Joe Sandbox Cloud Basic

Want to search on specific fields?


Try our:

Advanced Search

Want to search in depth on all Cloud Basic reports?

Try: Joe Sandbox View

Register Login
sloganpng
top title background image
flash

https://tfzpwni_uvhwl.storage.googleapis.com/ZfpGsvFNKRgtdlqy#qs=ua-acacaefejchgadhgjejbhacigdhabababadhahcaccaihfachegahhhjcacb

Status: finished
Submission Time: 2020-09-23 20:48:54 +02:00
Malicious
Phishing
Phisher

Comments

Tags

Details

  • Analysis ID:
    289284
  • API (Web) ID:
    473676
  • Analysis Started:
    2020-09-23 20:48:54 +02:00
  • Analysis Finished:
    2020-09-23 20:53:34 +02:00
  • Technologies:

Joe Sandbox

Engine Download Report Detection Info
Full Report Management Report IOC Report
malicious
Score: 48
System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

IPs

IP Country Detection
147.75.33.229
 Switzerland
13.224.100.124
 United States
162.247.242.18
 United States
Click to see the 28 hidden entries
54.77.92.238
 United States
172.217.22.34
 United States
172.217.20.230
 United States
172.217.23.2
 United States
172.217.22.194
 United States
107.162.137.162
 United States
52.208.77.122
 United States
173.44.135.218
 United States
34.249.88.231
 United States
13.224.103.71
 United States
172.217.20.226
 United States
13.224.103.38
 United States
93.179.69.102
 Russian Federation
147.75.80.95
 Switzerland
52.43.23.235
 United States
172.217.23.35
 United States
18.196.147.130
 United States
104.17.79.107
 United States
54.171.23.184
 United States
107.162.156.70
 United States
147.75.84.91
 Switzerland
13.224.89.41
 United States
52.167.19.110
 United States
31.13.92.36
 Ireland
31.13.92.14
 Ireland
13.224.103.86
 United States
13.224.103.21
 United States
74.125.133.155
 United States

Domains

Name IP Detection
magnetic.t.domdex.com
 0.0.0.0
a.rfihub.com
 0.0.0.0
secure.livechatinc.com
 0.0.0.0
Click to see the 55 hidden entries
favicon.ico
 0.0.0.0
adservice.google.co.uk
 0.0.0.0
stats.g.doubleclick.net
 0.0.0.0
insight.adsrvr.org
 0.0.0.0
20677407p.rfihub.com
 0.0.0.0
script.hotjar.com
 0.0.0.0
static.hotjar.com
 0.0.0.0
cm.g.doubleclick.net
 0.0.0.0
9992984.fls.doubleclick.net
 0.0.0.0
st2.dialogtech.com
 0.0.0.0
www.facebook.com
 0.0.0.0
js.adsrvr.org
 0.0.0.0
consentprovider.leadexec.net
 0.0.0.0
js-agent.newrelic.com
 0.0.0.0
pixel.rubiconproject.com
 0.0.0.0
api.livechatinc.com
 0.0.0.0
connect.facebook.net
 0.0.0.0
s.adroll.com
 0.0.0.0
st1.dialogtech.com
 0.0.0.0
accounts.livechatinc.com
 0.0.0.0
cdn.livechatinc.com
 0.0.0.0
vars.hotjar.com
 0.0.0.0
cdn.userway.org
 0.0.0.0
submit.trmnx-ext.com
 0.0.0.0
9230976.fls.doubleclick.net
 0.0.0.0
tags.tiqcdn.com
 0.0.0.0
star-mini.c10r.facebook.com
 31.13.92.36
d33ak19d8k4t0l.cloudfront.net
 13.224.103.21
stproducer.dialogtech.com
 107.162.137.162
in.hotjar.com
 52.208.77.122
dg2iu7dxxehbo.cloudfront.net
 13.224.100.124
api.userway.org
 52.43.23.235
accessibilityserver.org
 13.224.103.71
scontent.xx.fbcdn.net
 31.13.92.14
adserver-vpc-alb-1-1446435489.eu-west-1.elb.amazonaws.com
 54.171.23.184
pagead.l.doubleclick.net
 172.217.20.226
collect.tealiumiq.com
 18.196.147.130
cdnjs.cloudflare.com
 104.17.79.107
bluewaterbest.com
 173.44.135.218
stnumreq.dialogtech.com
 107.162.156.70
d2q3y8xuzzqg4e.cloudfront.net
 13.224.103.86
dart.l.doubleclick.net
 172.217.20.230
pagead46.l.doubleclick.net
 172.217.22.34
www.terminix.com
 52.167.19.110
d13h2xquyh8bz2.cloudfront.net
 13.224.103.38
stats.l.doubleclick.net
 74.125.133.155
wowlosefat.com
 93.179.69.102
89ca855a075f1d47c0a490ec8aa47d0c-100.s.section.io
 147.75.80.95
bam.nr-data.net
 162.247.242.18
insight-566961044.eu-west-1.elb.amazonaws.com
 54.77.92.238
www.google.co.uk
 172.217.23.35
d31y97ze264gaa.cloudfront.net
 13.224.89.41
d.adroll.mgr.consensu.org
 0.0.0.0
d.adroll.com
 0.0.0.0
cdn-prod.servicemaster.com
 0.0.0.0

