Joe Sandbox Cloud Basic

Want to search on specific fields?


Try our:

Advanced Search

Want to search in depth on all Cloud Basic reports?

Try: Joe Sandbox View

Register Login
sloganpng
top title background image
flash

https://www.canva.com/design/DAEOEcu9Gnc/C6LvqPRfMOYoF6OWlu9bVg/view?utm_content=DAEOEcu9Gnc&utm_campaign=designshare&utm_medium=link&utm_source=sharebutton

Status: finished
Submission Time: 2020-11-21 19:54:11 +01:00
Malicious
Phishing
HTMLPhisher

Comments

Tags

Details

  • Analysis ID:
    321415
  • API (Web) ID:
    544635
  • Analysis Started:
    2020-11-21 19:54:11 +01:00
  • Analysis Finished:
    2020-11-21 20:01:27 +01:00
  • Technologies:

Joe Sandbox

Engine Download Report Detection Info
Full Report Management Report IOC Report
malicious
Score: 88
System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

Third Party Analysis Engines

malicious

IPs

IP Country Detection
172.217.21.195
 United States
104.16.19.94
 United States
172.67.185.66
 United States
Click to see the 18 hidden entries
104.22.9.79
 United States
67.199.248.10
 United States
172.217.23.98
 United States
151.101.1.195
 United States
104.18.216.67
 United States
212.82.100.181
 United Kingdom
172.217.16.193
 United States
172.217.16.194
 United States
108.177.15.154
 United States
172.217.18.102
 United States
152.199.21.175
 United States
239.255.255.250
 Reserved
185.60.216.35
 Ireland
185.63.144.5
 United States
104.18.215.67
 United States
104.16.124.175
 United States
172.217.22.66
 United States
216.58.205.226
 United States

Domains

Name IP Detection
secure.aadcdn.microsoftonline-p.com
 0.0.0.0
sp.analytics.yahoo.com
 0.0.0.0
sdk.iad-01.braze.com
 0.0.0.0
Click to see the 37 hidden entries
assets.onestore.ms
 0.0.0.0
acctcdn.msauth.net
 0.0.0.0
ajax.aspnetcdn.com
 0.0.0.0
adservice.google.co.uk
 0.0.0.0
stats.g.doubleclick.net
 0.0.0.0
client.hip.live.com
 0.0.0.0
clients2.googleusercontent.com
 0.0.0.0
media-private.canva.com
 104.18.216.67
www.facebook.com
 0.0.0.0
signup.live.com
 0.0.0.0
www.linkedin.com
 0.0.0.0
aadcdn.msauth.net
 0.0.0.0
px.ads.linkedin.com
 0.0.0.0
candanappdevmoe.azurewebsites.net
 0.0.0.0
googleads.g.doubleclick.net
 0.0.0.0
snap.licdn.com
 0.0.0.0
9812343.fls.doubleclick.net
 0.0.0.0
cnd11.smsmail.net
 172.67.185.66
dart.l.doubleclick.net
 172.217.18.102
pagead46.l.doubleclick.net
 172.217.23.98
stats.l.doubleclick.net
 108.177.15.154
sni1gl.wpc.alphacdn.net
 152.199.21.175
cl.canva.com
 104.18.216.67
vapdelbnbapp.firebaseapp.com
 151.101.1.195
www.canva.com
 104.18.215.67
spdc-global.pbp.gysm.yahoodns.net
 212.82.100.181
pop-tln1-alpha.mix.linkedin.com
 185.63.144.5
star-mini.c10r.facebook.com
 185.60.216.35
static.canva.com
 104.18.216.67
pagead.l.doubleclick.net
 216.58.205.226
js.appboycdn.com
 104.22.9.79
cdnjs.cloudflare.com
 104.16.19.94
bit.ly
 67.199.248.10
font-public.canva.com
 104.18.215.67
www.google.co.uk
 172.217.21.195
unpkg.com
 104.16.124.175
googlehosted.l.googleusercontent.com
 172.217.16.193

