General Info

File name

Firefox Installer.de.exe

Full analysis
https://app.any.run/tasks/99b3fcfa-956e-4239-a5b5-b01fe9eea22a
Verdict
Malicious activity
Analysis date
2/10/2019, 15:12:09
OS:
Windows 7 Professional Service Pack 1 (build: 7601, 32 bit)
Indicators:

MIME:
application/x-dosexec
File info:
PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed
MD5

bbdef37d2b1e8acbc106084850e7499e

SHA1

0e81caf6b53e719908d48b62ccd468d7e855705d

SHA256

71b6b29e3edba20ab333ba77f2846890674c7a1b1705c3384a2936fbe6cce8cc

SSDEEP

6144:4mvr9RLcN0BvxoLjGRU4UUU3UUUD9rOAe1i/M1v/oyE6hl+S9/Re56RKVKdV17wl:4mr9RUsJGjqU4UUU3UUUZa7IMdTJ/Rcb

ANY.RUN is an interactive service which provides full access to the guest system. Information in this report could be distored by user actions and is provided for user acknowledgement as it is. ANY.RUN does not guarantee maliciousness or safety of the content.

Software environment set and analysis options

Launch configuration

Task duration
60 seconds
Additional time used
none
Fakenet option
off
Heavy Evaision option
off
MITM proxy
off
Route via Tor
off
Network geolocation
off
Privacy
Public submission
Autoconfirmation of UAC
on

Software preset

  • Internet Explorer 8.0.7601.17514
  • Adobe Acrobat Reader DC MUI (15.023.20070)
  • Adobe Flash Player 26 ActiveX (26.0.0.131)
  • Adobe Flash Player 26 NPAPI (26.0.0.131)
  • Adobe Flash Player 26 PPAPI (26.0.0.131)
  • Adobe Refresh Manager (1.8.0)
  • CCleaner (5.35)
  • FileZilla Client 3.36.0 (3.36.0)
  • Google Chrome (68.0.3440.106)
  • Google Update Helper (1.3.33.17)
  • Java 8 Update 92 (8.0.920.14)
  • Java Auto Updater (2.8.92.14)
  • Microsoft .NET Framework 4.6.1 (4.6.01055)
  • Microsoft Office Access MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Access Setup Metadata MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Excel MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office OneNote MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Outlook MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office PowerPoint MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Professional 2010 (14.0.6029.1000)
  • Microsoft Office Proof (English) 2010 (14.0.6029.1000)
  • Microsoft Office Proof (French) 2010 (14.0.6029.1000)
  • Microsoft Office Proof (Spanish) 2010 (14.0.6029.1000)
  • Microsoft Office Proofing (English) 2010 (14.0.6029.1000)
  • Microsoft Office Publisher MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Shared MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Shared Setup Metadata MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Single Image 2010 (14.0.6029.1000)
  • Microsoft Office Word MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (9.0.30729.6161)
  • Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (10.0.40219)
  • Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (12.0.30501.0)
  • Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (12.0.21005)
  • Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (12.0.21005)
  • Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (14.15.26706.0)
  • Microsoft Visual C++ 2017 x86 Additional Runtime - 14.15.26706 (14.15.26706)
  • Microsoft Visual C++ 2017 x86 Minimum Runtime - 14.15.26706 (14.15.26706)
  • Mozilla Firefox 61.0.2 (x86 en-US) (61.0.2)
  • Notepad++ (32-bit x86) (7.5.1)
  • Opera 12.15 (12.15.1748)
  • Skype version 8.29 (8.29)
  • VLC media player (2.2.6)
  • WinRAR 5.60 (32-bit) (5.60.0)

Hotfixes

  • Client LanguagePack Package
  • Client Refresh LanguagePack Package
  • CodecPack Basic Package
  • Foundation Package
  • IE Troubleshooters Package
  • InternetExplorer Optional Package
  • KB2534111
  • KB2999226
  • KB976902
  • LocalPack AU Package
  • LocalPack CA Package
  • LocalPack GB Package
  • LocalPack US Package
  • LocalPack ZA Package
  • ProfessionalEdition
  • UltimateEdition

Behavior activities

MALICIOUS SUSPICIOUS INFO
Loads dropped or rewritten executable
  • firefox.exe (PID: 3436)
  • firefox.exe (PID: 2992)
  • firefox.exe (PID: 3512)
  • firefox.exe (PID: 2408)
  • firefox.exe (PID: 1420)
  • csrss.exe (PID: 400)
  • firefox.exe (PID: 2300)
  • firefox.exe (PID: 2324)
  • firefox.exe (PID: 3280)
  • maintenanceservice_installer.exe (PID: 3040)
  • setup.exe (PID: 3224)
  • setup-stub.exe (PID: 3784)
  • setup-stub.exe (PID: 3904)
Application was dropped or rewritten from another process
  • firefox.exe (PID: 3436)
  • firefox.exe (PID: 2408)
  • nsF5A3.tmp (PID: 2332)
  • firefox.exe (PID: 2324)
  • firefox.exe (PID: 3512)
  • firefox.exe (PID: 1420)
  • firefox.exe (PID: 3280)
  • firefox.exe (PID: 2300)
  • firefox.exe (PID: 2992)
  • maintenanceservice.exe (PID: 2120)
  • setup.exe (PID: 3224)
  • maintenanceservice_installer.exe (PID: 3040)
  • setup-stub.exe (PID: 3904)
  • setup-stub.exe (PID: 3784)
Executable content was dropped or overwritten
  • maintenanceservice_installer.exe (PID: 3040)
  • Firefox Installer.de.exe (PID: 2940)
  • setup-stub.exe (PID: 3904)
  • setup.exe (PID: 3224)
  • download.exe (PID: 3352)
  • setup-stub.exe (PID: 3784)
Application launched itself
  • firefox.exe (PID: 2300)
  • firefox.exe (PID: 2324)
  • setup-stub.exe (PID: 3904)
Creates a software uninstall entry
  • maintenanceservice_installer.exe (PID: 3040)
  • setup.exe (PID: 3224)
Creates files in the program directory
  • firefox.exe (PID: 2300)
  • maintenanceservice.exe (PID: 2120)
  • maintenanceservice_installer.exe (PID: 3040)
  • setup-stub.exe (PID: 3784)
  • setup.exe (PID: 3224)
Creates files in the user directory
  • setup.exe (PID: 3224)
  • firefox.exe (PID: 2300)
Reads CPU info
  • firefox.exe (PID: 2300)
Starts application with an unusual extension
  • setup.exe (PID: 3224)
Creates COM task schedule object
  • setup.exe (PID: 3224)
Modifies the open verb of a shell class
  • setup.exe (PID: 3224)

No info indicators.

Find more information about signature artifacts and mapping to MITRE ATT&CK™ MATRIX at the full report

Static information

TRiD
.exe
|   UPX compressed Win32 Executable (64.2%)
.dll
|   Win32 Dynamic Link Library (generic) (15.6%)
.exe
|   Win32 Executable (generic) (10.6%)
.exe
|   Generic Win/DOS Executable (4.7%)
.exe
|   DOS Executable Generic (4.7%)
EXIF
EXE
MachineType:
Intel 386 or later, and compatibles
TimeStamp:
2018:08:31 00:18:33+02:00
PEType:
PE32
LinkerVersion:
6
CodeSize:
65536
InitializedDataSize:
65536
UninitializedDataSize:
147456
EntryPoint:
0x34310
OSVersion:
4
ImageVersion:
null
SubsystemVersion:
4
Subsystem:
Windows GUI
FileVersionNumber:
18.5.0.0
ProductVersionNumber:
18.5.0.0
FileFlagsMask:
0x003f
FileFlags:
(none)
FileOS:
Windows NT 32-bit
ObjectFileType:
Executable application
FileSubtype:
null
LanguageCode:
English (U.S.)
CharacterSet:
Unicode
CompanyName:
Mozilla
FileDescription:
Firefox
FileVersion:
18.05
InternalName:
7zS.sfx
LegalCopyright:
Mozilla
OriginalFileName:
7zS.sfx.exe
ProductName:
Firefox
ProductVersion:
18.05
Summary
Architecture:
IMAGE_FILE_MACHINE_I386
Subsystem:
IMAGE_SUBSYSTEM_WINDOWS_GUI
Compilation Date:
30-Aug-2018 22:18:33
Detected languages
English - United States
CompanyName:
Mozilla
FileDescription:
Firefox
FileVersion:
18.05
InternalName:
7zS.sfx
LegalCopyright:
Mozilla
OriginalFilename:
7zS.sfx.exe
ProductName:
Firefox
ProductVersion:
18.05
DOS Header
Magic number:
MZ
Bytes on last page of file:
0x0090
Pages in file:
0x0003
Relocations:
0x0000
Size of header:
0x0004
Min extra paragraphs:
0x0000
Max extra paragraphs:
0xFFFF
Initial SS value:
0x0000
Initial SP value:
0x00B8
Checksum:
0x0000
Initial IP value:
0x0000
Initial CS value:
0x0000
Overlay number:
0x0000
OEM identifier:
0x0000
OEM information:
0x0000
Address of NE header:
0x000000F0
PE Headers
Signature:
PE
Machine:
IMAGE_FILE_MACHINE_I386
Number of sections:
3
Time date stamp:
30-Aug-2018 22:18:33
Pointer to Symbol Table:
0x00000000
Number of symbols:
0
Size of Optional Header:
0x00E0
Characteristics
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_RELOCS_STRIPPED
Sections
Name Virtual Address Virtual Size Raw Size Charateristics Entropy
UPX0 0x00001000 0x00024000 0x00000000 IMAGE_SCN_CNT_UNINITIALIZED_DATA,IMAGE_SCN_MEM_EXECUTE,IMAGE_SCN_MEM_READ,IMAGE_SCN_MEM_WRITE 0
UPX1 0x00025000 0x00010000 0x0000F600 IMAGE_SCN_CNT_INITIALIZED_DATA,IMAGE_SCN_MEM_EXECUTE,IMAGE_SCN_MEM_READ,IMAGE_SCN_MEM_WRITE 7.89699
.rsrc 0x00035000 0x00010000 0x0000F200 IMAGE_SCN_CNT_INITIALIZED_DATA,IMAGE_SCN_MEM_READ,IMAGE_SCN_MEM_WRITE 7.39743
Resources
1

2

3

4

5

97

188

207

Imports
    KERNEL32.DLL

    MSVCRT.dll

Exports

    No exports.