URLs

Name Detection
http://submit.trmnx-ext.com/unsub/SRsYlDE4kaLvFVl7gzHp2U5E0zN5Umy7DZ3wBzazb7agLHGi40xLzxtQAW9X1sZe
https://www.terminix.com/pest-control/cockroaches/
https://www.hotjarconsent.com/sq.html
Click to see the 97 hidden entries
https://d.adroll.mgr.consensu.org/consent/iabcheck/
https://insight.adsrvr.org/track/up?adv=rs7pct1&ref=https%3A%2F%2Fwww.terminix.com%2Fcustomer-suppor
https://cdn-prod.servicemaster.com/-/media/Themes/Terminix/Terminix/Base-Themes/Terminix-Pests-BaseT
http://www.twitter.com/
https://www.terminix.com/customer-support/privacy/
https://9230976.fls.doubleclick.net/activityi;src=9230976;type=remarket;cat=sitew0;ord=413775683944;
https://www.terminix.com/pest-control/ticks/
https://www.terminix.com/customer-support/
https://cdn-prod.servicemaster.com/-/media/Feature/Terminix/Header/Terminix-logo.png?rev=2252c76ae19
http://www.amazon.com/
http://sizzlejs.com/
https://www.terminix.com/additional-pest-solutions/crawl-space-services/
http://jquery.org/license
https://www.hotjarconsent.com/fi.html
https://cdn.livechatinc.com/widget/
https://www.hotjar.com
http://wowlosefat.com/qs=ua-acacaefejchgadhgjejbhacigdhabababadhahcaccaihfachegahhhjcacb
https://www.terminix.com/pest-control/
https://www.hotjarconsent.com/zh.html
https://9992984.fls.doubleclick.net/activityi;src=9992984;type=campa0;cat=tmx-a0;ord=8150640154472.5
https://github.com/malsup/form
https://cdn.livechatinc.com/widget/static/js/4.afa3955b.chunk.js
https://cdn-prod.servicemaster.com/-/media/Themes/Terminix/Terminix/Terminix-Customer-Support/Script
http://insights-staging.hotjar.com
https://www.terminix.com/about/media-center/
http://www.terminix.com/
https://www.terminix.com/about/
http://www.terminix.com/privacy/datarequest
http://malsup.com/jquery/form/
https://www.googletraveladservices.com/travel/clk/pagead/conversion/
http://www.aboutads.info/choices
http://submit.trmnx-ext.com/unsub/SRsYlDE4kaLvFVl7gzHp2U5E0zN5Umy7DZ3wBzazb7agLHGi40xLzxtQAW9X1sZe
https://cdn.userway.org/widgetapp/
http://www.nytimes.com/
https://st2.dialogtech.com/st/log
https://github.com/twbs/bootstrap/blob/master/LICENSE)
https://vars.hotjar.com/box-469cf41adb11dc78be68c1ae7f9457a4.html
https://www.terminix.com/commercial/pest-control/
http://submit.trmnx-ext.com/unsub/SRsYlDE4kaLvFVl7gzHp2U5E0zN5Umy7DZ3wBzazb7agLHGi40xLzxtQAW9X1sZeba
https://www.hotjarconsent.com/pt_br.html
https://github.com/Eonasdan/bootstrap-datetimepicker/
https://www.terminix.com/customer-support/privacy//
http://submit.trmnx-ext.com/favicon.ico
https://9230976.fls.doubleclick.net/activityi;src=9230976;type=remarket;cat=sitew0;ord=557372941424;
