Joe Sandbox Cloud Basic

Want to search on specific fields?


Try our:

Advanced Search

Want to search in depth on all Cloud Basic reports?

Try: Joe Sandbox View

Register Login
sloganpng
top title background image
flash

http://storangegoogleapiddp.agilecrm.com

Status: finished
Submission Time: 2021-02-22 18:58:11 +01:00
Malicious
Phishing
HTMLPhisher

Comments

Tags

Details

  • Analysis ID:
    356207
  • API (Web) ID:
    614395
  • Analysis Started:
    2021-02-22 18:58:11 +01:00
  • Analysis Finished:
    2021-02-22 19:04:18 +01:00
  • Technologies:

Joe Sandbox

Engine Download Report Detection Info
Full Report Management Report IOC Report
malicious
Score: 52
System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

IPs

IP Country Detection
104.16.18.94
 United States
151.101.12.157
 United States
172.217.16.130
 United States
Click to see the 24 hidden entries
18.156.0.31
 United States
34.98.64.218
 United States
52.216.76.206
 United States
54.93.211.166
 United States
104.244.42.131
 United States
34.120.207.148
 United States
64.202.112.127
 United States
142.250.185.179
 United States
87.248.118.22
 United Kingdom
104.244.42.69
 United States
142.250.186.35
 United States
13.226.175.122
 United States
37.252.172.45
 European Union
142.250.74.194
 United States
141.226.228.48
 Israel
172.217.23.98
 United States
54.246.184.51
 United States
185.64.190.80
 United Kingdom
18.158.74.203
 United States
31.13.92.14
 Ireland
99.86.162.148
 United States
3.126.63.176
 United States
173.194.76.155
 United States
52.209.227.220
 United States

Domains

Name IP Detection
x.bidswitch.net
 0.0.0.0
static.ads-twitter.com
 0.0.0.0
d.adroll.mgr.consensu.org
 0.0.0.0
Click to see the 48 hidden entries
d.adroll.com
 0.0.0.0
cdn.jsdelivr.net
 0.0.0.0
stats2.agilecrm.com
 0.0.0.0
ups.analytics.yahoo.com
 0.0.0.0
stats.g.doubleclick.net
 0.0.0.0
ads.yahoo.com
 0.0.0.0
cm.g.doubleclick.net
 0.0.0.0
pixel.advertising.com
 0.0.0.0
sync.outbrain.com
 0.0.0.0
sync.taboola.com
 0.0.0.0
edge.gycpi.b.yahoodns.net
 87.248.118.22
pixel.rubiconproject.com
 0.0.0.0
www.clickcease.com
 0.0.0.0
s.adroll.com
 0.0.0.0
connect.facebook.net
 0.0.0.0
analytics.twitter.com
 0.0.0.0
our.agilecrm.com
 0.0.0.0
simage2.pubmatic.com
 0.0.0.0
googleads.g.doubleclick.net
 0.0.0.0
dsum-sec.casalemedia.com
 0.0.0.0
ib.adnxs.com
 0.0.0.0
eb2.3lift.com
 0.0.0.0
storangegoogleapiddp.agilecrm.com
 0.0.0.0
pagead46.l.doubleclick.net
 172.217.23.98
alb-aws-fr-bswx-2-1673521430.eu-central-1.elb.amazonaws.com
 54.93.211.166
d1gwclp1pmzk26.cloudfront.net
 99.86.162.148
platform.twitter.map.fastly.net
 151.101.12.157
scontent.xx.fbcdn.net
 31.13.92.14
idsync.rlcdn.com
 34.120.207.148
s3.amazonaws.com
 52.216.76.206
t.co
 104.244.42.69
adserver-vpc-alb-1-1446435489.eu-west-1.elb.amazonaws.com
 54.246.184.51
pagead.l.doubleclick.net
 172.217.16.130
cdnjs.cloudflare.com
 104.16.18.94
am-vip001.taboola.com
 141.226.228.48
doxhze3l6s7v9.cloudfront.net
 13.226.175.122
pug-lhr.pubmatic.com
 185.64.190.80
nydc1.outbrain.org
 64.202.112.127
us-u.openx.net
 34.98.64.218
s.twitter.com
 104.244.42.131
stats.l.doubleclick.net
 173.194.76.155
prod.ups-eu-central-1.aolp-ds-prd.aws.oath.cloud
 3.126.63.176
dualstack.engagement-bus-prod-641612343.eu-central-1.elb.amazonaws.com
 18.158.74.203
www.google.co.uk
 142.250.186.35
ib.anycast.adnxs.com
 37.252.172.45
prod.ups-ats.eu-central-1.aolp-ds-prd.aws.oath.cloud
 18.156.0.31
ghs.googlehosted.com
 142.250.185.179
adserver-vpc-alb-3-890571764.eu-west-1.elb.amazonaws.com
 52.209.227.220