Screenshots

Processes

Total processes
51
Monitored processes
17
Malicious processes
13
Suspicious processes
3

Behavior graph

+
drop and start start drop and start drop and start drop and start firefox installer.de.exe setup-stub.exe setup-stub.exe download.exe setup.exe nsf5a3.tmp no specs maintenanceservice_installer.exe maintenanceservice.exe no specs csrss.exe no specs firefox.exe no specs firefox.exe firefox.exe no specs firefox.exe firefox.exe firefox.exe firefox.exe firefox.exe
Specs description
Program did not start
Integrity level elevation
Task сontains an error or was rebooted
Process has crashed
Task contains several apps running
Executable file was dropped
Debug information is available
Process was injected
Network attacks were detected
Application downloaded the executable file
Actions similar to stealing personal data
Behavior similar to exploiting the vulnerability
Inspected object has sucpicious PE structure
File is detected by antivirus software
CPU overrun
RAM overrun
Process starts the services
Process was added to the startup
Behavior similar to spam
Low-level access to the HDD
Probably Tor was used
System was rebooted
Connects to the network
Known threat

Process information

Click at the process to see the details.

PID
400
CMD
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,12288,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
Path
C:\Windows\System32\csrss.exe
Indicators
No indicators
Parent process
––
User
SYSTEM
Integrity Level
SYSTEM
Version:
Company
Microsoft Corporation
Description
Client Server Runtime Process
Version
6.1.7600.16385 (win7_rtm.090713-1255)
Modules
Image
c:\windows\system32\csrss.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\csrsrv.dll
c:\windows\system32\basesrv.dll
c:\windows\system32\winsrv.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sxssrv.dll
c:\windows\system32\sxs.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\cryptbase.dll
c:\program files\firefox nightly\mozglue.dll

PID
2940
CMD
"C:\Users\admin\AppData\Local\Temp\Firefox Installer.de.exe"
Path
C:\Users\admin\AppData\Local\Temp\Firefox Installer.de.exe
Indicators
Parent process
––
User
admin
Integrity Level
MEDIUM
Exit code
0
Version:
Company
Mozilla
Description
Firefox
Version
18.05
Modules
Image
c:\users\admin\appdata\local\temp\firefox installer.de.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\userenv.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\profapi.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\ole32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\apphelp.dll
c:\windows\system32\propsys.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\clbcatq.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\shlwapi.dll
c:\users\admin\appdata\local\temp\7zsc7bf5eb9\setup-stub.exe

PID
3904
CMD
.\setup-stub.exe
Path
C:\Users\admin\AppData\Local\Temp\7zSC7BF5EB9\setup-stub.exe
Indicators
Parent process
Firefox Installer.de.exe
User
admin
Integrity Level
MEDIUM
Exit code
0
Version:
Company
mozilla.org
Description
Firefox Nightly Installer
Version
67.0a1
Modules
Image
c:\users\admin\appdata\local\temp\7zsc7bf5eb9\setup-stub.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\user32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\usp10.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\apphelp.dll
c:\windows\system32\propsys.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\version.dll
c:\windows\system32\shfolder.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\shdocvw.dll
c:\users\admin\appdata\local\temp\nso937d.tmp\system.dll
c:\users\admin\appdata\local\temp\nso937d.tmp\uac.dll
c:\windows\system32\secur32.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\mpr.dll
c:\windows\system32\sfc.dll
c:\windows\system32\sfc_os.dll
c:\windows\system32\devrtl.dll
c:\program files\firefox nightly\firefox.exe

PID
3784
CMD
"C:\Users\admin\AppData\Local\Temp\7zSC7BF5EB9\setup-stub.exe" /UAC:5010E /NCRC
Path
C:\Users\admin\AppData\Local\Temp\7zSC7BF5EB9\setup-stub.exe
Indicators
Parent process
setup-stub.exe
User
admin
Integrity Level
HIGH
Exit code
0
Version:
Company
mozilla.org
Description
Firefox Nightly Installer
Version
67.0a1
Modules
Image
c:\users\admin\appdata\local\temp\7zsc7bf5eb9\setup-stub.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\apphelp.dll
c:\windows\system32\propsys.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\version.dll
c:\windows\system32\shfolder.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\shdocvw.dll
c:\users\admin\appdata\local\temp\nsb9988.tmp\system.dll
c:\users\admin\appdata\local\temp\nsb9988.tmp\uac.dll
c:\windows\system32\secur32.dll
c:\windows\system32\sspicli.dll
c:\users\admin\appdata\local\temp\nsb9988.tmp\userinfo.dll
c:\windows\system32\riched20.dll
c:\users\admin\appdata\local\temp\nsb9988.tmp\nsdialogs.dll
c:\windows\system32\comdlg32.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\wininet.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\asycfilt.dll
c:\windows\system32\cryptsp.dll
c:\windows\system32\rsaenh.dll
c:\windows\system32\explorerframe.dll
c:\windows\system32\duser.dll
c:\windows\system32\dui70.dll
c:\users\admin\appdata\local\temp\nsb9988.tmp\inetbgdl.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\normaliz.dll
c:\windows\system32\rasapi32.dll
c:\windows\system32\rasman.dll
c:\windows\system32\rtutils.dll
c:\windows\system32\sensapi.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\schannel.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\rasadhlp.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\wship6.dll
c:\windows\system32\fwpuclnt.dll
c:\windows\system32\credssp.dll
c:\windows\system32\ncrypt.dll
c:\windows\system32\bcrypt.dll
c:\windows\system32\bcryptprimitives.dll
c:\windows\system32\gpapi.dll
c:\users\admin\appdata\local\temp\nsb9988.tmp\certcheck.dll
c:\windows\system32\imagehlp.dll
c:\users\admin\appdata\local\temp\nsb9988.tmp\download.exe
c:\windows\system32\rpcrtremote.dll
c:\windows\system32\mssprxy.dll

PID
3352
CMD
"C:\Users\admin\AppData\Local\Temp\nsb9988.tmp\download.exe" /LaunchedFromStub /INI=C:\Users\admin\AppData\Local\Temp\nsb9988.tmp\config.ini
Path
C:\Users\admin\AppData\Local\Temp\nsb9988.tmp\download.exe
Indicators
Parent process
setup-stub.exe
User
admin
Integrity Level
HIGH
Exit code
0
Version:
Company
Mozilla
Description
Firefox
Version
18.05
Modules
Image
c:\users\admin\appdata\local\temp\nsb9988.tmp\download.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\userenv.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\profapi.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\apphelp.dll
c:\windows\system32\propsys.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\clbcatq.dll
c:\users\admin\appdata\local\temp\7zs81d83ae9\setup.exe

PID
3224
CMD
.\setup.exe /LaunchedFromStub /INI=C:\Users\admin\AppData\Local\Temp\nsb9988.tmp\config.ini
Path
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\setup.exe
Indicators
Parent process
download.exe
User
admin
Integrity Level
HIGH
Exit code
0
Version:
Company
mozilla.org
Description
Firefox Nightly Installer
Version
67.0a1
Modules
Image
c:\users\admin\appdata\local\temp\7zs81d83ae9\setup.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\apphelp.dll
c:\windows\apppatch\acgenral.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\winmm.dll
c:\windows\system32\samcli.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\msacm32.dll
c:\windows\system32\version.dll
c:\windows\system32\sfc.dll
c:\windows\system32\sfc_os.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wininet.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\mpr.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\propsys.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\shfolder.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\shdocvw.dll
c:\users\admin\appdata\local\temp\nsiebed.tmp\system.dll
c:\users\admin\appdata\local\temp\nsiebed.tmp\uac.dll
c:\windows\system32\secur32.dll
c:\users\admin\appdata\local\temp\nsiebed.tmp\cityhash.dll
c:\windows\system32\cryptsp.dll
c:\windows\system32\rsaenh.dll
c:\windows\system32\rpcrtremote.dll
c:\windows\system32\mssprxy.dll
c:\program files\firefox nightly\accessiblemarshal.dll
c:\program files\firefox nightly\vcruntime140.dll
c:\program files\firefox nightly\api-ms-win-crt-runtime-l1-1-0.dll
c:\windows\system32\ucrtbase.dll
c:\windows\system32\api-ms-win-core-timezone-l1-1-0.dll
c:\windows\system32\api-ms-win-core-file-l2-1-0.dll
c:\windows\system32\api-ms-win-core-localization-l1-2-0.dll
c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
c:\windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
c:\windows\system32\api-ms-win-core-file-l1-2-0.dll
c:\program files\firefox nightly\api-ms-win-crt-string-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-heap-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-stdio-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-convert-l1-1-0.dll
c:\program files\firefox nightly\accessiblehandler.dll
c:\users\admin\appdata\local\temp\nsiebed.tmp\accesscontrol.dll
c:\users\admin\appdata\local\temp\nsiebed.tmp\nsexec.dll
c:\users\admin\appdata\local\temp\nsiebed.tmp\nsf5a3.tmp
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\users\admin\appdata\local\temp\nsiebed.tmp\shelllink.dll
c:\windows\system32\linkinfo.dll
c:\windows\system32\ntshrui.dll
c:\windows\system32\srvcli.dll
c:\windows\system32\cscapi.dll
c:\windows\system32\slc.dll
c:\program files\firefox nightly\firefox.exe
c:\users\admin\appdata\local\temp\nsiebed.tmp\applicationid.dll
c:\users\admin\appdata\local\temp\nsiebed.tmp\serviceshelper.dll
c:\users\admin\appdata\local\temp\nsiebed.tmp\invokeshellverb.dll
c:\windows\system32\twext.dll
c:\windows\system32\cscui.dll
c:\windows\system32\cscdll.dll
c:\windows\system32\zipfldr.dll
c:\program files\winrar\rarext.dll
c:\windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\gdiplus.dll
c:\windows\system32\msimg32.dll
c:\windows\system32\windowscodecs.dll
c:\windows\system32\syncui.dll
c:\windows\system32\synceng.dll
c:\program files\notepad++\nppshell_06.dll
c:\windows\system32\acppage.dll
c:\windows\system32\msi.dll
c:\windows\system32\wer.dll
c:\windows\system32\devrtl.dll
c:\users\admin\appdata\local\temp\nsiebed.tmp\litefirewallw.dll
c:\windows\system32\firewallapi.dll
c:\windows\system32\netutils.dll

