General Info

File name

new 2.txt

Full analysis
https://app.any.run/tasks/24a7e3d0-2c49-483b-90e8-db607d85a60b
Verdict
Malicious activity
Analysis date
7/17/2019, 22:08:43
OS:
Windows 7 Professional Service Pack 1 (build: 7601, 32 bit)
Tags:

opendir

Indicators:

MIME:
text/plain
File info:
ASCII text, with no line terminators
MD5

c0bc35e042015c193df91fe0c5d40418

SHA1

7f3fec988159c3ee2756a834c5d4185551afe5c3

SHA256

26149c849e14a4bfd7cc034ecedd7be5622a7ac2cb8fa70a97ac259d7b78abd6

SSDEEP

3:N1KOELrXgn:CO3n

ANY.RUN is an interactive service which provides full access to the guest system. Information in this report could be distored by user actions and is provided for user acknowledgement as it is. ANY.RUN does not guarantee maliciousness or safety of the content.

Software environment set and analysis options

Launch configuration

Task duration
60 seconds
Additional time used
none
Fakenet option
off
Heavy Evaision option
off
MITM proxy
off
Route via Tor
off
Network geolocation
off
Privacy
Public submission
Autoconfirmation of UAC
on

Software preset

  • Internet Explorer 8.0.7601.17514
  • Adobe Acrobat Reader DC MUI (15.023.20070)
  • Adobe Flash Player 26 ActiveX (26.0.0.131)
  • Adobe Flash Player 26 NPAPI (26.0.0.131)
  • Adobe Flash Player 26 PPAPI (26.0.0.131)
  • Adobe Refresh Manager (1.8.0)
  • CCleaner (5.35)
  • FileZilla Client 3.36.0 (3.36.0)
  • Google Chrome (75.0.3770.100)
  • Google Update Helper (1.3.34.7)
  • Java 8 Update 92 (8.0.920.14)
  • Java Auto Updater (2.8.92.14)
  • Microsoft .NET Framework 4.7.2 (4.7.03062)
  • Microsoft Office Access MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Access Setup Metadata MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Excel MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office OneNote MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Outlook MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office PowerPoint MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Professional 2010 (14.0.6029.1000)
  • Microsoft Office Proof (English) 2010 (14.0.6029.1000)
  • Microsoft Office Proof (French) 2010 (14.0.6029.1000)
  • Microsoft Office Proof (Spanish) 2010 (14.0.6029.1000)
  • Microsoft Office Proofing (English) 2010 (14.0.6029.1000)
  • Microsoft Office Publisher MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Shared MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Shared Setup Metadata MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Single Image 2010 (14.0.6029.1000)
  • Microsoft Office Word MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (9.0.30729.6161)
  • Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (10.0.40219)
  • Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (12.0.30501.0)
  • Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (12.0.21005)
  • Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (12.0.21005)
  • Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.21.27702 (14.21.27702.2)
  • Microsoft Visual C++ 2019 X86 Additional Runtime - 14.21.27702 (14.21.27702)
  • Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.21.27702 (14.21.27702)
  • Mozilla Firefox 67.0.4 (x86 en-US) (67.0.4)
  • Notepad++ (32-bit x86) (7.5.1)
  • Opera 12.15 (12.15.1748)
  • Skype version 8.29 (8.29)
  • Update for Microsoft .NET Framework 4.7.2 (KB4087364) (1)
  • VLC media player (2.2.6)
  • WinRAR 5.60 (32-bit) (5.60.0)

Hotfixes

  • Client LanguagePack Package
  • Client Refresh LanguagePack Package
  • CodecPack Basic Package
  • Foundation Package
  • IE Troubleshooters Package
  • InternetExplorer Optional Package
  • KB2534111
  • KB2999226
  • KB4019990
  • KB976902
  • LocalPack AU Package
  • LocalPack CA Package
  • LocalPack GB Package
  • LocalPack US Package
  • LocalPack ZA Package
  • ProfessionalEdition
  • UltimateEdition

Behavior activities

MALICIOUS SUSPICIOUS INFO

No malicious indicators.

No suspicious indicators.

Creates files in the user directory
  • firefox.exe (PID: 4060)
Dropped object may contain Bitcoin addresses
  • firefox.exe (PID: 4060)
Manual execution by user
  • firefox.exe (PID: 4060)
Reads CPU info
  • firefox.exe (PID: 4060)
Application launched itself
  • firefox.exe (PID: 4060)

Find more information about signature artifacts and mapping to MITRE ATT&CK™ MATRIX at the full report

Static information

Screenshots

Processes

Total processes
38
Monitored processes
6
Malicious processes
0
Suspicious processes
0

Behavior graph

+
start notepad.exe no specs firefox.exe firefox.exe no specs firefox.exe firefox.exe firefox.exe
Specs description
Program did not start
Integrity level elevation
Task сontains an error or was rebooted
Process has crashed
Task contains several apps running
Executable file was dropped
Debug information is available
Process was injected
Network attacks were detected
Application downloaded the executable file
Actions similar to stealing personal data
Behavior similar to exploiting the vulnerability
Inspected object has sucpicious PE structure
File is detected by antivirus software
CPU overrun
RAM overrun
Process starts the services
Process was added to the startup
Behavior similar to spam
Low-level access to the HDD
Probably Tor was used
System was rebooted
Connects to the network
Known threat

Process information

Click at the process to see the details.

PID
2968
CMD
"C:\Windows\system32\NOTEPAD.EXE" C:\Users\admin\AppData\Local\Temp\new 2.txt
Path
C:\Windows\system32\NOTEPAD.EXE
Indicators
No indicators
Parent process
––
User
admin
Integrity Level
MEDIUM
Version:
Company
Microsoft Corporation
Description
Notepad
Version
6.1.7600.16385 (win7_rtm.090713-1255)
Modules
Image
c:\windows\system32\notepad.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\user32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\comdlg32.dll
c:\windows\system32\shlwapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\shell32.dll
c:\windows\system32\winspool.drv
c:\windows\system32\ole32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\version.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\clbcatq.dll

PID
4060
CMD
"C:\Program Files\Mozilla Firefox\firefox.exe"
Path
C:\Program Files\Mozilla Firefox\firefox.exe
Indicators
Parent process
––
User
admin
Integrity Level
MEDIUM
Version:
Company
Mozilla Corporation
Description
Firefox
Version
67.0.4
Modules
Image
c:\program files\mozilla firefox\firefox.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\mozilla firefox\mozglue.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\version.dll
c:\program files\mozilla firefox\msvcp140.dll
c:\program files\mozilla firefox\vcruntime140.dll
c:\program files\mozilla firefox\api-ms-win-crt-runtime-l1-1-0.dll
c:\program files\mozilla firefox\ucrtbase.dll
c:\program files\mozilla firefox\api-ms-win-core-localization-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-processthreads-l1-1-1.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-timezone-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l2-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-synch-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-string-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-heap-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-stdio-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-convert-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-locale-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-math-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-time-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-filesystem-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-environment-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-utility-l1-1-0.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\mozilla firefox\api-ms-win-crt-multibyte-l1-1-0.dll
c:\program files\mozilla firefox\nss3.dll
c:\windows\system32\winmm.dll
c:\windows\system32\wsock32.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\program files\mozilla firefox\lgpllibs.dll
c:\program files\mozilla firefox\xul.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\avrt.dll
c:\windows\system32\ole32.dll
c:\windows\system32\d3d11.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\credui.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\wtsapi32.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\kbdus.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\psapi.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\napinsp.dll
c:\windows\system32\pnrpnsp.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\winrnr.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\wbem\wbemprox.dll
c:\windows\system32\wbemcomn.dll
c:\windows\system32\wship6.dll
c:\windows\system32\cryptsp.dll
c:\windows\system32\winsta.dll
c:\windows\system32\rsaenh.dll
c:\windows\system32\rpcrtremote.dll
c:\windows\system32\wshqos.dll
c:\windows\system32\wbem\wbemsvc.dll
c:\windows\system32\wbem\fastprox.dll
c:\windows\system32\ntdsapi.dll
c:\windows\system32\apphelp.dll
c:\windows\system32\mscms.dll
c:\windows\system32\wpc.dll
c:\windows\system32\wevtapi.dll
c:\windows\system32\samcli.dll
c:\windows\system32\samlib.dll
c:\windows\system32\netutils.dll
c:\windows\system32\mmdevapi.dll
c:\windows\system32\propsys.dll
c:\windows\system32\audioses.dll
c:\windows\system32\d2d1.dll
c:\program files\google\update\1.3.34.11\npgoogleupdate3.dll
c:\windows\system32\msimg32.dll
c:\program files\mozilla firefox\softokn3.dll
c:\program files\mozilla firefox\freebl3.dll
c:\progra~1\mozill~1\nssckbi.dll
c:\windows\system32\wininet.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\rasapi32.dll
c:\windows\system32\rasman.dll
c:\windows\system32\rtutils.dll
c:\windows\system32\sensapi.dll
c:\windows\system32\rasadhlp.dll
c:\windows\system32\fwpuclnt.dll
c:\windows\system32\explorerframe.dll
c:\windows\system32\duser.dll
c:\windows\system32\dui70.dll
c:\windows\system32\actxprxy.dll
c:\program files\adobe\acrobat reader dc\reader\acrord32.exe

PID
2844
CMD
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="4060.0.1464223420\1899311601" -parentBuildID 20190619235627 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 4060 "\\.\pipe\gecko-crash-server-pipe.4060" 1156 gpu
Path
C:\Program Files\Mozilla Firefox\firefox.exe
Indicators
No indicators
Parent process
firefox.exe
User
admin
Integrity Level
MEDIUM
Version:
Company
Mozilla Corporation
Description
Firefox
Version
67.0.4
Modules
Image
c:\program files\mozilla firefox\firefox.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\mozilla firefox\mozglue.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\version.dll
c:\program files\mozilla firefox\msvcp140.dll
c:\program files\mozilla firefox\vcruntime140.dll
c:\program files\mozilla firefox\api-ms-win-crt-runtime-l1-1-0.dll
c:\program files\mozilla firefox\ucrtbase.dll
c:\program files\mozilla firefox\api-ms-win-core-localization-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-processthreads-l1-1-1.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-timezone-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l2-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-synch-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-string-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-heap-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-stdio-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-convert-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-locale-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-math-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-time-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-filesystem-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-environment-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-utility-l1-1-0.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\mozilla firefox\api-ms-win-crt-multibyte-l1-1-0.dll
c:\program files\mozilla firefox\nss3.dll
c:\windows\system32\winmm.dll
c:\windows\system32\wsock32.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\program files\mozilla firefox\lgpllibs.dll
c:\program files\mozilla firefox\xul.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\avrt.dll
c:\windows\system32\ole32.dll
c:\windows\system32\d3d11.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\credui.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\wtsapi32.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\mfplat.dll
c:\windows\system32\mf.dll
c:\windows\system32\atl.dll
c:\windows\system32\ksuser.dll
c:\windows\system32\dxva2.dll
c:\windows\system32\evr.dll
c:\windows\system32\powrprof.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\wship6.dll
c:\windows\system32\wshqos.dll

