AG60273928I_COVID-19_SARS-CoV-2.doc
| Full Report | Management Report | Engine | Info | Verdict | Score | Reports |
|---|---|---|---|---|---|---|
 |
|
|||||
 |
System: Windows 7 x64 SP1 with Office 2010 SP2 (IE 11, FF52, Chrome 57, Adobe Reader DC 15, Flash 25.0.0.127, Java 8 Update 121, .NET 4.6.2) |
|
100/100
|
|||
 |
|
17/63
|
||||
 |
|
10/44
|
||||
 |
|
| IP | Country | Detection |
|---|---|---|
| 69.49.88.46 | United States |  |
| 71.72.196.159 | United States | |
| 185.2.4.29 | Italy | |
| Click to see the 2 hidden entries | ||
| 51.79.161.36 | Canada | |
| 152.32.168.168 | Hong Kong |  |
| Name | IP | Detection |
|---|---|---|
| mybusinessevent.com | 185.2.4.29 | |
| shulovbaazar.com | 51.79.161.36 | |
| uhk.cncranes.com | 0.0.0.0 | |
| Click to see the 1 hidden entries | ||
| uhk.asiash.com | 152.32.168.168 | |
| Name | Detection |
|---|---|
| https://thenetworker.ca/comment/8N4/ | |
| https://shulovbaazar.com | |
| http://uhk.cncranes.com | |
| Click to see the 27 hidden entries | |
| https://trayonlinegh.com/cgi-bin/HBPR/ | |
| http://mmo.martinpollock.co.uk/a/SQSGg/ | |
| http://uhk.cncranes.com/ErrorPages/3/ | |
| https://mybusinessevent.com | |
| http://69.49.88.46/kdd8h70lwp/lfu3p05/u2kanr3/ | |
| https://mybusinessevent.com/tiki-install/e/ | |
| https://capturetheaction.com.au/wp-includes/Yjp/ | |
| https://shulovbaazar.com/c/bcL6/ | |
| http://www.windows.com/pctv. | |
| http://investor.msn.com | |
| http://www.msnbc.com/news/ticker.txt | |
| http://ocsp.sectigo.com0 | |
| http://www.litespeedtech.com | |
| http://windowsmedia.com/redir/services.asp?WMPFriendly=true | |
| http://www.hotmail.com/oe | |
| http://services.msn.com/svcs/oe/certpage.asp?name=%s&email=%s&&Check | |
| https://mybusinessevent.comp | |
| http://crl.sectigo.com/SectigoRSATimeStampingCA.crl0t | |
| http://www.icra.org/vocabulary/. | |
| http://schemas.xmlsoap.org/ws/2004/08/addressing/role/anonymous. | |
| http://www.piriform.com/ccleanerhttp://www.piriform.com/ccleanerv | |
| https://shulovbaazar.comp | |
| http://crt.sectigo.com/SectigoRSATimeStampingCA.crt0# | |
| http://investor.msn.com/ | |
| https://sectigo.com/CPS0D | |
| http://www.piriform.com/ccleaner | |
| http://www.%s.comPA | |
| Name | File Type | Hashes | Detection |
|---|---|---|---|
C:\Users\user\Wdduy2m\Tmc1kuo\J70H.dll |
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Word\~WRS{73127D7D-FA20-48C4-87C4-17800DB89026}.tmp |
data | # | |
C:\Users\user\AppData\Roaming\Microsoft\Office\Recent\AG60273928I_COVID-19_SARS-CoV-2.LNK |
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Archive, ctime=Wed Aug 26 14:08:14 2020, mtime=Wed Aug 26 14:08:14 2020, atime=Wed Jan 13 02:15:37 2021, length=162304, window=hide | # | |
| Click to see the 4 hidden entries | |||
C:\Users\user\AppData\Roaming\Microsoft\Office\Recent\index.dat |
ASCII text, with CRLF line terminators | # | |
C:\Users\user\AppData\Roaming\Microsoft\Templates\~$Normal.dotm |
data | # | |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\J81QN4I88FVGHDT92CK8.temp |
data | # | |
C:\Users\user\Desktop\~$60273928I_COVID-19_SARS-CoV-2.doc |
data | # | |