URLs

Name Detection
https://www.google.%/ads/ga-audiences
http://www.agle1.me?utm_source=powered-by&
https://www.youtube.com/embed/LQOiZ8AhF0A
Click to see the 97 hidden entries
https://storangegoogleapiddp.agilecrm.com/forgot-domaindb
https://www.youtube.com/embed/0PcHh2OjagU
https://storangegoogleapiddp.agilecrm.com/login?lang=en
https://doxhze3l6s7v9.cloudfront.net/app/static/img/Android.svg
https://storangegoogleapiddp.agilecrm.com/login?lang=es
https://doxhze3l6s7v9.cloudfront.net/app/static/img/iphone-new.svg
https://s3.amazonaws.com/agilecrm/panel/uploaded-logo/a317/1492593925097/edoc1.png
https://static.woopra.com/js/woopra.js
https://github.com/twbs/bootstrap/blob/master/LICENSE)
http://storangegoogleapiddp.agilecrm.com/
http://supportcal.agilecrm.com
https://www.agilecrm.com/blog/feed/
https://storangegoogleapiddp.agilecrm.com/loginm/registercrm.com/forgot-passwordogin
https://doxhze3l6s7v9.cloudfront.net/beta/static/img/android-new.svg
https://d1gwclp1pmzk26.cloudfront.net/agile/stats/min/app/v11/agile-min.js
https://storangegoogleapiddp.agilecrm.com/forgot-domain
http://getbootstrap.com/javascript/#tabs
https://doxhze3l6s7v9.cloudfront.net/beta/static/images/agilecrm-logo.jpg
https://storangegoogleapiddp.agilecrm.com/forgot-password
https://storangegoogleapiddp.agilecrm.com/loginc-iframe.html
https://static.ads-twitter.com/uwt.js
https://www.agilecrm.com/support.html
http://a.adroll.com
https://storangegoogleapiddp.agilecrm.com/login?lang=pt
http://getbootstrap.com/javascript/#transitions
https://storangegoogleapiddp.agilecrm.com/loginapiddp.agilecrm.com/login?lang=ruLogin
https://storangegoogleapiddp.agilecrm.com/loginapiddp.agilecrm.com/login?lang=frLogin
https://s.adroll.com/j/roundtrip.js
https://storangegoogleapiddp.agilecrm.com/forgot-password.Esqueci
https://storangegoogleapiddp.agilecrm.com/login
http://getbootstrap.com/javascript/#modals
https://github.com/agilecrm/agile-popups#usage
http://www.agilecrm.com
https://restcountries.eu/rest/v1/name/
http://getbootstrap.com/javascript/#collapse
https://cct.google/taggy/agent.js
http://getbootstrap.com/javascript/#scrollspy
https://storangegoogleapiddp.agilecrm.com/loginapiddp.agilecrm.com/login?lang=itLogin
https://storangegoogleapiddp.agilecrm.com/forgot-password
https://storangegoogleapiddp.agilecrm.com/login?lang=en
https://s3.amazonaws.com/agilecrm/panel/uploaded-logo/a317/1490792217282/send-mail%2B(1).png
https://github.com/szimek/signature_pad
https://secure.gravatar.com/avatar/d41d8cd98f00b204e9800998ecf8427e.jpg?s=50&d=https%3A//dpm72z3
https://storangegoogleapiddp.agilecrm.com/login?lang=pt
https://d1gwclp1pmzk26.cloudfront.net/agile/agile-cloud.js
http://corner.squareup.com/2012/07/smoother-signatures.html
