IOCReport

loading gif

Files

File Path
Type
Category
Malicious
https://www.gov.uk/guidance/coronavirus-covid-19-declaration-form-for-international-travel
URL
initial url
 clean
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\09c759a1-eb54-40d2-bbb0-710e2d4da64f.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\2a27a898-bc38-4bd6-8ec6-144bd4aeed11.tmp
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\4698976b-48e6-49fa-9a53-b0a9aba92126.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\61ce7da3-3edd-4d61-9953-7adf82f57ff8.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\9e5114de-79de-4364-b923-351bbaf9df84.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\0a29e4d3-f8f6-4048-8ee1-139e17bfa212.tmp
very short file (no magic)
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\10d78e90-279c-47e8-a58c-08adc2c55b13.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\26f4f584-665c-42b6-b953-80afd387994b.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\2f079620-0104-4b55-8fa8-ea7ff21911e6.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\2f854ad1-8843-4694-8853-8247bcdeb10c.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\3b3d3ba6-7c0e-4180-89fb-1c5a2cb9465f.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\40875ca4-1026-40f7-b1cd-090169ca4d3d.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\48542e03-e7db-4041-89ee-b62cdc1a7bd2.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\85af428f-7fa6-4dfc-89f5-651dc6e2d91a.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0b7a5bbe87dc6be1_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\13b9e889e4e777c1_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\3497f9ad7dc29f82_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4153868f0a0ac3d3_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4cc2c4ec3f6fd94f_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\530ab17a5f4e2c6c_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5d3fa02a24aa480a_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8d2b15ad693bd09a_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9026c1cc08d6ff8f_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ace99e70b2c6e69e_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\bafcb963c6242693_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e33fbbccd4fb1406_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f936eb2c3f9dbfd5_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f9b6b42bceab5fdf_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\fad1842d86d53f14_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\fca4f098b45fdfca_0
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor-journal
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL-journal
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\4a15d653-c039-4f63-b5c9-c7d7be415ffb.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\f2293b67-125d-4be0-8230-bf54e91820dd.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Web Data
SQLite 3.x database, last written using SQLite version 3032001
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\ac2822df-3aef-4ae6-b0ff-30ce08c53cfc.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c62a307f-e0e4-48d4-9d9c-151db6cd5188.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c9a00579-09e4-44ca-a2de-5d8f853f7bd3.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\ce2876dd-1d57-496f-820a-68fec2f06d20.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\d96011a7-d68a-477a-8244-5603dc1db8fe.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
MPEG-4 LOAS
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\de36b082-cf43-44a9-92fd-825e4b06b8ef.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\df4f7e83-fc8a-447c-b311-c03b7692d827.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\f3a5cb4e-f830-4f6a-b58c-e83c606b6a46.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
ASCII text, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\a3121961-e5f8-4e7b-b330-2442d20319f3.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\a5586f39-5dcc-4750-a22f-cc2569165338.tmp
data
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\b5a30127-cde3-4d96-b1d6-b2f05f63c369.tmp
SysEx File -
dropped
 clean
C:\Users\user\AppData\Local\Google\Chrome\User Data\f2eae259-a1ae-41b7-9a47-9bed91064303.tmp
ASCII text, with very long lines, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\3c12779d-782d-44c9-9a03-5a440d0a72b5.tmp
Google Chrome extension, version 3
dropped
 clean
C:\Users\user\AppData\Local\Temp\86ed26e0-9979-4963-9083-7aa178573b27.tmp
very short file (no magic)
dropped
 clean
C:\Users\user\AppData\Local\Temp\browser-sslkeys.log
ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Temp\d538eaa8-8cc3-4a0d-ac91-a0b4d54aa6f8.tmp
very short file (no magic)
dropped
 clean
C:\Users\user\AppData\Local\Temp\f6a8d181-24d2-4d1d-baa1-b1c8cc04e950.tmp
Google Chrome extension, version 3
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\am\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\ar\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\bg\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\bn\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\ca\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\cs\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\da\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\de\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\el\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\en\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\es\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\et\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\fa\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\fi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\fil\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\fr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\gu\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\hi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\hr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\hu\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\id\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\it\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\ja\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\kn\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\ko\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\lt\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\lv\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\ml\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\mr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\ms\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\nb\