PID
4040
CMD
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="4060.3.223595703\971669240" -childID 1 -isForBrowser -prefsHandle 1628 -prefMapHandle 1676 -prefsLen 1 -prefMapSize 188076 -parentBuildID 20190619235627 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 4060 "\\.\pipe\gecko-crash-server-pipe.4060" 1332 tab
Path
C:\Program Files\Mozilla Firefox\firefox.exe
Indicators
Parent process
firefox.exe
User
admin
Integrity Level
LOW
Version:
Company
Mozilla Corporation
Description
Firefox
Version
67.0.4
Modules
Image
c:\program files\mozilla firefox\firefox.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\mozilla firefox\mozglue.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\version.dll
c:\program files\mozilla firefox\msvcp140.dll
c:\program files\mozilla firefox\vcruntime140.dll
c:\program files\mozilla firefox\api-ms-win-crt-runtime-l1-1-0.dll
c:\program files\mozilla firefox\ucrtbase.dll
c:\program files\mozilla firefox\api-ms-win-core-localization-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-processthreads-l1-1-1.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-timezone-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l2-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-synch-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-string-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-heap-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-stdio-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-convert-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-locale-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-math-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-time-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-filesystem-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-environment-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-utility-l1-1-0.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\user32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\mozilla firefox\api-ms-win-crt-multibyte-l1-1-0.dll
c:\program files\mozilla firefox\nss3.dll
c:\windows\system32\winmm.dll
c:\windows\system32\wsock32.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\program files\mozilla firefox\lgpllibs.dll
c:\program files\mozilla firefox\xul.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\avrt.dll
c:\windows\system32\ole32.dll
c:\windows\system32\d3d11.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\credui.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\wtsapi32.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\napinsp.dll
c:\windows\system32\pnrpnsp.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\winrnr.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\wship6.dll
c:\windows\system32\wshqos.dll
c:\windows\system32\mscms.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\mmdevapi.dll
c:\windows\system32\propsys.dll
c:\windows\system32\audioses.dll
c:\program files\mozilla firefox\softokn3.dll
c:\program files\mozilla firefox\freebl3.dll
c:\windows\system32\wpc.dll
c:\windows\system32\wevtapi.dll
c:\windows\system32\samcli.dll
c:\windows\system32\samlib.dll
c:\windows\system32\netutils.dll

PID
2340
CMD
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="4060.13.1201922198\1374577973" -childID 2 -isForBrowser -prefsHandle 2808 -prefMapHandle 2812 -prefsLen 5842 -prefMapSize 188076 -parentBuildID 20190619235627 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 4060 "\\.\pipe\gecko-crash-server-pipe.4060" 2828 tab
Path
C:\Program Files\Mozilla Firefox\firefox.exe
Indicators
Parent process
firefox.exe
User
admin
Integrity Level
LOW
Version:
Company
Mozilla Corporation
Description
Firefox
Version
67.0.4
Modules
Image
c:\program files\mozilla firefox\firefox.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\mozilla firefox\mozglue.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\version.dll
c:\program files\mozilla firefox\msvcp140.dll
c:\program files\mozilla firefox\vcruntime140.dll
c:\program files\mozilla firefox\api-ms-win-crt-runtime-l1-1-0.dll
c:\program files\mozilla firefox\ucrtbase.dll
c:\program files\mozilla firefox\api-ms-win-core-localization-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-processthreads-l1-1-1.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-timezone-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l2-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-synch-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-string-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-heap-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-stdio-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-convert-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-locale-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-math-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-time-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-filesystem-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-environment-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-utility-l1-1-0.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\mozilla firefox\api-ms-win-crt-multibyte-l1-1-0.dll
c:\program files\mozilla firefox\nss3.dll
c:\windows\system32\winmm.dll
c:\windows\system32\wsock32.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\program files\mozilla firefox\lgpllibs.dll
c:\windows\system32\shell32.dll
c:\program files\mozilla firefox\xul.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\avrt.dll
c:\windows\system32\ole32.dll
c:\windows\system32\d3d11.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\credui.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\wtsapi32.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\napinsp.dll
c:\windows\system32\pnrpnsp.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\winrnr.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\wship6.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\wshqos.dll
c:\windows\system32\mscms.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\mmdevapi.dll
c:\windows\system32\propsys.dll
c:\windows\system32\audioses.dll
c:\program files\mozilla firefox\softokn3.dll
c:\program files\mozilla firefox\freebl3.dll
c:\windows\system32\wpc.dll
c:\windows\system32\wevtapi.dll
c:\windows\system32\samcli.dll
c:\windows\system32\samlib.dll
c:\windows\system32\netutils.dll

PID
3020
CMD
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="4060.20.1968546712\410962120" -childID 3 -isForBrowser -prefsHandle 3524 -prefMapHandle 3528 -prefsLen 6778 -prefMapSize 188076 -parentBuildID 20190619235627 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 4060 "\\.\pipe\gecko-crash-server-pipe.4060" 3540 tab
Path
C:\Program Files\Mozilla Firefox\firefox.exe
Indicators
Parent process
firefox.exe
User
admin
Integrity Level
LOW
Version:
Company
Mozilla Corporation
Description
Firefox
Version
67.0.4
Modules
Image
c:\program files\mozilla firefox\firefox.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\mozilla firefox\mozglue.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\sechost.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\version.dll
c:\program files\mozilla firefox\msvcp140.dll
c:\program files\mozilla firefox\vcruntime140.dll
c:\program files\mozilla firefox\api-ms-win-crt-runtime-l1-1-0.dll
c:\program files\mozilla firefox\ucrtbase.dll
c:\program files\mozilla firefox\api-ms-win-core-localization-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-processthreads-l1-1-1.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-timezone-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l2-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-synch-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-string-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-heap-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-stdio-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-convert-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-locale-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-math-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-time-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-filesystem-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-environment-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-utility-l1-1-0.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\mozilla firefox\api-ms-win-crt-multibyte-l1-1-0.dll
c:\program files\mozilla firefox\nss3.dll
c:\windows\system32\winmm.dll
c:\windows\system32\wsock32.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\program files\mozilla firefox\lgpllibs.dll
c:\program files\mozilla firefox\xul.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\avrt.dll
c:\windows\system32\ole32.dll
c:\windows\system32\d3d11.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\credui.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\wtsapi32.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\napinsp.dll
c:\windows\system32\pnrpnsp.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\winrnr.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\wship6.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\wshqos.dll
c:\windows\system32\mscms.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\mmdevapi.dll
c:\windows\system32\propsys.dll
c:\windows\system32\audioses.dll
c:\windows\system32\wpc.dll
c:\windows\system32\wevtapi.dll
c:\windows\system32\samcli.dll
c:\windows\system32\samlib.dll
c:\windows\system32\netutils.dll

Registry activity

Total events
475
Read events
472
Write events
3
Delete events
0

Modification events

PID
Process
Operation
Key
Name
Value
4060
firefox.exe
write
HKEY_CURRENT_USER\Software\Mozilla\Firefox\Launcher
C:\Program Files\Mozilla Firefox\firefox.exe|Browser
0000000000000000
4060
firefox.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings
ProxyEnable
0
4060
firefox.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections
SavedLegacySettings
4600000077000000010000000000000000000000000000000000000000000000C0E333BBEAB1D301000000000000000000000000020000001700000000000000FE800000000000007D6CB050D9C573F70B000000000000006D00330032005C004D00530049004D004700330032002E0064006C000100000004AA400014AA4000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000C0A8016400000000000000000000000000000000000000000800000000000000805D3F00983740000008000002000000000000600000002060040000B8A94000020000008802000060040000B8A9400004000000F8010000B284000088B64000B84B400043003A000000000000000000000000000000000000000000

