Engine | Download Report | Detection | Info |
---|---|---|---|
|
clean
Score: 1
|
System: Windows 7 x64 SP1 with Office 2010 SP1 (IE 11, FF52, Chrome 57, Adobe Reader DC 15, Flash 25.0.0.127, Java 8 Update 121, .NET 4.6.2)
|
|
|
clean
Score: 1
|
System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Run Condition: Potential for more IOCs and behavior
|
IP | Country | Detection |
---|---|---|
143.204.11.100 | United States | |
172.217.22.246 | United States | |
34.198.74.185 | United States | |
Click to see the 6 hidden entries | ||
172.217.23.33 | United States | |
13.226.169.24 | United States | |
172.217.23.34 | United States | |
143.204.11.64 | United States | |
204.41.3.217 | Canada | |
104.16.19.94 | United States |
Name | IP | Detection |
---|---|---|
yt3.ggpht.com | 0.0.0.0 | |
www.youtube.com | 0.0.0.0 | |
files.ontario.ca | 0.0.0.0 | |
Click to see the 15 hidden entries | ||
covid19.ontariohealth.ca | 0.0.0.0 | |
static.doubleclick.net | 0.0.0.0 | |
api.ontario.ca | 0.0.0.0 | |
covid-19.ontario.ca | 0.0.0.0 | |
cdn.jsdelivr.net | 0.0.0.0 | |
www.ontario.ca | 0.0.0.0 | |
d2khazk8e83rdv.cloudfront.net | 143.204.11.64 | |
d1yhecx6e3wyn1.cloudfront.net | 143.204.11.100 | |
www.phdapps.health.gov.on.ca | 204.41.3.217 | |
photos-ugc.l.googleusercontent.com | 172.217.23.33 | |
i.ytimg.com | 172.217.22.246 | |
cdnjs.cloudflare.com | 104.16.19.94 | |
d36pom45p27o8j.cloudfront.net | 13.226.169.24 | |
googleads.g.doubleclick.net | 172.217.23.34 | |
productio-nodeelas-1po85c440amc1-224777076.us-east-1.elb.amazonaws.com | 34.198.74.185 |
Name | Detection |
---|---|
https://youtu.be/ | |
https://covid-19.ontario.ca/covid19-cms-assets/2021-03/getting-covid-vaccine-meta-1920x1080-en.jpg | |
https://covid-19.ontario.ca/covid19-cms-assets/2020-12/co-covid-19-icons-covid-alert-2020-12-21.png | |
Click to see the 97 hidden entries | |
https://www.phdapps.health.gov.on.ca/phulocator/ | |
https://www.ontario.ca/img/favicon.ico~ | |
https://stage.api.ontariogovernment.ca | |
https://covid19results.ehealthontario.ca:4443/ | |
https://covid-19.ontario.ca/ontarios-covid-19-vac | |
https://covid-19.ontario.ca/centres-depistage/ | |
https://psfdh.on.ca/2020/04/03/community-assessment-centre/ | |
https://www.grhosp.on.ca/ | |
http://github.com/robloach/jquery-once | |
https://gbfht.ca/cac/ | |
https://covid-19.ontario.ca/fr/zones-et-restrictions | |
http://www.HamiltonCovidTest.ca | |
https://www.msh.on.ca/ | |
http://www.rvh.on.ca | |
https://www.bchsys.org/en/covid-19-online-scheduling.aspx | |
https://www.ontario.ca/page/government-ontarioDGovernment | |
https://testing.getcorigan.ca/ | |
http://www.lakeridgehealth.on.ca | |
https://www.ontario.ca | |
https://covid-19.ontario.ca/ | |
http://www.hwmh.ca | |
https://covid-19.ontario.ca/vernment-ontario | |
https://www.medicineshoppe.ca/en/ontario/toronto/the-medicine-shoppe-pharmacy-134-7014226 | |
https://www.youtube.com/embed/cs4qPsP6COA | |
https://www.myvisit.cmh.org | |
https://durhamregion.vertoengage.com/engage/generic-open-clinic?key=5f58a4fe-9e22-4fb8-b49a-b8fe1ca0 | |
https://trilliumhealthpartners.ca/assessment | |
https://eohu.ca/en/covid-19-novel-coronavirus | |
https://covid-19.ontario.ca/themes/custom/ds_theme/favicon.ico~& | |
https://southlake.ca/ | |
https://covid-19.ontario.ca/ | |
https://www.porcupinehu.on.ca/en/your-health/infectious-diseases/novel-coronavirus/covid-assessment- | |
https://www.walmart.ca/en/stores-near-me/woodbridge-supercentre-1081 | |
https://covid-19.ontario.ca/covid-19-test-and-testing-location-information | |
http://www.southstormontpharmacies.com | |
https://www.ontario.ca/.ca/book-vaccine/ | |
https://www.guardian-ida-pharmacies.ca/en/ontario/brampton/kennedy-medical-plex-pharmacy-ida-7027581 | |
https://covid-19.ontario.ca/book-vaccine/THowio.ca/ontarios-covid-19-vaccinatm/embed/YrjmP_ueahQ?con | |
https://www.ontario.ca/page/privacy-statement | |
https://www.walmart.ca/en/stores-near-me/richmond-hill-south-supercentre-1116 | |
https://registration-mom.mychamp.ca/Live/Montfort/Booking/Account/BookRegister | |
http://news.ontario.ca/newsroom/en | |
https://www.wdgpublichealth.ca/your-health/covid-19-information-public/covid-19-vaccine-information/ | |
https://slmhc.on.ca/about/covid-19-information/covid-19-assessment-centre/ | |
http://www.libertymarketpharmacy.com/ | |
https://www.haltonhealthcare.on.ca/covid-19-info/booking-a-test | |
https://www.ontario.ca/page/ethical-framework-covid-19-vaccine-distribution | |
https://news.ontario.ca/search/en?keywords=covid19 | |
https://www.rvh.on.ca/ | |
https://barriehealth.ca/ | |
https://CovidScreen.lacgh.napanee.on.ca) | |
https://www.phdapps.health.gov.on.ca/phulocator/4Public | |
https://hybridpharm.com/ | |
https://www.york.ca/wps/portal/yorkhome/health/yr/covid-19/covid19vaccinationclinics | |
http://www.bradysdrugstore.com | |
http://www.hauserspharmacy.com | |
https://covid-19.ontario.ca/book-vaccine/THowohealth.ca/os-covid-19-vaccinatm/embed/YrjmP_ueahQ?cont | |