PID
2332
CMD
"C:\Users\admin\AppData\Local\Temp\nsiEBED.tmp\nsF5A3.tmp" "C:\Program Files\Firefox Nightly\maintenanceservice_installer.exe"
Path
C:\Users\admin\AppData\Local\Temp\nsiEBED.tmp\nsF5A3.tmp
Indicators
No indicators
Parent process
setup.exe
User
admin
Integrity Level
HIGH
Exit code
0
Version:
Company
Description
Version
Modules
Image
c:\users\admin\appdata\local\temp\nsiebed.tmp\nsf5a3.tmp
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\apphelp.dll
c:\program files\firefox nightly\maintenanceservice_installer.exe

PID
3040
CMD
"C:\Program Files\Firefox Nightly\maintenanceservice_installer.exe"
Path
C:\Program Files\Firefox Nightly\maintenanceservice_installer.exe
Indicators
Parent process
nsF5A3.tmp
User
admin
Integrity Level
HIGH
Exit code
0
Version:
Company
Mozilla Corporation
Description
Mozilla Maintenance Service Installer
Version
67.0a1
Modules
Image
c:\program files\firefox nightly\maintenanceservice_installer.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\usp10.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\apphelp.dll
c:\windows\system32\propsys.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\oleacc.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\version.dll
c:\windows\system32\shfolder.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\users\admin\appdata\local\temp\nscf6ab.tmp\system.dll
c:\windows\system32\cryptsp.dll
c:\program files\mozilla maintenance service\maintenanceservice.exe
c:\windows\system32\rsaenh.dll
c:\windows\system32\rpcrtremote.dll
c:\windows\system32\mssprxy.dll

PID
2120
CMD
"C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe" install
Path
C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
Indicators
No indicators
Parent process
maintenanceservice_installer.exe
User
admin
Integrity Level
HIGH
Exit code
0
Version:
Company
Mozilla Foundation
Description
Version
67.0a1
Modules
Image
c:\program files\mozilla maintenance service\maintenanceservice.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\user32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\ole32.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\version.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\profapi.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll

PID
2324
CMD
"C:\Program Files\Firefox Nightly\firefox.exe"
Path
C:\Program Files\Firefox Nightly\firefox.exe
Indicators
No indicators
Parent process
setup-stub.exe
User
admin
Integrity Level
MEDIUM
Exit code
0
Version:
Company
Mozilla Corporation
Description
Firefox Nightly
Version
67.0a1
Modules
Image
c:\program files\firefox nightly\firefox.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\firefox nightly\mozglue.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\version.dll
c:\program files\firefox nightly\msvcp140.dll
c:\program files\firefox nightly\vcruntime140.dll
c:\program files\firefox nightly\api-ms-win-crt-runtime-l1-1-0.dll
c:\program files\firefox nightly\ucrtbase.dll
c:\program files\firefox nightly\api-ms-win-core-localization-l1-2-0.dll
c:\program files\firefox nightly\api-ms-win-core-processthreads-l1-1-1.dll
c:\program files\firefox nightly\api-ms-win-core-file-l1-2-0.dll
c:\program files\firefox nightly\api-ms-win-core-timezone-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-core-file-l2-1-0.dll
c:\program files\firefox nightly\api-ms-win-core-synch-l1-2-0.dll
c:\program files\firefox nightly\api-ms-win-crt-string-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-heap-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-stdio-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-convert-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-locale-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-math-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-time-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-filesystem-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-environment-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-utility-l1-1-0.dll
c:\windows\system32\apphelp.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll

PID
2300
CMD
"C:\Program Files\Firefox Nightly\firefox.exe"
Path
C:\Program Files\Firefox Nightly\firefox.exe
Indicators
Parent process
firefox.exe
User
admin
Integrity Level
MEDIUM
Version:
Company
Mozilla Corporation
Description
Firefox Nightly
Version
67.0a1
Modules
Image
c:\program files\firefox nightly\firefox.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\firefox nightly\mozglue.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\version.dll
c:\program files\firefox nightly\msvcp140.dll
c:\program files\firefox nightly\vcruntime140.dll
c:\program files\firefox nightly\api-ms-win-crt-runtime-l1-1-0.dll
c:\program files\firefox nightly\ucrtbase.dll
c:\program files\firefox nightly\api-ms-win-core-localization-l1-2-0.dll
c:\program files\firefox nightly\api-ms-win-core-processthreads-l1-1-1.dll
c:\program files\firefox nightly\api-ms-win-core-file-l1-2-0.dll
c:\program files\firefox nightly\api-ms-win-core-timezone-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-core-file-l2-1-0.dll
c:\program files\firefox nightly\api-ms-win-core-synch-l1-2-0.dll
c:\program files\firefox nightly\api-ms-win-crt-string-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-heap-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-stdio-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-convert-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-locale-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-math-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-time-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-filesystem-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-environment-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-utility-l1-1-0.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\firefox nightly\api-ms-win-crt-multibyte-l1-1-0.dll
c:\program files\firefox nightly\nss3.dll
c:\windows\system32\winmm.dll
c:\windows\system32\wsock32.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\program files\firefox nightly\lgpllibs.dll
c:\program files\firefox nightly\xul.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\avrt.dll
c:\windows\system32\ole32.dll
c:\windows\system32\d3d11.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\credui.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\wtsapi32.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\kbdus.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\psapi.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\napinsp.dll
c:\windows\system32\pnrpnsp.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\winrnr.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\wbem\wbemprox.dll
c:\windows\system32\wbemcomn.dll
c:\windows\system32\wship6.dll
c:\windows\system32\cryptsp.dll
c:\windows\system32\wshqos.dll
c:\windows\system32\rsaenh.dll
c:\windows\system32\rpcrtremote.dll
c:\windows\system32\wbem\wbemsvc.dll
c:\windows\system32\wbem\fastprox.dll
c:\windows\system32\ntdsapi.dll
c:\windows\system32\wpc.dll
c:\windows\system32\wevtapi.dll
c:\windows\system32\samcli.dll
c:\windows\system32\samlib.dll
c:\windows\system32\netutils.dll
c:\windows\system32\apphelp.dll
c:\windows\system32\mscms.dll
c:\windows\system32\winsta.dll
c:\program files\adobe\acrobat reader dc\reader\acrord32.exe
c:\progra~1\micros~1\office14\outlook.exe
c:\windows\system32\mmdevapi.dll
c:\windows\system32\propsys.dll
c:\windows\system32\audioses.dll
c:\windows\system32\d2d1.dll
c:\windows\system32\macromed\flash\npswf32_26_0_0_131.dll
c:\program files\java\jre1.8.0_92\bin\dtplugin\npdeployjava1.dll
c:\program files\java\jre1.8.0_92\bin\plugin2\npjp2.dll
c:\progra~1\micros~1\office14\npspwrap.dll
c:\progra~1\micros~1\office14\npauthz.dll
c:\program files\google\update\1.3.33.17\npgoogleupdate3.dll
c:\program files\videolan\vlc\npvlc.dll
c:\program files\adobe\acrobat reader dc\reader\air\nppdf32.dll
c:\windows\system32\msimg32.dll
c:\program files\firefox nightly\softokn3.dll
c:\program files\firefox nightly\freebl3.dll
c:\progra~1\firefo~1\nssckbi.dll
c:\windows\system32\wininet.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\iertutil.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\rasapi32.dll
c:\windows\system32\rasman.dll
c:\windows\system32\rtutils.dll
c:\windows\system32\sensapi.dll
c:\windows\system32\rasadhlp.dll
c:\windows\system32\fwpuclnt.dll
c:\windows\system32\explorerframe.dll
c:\windows\system32\duser.dll
c:\windows\system32\dui70.dll
c:\windows\system32\actxprxy.dll

PID
3280
CMD
"C:\Program Files\Firefox Nightly\firefox.exe" -contentproc --channel="2300.0.1856029144\1117133386" -parentBuildID 20190210094433 -greomni "C:\Program Files\Firefox Nightly\omni.ja" -appomni "C:\Program Files\Firefox Nightly\browser\omni.ja" -appdir "C:\Program Files\Firefox Nightly\browser" - 2300 "\\.\pipe\gecko-crash-server-pipe.2300" 1388 gpu
Path
C:\Program Files\Firefox Nightly\firefox.exe
Indicators
No indicators
Parent process
firefox.exe
User
admin
Integrity Level
MEDIUM
Version:
Company
Mozilla Corporation
Description
Firefox Nightly
Version
67.0a1
Modules
Image
c:\program files\firefox nightly\firefox.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\firefox nightly\mozglue.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\version.dll
c:\program files\firefox nightly\msvcp140.dll
c:\program files\firefox nightly\vcruntime140.dll
c:\program files\firefox nightly\api-ms-win-crt-runtime-l1-1-0.dll
c:\program files\firefox nightly\ucrtbase.dll
c:\program files\firefox nightly\api-ms-win-core-localization-l1-2-0.dll
c:\program files\firefox nightly\api-ms-win-core-processthreads-l1-1-1.dll
c:\program files\firefox nightly\api-ms-win-core-file-l1-2-0.dll
c:\program files\firefox nightly\api-ms-win-core-timezone-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-core-file-l2-1-0.dll
c:\program files\firefox nightly\api-ms-win-core-synch-l1-2-0.dll
c:\program files\firefox nightly\api-ms-win-crt-string-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-heap-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-stdio-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-convert-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-locale-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-math-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-time-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-filesystem-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-environment-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-utility-l1-1-0.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\firefox nightly\api-ms-win-crt-multibyte-l1-1-0.dll
c:\program files\firefox nightly\nss3.dll
c:\windows\system32\winmm.dll
c:\windows\system32\wsock32.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\program files\firefox nightly\lgpllibs.dll
c:\program files\firefox nightly\xul.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\avrt.dll
c:\windows\system32\ole32.dll
c:\windows\system32\d3d11.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\credui.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\wtsapi32.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\mfplat.dll
c:\windows\system32\mf.dll
c:\windows\system32\atl.dll
c:\windows\system32\ksuser.dll
c:\windows\system32\dxva2.dll
c:\windows\system32\evr.dll
c:\windows\system32\powrprof.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\wship6.dll
c:\windows\system32\wshqos.dll