Files activity

Executable files
0
Suspicious files
106
Text files
23
Unknown types
83

Dropped files

PID
Process
Filename
Type
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs-1.js
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-trackwhite-simple.sbstore
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionstore-backups\recovery.baklz4
jsonlz4
MD5: 802775ea3cd4c57e572f198a9af5d64c
SHA256: 0b2362f04a5618421f7d3921fb015f75e5b1ae166ccc3fd3627ec6553446ee39
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionstore-backups\recovery.jsonlz4
jsonlz4
MD5: f6a4bab761f6a8d21e207184acb6844a
SHA256: de77ddb61c7d2823f8f30fc250a6cef6965fdc6398b9ee682ed95dd95c3827eb
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionstore-backups\recovery.jsonlz4.tmp
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\permissions.sqlite-journal
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\3DCDC7770199AC3B16AC509AC7E8C5F0B178466C
binary
MD5: 0ed3899bc1855311be42135c25a79865
SHA256: fe56cfede336fab6b37c5ba5635ba68a17d6fee81622aeaeb3338fa7254a5987
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.sqlite
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.sqlite-wal
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.sqlite-shm
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: fc07012337719ad407c192720b7597d3
SHA256: 4f2b298b3b9f4d2bf89193a825a0073c7709ed10edcce77da85013892b8de2e9
4060
firefox.exe
C:\Users\admin\AppData\Local\Temp\mz_etilqs_dPG1YNKSByDZ872
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\EEAEA8AB98877B6DD1B0F31F837915B7FD47F46F
cer
MD5: f0ae1a5f5f442cea9589f03eee967318
SHA256: 1b3ec323574f87118a628dfc1c09b0bff6ed58be4f2605b5c9708af4513523f7
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\D00A688072D5E651DFCBF1F615D0FF8CC68B8989
binary
MD5: e875a4c3a608d97e1029aa9b949af72b
SHA256: f7ccc6e3ee762053f4f19b8dc66bcfc7e566f7f95aa9e36493e496a0cc954e0b
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\43D3A3C51F57E619891B2888AAF16656D58097AB
htm
MD5: e2c202f0edca74c6b433f46c4617ce9b
SHA256: 154d0f62af4deaf09a00b772ba56d2924b3a87a7e53ab8bb08bbc681c5044b98
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\6BDE08E1290ED1DA2300E96D4E5D355BF88BBDB8
binary
MD5: 2894c0ca7c79ea5e11f7e0b8110bbb3e
SHA256: 2fb65e12a4c78ebc4298015b24aa2e4c7eeea4b32aff0028dbf8fb536f4f1fd7
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\1836CC1ECC545FA7B1A59C8B19A2E984D0122ED4
cer
MD5: b60c32ed59bb91f4f1eeeb9123cd0754
SHA256: 6a015706cae4765fb3fffb34780b72b4f89b5d1d285fbd3963425825cdb405ab
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\7B230AB1AF8D8511EACCCB69C1917AB2C031B2FC
binary
MD5: eaedf685b5b910e5d9504482429a5cb1
SHA256: 15aac0d9441236f184fb9dbc35d1696ba622499723f60e8a4e929aec501ef82e
4060
firefox.exe
C:\Users\admin\AppData\Local\Temp\mz_etilqs_GSMBQ6WMRuKVaMD
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Temp\mz_etilqs_6Iz6CxP4GUKzFiW
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: edf89b9ef15e6ce4d2a2e4d6b75509ad
SHA256: e95e1e3f945e0ca50ce4a4a371b874702a25ae75a005b14dc9c2e9790be6fc48
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\1836CC1ECC545FA7B1A59C8B19A2E984D0122ED4
cer
MD5: 732467800844460d6891fefba0600d2f
SHA256: 5945f2b91c7ca20de7c53e5a399b252bc1215a1447f00339054e1f8c061f177e
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\D17FDEA053F042E7C1F46E73FEFE25911325753D
binary
MD5: 26192896885e3d7b989577f9eb0d470e
SHA256: b8c6384da6d07d5b68587bc53c5f83580f76848e93bdd9508ea6c68bf52b6b03
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\3DCDC7770199AC3B16AC509AC7E8C5F0B178466C
binary
MD5: e8cbddac23268ceada4aed23b699d6f2
SHA256: 04f3814f700c80b9228010155642fb3bfc68941ee9cc0418b998d18d361d5b00
4060
firefox.exe
C:\Users\admin\AppData\Local\Temp\mz_etilqs_huvdR3UijWunz8l
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionstore-backups\recovery.jsonlz4
jsonlz4
MD5: 802775ea3cd4c57e572f198a9af5d64c
SHA256: 0b2362f04a5618421f7d3921fb015f75e5b1ae166ccc3fd3627ec6553446ee39
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionstore-backups\recovery.baklz4
jsonlz4
MD5: be1cca39eac691e170d1cdd24eef86c6
SHA256: 8a637d16e9461e44967b452ea3e0765d4d1e0288e923c0980c46d5fc11d176f2
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\04E55B30B274BBCB2DDD23B3D92098BAD7C02F8C
cer
MD5: fa032e63a25ba4d2ef85d6ddc7b79c0c
SHA256: 1984072fa6837605c81fbf9f664cc5157f9e8b67ba876bb72b36a6a2d6ec9a53
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\D14E89E9C0B1611A544D1BF058490F1AB052C547
text
MD5: ad7158a2d89ca7b2b195c77b11505226
SHA256: f27a2d3dced1bb3dbb9e6918a6fd2ef640a49fe22e3fbebcc7ba4b16d8583395
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: 12ffd6f6a0f9845110aabe116fae720b
SHA256: 4aa0773dbe92d70f93c4ff32b5f45e7de21f6ab9bb34e8845697d793318b7873
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\1836CC1ECC545FA7B1A59C8B19A2E984D0122ED4
cer
MD5: 6d690463523448a67a9ecb8c3c80e1a4
SHA256: d1c79235773c974780a5250bc06c4562d6cdd3724b77188d2025a1f578da63cf
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: 49d4b401a4fab51b0af6d1d21280486d
SHA256: fe462333ed020806944d39726881a9ff0383f43e6c6ae3527a86c44c68ab6334
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\5C801F832162D8B9DA2131263826A0E53BC6BC31
binary
MD5: b9ac9e18249a6b63d1f4bf1befab8cbd
SHA256: dd4f2701dd7c1d5814868deb40a40502a89b6b15edf8a7befba69c1d1a8ef4ae
4060
firefox.exe
C:\Users\admin\AppData\Local\Temp\mz_etilqs_rVCRwAUAOCqspfU
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Temp\mz_etilqs_jKMO4Fz8PHL0dQH
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\71AC4FE466B672AC3AA04372348F46ED137544CA
binary
MD5: 4b156d7faec48c57de5f42ea3bc0e40d
SHA256: 19e2909f8650a1176eed448e31c6f1fd32ae4d36666e36dc9405984a0c4b9d10
4060
firefox.exe
C:\Users\admin\AppData\Local\Temp\mz_etilqs_hOIjcVe9hdICCY5
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\43D3A3C51F57E619891B2888AAF16656D58097AB
htm
MD5: 86368cc411116541bd8434d79902b544
SHA256: ed9793f3e83c456e0188b91744b60997e22d3b22a31b2ee9d1583b5ca5265171
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\3DB430B80ED345BF854BAFF235B783D4EA0DD157
htm
MD5: 420b099e158b78bf8c3713376a85e5ef
SHA256: f9604b54654ac30a851cb6250209fdf0e72bbbba30993ce85861d5b07d0c2f3d
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: 0ec178e30cd39b4158f36067785f2823
SHA256: d08bc7bc8e71dfb7bbdef5a1a14c707feccd760019240bbe825970a56e5cedc1
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\2B8FB3A7C1E8990CE64886D66718692D2B2ED2BC
binary
MD5: d6f4e0d48f35de5266973a0aed350064
SHA256: 758de037743a3734701c2a7a6e9cca590a491b319e15d09ecf08b5d14855d038
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\43D3A3C51F57E619891B2888AAF16656D58097AB
htm
MD5: a1e74c0616bc995d516090587d59add0
SHA256: 36a5f8fb5e28fa7878c7abfb0e21b8d35f4e732453fd74ca1de4c5cc32b546fb
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\3DCDC7770199AC3B16AC509AC7E8C5F0B178466C
binary
MD5: 11f080a0a59f64fa863277e5b17bf5b5
SHA256: e0a38fa60353c74a624344ca3957a3d149fafc0d02ef80d8aab76002559df741
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\43D3A3C51F57E619891B2888AAF16656D58097AB
htm
MD5: 8cb11c7dd5ce81e82f9325d9eb14db81
SHA256: 615a08bd22e2714c43de1c2232098a4c58fc5d68bda3740fa2cb1582b5bd7147
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\A7FB3D1A567ED0D5E029E939ED0CFA70D3943867
htm
MD5: b9e7399890d6c2ec3f42185cdbb7d5f8
SHA256: e4fd64ccfddae6bc50def014a8a74835c3dd88d6d43ff230501990c6ca2b4cfc
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\43D3A3C51F57E619891B2888AAF16656D58097AB
htm
MD5: 4b702be8ff2b5cc7b88753e61eab8f99
SHA256: 98b5db5e527a59264e1b4351ca1cbee25d53f23d8876724e5b5fb9804f06faaa
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\8A50FE90F11B2BEBBA612A5ADA9DEE4E98BC8FF0
htm
MD5: 7463db0ad2825bee18cb0e952a50119e
SHA256: 58af4dc072f5c04cec35381018b8b8239f06b2e39174150f9b59d49009054cde
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\43D3A3C51F57E619891B2888AAF16656D58097AB
htm
MD5: 70f88bb39e04b7065708f2a58a8d5cce
SHA256: 2c83575bb876c5ad41db68da1f172f9eb1381e464bff6ca0c02f92c3de8d1389
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionstore-backups\recovery.jsonlz4
jsonlz4
MD5: be1cca39eac691e170d1cdd24eef86c6
SHA256: 8a637d16e9461e44967b452ea3e0765d4d1e0288e923c0980c46d5fc11d176f2
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionstore-backups\recovery.baklz4
jsonlz4
MD5: 036e8dd296b451a0ec6832e78983f382
SHA256: 5242c3c6c7707ece065468c0536ad1feafe2ae39baae545e375eb8c637162b05
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\BDF9C590432908018E9B537353D6718DD9780E2B
binary
MD5: 31ce24f603058d2aba257c17bb5d13b2
SHA256: 1b362bd8580e372412188f39776864c8d2d1099ccc85808b89e5d01396d32236
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\3DCDC7770199AC3B16AC509AC7E8C5F0B178466C
binary
MD5: 31c2e1a55c0e741f3fb6f504d0ded335
SHA256: bcb1a62f1c3bf288c32467ab1ef9eae8688a389a81cfc7021eb81b0effe7a2e5
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\6A845CC4F1034115C3B46F6332E0BA1CE98FDAA8
binary
MD5: 96d2e66794df526665a299254350a613
SHA256: cf428e674d0684023d3d3309d08ed6a6bcf27f1aead958d8efa88c3a54b8fe6d
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\43D3A3C51F57E619891B2888AAF16656D58097AB
htm
MD5: 649e99230490141c38db8f4c8a2f2715
SHA256: 4e2db6bea6d1240887a33e2da2c22c7a74eeee6371868b765322e6923d308abe
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\D3515009EC0A59103AC0B48DF189C0E3F33E9E4A
htm
MD5: 302df5f6bfcbd4691c00d1bf1e39ef3f
SHA256: f0b29d1804c52871487fa6b73e33a287dde80468a6604df7737b579798d7457d
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\6BBBFCFBE4ADF779B3B89C6E4DA6EDE2B162288A
htm
MD5: 72c16edd990b52b4da28dbff0f2a3978
SHA256: f039778e76795411c76170fcd9fa50ec21a48659e6a92f5e1952f64802962284
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\2918063365piupsah.sqlite-shm
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\1657114595AmcateirvtiSty.sqlite
sqlite
MD5: a78b64be74bf8c308203b5f8424fbc91
SHA256: 99b1ac3e7fa1eeb70509c6ba46a2b140143616b6be10509e1a5a0c45e646c4d6
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\1657114595AmcateirvtiSty.sqlite-wal
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\1657114595AmcateirvtiSty.sqlite-shm
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\1451318868ntouromlalnodry--epcr.sqlite-shm
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\3561288849sdhlie.sqlite-shm
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\43D3A3C51F57E619891B2888AAF16656D58097AB
htm
MD5: 5aa84e7add83acf463c1e79985e4299c
SHA256: 04fcf332192ad637eee4e43b7be7d4092ca237399030edf3c1b3361b044cbde7
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\8BE50CCBD8E511F5A274F908352571F33027587F
der
MD5: cc71b2f8373ee041129bf111afea6419
SHA256: ff2321954ddf3e3e9f9288d538c5b7a130314c6e948368b7476ebb24354c0cac
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\doomed\3943
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\7A335F6D2F8F995161FE78F7159C782FD7C664F2
der
MD5: 4b66095d73128e2987bcbf1f47e8c753
SHA256: 197f37250a6f06d00b626765195de3cee2cd49ca2db9c47a340cb40fd314e7e1
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\86E841B1A45F4EF92B228EFEF96D799222D066EA
der
MD5: 6d7451c328aca4312d44f3733656118b
SHA256: 8eacc1c32947ada4f1e244988725a994828753901236256c2494f433dc6ef30d
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\doomed\17342
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\4D894B880273B3DBEF773B53B551756311E720F4
compressed
MD5: b35fc8dc2e71f86c9c45b15f7f9f6f29
SHA256: 51569d603560086141b2724f8fb9e6c622fb9c64a16baa2216a078c6847202e4
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\EF740E0B793670DA17BCEA9CC7D43CBD314B521C
compressed
MD5: c4440bdaa39f4bcee9e06d161a200d94
SHA256: b47a532b1705f45584c351b303eafa6e67d2ff86da6e2f82e965be7420b6a476
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\3423FD9C031AD67A81AA2EC8B8F8B47495EEAC34