https://one.halton.ca/vab/s/ | |
https://covid-19.ontario.ca/covid-19-data/data-catalogue/ed270bb8-340b-41f9-a7c6-e8ef587e6d11.json | |
https://hpepublichealth.ca/covid-19-vaccines/ | |
https://covid-19.ontario.ca/feedback/assessment-centre-locations | |
https://www.womenscollegehospital.ca/assessmentcentre | |
http://www.stevensonhospital.ca/news/index.html?id=265 | |
https://covid-19.ontario.ca/c19-book-vaccine-assets/social_image_en.png | |
https://hopitalmontfort.com/en/second-covid-19-care-clinic-opening-ottawa-east-thursday | |
https://www.Pharmachoice.com | |
http://www.whcacovid.com | |
https://www.ontario.ca/page/covid-19-support-people | |
https://covid-19.ontario.ca/index.html | |
https://covid-19.ontario.ca/get-covid-19-vaccine | |
https://www.ontario.ca/page/vaccines | |
https://www.ontario.ca/fr/page/accessibilite | |
https://nygh.on.ca/covid-19-updates | |
https://www.prhc.on.ca/about-us/covid-19-novel-coronavirus/ | |
https://portal.healthmyself.net/tehncovid/guest/#/g5x/book/type | |
https://api.ontario.ca/es/onesite | |
https://www.mahc.ca/en/services/covid19.aspx# | |
https://covid-19.ontario.ca/fr/index.fr.html | |
http://www.espanolaregionalhospital.ca/covid-19 | |
https://assessmentbooking.simplybook.plus/v2/ | |
https://www.phdapps.health.gov.on.ca/phulocator/riovirus) | |
https://www.hamilton.ca/coronavirus/covid-19-vaccine-booking | |
https://covid-19.ontario.ca/fr/le-plan-de-vaccination-de-lontario-contre-la-covid-19#phase-1 | |
https://www.osmh.on.ca/covid-19/ | |
https://www.ontario.ca/page/accessibility | |
http://www.ndfht.ca | |
https://covid-19.ontario.ca/book-vaccine/ | |
https://covid-19.ontario.ca/covid19-cms-assets/2021-02/tools-check-results.svg | |
http://www.metrodrugs.ca | |
http://www.health.gov.on.ca/en/pro/programs/publichealth/coronavirus/docs/Guidance_for_Prioritizing_ | |
https://covid-19.ontario.ca/covid19-cms-assets/2020-12/co-covid-19-icons-workplace-2020-12-21.png | |
https://covid-19.ontario.ca/covid-19-data/data-catalogue/8a89caa9-511c-4568-af89-7f2174b4378c.json | |
https://www.cmh.org/patients-visitors/service-resumption-covid-19/covid-19-testing | |
https://www.youtube.com/generate_204?cpn= | |
https://covid-19.ontario.ca/getting-covid-19-vaccine-ontario#phase-3 | |
https://covid-19.ontario.ca/getting-covid-19-vaccine-ontario#phase-2 | |
https://covid-19.ontario.ca/getting-covid-19-vaccine-ontario#phase-1 |
Name | File Type | Hashes | Detection |
---|---|---|---|
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\www-player[1].css |
ASCII text, with very long lines, with no line terminators | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\base[1].js |
ASCII text, with very long lines | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\banner-icon-alert-xsmall[1].png |
PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced | # | |
Click to see the 97 hidden entries | |||
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\back_to_top[1].js |
ASCII text | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\back_to_top[1].css |
ASCII text | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\app-a9735616a727a9b1be92[1].js |
UTF-8 Unicode text, with very long lines, with NEL line terminators | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\analytics[1].js |
ASCII text, with very long lines | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\align.module[1].css |
assembler source, ASCII text | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\ajax-progress.module[1].css |
ASCII text | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\Z3VCRLT7.htm |
HTML document, UTF-8 Unicode text, with very long lines | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\Raleway-700[1].woff |
Web Open Font Format, TrueType, length 16436, version 1.1 | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\PHULocator[1].png |
PNG image data, 1542 x 184, 8-bit/color RGBA, non-interlaced | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\8a89caa9-511c-4568-af89-7f2174b4378c[1].json |
ASCII text, with very long lines, with no line terminators | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\book-vaccine[1].htm |
HTML document, UTF-8 Unicode text, with very long lines | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\urlblockindex[1].bin |
data | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\trillium_6[1].jpg |
[TIFF image data, little-endian, direntries=0], baseline, precision 8, 144x144, frames 3 | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\template-page[1].htm |
ASCII text | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\spring-2021[1].jpg |
[TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1080, frames 3 | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\splash[1].htm |
HTML document, UTF-8 Unicode text | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\secondary-navigation[1].js |
