPHICONS Halflings family
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\font-awesome.min[1].css
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\favicon[1].ico
 GIF image data, version 89a, 16 x 16
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\favicon-16x16[1].png
 PNG image data, 16 x 16, 8-bit colormap, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\dpixel[1].gif
 GIF image data, version 89a, 1 x 1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\downsize_200k_v1[4].jpg
 JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 399x209, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\larm-rmah-AEaTUnvneik-unsplash[1].jpg
 gd-jpeg v1.0 (using IJG JPEG v62), quality = 70", baseline, precision 8, 200x150, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\downsize_200k_v1[2].png
 PNG image data, 300 x 300, 8-bit/color RGB, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\downsize_200k_v1[2].jpg
 JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 600x314, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\downsize_200k_v1[1].png
 PNG image data, 300 x 300, 8-bit colormap, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\downsize_200k_v1[1].jpg
 JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 600x314, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\css_tUZrK_OjWAKdIctNU15TqwyWYQ61-lPpQQOIcILqBnk[1].css
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\css_LwPRIyyddKhFMBli7R-dw_U_VeTM-9QqxmOlQM_Zx50[1].css
 UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\css[4].css
 ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\css[3].css
 ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\css[2].css
 ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\css[1].css
 ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\coronavirustoday[1].gif
 GIF image data, version 89a, 840 x 120
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\sharethis[1].js
 UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\view_pixel_1x1[1].gif
 GIF image data, version 89a, 1 x 1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\vaxbeforetravel[1].gif
 GIF image data, version 89a, 840 x 120
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\user.theme[1].css
 ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\up_loader.1.1.0[1].js
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\tn[1]
 HTML document, ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\temperature-5185845[1].jpg
 gd-jpeg v1.0 (using IJG JPEG v62), quality = 70", baseline, precision 8, 200x150, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\tbel-abuseridze-eBW1nlFdZFw-unsplash[1].jpg
 gd-jpeg v1.0 (using IJG JPEG v62), quality = 70", baseline, precision 8, 200x150, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\system.messages.theme[1].css
 ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\system.base[1].css
 ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\swiper.min[1].css
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\sodar2[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\shopping[1].jpg
 JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 388x679, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\coronavirus[1].htm
 HTML document, UTF-8 Unicode text, with very long lines, with CRLF, LF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\sd[1].gif
 GIF image data, version 89a, 1 x 1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\pws[1].js
 UTF-8 Unicode text, with very long lines, with CRLF, LF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\pre_pws[1].js
 ASCII text, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\pixel[1].png
 PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\phone-icon[1].png
 PNG image data, 50 x 50, 8-bit colormap, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\obesity-993126[1].jpg
 gd-jpeg v1.0 (using IJG JPEG v62), quality = 70", baseline, precision 8, 200x150, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\nick-fewings-SwbsW4uf1Qs-unsplash[1].jpg
 gd-jpeg v1.0 (using IJG JPEG v62), quality = 70", baseline, precision 8, 200x150, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\modal-video.min[1].css
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\martha-dominguez-de-gouveia-k-NnVZ-z26w-unsplash[1].jpg
 gd-jpeg v1.0 (using IJG JPEG v62), quality = 70", baseline, precision 8, 200x150, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\logo-tapnative[1].png
 PNG image data, 200 x 36, 8-bit/color RGBA, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\linkid[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-8760897390\msapplication.xml
 XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\PublicSans-LightItalic[1].woff
 Web Open Font Format, TrueType, length 40480, version 0.0
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\PublicSans-Italic[1].woff
 Web Open Font Format, TrueType, length 40524, version 0.0
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\PublicSans-BlackItalic[1].woff
 Web Open Font Format, TrueType, length 39580, version 0.0
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\466606[1].gif
 GIF image data, version 89a, 1 x 1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\2175[1].gif
 GIF image data, version 89a, 1 x 1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\1_318434_0[1].jpg
 JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 500x300, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\1_318432_0[1].jpg
 JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 500x300, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\15266416295627551393[1].jpg
 JPEG image data, baseline, precision 8, 1200x1200, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\imagestore\ynfz0jx\imagestore.dat
 data
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin8215062560\msapplication.xml
 XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20332743330\msapplication.xml
 XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20259167780\msapplication.xml
 XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\PublicSans-SemiBoldItalic[1].woff
 Web Open Font Format, TrueType, length 40532, version 0.0
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-6757900\msapplication.xml
 XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-4759708130\msapplication.xml
 XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-314712940\msapplication.xml
 XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-21706820\msapplication.xml
 XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-18270793970\msapplication.xml
 XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-17529550060\msapplication.xml
 XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{6BA4665D-F9FF-11EA-90E2-ECF4BB862DED}.dat
 Microsoft Word Document
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{6BA4665C-F9FF-11EA-90E2-ECF4BB862DED}.dat
 Microsoft Word Document
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{6BA4665A-F9FF-11EA-90E2-ECF4BB862DED}.dat
 Microsoft Word Document
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\E4CM9Y7K\googleads.g.doubleclick[1].xml
 ASCII text, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\E1UZ2ABI\www.vaxbeforetravel[1].xml
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\ads[7].htm
 HTML document, UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\cookie_push_onload[1].htm
 HTML document, ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\commerce_add_to_cart_confirmation[1].css
 ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\close[1].png
 PNG image data, 16 x 16, 8-bit gray+alpha, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\ckeditor[1].css
 ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\bootstrap-datepicker.min[1].css
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\ben-wicks-iDCtsz-INHI-unsplash[1].jpg
 gd-jpeg v1.0 (using IJG JPEG v62), quality = 70", baseline, precision 8, 200x150, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\atrk[2].gif
 GIF image data, version 89a, 1 x 1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\atrk[1].js
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\atrk[1].gif
 GIF image data, version 89a, 1 x 1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\amp4ads-v0[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\amp-ad-exit-0.1[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\alex-mecl-0Sd09h2Kbso-unsplash[1].jpg
 gd-jpeg v1.0 (using IJG JPEG v62), quality = 70", baseline, precision 8, 200x150, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\11V8V6QY\www.coronavirustoday[1].xml
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\ads[6].htm
 HTML document, UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\ads[5].htm
 HTML document, UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\ads[4].htm
 HTML document, UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\ads[3].htm
 HTML document, UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\ads[2].htm
 HTML document, UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\ads[1].htm
 HTML document, UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\activeview[1].gif
 GIF image data, version 89a, 1 x 1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\Roboto-ThinItalic[1].ttf
 TrueType Font data, 18 tables, 1st "GDEF", 15 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.Roboto ThinItalicRoboto Thin ItalicVersion 2.137
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\Roboto-Italic[1].ttf
 TrueType Font data, 18 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.RobotoItalicRoboto ItalicVersion 2.137; 2017Robo
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\Roboto-BlackItalic[1].ttf
 TrueType Font data, 18 tables, 1st "GDEF", 15 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.Roboto BlackItalicRoboto Black ItalicVersion 2.1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\PublicSans-Thin[1].woff
 Web Open Font Format, TrueType, length 38480, version 0.0
 #