URLs

Name Detection
https://candanappdevmoe.azurewebsites.net/RG3aVe6N/VwsGHUr/lgy3xO/
https://candanappdevmoe.azurewebsites.net/RG3aVe6N/VwsGHUr/lgy3xO/
https://candanappdevmoe.azurewebsites.net/RG3aVe6N/VwsGHUr/lgy3xO/ois.php?bbre=e2925b097549ccda96f0c
Click to see the 97 hidden entries
https://candanappdevmoe.azurewebsites.net/RG3aVe6N/VwsGHUr/lgy3xO/SPS
https://candanappdevmoe.azurewebsites.net/RG3aVe6N/VwsGHUr/lgy3xO/ois.php?bbre=e2925b097549ccda96f0ca13d25ae102#/Umolh1n7Zre4LrFlHAzNANn4EAJkIjpIAJQJ2a9-@&!nMo7W9B6y82fXLE3mVQIAZOb5sgkq@!&4Z1UuNv62qmRrls3xtfOVy5pbFc&@!-PenYufW5GJ10TL4CWplkVPjQPYhRRPu3UpBfORylr9rgqo1afqTdA8dbrthM595yI030V7c0y7J45Qhsl7jmrmZB008iRII-8tEiLm1CEIozXYyPvoAMQUjyEoOBKIybdzgJF6a2YehPPRNl9jogm8OQcHXhcmC6lqkTIdwTnA/D1710RZrrztcKgkEZ4JFqIWIPWV5jXvcqcQGJBtbA7iNk0YKz7LRuiS5wa888sf8gq
https://candanappdevmoe.azurewebsites.net/RG3aVe6N/VwsGHUr/lgy3xO/$HTTP
https://candanappdevmoe.azurewebsites.net/RG3aVe6N/VwsGHUr/lgy3xO/ois.php?bbre=e2925b097549ccda96f0ca13d25ae102#/riY01eQv887WU97FVLJpUH3nwahsbJVSKWGfN1S-@&!nMo7W9B6y82fXLE3mVQIAZOb5sgkq@!&4Z1UuNv62qmRrls3xtfOVy5pbFc&@!-ALxhpotzQX4Kno3EABjId9bKhZXdr81TPrNibSp5cetprWbvSr2wotx6wTV7UbQxXWoy8oxtr8Y75ffZCVcXCY5SHEkNm5u-5CSfWsT50XMXwKBmzDTgjftO5FWYMCKrYujcOUMofd7ZpHVGMlp5vUkBW2pkno7bpIMMZCmgbw/1LczHYZ0J6EiKvr07cnkHnbiTXBH4kslNTBLXfkemVwqzryLlzmwn1Swku1zFAFj9p
https://support.xbox.com/help/friends-social-activity/community/use-safety-settings
https://static.canva.com/web/292bbecde0fce6ffe18847a12c9a6dc6.2.runtime.js
https://npms.io/search?q=ponyfill.
https://login.skype.com/login
https://snap.licdn.com/li.lms-analytics/insight.beta.min.js
https://signin.kissmetrics.com/privacy/#controls
https://aka.ms/redeemrewards
http://www.fontbureau.com/designersG
https://acctcdn.msauth.net/converged_ux_v2_RfnRCrmapm3W_OFn994CMA2.css?v=1
https://www.xbox.com/Legal/ThirdPartyDataSharing
http://www.fontbureau.com/designers/frere-user.html
https://a.nel.cloudflare.com/report?s=RrI6%2F6uhRf8Bamd0EHaUo7aah9x8n8AF%2BnzkNA10dqLmwzpodG9QtLqKsz
https://feedback.googleusercontent.com
https://www.linkedin.com/legal/privacy-policy
http://www.opensource.org/licenses/mit-license.php)
https://canva.com/p
https://www.microsoft.
https://mixer.com/about/tos
http://fontello.comiconsRegulariconsiconsVersion
https://www.skype.com/go/legal
https://www.macromedia.com/support/documentation/en/flashplayer/help/settings_manager.html
https://a.nel.cloudflare.com/report?s=j58cTkLrSxTm%2BifGB25qLfcJ949J3J7RS44PQ%2Ft0qiSIgYwA30jMx5yas%
http://www.goodfont.co.kr
https://aka.ms/useterms
https://secure.aadcdn.microsoftonline-p.com/ests/2.1.6669.4/content/images/favicon_a.ico
https://www.canva.com/design/DAEOEcu9Gnc/C6LvqPRfMOYoF6OWlu9bVg/view?utm_content=DAEOEcu9Gnc&utm_cam
https://www.skype.com/go/legal.broadcast
https://ondemand.webtrends.com/support/optout.asp
https://www.privacyshield.gov/welcome
http://fontfabrik.com