PID
1420
CMD
"C:\Program Files\Firefox Nightly\firefox.exe" -contentproc --channel="2300.6.506069043\783533922" -childID 1 -isForBrowser -prefsHandle 1804 -prefMapHandle 2100 -prefsLen 1 -prefMapSize 180290 -parentBuildID 20190210094433 -greomni "C:\Program Files\Firefox Nightly\omni.ja" -appomni "C:\Program Files\Firefox Nightly\browser\omni.ja" -appdir "C:\Program Files\Firefox Nightly\browser" - 2300 "\\.\pipe\gecko-crash-server-pipe.2300" 924 tab
Path
C:\Program Files\Firefox Nightly\firefox.exe
Indicators
Parent process
firefox.exe
User
admin
Integrity Level
LOW
Version:
Company
Mozilla Corporation
Description
Firefox Nightly
Version
67.0a1
Modules
Image
c:\program files\firefox nightly\firefox.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\firefox nightly\mozglue.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\version.dll
c:\program files\firefox nightly\msvcp140.dll
c:\program files\firefox nightly\vcruntime140.dll
c:\program files\firefox nightly\api-ms-win-crt-runtime-l1-1-0.dll
c:\program files\firefox nightly\ucrtbase.dll
c:\program files\firefox nightly\api-ms-win-core-localization-l1-2-0.dll
c:\program files\firefox nightly\api-ms-win-core-processthreads-l1-1-1.dll
c:\program files\firefox nightly\api-ms-win-core-file-l1-2-0.dll
c:\program files\firefox nightly\api-ms-win-core-timezone-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-core-file-l2-1-0.dll
c:\program files\firefox nightly\api-ms-win-core-synch-l1-2-0.dll
c:\program files\firefox nightly\api-ms-win-crt-string-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-heap-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-stdio-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-convert-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-locale-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-math-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-time-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-filesystem-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-environment-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-utility-l1-1-0.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\firefox nightly\api-ms-win-crt-multibyte-l1-1-0.dll
c:\program files\firefox nightly\nss3.dll
c:\windows\system32\winmm.dll
c:\windows\system32\wsock32.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\program files\firefox nightly\lgpllibs.dll
c:\program files\firefox nightly\xul.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\avrt.dll
c:\windows\system32\ole32.dll
c:\windows\system32\d3d11.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\credui.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\wtsapi32.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\napinsp.dll
c:\windows\system32\pnrpnsp.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\winrnr.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\wship6.dll
c:\windows\system32\wshqos.dll
c:\windows\system32\mscms.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\mmdevapi.dll
c:\windows\system32\propsys.dll
c:\windows\system32\audioses.dll
c:\program files\firefox nightly\mozavutil.dll
c:\program files\firefox nightly\mozavcodec.dll
c:\windows\system32\mfplat.dll
c:\windows\system32\mf.dll
c:\windows\system32\atl.dll
c:\windows\system32\ksuser.dll
c:\windows\system32\dxva2.dll
c:\windows\system32\evr.dll
c:\windows\system32\powrprof.dll
c:\windows\system32\msmpeg2vdec.dll
c:\windows\system32\slc.dll
c:\windows\system32\sqmapi.dll
c:\windows\system32\bcrypt.dll
c:\windows\system32\wpc.dll
c:\windows\system32\wevtapi.dll
c:\windows\system32\samcli.dll
c:\windows\system32\samlib.dll
c:\windows\system32\netutils.dll
c:\program files\firefox nightly\softokn3.dll
c:\program files\firefox nightly\freebl3.dll

PID
2408
CMD
"C:\Program Files\Firefox Nightly\firefox.exe" -contentproc --channel="2300.13.673692362\2071656185" -childID 2 -isForBrowser -prefsHandle 2080 -prefMapHandle 2120 -prefsLen 177 -prefMapSize 180290 -parentBuildID 20190210094433 -greomni "C:\Program Files\Firefox Nightly\omni.ja" -appomni "C:\Program Files\Firefox Nightly\browser\omni.ja" -appdir "C:\Program Files\Firefox Nightly\browser" - 2300 "\\.\pipe\gecko-crash-server-pipe.2300" 1836 tab
Path
C:\Program Files\Firefox Nightly\firefox.exe
Indicators
Parent process
firefox.exe
User
admin
Integrity Level
LOW
Version:
Company
Mozilla Corporation
Description
Firefox Nightly
Version
67.0a1
Modules
Image
c:\program files\firefox nightly\firefox.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\firefox nightly\mozglue.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\version.dll
c:\program files\firefox nightly\msvcp140.dll
c:\program files\firefox nightly\vcruntime140.dll
c:\program files\firefox nightly\api-ms-win-crt-runtime-l1-1-0.dll
c:\program files\firefox nightly\ucrtbase.dll
c:\program files\firefox nightly\api-ms-win-core-localization-l1-2-0.dll
c:\program files\firefox nightly\api-ms-win-core-processthreads-l1-1-1.dll
c:\program files\firefox nightly\api-ms-win-core-file-l1-2-0.dll
c:\program files\firefox nightly\api-ms-win-core-timezone-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-core-file-l2-1-0.dll
c:\program files\firefox nightly\api-ms-win-core-synch-l1-2-0.dll
c:\program files\firefox nightly\api-ms-win-crt-string-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-heap-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-stdio-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-convert-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-locale-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-math-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-time-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-filesystem-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-environment-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-utility-l1-1-0.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\firefox nightly\api-ms-win-crt-multibyte-l1-1-0.dll
c:\program files\firefox nightly\nss3.dll
c:\windows\system32\winmm.dll
c:\windows\system32\wsock32.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\program files\firefox nightly\lgpllibs.dll
c:\program files\firefox nightly\xul.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\avrt.dll
c:\windows\system32\ole32.dll
c:\windows\system32\d3d11.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\credui.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\wtsapi32.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\napinsp.dll
c:\windows\system32\pnrpnsp.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\winrnr.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\wship6.dll
c:\windows\system32\mscms.dll
c:\windows\system32\wshqos.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\mmdevapi.dll
c:\windows\system32\propsys.dll
c:\windows\system32\audioses.dll
c:\program files\firefox nightly\softokn3.dll
c:\program files\firefox nightly\freebl3.dll

PID
3512
CMD
"C:\Program Files\Firefox Nightly\firefox.exe" -contentproc --channel="2300.20.1978167719\1904142200" -childID 3 -isForBrowser -prefsHandle 2404 -prefMapHandle 2400 -prefsLen 177 -prefMapSize 180290 -parentBuildID 20190210094433 -greomni "C:\Program Files\Firefox Nightly\omni.ja" -appomni "C:\Program Files\Firefox Nightly\browser\omni.ja" -appdir "C:\Program Files\Firefox Nightly\browser" - 2300 "\\.\pipe\gecko-crash-server-pipe.2300" 2312 tab
Path
C:\Program Files\Firefox Nightly\firefox.exe
Indicators
Parent process
firefox.exe
User
admin
Integrity Level
LOW
Version:
Company
Mozilla Corporation
Description
Firefox Nightly
Version
67.0a1
Modules
Image
c:\program files\firefox nightly\firefox.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\firefox nightly\mozglue.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\version.dll
c:\program files\firefox nightly\msvcp140.dll
c:\program files\firefox nightly\vcruntime140.dll
c:\program files\firefox nightly\api-ms-win-crt-runtime-l1-1-0.dll
c:\program files\firefox nightly\ucrtbase.dll
c:\program files\firefox nightly\api-ms-win-core-localization-l1-2-0.dll
c:\program files\firefox nightly\api-ms-win-core-processthreads-l1-1-1.dll
c:\program files\firefox nightly\api-ms-win-core-file-l1-2-0.dll
c:\program files\firefox nightly\api-ms-win-core-timezone-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-core-file-l2-1-0.dll
c:\program files\firefox nightly\api-ms-win-core-synch-l1-2-0.dll
c:\program files\firefox nightly\api-ms-win-crt-string-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-heap-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-stdio-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-convert-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-locale-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-math-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-time-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-filesystem-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-environment-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-utility-l1-1-0.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\firefox nightly\api-ms-win-crt-multibyte-l1-1-0.dll
c:\program files\firefox nightly\nss3.dll
c:\windows\system32\winmm.dll
c:\windows\system32\wsock32.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\program files\firefox nightly\lgpllibs.dll
c:\program files\firefox nightly\xul.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\avrt.dll
c:\windows\system32\ole32.dll
c:\windows\system32\d3d11.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\credui.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\wtsapi32.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\napinsp.dll
c:\windows\system32\pnrpnsp.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\winrnr.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\wship6.dll
c:\windows\system32\mscms.dll
c:\windows\system32\wshqos.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\mmdevapi.dll
c:\windows\system32\propsys.dll
c:\windows\system32\audioses.dll
c:\windows\system32\wpc.dll
c:\windows\system32\wevtapi.dll
c:\windows\system32\samcli.dll
c:\windows\system32\samlib.dll
c:\windows\system32\netutils.dll
c:\program files\firefox nightly\softokn3.dll
c:\program files\firefox nightly\freebl3.dll

PID
2992
CMD
"C:\Program Files\Firefox Nightly\firefox.exe" -contentproc --channel="2300.27.379733884\961392037" -childID 4 -isForBrowser -prefsHandle 3292 -prefMapHandle 3296 -prefsLen 7047 -prefMapSize 180290 -parentBuildID 20190210094433 -greomni "C:\Program Files\Firefox Nightly\omni.ja" -appomni "C:\Program Files\Firefox Nightly\browser\omni.ja" -appdir "C:\Program Files\Firefox Nightly\browser" - 2300 "\\.\pipe\gecko-crash-server-pipe.2300" 3308 tab
Path
C:\Program Files\Firefox Nightly\firefox.exe
Indicators
Parent process
firefox.exe
User
admin
Integrity Level
LOW
Version:
Company
Mozilla Corporation
Description
Firefox Nightly
Version
67.0a1
Modules
Image
c:\program files\firefox nightly\firefox.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\firefox nightly\mozglue.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\version.dll
c:\program files\firefox nightly\msvcp140.dll
c:\program files\firefox nightly\vcruntime140.dll
c:\program files\firefox nightly\api-ms-win-crt-runtime-l1-1-0.dll
c:\program files\firefox nightly\ucrtbase.dll
c:\program files\firefox nightly\api-ms-win-core-localization-l1-2-0.dll
c:\program files\firefox nightly\api-ms-win-core-processthreads-l1-1-1.dll
c:\program files\firefox nightly\api-ms-win-core-file-l1-2-0.dll
c:\program files\firefox nightly\api-ms-win-core-timezone-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-core-file-l2-1-0.dll
c:\program files\firefox nightly\api-ms-win-core-synch-l1-2-0.dll
c:\program files\firefox nightly\api-ms-win-crt-string-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-heap-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-stdio-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-convert-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-locale-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-math-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-time-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-filesystem-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-environment-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-utility-l1-1-0.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\firefox nightly\api-ms-win-crt-multibyte-l1-1-0.dll
c:\program files\firefox nightly\nss3.dll
c:\windows\system32\winmm.dll
c:\windows\system32\wsock32.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\program files\firefox nightly\lgpllibs.dll
c:\program files\firefox nightly\xul.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\avrt.dll
c:\windows\system32\ole32.dll
c:\windows\system32\d3d11.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\credui.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\wtsapi32.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\napinsp.dll
c:\windows\system32\pnrpnsp.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\winrnr.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\wship6.dll
c:\windows\system32\wshqos.dll
c:\windows\system32\mscms.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\mmdevapi.dll
c:\windows\system32\propsys.dll
c:\windows\system32\audioses.dll
c:\program files\firefox nightly\softokn3.dll
c:\program files\firefox nightly\freebl3.dll
c:\windows\system32\wpc.dll
c:\windows\system32\wevtapi.dll
c:\windows\system32\samcli.dll
c:\windows\system32\samlib.dll
c:\windows\system32\netutils.dll