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\nl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\pl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\pt\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\ro\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\ru\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\sk\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\sl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\sr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\sv\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\sw\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\ta\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\te\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\th\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\tr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\uk\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\vi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\zh\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\_locales\zh_TW\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\CRX_INSTALL\manifest.json
ASCII text, with very long lines, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_1736882013\f6a8d181-24d2-4d1d-baa1-b1c8cc04e950.tmp
Google Chrome extension, version 3
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\3c12779d-782d-44c9-9a03-5a440d0a72b5.tmp
Google Chrome extension, version 3
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\bg\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\ca\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\cs\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\da\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\de\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\el\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\en\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\en_GB\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\es\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\es_419\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\et\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\fi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\fil\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\fr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\hi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\hr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\hu\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\id\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\it\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\ja\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\ko\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\lt\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\lv\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\nb\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\nl\messages.json
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\pl\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\pt_BR\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\pt_PT\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\ro\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\ru\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\sk\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\sl\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\sr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\sv\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\th\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\tr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\uk\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\vi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\zh_CN\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\_locales\zh_TW\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\images\icon_128.png
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\images\icon_16.png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Temp\scoped_dir1880_403369648\CRX_INSTALL\manifest.json
ASCII text, with CRLF line terminators
dropped
 clean
There are 190 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation 'https://www.gov.uk/guidance/coronavirus-covid-19-declaration-form-for-international-travel'
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1572,6179841392289751219,8571533054898512681,131072 --lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1736 /prefetch:8
clean

URLs

Name
IP
Malicious
https://duckduckgo.com/chrome_newtab
unknown
 clean
https://www.gov.uk/P
unknown
 clean
https://duckduckgo.com/ac/?q=
unknown
 clean
https://www.gov.uk/guidance/coronavirus-covid-19-declaration-form-for-international-travel#content
unknown
 clean
https://www.gov.uk/search/research-and-statistics
clean
https://www.gov.uk/search/all?keywords=
unknown
 clean
https://gov.wales/sites/default/files/js/js_3KOrO4Ww6IO1xutFjJXt_EmChmgAZ2EhqrlxszFNDA0.js
unknown
 clean
https://www.gov.uk/guidance/coronavirus-covid-19-declaration-form-for-international-travel#historyJC
unknown
 clean
https://www.gov.uk/government/organisations/home-officeHome
unknown
 clean
https://www.gov.uk/government/how-government-works
unknown
 clean
https://www.gov.uk/travel-abroad#
unknown
 clean
https://www.gov.uk/contact/govuk/problem_reports
unknown
 clean
https://www.gov.uk/government/world
unknown
 clean
https://www.gov.uk/travel-abroad$
unknown
 clean
https://cc.cdn.civiccomputing.com/8/cookieControl-8.2.1.min.js
unknown
 clean
https://www.gov.uk/guidance/coronavirus-covid-19-declaration-form-for-international-travelCoronaviru
unknown
 clean
https://www.gov.uk/coronavirus
clean
https://www.gov.uk/assets/frontend/application-21540043d3d55868b19d5158a614c3398a0e48f2a86bf94460d0d
unknown
 clean
https://www.gov.uk/government/how-government-worksHow
unknown
 clean
https://www.gov.uk/world
clean
https://www.gov.uk/government/organisations/department-for-transport
unknown
 clean
https://www.gov.uk/guidance/coronavirus-covid-19-declaration-form-for-international-travelDq
unknown
 clean
https://www.gov.uk/government/organisations/department-for-transportDepartment
unknown
 clean
https://www.gov.uk/contact/govuk/email-survey-signup
unknown
 clean
https://www.gov.uk/government/world/
unknown
 clean
https://gov.wales/travellers-exempt-self-isolation-coronavirus-covid-19XBorder
unknown
 clean
https://www.gov.uk/government/organisations/home-office
unknown
 clean
https://gov.wales/travellers-exempt-self-isolation-coronavirus-covid-19
unknown
 clean
https://dns.google
unknown
 clean
https://gov.wales/themes/custom/govwales/favicon/favicon-32.png
unknown
 clean
https://www.gov.uk/travel-abroadTravel
unknown
 clean
https://www.gov.uk/search/news-and-communications.
