General Info

URL

http://pelletproductionpoland.com

Full analysis
https://app.any.run/tasks/fa6cfdb7-38f3-4f97-a662-f3662860b392
Verdict
Malicious activity
Analysis date
9/11/2019, 13:45:57
OS:
Windows 7 Professional Service Pack 1 (build: 7601, 32 bit)
Tags:

opendir

Indicators:

ANY.RUN is an interactive service which provides full access to the guest system. Information in this report could be distored by user actions and is provided for user acknowledgement as it is. ANY.RUN does not guarantee maliciousness or safety of the content.

Software environment set and analysis options

Launch configuration

Task duration
60 seconds
Additional time used
none
Fakenet option
off
Heavy Evaision option
off
MITM proxy
off
Route via Tor
off
Network geolocation
off
Privacy
Public submission
Autoconfirmation of UAC
on

Software preset

  • Internet Explorer 8.0.7601.17514
  • Adobe Acrobat Reader DC MUI (15.023.20070)
  • Adobe Flash Player 26 ActiveX (26.0.0.131)
  • Adobe Flash Player 26 NPAPI (26.0.0.131)
  • Adobe Flash Player 26 PPAPI (26.0.0.131)
  • Adobe Refresh Manager (1.8.0)
  • CCleaner (5.35)
  • FileZilla Client 3.36.0 (3.36.0)
  • Google Chrome (75.0.3770.100)
  • Google Update Helper (1.3.34.7)
  • Java 8 Update 92 (8.0.920.14)
  • Java Auto Updater (2.8.92.14)
  • Microsoft .NET Framework 4.7.2 (4.7.03062)
  • Microsoft Office Access MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Access Setup Metadata MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Excel MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office OneNote MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Outlook MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office PowerPoint MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Professional 2010 (14.0.6029.1000)
  • Microsoft Office Proof (English) 2010 (14.0.6029.1000)
  • Microsoft Office Proof (French) 2010 (14.0.6029.1000)
  • Microsoft Office Proof (Spanish) 2010 (14.0.6029.1000)
  • Microsoft Office Proofing (English) 2010 (14.0.6029.1000)
  • Microsoft Office Publisher MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Shared MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Shared Setup Metadata MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Single Image 2010 (14.0.6029.1000)
  • Microsoft Office Word MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (9.0.30729.6161)
  • Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (10.0.40219)
  • Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (12.0.30501.0)
  • Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (12.0.21005)
  • Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (12.0.21005)
  • Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.21.27702 (14.21.27702.2)
  • Microsoft Visual C++ 2019 X86 Additional Runtime - 14.21.27702 (14.21.27702)
  • Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.21.27702 (14.21.27702)
  • Mozilla Firefox 68.0.1 (x86 en-US) (68.0.1)
  • Notepad++ (32-bit x86) (7.5.1)
  • Opera 12.15 (12.15.1748)
  • Skype version 8.29 (8.29)
  • Update for Microsoft .NET Framework 4.7.2 (KB4087364) (1)
  • VLC media player (2.2.6)
  • WinRAR 5.60 (32-bit) (5.60.0)

Hotfixes

  • Client LanguagePack Package
  • Client Refresh LanguagePack Package
  • CodecPack Basic Package
  • Foundation Package
  • IE Troubleshooters Package
  • InternetExplorer Optional Package
  • KB2534111
  • KB2999226
  • KB4019990
  • KB976902
  • LocalPack AU Package
  • LocalPack CA Package
  • LocalPack GB Package
  • LocalPack US Package
  • LocalPack ZA Package
  • ProfessionalEdition
  • UltimateEdition

Behavior activities

MALICIOUS SUSPICIOUS INFO

No malicious indicators.

No suspicious indicators.

Creates files in the user directory
  • firefox.exe (PID: 2324)
Application launched itself
  • firefox.exe (PID: 2324)
  • firefox.exe (PID: 3424)
Reads CPU info
  • firefox.exe (PID: 2324)

Find more information about signature artifacts and mapping to MITRE ATT&CK™ MATRIX at the full report

Screenshots

Processes

Total processes
38
Monitored processes
6
Malicious processes
0
Suspicious processes
0

Behavior graph

+
start firefox.exe no specs firefox.exe firefox.exe no specs firefox.exe firefox.exe firefox.exe
Specs description
Program did not start
Integrity level elevation
Task сontains an error or was rebooted
Process has crashed
Task contains several apps running
Executable file was dropped
Debug information is available
Process was injected
Network attacks were detected
Application downloaded the executable file
Actions similar to stealing personal data
Behavior similar to exploiting the vulnerability
Inspected object has sucpicious PE structure
File is detected by antivirus software
CPU overrun
RAM overrun
Process starts the services
Process was added to the startup
Behavior similar to spam
Low-level access to the HDD
Probably Tor was used
System was rebooted
Connects to the network
Known threat

Process information

Click at the process to see the details.

PID
3424
CMD
"C:\Program Files\Mozilla Firefox\firefox.exe" "http://pelletproductionpoland.com"
Path
C:\Program Files\Mozilla Firefox\firefox.exe
Indicators
No indicators
Parent process
––
User
admin
Integrity Level
MEDIUM
Exit code
0
Version:
Company
Mozilla Corporation
Description
Firefox
Version
68.0.1
Modules
Image
c:\program files\mozilla firefox\firefox.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\mozilla firefox\mozglue.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\version.dll
c:\program files\mozilla firefox\msvcp140.dll
c:\program files\mozilla firefox\vcruntime140.dll
c:\program files\mozilla firefox\api-ms-win-crt-runtime-l1-1-0.dll
c:\program files\mozilla firefox\ucrtbase.dll
c:\program files\mozilla firefox\api-ms-win-core-localization-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-processthreads-l1-1-1.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-timezone-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l2-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-synch-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-string-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-heap-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-stdio-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-convert-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-locale-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-math-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-time-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-filesystem-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-environment-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-utility-l1-1-0.dll
c:\windows\system32\apphelp.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll

PID
2324
CMD
"C:\Program Files\Mozilla Firefox\firefox.exe" http://pelletproductionpoland.com
Path
C:\Program Files\Mozilla Firefox\firefox.exe
Indicators
Parent process
firefox.exe
User
admin
Integrity Level
MEDIUM
Version:
Company
Mozilla Corporation
Description
Firefox
Version
68.0.1
Modules
Image
c:\program files\mozilla firefox\firefox.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\mozilla firefox\mozglue.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\version.dll
c:\program files\mozilla firefox\msvcp140.dll
c:\program files\mozilla firefox\vcruntime140.dll
c:\program files\mozilla firefox\api-ms-win-crt-runtime-l1-1-0.dll
c:\program files\mozilla firefox\ucrtbase.dll
c:\program files\mozilla firefox\api-ms-win-core-localization-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-processthreads-l1-1-1.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-timezone-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l2-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-synch-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-string-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-heap-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-stdio-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-convert-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-locale-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-math-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-time-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-filesystem-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-environment-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-utility-l1-1-0.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\mozilla firefox\api-ms-win-crt-multibyte-l1-1-0.dll
c:\program files\mozilla firefox\nss3.dll
c:\windows\system32\winmm.dll
c:\windows\system32\wsock32.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\program files\mozilla firefox\lgpllibs.dll
c:\program files\mozilla firefox\xul.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\avrt.dll
c:\windows\system32\ole32.dll
c:\windows\system32\d3d11.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\credui.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\wtsapi32.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\kbdus.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\psapi.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\napinsp.dll
c:\windows\system32\pnrpnsp.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\winrnr.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\wbem\wbemprox.dll
c:\windows\system32\wbemcomn.dll
c:\windows\system32\wship6.dll
c:\windows\system32\cryptsp.dll
c:\windows\system32\winsta.dll
c:\windows\system32\rsaenh.dll
c:\windows\system32\wshqos.dll
c:\windows\system32\rpcrtremote.dll
c:\windows\system32\wbem\wbemsvc.dll
c:\windows\system32\wbem\fastprox.dll
c:\windows\system32\ntdsapi.dll
c:\windows\system32\apphelp.dll
c:\windows\system32\mscms.dll
c:\windows\system32\wpc.dll
c:\windows\system32\wevtapi.dll
c:\windows\system32\samcli.dll
c:\windows\system32\samlib.dll
c:\windows\system32\netutils.dll
c:\windows\system32\mmdevapi.dll
c:\windows\system32\propsys.dll
c:\windows\system32\audioses.dll
c:\windows\system32\d2d1.dll
c:\windows\system32\msimg32.dll
c:\windows\system32\wininet.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\iertutil.dll
c:\program files\mozilla firefox\softokn3.dll
c:\program files\mozilla firefox\freebl3.dll
c:\windows\system32\sspicli.dll
c:\progra~1\mozill~1\nssckbi.dll
c:\windows\system32\rasapi32.dll
c:\windows\system32\rasman.dll
c:\windows\system32\rtutils.dll
c:\windows\system32\sensapi.dll
c:\windows\system32\rasadhlp.dll
c:\windows\system32\fwpuclnt.dll
c:\windows\system32\explorerframe.dll
c:\windows\system32\duser.dll
c:\windows\system32\dui70.dll
c:\windows\system32\actxprxy.dll
c:\program files\adobe\acrobat reader dc\reader\acrord32.exe
c:\program files\mozilla firefox\mozavutil.dll
c:\program files\mozilla firefox\mozavcodec.dll
c:\windows\system32\mfplat.dll
c:\windows\system32\mf.dll
c:\windows\system32\atl.dll
c:\windows\system32\ksuser.dll
c:\windows\system32\dxva2.dll
c:\windows\system32\evr.dll
c:\windows\system32\powrprof.dll
c:\windows\system32\msmpeg2adec.dll
c:\windows\system32\slc.dll
c:\windows\system32\msmpeg2vdec.dll
c:\windows\system32\sqmapi.dll
c:\windows\system32\bcrypt.dll