PID
3436
CMD
"C:\Program Files\Firefox Nightly\firefox.exe" -contentproc --channel="2300.34.948034513\861395519" -childID 5 -isForBrowser -prefsHandle 3888 -prefMapHandle 3904 -prefsLen 7503 -prefMapSize 180290 -parentBuildID 20190210094433 -greomni "C:\Program Files\Firefox Nightly\omni.ja" -appomni "C:\Program Files\Firefox Nightly\browser\omni.ja" -appdir "C:\Program Files\Firefox Nightly\browser" - 2300 "\\.\pipe\gecko-crash-server-pipe.2300" 3924 tab
Path
C:\Program Files\Firefox Nightly\firefox.exe
Indicators
Parent process
firefox.exe
User
admin
Integrity Level
LOW
Version:
Company
Mozilla Corporation
Description
Firefox Nightly
Version
67.0a1
Modules
Image
c:\program files\firefox nightly\firefox.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\firefox nightly\mozglue.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\version.dll
c:\program files\firefox nightly\msvcp140.dll
c:\program files\firefox nightly\vcruntime140.dll
c:\program files\firefox nightly\api-ms-win-crt-runtime-l1-1-0.dll
c:\program files\firefox nightly\ucrtbase.dll
c:\program files\firefox nightly\api-ms-win-core-localization-l1-2-0.dll
c:\program files\firefox nightly\api-ms-win-core-processthreads-l1-1-1.dll
c:\program files\firefox nightly\api-ms-win-core-file-l1-2-0.dll
c:\program files\firefox nightly\api-ms-win-core-timezone-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-core-file-l2-1-0.dll
c:\program files\firefox nightly\api-ms-win-core-synch-l1-2-0.dll
c:\program files\firefox nightly\api-ms-win-crt-string-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-heap-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-stdio-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-convert-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-locale-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-math-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-time-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-filesystem-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-environment-l1-1-0.dll
c:\program files\firefox nightly\api-ms-win-crt-utility-l1-1-0.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\firefox nightly\api-ms-win-crt-multibyte-l1-1-0.dll
c:\program files\firefox nightly\nss3.dll
c:\windows\system32\winmm.dll
c:\windows\system32\wsock32.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\program files\firefox nightly\lgpllibs.dll
c:\program files\firefox nightly\xul.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\avrt.dll
c:\windows\system32\ole32.dll
c:\windows\system32\d3d11.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\credui.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\wtsapi32.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\napinsp.dll
c:\windows\system32\pnrpnsp.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\winrnr.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\wship6.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\wshqos.dll
c:\windows\system32\mscms.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\mmdevapi.dll
c:\windows\system32\propsys.dll
c:\windows\system32\audioses.dll