https://doxhze3l6s7v9.cloudfront.net/img/default-404.png
https://storangegoogleapiddp.agilecrm.com/forgot-domain
https://github.com/twbs/bootstrap/issues/14093
http://www.lemoda.net/maths/bezier-length/index.html
https://storangegoogleapiddp.agilecrm.com/flatfull/preload-js-srRoot
https://cdnjs.cloudflare.com/ajax/libs/intl-tel-input/9.2.4/js/utils.js
https://www.youtube.com/embed/aBUQVVXrf2I
https://storangegoogleapiddp.Root
https://storangegoogleapiddp.agilecRoot
https://s3.amazonaws.com/agilecrm/
https://s.adroll.com
http://getbootstrap.com/javascript/#buttons
https://github.com/select2/select2/blob/master/LICENSE.md
https://d.adroll.com
http://getbootstrap.com/javascript/#tooltip
https://www.linkedin.com/search/results/people/?keywords=
https://storangegoogleapiddp.agilecrm.com/login?lang=es
https://s3.amazonaws.com/agilecrm/panel/uploaded-logo/a317/1490689109731/gdrive.png
https://storangegoogleapiddp.agilecrm.com/login
http://salescal.agilecrm.com
https://my.agilecrm.com/register?utm_affiliate=
https://www.slideshare.net/slideshow/embed_code/32115990
https://storangegoogleapiddp.agilecrm.com/flatfull/preload-js-src-iframe.html
https://www.agilecrm.com/
https://secure.gravatar.com/avatar/
https://my.agilecrm.com/registercrm.com/forgot-password
http://arshaw.com/fullcalendar/
https://cdn01.boxcdn.net/js/static/select.js
https://storangegoogleapiddp.agilecrm.com/favicon.ico~
https://storangegoogleapiddp.agilecrm.com/login?lang=fr
https://storangegoogleapiddp.agilecrm.com/login?lang=fr
http://www.modernizr.com/)
https://storangegoogleapiddp.agilecrm.com/login?ls-src-iframe.html
https://media.twiliocdn.com/sdk/js/client/v1.7/twilio.min.js
https://~domain.agilecrm.com/sendemail/document/~docid/~contactid
https://www.agilecrm.c
https://s.adroll.com/j/ad-container.js
https://www.agilecrm.com/dp.agilecrm.com/login?lang=pt
https://www.agilecrm.com/?utm_source=affiliates&utm_medium=web&utm_campaign=
https://cdnjs.cloudflare.com/ajax/libs/intl-tel-input/9.2.4/js/intlTelInput.min.js
http://www.agilecrm.com/?utm_source=affiliates&utm_medium=web&utm_campaign=
http://benknowscode.wordpress.com/2012/09/14/path-interpolation-using-cubic-bezier-and-control-point
https://storangegoogleapiddp.agilecrm.com/loginom/dp.agilecrm.com/login?lang=ptLogin
https://stats.g.doubleclick.net/j/collect
https://test55-dot-sandbox-dot-agilecrmbeta.appspot.com/flatfull/images/user-default.jpg
https://twitter.com/intent/tweet?url=
https://github.com/krux/postscribe/blob/master/LICENSE.
http://getbootstrap.com)
https://connect.facebook.net/en_US/fbevents.js
https://agilecrm.s3.amazonaws.com/videos/thumbs/default.png
https://doxhze3l6s7v9.cloudfront.net/beta/static/img/agile-loader.gif