PID
3448
CMD
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2324.0.199028254\1714104264" -parentBuildID 20190717172542 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 2324 "\\.\pipe\gecko-crash-server-pipe.2324" 1144 gpu
Path
C:\Program Files\Mozilla Firefox\firefox.exe
Indicators
No indicators
Parent process
firefox.exe
User
admin
Integrity Level
MEDIUM
Version:
Company
Mozilla Corporation
Description
Firefox
Version
68.0.1
Modules
Image
c:\program files\mozilla firefox\firefox.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\mozilla firefox\mozglue.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\version.dll
c:\program files\mozilla firefox\msvcp140.dll
c:\program files\mozilla firefox\vcruntime140.dll
c:\program files\mozilla firefox\api-ms-win-crt-runtime-l1-1-0.dll
c:\program files\mozilla firefox\ucrtbase.dll
c:\program files\mozilla firefox\api-ms-win-core-localization-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-processthreads-l1-1-1.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-timezone-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l2-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-synch-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-string-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-heap-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-stdio-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-convert-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-locale-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-math-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-time-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-filesystem-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-environment-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-utility-l1-1-0.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\mozilla firefox\api-ms-win-crt-multibyte-l1-1-0.dll
c:\program files\mozilla firefox\nss3.dll
c:\windows\system32\winmm.dll
c:\windows\system32\wsock32.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\program files\mozilla firefox\lgpllibs.dll
c:\program files\mozilla firefox\xul.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\avrt.dll
c:\windows\system32\ole32.dll
c:\windows\system32\d3d11.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\credui.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\wtsapi32.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\mfplat.dll
c:\windows\system32\mf.dll
c:\windows\system32\atl.dll
c:\windows\system32\ksuser.dll
c:\windows\system32\dxva2.dll
c:\windows\system32\evr.dll
c:\windows\system32\powrprof.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\wship6.dll
c:\windows\system32\wshqos.dll

PID
2380
CMD
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2324.3.332864635\1456013064" -childID 1 -isForBrowser -prefsHandle 1588 -prefMapHandle 1684 -prefsLen 1 -prefMapSize 191824 -parentBuildID 20190717172542 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 2324 "\\.\pipe\gecko-crash-server-pipe.2324" 1704 tab
Path
C:\Program Files\Mozilla Firefox\firefox.exe
Indicators
Parent process
firefox.exe
User
admin
Integrity Level
LOW
Version:
Company
Mozilla Corporation
Description
Firefox
Version
68.0.1
Modules
Image
c:\program files\mozilla firefox\firefox.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\mozilla firefox\mozglue.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\version.dll
c:\program files\mozilla firefox\msvcp140.dll
c:\program files\mozilla firefox\vcruntime140.dll
c:\program files\mozilla firefox\api-ms-win-crt-runtime-l1-1-0.dll
c:\program files\mozilla firefox\ucrtbase.dll
c:\program files\mozilla firefox\api-ms-win-core-localization-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-processthreads-l1-1-1.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-timezone-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l2-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-synch-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-string-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-heap-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-stdio-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-convert-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-locale-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-math-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-time-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-filesystem-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-environment-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-utility-l1-1-0.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\mozilla firefox\api-ms-win-crt-multibyte-l1-1-0.dll
c:\program files\mozilla firefox\nss3.dll
c:\windows\system32\winmm.dll
c:\windows\system32\wsock32.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\program files\mozilla firefox\lgpllibs.dll
c:\program files\mozilla firefox\xul.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\avrt.dll
c:\windows\system32\ole32.dll
c:\windows\system32\d3d11.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\credui.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\wtsapi32.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\napinsp.dll
c:\windows\system32\pnrpnsp.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\winrnr.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\wship6.dll
c:\windows\system32\wshqos.dll
c:\windows\system32\mscms.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\mmdevapi.dll
c:\windows\system32\propsys.dll
c:\windows\system32\audioses.dll
c:\windows\system32\wpc.dll
c:\windows\system32\wevtapi.dll
c:\windows\system32\samcli.dll
c:\windows\system32\samlib.dll
c:\windows\system32\netutils.dll
c:\program files\mozilla firefox\softokn3.dll
c:\program files\mozilla firefox\freebl3.dll

PID
2828
CMD
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2324.13.1702429477\2105823877" -childID 2 -isForBrowser -prefsHandle 2832 -prefMapHandle 2836 -prefsLen 5996 -prefMapSize 191824 -parentBuildID 20190717172542 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 2324 "\\.\pipe\gecko-crash-server-pipe.2324" 2848 tab
Path
C:\Program Files\Mozilla Firefox\firefox.exe
Indicators
Parent process
firefox.exe
User
admin
Integrity Level
LOW
Version:
Company
Mozilla Corporation
Description
Firefox
Version
68.0.1
Modules
Image
c:\program files\mozilla firefox\firefox.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\mozilla firefox\mozglue.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\version.dll
c:\program files\mozilla firefox\msvcp140.dll
c:\program files\mozilla firefox\vcruntime140.dll
c:\program files\mozilla firefox\api-ms-win-crt-runtime-l1-1-0.dll
c:\program files\mozilla firefox\ucrtbase.dll
c:\program files\mozilla firefox\api-ms-win-core-localization-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-processthreads-l1-1-1.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-timezone-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l2-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-synch-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-string-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-heap-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-stdio-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-convert-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-locale-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-math-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-time-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-filesystem-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-environment-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-utility-l1-1-0.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\mozilla firefox\api-ms-win-crt-multibyte-l1-1-0.dll
c:\program files\mozilla firefox\nss3.dll
c:\windows\system32\winmm.dll
c:\windows\system32\wsock32.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\program files\mozilla firefox\lgpllibs.dll
c:\program files\mozilla firefox\xul.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\avrt.dll
c:\windows\system32\ole32.dll
c:\windows\system32\d3d11.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\credui.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\devobj.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\wtsapi32.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\napinsp.dll
c:\windows\system32\pnrpnsp.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\winrnr.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\wship6.dll
c:\windows\system32\wshqos.dll
c:\windows\system32\mscms.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\mmdevapi.dll
c:\windows\system32\propsys.dll
c:\windows\system32\audioses.dll
c:\program files\mozilla firefox\softokn3.dll
c:\program files\mozilla firefox\freebl3.dll

PID
2180
CMD
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2324.20.287306769\1079504157" -childID 3 -isForBrowser -prefsHandle 3776 -prefMapHandle 3780 -prefsLen 7129 -prefMapSize 191824 -parentBuildID 20190717172542 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 2324 "\\.\pipe\gecko-crash-server-pipe.2324" 3792 tab
Path
C:\Program Files\Mozilla Firefox\firefox.exe
Indicators
Parent process
firefox.exe
User
admin
Integrity Level
LOW
Version:
Company
Mozilla Corporation
Description
Firefox
Version
68.0.1
Modules
Image
c:\program files\mozilla firefox\firefox.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\mozilla firefox\mozglue.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\version.dll
c:\program files\mozilla firefox\msvcp140.dll
c:\program files\mozilla firefox\vcruntime140.dll
c:\program files\mozilla firefox\api-ms-win-crt-runtime-l1-1-0.dll
c:\program files\mozilla firefox\ucrtbase.dll
c:\program files\mozilla firefox\api-ms-win-core-localization-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-processthreads-l1-1-1.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-timezone-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l2-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-synch-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-string-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-heap-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-stdio-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-convert-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-locale-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-math-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-time-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-filesystem-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-environment-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-utility-l1-1-0.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\mozilla firefox\api-ms-win-crt-multibyte-l1-1-0.dll
c:\program files\mozilla firefox\nss3.dll
c:\windows\system32\winmm.dll
c:\windows\system32\wsock32.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\program files\mozilla firefox\lgpllibs.dll
c:\program files\mozilla firefox\xul.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\avrt.dll
c:\windows\system32\ole32.dll
c:\windows\system32\d3d11.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\credui.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\wtsapi32.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\napinsp.dll
c:\windows\system32\pnrpnsp.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\winrnr.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\wship6.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\wshqos.dll
c:\windows\system32\mscms.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\mmdevapi.dll
c:\windows\system32\propsys.dll
c:\windows\system32\audioses.dll

Registry activity

Total events
119
Read events
114
Write events
5
Delete events
0

Modification events

PID
Process
Operation
Key
Name
Value
3424
firefox.exe
write
HKEY_CURRENT_USER\Software\Mozilla\Firefox\Launcher
C:\Program Files\Mozilla Firefox\firefox.exe|Launcher
758F3E3601000000
2324
firefox.exe
write
HKEY_CURRENT_USER\Software\Mozilla\Firefox\Launcher
C:\Program Files\Mozilla Firefox\firefox.exe|Browser
DB23413601000000
2324
firefox.exe
write
HKEY_CURRENT_USER\Software\Mozilla\Firefox\Launcher
C:\Program Files\Mozilla Firefox\firefox.exe|Telemetry
1
2324
firefox.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings
ProxyEnable
0
2324
firefox.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections
SavedLegacySettings
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