Registry activity

Total events
1510
Read events
1350
Write events
159
Delete events
1

Modification events

PID
Process
Operation
Key
Name
Value
3784
setup-stub.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla
Firefox NightlyInstallerTest
Write Test
3784
setup-stub.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
UNCAsIntranet
0
3784
setup-stub.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
AutoDetect
1
3784
setup-stub.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\setup-stub_RASAPI32
EnableFileTracing
0
3784
setup-stub.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\setup-stub_RASAPI32
EnableConsoleTracing
0
3784
setup-stub.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\setup-stub_RASAPI32
FileTracingMask
4294901760
3784
setup-stub.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\setup-stub_RASAPI32
ConsoleTracingMask
4294901760
3784
setup-stub.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\setup-stub_RASAPI32
MaxFileSize
1048576
3784
setup-stub.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\setup-stub_RASAPI32
FileDirectory
%windir%\tracing
3784
setup-stub.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\setup-stub_RASMANCS
EnableFileTracing
0
3784
setup-stub.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\setup-stub_RASMANCS
EnableConsoleTracing
0
3784
setup-stub.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\setup-stub_RASMANCS
FileTracingMask
4294901760
3784
setup-stub.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\setup-stub_RASMANCS
ConsoleTracingMask
4294901760
3784
setup-stub.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\setup-stub_RASMANCS
MaxFileSize
1048576
3784
setup-stub.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\setup-stub_RASMANCS
FileDirectory
%windir%\tracing
3784
setup-stub.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings
ProxyEnable
0
3784
setup-stub.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections
SavedLegacySettings
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
3784
setup-stub.exe
write
HKEY_CLASSES_ROOT\Local Settings\MuiCache\5F\52C64B7E
LanguageList
en-US
3224
setup.exe
delete key
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\WinSock2\Parameters\AppId_Catalog\3AC7FBD2
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\TaskBarIDs
C:\Program Files\Firefox Nightly
6F193CCC56814779
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1814CEEB-49E2-407F-AF99-FA755A7D2607}\InProcServer32
C:\Program Files\Firefox Nightly\AccessibleMarshal.dll
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1814CEEB-49E2-407F-AF99-FA755A7D2607}\InProcServer32
ThreadingModel
Both
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1814CEEB-49E2-407F-AF99-FA755A7D2607}
PSFactoryBuffer
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{0D68D6D0-D93D-4D08-A30D-F00DD1F45B24}\ProxyStubClsid32
{1814CEEB-49E2-407F-AF99-FA755A7D2607}
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{0D68D6D0-D93D-4D08-A30D-F00DD1F45B24}
ISimpleDOMDocument
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{0D68D6D0-D93D-4D08-A30D-F00DD1F45B24}\NumMethods
9
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{4E747BE5-2052-4265-8AF0-8ECAD7AAD1C0}\ProxyStubClsid32
{1814CEEB-49E2-407F-AF99-FA755A7D2607}
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{4E747BE5-2052-4265-8AF0-8ECAD7AAD1C0}
ISimpleDOMText
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{4E747BE5-2052-4265-8AF0-8ECAD7AAD1C0}\NumMethods
8
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{1814CEEB-49E2-407F-AF99-FA755A7D2607}\ProxyStubClsid32
{1814CEEB-49E2-407F-AF99-FA755A7D2607}
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{1814CEEB-49E2-407F-AF99-FA755A7D2607}
ISimpleDOMNode
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{1814CEEB-49E2-407F-AF99-FA755A7D2607}\NumMethods
18
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4629216B-8753-41BF-9527-5BFF51401671}\InprocHandler32
C:\Program Files\Firefox Nightly\AccessibleHandler.dll
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4629216B-8753-41BF-9527-5BFF51401671}\InprocHandler32
ThreadingModel
Apartment
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E61E038D-40DD-464A-9ABA-66B206B6911B}\InProcServer32
C:\Program Files\Firefox Nightly\AccessibleHandler.dll
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E61E038D-40DD-464A-9ABA-66B206B6911B}\InProcServer32
ThreadingModel
Both
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E61E038D-40DD-464A-9ABA-66B206B6911B}
PSFactoryBuffer
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E61E038D-40DD-464A-9ABA-66B206B6911B}\ProxyStubClsid32
{E61E038D-40DD-464A-9ABA-66B206B6911B}
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E61E038D-40DD-464A-9ABA-66B206B6911B}
IGeckoBackChannel
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E61E038D-40DD-464A-9ABA-66B206B6911B}\NumMethods
8
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{C57343FC-E011-40C2-B748-DA82EABF0F1F}\ProxyStubClsid32
{E61E038D-40DD-464A-9ABA-66B206B6911B}
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{C57343FC-E011-40C2-B748-DA82EABF0F1F}
IHandlerControl
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{C57343FC-E011-40C2-B748-DA82EABF0F1F}\NumMethods
5
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{C57343FC-E011-40C2-B748-DA82EABF0F1F}\AsynchronousInterface
{648C92A1-EA35-46DA-A806-6B55C6247373}
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{648C92A1-EA35-46DA-A806-6B55C6247373}
AsyncIHandlerControl
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{648C92A1-EA35-46DA-A806-6B55C6247373}\NumMethods
7
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{648C92A1-EA35-46DA-A806-6B55C6247373}\SynchronousInterface
{C57343FC-E011-40C2-B748-DA82EABF0F1F}
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla
Firefox NightlyInstallerTest
Write Test
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\mozilla.org\Mozilla
CurrentVersion
67.0a1
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Nightly\67.0a1 (x86 de)\Main
Install Directory
C:\Program Files\Firefox Nightly
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Nightly\67.0a1 (x86 de)\Main
PathToExe
C:\Program Files\Firefox Nightly\firefox.exe
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Nightly\67.0a1 (x86 de)\Uninstall
Description
Nightly 67.0a1 (x86 de)
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Nightly\67.0a1 (x86 de)
67.0a1 (x86 de)
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Nightly 67.0a1\bin
PathToExe
C:\Program Files\Firefox Nightly\firefox.exe
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Nightly 67.0a1\extensions
Components
C:\Program Files\Firefox Nightly\components
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Nightly 67.0a1\extensions
Plugins
C:\Program Files\Firefox Nightly\plugins
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Nightly 67.0a1
GeckoVer
67.0a1
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Nightly
67.0a1
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Nightly
CurrentVersion
67.0a1 (x86 de)
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Nightly 67.0a1 (x86 de)
Firefox NightlyInstallerTest
Write Test
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Nightly 67.0a1 (x86 de)
Comments
Nightly 67.0a1 (x86 de)
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Nightly 67.0a1 (x86 de)
DisplayIcon
C:\Program Files\Firefox Nightly\firefox.exe,0
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Nightly 67.0a1 (x86 de)
DisplayName
Nightly 67.0a1 (x86 de)
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Nightly 67.0a1 (x86 de)
DisplayVersion
67.0a1
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Nightly 67.0a1 (x86 de)
HelpLink
https://support.mozilla.org
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Nightly 67.0a1 (x86 de)
InstallLocation
C:\Program Files\Firefox Nightly
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Nightly 67.0a1 (x86 de)
Publisher
Mozilla
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Nightly 67.0a1 (x86 de)
UninstallString
"C:\Program Files\Firefox Nightly\uninstall\helper.exe"
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Nightly 67.0a1 (x86 de)
URLInfoAbout
https://www.mozilla.org
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Nightly 67.0a1 (x86 de)
NoModify
1
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Nightly 67.0a1 (x86 de)
NoRepair
1
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Nightly 67.0a1 (x86 de)
EstimatedSize
173228
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\FirefoxHTML-6F193CCC56814779
Firefox Document
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\FirefoxHTML-6F193CCC56814779
FriendlyTypeName
Firefox Document
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\FirefoxHTML-6F193CCC56814779
EditFlags
2
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\FirefoxHTML-6F193CCC56814779\DefaultIcon
C:\Program Files\Firefox Nightly\firefox.exe,1
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\FirefoxHTML-6F193CCC56814779\shell
open
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\FirefoxHTML-6F193CCC56814779\shell\open\command
"C:\Program Files\Firefox Nightly\firefox.exe" -osint -url "%1"
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\FirefoxHTML-6F193CCC56814779\shell\open\ddeexec
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\FirefoxURL-6F193CCC56814779
Firefox URL
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\FirefoxURL-6F193CCC56814779
FriendlyTypeName
Firefox URL
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\FirefoxURL-6F193CCC56814779
URL Protocol
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\FirefoxURL-6F193CCC56814779
EditFlags
2
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\FirefoxURL-6F193CCC56814779\DefaultIcon
C:\Program Files\Firefox Nightly\firefox.exe,1
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\FirefoxURL-6F193CCC56814779\shell
open
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\FirefoxURL-6F193CCC56814779\shell\open\command
"C:\Program Files\Firefox Nightly\firefox.exe" -osint -url "%1"
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\FirefoxURL-6F193CCC56814779\shell\open\ddeexec
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Firefox-6F193CCC56814779
Firefox Nightly
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Firefox-6F193CCC56814779\DefaultIcon
C:\Program Files\Firefox Nightly\firefox.exe,0
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Firefox-6F193CCC56814779\InstallInfo
HideIconsCommand
"C:\Program Files\Firefox Nightly\uninstall\helper.exe" /HideShortcuts
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Firefox-6F193CCC56814779\InstallInfo
ShowIconsCommand
"C:\Program Files\Firefox Nightly\uninstall\helper.exe" /ShowShortcuts
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Firefox-6F193CCC56814779\InstallInfo
ReinstallCommand
"C:\Program Files\Firefox Nightly\uninstall\helper.exe" /SetAsDefaultAppGlobal
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Firefox-6F193CCC56814779\InstallInfo
IconsVisible
1
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Firefox-6F193CCC56814779\shell\open\command
"C:\Program Files\Firefox Nightly\firefox.exe"
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Firefox-6F193CCC56814779\shell\properties
Firefox Nightly - &Optionen
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Firefox-6F193CCC56814779\shell\properties\command
"C:\Program Files\Firefox Nightly\firefox.exe" -preferences
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Firefox-6F193CCC56814779\shell\safemode
Firefox Nightly - &Abgesicherter Modus
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Firefox-6F193CCC56814779\shell\safemode\command
"C:\Program Files\Firefox Nightly\firefox.exe" -safe-mode
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Firefox-6F193CCC56814779\Capabilities
ApplicationDescription
Firefox Nightly ermöglicht sicheres und einfaches Surfen. Mit einer gewohnten Oberfläche, verbesserten Sicherheitsfunktionen, inklusive Schutz vor Identitätsdiebstahl und integrierter Suche holen Sie mehr aus dem Web.
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Firefox-6F193CCC56814779\Capabilities
ApplicationIcon
C:\Program Files\Firefox Nightly\firefox.exe,0
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Firefox-6F193CCC56814779\Capabilities
ApplicationName
Firefox Nightly
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Firefox-6F193CCC56814779\Capabilities\FileAssociations
.htm
FirefoxHTML-6F193CCC56814779
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Firefox-6F193CCC56814779\Capabilities\FileAssociations
.html
FirefoxHTML-6F193CCC56814779
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Firefox-6F193CCC56814779\Capabilities\FileAssociations
.shtml
FirefoxHTML-6F193CCC56814779
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Firefox-6F193CCC56814779\Capabilities\FileAssociations
.xht
FirefoxHTML-6F193CCC56814779
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Firefox-6F193CCC56814779\Capabilities\FileAssociations
.xhtml
FirefoxHTML-6F193CCC56814779
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Firefox-6F193CCC56814779\Capabilities\StartMenu
StartMenuInternet
Firefox-6F193CCC56814779
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Firefox-6F193CCC56814779\Capabilities\URLAssociations
ftp
FirefoxURL-6F193CCC56814779
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Firefox-6F193CCC56814779\Capabilities\URLAssociations
http
FirefoxURL-6F193CCC56814779
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Firefox-6F193CCC56814779\Capabilities\URLAssociations
https
FirefoxURL-6F193CCC56814779
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\RegisteredApplications
Firefox-6F193CCC56814779
Software\Clients\StartMenuInternet\Firefox-6F193CCC56814779\Capabilities
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\firefox.exe
C:\Program Files\Firefox Nightly\firefox.exe
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\firefox.exe
Path
C:\Program Files\Firefox Nightly
3224
setup.exe
write
HKEY_CLASSES_ROOT\Local Settings\MuiCache\5F\52C64B7E
LanguageList
en-US
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\MaintenanceService
Attempted
1
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\MaintenanceService\35562fadc262dec332219264bffef2fb\0
name
Mozilla Corporation
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\MaintenanceService\35562fadc262dec332219264bffef2fb\0
issuer
DigiCert SHA2 Assured ID Code Signing CA
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\MaintenanceService\35562fadc262dec332219264bffef2fb\1
name
Mozilla Corporation
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\MaintenanceService\35562fadc262dec332219264bffef2fb\1
issuer
DigiCert Assured ID Code Signing CA-1
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartPage
FavoritesRemovedChanges
5
3224
setup.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Taskband
Favorites
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
3224
setup.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Taskband
FavoritesChanges
10
3224
setup.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Taskband
FavoritesVersion
2
3224
setup.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer
GlobalAssocChangedCounter
52
3040
maintenanceservice_installer.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MozillaMaintenanceService
DisplayName
Mozilla Maintenance Service
3040
maintenanceservice_installer.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MozillaMaintenanceService
UninstallString
"C:\Program Files\Mozilla Maintenance Service\uninstall.exe"
3040
maintenanceservice_installer.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MozillaMaintenanceService
DisplayIcon
C:\Program Files\Mozilla Maintenance Service\Uninstall.exe,0
3040
maintenanceservice_installer.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MozillaMaintenanceService
DisplayVersion
67.0a1
3040
maintenanceservice_installer.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MozillaMaintenanceService
Publisher
Mozilla
3040
maintenanceservice_installer.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MozillaMaintenanceService
Comments
Mozilla Maintenance Service
3040
maintenanceservice_installer.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MozillaMaintenanceService
NoModify
1
3040
maintenanceservice_installer.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MozillaMaintenanceService
EstimatedSize
311
3040
maintenanceservice_installer.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\MaintenanceService
Attempted
1
3040
maintenanceservice_installer.exe
write
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\MaintenanceService
Installed
1
2324
firefox.exe
write
HKEY_CURRENT_USER\Software\Mozilla\Firefox\Launcher
C:\Program Files\Firefox Nightly\firefox.exe|Image
1549798909
2324
firefox.exe
write
HKEY_CURRENT_USER\Software\Mozilla\Firefox\Launcher
C:\Program Files\Firefox Nightly\firefox.exe|Launcher
DEB18F5F01000000
2300
firefox.exe
write
HKEY_CURRENT_USER\Software\Mozilla\Firefox\Launcher
C:\Program Files\Firefox Nightly\firefox.exe|Browser
A9C0965F01000000
2300
firefox.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings
ProxyEnable
0
2300
firefox.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections
SavedLegacySettings
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