unknown
 clean
https://www.gov.uk/guidance/coronavirus-covid-19-declaration-form-for-international-travel#history
clean
https://gov.wales/:
unknown
 clean
https://www.gov.uk/help/cookies_
unknown
 clean
https://duckduckgo.com/favicon.icohttps://duckduckgo.com/?q=
unknown
 clean
https://www.gov.uk/guidance/coronavirus-covid-19-declaration-form-for-international-travelJCoronavir
unknown
 clean
https://www.gov.uk/guidance/coronavirus-covid-19-declaration-form-for-international-travel
clean
https://www.gov.uk/guidance/coronavirus-covid-19-declaration-form-for-international-travel#contentJC
unknown
 clean
https://www.gov.uk/coronavirusCoronavirus
unknown
 clean
https://www.gov.uk/news-and-communicationsNews
unknown
 clean
https://www.gov.uk/guidance/coronavirus-covid-19-declaration-form-for-international-travel#historyCo
unknown
 clean
https://gov.wales
unknown
 clean
https://www.gov.uk/search/news-and-communications
unknown
 clean
https://www.gov.uk/assets/whitehall/application-25d2783e4154a9e14ef817c2183931744ea4f178fb0d4d2260f2
unknown
 clean
https://www.gov.uk/search/news-and-communicationsNews
unknown
 clean
https://www.gov.uk/g
unknown
 clean
https://www.gov.uk/search/news-and-communications
clean
https://www.gov.uk/worldUK
unknown
 clean
https://www.gov.uk/travel-abroad
unknown
 clean
https://www.gov.uk
unknown
 clean
https://www.gov.uk/government/how-government-works
clean
https://www.gov.uk/guidance/coronavirus-covid-19-declaration-form-for-international-travel-
unknown
 clean
https://www.gov.uk/news-and-communications
unknown
 clean
https://www.gov.uk/search/opensearch.xml/
unknown
 clean
https://www.gov.uk/assets/static/favicon-8d811b8c3badbc0b0e2f6e25d3660a96cc0cca7993e6f32e98785f205fc
unknown
 clean
https://feedback.googleusercontent.com
unknown
 clean
https://www.gov.uk/government/worldv
unknown
 clean
https://gov.wales/themes/custom/govwales/favicon/favicon-32.pngr
unknown
 clean
https://www.gov.uk/V
unknown
 clean
https://www.gov.uk/coronavirus5
unknown
 clean
https://www.gov.uk/assets/finder-frontend/application-8661d997c1e894f90eb69be1fa453a61c919d00d637a11
unknown
 clean
https://www.gov.uk/
unknown
 clean
https://www.gov.uk/government/organisations/department-for-transport
clean
https://www.gov.uk/coronavirusi
unknown
 clean
https://www.gov.uk/guidance/coronavirus-covid-19-declaration-form-for-international-travelV
unknown
 clean
https://www.gov.uk/guidance/coronavirus-covid-19-declaration-form-for-international-travel
unknown
 clean
https://www.gov.uk/search
unknown
 clean
https://gov.wales/travellers-exempt-self-isolation-coronavirus-covid-19Border
unknown
 clean
https://www.gov.uk/assets/government-frontend/application-ad747abfe1bc91b2a7c9f5e232b5723efeb42522f2
unknown
 clean
https://www.gov.uk/search/policy-papers-and-consultations?content_store_document_type%5B%5D=open_consultations&content_store_document_type%5B%5D=closed_consultations
clean
https://www.gov.uk/help/cookiesCookies
unknown
 clean
https://www.gov.uk/news-and-communications5
unknown
 clean
https://www.gov.uk/government/organisations
unknown
 clean
https://www.gov.uk/guidance/coronavirus-covid-19-declaration-form-for-international-travel#history
unknown
 clean
https://www.gov.uk/assets/static/header-footer-only-21591776c6c870857b1b0569af6e383cf216bcfbd4af446f
unknown
 clean
https://www.gov.uk/government/organisations/department-for-transport$
unknown
 clean
https://www.gov.uk/guidance/coronavirus-covid-19-declaration-form-for-international-travel#content
clean
https://www.gov.uk/guidance/coronavirus-covid-19-declaration-form-for-international-travel2JCoronavi
unknown
 clean
https://www.gov.uk/guidance/coronavirus-covid-19-declaration-form-for-international-travel#history;
unknown
 clean
https://www.gov.uk/search/research-and-statistics
unknown
 clean
https://www.gov.uk/assets/collections/application-410ff39f81f7c65f77da249d7fbcd1cdb0532f6c6562f4894a
unknown
 clean
https://www.gov.uk/search/research-and-statisticsw
unknown
 clean
https://www.gov.uk/help/cookies
clean
https://cdnjs.cloudflare.com/ajax/libs/jquery-mousewheel/3.1.13/jquery.mousewheel.min.js
unknown
 clean
https://www.gov.uk/government/get-involvedci
unknown
 clean
https://gov.wales/search
unknown
 clean
https://www.gov.uk/guidance/coronavirus-covid-19-declaration-form-for-international-travel#content#
unknown
 clean
https://www.gov.uk/government/organisations/home-office
clean
https://gov.wales/
unknown
 clean
https://www.gov.uk/government/get-involved
unknown
 clean
https://gov.wales/travellers-exempt-self-isolation-coronavirus-covid-19W
unknown
 clean
https://www.gov.uk/government/worldUK
unknown
 clean
https://www.gov.uk/
clean
https://gov.wales/sites/default/files/js/js_aRVJ3MdDVYsxtzIyliTzcm576TFmee9hAxhtWFHgGbw.js
unknown
 clean
https://www.gov.uk/world
unknown
 clean
https://www.gov.uk/government/get-involved
clean
https://js-agent.newrelic.com/nr-1208.min.js
unknown
 clean
https://www.gov.uk/search/opensearch.xml
unknown
 clean
https://www.gov.uk/search/policy-papers-and-consultations?content_store_document_type%5B%5D=open_con
unknown
 clean