Files activity

Executable files
0
Suspicious files
111
Text files
34
Unknown types
47

Dropped files

PID
Process
Filename
Type
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\crashes\store.json.mozlz4.tmp
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\D84E6494BFAD1EEEA702F9B948396532C96F3A32
der
MD5: 081e61f6ed583947a69d01dca549c8e1
SHA256: 8138cbf7b1e4c5cb5e09ca91f236097d44192bb201be68755a0ba2966e676214
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\2918063365piupsah.sqlite-shm
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.sqlite
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.sqlite-wal
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.sqlite-shm
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionstore-backups\recovery.jsonlz4
jsonlz4
MD5: b1597251455b97735c4c89391e9ec3dd
SHA256: b29c4af7dcc800068415fca80efd804e76d06f4fd2486c1cf5306af0613e81e2
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionstore-backups\recovery.baklz4
jsonlz4
MD5: ed55380de0db66826a254d627b45c370
SHA256: 3917fc52164b97db24855434737cd4254270fd79f341ddfc086f3eda04357e43
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionstore-backups\recovery.jsonlz4.tmp
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\broadcast-listeners.json
text
MD5: 87a46c8b2cb02a1a1b78bef6448f3f5e
SHA256: d9f12cc020d1ba8a754a64daf0baa55066b6f711967c32ff42b665958cc7279f
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\broadcast-listeners.json.tmp
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: ccc66c682fe5ec647f18c44100b958c0
SHA256: 6bdc3464a185d7bd28bcbe21c1e125515c47e55c1c1f22ad3aa0dce1e5f14415
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs-1.js
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: 64e19f62acdaab5c8efa4db94614a13c
SHA256: 02d8d57937e03ddaa99ec1780804b95364c3736d2dbb83f5e27058301eca84e2
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\28CD555C8F67F41397D93F6119AF6A2902BC6057
binary
MD5: 06e131412d62de2d2df16d63676162f6
SHA256: 9c53625ea6567279d92a035cafd9c8cec2611a22ce839cbd0ebb6d2a18e7a6b3
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\F8761FB1B9A43DD547C8BACF6FAA5C82EFED2584
cer
MD5: 5f577f6ed3568e33d2b5d21dec84e3aa
SHA256: 44fa70c532dc770aab42c4b64725d165c4b9ad002b7b22302521873c46af00b7
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\revocations.txt
text
MD5: cf59fbba88594e980d2efa14bdabfc40
SHA256: 5016ca6475337fe001866af2f1ad61fdd5bcf1374e8e27d16041b2a2209910eb
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\revocations-1.txt
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: f3b3bfeecb6504d29c43298c3cbd7b8b
SHA256: 298d37119cbab987fe30dddcdee955f867966503dd46d8ef1f9fc2fe1737b4f7
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\B0EE9FB06231955AF31564FDBCE69B18C9A0910D
cer
MD5: 8ba022b9716e23b55f075902dfcc97bf
SHA256: 9a2666e80d425b0b0158bb2e1bc48eb589dd220f2221f7311571df388cd06f8c
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\A79ABE54000ADDC6EDAAB0417341A46E56F84C8A
binary
MD5: 898340e84a49fce8c6259fa8829d8283
SHA256: e35002b0ec574ee669ed8cf7fcd69c758b89643ea96e98b956fa7b329aef60cc
2324
firefox.exe
C:\Users\admin\AppData\Local\Temp\mz_etilqs_YXiC8TA2CjzHgAC
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\extensions.json
text
MD5: 9cf5e9e40b5f764838f42c8f2721957f
SHA256: ad9889206f043a9d31af59d6db2a74d9680930c009a560e8cd158bafa271af8f
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\extensions.json.tmp
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: 357f1647c4f42a42a99b056d9f2c54fa
SHA256: fa08a4babcc01cc9c825144dfe04702cf245b678c9c8c29d4b89feb81d2cdecf
2324
firefox.exe
C:\Users\admin\AppData\Local\Temp\mz_etilqs_kdU7gEJPegyJejZ
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: 1e2eb1539127ff2709259a7cc9d14604
SHA256: d8f17c5ee57ddddae291e4562f58270e992a489ab155a57ebb1fedd54beb7612
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\F8761FB1B9A43DD547C8BACF6FAA5C82EFED2584
cer
MD5: 0ac209c5a58fa38b4d5810fa462d74d3
SHA256: 4a407d2c17d0019eda79deed0fba7652659939061c104c21026a1abfc732c2c8
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\6CA02F12E9B9A902AB1874867F8264943AFBDD17
binary
MD5: 6e1ab4ca76a91590f051e6d9c65761c2
SHA256: e68ffd27d93e4e824f1b40e0541eb882282e5c817244f72e4dd7f42d8ae3b78f
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: b73bbfb28df3443a7b1b81c2cf6ccde7
SHA256: 3bce191f62504349d10b4276d2cc42b04ee8dee75a3fffc40d727d2058fc584d
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\0F61B6E02120C859FA74375B4828943F8FACCE11
binary
MD5: 0e13f31a91e218c93f1a61b395248f6f
SHA256: 0b70fa509db439050a082adad51f3bbf5728f1d0273bbcf3cef40399084e4ea0
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.sqlite-shm
binary
MD5: 4a211895b3331367ad89771a07e9f851
SHA256: 469cd4ab238d827808c2ecafa7da14980657e81789ae4c8efa62d1ccc5c144dd
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\6D363E0249886424034F1BE59FAED037BB9F8F33
binary
MD5: 4ef4af56ace59091874be6c332a8269d
SHA256: cef4e8b9ebab2bf57fc27219a1bf4b96f3b4f6ce8154cfb60dd545d802cf21dd
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\0D38CE1A41B5CE411D7CE753FD031291BC61424B
der
MD5: b8693589eb9890c54a933612999d04a2
SHA256: 1a04f61e0bbeca57bfea6fb597b6cffb77450a043e8b6d16ef3ea22f1a9da1f7
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionstore-backups\recovery.jsonlz4
jsonlz4
MD5: ed55380de0db66826a254d627b45c370
SHA256: 3917fc52164b97db24855434737cd4254270fd79f341ddfc086f3eda04357e43
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionstore-backups\recovery.baklz4
jsonlz4
MD5: c0fc0ea8fcc753cc62042548521be228
SHA256: f3f92bc8cd111bb338b403a10d9ee21c0f2e14fc64dc195929337ae3b3cfb1c6
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\default\https+++www.google.com\idb\548905059db.sqlite
sqlite
MD5: 350f6496281a3a512d0885dd0a70c59a
SHA256: f4d14f260704aa391d371112bf0c6e31025c025d12e67d0aa034d11694dfbb11
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\default\https+++www.google.com\idb\548905059db.sqlite-wal
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\default\https+++www.google.com\idb\548905059db.sqlite-shm
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\1657114595AmcateirvtiSty.sqlite
sqlite
MD5: 63c29b8d162bce84c6ad4b8642fdd922
SHA256: 8001419a48e524533ba9c547b8c53d99e195f59effb3ca705b27a8126f1ee47a
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\1657114595AmcateirvtiSty.sqlite-shm
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\1657114595AmcateirvtiSty.sqlite-wal
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: c233dc4bcf4a97c47cc9e165f483c4c6
SHA256: cb9cccd38f6fd2c0b7b592eaa0fd2de5967741d85d74c735eb80bcda3401f8df
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-badbinurl-proto.vlpset
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-backup
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-badbinurl-proto.metadata
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-badbinurl-proto-1.vlpset
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-unwanted-proto.metadata
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-unwanted-proto-1.vlpset
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-unwanted-proto.vlpset
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-phish-proto.metadata
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-malware-proto-1.vlpset
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-phish-proto.vlpset
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-malware-proto.vlpset
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-malware-proto.metadata
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-phish-proto-1.vlpset
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\3561288849sdhlie.sqlite-shm
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\1451318868ntouromlalnodry--epcr.sqlite-shm
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\social-track-digest256.sbstore
binary
MD5: 3e1de68d2cb28095453a94cfd04ed4b9
SHA256: 540e836bcbbeb8f2bb9ce1e0a6f4aa2643bb9dfd63308f9ff196c4add8169790
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-unwanted-proto.metadata
binary
MD5: 3739f10c77bdcc8b95b1addfc3f78eff
SHA256: d15e4d24d520430245f2211deb2810ac817cc9856e7d343970eb64248cde1f36
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\social-track-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-phish-proto.metadata
binary
MD5: 051b61728a77f81025f98cfd5d8d6ff3
SHA256: a36246e99580918b3586b27258fd6f02ec31ba1d53955afc6813b6fca4478476
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-unwanted-proto.vlpset
binary
MD5: 4344fd7a84986289dd9d63e6acd51676
SHA256: 46a8427d12e9c66b56ab0b7f901307acc305f19b7d8585d7e37093bee02d6f44