Files activity

Executable files
166
Suspicious files
64
Text files
172
Unknown types
130

Dropped files

PID
Process
Filename
Type
3224
setup.exe
C:\Users\admin\AppData\Local\Temp\nsiEBED.tmp\ApplicationID.dll
executable
MD5: 439928666a6baa4f9d2a1b0fb92265ec
SHA256: d43896c0c02bec598b7513b9a8815bb301c6b73da0fb2e0aee99146b4bd5e287
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-crt-locale-l1-1-0.dll
executable
MD5: 034379bcea45eb99db8cdfeacbc5e281
SHA256: 8b543b1bb241f5b773eb76f652dad7b12e3e4a09230f2e804cd6b0622e8baf65
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-crt-string-l1-1-0.dll
executable
MD5: ad99c2362f64cde7756b16f9a016a60f
SHA256: 73ab2161a7700835b2a15b7487045a695706cc18bcee283b114042570bb9c0aa
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\breakpadinjector.dll
executable
MD5: 29b773e6134d0dd1ccb8ba9ccefa43b7
SHA256: 4098fad4af896574df0a0c445f58be345b2c0c3c29524cd95acd09d2e0b609b0
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-crt-time-l1-1-0.dll
executable
MD5: 9b79fda359a269c63dcac69b2c81caa4
SHA256: 4d0f0ea6e8478132892f9e674e27e2bc346622fc8989c704e5b2299a18c1d138
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-crt-stdio-l1-1-0.dll
executable
MD5: d5166ab3034f0e1aa679bfa1907e5844
SHA256: 7bcab4ca00fb1f85fea29dd3375f709317b984a6f3b9ba12b8cf1952f97beee5
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-crt-utility-l1-1-0.dll
executable
MD5: 70e9104e743069b573ca12a3cd87ec33
SHA256: 7e6b33a4c0c84f18f2be294ec63212245af4fd8354636804ffe5ee9a0d526d95
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-crt-process-l1-1-0.dll
executable
MD5: 9d3d6f938c8672a12aea03f85d5330de
SHA256: 707c9a384440d0b2d067fc0335273f8851b02c3114842e17df9c54127910d7fb
3224
setup.exe
C:\Program Files\Firefox Nightly\breakpadinjector.dll
executable
MD5: 29b773e6134d0dd1ccb8ba9ccefa43b7
SHA256: 4098fad4af896574df0a0c445f58be345b2c0c3c29524cd95acd09d2e0b609b0
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-crt-convert-l1-1-0.dll
executable
MD5: 9ddea3cc96e0fdd3443cc60d649931b3
SHA256: b7c3ebc36c84630a52d23d1c0e79d61012dfa44cdebdf039af31ec9e322845a5
3224
setup.exe
C:\Program Files\Firefox Nightly\crashreporter.exe
executable
MD5: f51f389056c8fed65b7b704436196143
SHA256: 3ae9942cc173d3ab99cba75d581564cfba5ce961b220024178b7055f07add737
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-crt-string-l1-1-0.dll
executable
MD5: ad99c2362f64cde7756b16f9a016a60f
SHA256: 73ab2161a7700835b2a15b7487045a695706cc18bcee283b114042570bb9c0aa
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-core-sysinfo-l1-1-0.dll
executable
MD5: 887995a73bc7dde7b764afabce57efe7
SHA256: f94210b39cdc812beb7342a47e68673ea2116d0ad9266fcf8d7cedaa9561fc38
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-crt-runtime-l1-1-0.dll
executable
MD5: fb0ca6cbfff46be87ad729a1c4fde138
SHA256: 1ee8e99190cc31b104fb75e66928b8c73138902fefedbcfb54c409df50a364df
3224
setup.exe
C:\Program Files\Firefox Nightly\d3dcompiler_47.dll
executable
MD5: 587a415cd5ac2069813adef5f7685021
SHA256: 2ad0d4987fc4624566b190e747c9d95038443956ed816abfd1e2d389b5ec0851
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-crt-heap-l1-1-0.dll
executable
MD5: 1776a2b85378b27825cf5e5a3a132d9a
SHA256: 675b1b82dd485cc8c8a099272db9241d0d2a7f45424901f35231b79186ec47ee
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-core-synch-l1-2-0.dll
executable
MD5: 6e704280d632c2f8f2cadefcae25ad85
SHA256: 758a2f9ef6908b51745db50d89610fe1de921d93b2dbea919bfdba813d5d8893
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-crt-process-l1-1-0.dll
executable
MD5: 9d3d6f938c8672a12aea03f85d5330de
SHA256: 707c9a384440d0b2d067fc0335273f8851b02c3114842e17df9c54127910d7fb
3224
setup.exe
C:\Program Files\Firefox Nightly\firefox.exe
executable
MD5: d71248051ab7fe0ef84e0bc912009cb6
SHA256: 124dc79272425ced83a8544b9206954adccab1b03b7369c7836fe7da8bb1d72a
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-crt-runtime-l1-1-0.dll
executable
MD5: fb0ca6cbfff46be87ad729a1c4fde138
SHA256: 1ee8e99190cc31b104fb75e66928b8c73138902fefedbcfb54c409df50a364df
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-crt-conio-l1-1-0.dll
executable
MD5: a668c5ee307457729203ae00edebb6b3
SHA256: a95b1af74623d6d5d892760166b9bfac8926929571301921f1e62458e6d1a503
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-crt-private-l1-1-0.dll
executable
MD5: 3d139f57ed79d2c788e422ca26950446
SHA256: dc25a882ac454a0071e4815b0e939dc161ba73b5c207b84afd96203c343b99c7
3224
setup.exe
C:\Program Files\Firefox Nightly\freebl3.dll
executable
MD5: 2b3cdbc719c49a538ac244525866a95b
SHA256: 87613b67b7f0158e6b7fc28fc66ada87a02be3c06d2fe3ecf94414571fe6e772
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-crt-stdio-l1-1-0.dll
executable
MD5: d5166ab3034f0e1aa679bfa1907e5844
SHA256: 7bcab4ca00fb1f85fea29dd3375f709317b984a6f3b9ba12b8cf1952f97beee5
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-crt-environment-l1-1-0.dll
executable
MD5: 39325e5f023eb564c87d30f7e06dff23
SHA256: 56d8b7ee7619579a3c648eb130c9354ba1ba5b33a07a4f350370ee7b3653749a
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-crt-multibyte-l1-1-0.dll
executable
MD5: 19d7f2d6424c98c45702489a375d9e17
SHA256: a6b83b764555d517216e0e34c4945f7a7501c1b7a25308d8f85551fe353f9c15
3224
setup.exe
C:\Program Files\Firefox Nightly\IA2Marshal.dll
executable
MD5: 1fc516f30ee4c7fa051e3fd1beda3fc7
SHA256: 2976f721aefb9f1cf52327f129e577d454f51b220ea795271c6c3b1b26c6554b
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-crt-multibyte-l1-1-0.dll
executable
MD5: 19d7f2d6424c98c45702489a375d9e17
SHA256: a6b83b764555d517216e0e34c4945f7a7501c1b7a25308d8f85551fe353f9c15
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-core-timezone-l1-1-0.dll
executable
MD5: c9a55de62e53d747c5a7fddedef874f9
SHA256: b5c725bbb475b5c06cc6cb2a2c3c70008f229659f88fba25ccd5d5c698d06a4b
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-crt-math-l1-1-0.dll
executable
MD5: 8da414c3524a869e5679c0678d1640c1
SHA256: 39723e61c98703034b264b97ee0fe12e696c6560483d799020f9847d8a952672
3224
setup.exe
C:\Program Files\Firefox Nightly\lgpllibs.dll
executable
MD5: d3a6d185e95c50fd874d0756e29ba815
SHA256: 5c0c7d15eda0d6d0ef38d90f7f3ece921202a9e0b7070d480e4b33179a261485
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-crt-time-l1-1-0.dll
executable
MD5: 9b79fda359a269c63dcac69b2c81caa4
SHA256: 4d0f0ea6e8478132892f9e674e27e2bc346622fc8989c704e5b2299a18c1d138
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-core-util-l1-1-0.dll
executable
MD5: 29e1922b32e5312a948e6d8b1b34e2d9
SHA256: 34c5dee6d566252c0ceb7d9a21e24d5f297af2b26c32e0c7808bbd088aa9a6a9
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-crt-heap-l1-1-0.dll
executable
MD5: 1776a2b85378b27825cf5e5a3a132d9a
SHA256: 675b1b82dd485cc8c8a099272db9241d0d2a7f45424901f35231b79186ec47ee
3224
setup.exe
C:\Program Files\Firefox Nightly\libEGL.dll
executable
MD5: 60ec78cb41d5db45f0c7a39394cfe65b
SHA256: c1d1282f3d917a309401c2c02995256e25a614f5fbc0abc5b90795c537489f6a
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-crt-filesystem-l1-1-0.dll
executable
MD5: 228c6bbe1bce84315e4927392a3baee5
SHA256: ac0cec8644340125507dd0bc9a90b1853a2d194eb60a049237fb5e752d349065
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-core-profile-l1-1-0.dll
executable
MD5: cedefd460bc1e36ae111668f3b658052
SHA256: f941c232964d01e4680e54ab04955ec6264058011b03889fe29db86509511eba
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-crt-locale-l1-1-0.dll
executable
MD5: 034379bcea45eb99db8cdfeacbc5e281
SHA256: 8b543b1bb241f5b773eb76f652dad7b12e3e4a09230f2e804cd6b0622e8baf65
3224
setup.exe
C:\Program Files\Firefox Nightly\maintenanceservice.exe
executable
MD5: 5cea9f2e394a47ed6e35ad9604db0eda
SHA256: 21a38fea2f789368f07f72b0e0de3049a70cb1587e90c994a106589205ecb63e
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-crt-math-l1-1-0.dll
executable
MD5: 8da414c3524a869e5679c0678d1640c1
SHA256: 39723e61c98703034b264b97ee0fe12e696c6560483d799020f9847d8a952672
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-core-processthreads-l1-1-0.dll
executable
MD5: 1dda9cb13449ce2c6bb670598fc09dc8
SHA256: 4f187f1b4b14763360c325df6b04d3ec3cc6d2cecc9b796bc52a6c7196b0b2cc
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-crt-filesystem-l1-1-0.dll
executable
MD5: 228c6bbe1bce84315e4927392a3baee5
SHA256: ac0cec8644340125507dd0bc9a90b1853a2d194eb60a049237fb5e752d349065
3224
setup.exe
C:\Program Files\Firefox Nightly\libGLESv2.dll
executable
MD5: 0068f1b5a48451f65a3713e60f7c387e
SHA256: 1c5f3b3a4e98ce041e6727cf43923b614e9d167ee49b7d81ad817331001b3cee
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-crt-private-l1-1-0.dll
executable
MD5: 3d139f57ed79d2c788e422ca26950446
SHA256: dc25a882ac454a0071e4815b0e939dc161ba73b5c207b84afd96203c343b99c7
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-core-memory-l1-1-0.dll
executable
MD5: 3940167ffb4383992e73f9a10e4b8b1e
SHA256: ec573431338371504b7b9e57b2d91382b856aabf25d2b4ad96486efb794c198e
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-crt-environment-l1-1-0.dll
executable
MD5: 39325e5f023eb564c87d30f7e06dff23
SHA256: 56d8b7ee7619579a3c648eb130c9354ba1ba5b33a07a4f350370ee7b3653749a
3224
setup.exe
C:\Program Files\Firefox Nightly\maintenanceservice_installer.exe
executable
MD5: b777fa71508b54f42f06fbe6dd08736b