http://www.galapagosdesign.com/staff/dennis.htm
http://www.typography.netD
https://9812343.fls.doubleclick.net
https://canva.com/q3
http://www.fontbureau.com/designers/?
https://signup.live.com/error.aspx?errcode=1045&mkt=en-US
http://www.tiro.com
http://sizzlejs.com/
https://www.optimizely.com/legal/opt-out/
https://acctcdn.msauth.net
http://www.fontbureau.com/designers?
https://canva.com/h
http://www.founder.com.cn/cn/bThe
http://jquery.org/license
https://www.skype.com/go/ustax
http://opensource.org/licenses/mit-license.php)
https://acctcdn.msauth.net/knockout_3.3.0_X1BYS2jZMbi7hfUj8VuqFA2.js?v=1
https://www.appnexus.com/
https://www.skype.com
https://static.canva.com/web/b144f4025476bd90a66e5378b1d15df650125aed.strings.js
https://adservice.google.co.uk/ddm/fls/i/dc_pre=CPXhifynlO0CFQbhuwgdo-gHww;src=9812343;type=retar0;c
https://skype.com/go/myaccount
https://aka.ms/taxservice
http://www.founder.com.cn/cn/cThe
http://www.sajatypeworks.com
http://www.json.org/json2.js
https://static.canva.com/web/a8284a82e57c7d67d5e3.2.js
https://js.appboycdn.com/web-sdk/3.0/appboy.core.min.js
https://www.xbox.com/en-US/Legal/CodeOfConduct
https://a.nel.cloudflare.com/report?s=v4prBolerkKeiP8s3KyQOMPHSF%2FOV8X4ERoqkDtraXTfrNWH0AcLl114zcoG
http://www.fontbureau.com/designers
http://www.asp.net/ajaxlibrary/CDN.ashx.
https://www.xbox.com/en-US/Legal/CodeOfConduct)
https://www.adr.org
https://www.canva.com/
https://acctcdn.msauth.net/lwsignupstringscountrybirthdate_en-us_pVtahKS9WUIZdNqg1DDhHg2.js?v=1
https://www.youradchoices.ca/fr
https://a.nel.cloudflare.com/report?s=aW2xMiZ3RDaz89WO4lC7JHnHmA8KwPbvn2lgToL2UL%2BuOFrik%2FuuuxVGKh
https://www.acuityads.com/opt-out/
https://acctcdn.msauth.net/images/microsoft_logo_7lyNn7YkjJOP0NwZNw6QvQ2.svg
https://static.canva.com/static/lib/sentry/5.15.4.min.js
https://acctcdn.msauth.net/images/favicon.ico?v=2~(
https://github.com/douglascrockford/JSON-js
https://ec.europa.eu/info/law/law-topic/data-protection/data-transfers-outside-eu/adequacy-protectio
https://acctcdn.msauth.net/lightweightsignuppackage_oZIcfFtGMdm_yHyDEji_8w2.js?v=1
https://www.xbox.com
https://www.skype.com).
https://9812343.fls.doubleclick.net/activityi;dc_pre=CPXhifynlO0CFQbhuwgdo-gHww;src=9812343;type=ret
https://acctcdn.msauth.net/jquerypackage_1.10_5V7LAuc3bNAQx2QQfr1RPw2.js?v=1
http://www.mpegla.com).
https://a.nel.cloudflare.com/report?s=yKTF3Tw3WsroBgCs9Rxj4V5KpFLD3NThcAIBlXbYHHfXWpC34FRp1AxKnv18dg
http://www.carterandcone.coml
https://www.xbox.com/managedatacollection
https://www.adjust.com/opt-out/
https://dns.google
https://mixer.com/contact
https://static.canva.com/web/36db7dd680be1e933b01f9539cc51480.2.js
https://www.youronlinechoices.com/
https://canva.com/$2
https://priv-policy.imrworldwide.com/priv/browser/us/en/optout.html
http://www.zhongyicts.com.cn
http://www.urwpp.deDPlease
http://www.galapagosdesign.com/DPlease