compressed
MD5: b818e1b4a1ba7e326e330d13a89800f0
SHA256: ad208a7610f7c7a0553ca04e7c3d1dd3654c95b74a81bc0f6a4682e31c39d35b
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\A96AB7242C5223AE7516A18BF91F77CB13D83802
compressed
MD5: e78c26cc5dea343d31a7c456e9963916
SHA256: 823f45192b94bf4ebf2e5354ece2b90380b171dd081a6511139da8c82a8722fe
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\4D178EFAAEB3CB1ABC20C5D4A3D1BFD0399DF8AC
der
MD5: 5d2711d787bf486adea5af64368b336f
SHA256: 7802c8ab2f25261a78840901ce73665cf81c0903691b979ba52c905fc7b31e68
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\9CDF87B5B0BE1DA5CBBCC26E792B1E0B2A1F4153
compressed
MD5: e087eef87b2b8bcd9069b69d43a79968
SHA256: 1ce1aa434d711a06cd2de668c5083ed5651eee0def15cba2ae68d54532a222e7
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\51A690286253AE5A3058829DDA17FB63460E139C
binary
MD5: 6c1ddd84f2c066ff75147c856e0feb69
SHA256: 34c9594a1d7eaa225bc0330e1b8ec839796adc004da11ed747739d047300c330
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\BDF9C590432908018E9B537353D6718DD9780E2B
binary
MD5: 87de9c7ab2b8d7b4389e6280d9f170fb
SHA256: e01aac9055970a306ab32ca04eb46ce10f14bda42718abc96eb9abe6536bb785
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\F892F44E68B38CE0C5E5797D07E6A6B62CCAC9F3
binary
MD5: e884179c4eac0627864212a617cbc8a3
SHA256: 51b5aa8b012a109d275a9ca8c81991867d0e9f7df3d433c9227541480968659e
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\414A07AE319D6B715B720810DEAA510EA076112F
binary
MD5: 8b24a8ad418ecc139bfc143133365bee
SHA256: 3bdac46c8e4f77aa8832a0af76aa2f6283545be2c0c05e82bfccc593bf7c4a00
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\D5AEF8FAD1788816EE68687905E8AAFB64690E48
binary
MD5: 58c1d65e4ab22fef172c6b728786b2fe
SHA256: 09b39ec3f4deca152466c00f4820391e3c34e8fb73540bc6ae9e421f188e6bee
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\3DCDC7770199AC3B16AC509AC7E8C5F0B178466C
binary
MD5: 9a3be508ac0aeadc5dc9738c973f3261
SHA256: 466f3052edcd7780f08c9619f8c25718f1c3c9d61cfbe84029091f11e59683bf
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\D9CDBFEC5CC5675E66D62A2D7E66057DCC6AE9E0
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\AF3069B8B1EC606AD928CA26C319EFE76D39EAD1
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\629D631EE80B1B88D471D03DB834B9E1BF052C13
der
MD5: 4bc35c3eb6cb7f2e73cd7bb1926accfe
SHA256: 784b009a7048e12e8753bd05abecc7da0cee43602afc6c8ce8b129ef7f059341
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\6A845CC4F1034115C3B46F6332E0BA1CE98FDAA8
binary
MD5: c9e39393277116cf9a2657a3b5e221e7
SHA256: 9278657f8ad31d003df5676f6e93e38fb2fbf3b8d79682fe1e85a3149107b48b
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\02B1581EA5C615939926455D2DA858DC4070A98B
der
MD5: 1303e6c511b246c2da0a5b023cd9b0d7
SHA256: c2261064bf2ea1b0815b31641db76806fd6b947010f2f873f0d148cc02cadd69
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\E85335D202BCD0B62E7C0E1957D4BC97A99A84EE
der
MD5: 515e7760a2cec579456f42f232c76c0d
SHA256: 97d2b7e1f8d3e78927f6876b51bcde973d8b6cb95b6be0c3b08392462ddc3320
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\ED6F1D5EB67792BBB699A0E087EB66B1EA16BBC6
der
MD5: dabfa275eb0fe90103d305307a3aa0b5
SHA256: ef9a3a8a50b2b2108dab6a47ddae046e2192014a73ada5e53c03dc7c984f2c12
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\6D338E8179D5670A0FB499FBFA4F52316F9FDDAD
compressed
MD5: 39420588bc3958d165e57a10cb27defe
SHA256: 456aed2efd9df128b12d90326cb580d34bf3258919977f7ff110c7d32517143c
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\2E4AB35B194081E5B3CB8B1234830BB2FAB3C319
der
MD5: 9ba27db15b29a33a2f32da844a414c38
SHA256: c7168cb6864cd914ea53f592038761fe2e119e0a5cda6befa63b3267a78f64ce
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\CE4A276AE2F2D04A1997CF24862DF75F7008358C
der
MD5: c53de10671fa6100a44754360ec430e9
SHA256: f3f9508cd0e2077c61be19e6451d2b0da06ee2d366a1feccb3aece76ce839d61
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\C716FC398DE3C1C0F45DD6CC5F743B652343A728
der
MD5: 2bedf767eb911ceadb720e28d19d6f5d
SHA256: 564389557364d714072f98aab33c8320486003a9f4841db53736809af14ae489
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\E8F9400FD28BF06E72E0D43481547BF8E5E1D34D
compressed
MD5: 4ec235a386fe499a446d2df4dcb4ca4d
SHA256: bc666da0d95344a92764a4f610deb61394752bd82d1ea4086cefd3f1a3e9d6b7
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\8DADF839BF7490A6327EB0925E1B281ED6E5B98E
compressed
MD5: f07de61e60fbbd7bf96f83fc39c7e699
SHA256: 49963faab44000bae507079b4b6cea953107a53213868bab3d63efff83671eac
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\33CEF7F9FC0E90E8EF8FB05D0F6ED3C8033A1A15
image
MD5: 4b9676328368504e1ef6c1c8fc2da5f2
SHA256: d24bb67d18a62b35423e57759d4760c96a9a7f8a00ad22f76cb2f9be252765f1
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\E8B3AAA1610695119A18F2D155B6A7409EB2F80F
der
MD5: e57580ebccfec94740563ec5dc01cdff
SHA256: d0896926242ed0e81be57fadddeb084cb43538f97a3f833c8bb5f1f42ade992e
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\F82CDDB5AC94ACD25E4671A72DE1DBB11A1731DC
der
MD5: 7796144ee71a9f46aac3bb6ab691b1ae
SHA256: 486749d8fcad8dad8737664edb05dc06fe6d050cd0b52183085d0cb9dc846010
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\CF5AF3DF30D48761BFFDBFE322EFDA9B36353145
compressed
MD5: e91a39ee0584cb0552c830eb39d51191
SHA256: 86114b509acf86e6a718aa156d5e9080692cb87bba6ad6103686bcc6787a0f1e
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\0AF800C3A3BCCA2983BCF784079F329510C0BBB0
compressed
MD5: e2d0ade5ea2336ba42d5904c5099deb3
SHA256: b97300b44c60b0664cc111cc19e49a0f45f4496611132bc174006fddda462a9e
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\default\moz-extension+++a35bff6e-5489-4e10-95ce-0340b402ad38^userContextId=4294967295\idb\3647222921wleabcEoxlt-eengsairo.sqlite
sqlite
MD5: 21ba783cbb2cdf4c408c5a6f1223fec7
SHA256: 1c85993939dfa021d887ffae31240af4f855461d7276c65c4dc634327033ef7f
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\default\moz-extension+++a35bff6e-5489-4e10-95ce-0340b402ad38^userContextId=4294967295\idb\3647222921wleabcEoxlt-eengsairo.sqlite-wal
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\default\moz-extension+++a35bff6e-5489-4e10-95ce-0340b402ad38^userContextId=4294967295\idb\3647222921wleabcEoxlt-eengsairo.sqlite-shm
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\68F8163A15C1C3091117D9F703DE1D5F8BA0CD07
compressed
MD5: 7d23f604b5b37d88f4f0bf2342f43604
SHA256: 707b0c76421f805336b37431ac4ddeaa0b13c489a48d03421c99fae57a1c9399
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\430F9F3DA130B77DF4914FECE4FC9DB875ED8D97
binary
MD5: b30b31411683e09483bcfaba18620138
SHA256: 870d0d0f2902c4a72d2679ec724aa98c59b042742d4abeae08a8c0796e449593
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\974720AFB523456958748497C9A4B12CB76AF537
binary
MD5: dbe2d68dbb0f121e50b93de72054b415
SHA256: 8fd2336cbabd560947689bbfb0439c64d62fdd32c6da9dcaa8567245032fb236
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\152644AB80C4914AF97401BC1CF1C518EE7321D3
der
MD5: 3e179065f20ae4f94e0172ee7b0a620b
SHA256: 33b498cb778aec5a46b180af5d7daa24dd67938c74645f1ceae7c85768c9083d
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\BA8C93D3FDB2ADC72D21752FD4D5FC03A83B18ED
binary
MD5: bfd77c2eb67c5914c420f1cef8ceb8fd
SHA256: 9b42afb5bab40cfeecf85d6be219833f4d0ebd486a57bb1721bfde55e7a3053e
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\5677901383AF7595493026B8779B6E596829AD39
der
MD5: 663b5b4ab7c930a4b2c30b21e6c804d8
SHA256: 7619de26edc6b50297f502f9eb000e64e3647d61ab856121d5bf52dcb7e44a34
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\BF66F4F5C9EFE0C3EB4F80CB231B9ED143CECD21
der
MD5: 99422957c6b5159db0130c9a3c641be0
SHA256: 84f9c0f678ff89acc1d3d77e1f2892252e479b517732389205ca3b7b65df9005
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\startupCache\urlCache.bin
binary
MD5: 06bf7bc2ab42c44b54ac6a2f77c58200
SHA256: 8b665a7ffd6f385ed733732c1abe6eb8171d4f63390ca7bd71e9d3d055ce53d0
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\startupCache\scriptCache-child.bin
binary
MD5: 83c9292a1f60970857d086dd329eabf4
SHA256: aa5f8a58c9fc5a8f5b117fba3e654e6572482731865cb663fc2c7b926482ec49
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\startupCache\scriptCache-child-new.bin
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\startupCache\scriptCache.bin
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\startupCache\scriptCache-new.bin
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\startupCache\urlCache-new.bin
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\F789D5FE6DA498B687AC1401BB9FE50B440A8B56
compressed
MD5: a53dfd15aa7ed638b6b56cd795f535f1
SHA256: a313eb5ff5cbe8bc8ef2a5d80d03ad9df427e0c415e948761cc03ba7310113cf
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\C0C65AD11B99E511F210FD5F8B687410090E5796
binary
MD5: ec57220b069c02f593a76c5b35ce5381
SHA256: 275556b6e9d5da7e06d845bdce436efee9b586914502bbdb827b997570bdb138
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\3F4EE201A57203CD07AC41ED866C69A762A3295F
compressed
MD5: 6119973f8493b0ed16ffcea04fd92a42
SHA256: 6a0bd2897a834ef3e82e56f1faa40cba31bcf98ec2f2842b682ca3ea56532fdb
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\cert9.db
sqlite
MD5: 77944ac76b8a72d9c78f13e4fee57b0e
SHA256: bf933ea85a190b7b988a5f4cdebb4cdad960cebcc3f8d3860ae91af5bc8575e3
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\cert9.db-journal
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\E09DF9BC01D767260FB974B9CCB3D78C1B556A91
binary
MD5: 812f8ac6525acb3d80cd33d45c3492a1
SHA256: 90fe1b649b40d34d265f5bf19748b7face8162f3d3925188ef1bfcb2fc3475cf
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\61F21FE882B65BCB3DA03F0E3CB82CB1F33619A9
der
MD5: c25b204fb0013e558ef64ea0748e47d9
SHA256: b796cbc0eb29e0639b5b82e4fdf433878e9ca78a256786f57f093b604a2a5697
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\4007563E8F41FAF1C865F8D2E86362A913A3D497
compressed
MD5: 9e0ac0a2322046cce02c9c5815beb38e
SHA256: 77eec03de23ad48ff01f1a01c325cd6e396332caa9b448e6ab0f71067a2e752a
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\C6C97DD449BC35880B2F5920C570B051A6821441
compressed
MD5: 368a6b61c48fc70a5ddfab60cdca1b40
SHA256: 2123358311a31ff9c86a5b6310945afbe867dd4f72d6688a0bd1a9de9cdc5022
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\516CB1A0984EA00EA02ADC390F82C5B55823C0D8
compressed
MD5: e6b137f3a5d65078766bf9bd84ef26c3
SHA256: 71874e46854b3432cb8c58547bf4625c8f0ec369d3c7d9e6a309b72bc9bbb27e
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\1C8CBD7AB6D54530CDE7FD60DBF2F63F9E388D6D
compressed
MD5: adeb315e91f9c8e4bc93d86ec0b1c187
SHA256: 6fbc23686147f53632897753289c5196314444a37e1c194b769464c90cda19aa
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\BE52B767B2F3F6F5B1F83F15CD9B77A498BD1A02
compressed
MD5: 1f9dd5f3d560e037c1cce621c9e055e3
SHA256: 97be93fe860eb31347214985927e5607093c0b8e9b2c267f13e0bd7c740f317f
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\68F8163A15C1C3091117D9F703DE1D5F8BA0CD07
compressed
MD5: 111b1ed418c39f94da9adaef73eb3ba4
SHA256: 1898f518e5d18ce659decc63c1b25b1c864f6712105f210e3157aaf22aa95faa
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\4D1E19015F73C1F252A30967079685773D6C8D95
compressed
MD5: 3d6fb53c1fd98fc247c506479e7fb32f
SHA256: 0192a922343149ae7dcad70a4c4e7ff4a8f559a2412906e8d45edde7800b2dab
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\0CECC3E6126FB7F3F7550A0D9E15975CB59E5061
compressed
MD5: 9926048d5dd1886d86e464bf91e50e90
SHA256: efb034158edc994effcf3697da57559b81a6cf23cd91eeb3b78ee6c920c6159a
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\74174A5E092A194E16C4DF2EE272D770E03F5407
image
MD5: cbe1781185f7ca31fcb59b4581ed2f62
SHA256: 4542a4b1ce74d8c22162f0947338a19d84a0f3da6b167b136f3ba8a1d37a714f