ASCII text | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\report-price-gouging-during-corona-virus[1].svg |
SVG Scalable Vector Graphics image | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\raleway-modified-400[1].woff |
Web Open Font Format, TrueType, length 18244, version 4.20 | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\raleway-modified-400-79edfeb2a0670adbccb268d3b8f344f4[1].woff |
Web Open Font Format, TrueType, length 18244, version 4.20 | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\postalcodes[1].json |
ASCII text, with very long lines, with no line terminators | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\position-container.module[1].css |
ASCII text | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\mainstylePHealthPortal-en[1].css |
ASCII text, with CRLF line terminators | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\ontario-icon--error[1].svg |
SVG Scalable Vector Graphics image | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\ontario-header[1].js |
ASCII text | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\onesiteSearch[3].htm |
exported SGML document, ASCII text | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\onesiteSearch[2].htm |
exported SGML document, ASCII text | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\onesiteSearch[1].htm |
HTML document, UTF-8 Unicode text | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\onesiteContentDate[1].htm |
ASCII text | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\onesite-moment.min[1].js |
ASCII text, with very long lines | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\onesite-live-chat.min[1].js |
ASCII text, with very long lines | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\onesite-holiday-pay-calculator.min[1].js |
UTF-8 Unicode text, with very long lines | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\onesite-health.min[1].js |
UTF-8 Unicode text, with very long lines | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\onesite-analytics.min[1].js |
ASCII text, with very long lines | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\modernizr[1].js |
HTML document, ASCII text | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\phus[1].json |
ASCII text, with very long lines, with no line terminators | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\logo-serviceontario@3x[1].png |
PNG image data, 828 x 188, 8-bit/color RGBA, non-interlaced | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\logo-serviceontario@2x[1].png |
PNG image data, 314 x 76, 8-bit/color RGBA, non-interlaced | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\libs.min[1].js |
HTML document, UTF-8 Unicode text, with very long lines | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\jquery.min[1].js |
ASCII text, with very long lines | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\foundation-6-dropdown[1].css |
ASCII text | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\footer-default-supergraphic-logo[1].svg |
SVG Scalable Vector Graphics image | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\favicon[1].ico |
MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\favicon-32x32[1].png |
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\covid-19-main-theme[1].css |
UTF-8 Unicode text, with very long lines, with no line terminators | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\component.min[1].js |
UTF-8 Unicode text, with very long lines | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\co-covid-19-icons-workplace-2020-12-21[1].png |
PNG image data, 101 x 101, 8-bit colormap, non-interlaced | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\app.min[1].js |
UTF-8 Unicode text, with very long lines | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\effect-min[1].js |
ASCII text, with very long lines | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\drupalSettingsLoader[1].js |
ASCII text | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\details.module[1].css |
troff or preprocessor input, ASCII text | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\covidappbanner_240x182px[1].svg |
SVG Scalable Vector Graphics image | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\component.min[1].js |
UTF-8 Unicode text, with very long lines | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\component---src-pages-vaccine-locations-index-js-5583fc738e553f2ae798[1].js |
ASCII text, with very long lines, with no line terminators | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\co-covid-vaccine-page-intro-tall-704x1050-2020-12-24[1].jpg |
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 704x1050, frames 3 | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\co-covid-vaccine-bg-light-purple-772x772-2021-03-04[1].jpg |
[TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=1], baseline, precision 8, 772x772, frames 3 | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\co-covid-19-icons-wear-a-mask-2020-12-21[1].png |