There are 90 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
gov.wales
192.124.249.167
 clean
cdnjs.cloudflare.com
104.16.19.94
 clean
d3bipqqt7o7bp0.cloudfront.net
143.204.209.98
 clean
www-gov-uk.map.fastly.net
151.101.0.144
 clean
apikeys-lb.civiccomputing.com
80.75.66.243
 clean
googlehosted.l.googleusercontent.com
172.217.20.1
 clean
clients2.googleusercontent.com
unknown
 clean
cc.cdn.civiccomputing.com
unknown
 clean
js-agent.newrelic.com
unknown
 clean
apikeys.civiccomputing.com
unknown
 clean
www.gov.uk
unknown
 clean
assets.publishing.service.gov.uk
unknown
 clean
bam-cell.nr-data.net
unknown
 clean
There are 3 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
192.168.2.1
unknown
unknown
clean
151.101.0.144
www-gov-uk.map.fastly.net
United States
clean
80.75.66.243
apikeys-lb.civiccomputing.com
United Kingdom
clean
143.204.209.98
d3bipqqt7o7bp0.cloudfront.net
United States
clean
192.168.2.30
unknown
unknown
clean
239.255.255.250
unknown
Reserved
clean
172.217.20.1
googlehosted.l.googleusercontent.com
United States
clean
192.124.249.167
gov.wales
United States
clean
127.0.0.1
unknown
unknown
clean
104.16.19.94
cdnjs.cloudflare.com
United States
clean

Registry

Path
Value
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
S-1-5-21-3853321935-2125563209-4053062332-1002
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
ahfgeienlihckogmohjhadlkjgocpleb
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
gdaefkejpgkiemlaofpalmlakkmbjdnl
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
gfdkimpbcpahaombhbimeihdjnejgicl
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
kmendfapggjehodndflmmgagdbamhnfd
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
mfehgcgbbipciphmccgaenjidiccnmng
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
mhjfbmdgcfjbbpaeojofohoefgiehjai
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
neajdppkdcdipfabeoofebfddakdcjhd
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
nkeimhogjdpnpccoofpliimaahmaaome
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
nmmhkkegccagdldgiimedpiccmgmieda
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
prefs.preference_reset_time
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
gfdkimpbcpahaombhbimeihdjnejgicl
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
nmmhkkegccagdldgiimedpiccmgmieda
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
pkedcjkdefgpdelpbcmbmeomcjbeemfm
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
nmmhkkegccagdldgiimedpiccmgmieda
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
state
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
StatusCodes
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
StatusCodes
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
state
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
software_reporter.reporting
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
module_blacklist_cache_md5_digest
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
media.storage_id_salt
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
google.services.last_account_id
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
google.services.account_id
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
software_reporter.prompt_seed
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
settings_reset_prompt.last_triggered_for_homepage
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
default_search_provider_data.template_url_data
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
safebrowsing.incidents_sent
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
pinned_tabs
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
search_provider_overrides
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
settings_reset_prompt.last_triggered_for_default_search
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
prefs.preference_reset_time
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
google.services.last_username
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
session.startup_urls
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
session.restore_on_startup
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
software_reporter.prompt_version
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
settings_reset_prompt.last_triggered_for_startup_urls
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
settings_reset_prompt.prompt_wave
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
homepage
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
homepage_is_newtabpage
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
browser.show_home_button
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
user_experience_metrics.stability.exited_cleanly
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
lastrun
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
Blob
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
Blob
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
Blob
 clean
C:\Program Files\Google\Chrome\Application\chrome.exe
Blob
 clean
There are 37 hidden registries, click here to show them.