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-malware-proto.vlpset
binary
MD5: 1dee87c3be7b081a20db19086f83c95c
SHA256: ca1d67ca5a496153f650df7bcd77b9d5e86afc1592940f0a6702ef78be6b191a
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-badbinurl-proto.metadata
binary
MD5: 18fb81a3bd61cc83f9e2b03797364344
SHA256: 5bbf369753b5172d7fb3bd598e8d4a3929ac2edda58954107eb78301231f16b3
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-badbinurl-proto.vlpset
binary
MD5: 82219b3549a148cd3d9cb2aae333dfcc
SHA256: c4385482b64aecf575360270271285c5ef43cd455a5c0b7706bd510345b41d53
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-malware-proto.metadata
binary
MD5: 75d3ef385547117f5ee4e7e4581a9ec7
SHA256: 1889bd5d158d37a6ef08e84d87a55fe0af533e23bfd56a917be1a8efb12e9053
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\content-track-digest256.sbstore
binary
MD5: 9702c14e80e6dd390a450909a81d2c8f
SHA256: 92c485c737f5b403bcea9f344de23fd8a8f3ea3629b244f9499e8dad77f3d6d5
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\content-track-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\analytics-track-digest256.sbstore
binary
MD5: a9204496a61bae22a46f09c64f5ba714
SHA256: 60a19593c0b926880a1778634151338a24fdbf0b741396e279281c3ce4aa1c2d
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\ads-track-digest256.sbstore
binary
MD5: 95dfeb0dda5ded36de9cace11803ca4d
SHA256: 5d55af164cfb767c45ea754a98e696407a2b31f902bb2f4fbb212d566ab4c907
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\analytics-track-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\ads-track-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\startupCache\urlCache.bin
binary
MD5: 28e9e92c2f95bd4dfa35215ecbce227b
SHA256: d574ae2d0002fe482f35f552c7f737dcb5600d0edd3ca1682f9411d1b7622735
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\startupCache\scriptCache-child.bin
binary
MD5: bd09ae31284f5f39c9a1bcc966ee4992
SHA256: 5bff27b82aed4dfefa851620f78a7b6ce97825e32ddaa8e4f96b9bb950801760
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\startupCache\scriptCache-child-new.bin
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\startupCache\urlCache-new.bin
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\7CD86D1CE2EEC4E399AD0850B05B5CB54BC8A14F
compressed
MD5: 2ed73949f4d15ab1fe256a50f6030258
SHA256: 3eec39224d4adfc2bcadc20397c9efc0cd12a951bcc05cc4089d65ff865c9d1f
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\F18D85F52EBBBA2AB081EF739ED0D6E8A76D497C
binary
MD5: dc1bc17090d25951a3cb5cc758c5e3be
SHA256: badb54a14335fdf97c09130c4756de0d82ddf80a81fff6ac1b25fec92777c77a
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: d8d64c62fc5461055401d9f41f2fd6d6
SHA256: 8ed7a4c11af3a7568f4ff9edad1c6feaf82f0427d21d40ab2d12cf81f0e506e5
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\ads-track-digest256.pset
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\ads-track-digest256.sbstore
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\social-track-digest256.pset
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\social-track-digest256.sbstore
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\analytics-track-digest256.pset
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\analytics-track-digest256.sbstore
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\content-track-digest256.pset
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\content-track-digest256.sbstore
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-unwanted-simple.sbstore
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-unwanted-simple.pset
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-trackwhite-simple.sbstore
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-trackwhite-simple.pset
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-track-simple.sbstore
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-track-simple.pset
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-phish-simple.sbstore
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-phish-simple.pset
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-malware-simple.sbstore
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-malware-simple.pset
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-harmful-simple.sbstore
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-harmful-simple.pset
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-block-simple.sbstore
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-block-simple.pset
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\mozstd-trackwhite-digest256.sbstore
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\mozstd-trackwhite-digest256.pset
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\mozplugin-block-digest256.sbstore
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\mozplugin-block-digest256.pset
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-downloadwhite-proto.pset
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-downloadwhite-proto.metadata
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flashsubdoc-digest256.sbstore
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flashsubdoc-digest256.pset
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flashallow-digest256.sbstore
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flashallow-digest256.pset
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flash-digest256.sbstore
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flash-digest256.pset
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\block-flashsubdoc-digest256.sbstore
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\block-flashsubdoc-digest256.pset
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\block-flash-digest256.sbstore
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\block-flash-digest256.pset
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\base-track-digest256.sbstore
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\base-track-digest256.pset
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\allow-flashallow-digest256.sbstore
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\allow-flashallow-digest256.pset
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\43D7F04BCA1DD3542D22EA8D6614FF0184B16211
der
MD5: 145662e53c27bb3ae329bb057f116072
SHA256: 71cc1a6431ab51f8f36e8e184d0fd0007bcfb82cd49c4d634bcd42b91d844478
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: 52b14369fb74abbaa2c500655ba21a9c
SHA256: bc5a6ff984a5f3f226ea70da0d014e0a76bff7f9fb24beb0bfed116a3a10b066
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\default\https+++www.google.com\idb\548905059db.sqlite-wal
binary
MD5: 491cc65c92bd459c5087da2e7e81984e
SHA256: a6667ebef533313e6cc0c8ac1ba5810392d98624a31ce5639aa8b53b59c875f9
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\default\https+++www.google.com\idb\548905059db.sqlite
sqlite
MD5: e44b1e9290a18a3c3e281ab221c08080
SHA256: b71c2fcb3d15168ad18a73caabdfda12b64e7b58346776db998edcdffe5278cd
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\default\https+++www.google.com\idb\548905059db.sqlite-shm
binary
MD5: 0fe066fb9b8a3250f7012fc9af6d92ec
SHA256: f9060d83572dd191465e9b8d021946d630f94ad4c368cbd01665f404843e8b5b
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\007F87BB1513713FC52D3F1D7F2C4AFA613D736A
compressed
MD5: f7b6476bce6e12cacdb7680af809a088
SHA256: 159bb9984f4ab58f48e01ca7d215dc55162c3442b9ff60235bea0f30bd1c2b12
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\default\https+++www.google.com\idb\548905059db.sqlite-journal
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\default\https+++www.google.com\.metadata-v2
binary
MD5: da2b56e362e46a09c3fb9a376ddb5c2f
SHA256: 9df2627479630a9c30fbb0818bde47df72cd0d84c8239f7c622207cf94d3d324
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\default\https+++www.google.com\.metadata-v2-tmp
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\8F43299B2BBC180803AAE2295F17077D2C87FC5E
woff2
MD5: b99bc57fa35074de556cbf65bf261ac4
SHA256: 7284ab138fc124390d691bff2e6f54a1d82bddccb0d9daaac0511db4f1fdba66
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\CB5A4F33D4F9F4B6BA8DD50F46634FF3303B0DF1
woff2
MD5: ab6149c7f0ea367b1a6cabdcd0243105
SHA256: c8cd5f1b03a42c0646b0d4b479427d22e8b2c782329aa8465cb49b493030d02c
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\D34530F6089DD431C3F1D6321781AB95FD7272A4
compressed
MD5: ee2846006ab15bf357c42a6da201bb6a
SHA256: 2df591bb771502262c440f75448dda09301146545b25b658fd54117b9a0feda5
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\6386254D9DC3357A0DCF05D092F58371D09E3E2E
compressed
MD5: 0be300aca40d1abf0173c1ed027f8061