Dropped files

Name File Type Hashes Detection
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
 ASCII text
 #
Click to see the 97 hidden entries
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\2a4dce63-53c8-42f1-bd1f-a68a480ec17f.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\e8d153f1-2252-49dc-be36-ebde0e5a28b9.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL-journal
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL
 SQLite 3.x database, last written using SQLite version 3032001
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\QuotaManager-journal
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\QuotaManager
 SQLite 3.x database, last written using SQLite version 3032001
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\c073a44b-4e22-4b24-b824-6603e06d2713.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\converged_ux_v2_RfnRCrmapm3W_OFn994CMA2[1].css
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\axios.min[1].js
 ASCII text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\RE1Mu3b[1].png
 PNG image data, 216 x 46, 8-bit/color RGBA, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\7d-3b8b80[1].css
 UTF-8 Unicode text, with very long lines
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\39oebGZ[1].htm
 HTML document, ASCII text
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\imagestore\gee00pr\imagestore.dat
 data
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{1F0C296B-2C2B-11EB-90EB-ECF4BBEA1588}.dat
 Microsoft Word Document
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{18055A4C-2C2B-11EB-90EB-ECF4BBEA1588}.dat
 Microsoft Word Document
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{18055A4A-2C2B-11EB-90EB-ECF4BBEA1588}.dat
 Microsoft Word Document
 #
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\E5F0NRSV\candanappdevmoe.azurewebsites[1].xml
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\f43de022-f4d8-4e35-bf84-2d423e4a1f62.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\daf0b36f-ca66-4a83-8f93-d06681184404.tmp
 SysEx File -
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
 ASCII text, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\databases\Databases.db-journal
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\databases\Databases.db
 SQLite 3.x database, last written using SQLite version 3032001
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
 MPEG-4 LOAS
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\cc4c80bb-8921-4ef6-91ae-17d42d6b7a64.tmp
 very short file (no magic)
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c620d02a-bb2b-4a86-97db-32acab4519b5.tmp
 UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c53c27a6-cdb1-47f5-a1aa-c44562c2649d.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5e83b9cfa3f81ad1_0
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e4115b2c93fca474_0
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e3511df7a5a5c326_0
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\dda81cf9b0b047b1_0
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d0b48746d2734b6a_0
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c4950d0815c21f68_0
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c3d256598d5af694_0
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c2189956b60b2ce5_0
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\be13fec43ec95b31_0
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\bb69cd55fcfa7140_0
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b21148925dccb19e_0
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7f6bd7aed19fc99b_0
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6726d42dc28e6fb9_0
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\eba1480a166263c9_0
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\56a246e5228caa4a_0
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4cbfe86bb692371e_0
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\270ae0528ce28f93_0
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\9e7b714b-9213-4edb-837c-bff706fa3709.tmp
 UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\7451052b-e8bd-46fd-b306-473b9332d20b.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\13f18794-7164-4700-be87-b9da15fd8ee6.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\00a53aa8-48ec-40ab-be40-fb1bac72e355.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\984134fe-e9b9-4fb6-98a5-206eeb4dc9fe.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons
 SQLite 3.x database, last written using SQLite version 3032001
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.canva.com_0.indexeddb.leveldb\MANIFEST-000001
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.canva.com_0.indexeddb.leveldb\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.canva.com_0.indexeddb.leveldb\000003.log
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.canva.com_0.indexeddb.leveldb\000001.dbtmp
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
 SQLite 3.x database, last written using SQLite version 3032001
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\4007a6f6-7c08-484e-a2c4-b5fa92c8e8c7.tmp
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_1\_metadata\computed_hashes.json
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
 SQLite 3.x database, last written using SQLite version 3032001
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index
 data
 #