Memdumps

Base Address
Regiontype
Protect
Malicious
7FF518721000
unkown
page readonly
 clean
7FF548DE3000
unkown
page readonly
 clean
7FF50556F000
unkown
page readonly
 clean
20F6646E000
unkown
page read and write
 clean
1578643F000
unkown
page read and write
 clean
257DB158000
unkown
page read and write
 clean
15786450000
unkown
page read and write
 clean
357FE7F000
unkown
page read and write
 clean
20F6646E000
unkown
page read and write
 clean
7FF5187F3000
unkown
page readonly
 clean
257DFED7000
unkown
page read and write
 clean
7FF518784000
unkown
page readonly
 clean
7FF51876C000
unkown
page readonly
 clean
257DFD80000
unkown
page read and write
 clean
2D1111E0000
unkown
page read and write
 clean
2670304C000
unkown
page read and write
 clean
20F6646E000
unkown
page read and write
 clean
7FF505663000
unkown
page readonly
 clean
7FF5055E6000
unkown
page readonly
 clean
1BE91F9000
unkown
page read and write
 clean
7FF504DC7000
unkown
page readonly
 clean
20F66380000
heap private
page read and write
 clean
15786465000
unkown
page read and write
 clean
15786C02000
unkown
page read and write
 clean
1BE907B000
unkown
page read and write
 clean
257DFCB8000
unkown
page read and write
 clean
257DFCD1000
unkown
page read and write
 clean
7FF5186A1000
unkown
page readonly
 clean
357FC7E000
unkown
page read and write
 clean
20F66440000
unkown
page read and write
 clean
15786432000
unkown
page read and write
 clean
7FF5055E9000
unkown
page readonly
 clean
7FF505578000
unkown
page readonly
 clean
20F6646E000
unkown
page read and write
 clean
7FF501AB3000
unkown
page readonly
 clean
257DFEB4000
unkown
page read and write
 clean
15786463000
unkown
page read and write
 clean
7FF518745000
unkown
page readonly
 clean
7FF5A8993000
unkown
page readonly
 clean
7FF505656000
unkown
page readonly
 clean
7FF504B09000
unkown
page readonly
 clean
20F6646E000
unkown
page read and write
 clean
20F6646C000
unkown
page read and write
 clean
20F66500000
unkown
page read and write
 clean
257E0010000
unkown
page read and write
 clean
257DFCF4000
unkown
page read and write
 clean
257DB118000
unkown
page read and write
 clean
257DFEBA000
unkown
page read and write
 clean
1578646A000
unkown
page read and write
 clean
7FF5183C0000
unkown
page readonly
 clean
1BE937D000
unkown
page read and write
 clean
257DFEE5000
unkown
page read and write
 clean
1BE917E000
unkown
page read and write
 clean
7FF505580000
unkown
page readonly
 clean
7FF505646000
unkown
page readonly
 clean
15786448000
unkown
page read and write
 clean
20F67FD0000
unkown
page readonly
 clean
7FF5184BF000
unkown
page readonly
 clean
7FF51860A000
unkown
page readonly
 clean
26702FF0000
unkown
page read and write
 clean
15786480000
unkown
page read and write
 clean
2670305A000
unkown
page read and write
 clean
15786451000
unkown
page read and write
 clean
1578646C000
unkown
page read and write
 clean
15786502000
unkown
page read and write
 clean
20F6646C000
unkown
page read and write
 clean
257DB118000
unkown
page read and write
 clean
7FF5187DC000
unkown
page readonly
 clean
257DFCF0000
unkown
page read and write
 clean
7FF5186C4000
unkown
page readonly
 clean
20F6646E000
unkown
page read and write
 clean
20F67ED0000
unkown
page read and write
 clean
2D1111E0000
unkown
page read and write
 clean
257DB118000
unkown
page read and write
 clean
20F66720000
unkown
page readonly
 clean
7FF518708000
unkown
page readonly
 clean
15786457000
unkown
page read and write
 clean