SHA256: 1785b4bbe1443b0cc92b6eadc05d9d901121418f71a2644a84621e6c4a12e6b9
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\8B1DFB2D1BF61CA0366C797106DF4E0A7BB3F11F
image
MD5: aa69fad2f930c863c2b78243cb6c97b1
SHA256: b32d496dc578fae86e932c21d1fbc9f0a34a77843c255f15e496189a8ee99035
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\870C7EAE68F6791C325829056D0D0082BCAFE77E
compressed
MD5: e95e0f548842b5a6c6dca37e28065194
SHA256: fa1c47fabc615641bdb80eb2eb1fb8bc3a0ee7be5a0ac1ab099752257a091d61
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\007F87BB1513713FC52D3F1D7F2C4AFA613D736A
compressed
MD5: d3073965838ae4681f7a11448b956ad1
SHA256: ea3cab5b117a011ece573f78b2a5f0502cd28ed687c0a4528b6cfca431cd8409
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\crashes\store.json.mozlz4
jsonlz4
MD5: a6338865eb252d0ef8fcf11fa9af3f0d
SHA256: 078648c042b9b08483ce246b7f01371072541a2e90d1beb0c8009a6118cbd965
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\A680DD4F846E23136061435579CA7546BB363DCF
image
MD5: b8a6410b2aef3b629beacc12f0c30eca
SHA256: 28e3d1fe227b7a83f9519a26ef1c712b570eed503c5f41923d76cf31b77f62b8
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\0694BE83F564B372FFE4F2F2ACA5F05D7F5D393A
compressed
MD5: 53895faf5df2c64848b44cc1e45a3505
SHA256: d02e40116a24abc08151fdb5771b2afef38975edbb673e25c1a26187eb4bfadb
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\2CAD2F9E7A48DDF335B41417F4AE009E6A9EF10A
compressed
MD5: 9902ec3c23cc76c2c93945f0d9817b1c
SHA256: 875697e285316839dd700956a8e7c6334de69c7c0156f033a1a119d55a13b63a
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\5F94B93884201BE3792F2D34F44FA8CDEBCFDB4A
woff2
MD5: 2b3d200787059414b38f76c430c23209
SHA256: b83acb53fb913b7bdce68f73fcbe6c9fdf69204dbaf07c90ab001bc1c64716aa
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\9BD7A54C3F3D5FFF4DD8D7BBF0202D5C2F884A8E
woff2
MD5: 7abb41ffab2f352c88d22a712b189084
SHA256: 2fcf1ca8ab4f913cdeb3719cc6181fd2df1e6056a282ba73923b154483c30ce6
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\67ED50DD2881C3DFF239A5FA5E9A60F5D5968F5D
image
MD5: b57d2ed4831156a8d7380852da13d9df
SHA256: 741f4389e65ebbad07b64f1f548c9db5da7744e8d570ae066e5eb175b04300f8
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\EBB96950B78F259D492E9F6B37C126C1268E24C5
image
MD5: 272d796a822efe6c976ff53b34f000d1
SHA256: d821dfd763e5d8cb554c451329b6b53592525a04b9684f771ef3e12e03da7e25
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-unwanted-simple.sbstore
binary
MD5: a5695cc64d77967232b0c1344c6e72b3
SHA256: 042a22b8681d754671d2018ba109b31a53ee3728d48c6379043f8e3394e7fbad
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-unwanted-simple.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-trackwhite-simple.sbstore
binary
MD5: 65e942614eee70680464ac4be75019fc
SHA256: 34395085da32c8b4efe9959e3b0d756b43ffed17694d66f39b966cd331bd9a94
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-trackwhite-simple.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-track-simple.sbstore
binary
MD5: 95f28ede25c301301f25fbbd9a3c56ec
SHA256: 87763df78772f7d750b0fa5a31eec23e931fd3bd1cbb33beddfc61889da36478
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-track-simple.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-phish-simple.sbstore
binary
MD5: 3d1ce5e50208f0cb3b979186043a548f
SHA256: 1e13d05d482c3d533dc6035af2b2d6e84749412a5748d1435b70cec8b312340b
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-phish-simple.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-malware-simple.sbstore
binary
MD5: 3675254e341df799d4307c1f59109185
SHA256: 23d108134bed6099793f7dd6b8b6e62081ec3b945efdbc7c5e0e779fd9b82f98
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-malware-simple.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-harmful-simple.sbstore
binary
MD5: 051fb32dece757ba112ac36dc72e3a91
SHA256: 0806d98fb3de55f75d7c0b17e26146567e08c483031526659a4a35d09b97ef19
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-harmful-simple.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-block-simple.sbstore
binary
MD5: e2cf527ca7550b7e7bdf7311e483a2c3
SHA256: f1e07b1d717433f47073dc54a7d98e3e87b3d0fa88e53466f93ea544af885d11
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-block-simple.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\mozstd-trackwhite-digest256.sbstore
binary
MD5: 2ad4445da23a8e50d667c09150cf1876
SHA256: c1550f9dc8f675c7ff2c896ee91c839e4e2b243e759d71c128521c17f53e91b1
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\mozstd-trackwhite-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\mozplugin-block-digest256.sbstore
binary
MD5: d6acf2573e12afdd7939568804d3fcc1
SHA256: 5525cbf8f8dc41d19ac632ed324e55293a510ae0eeba16d0e3f33c707aa58a0c
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\mozplugin-block-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-unwanted-proto.vlpset
binary
MD5: d9e28d043d05a069ac7962f181a05337
SHA256: efbb9ada8e5f662779444e4de88ce944036b7c73d61acfb70239f809dd153aa1
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-unwanted-proto.metadata
binary
MD5: 6ee2fe4d5c3460929a4eec3138d76e8e
SHA256: 1bd0d3301b97fe608243e61c8fa114cc1ae9b69c0622a10cafe5cc1814df3b7a
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-phish-proto.metadata
binary
MD5: f57521d4d31b44fbbb74ba8f2441f52f
SHA256: fd6f2adcf2bce0ac48f15b6a67110e24ec8d24a566422512df2269f2cfac7a0d
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-malware-proto.vlpset
binary
MD5: 8996548565a96f6ba34bc8317fb4f09e
SHA256: f760f51c58a91fcc264b8d27f610372ad510209eae6d0911e0ac236e7405fdc8
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-malware-proto.metadata
binary
MD5: c0ff29e2429d6a67594d829b166b9d0b
SHA256: a8ab69af442ae86af43f2a3bf22b91341377be23874762de01e3e71ef08f0318
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-downloadwhite-proto.pset
binary
MD5: 7655fffe7cfbe1ebf96afea5fe2e1376
SHA256: ff2f663c4e453706b7817109f6a43e8b3389e8cfb1b7d64aace2bfba45f3a359
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-downloadwhite-proto.metadata
binary
MD5: 498dae4e538658a57f464748f2dabfda
SHA256: 8778f52cd9cb4f4787bf7ba18006d212f8c3004652d163f7786556a8eef3a067
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-badbinurl-proto.vlpset
binary
MD5: 93fdf288da71b455cfcb53f9e78add2a
SHA256: 017ed2622f8e5e1d72df4bc872bcf81ccfea9681aede1afdc7f3ddac800b0cf5
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-badbinurl-proto.metadata
binary
MD5: b4d69f529bf6d261075d04c6a5c56158
SHA256: 2794c0426aa721104df6a8615d57a251af30a79865cc69e369ed41cae4ea4ee8
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flashsubdoc-digest256.sbstore
binary
MD5: ba0009932844173bc8f9af264229df24
SHA256: 66d1c00c04d86e313e9a02775cdf906b1be8d4cd6bef423a1b9e21cc4e9f50c1
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flashsubdoc-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flashallow-digest256.sbstore
binary
MD5: 6f85bc4b2ecb49e26b0bd83a821065d0
SHA256: c0b3bc9b3dc507ab654caf72d13c3aefa58c9b13b1e4d14dd8816712d80a7e54
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flashallow-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flash-digest256.sbstore
binary
MD5: c921d8e98fa01b4f303481e112202e92
SHA256: 4ef1038730ec8bc7206713c29a936768831b922c5e6c83355fd62d7401d8c1dc
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flash-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\block-flashsubdoc-digest256.sbstore
binary
MD5: 04824a1f92353f43ebb9e7f74b7476fd
SHA256: b48e58ebab82e4c376f16150a3fff850c1111ff1f5985d68819cfd6f0db159d2
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\block-flashsubdoc-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\block-flash-digest256.sbstore
binary
MD5: 0e8fe60ccd7e9b4c32589a5743a95302
SHA256: 2b124d4026850a3cffd28dbacb58aec28f7dcd4d40bc14e52bbe96d60ce4e749
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\block-flash-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\base-track-digest256.sbstore
binary
MD5: 4a1220fc03e11726f09e9981834345db
SHA256: 6ae7fc0fdbe217104f4034bf6a580a461106b50309abccff6e309124dca5ef39
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\base-track-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\EE197B20CAB0419D1C0BD23EE03034F880EDC296
image
MD5: fae67f109bbb518da3dcc998802ef75d
SHA256: 01f1339cd4efd87d5b43b369a52b8f5892bbcc3f8c27fba1f2d3ca6f5c4b3c0c
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\9A3EF8133F0FA6C3DE8D839A13E7E624CC01FBCC
binary
MD5: 021d32b0cf20c4e21f1856166088d1ee
SHA256: 75f157e87c03b56a647952b5c84d51328a416e4a08ca051b14ef88ba39a56f11
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\5BB0167988BA3A540A9C5D351006058EB8C38A90