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\57394B5C3266EB485DD1169420B509C87283890A
compressed
MD5: e87ca12b4cfcc2383af379a06623517b
SHA256: a4e25a5dcff3c926e19e043978314d8459b4320a4a0236aacf741ac785abe880
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\E456C6DFEAEF2751A506B3A3C4CBAA1CD882B1FF
compressed
MD5: 9e2597396e2d97a9d6f7cf25c093c9f8
SHA256: fbe0da70a5832b49c9772772e9dcd3648f5a94cc0d353c9b4b11fe12873874cd
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\AB576B08C5F28F0ACC7D6F610CB4BE1AF580A71A
compressed
MD5: 85d0ca735f03777b95d9e197255f6211
SHA256: 73d18f6d39bf85b008f0dd9ae41d89415d1383c6b88cefeaa5851d898a22cd74
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\32A625674C07F21D227ADB94697774CE5ED6C233
compressed
MD5: 35d8ab8fed2092bcf03464f55dae133b
SHA256: 16ee471297d9bb0bb307e097e6cc1d5b98aeba3848d730451becaa71db67eba3
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: 539c1b2443d458a050f2a23fb5e7bac9
SHA256: bd09b86fec38cd974aea44a45db5bb1b89bd202089b0e47a33aa1b21b76dc1d1
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-backup
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\mozstd-trackwhite-digest256.pset
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\mozstd-trackwhite-digest256.sbstore
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\mozstd-trackwhite-digest256-1.sbstore
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\base-track-digest256.sbstore
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\base-track-digest256.pset
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\base-track-digest256-1.sbstore
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-unwanted-simple.sbstore
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-unwanted-simple.pset
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-track-simple.sbstore
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-trackwhite-simple.pset
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: 2473a2f93a5352d20b085149be38044f
SHA256: 9821f2f5aa4bf0bbaf1b2adc87c6115f768f16756b100f60992e9fe2e902078d
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-phish-simple.sbstore
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-track-simple.pset
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-malware-simple.pset
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-phish-simple.pset
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-malware-simple.sbstore
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-block-simple.sbstore
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-block-simple.pset
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-harmful-simple.pset
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-harmful-simple.sbstore
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\mozplugin-block-digest256.pset
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-unwanted-proto.vlpset
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\mozplugin-block-digest256.sbstore
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-phish-proto.vlpset
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-unwanted-proto.metadata
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-malware-proto.vlpset
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-phish-proto.metadata
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-malware-proto.metadata
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-downloadwhite-proto.pset
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-badbinurl-proto.metadata
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-downloadwhite-proto.metadata
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flashallow-digest256.sbstore
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-badbinurl-proto.vlpset
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flashsubdoc-digest256.sbstore
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flashsubdoc-digest256.pset
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flashallow-digest256.pset
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flash-digest256.sbstore
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flash-digest256.pset
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\block-flashsubdoc-digest256.sbstore
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\block-flashsubdoc-digest256.pset
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\block-flash-digest256.sbstore
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\block-flash-digest256.pset
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\allow-flashallow-digest256.sbstore
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\allow-flashallow-digest256.pset
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\422D3A1492824BB7C89E9BED2E88E9185EEC41EA
compressed
MD5: 405aa2bbb8960f1b9393cd78fc8ac1e4
SHA256: 9a33c509c64c4fc4686a820a955717d8d5a231cb5910c7b0951c430d247d0016
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\25C0B8CF41267F0FBCA7ADBDC424991FF3074EDC
der
MD5: d36b92b7a057adf927eab09cc2ff0c09
SHA256: 697e977d7b7f6b813c71f0fe15ed0cc88769355839e94b968b2ec5164fe3ad92
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\EDFC986BE08BA40FDECF7AFDD075ED5C0BFB6C6B
binary
MD5: d6ff77b8df517eca7b362a0d1390ae8a
SHA256: def95c9ed8c149095362b332fdb9167c721e2dc280ff655b676b2bce234c67b7
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\43D3A3C51F57E619891B2888AAF16656D58097AB
htm
MD5: 13af38e4f6bdd0d9e3ef8e069fd31a71
SHA256: 9e2b9cb67ebf33160d3f4c108a3604856a8c0f618fce81b3f92f501472a80d36
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\cert9.db
sqlite
MD5: 70b3e6812df12ac7321efea07f24ac78
SHA256: 8aed3b246241e6b91c004bee7395afc7928c5af4cf1ad17b38927260440b4bf4
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: 45a884d62148a60f5aaf820ecce71204
SHA256: a398269cc74c16f017b49eb09a268c91fc82247bd11e47bb8b3117582cc448ce
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\624DD174A50DFC1F735B9D12B22685159A95C906
compressed
MD5: 35f21276b5749092f440867c2b96eb67
SHA256: b4561487f93613ae6d88861788e5a776e14541fb5046f443c66aae3839149391
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\9C0F8F01155F9FEFF6B1187466224D335F3F511D
der
MD5: a2ae75e4ea1597492055140d7da784b0
SHA256: 7f9254ff9cb030722a725d69760f5266e6e367e5bd4be9a64f4058ff399dc08d
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\B6E89E52079E39F1DDE908839C99BD778986BF89
binary
MD5: d1d1f8cf585d3a24a28416674d117ebb
SHA256: fcd931017790b972981143d18b526bde3e06b381ed32ebc5d2328c9f208c876e
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\7342296B12D00D892F3D5AB6F9AA5F33DD5629F3
der
MD5: db124517183475196ec07dd11c57a112
SHA256: 2ad2f40ca6ab4b7cd723ad0cdc2520d64422d1186998acf80077fda0631cbb2b
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\6FCCE4E852963F37B62713EDCA771AD601B1C8E2
compressed
MD5: 1870c78702a84cb3bea58b7fc438cb8e
SHA256: f23191ef3bdf702ad2c9872e130150237da4fba94d867be0ff4dcebdb8502140
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\6A845CC4F1034115C3B46F6332E0BA1CE98FDAA8
binary
MD5: 462597c30eca2121167d44a16c70d7cd
SHA256: 3826f3ace971b262c5836175400a3c0a1410d8d4e89cc858dd75deb7ca7fa454
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: 0c0fb351f98fd2f80f5f3fd10d34a5ee
SHA256: 6c1ab486411bfe1eeb3348b36097e89d7ebe3b62c42658c9673c8bc67b4e4baa
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\default\moz-extension+++a35bff6e-5489-4e10-95ce-0340b402ad38^userContextId=4294967295\idb\3647222921wleabcEoxlt-eengsairo.sqlite-shm
binary
MD5: e29a8807da2ddf53d033efd7501c3105
SHA256: 6527ce48f2ea56af7d7e000a2c417fe7df77f1b810648566d55cecb896f38384
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\default\moz-extension+++a35bff6e-5489-4e10-95ce-0340b402ad38^userContextId=4294967295\idb\3647222921wleabcEoxlt-eengsairo.sqlite
sqlite
MD5: bec0f6dc253bb9b323677efc8848a398
SHA256: 406d071f6119192d609cd93f19ad0890151e9f20fee06bfa268e267ac085942f
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\default\moz-extension+++a35bff6e-5489-4e10-95ce-0340b402ad38^userContextId=4294967295\idb\3647222921wleabcEoxlt-eengsairo.sqlite-wal
binary
MD5: ab99de99af3c81f0c165a0fcdc71db2f
SHA256: 8c9c690e0d459c289372a20682838bbf68a63cc3c45273c209c32d16ccfa6872
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\default\moz-extension+++a35bff6e-5489-4e10-95ce-0340b402ad38^userContextId=4294967295\idb\3647222921wleabcEoxlt-eengsairo.sqlite-journal
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\default\moz-extension+++a35bff6e-5489-4e10-95ce-0340b402ad38^userContextId=4294967295\.metadata-v2
binary
MD5: d4cfb69c8bf896903da51d368465128c
SHA256: 175c12cda30bf7a517568a62594e24afb82deec2599a961d9abd7e5351ee7a33
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\default\moz-extension+++a35bff6e-5489-4e10-95ce-0340b402ad38^userContextId=4294967295\.metadata-v2-tmp
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\default\moz-extension+++a35bff6e-5489-4e10-95ce-0340b402ad38^userContextId=4294967295\.metadata
binary
MD5: b13fd33248c9e71f135e70dcc695b8d1
SHA256: f6506de779a157de0760b1343cd176720bb2ba1e19d2870b38656aad831b1351
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\default\moz-extension+++a35bff6e-5489-4e10-95ce-0340b402ad38^userContextId=4294967295\.metadata-tmp
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-unwanted-simple.sbstore
binary
MD5: a5695cc64d77967232b0c1344c6e72b3
SHA256: 042a22b8681d754671d2018ba109b31a53ee3728d48c6379043f8e3394e7fbad
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-trackwhite-simple.sbstore
binary
MD5: 65e942614eee70680464ac4be75019fc
SHA256: 34395085da32c8b4efe9959e3b0d756b43ffed17694d66f39b966cd331bd9a94
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-unwanted-simple.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-malware-simple.sbstore
binary
MD5: 3675254e341df799d4307c1f59109185
SHA256: 23d108134bed6099793f7dd6b8b6e62081ec3b945efdbc7c5e0e779fd9b82f98
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-phish-simple.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-phish-simple.sbstore
binary
MD5: 3d1ce5e50208f0cb3b979186043a548f
SHA256: 1e13d05d482c3d533dc6035af2b2d6e84749412a5748d1435b70cec8b312340b
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-track-simple.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-trackwhite-simple.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-track-simple.sbstore
binary
MD5: 95f28ede25c301301f25fbbd9a3c56ec
SHA256: 87763df78772f7d750b0fa5a31eec23e931fd3bd1cbb33beddfc61889da36478
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-unwanted-proto.pset
binary
MD5: 72e2352f7976b0dd90f2a68047493b8c
SHA256: e0d74336b6c041b6087a697dd7f65fa1da7ea035e202e3d977cc6a7e5bdc13a8
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-block-simple.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-harmful-simple.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\mozplugin-block-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\mozplugin-block-digest256.sbstore
binary
MD5: d6acf2573e12afdd7939568804d3fcc1
SHA256: 5525cbf8f8dc41d19ac632ed324e55293a510ae0eeba16d0e3f33c707aa58a0c
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\mozstd-trackwhite-digest256.sbstore
binary
MD5: d772261ff33497d3681e094f23282ffe
SHA256: 8ee76fa11d5a67f0c93766da3b1ac0c942020afba15b55a8750a896292cf4dce
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-malware-simple.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\mozstd-trackwhite-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-block-simple.sbstore
binary
MD5: e2cf527ca7550b7e7bdf7311e483a2c3
SHA256: f1e07b1d717433f47073dc54a7d98e3e87b3d0fa88e53466f93ea544af885d11
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-harmful-simple.sbstore
binary
MD5: 051fb32dece757ba112ac36dc72e3a91
SHA256: 0806d98fb3de55f75d7c0b17e26146567e08c483031526659a4a35d09b97ef19