https://insight.adsrvr.org/track/up
https://s.dca0.com/sdk.v5.0.min.js?1600702245
https://www.hotjarconsent.com/it.html
https://s.adroll.com
https://www.terminix.com/pest-control/ants/
https://www.terminix.com/about/associations/
https://stats.g.doubleclick.net/j/collect
https://script.hotjar.com/
https://www.terminix.com/additional-pest-solutions/attic-insulation/
https://github.com/krux/postscribe/blob/master/LICENSE.
http://getbootstrap.com)
https://connect.facebook.net/en_US/fbevents.js
http://wowlosefat.com/
https://stcdproducer.dialogtech.com/v1/data
https://www.terminix.com/pest-control/spiders/
https://www.hotjarconsent.com/de.html
http://www.reddit.com/
https://www.terminix.com/commercial/
https://www.terminix.com/buyonline/confirmation
https://www.hotjarconsent.com/pt.html
https://d.adroll.com
http://unlicense.org/UNLICENSE
https://magnetic.t.domdex.com/51758/pix.gif?t=c&for=Terminix
http://james.padolsey.com
https://insight.adsrvr.org/track/up?adv=8j00x7m&ref=https%3A%2F%2Fwww.terminix.com%2Fcustomer-suppor
http://jqueryui.com
https://www.hotjarconsent.com/sv.html
https://cdn-prod.servicemaster.com/-/media/Feature/Terminix/Header/terminix-favicon.png?rev=27996333
https://st1.dialogtech.com/st/
https://github.com/malsup/form#copyright-and-license
https://www.macromedia.com/support/documentation/en/flashplayer/help/settings_manager.html
http://www.youtube.com/
http://submit.servmast.com/unsub/TUL5KFEewwG17zPdn8EZbM2LTdN52hAVRwonOMwR1lXvjd0twnFALj15RFELAzuy
https://www.google.%/ads/ga-audiences
https://www.hotjarconsent.com/el.html
https://www.hotjarconsent.com/
http://www.aboutads.info/choices/
http://youradchoices.com/appchoices
https://cdn-prod.servicemaster.com/-/media/Themes/Terminix/Terminix/Base-Themes/Terminix-BaseLibrari
https://www.terminix.com/-/media/Themes/Terminix/Terminix/Base-Themes/Terminix-BaseLibraries/fonts/f
https://www.terminix.ct.com/unsub/SRsYlDE4kaLvFVl7gzHp2U5E0zN5Umy7DZ3wBzazb7agLHGi40xLzxtQAW9X1sZeba
http://fontawesome.io
https://www.terminix.com/exterminators/
https://www.terminix.com/buyonline/address.jsp
https://www.terminix.com/commercial/industry-solutions/
https://adservice.google.co.uk/ddm/fls/i/src=9992984;type=campa0;cat=tmx-a0;ord=8150640154472.528;~o
https://www.hotjarconsent.com/ru.html
https://www.hotjarconsent.com/fr.html
https://www.hotjarconsent.com/pl.html
https://www.terminix.com/pest-control/rodents/
https://insights-staging.hotjar.com
https://secure.livechatinc.com/
https://cdn.livechatinc.com/widget/static/js/iframe.46371614.chunk.js