Dropped files

Name File Type Hashes Detection
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\login[4].htm
 HTML document, UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\login[3].htm
 HTML document, UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\login[2].htm
 HTML document, UTF-8 Unicode text, with very long lines
 #
Click to see the 97 hidden entries
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\login[1].htm
 HTML document, UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\MaterialIcons-Regular[1].woff
 Web Open Font Format, TrueType, length 57620, version 1.1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\es[1].js
 HTML document, UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\errorPageStrings[1]
 UTF-8 Unicode (with BOM) text, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\down[1]
 PNG image data, 15 x 15, 8-bit colormap, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\btn_google_signin[1].png
 PNG image data, 187 x 43, 8-bit/color RGBA, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\browser-detect[1].js
 ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\bootstrap.v3.min[1].css
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\agilecrm-forgot-password[1].jpg
 JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 548x566, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\agile-cloud[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\NewErrorPageTemplate[1]
 UTF-8 Unicode (with BOM) text, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\forgot-domain[1].htm
 HTML document, UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\72AVEQ7A3VCKZOATQLBUDH[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\sendrolling[1].js
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\roundtrip[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\portlets[1].js
 UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\maisonneue-light-webfont[1].eot
 Embedded OpenType (EOT), Maison Neue Light family
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\maisonneue-bold-webfont[1].eot
 Embedded OpenType (EOT), Maison Neue Bold family
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\login[3].htm
 HTML document, UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\login[2].htm
 HTML document, UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\login[1].htm
 HTML document, UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\login-8-high-prog[1].jpg
 [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1537x867, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\login-2-high-prog[1].jpg
 [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1537x867, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\lib-all-new-1[1].js
 UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\js-all-min-4[2].js
 UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\login-min[1].css
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\John-Danial[1].jpg
 JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 48x48, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\141590300270327[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\web-rules[4]
 HTML document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\web-rules[3]
 HTML document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\web-rules[2]
 HTML document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\web-rules[1]
 HTML document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\stat[1].js
 UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\sourcesanspro-bold[1].woff
 Web Open Font Format, TrueType, length 26608, version 1.1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\preload-js-src-iframe[1].htm
 HTML document, ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\portlets[2].js
 UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\portlets[1].js
 UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\favicon[1].ico
 MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\localize[1].js
 ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\js-all-min-4[2].js
 UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\js-all-min-4[1].js
 UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\js-all-min-3[1].js
 UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\js-all-min-2[1].js
 UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\js-all-min-1[1].js
 UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\index[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\gtm[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\fr[1].js
 HTML document, UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\js-all-min-2[1].js
 UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\fingerprint2.min[1].js
 UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\handlebars.min[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\portlets[1].js
 UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\material-icons[1].css
 ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\login-v2-min[1].css
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\jstz.min[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\js-all-min-3[2].js
 UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\js-all-min-3[1].js
 UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\js-all-min-2[2].js
 UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\js-all-min-2[1].js
 UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\js-all-min-1[1].js
 UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\jquery.min[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\head.min[1].js
 UTF-8 Unicode (with BOM) text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\portlets[2].js
 UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\fbevents[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\btn_yahoo_signin[1].png
 PNG image data, 187 x 43, 8-bit/color RGBA, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\agilecrm-login-new[1].png
 PNG image data, 548 x 566, 8-bit colormap, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\agile-webrules-min[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\agile-min[1].js
 C source, ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\141590300270327[2].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\141590300270327[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\imagestore\ynfz0jx\imagestore.dat
 data
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{19D90101-7583-11EB-90E4-ECF4BB862DED}.dat
 Microsoft Word Document
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{1063455E-7583-11EB-90E4-ECF4BB862DED}.dat
 Microsoft Word Document
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{1063455C-7583-11EB-90E4-ECF4BB862DED}.dat
 Microsoft Word Document
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\bootstrap.v3.min[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\js-all-min-3[1].js
 UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\KF0W15PX\storangegoogleapiddp.agilecrm[1].xml
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\js-all-min-1[2].js
 UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\js-all-min-1[1].js
 UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\it[1].js
 HTML document, UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\httpErrorPagesScripts[1]
 UTF-8 Unicode (with BOM) text, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\font[1].css
 ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\fbevents[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\down[1]
 PNG image data, 15 x 15, 8-bit colormap, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\buildings[1].jpg
 JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x830, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\buildings-low[1].jpg
 [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS3 Windows, datetime=2015:10:15 11:11:57], progressive, precision 8, 1920x830, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\js-all-min-4[1].js
 UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\bat[1].js
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\backbone-min[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\b-bootstrap[1].js
 ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\app[1].css
 ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\Jez-John[1].jpg
 JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 48x48, frames 3
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\141590300270327[2].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\141590300270327[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\web-rules[1]
 HTML document, ASCII text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\sourcesanspro[1].woff
 Web Open Font Format, TrueType, length 27248, version 1.1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\sourcesanspro-light[1].woff
 Web Open Font Format, TrueType, length 26540, version 1.1
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\pt[1].js
 HTML document, UTF-8 Unicode text, with very long lines, with no line terminators
 #