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-malware-proto.pset
binary
MD5: e608435b687616692a96462e1ac26756
SHA256: 6aa8ee3813d86411d8073a4c2f850b1e8e734c3759d860cbe54ec7f378a82a52
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-phish-proto.metadata
binary
MD5: ddf263974b1925672d369bbcc8f830de
SHA256: 92a7323dd7eb199618a1e2e823a71919285a70196bfe627808c66cf1c1f3c8e3
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-downloadwhite-proto.metadata
binary
MD5: 498dae4e538658a57f464748f2dabfda
SHA256: 8778f52cd9cb4f4787bf7ba18006d212f8c3004652d163f7786556a8eef3a067
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-malware-proto.metadata
binary
MD5: 704df61fa2e3f587b268ad85126bc689
SHA256: 7e97db3c9370a35f59a6a649e6cf608e4f5ed572f87f433ea652977ac2cc48d5
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-downloadwhite-proto.pset
binary
MD5: 7655fffe7cfbe1ebf96afea5fe2e1376
SHA256: ff2f663c4e453706b7817109f6a43e8b3389e8cfb1b7d64aace2bfba45f3a359
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-unwanted-proto.metadata
binary
MD5: eb744b05b13e9410146dab0bd459efa0
SHA256: bfde7f131200eb06c1d54b03d2ce1be1ff31062e8009c937243464712dcd2d50
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-phish-proto.pset
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flash-digest256.sbstore
binary
MD5: c921d8e98fa01b4f303481e112202e92
SHA256: 4ef1038730ec8bc7206713c29a936768831b922c5e6c83355fd62d7401d8c1dc
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-badbinurl-proto.metadata
binary
MD5: 778202e2ee08f4b4073413c0b03e05fc
SHA256: 33147037ce75ec0a48b3da60d619bc76c2471f5f20c15f9d075671de2067cfb0
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-badbinurl-proto.pset
binary
MD5: 844aff63a5f67cd54d9814b7b54abf18
SHA256: 8985970b72a7bcfcf54c4a2474c36ea9a911ab3672881ee299d58f5a4e64e690
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flashallow-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flashallow-digest256.sbstore
binary
MD5: 6f85bc4b2ecb49e26b0bd83a821065d0
SHA256: c0b3bc9b3dc507ab654caf72d13c3aefa58c9b13b1e4d14dd8816712d80a7e54
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flashsubdoc-digest256.sbstore
binary
MD5: ba0009932844173bc8f9af264229df24
SHA256: 66d1c00c04d86e313e9a02775cdf906b1be8d4cd6bef423a1b9e21cc4e9f50c1
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flash-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flashsubdoc-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\block-flashsubdoc-digest256.sbstore
binary
MD5: 04824a1f92353f43ebb9e7f74b7476fd
SHA256: b48e58ebab82e4c376f16150a3fff850c1111ff1f5985d68819cfd6f0db159d2
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\block-flashsubdoc-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\block-flash-digest256.sbstore
binary
MD5: 0e8fe60ccd7e9b4c32589a5743a95302
SHA256: 2b124d4026850a3cffd28dbacb58aec28f7dcd4d40bc14e52bbe96d60ce4e749
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\block-flash-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\3DCDC7770199AC3B16AC509AC7E8C5F0B178466C
binary
MD5: f8e43fe5ab9c506b06f007011ac61a5d
SHA256: a116e84bcdd7b5b92d0c617d339e7b01b791efecd6fb8d1c8ef4ceb2b63add6c
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\4067DAF0AE5B033E92B6F2B562349F78FAC48EBD
binary
MD5: 690665a6ef84fd768bbebfb9365bf2c3
SHA256: f5d4a5d58e5f85444fc72e72ee7b2c2146bc40ea804653008a509d13023725c8
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\C89BEB1A82506391799594EF63E2AE562940DC89
binary
MD5: af60b8a91a9dca22d38a8d213a3d1966
SHA256: e5dc3aa01d65b25a45b439dbecaa5892c53a3fb6b583b266d610ebc875aafbc8
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\thumbnails\77c288d7496eb2b8fda7ef47126f0ddc.png
image
MD5: 8f35ba982f842a9cab6a799934aa82b1
SHA256: 4fa5ee4d0daa9331e385202b641d82388fea0349d9ba091c9dec0fc3ac68d9df
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\thumbnails\77c288d7496eb2b8fda7ef47126f0ddc.png.tmp
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionstore-backups\recovery.jsonlz4
jsonlz4
MD5: 036e8dd296b451a0ec6832e78983f382
SHA256: 5242c3c6c7707ece065468c0536ad1feafe2ae39baae545e375eb8c637162b05
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionstore-backups\previous.jsonlz4
jsonlz4
MD5: d282be26272e1e2a33d64d5be0e55f51
SHA256: 8e09de9b62723612ca98aca7137289dd00e19fa0d3a81a167341cc8020e310d1
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\addonStartup.json.lz4
jsonlz4
MD5: 351583f788997971d6d0e40152cefd23
SHA256: fa70ea6714bd13f2e974400187afcd659c62a52712444e8f32e48320ea47d3a7
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\addonStartup.json.lz4.tmp
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\43D3A3C51F57E619891B2888AAF16656D58097AB
htm
MD5: 758aa635e90f445fbb3ebbde4f0dca86
SHA256: 899b6fc3698ff979518259d0997efa968c2391257aeb71304897b0d21a42c3ee
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\D3515009EC0A59103AC0B48DF189C0E3F33E9E4A
htm
MD5: 7568045f7a37c072875ee00c594e5818
SHA256: 3d73c06ce6de5b3b494ad03a514fa9cd0119fdceeba44fb55b6051af740e0cb8
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\A6FD9774D3BD8FD9F570334201A14E9B08555CA2
der
MD5: e677837b69ac73bd9b226165be40e84d
SHA256: f3a0dc71eb8819071448b41353bb19bdac5504ddb23194934e1177754ef7f39a
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: 42de7b5e95f66a997b01b7262ea8e4ae
SHA256: d44af935aa3c159e25928c663ce0dd26b5e2faee4672efee6729746994c8f8e6
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\76D40BF8E00D48ACF77D616A93929A63408B8C08
binary
MD5: 66c6bec9256f12d66c5c201c4374d60f
SHA256: f4a5e656b889329e823ba964cb1fa824b79c10f8fdb12dfed4e266bf0655e7d6
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\5AF2D731B85228BFABA77BE64A0C3BD45427E840
der
MD5: a8b800dbd8226158d046b3ed5f954c81
SHA256: c204b65af7a7c87b05a526d2d38f04523f15d28dab409dad3aa12a96375e1baa
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\search.json.mozlz4
jsonlz4
MD5: d7926c4d2fe24b9b892ef43ce02f9a32
SHA256: ba8f95dc07f2732332437912354457b67fba04374f66b2d831603ba1bc819517
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\search.json.mozlz4.tmp
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: 1446f7b857b1e1d8328d0cf819f0f6fd
SHA256: ea3b7cd305013b87fd94ed8f6ad7d59be546f7c7c7529826bcd214407d000a93
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\59492F030C339E91FFEB2CB196987133F6AA543F
binary
MD5: 9ffdee7b817932b3aab4a6e38310071d
SHA256: 70939decded41585d1e273a8f51b096b3f1034002e2203831b6a9d17f9e3ea97
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\0CC1C28FCF652C5B98217B82E7F6781405768204
binary
MD5: 1ad42e361c60dcbaa04fb2781bfadf0f
SHA256: 721ca0fec6d68a067b3153f2deab20422bf57270553e0832f1867cbe53e7c114
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-block-simple-1.sbstore
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-track-simple-1.sbstore
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-trackwhite-simple-1.sbstore
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\EE197B20CAB0419D1C0BD23EE03034F880EDC296
image
MD5: d5edeccf45adfdac280b377b18c55fdb
SHA256: b57ccda1eafcd4229264710911ef2175cf4c8182d5176505fec7f8ac9b0aa224
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-harmful-simple-1.sbstore
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-unwanted-simple-1.sbstore
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-phish-simple-1.sbstore
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-malware-simple-1.sbstore
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\3428896C8A9132471F5989C455A8C13637750A24
image
MD5: fa6d217f6f4829fed2764a35347f432f
SHA256: 5277cd6195be060ba998d856f62fe0fd53c885fd11489eab2ce150b43c4c2bab
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\EC4A453F1F3483A43E6F18ECC97D5510807C5746
der
MD5: a4bc56b93de4b609b3e547fe89d6d4ea
SHA256: b58a808799f15ad0c983c96af198e33a1e404354c28ddb69f9f132326aaaccb7
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-unwanted-proto.pset
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-malware-proto.pset
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-badbinurl-proto.pset
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\2446C1C63A909CDC43709B7B125EACA3407506B3
ini
MD5: dba0294453ab9e3112dcdde46936b149
SHA256: bfbc2320361a1e88c60e17764349abae0037bbf91d09013699024ec21695a3e5
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\base-track-digest256.sbstore
binary
MD5: 23e438fd4af1829d4469ff8d0bc83854
SHA256: 96e0d7644aea81d26f039ae633eb405583e11b020363090dac5cad9b4b188846
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\base-track-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\2E4EB9C24BC958CDB76575DC268ED1C8442ACE4E
der
MD5: 48ed253367b63545996445a49ab72b1b
SHA256: 944fe9860dda7c6785ea939ae1f50b2dd50b3d5abd6a609126045c0a738e9ee6
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\allow-flashallow-digest256.sbstore
binary
MD5: d886a47c89d9c49c795da345bc236990
SHA256: a03c5e2656d2f292bf5794c8eeb8d223cd6ba4f4bfb2ed1f325460e879d0bcf7
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\allow-flashallow-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\3561288849sdhlie.sqlite-shm
binary
MD5: b7c14ec6110fa820ca6b65f5aec85911
SHA256: fd4c9fda9cd3f9ae7c962b0ddf37232294d55580e1aa165aa06129b8549389eb
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\search.json.mozlz4
jsonlz4
MD5: 03e22f63ea4be5add7aef9050d485611
SHA256: 0b5a2bcd1edf7ee6252f04b41403e0bc21f2eedf7cbaa6565f6562238c771c13
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: 61e04f058e592438993dcc5c8087b674
SHA256: 39d3b68fb7d143fe276c1e9ad89d9b4f0aa38e95788fca8278d73407e7e3b51f
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionCheckpoints.json
text
MD5: c4ab2ee59ca41b6d6a6ea911f35bdc00
SHA256: 00ad9799527c3fd21f3a85012565eae817490f3e0d417413bf9567bb5909f6a2
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionCheckpoints.json.tmp
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\1657114595AmcateirvtiSty.sqlite-shm
binary
MD5: b7c14ec6110fa820ca6b65f5aec85911
SHA256: fd4c9fda9cd3f9ae7c962b0ddf37232294d55580e1aa165aa06129b8549389eb
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\2918063365piupsah.sqlite-shm
binary
MD5: b7c14ec6110fa820ca6b65f5aec85911
SHA256: fd4c9fda9cd3f9ae7c962b0ddf37232294d55580e1aa165aa06129b8549389eb
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\1451318868ntouromlalnodry--epcr.sqlite-shm
binary
MD5: b7c14ec6110fa820ca6b65f5aec85911
SHA256: fd4c9fda9cd3f9ae7c962b0ddf37232294d55580e1aa165aa06129b8549389eb
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.sqlite-shm
binary
MD5: b7c14ec6110fa820ca6b65f5aec85911
SHA256: fd4c9fda9cd3f9ae7c962b0ddf37232294d55580e1aa165aa06129b8549389eb
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionCheckpoints.json
text
MD5: ea8b62857dfdbd3d0be7d7e4a954ec9a
SHA256: 792955295ae9c382986222c6731c5870bd0e921e7f7e34cc4615f5cd67f225da
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: d65b2bd591a1d6cc666241e6eef1afe7
SHA256: 1b94f69a3bf3cb9f7349fe274ca82166c22d675f9b043b19f2770d044ae9bd16
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\pluginreg.dat
text
MD5: 37818d9b7248f34395c2db3c0bd4b07f
SHA256: ff229e03d2ab696e81957957ea8d71280b5800a2b0f70ea77998c3fa4e98a8a6
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\pluginreg.dat.tmp
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\cookies.sqlite-shm
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\startupCache\scriptCache-child-current.bin
binary
MD5: 6a1ef5c5ae2f682a0606848fa329072b
SHA256: 29312a09916820dec3eee29b40c503fee9569204e291320bd9c908b3386b1896
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\startupCache\scriptCache-current.bin
––
MD5:  ––
SHA256:  ––
4060
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\startupCache\urlCache-current.bin
binary
MD5: fd4ac055b608cf2c11c9b2c796a4fe1a
SHA256: 1d8a349613f7dcb71bf648c8c7f780f3953a2bc53435846289101fd77d8887af