7FF518747000
unkown
page readonly
 clean
15786360000
unkown
page read and write
 clean
7FF5055CC000
unkown
page readonly
 clean
7FF5183D1000
unkown
page readonly
 clean
1578644D000
unkown
page read and write
 clean
15786350000
unkown
page readonly
 clean
1578646E000
unkown
page read and write
 clean
20F666D0000
unkown
page write copy
 clean
15786452000
unkown
page read and write
 clean
2670308E000
unkown
page read and write
 clean
15786446000
unkown
page read and write
 clean
15786600000
unkown
page readonly
 clean
357F7DE000
unkown
page read and write
 clean
257DFCB1000
unkown
page read and write
 clean
1578643B000
unkown
page read and write
 clean
257DFED2000
unkown
page read and write
 clean
257DFE10000
unkown
page read and write
 clean
7FF504DFF000
unkown
page readonly
 clean
7FF5055D2000
unkown
page readonly
 clean
7FF51855A000
unkown
page readonly
 clean
7FF505584000
unkown
page readonly
 clean
20F66413000
unkown
page read and write
 clean
7FF5186A3000
unkown
page readonly
 clean
15786466000
unkown
page read and write
 clean
1BE92FF000
unkown
page read and write
 clean
7FF504DAF000
unkown
page readonly
 clean
15786444000
unkown
page read and write
 clean
7FF5055B5000
unkown
page readonly
 clean
15786442000
unkown
page read and write
 clean
28E2C06A000
unkown
page read and write
 clean
20F663F0000
unkown
page readonly
 clean
1578644B000
unkown
page read and write
 clean
2670305C000
unkown
page read and write
 clean
15786443000
unkown
page read and write
 clean
7FF5055F4000
unkown
page readonly
 clean
257DFED2000
unkown
page read and write
 clean
7FF5055A1000
unkown
page readonly
 clean
7FF505663000
unkown
page readonly
 clean
20F6646E000
unkown
page read and write
 clean
20F66600000
unkown
page readonly
 clean
20F6646C000
unkown
page read and write
 clean
7FF5187F3000
unkown
page readonly
 clean
15786400000
unkown
page read and write
 clean
257E0010000
unkown
page read and write
 clean
15786449000
unkown
page read and write
 clean
20F66429000
unkown
page read and write
 clean
20F66456000
unkown
page read and write
 clean
2670309E000
unkown
page read and write
 clean
257DFE00000
unkown
page read and write
 clean
357F6DB000
unkown
page read and write
 clean
26702FF0000
unkown
page read and write
 clean
7FF504B0B000
unkown
page readonly
 clean
7FF531C03000
unkown
page readonly
 clean
15786487000
unkown
page read and write
 clean
7FF518714000
unkown
page readonly
 clean
1578647D000
unkown
page read and write
 clean
7FF5055D9000
unkown
page readonly
 clean
257DFCB0000
unkown
page read and write
 clean
15786429000
unkown
page read and write
 clean
15786467000
unkown
page read and write
 clean
7FF5186FF000
unkown
page readonly
 clean
7FF5E7D23000
unkown
page readonly
 clean
1BE9279000
unkown
page read and write
 clean
20F66513000
unkown
page read and write
 clean
257DFEB7000
unkown
page read and write
 clean
257DFEE9000
unkown
page read and write
 clean
7FF518729000
unkown
page readonly
 clean
7FF5186FB000
unkown
page readonly
 clean
28E2C06F000
unkown
page read and write
 clean
357FD7E000
unkown
page read and write
 clean
15786340000
unkown
page readonly
 clean
257DFEBB000
unkown
page read and write
 clean
15786413000
unkown
page read and write
 clean
257DB159000
unkown
page read and write
 clean
7FF518762000
unkown
page readonly
 clean
2D1111E0000
unkown
page read and write
 clean
7FF5183CC000
unkown
page readonly
 clean
7FF518000000
unkown
page readonly
 clean
257E0010000
unkown
page read and write