PNG image data, 98 x 96, 8-bit gray+alpha, non-interlaced | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\co-covid-19-icons-stay-home-2020-12-21[1].png |
PNG image data, 96 x 96, 8-bit gray+alpha, non-interlaced | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\co-covid-19-icons-self-assessment-2020-12-21[1].png |
PNG image data, 96 x 96, 8-bit gray+alpha, non-interlaced | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\co-covid-19-icons-physical-distancing-2020-12-21[1].png |
PNG image data, 104 x 96, 8-bit gray+alpha, non-interlaced | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\favicon-32x32[1].png |
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\app-data[1].json |
ASCII text | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\api[1].js |
ASCII text, with very long lines, with no line terminators | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\RUKONSLK.htm |
HTML document, UTF-8 Unicode text, with very long lines | # | |
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\imagestore\lr5drzg\imagestore.dat |
data | # | |
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{A66EC5B2-9CB9-11EB-ADCF-ECF4BBB5915B}.dat |
Microsoft Word Document | # | |
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{854E300A-9CB9-11EB-ADCF-ECF4BBB5915B}.dat |
Microsoft Word Document | # | |
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{854E3008-9CB9-11EB-ADCF-ECF4BBB5915B}.dat |
Microsoft Word Document | # | |
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\Q3DXH6Q1\www.youtube[1].xml |
ASCII text, with very long lines, with no line terminators | # | |
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\MP98E46N\www.ontario[1].xml |
ASCII text, with no line terminators | # | |
C:\Users\user\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico |
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel | # | |
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506 |
data | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\onesite-search.min[1].js |
UTF-8 Unicode text, with very long lines | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\phone[1].svg |
SVG Scalable Vector Graphics image | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\open-sans-400-d0bad741aefb909e4be56d188b6f02b9[1].woff |
Web Open Font Format, TrueType, length 14260, version 1.1 | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\ontario@2x[1].png |
PNG image data, 360 x 91, 8-bit/color RGBA, non-interlaced | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\ontario-icon-alert-warning[1].png |
PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\ontario-a11y[1].js |
ASCII text | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\onesite[1].woff |
Web Open Font Format, TrueType, length 48360, version 1.0 | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\onesiteTaxonomies[1].htm |
HTML document, ASCII text | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\onesiteSearch[3].htm |
HTML document, ASCII text | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\onesiteSearch[2].htm |
exported SGML document, ASCII text | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\onesiteSearch[1].htm |
exported SGML document, ASCII text | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\onesiteFootnotes[1].htm |
HTML document, ASCII text | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\onesiteBreadcrumb[1].htm |
HTML document, ASCII text | # | |
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\77EC63BDA74BD0D0E0426DC8F8008506 |
Microsoft Cabinet archive data, 58596 bytes, 1 file | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\onesite-moment.min[1].js |
ASCII text, with very long lines | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\onesite-contact-us.min[1].js |
ASCII text, with very long lines | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\onesite-body.min[1].js |
ASCII text, with very long lines | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\onesite-angular-foundation.min[1].js |
ASCII text, with very long lines | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\nowrap.module[1].css |
ASCII text | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\mobile-chevron-right[1].svg |
SVG Scalable Vector Graphics image | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\js.module[1].css |
troff or preprocessor input, ASCII text | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\item-list.module[1].css |
ASCII text | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\ideas-to-combat-corona-virus[1].svg |
SVG Scalable Vector Graphics image | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\icon-alert-warning-white[1].svg |
SVG Scalable Vector Graphics image | # | |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5JC0A1KN\hidden.module[1].css |
ASCII text | # |