Find more information of the staic content and download it at the full report

Network activity

HTTP(S) requests
50
TCP/UDP connections
78
DNS requests
162
Threats
0

HTTP requests

PID Process Method HTTP Code IP URL CN Type Size Reputation
4060 firefox.exe GET 200 95.100.39.8:80 http://detectportal.firefox.com/success.txt DE
text
whitelisted
4060 firefox.exe POST 200 93.184.220.29:80 http://ocsp.digicert.com/ US
binary
der
whitelisted
4060 firefox.exe POST 200 93.184.220.29:80 http://ocsp.digicert.com/ US
binary
der
whitelisted
4060 firefox.exe POST 200 93.184.220.29:80 http://ocsp.digicert.com/ US
binary
der
whitelisted
4060 firefox.exe POST 200 172.217.21.195:80 http://ocsp.pki.goog/GTSGIAG3 US
binary
der
whitelisted
4060 firefox.exe GET 200 213.136.67.115:80 http://panlearn.net/ DE
html
unknown
4060 firefox.exe GET 404 213.136.67.115:80 http://panlearn.net/favicon.ico DE
html
unknown
4060 firefox.exe GET 200 213.136.67.115:80 http://panlearn.net/home.html DE
html
unknown
4060 firefox.exe GET 200 104.20.21.239:80 http://rum-static.pingdom.net/prum.min.js US
text
whitelisted
4060 firefox.exe GET 200 143.204.214.58:80 http://cdn.zarget.com/114939/212078.js US
text
whitelisted
4060 firefox.exe POST 200 172.217.21.195:80 http://ocsp.pki.goog/GTSGIAG3 US
binary
der
whitelisted
4060 firefox.exe POST 200 93.184.220.29:80 http://ocsp.digicert.com/ US
binary
der
whitelisted
4060 firefox.exe GET 200 34.228.193.216:80 http://ip.freshmarketer.com/json/?callback=setGeoTargeting US
text
unknown
4060 firefox.exe POST 200 172.217.21.195:80 http://ocsp.pki.goog/GTSGIAG3 US
binary
der
whitelisted
4060 firefox.exe GET 200 52.19.218.237:80 http://rum-collector-2.pingdom.net/img/beacon.gif?id=5561ef85abe53d2b3caa542f&sAW=1280&sAH=692&bIW=1280&bIH=587&pD=24&dPR=1&or=landscape-primary&nT=0&rC=0&nS=0&cS=26&cE=26&dLE=26&dLS=25&fS=0&hS=-1&rE=-1&rS=-1&reS=26&resS=350&resE=350&uEE=353&uES=351&dL=351&dI=459&dCLES=463&dCLEE=464&dC=3120&lES=3120&lEE=3123&s=nt&title=Online%20Certification%20Training%20Courses%20for%20Professionals&path=http%3A%2F%2Fpanlearn.net%2Fhome.html&ref=http%3A%2F%2Fpanlearn.net%2F&sId=6iwk9om2&sST=1563394156&sIS=1&rV=0&v=1.4.0 IE
––
––
whitelisted
4060 firefox.exe GET 200 172.217.23.168:80 http://www.googletagmanager.com/gtm.js?id=GTM-WTL3CF&l=dataLayer US
text
whitelisted
4060 firefox.exe GET 200 172.217.18.98:80 http://www.googleadservices.com/pagead/conversion_async.js US
text
whitelisted
4060 firefox.exe GET 200 172.217.18.98:80 http://www.googleadservices.com/pagead/conversion_async.js US
text
whitelisted
4060 firefox.exe GET 200 172.217.18.98:80 http://www.googleadservices.com/pagead/conversion.js US
text
whitelisted
4060 firefox.exe GET 200 172.217.21.195:80 http://www.gstatic.com/wcm/loader.js US
text
whitelisted
4060 firefox.exe GET 200 35.186.249.72:80 http://d.impactradius-event.com/A350394-7e32-4f8b-850a-c0a6b28d569b1.js US
text
whitelisted
4060 firefox.exe GET 301 93.184.220.66:80 http://platform.twitter.com/oct.js US
––
––
whitelisted
4060 firefox.exe GET 200 184.31.81.141:80 http://js.bizographics.com/insight.min.js NL
text
whitelisted
4060 firefox.exe GET 200 172.217.21.195:80 http://www.gstatic.com/wcm/impl-1_31.js US
text
whitelisted
4060 firefox.exe POST 200 151.139.128.14:80 http://ocsp.comodoca.com/ US
binary
der
whitelisted
4060 firefox.exe GET 301 104.244.42.69:80 http://t.co/i/adsct?p_id=Twitter&p_user_id=0&txn_id=l6src&tw_sale_amount=0&tw_order_quantity=0&tw_iframe_status=0 US
––
––
shared
4060 firefox.exe GET 301 104.244.42.69:80 http://t.co/i/adsct?p_id=Twitter&p_user_id=0&txn_id=nvkgn&events=%5B%5B%22pageview%22%2Cnull%5D%5D&tw_sale_amount=0&tw_order_quantity=0&tw_iframe_status=0 US
––
––
shared
4060 firefox.exe POST 200 151.139.128.14:80 http://ocsp.comodoca.com/ US
binary
der
whitelisted
4060 firefox.exe POST 200 93.184.220.29:80 http://ocsp.digicert.com/ US
binary
der
whitelisted
4060 firefox.exe POST 200 93.184.220.29:80 http://ocsp.digicert.com/ US
binary
der
whitelisted
4060 firefox.exe GET 200 151.101.36.157:80 http://static.ads-twitter.com/uwt.js US
text
whitelisted
4060 firefox.exe GET 200 104.19.148.8:80 http://script.crazyegg.com/pages/scripts/0017/4559.js?434276 US
text
whitelisted
4060 firefox.exe POST 200 13.225.84.88:80 http://ocsp.sca1b.amazontrust.com/ US
binary
der
whitelisted
4060 firefox.exe POST 200 93.184.220.29:80 http://ocsp.digicert.com/ US
binary
der
whitelisted
4060 firefox.exe POST 200 93.184.220.29:80 http://ocsp.digicert.com/ US
binary
der
whitelisted
4060 firefox.exe POST 200 172.217.21.195:80 http://ocsp.pki.goog/GTSGIAG3 US
binary
der
whitelisted
4060 firefox.exe POST 200 172.217.21.195:80 http://ocsp.pki.goog/GTSGIAG3 US
binary
der
whitelisted
4060 firefox.exe POST 200 93.184.220.29:80 http://ocsp.digicert.com/ US
binary
der
whitelisted
4060 firefox.exe POST 200 172.217.21.195:80 http://ocsp.pki.goog/GTSGIAG3 US
binary
der
whitelisted
4060 firefox.exe POST 200 172.217.21.195:80 http://ocsp.pki.goog/GTSGIAG3 US
binary
der
whitelisted
4060 firefox.exe POST 200 172.217.21.195:80 http://ocsp.pki.goog/GTSGIAG3 US
binary
der
whitelisted
4060 firefox.exe POST 200 93.184.220.29:80 http://ocsp.digicert.com/ US
binary
der
whitelisted
4060 firefox.exe POST 200 172.217.21.195:80 http://ocsp.pki.goog/GTSGIAG3 US
binary
der
whitelisted
4060 firefox.exe POST 200 172.217.21.195:80 http://ocsp.pki.goog/GTSGIAG3 US
binary
der
whitelisted
4060 firefox.exe POST 200 172.217.21.195:80 http://ocsp.pki.goog/GTSGIAG3 US
binary
der
whitelisted
4060 firefox.exe GET 403 213.136.67.115:80 http://panlearn.net/cgi-bin/ DE
html
unknown
4060 firefox.exe GET 200 213.136.67.115:80 http://panlearn.net/cls/ DE
html
unknown
4060 firefox.exe GET 200 213.136.67.115:80 http://panlearn.net/cls/class/ DE
html
unknown
4060 firefox.exe GET 200 213.136.67.115:80 http://panlearn.net/cls/inter/ DE
html
unknown
4060 firefox.exe GET 200 213.136.67.115:80 http://panlearn.net/cls/inter/readme.txt DE
text
unknown

Download PCAP, analyze network streams, HTTP content and a lot more at the full report