binary
MD5: c868a68568cda6d9b3ca729e03f8a011
SHA256: 93c8d84d965ac3e2a2da3fac2dcb30ca4ed4882f525deb44cf0aef7db84b9f41
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\7CD86D1CE2EEC4E399AD0850B05B5CB54BC8A14F
compressed
MD5: 53fdac32c19e3e3e2f556ad15dfec3a5
SHA256: 79d2c0e4931906050ac6edf16acbff78e01e3850fce51fa0d9d156d368a1acfc
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\B638F962E7673FC8E27A84D6A69ED985523CD521
binary
MD5: e67f561f8abdf0f908d6b63483f0a51f
SHA256: 8b1f6fafdd21f57043afc059a553356d34295bfe3d99a14694861ff20a7d127b
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\C9BC1DA0996AFBF388165AEF519C6F6E1B37734F
image
MD5: a767280a61384663df8a5f62dff1bc80
SHA256: 04abc985522e17906ba0fb0ab1d5c375a7c186361c1f5e7c4bc0491619fa7d36
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\FC639466621B859F4D1166300178DBF729EADC82
image
MD5: 1304bd1caf55c54291fabc4e42de3916
SHA256: 0b7ed9b5c25596f7ce1cd057853f7fec72035d06b45b4c99d38a252cbd72edcf
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\710E5236442D917AE9C08077E8B0197246D02A23
image
MD5: e95ca0fc30d062ac01826fbebe7ee281
SHA256: 25bd19af0075b49868e91e174f32a3f9f0654d30f957f53b96e0744a8c6321c8
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\867B08576C2F5981760578F4D163764DD6E38576
image
MD5: f0e9a25b72ed3649947ca2cacd95d862
SHA256: 2d9db4868cd0403146af2507586fe3aebde8926b29caf7d5a35dfc70ff07ab93
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\E0748F077DC3D54BA27545C51DF1D20A7794208D
compressed
MD5: a5953725cb3267ab4fe6c1439b4abe37
SHA256: fcb8bf1b7c3ff72f1ece45984b5a86e3f647d0e767b467bab3d50df69f0b01ac
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\460859FD771433786C1297E17033E509C1460668
der
MD5: 99ca516694343fcea2fe8300fddbe9d5
SHA256: aba522743779bf33a2f9a051a417363e5e051bc281061ec5f2e1ad025d14377d
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\38A5A4261F45C9EDEBA4F97F017711496012A0DF
image
MD5: 7f7864fff562ae2429d72282290bc307
SHA256: 46cc6ecd758b23b2b051416fa1264b8aa468e40d94638c0530d6d2d866f7efde
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\3428896C8A9132471F5989C455A8C13637750A24
image
MD5: 535960cb5830b324a35e356ac6185655
SHA256: 18d3bc391b1ef25e81f8f7c870e2bd45ad7a55285e190b55373a886df4e5c3d4
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\653FF104D4DB0C47BA2DE4C9868FA052D8390469
image
MD5: 1155f5ccff8ac97c4330f8d5cfa90460
SHA256: 04571ba03a4c6017a062835425fc4b962506ab48bde14bba38528f168ec9f7f2
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\8F9CC0E291F9F7081C56045B2159101FA86E6214
image
MD5: 6a6b0217b27fb3b1adbf320c96aeee64
SHA256: e62db41e546a325baa5c609069c7ff38193d6e03335ba62eab10d1e1803cd216
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\B03CA81066ACF762C73AE8E18A34B62B1F83DCF9
image
MD5: 89ddc04cc7f4e28d2b99a2dfb50671a5
SHA256: d6d58ef69eca0d9228749352a1e0310d9f68af129cd1ab805353ede8386a6b44
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\BB0501D782712A377ECA22DAF5EE8C0366F8DA43
image
MD5: 0bdb62a3f09ab0bc9c43dc1d4701791b
SHA256: 3702c1a1e99f1d9e40ccabbd79fff62cd9b8502e3aade74a3efa71ed1d94a01c
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\6549C09B2672897DC1FF5277527C8BDDE150E403
image
MD5: 3647bdfc03f37e7e44b7b2fead271724
SHA256: 3f655432f125e75ab509c7ba90f1bbd818c21eb77784d265b8c843d58710c3b5
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\043D8FB1E2BCE393ACAFC6DCE0D47BF313D07EB7
compressed
MD5: 012e4342cd9e2be5c1fd64866a7e97c3
SHA256: b496fb66514a6aef185420c8a3fabc082419839a1955fcd1ed22f931bc6942ae
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\DFD17B9B009314BA8F54F8642329A9534E31935D
compressed
MD5: 33f504d5403badcd193eaeef294d8bdd
SHA256: 7f288f4ed3a77153d55b2632059f9358bd0c1fab50d7ccfb990e341dcdc20a4e
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\998242CCA474D0EF54DA04C79E23B41F66A01E79
compressed
MD5: 2cdd90563c7302b5efcca1e1e566c228
SHA256: a0afb0fa62cd6db4b1f44503251354593a6cf0a3517b6677d84bbb5f10b965e0
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\5BDC122864CAF64937BE2E37699DC2BBACCA0EA4
compressed
MD5: 287069bc4ff8c61b76198dd03ffd87d8
SHA256: 383f83215b2b7b5171c9941ba5a3a7d7a85bf805a5f4c6442742dfcd91a2b2cb
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\CD8906554890224621A043AD63D770CA000B44C7
compressed
MD5: e3f1cd3b470a58ecc40252594e17c48c
SHA256: 080bbb5260a333fd1d1521c8cf24d3ee41bf82f5b37f5d8b17f491f6637f8198
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\7C1077A8430CB5CA0F281706B0EFB9CF9A66B817
compressed
MD5: 6179746c73a5d3f4f6ea31fea0f00449
SHA256: be9d1c16cb86e91d0542a4976b57c6d7bc57e8a26b2a235ed5adb7ca9a0ded4c
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\FC47C0656AC8C2A69313FE6B3F6D54977D8D8F58
compressed
MD5: fec3539e5d7fa959d4f1215f3f77b51d
SHA256: bacde2f103c0c67ba1f98c701e320abd3efdaf2a59f991e64fcb66ec6a4f3cc1
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\5E18B3C54E81327A70796515B61243E98D91207A
compressed
MD5: e567270fe76558be2e58cfeb33c3f6ff
SHA256: e7aac20d3139a7875155f6d3963972884826160cef24deb5a711aa7909647444
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\50ECB42E777F39BF24FFDA07BF3EEE51D2E029FD
compressed
MD5: ca6e1a2ce2ea81de57f96152c9a40081
SHA256: 496456434f71b794aabf5a2e9c68b8be57a6c4b2a7d0182aab2949c0d3bdb3f4
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\A2D6973AD79F4D26A3842DC91C6BB81848CEE4C5
compressed
MD5: 3c7638d257b497bb957253afa724eead
SHA256: 6f969be4b60abc0b56bf51ac12d3c664d007fe4111eb83570ee5dfcf16c63f9a
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\1BC6149174FB792F71417BFFBFF05347DD878117
compressed
MD5: cd4fabcf1b52699c7f3a2af9152d66c3
SHA256: 568dd6c1660384d3f8607a4e70acbe89a64777cec8c8f130db83a61d18738749
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\98A9C76DE1B666DA9DBCAB8907D50DF578CFAC1C
compressed
MD5: efd1b9804c1fa0c534383618085ff96e
SHA256: fb6a48ca1f61b45e92993def2dce55c6264c2c6f7f8044ef1ca1a6e9a6fd356c
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\CA8F21A4CC4B1CB3667736557BD85C000E8411BF
compressed
MD5: 4333c38de629b4cc4b75cdd2ab5c5d88
SHA256: 03bc084fd9f299b545dbafb37c306815a2d87362c1b1463048854a2fd03fe2e1
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\6BC818110019F43914B3A7FE341F950756F6FCA9
compressed
MD5: 35e12861aa323362511560ed5a2c8e2b
SHA256: dc6c24ea234517b6a5ab29eba5bd625f9ab75538a174f3a5b568c7a0090a47ef
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\4797742DDDED7A41CE65461FFFEDE50FFA2393D8
compressed
MD5: 495d5aff71dd616c7c74f96ac87fc593
SHA256: 7707725b4293b92c3fa9078dee7f5abc33c32159d370eca98087432ceb563838
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\20415C7414953752C1DC5A708C35B8D7A1DC4F71
compressed
MD5: f92f5aceab0a12a55f9d7f8cc63622f0
SHA256: 2edced647f07ea0fed84ece22142a25267cd41038d9ac12837679126f73d568a
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\C849583B967102FFE27D66F108502F0109CAC313
compressed
MD5: b08f2fd5071d2c5ccc01b8d0132e8ce5
SHA256: f6ee6696718097e1c63345a6cb8a7cc3674f8cad969cdb04c1faa3322d4dd2bb
2324
firefox.exe
C:\Users\admin\AppData\Local\Temp\mz_etilqs_kIAShFCpJHIzThG
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\60FE854E82FC29C0438A27CD9052E9A69CF28539
ini
MD5: 943ad5706ec1d28f4cf2704f2638f04b
SHA256: 628659f36c7592fe221ad988773f8b350cb60e58064cfdaeb609a29968989bda
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\doomed\69
binary
MD5: e2ad220e176539d8470f5661a7777caa
SHA256: 48f6f4550310d8a7a573960035008a92744fd448be98fc836612c5e9c5e51938
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionstore-backups\recovery.jsonlz4
jsonlz4
MD5: c0fc0ea8fcc753cc62042548521be228
SHA256: f3f92bc8cd111bb338b403a10d9ee21c0f2e14fc64dc195929337ae3b3cfb1c6
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\21D79E98E29A96C955C3BAD72BC4EF92F7CC749C
compressed
MD5: 150b1b4051e30cf9dd699242e040e24c
SHA256: d7bdd4d2b3c88bd86d5e18e3f83394447d09cb9668789ba154832e8a594b633a
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionstore-backups\previous.jsonlz4
jsonlz4
MD5: da5a84a2615e68822fa04e81e66ea403
SHA256: 1c43e3fbd8cf850c863bba57a263da38355b9021b4a9bcc9f1d59ecaf9841ce9
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\37FC8BF6A7B871B47DC38BCB0D077083D0906D7F
compressed
MD5: 1b8d708432f9ca3bd2abae4d8ef093a8
SHA256: 53e34b9d11cdbe62a13dbe44f2aeb206bf4ed51ec81b9bf685c210b4fe024729
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\2769C5736743812F39C6F500236600F2229CC91F
compressed
MD5: dea97a9a2392edf8606138004a8c6aec
SHA256: f2856125c9611e7ce21b1d8a4335993bd9e761e2725beed28e3b405aa7d0c035
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\27017016CFB01030F90E6D22269B87CF9791EDC8
compressed
MD5: 521911d7063a3031c50314dae4d3fe46