Dropped files

Name File Type Hashes Detection
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\B87Z87FM\ZfpGsvFNKRgtdlqy[1].htm
 HTML document, ASCII text, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\B87Z87FM\optimized-min[1].css
 UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\NUEPGTR9\bat[1].js
 ASCII text, with very long lines, with no line terminators
 #
Click to see the 97 hidden entries
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\NUEPGTR9\analytics[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\NUEPGTR9\a-svm-company-light[1].png
 PNG image data, 144 x 12, 8-bit/color RGBA, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\NUEPGTR9\URI.min[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\NUEPGTR9\225991718618876[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\NUEPGTR9\10000-team-members-light[1].png
 PNG image data, 169 x 53, 8-bit/color RGBA, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\B87Z87FM\utag[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\B87Z87FM\utag.41[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\B87Z87FM\utag.16[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\B87Z87FM\tr[1].gif
 GIF image data, version 89a, 1 x 1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\B87Z87FM\st[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\B87Z87FM\privacy[1].htm
 HTML document, UTF-8 Unicode text, with very long lines, with CRLF, LF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\NUEPGTR9\box-469cf41adb11dc78be68c1ae7f9457a4[1].htm
 HTML document, ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\B87Z87FM\open_chat[1].htm
 HTML document, ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\B87Z87FM\o-0NIpQlx3QUlC5A4PNjXhFVatyH[1].woff
 Web Open Font Format, TrueType, length 52284, version 1.1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\B87Z87FM\o-0IIpQlx3QUlC5A4PNr6zRG[1].woff
 Web Open Font Format, TrueType, length 52088, version 1.1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\B87Z87FM\localization.en.13.ee121f4c7f8015887bb8d7dd406bd1cf_e669ebc1baa0dcdf28e26cb8a72a8e84[1].json
 UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\B87Z87FM\linkid[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\B87Z87FM\jquery[1].js
 UTF-8 Unicode (with BOM) text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\B87Z87FM\iframe.46371614.chunk[1].js
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\B87Z87FM\hotjar-235384[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\B87Z87FM\form-validation[1].js
 ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\B87Z87FM\fbevents[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\B87Z87FM\f[1].txt
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\NUEPGTR9\utag.296[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PEJLKQA8\activityi;src=9992984;type=campa0;cat=tmx-a0;ord=8150640154472[1].htm
 HTML document, ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PEJLKQA8\activityi;src=9230976;type=remarket;cat=sitew0;ord=413775683944;gtm=2od9g1;auiddc=1829076029.1600919408;u4=https___www.terminix.com_customer-support_privacy__;~oref=https___www.term[1].htm
 HTML document, ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PEJLKQA8\accredited-business-light[1].png
 PNG image data, 107 x 40, 8-bit/color RGBA, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PEJLKQA8\JTUSjIg1_i6t8kCHKm459WlhzQ[1].woff
 Web Open Font Format, TrueType, length 23480, version 1.1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PEJLKQA8\JTURjIg1_i6t8kCHKm45_dJE3gnD-A[1].woff
 Web Open Font Format, TrueType, length 23836, version 1.1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PEJLKQA8\JTURjIg1_i6t8kCHKm45_c5H3gnD-A[1].woff
 Web Open Font Format, TrueType, length 23872, version 1.1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PEJLKQA8\1757819274529420[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\NUEPGTR9\widget_app_1600872123257[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\NUEPGTR9\widget[1].js
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\NUEPGTR9\utag.v[1].js
 ASCII text, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\NUEPGTR9\utag.349[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\NUEPGTR9\utag.334[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\B87Z87FM\expertly-trained-light[1].png
 PNG image data, 164 x 58, 8-bit/color RGBA, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\NUEPGTR9\up_loader.1.1.0[1].js
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\NUEPGTR9\terminix-favicon[1].png
 PNG image data, 16 x 16, 4-bit colormap, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\NUEPGTR9\spin_wh[1].svg
 SVG Scalable Vector Graphics image
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\NUEPGTR9\postmessage[1].htm
 HTML document, ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\NUEPGTR9\optimized-min[2].css
 UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\NUEPGTR9\optimized-min[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\NUEPGTR9\optimized-min[1].css
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\NUEPGTR9\js[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\NUEPGTR9\index[1].js