Connections

PID Process IP ASN CN Reputation
4060 firefox.exe 95.100.39.8:80 Akamai International B.V. DE unknown
4060 firefox.exe 52.50.56.62:443 Amazon.com, Inc. IE unknown
4060 firefox.exe 34.209.56.240:443 Amazon.com, Inc. US unknown
4060 firefox.exe 93.184.220.29:80 MCI Communications Services, Inc. d/b/a Verizon Business US whitelisted
4060 firefox.exe 52.27.87.181:443 Amazon.com, Inc. US unknown
4060 firefox.exe 13.225.79.58:443 US unknown
4060 firefox.exe 54.190.222.97:443 Amazon.com, Inc. US malicious
4060 firefox.exe 172.217.22.106:443 Google Inc. US whitelisted
4060 firefox.exe 172.217.21.195:80 Google Inc. US whitelisted
4060 firefox.exe 213.136.67.115:80 Contabo GmbH DE unknown
4060 firefox.exe 52.41.30.135:443 Amazon.com, Inc. US unknown
4060 firefox.exe 104.20.21.239:80 Cloudflare Inc US shared
4060 firefox.exe 74.86.208.240:443 SoftLayer Technologies Inc. US unknown
4060 firefox.exe 216.58.207.67:443 Google Inc. US whitelisted
4060 firefox.exe 143.204.214.58:80 US unknown
4060 firefox.exe 34.228.193.216:80 Amazon.com, Inc. US unknown
4060 firefox.exe 13.225.78.23:443 US unknown
4060 firefox.exe 172.217.22.78:443 Google Inc. US whitelisted
4060 firefox.exe 52.19.218.237:80 Amazon.com, Inc. IE unknown
4060 firefox.exe 172.217.23.168:80 Google Inc. US whitelisted
4060 firefox.exe 172.217.18.98:80 Google Inc. US whitelisted
4060 firefox.exe 35.186.249.72:80 Google Inc. US unknown
4060 firefox.exe 23.111.9.64:443 netDNA US unknown
4060 firefox.exe 93.184.220.66:80 MCI Communications Services, Inc. d/b/a Verizon Business US whitelisted
4060 firefox.exe 184.31.81.141:80 Akamai International B.V. NL unknown
4060 firefox.exe 204.79.197.200:443 Microsoft Corporation US whitelisted
4060 firefox.exe 13.225.78.125:443 US unknown
4060 firefox.exe 151.101.36.157:443 Fastly US unknown
4060 firefox.exe 151.139.128.14:80 Highwinds Network Group, Inc. US suspicious
4060 firefox.exe 54.208.251.239:443 Amazon.com, Inc. US unknown
4060 firefox.exe 104.244.42.69:80 Twitter Inc. US unknown
4060 firefox.exe 104.244.42.69:443 Twitter Inc. US unknown
4060 firefox.exe 34.195.250.127:443 Amazon.com, Inc. US unknown
4060 firefox.exe 104.19.148.8:80 Cloudflare Inc US unknown
4060 firefox.exe 31.13.92.14:443 Facebook, Inc. IE whitelisted
4060 firefox.exe 151.101.36.157:80 Fastly US unknown
–– –– 31.13.92.14:443 Facebook, Inc. IE whitelisted
4060 firefox.exe 216.58.210.2:443 Google Inc. US whitelisted
–– –– 216.58.210.2:443 Google Inc. US whitelisted
4060 firefox.exe 185.63.145.5:443 IE unknown
4060 firefox.exe 172.217.18.98:443 Google Inc. US whitelisted
4060 firefox.exe 104.244.42.67:443 Twitter Inc. US unknown
4060 firefox.exe 13.225.84.88:80 US whitelisted
4060 firefox.exe 216.58.210.4:443 Google Inc. US whitelisted
4060 firefox.exe 172.217.22.67:443 Google Inc. US whitelisted
4060 firefox.exe 13.225.78.71:443 US unknown
4060 firefox.exe 13.225.38.5:443 US unknown

DNS requests

Domain IP Reputation
detectportal.firefox.com 95.100.39.8
95.100.39.17
whitelisted
a1089.dscd.akamai.net 95.100.39.17
95.100.39.8
whitelisted
location.services.mozilla.com 52.50.56.62
52.210.139.31
108.128.247.43
whitelisted
locprod1-elb-eu-west-1.prod.mozaws.net 108.128.247.43
52.210.139.31
52.50.56.62
whitelisted
push.services.mozilla.com 34.209.56.240
whitelisted
autopush.prod.mozaws.net No response whitelisted
snippets.cdn.mozilla.net 13.225.79.58
whitelisted
ocsp.digicert.com 93.184.220.29
whitelisted
cs9.wac.phicdn.net 93.184.220.29
whitelisted
tiles.services.mozilla.com 52.27.87.181
52.26.103.165
52.42.232.148
52.35.96.157
52.34.132.219
52.25.71.236
52.26.166.58
52.43.91.152
whitelisted
tiles.r53-2.services.mozilla.com 52.43.91.152
52.27.87.181
52.26.103.165
52.42.232.148
52.35.96.157
52.34.132.219
52.25.71.236
52.26.166.58
whitelisted
drcwo519tnci7.cloudfront.net 13.225.79.58
whitelisted
search.services.mozilla.com 54.190.222.97
34.215.70.240
52.11.30.237
whitelisted
search.r53-2.services.mozilla.com No response whitelisted
safebrowsing.googleapis.com 172.217.22.106
whitelisted
ocsp.pki.goog 172.217.21.195
whitelisted
pki-goog.l.google.com No response whitelisted
panlearn.net 213.136.67.115
unknown
www.youtube.com 216.58.208.46
216.58.207.78
216.58.207.46
216.58.206.14
172.217.18.174
172.217.18.14
172.217.22.14
216.58.205.238
172.217.21.206
172.217.23.174
172.217.18.110
172.217.16.206
216.58.210.14
172.217.22.78
172.217.22.46
172.217.16.142
whitelisted
www.facebook.com 185.60.216.35
whitelisted
support.mozilla.org 34.208.233.116
52.39.170.29
whitelisted
youtube-ui.l.google.com 172.217.16.142
216.58.208.46
216.58.207.78
216.58.207.46
216.58.206.14
172.217.18.174
172.217.18.14
172.217.22.14
216.58.205.238
172.217.21.206
172.217.23.174
172.217.18.110
172.217.16.206
216.58.210.14
172.217.22.78
172.217.22.46
whitelisted
prod-tp.sumo.mozit.cloud 52.39.170.29
34.208.233.116
malicious
star-mini.c10r.facebook.com 185.60.216.35
whitelisted
www.wikipedia.org 91.198.174.192
whitelisted
www.reddit.com 151.101.1.140
151.101.65.140
151.101.129.140
151.101.193.140
whitelisted
dyna.wikimedia.org 91.198.174.192
whitelisted
twitter.com 104.244.42.1
104.244.42.193
whitelisted
www.mozilla.org 104.16.41.2
104.16.40.2
whitelisted
www.mozilla.org.cdn.cloudflare.net 104.16.40.2
104.16.41.2
whitelisted
reddit.map.fastly.net 151.101.193.140
151.101.129.140
151.101.65.140
151.101.1.140
whitelisted
shavar.prod.mozaws.net 52.39.125.163
52.41.30.135
35.155.164.84
52.26.199.81
35.166.72.120
52.40.28.81
whitelisted
shavar.services.mozilla.com 52.41.30.135
35.155.164.84
52.26.199.81
35.166.72.120
52.40.28.81
52.39.125.163
whitelisted
rum-static.pingdom.net 104.20.21.239
104.20.20.239
whitelisted
cdn.zarget.com 143.204.214.58
143.204.214.19
143.204.214.67
143.204.214.111
whitelisted
www.google-analytics.com 172.217.22.78
whitelisted
www.google.co.in 216.58.207.67
whitelisted
www.mylivechat.com 74.86.208.240
unknown
www-google-analytics.l.google.com No response whitelisted
ip.freshmarketer.com 34.228.193.216
34.199.79.28
unknown
tracking-protection.cdn.mozilla.net 13.225.78.23
13.225.78.67
13.225.78.65
13.225.78.87
whitelisted
d1zkz3k4cclnv6.cloudfront.net 13.225.78.87
13.225.78.23
13.225.78.67
13.225.78.65
whitelisted
s6.mylivechat.com 74.86.208.240
unknown
bxdesigns.org 198.187.29.185
suspicious
rum-collector-2.pingdom.net 52.19.218.237
34.253.101.117
52.48.220.183
34.253.52.223
52.212.46.134
34.255.234.72
whitelisted
prod-dem-collector-elb-611025824.eu-west-1.elb.amazonaws.com 34.255.234.72
52.212.46.134
34.253.52.223
52.48.220.183
34.253.101.117
52.19.218.237
whitelisted
www.googletagmanager.com 172.217.23.168
whitelisted
www-googletagmanager.l.google.com 172.217.23.168
whitelisted
www.googleadservices.com 172.217.18.98
whitelisted
www.gstatic.com 172.217.21.195
whitelisted
js.bizographics.com 184.31.81.141
whitelisted
bat.bing.com 204.79.197.200
13.107.21.200
whitelisted
dual-a-0001.a-msedge.net 13.107.21.200
204.79.197.200
whitelisted
connect.facebook.net 31.13.92.14
whitelisted
platform.twitter.com 93.184.220.66
whitelisted
d.impactradius-event.com 35.186.249.72
whitelisted
pagead.l.doubleclick.net 172.217.18.98
whitelisted
scontent.xx.fbcdn.net No response whitelisted
scout-cdn.salesloft.com 23.111.9.64
unknown
static.ads-twitter.com 151.101.36.157
whitelisted
script.fixel.ai 13.225.78.125
13.225.78.103
13.225.78.38
13.225.78.76
suspicious
script.crazyegg.com 104.19.148.8
104.19.147.8
whitelisted
scout.salesloft.netdna-cdn.com 23.111.9.64
unknown
e15071.dscd.akamaiedge.net No response whitelisted
cs41.wac.edgecastcdn.net 93.184.220.66
suspicious
platform.twitter.map.fastly.net 151.101.36.157
unknown
script.crazyegg.com.cdn.cloudflare.net No response whitelisted
d1jfdgy8pe9ut1.cloudfront.net No response unknown
ocsp.comodoca.com 151.139.128.14
whitelisted
t3j2g9x7.stackpathcdn.com No response whitelisted
googleads.g.doubleclick.net 216.58.210.2
whitelisted
pagead46.l.doubleclick.net No response whitelisted
px.ads.linkedin.com 185.63.145.5
whitelisted
pop-efr5.mix.linkedin.com No response unknown
scout.salesloft.com 54.208.251.239
52.204.14.45
34.194.209.108
unknown
analytics.twitter.com 104.244.42.67
104.244.42.3
104.244.42.195
104.244.42.131
whitelisted
t.co 104.244.42.69
104.244.42.5
104.244.42.197
104.244.42.133
shared
s.twitter.com No response whitelisted
scout.us1.salesloft.com 54.208.251.239
52.204.14.45
34.194.209.108
unknown
appdev.fixel.ai 34.195.250.127
54.210.14.44
unknown
fixelwebapp.us-east-1.elasticbeanstalk.com No response unknown
ocsp.sca1b.amazontrust.com 13.225.84.88
13.225.84.104
13.225.84.142
13.225.84.107
whitelisted
www.google.nl 172.217.22.67
whitelisted
www.google.com 216.58.210.4
whitelisted
firefox.settings.services.mozilla.com 13.225.78.71
13.225.78.107
13.225.78.9
13.225.78.55
whitelisted
d2k03kvdk5cku0.cloudfront.net No response whitelisted
content-signature.cdn.mozilla.net 13.225.38.5
13.225.38.74
13.225.38.86
13.225.38.54
whitelisted
d12uj65dsn9ho1.cloudfront.net 13.225.38.54
13.225.38.86
13.225.38.74
13.225.38.5
whitelisted

Threats

No threats detected.

Debug output strings

No debug info.