SHA256: 9aa66635665d57e9c21dd56d449c2ce36d70cfeef4187df7837f7e45cf11c07d
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\A1A0080A5FC688FBF33BB88885FBF69680AF3AB7
compressed
MD5: 4396d79fb7447bc36503168d96360e8c
SHA256: 1ed8d0b83128468cc810bec60125bd3fc3a936d1aeea721d2ae12e413e14d8de
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\C860ACD7954F7479DA390FF5F410A451CD1D3800
compressed
MD5: 10cddd38e01757b82e455bd6f97054ef
SHA256: 5e3bf13da09f8c6840b22090b3eb02fbb82663154dce7fceba2c9fe85494b390
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\D0EADFB954A08AC34F9F046FBA84E1361AD7C20A
compressed
MD5: a1b81290174ab3386dd10b075aa0bfb4
SHA256: 1abcb3980c69f64844264f86ae4eb02a76c60a4580a1cc508c703f4c223f0500
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\6B3D7B76D8A3047634F8D875AA5EAD4CC5F9DD44
compressed
MD5: 8963182f20ded253c5ef5ea06ab538b4
SHA256: b6ae5974144152f9488550d146ce5cd0ddd6851ce9fd05ce67b8e1e2ab63b00d
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\01FEEB0B5565A6E0AAE43AE430481AB112760C0C
compressed
MD5: 0b07a223d202918b28f5e26c44c82225
SHA256: 20ebc3fcb149e2a78fbde4ae17b3e4f4f4e5e9f22adff4458da375ff2a114fcf
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\E09E21FD0813F1A782204771F629EE65E8BF2239
compressed
MD5: de9bfbd536f31a5dbb53ab4ad25409c3
SHA256: 43d5916e316946d67ef5789b5d2c67a5b1df2ae254978a67d9b162e78310a5dc
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\1B13B8ECAAAC60237090D0F622610B19B8AC583A
compressed
MD5: d7a58c889d77642264d582aebf54c18d
SHA256: 79ea891034796780255b0713332e4b968435b9a48245a5b905d68898a241ee95
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\BDB7AA9C2E4724CD1A038BA806A106C663F5DF4A
compressed
MD5: 3db0aad94131a370549f10bf5f6e569e
SHA256: 4dc41a05e0c8d51fe2c6af248b430b7e796f8e4824bee0d7ae753f41b0e5085e
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\72D8B58A776CF45A1178088329092D96C3096181
compressed
MD5: ab43b7b300797bd24875a279408703a4
SHA256: b9c3d18f81651fc5568049f143fc030f0df0e6849f8759bc6d39c23babe34d75
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\4F76FA0C8C2BA97459BD558595B83500EA8BD972
compressed
MD5: 9b87544587c4dfdef2c94a6226901048
SHA256: a1b553af2dd4087c4863099efcf23ebd9e30e33f139b5e9fb02be3bf80144449
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\508F57740ED0212C39E510B59B159224E246C2D7
compressed
MD5: 171bea17854b57d1d328b6f74e33612d
SHA256: a21841debe1eee0578069ea7a34f38903330245215d88ee0fbccc731ce70ccc9
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\EA8F39B0D8C81C0885E3E2A6D6D400C12B609B40
compressed
MD5: 558e035ebf5354f838c9954859a52405
SHA256: 8ed2d84385f65ae40e13f456eba822ad3b9aca84a6bf858b5aee2287640fd7f3
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\19E3C282F08081BC9F7527D1875B9EC7F032B49E
compressed
MD5: ce15a63e6879ccf6973f8f47ff40d80d
SHA256: 806f8659cce2faf6850cb8318f84c603bcc4d8130568a992184a10bedd9a2f86
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\408CD30182FF8DA65E81C4F9900DE0DDAC39ED92
compressed
MD5: 38ae7f42b5aa4952a047747bc1cf8107
SHA256: f09d45c220964d58251eb8d220a26f7d656b8567025d61be9b3bf7287e5cb68f
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\07807F8FE7ED1218EF96E1E72FEBC01066D83289
compressed
MD5: a3f28441ae6efe28ab0852b51aac1e9c
SHA256: f373fafcef1003d6a9b79a395bb9ca4593a3f46044da149656a2494482b34e27
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\7CD86D1CE2EEC4E399AD0850B05B5CB54BC8A14F
compressed
MD5: ee2056d99debebf3487a36d0c036cba6
SHA256: 822983579f738b388d0a9cecf654073a47cd71945af1cc2ecf8aa5b46f13f801
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\addonStartup.json.lz4
jsonlz4
MD5: 65a8568f72fdf05a592210c52784c82a
SHA256: 353279aec0402d3777cd400ecfa22ece3e3e882cb1e57056965db44bd1306465
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\addonStartup.json.lz4.tmp
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\90707B8049A08401C3B382CA8B29B5A02FB93119
der
MD5: f6536d0c905ca220d892bac37cce8c8e
SHA256: 5839b00404cdb7b986e15c5e0665d70691ca35bf81c0faf35d3e838a32b7ffca
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\086844A3CD05AE1AD7E2C42A177FAABE918AEFCC
binary
MD5: a7524619b9d0cac1211d5d18360bde25
SHA256: 35c8b4c123b23f0e1a44913d1079e4aff22349368dc35accf2f9b23b3d7d0bc9
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\A5D93CC48B83C8124FEB6A2E9448677EACA5BA86
binary
MD5: 37f06e78073a7ccf1d9b8ea2227d0c28
SHA256: 6a3f5ed90cc97a8d5ed58fb1c725cdda3de710c43ef1823337f823cc02bd620f
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\search.json.mozlz4
jsonlz4
MD5: 7a37f637758a18250acbd3124b7bc4dd
SHA256: f74b06d2434bfb262aff330428fc89e3ce143f7d89a6bcdc266bc4d180cf5f6e
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\search.json.mozlz4.tmp
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\doomed\14699
binary
MD5: a57eac8c4e0d59d6d62c92b05e210c46
SHA256: ba0e89eca0b891a962786df3685c27588ad196a7c42c5218c3e2fa6873f31e89
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-block-simple-1.sbstore
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-track-simple-1.sbstore
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-trackwhite-simple-1.sbstore
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-harmful-simple-1.sbstore
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-unwanted-simple-1.sbstore
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-phish-simple-1.sbstore
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-malware-simple-1.sbstore
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\88FC6C6C84A4FB692A0348B817E42B0A22B05C91
der
MD5: aaf9e5543f7e0e482205ffb023994283
SHA256: c745c7f534e5c155fa8e57acc7b7184a333c66423cc8bbe6cf22560474d7701f
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\allow-flashallow-digest256.sbstore
binary
MD5: d886a47c89d9c49c795da345bc236990
SHA256: a03c5e2656d2f292bf5794c8eeb8d223cd6ba4f4bfb2ed1f325460e879d0bcf7
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\allow-flashallow-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: 9bf1e1bd73b71f48ca7781c4ced3066d
SHA256: 5a10c6fd3f27b0f0b939d80f9d63f83140a9cb0c325cfe60d44c1f8a9c2e440a
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\3561288849sdhlie.sqlite-shm
binary
MD5: b7c14ec6110fa820ca6b65f5aec85911
SHA256: fd4c9fda9cd3f9ae7c962b0ddf37232294d55580e1aa165aa06129b8549389eb
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.sqlite-shm
binary
MD5: b7c14ec6110fa820ca6b65f5aec85911
SHA256: fd4c9fda9cd3f9ae7c962b0ddf37232294d55580e1aa165aa06129b8549389eb
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\search.json.mozlz4
jsonlz4
MD5: 6d378e0d40b6eaca22c8bce899a1c5c1
SHA256: ada2467b2477aceff837ac7820c435ad1ebbe844b2da31c7ab9ae8d010c7a639
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionCheckpoints.json.tmp
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionCheckpoints.json
text
MD5: c4ab2ee59ca41b6d6a6ea911f35bdc00
SHA256: 00ad9799527c3fd21f3a85012565eae817490f3e0d417413bf9567bb5909f6a2
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\1451318868ntouromlalnodry--epcr.sqlite-shm
binary
MD5: b7c14ec6110fa820ca6b65f5aec85911
SHA256: fd4c9fda9cd3f9ae7c962b0ddf37232294d55580e1aa165aa06129b8549389eb
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\1657114595AmcateirvtiSty.sqlite-shm
binary
MD5: b7c14ec6110fa820ca6b65f5aec85911
SHA256: fd4c9fda9cd3f9ae7c962b0ddf37232294d55580e1aa165aa06129b8549389eb
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\2918063365piupsah.sqlite-shm
binary
MD5: b7c14ec6110fa820ca6b65f5aec85911
SHA256: fd4c9fda9cd3f9ae7c962b0ddf37232294d55580e1aa165aa06129b8549389eb
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionCheckpoints.json
text
MD5: ea8b62857dfdbd3d0be7d7e4a954ec9a
SHA256: 792955295ae9c382986222c6731c5870bd0e921e7f7e34cc4615f5cd67f225da
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: cd9a63584fa49626ebd52af9ccc2f8d4
SHA256: d599c4baef84cd1b73f71b145d4880dd46999eede4e5b627bfce2c00671bdbbb
2324
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\cookies.sqlite-shm
binary
MD5: b7c14ec6110fa820ca6b65f5aec85911
SHA256: fd4c9fda9cd3f9ae7c962b0ddf37232294d55580e1aa165aa06129b8549389eb
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\startupCache\scriptCache-current.bin
––
MD5:  ––
SHA256:  ––
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\startupCache\urlCache-current.bin
binary
MD5: de9496aca551ade408ef6466a11833a1
SHA256: 8f9c7fdb3e0bc01024e43a8e242468fc4dd4f74c725e32a883571635203dc10a
2324
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\startupCache\scriptCache-child-current.bin
binary
MD5: 5027177f513cdae07db2330e1ded5934
SHA256: 0c53f16051e738287a4612f68e296238087627e594cfd6ddfa1fecc2e998328b