 ASCII text, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\NUEPGTR9\fontawesome-webfont-eot[1].eot
 Embedded OpenType (EOT), FontAwesome family
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\NUEPGTR9\font-hotjar_5.f4b154[1].eot
 Embedded OpenType (EOT), font-hotjar_5 family
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-8760897390\msapplication.xml
 XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\4PB7FJMT\fontawesome-webfont-woff[1].woff
 Web Open Font Format, TrueType, length 65452, version 1.0
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\4PB7FJMT\fontawesome-webfont-eot[1].htm
 HTML document, ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\4PB7FJMT\css[1].css
 ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\4PB7FJMT\SRsYlDE4kaLvFVl7gzHp2U5E0zN5Umy7DZ3wBzazb7agLHGi40xLzxtQAW9X1sZe[1].htm
 HTML document, ASCII text, with very long lines, with CRLF, LF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\4PB7FJMT\I2Z4JWOY75HL3MUHHWFUX5[1].js
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\4PB7FJMT\90-years-experience-light[1].png
 PNG image data, 170 x 60, 8-bit/color RGBA, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\4PB7FJMT\68b64ad676[1].js
 ASCII text, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\4PB7FJMT\4.afa3955b.chunk[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\imagestore\dikxvqf\imagestore.dat
 data
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin8215062560\msapplication.xml
 XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20332743330\msapplication.xml
 XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20259167780\msapplication.xml
 XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\4PB7FJMT\get_static_config.13.2201.16.16.2927.254.1102.99.23.12.6.10.9[1].js
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-6757900\msapplication.xml
 XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-4759708130\msapplication.xml
 XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-314712940\msapplication.xml
 XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-21706820\msapplication.xml
 XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-18270793970\msapplication.xml
 XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-17529550060\msapplication.xml
 XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{F7F1715F-FE18-11EA-90E3-ECF4BB570DC9}.dat
 Microsoft Word Document
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{F7F1715E-FE18-11EA-90E3-ECF4BB570DC9}.dat
 Microsoft Word Document
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{F7F1715C-FE18-11EA-90E3-ECF4BB570DC9}.dat
 Microsoft Word Document
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\SV0Q5KKI\vars.hotjar[1].xml
 ASCII text, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\NSG7PEEY\www.terminix[1].xml
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\4PB7FJMT\utag.310[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\B87Z87FM\ec[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\B87Z87FM\consumer-affairs-light[1].png
 PNG image data, 95 x 40, 8-bit/color RGBA, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\B87Z87FM\activityi;src=9230976;type=remarket;cat=sitew0;ord=557372941424;gtm=2od9g1;auiddc=1829076029.1600919408;~oref=https___www.terminix[1].htm
 HTML document, ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\B87Z87FM\VisitorIdentification[1].js
 UTF-8 Unicode (with BOM) text, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\B87Z87FM\Terminix-logo[1].png
 PNG image data, 181 x 33, 8-bit/color RGBA, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\B87Z87FM\JTURjIg1_i6t8kCHKm45_epG3gnD-A[1].woff
 Web Open Font Format, TrueType, length 23764, version 1.1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\B87Z87FM\JTUQjIg1_i6t8kCHKm459WxRyS7g[1].woff
 Web Open Font Format, TrueType, length 24012, version 1.1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\4PB7FJMT\utag.333[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\4PB7FJMT\utag.332[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\4PB7FJMT\utag.325[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\4PB7FJMT\utag.323[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\HDNNKDJH\secure.livechatinc[1].xml
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\4PB7FJMT\utag.298[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\4PB7FJMT\utag.292[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\4PB7FJMT\up-arrow[1].png
 PNG image data, 23 x 13, 8-bit/color RGBA, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\4PB7FJMT\tracking[1].js
 data
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\4PB7FJMT\tr[1].gif
 GIF image data, version 89a, 1 x 1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\4PB7FJMT\privacy[2].htm
 HTML document, ASCII text, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\4PB7FJMT\privacy[1].htm
 HTML document, ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\4PB7FJMT\optimized-min[2].js
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\4PB7FJMT\optimized-min[1].js
 UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\4PB7FJMT\nr-1177.min[1].js
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\4PB7FJMT\log[1].gif
 GIF image data, version 89a, 1 x 1
 #