 clean
7FF5055DC000
unkown
page readonly
 clean
7FF518605000
unkown
page readonly
 clean
15786270000
unkown
page readonly
 clean
1578644A000
unkown
page read and write
 clean
7FF5185C5000
unkown
page readonly
 clean
357F75E000
unkown
page read and write
 clean
7FF5187E6000
unkown
page readonly
 clean
7FF518710000
unkown
page readonly
 clean
357FB7E000
unkown
page read and write
 clean
20F66402000
unkown
page read and write
 clean
257DFCD4000
unkown
page read and write
 clean
15786462000
unkown
page read and write
 clean
7FF5F6203000
unkown
page readonly
 clean
7FF5052E8000
unkown
page readonly
 clean
15786200000
heap private
page read and write
 clean
20F6646E000
unkown
page read and write
 clean
20F66502000
unkown
page read and write
 clean
20F663E0000
heap default
page read and write
 clean
257DFCB0000
unkown
page read and write
 clean
20F6646C000
unkown
page read and write
 clean
7FF518769000
unkown
page readonly
 clean
20F6646C000
unkown
page read and write
 clean
15786464000
unkown
page read and write
 clean
7FF518731000
unkown
page readonly
 clean
20F66400000
unkown
page read and write
 clean
26702FF0000
unkown
page read and write
 clean
1578647E000
unkown
page read and write
 clean
15786260000
heap default
page read and write
 clean
257DFCBE000
unkown
page read and write
 clean
20F6646C000
unkown
page read and write
 clean
15786470000
unkown
page read and write
 clean
1BE90FE000
unkown
page read and write
 clean
257E0170000
unkown
page read and write
 clean
257DFEF0000
unkown
page read and write
 clean
7FF505599000
unkown
page readonly
 clean
257DFCE0000
unkown
page read and write
 clean
7FF505591000
unkown
page readonly
 clean
7FF518525000
unkown
page readonly
 clean
1578647A000
unkown
page read and write
 clean
2670304A000
unkown
page read and write
 clean
15786477000
unkown
page read and write
 clean
7FF505575000
unkown
page readonly
 clean
7FF5053C2000
unkown
page readonly
 clean
15786447000
unkown
page read and write
 clean
7FF51875C000
unkown
page readonly
 clean
7FF59D9B3000
unkown
page readonly
 clean
7FF5187D6000
unkown
page readonly
 clean
7FF518776000
unkown
page readonly
 clean
15786478000
unkown
page read and write
 clean
There are 195 hidden memdumps, click here to show them.

DOM / HTML

URL
Malicious
https://www.gov.uk/travel-abroad
 clean
https://www.gov.uk/government/how-government-works
 clean
https://www.gov.uk/search/news-and-communications
 clean
https://www.gov.uk/government/organisations
 clean
https://www.gov.uk/guidance/coronavirus-covid-19-declaration-form-for-international-travel#content
 clean
https://www.gov.uk/government/organisations/department-for-transport
 clean
https://www.gov.uk/search/policy-papers-and-consultations?content_store_document_type%5B%5D=open_consultations&content_store_document_type%5B%5D=closed_consultations
 clean
https://www.gov.uk/world
 clean
https://www.gov.uk/guidance/coronavirus-covid-19-declaration-form-for-international-travel#history
 clean
https://www.gov.uk/search/research-and-statistics
 clean
https://www.gov.uk/government/organisations/home-office
 clean
https://www.gov.uk/help/cookies
 clean
https://www.gov.uk/guidance/coronavirus-covid-19-declaration-form-for-international-travel
 clean
https://www.gov.uk/government/get-involved
 clean
https://gov.wales/travellers-exempt-self-isolation-coronavirus-covid-19
 clean
https://www.gov.uk/coronavirus
 clean
https://www.gov.uk/
 clean
There are 7 hidden doms, click here to show them.