Find more information of the staic content and download it at the full report

Network activity

HTTP(S) requests
62
TCP/UDP connections
42
DNS requests
99
Threats
2

HTTP requests

PID Process Method HTTP Code IP URL CN Type Size Reputation
2324 firefox.exe GET 200 2.16.186.50:80 http://detectportal.firefox.com/success.txt unknown
text
whitelisted
2324 firefox.exe GET 302 194.181.228.50:80 http://pelletproductionpoland.com/ PL
binary
unknown
2324 firefox.exe POST 200 93.184.220.29:80 http://ocsp.digicert.com/ US
binary
der
whitelisted
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/en/home/ PL
html
unknown
2324 firefox.exe POST 200 172.217.21.195:80 http://ocsp.pki.goog/gts1o1 US
binary
der
whitelisted
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-includes/css/dist/block-library/style.min.css?ver=5.1.2 PL
text
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.1 PL
text
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-content/themes/betheme/style.css?ver=17.8.6 PL
text
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-content/themes/betheme/css/base.css?ver=17.8.6 PL
text
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-content/themes/betheme/css/layout.css?ver=17.8.6 PL
text
unknown
2324 firefox.exe GET 200 216.58.208.42:80 http://fonts.googleapis.com/css?family=Lora%3A1%2C300%2C400%2C400italic%2C700%2C700italic&ver=5.1.2 US
text
whitelisted
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.3.1 PL
text
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-content/themes/betheme/css/shortcodes.css?ver=17.8.6 PL
text
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-content/themes/betheme/assets/animations/animations.min.css?ver=17.8.6 PL
text
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-content/themes/betheme/assets/ui/jquery.ui.all.css?ver=17.8.6 PL
text
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-content/themes/betheme/assets/jplayer/css/jplayer.blue.monday.css?ver=17.8.6 PL
text
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-content/themes/betheme/css/responsive.css?ver=17.8.6 PL
text
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-content/plugins/wp-gdpr-compliance/assets/css/front.css?ver=1559805155 PL
text
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-includes/js/jquery/jquery.js?ver=1.12.4 PL
text
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 PL
text
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.3.1 PL
text
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.3.1 PL
text
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-content/plugins/wp-gdpr-compliance/assets/vendor/micromodal/micromodal.min.js?ver=1559805155 PL
text
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-content/plugins/wp-gdpr-compliance/assets/vendor/postscribe/postscribe.min.js?ver=1559805155 PL
text
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-includes/js/wp-emoji-release.min.js?ver=5.1.2 PL
text
unknown
2324 firefox.exe GET 200 216.58.208.42:80 http://fonts.googleapis.com/css?family=Lora:700 US
text
whitelisted
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.1 PL
text
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 PL
text
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4 PL
text
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4 PL
text
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-includes/js/jquery/ui/sortable.min.js?ver=1.11.4 PL
html
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-includes/js/jquery/ui/tabs.min.js?ver=1.11.4 PL
text
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-includes/js/jquery/ui/accordion.min.js?ver=1.11.4 PL
text
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-content/themes/betheme/js/plugins.js?ver=17.8.6 PL
text
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-content/themes/betheme/js/menu.js?ver=17.8.6 PL
text
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-content/themes/betheme/assets/animations/animations.min.js?ver=17.8.6 PL
text
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-content/themes/betheme/assets/jplayer/jplayer.min.js?ver=17.8.6 PL
text
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-content/themes/betheme/js/scripts.js?ver=17.8.6 PL
text
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-includes/js/comment-reply.min.js?ver=5.1.2 PL
text
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-content/plugins/wp-gdpr-compliance/assets/js/front.js?ver=1559805155 PL
text
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-includes/js/wp-embed.min.js?ver=5.1.2 PL
text
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-content/uploads/2018/01/yui.png PL
image
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-content/uploads/2017/12/home_sushi_slider.jpg PL
image
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-content/uploads/2016/01/home_sushi_about2-1.jpg PL
image
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-content/uploads/2018/01/home_sushi_sep2.png PL
image
unknown
2324 firefox.exe POST 200 172.217.21.195:80 http://ocsp.pki.goog/gts1o1 US
binary
der
whitelisted
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-content/uploads/2018/01/ksub-logo-1.png PL
image
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-content/uploads/2018/01/home_sushi_sep3.png PL
image
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-content/uploads/2018/01/biocontrol-logo-1.png PL
image
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletpr.webd.pro/wordpress/wp-content/uploads/2017/12/home_sushi_slider_logo.png PL
image
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletpr.webd.pro/wordpress/wp-content/uploads/revslider/sushi/home_sushi_slider_sep.png PL
image
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletpr.webd.pro/wordpress/wp-content/uploads/2017/12/sushi-1.png PL
image
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletpr.webd.pro/wordpress/wp-content/uploads/2016/01/home_sushi_pattern.jpg PL
image
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-content/themes/betheme/images/box_shadow.png PL
image
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.3 PL
text
unknown
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletproductionpoland.com/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.layeranimation.min.js?version=5.4.3 PL
text
unknown
2324 firefox.exe GET 200 172.217.21.195:80 http://fonts.gstatic.com/s/lora/v14/0QIvMX1D_JOuMwr7Iw.woff2 US
woff2
whitelisted
2324 firefox.exe GET 200 172.217.21.195:80 http://fonts.gstatic.com/s/lora/v14/0QIgMX1D_JOuO7HeNtxumg.woff2 US
woff2
whitelisted
2324 firefox.exe POST 200 172.217.21.195:80 http://ocsp.pki.goog/gts1o1 US
binary
der
whitelisted
2324 firefox.exe GET 200 194.181.228.50:80 http://pelletpr.webd.pro/wordpress/wp-content/uploads/2018/01/Bez-nazwy-4-1.png PL
image
unknown
2324 firefox.exe POST 200 93.184.220.29:80 http://ocsp.digicert.com/ US
binary
der
whitelisted
2324 firefox.exe POST 200 93.184.220.29:80 http://ocsp.digicert.com/ US
binary
der
whitelisted

Download PCAP, analyze network streams, HTTP content and a lot more at the full report

Connections

PID Process IP ASN CN Reputation
2324 firefox.exe 194.181.228.50:80 Naukowa I Akademicka Siec Komputerowa Instytut Badawczy PL unknown
2324 firefox.exe 2.16.186.50:80 Akamai International B.V. –– whitelisted
2324 firefox.exe 52.36.193.139:443 Amazon.com, Inc. US unknown
2324 firefox.exe 34.213.11.26:443 Amazon.com, Inc. US malicious
2324 firefox.exe 143.204.53.214:443 US unknown
2324 firefox.exe 34.210.204.38:443 Amazon.com, Inc. US unknown
2324 firefox.exe 93.184.220.29:80 MCI Communications Services, Inc. d/b/a Verizon Business US whitelisted
2324 firefox.exe 172.217.21.234:443 Google Inc. US whitelisted
2324 firefox.exe 172.217.21.195:80 Google Inc. US whitelisted
2324 firefox.exe 216.58.208.42:80 Google Inc. US whitelisted
2324 firefox.exe 172.217.18.4:443 Google Inc. US whitelisted
2324 firefox.exe 172.217.18.163:443 Google Inc. US whitelisted
–– –– 172.217.21.195:443 Google Inc. US whitelisted
2324 firefox.exe 172.217.21.195:443 Google Inc. US whitelisted
2324 firefox.exe 35.165.44.141:443 Amazon.com, Inc. US unknown
–– –– 93.184.220.29:80 MCI Communications Services, Inc. d/b/a Verizon Business US whitelisted
2324 firefox.exe 143.204.47.41:443 US unknown
2324 firefox.exe 52.35.244.72:443 Amazon.com, Inc. US malicious
2324 firefox.exe 143.204.47.110:443 US unknown
2324 firefox.exe 143.204.47.49:443 US unknown
2324 firefox.exe 143.204.47.57:443 US unknown

DNS requests

Domain IP Reputation
pelletproductionpoland.com 194.181.228.50
unknown
detectportal.firefox.com 2.16.186.50
2.16.186.112
whitelisted
a1089.dscd.akamai.net No response whitelisted
search.services.mozilla.com 52.36.193.139
52.26.8.178
34.210.145.79
whitelisted
search.r53-2.services.mozilla.com No response whitelisted
autopush.prod.mozaws.net No response whitelisted
push.services.mozilla.com 34.213.11.26
whitelisted
d228z91au11ukj.cloudfront.net 143.204.53.214
unknown
snippets.cdn.mozilla.net 143.204.53.214
whitelisted
tiles.services.mozilla.com 34.210.204.38
54.149.28.165
52.89.51.22
54.68.132.173
52.43.93.252
54.149.29.182
54.186.225.209
54.69.118.22
whitelisted
tiles.r53-2.services.mozilla.com No response whitelisted
ocsp.digicert.com 93.184.220.29
whitelisted
cs9.wac.phicdn.net No response whitelisted
safebrowsing.googleapis.com 172.217.21.234
whitelisted
ocsp.pki.goog 172.217.21.195
whitelisted
pki-goog.l.google.com 172.217.21.195
whitelisted
fonts.googleapis.com 216.58.208.42
whitelisted
googleadapis.l.google.com 216.58.208.42
whitelisted
pelletpr.webd.pro 194.181.228.50
unknown
www.google.com 172.217.18.4
whitelisted
fonts.gstatic.com 172.217.21.195
whitelisted
serwer1796062.home.pl No response unknown
www.gstatic.com 172.217.18.163
whitelisted
gstaticadssl.l.google.com 172.217.21.195
whitelisted
www.youtube.com 172.217.22.46
172.217.22.78
172.217.16.206
172.217.23.174
216.58.205.238
172.217.22.14
172.217.18.14
172.217.18.174
172.217.23.142
216.58.206.14
216.58.207.78
216.58.208.46
172.217.16.142
whitelisted
www.mozilla.org.cdn.cloudflare.net 104.16.40.2
104.16.41.2
whitelisted
www.mozilla.org 104.16.41.2
104.16.40.2
whitelisted
star-mini.c10r.facebook.com 31.13.92.36
whitelisted
www.facebook.com 31.13.92.36
whitelisted
youtube-ui.l.google.com No response whitelisted
www.ebay.de 72.247.226.12
whitelisted
www.wikipedia.org 91.198.174.192
whitelisted
www.reddit.com 151.101.1.140
151.101.65.140
151.101.129.140
151.101.193.140
whitelisted
dyna.wikimedia.org No response whitelisted
e11847.g.akamaiedge.net 72.247.226.12
whitelisted
reddit.map.fastly.net No response whitelisted
s.w.org No response whitelisted
support.mozilla.org 34.209.95.119
34.213.134.214
whitelisted
www.themesfreedownload.net 104.27.181.4
104.27.180.4
unknown
www.firefox.com 63.245.208.212
unknown
prod-tp.sumo.mozit.cloud No response malicious
firefox.com 63.245.208.212
unknown
pxldesign.pl 185.253.212.22
unknown
shavar.services.mozilla.com 35.165.44.141
54.148.248.23
52.88.59.72
54.149.19.17
52.33.61.229
35.164.3.68
whitelisted
shavar.prod.mozaws.net No response whitelisted
tracking-protection.cdn.mozilla.net 143.204.47.41
143.204.47.105
143.204.47.71
143.204.47.93
whitelisted
d1zkz3k4cclnv6.cloudfront.net 143.204.47.93
143.204.47.71
143.204.47.105
143.204.47.41
whitelisted
firefox.settings.services.mozilla.com 143.204.47.110
143.204.47.33
143.204.47.83
143.204.47.99
whitelisted
d2k03kvdk5cku0.cloudfront.net 143.204.47.99
143.204.47.83
143.204.47.33
143.204.47.110
whitelisted
content-signature-2.cdn.mozilla.net 143.204.47.49
143.204.47.119
143.204.47.87
143.204.47.29
whitelisted
d2nxq2uap88usk.cloudfront.net No response whitelisted
aus5.mozilla.org 143.204.47.57
143.204.47.113
143.204.47.21
143.204.47.5
whitelisted
balrog-cloudfront.prod.mozaws.net 143.204.47.5
143.204.47.21
143.204.47.113
143.204.47.57
whitelisted

Threats

PID Process Class Message
–– –– Potentially Bad Traffic ET INFO Observed DNS Query to .cloud TLD
–– –– Potentially Bad Traffic ET INFO Observed DNS Query to .cloud TLD

Debug output strings

No debug info.