SHA256: 52c8566c95a5637acb01af196e62281727416959b0ee1309d6a645856f54e99a
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\crashreporter.exe
executable
MD5: f51f389056c8fed65b7b704436196143
SHA256: 3ae9942cc173d3ab99cba75d581564cfba5ce961b220024178b7055f07add737
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-core-synch-l1-1-0.dll
executable
MD5: c1dcdb0fabc8ae671a7c7a94f42fb79a
SHA256: cc76a4e82e0e0cd08df3bb8f5ad57142305e0f666cc32599d76e363d0b43efcb
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-crt-convert-l1-1-0.dll
executable
MD5: 9ddea3cc96e0fdd3443cc60d649931b3
SHA256: b7c3ebc36c84630a52d23d1c0e79d61012dfa44cdebdf039af31ec9e322845a5
3224
setup.exe
C:\Program Files\Firefox Nightly\minidump-analyzer.exe
executable
MD5: 08acace59a94aadfd2d33a6d69eb1210
SHA256: b52a83afbcd0f9e8e22b9c37fc573eedabaab8c1987f4111af3f95374a07f784
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\d3dcompiler_47.dll
executable
MD5: 587a415cd5ac2069813adef5f7685021
SHA256: 2ad0d4987fc4624566b190e747c9d95038443956ed816abfd1e2d389b5ec0851
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-core-string-l1-1-0.dll
executable
MD5: e7a266dd3a2a1e03d8716f92bede582d
SHA256: 339966ae75675a03f628c4ddd5d3218abb36cbcf6ddce83b88c07336d732b8ae
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-crt-conio-l1-1-0.dll
executable
MD5: a668c5ee307457729203ae00edebb6b3
SHA256: a95b1af74623d6d5d892760166b9bfac8926929571301921f1e62458e6d1a503
3224
setup.exe
C:\Program Files\Firefox Nightly\mozavcodec.dll
executable
MD5: 2a27374ca50efef95202a46782295611
SHA256: 37e2ed9e7fce8d20cfa56dff461c2a19fae14f30bd6f3311851730a8e0e4f001
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\firefox.exe
executable
MD5: d71248051ab7fe0ef84e0bc912009cb6
SHA256: 124dc79272425ced83a8544b9206954adccab1b03b7369c7836fe7da8bb1d72a
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-core-processenvironment-l1-1-0.dll
executable
MD5: 0c700b07c3497df4863c3f2fe37cd526
SHA256: 9f1f26794fd664e0a8b6fbd53bfca33dcf7b0dc37faf3eb7782bc38dff62cd8c
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-core-util-l1-1-0.dll
executable
MD5: 29e1922b32e5312a948e6d8b1b34e2d9
SHA256: 34c5dee6d566252c0ceb7d9a21e24d5f297af2b26c32e0c7808bbd088aa9a6a9
3224
setup.exe
C:\Program Files\Firefox Nightly\mozavutil.dll
executable
MD5: e9ffc0931cb2d024dfe0a0d3ac3cf305
SHA256: 02fc7e89bb914f9c47181ef64455dcd8ff17c464cd4a8ff686e8e61c2c82ca70
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\freebl3.dll
executable
MD5: 2b3cdbc719c49a538ac244525866a95b
SHA256: 87613b67b7f0158e6b7fc28fc66ada87a02be3c06d2fe3ecf94414571fe6e772
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-core-processthreads-l1-1-1.dll
executable
MD5: 95c5b49af7f2c7d3cd0bc14b1e9efacb
SHA256: ff9b51aff7fbec8d7fe5cc478b12492a59b38b068dc2b518324173bb3179a0e1
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-core-timezone-l1-1-0.dll
executable
MD5: c9a55de62e53d747c5a7fddedef874f9
SHA256: b5c725bbb475b5c06cc6cb2a2c3c70008f229659f88fba25ccd5d5c698d06a4b
3224
setup.exe
C:\Program Files\Firefox Nightly\mozglue.dll
executable
MD5: 335764e3d3d492f20ed8665401039ec1
SHA256: b02bd0b7b9feb91f48f382fb1999dd0eaea07820f666a0103b5dcb9c77586a60
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\gmp-clearkey\0.1\clearkey.dll
executable
MD5: 0049e6e173b1ee9c0e538d6ced169991
SHA256: 52a78ad323ac471a873f163d17dd13db18106f1ad74d52a7c70ab0c9264f089c
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-core-interlocked-l1-1-0.dll
executable
MD5: cfe87d58f973daeda4ee7d2cf4ae521d
SHA256: 4997fda5d0e90b8a0ab7da314cb56f25d1450b366701c45c294d8dd3254de483
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-core-sysinfo-l1-1-0.dll
executable
MD5: 887995a73bc7dde7b764afabce57efe7
SHA256: f94210b39cdc812beb7342a47e68673ea2116d0ad9266fcf8d7cedaa9561fc38
3224
setup.exe
C:\Program Files\Firefox Nightly\msvcp140.dll
executable
MD5: 9dda681b0406c3575e666f52cbde4f80
SHA256: 1ecd899f18b58a7915069e17582b8bf9f491a907c3fdf22b1ba1cbb2727b69b3
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\IA2Marshal.dll
executable
MD5: 1fc516f30ee4c7fa051e3fd1beda3fc7
SHA256: 2976f721aefb9f1cf52327f129e577d454f51b220ea795271c6c3b1b26c6554b
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-core-rtlsupport-l1-1-0.dll
executable
MD5: 65fc0b6c2ceff31336983e33b84a9313
SHA256: 966a38ed7034f8d355e1e8772dfc92f23fb3c8a669780ed4ac3b075625d09744
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-core-synch-l1-2-0.dll
executable
MD5: 6e704280d632c2f8f2cadefcae25ad85
SHA256: 758a2f9ef6908b51745db50d89610fe1de921d93b2dbea919bfdba813d5d8893
3224
setup.exe
C:\Program Files\Firefox Nightly\nss3.dll
executable
MD5: 94f0f4ae00d121fec06f75871e82a60c
SHA256: f23529c55415049b1bdaf1a4e7c85a6e67495ca56fe9232eac2292c841d8da47
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\lgpllibs.dll
executable
MD5: d3a6d185e95c50fd874d0756e29ba815
SHA256: 5c0c7d15eda0d6d0ef38d90f7f3ece921202a9e0b7070d480e4b33179a261485
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-core-localization-l1-2-0.dll
executable
MD5: 23bd405a6cfd1e38c74c5150eec28d0a
SHA256: a7fa48de6c06666b80184afee7e544c258e0fb11399ab3fe47d4e74667779f41
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-core-synch-l1-1-0.dll
executable
MD5: c1dcdb0fabc8ae671a7c7a94f42fb79a
SHA256: cc76a4e82e0e0cd08df3bb8f5ad57142305e0f666cc32599d76e363d0b43efcb
3224
setup.exe
C:\Program Files\Firefox Nightly\nssckbi.dll
executable
MD5: cdec5ada0244cf7a9f07d7df8888ab59
SHA256: 3fbe80f615223f797c92abbf5f42b5f3a1708c7a672a13652de374dccb5d6f62
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\libEGL.dll
executable
MD5: 60ec78cb41d5db45f0c7a39394cfe65b
SHA256: c1d1282f3d917a309401c2c02995256e25a614f5fbc0abc5b90795c537489f6a
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-core-libraryloader-l1-1-0.dll
executable
MD5: 0c48220a4485f36feed84ef5dd0a5e9c
SHA256: 2dd4ebaa12cbba142b5d61a0ebf84a14d0d1bb8826ba42b63e303fe6721408df
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-core-string-l1-1-0.dll
executable
MD5: e7a266dd3a2a1e03d8716f92bede582d
SHA256: 339966ae75675a03f628c4ddd5d3218abb36cbcf6ddce83b88c07336d732b8ae
3224
setup.exe
C:\Program Files\Firefox Nightly\nssdbm3.dll
executable
MD5: 60a28755e46d3f6173d16ab6823c8b0e
SHA256: ae609b77b5e168382d334be43d7b591377f44e340b76d8cc6959bab31ae04720
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\maintenanceservice_installer.exe
executable
MD5: b777fa71508b54f42f06fbe6dd08736b
SHA256: 52c8566c95a5637acb01af196e62281727416959b0ee1309d6a645856f54e99a
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-core-heap-l1-1-0.dll
executable
MD5: ff8026dab5d3dabca8f72b6fa7d258fa
SHA256: 535e9d20f00a2f1a62f843a4a26cfb763138d5dfe358b0126d33996fba9ca4d1
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-core-rtlsupport-l1-1-0.dll
executable
MD5: 65fc0b6c2ceff31336983e33b84a9313
SHA256: 966a38ed7034f8d355e1e8772dfc92f23fb3c8a669780ed4ac3b075625d09744
3224
setup.exe
C:\Program Files\Firefox Nightly\pingsender.exe
executable
MD5: f14eedebe15d2a855c68edf20c34c509
SHA256: 9cfa7a397677e654383fa44652a22a914ecac17693b0bbf49ba802c338b1a4ed
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\maintenanceservice.exe
executable
MD5: 5cea9f2e394a47ed6e35ad9604db0eda
SHA256: 21a38fea2f789368f07f72b0e0de3049a70cb1587e90c994a106589205ecb63e
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-core-namedpipe-l1-1-0.dll
executable
MD5: 990ac84ae2d83eeb532a28fe29602827
SHA256: dbd788b1c5694d65fa6f6e2202bfabb30adf77eb1973ceb9a737efb16e9edae2
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-core-profile-l1-1-0.dll
executable
MD5: cedefd460bc1e36ae111668f3b658052
SHA256: f941c232964d01e4680e54ab04955ec6264058011b03889fe29db86509511eba
3224
setup.exe
C:\Program Files\Firefox Nightly\plugin-container.exe
executable
MD5: 0a6354043d2926376f8a378c45a6637f
SHA256: b5e2177a21408177e4d946e392351931c7959ee3bc91b55a7c4f8a153ae66dc3
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\libGLESv2.dll
executable
MD5: 0068f1b5a48451f65a3713e60f7c387e
SHA256: 1c5f3b3a4e98ce041e6727cf43923b614e9d167ee49b7d81ad817331001b3cee
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-core-file-l2-1-0.dll
executable
MD5: 3f224766fe9b090333fdb43d5a22f9ea
SHA256: ae5e73416eb64bc18249ace99f6847024eceea7ce9c343696c84196460f3a357
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-core-processthreads-l1-1-1.dll
executable
MD5: 95c5b49af7f2c7d3cd0bc14b1e9efacb
SHA256: ff9b51aff7fbec8d7fe5cc478b12492a59b38b068dc2b518324173bb3179a0e1
3224
setup.exe
C:\Program Files\Firefox Nightly\plugin-hang-ui.exe
executable
MD5: b4e0e25c85c1751c57d224fdb3406794
SHA256: 99357779c1fc5bf04ba0020173a2c0c57f0537e4c93720aec61bab0c25efe01e
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\minidump-analyzer.exe
executable
MD5: 08acace59a94aadfd2d33a6d69eb1210
SHA256: b52a83afbcd0f9e8e22b9c37fc573eedabaab8c1987f4111af3f95374a07f784
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-core-handle-l1-1-0.dll
executable
MD5: 18fd51821d0a6f3e94e3fa71db6de3af
SHA256: dba84e704ffe5fcd42548856258109dc77c6a46fd0b784119a3548ec47e5644b
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-core-processthreads-l1-1-0.dll
executable
MD5: 1dda9cb13449ce2c6bb670598fc09dc8
SHA256: 4f187f1b4b14763360c325df6b04d3ec3cc6d2cecc9b796bc52a6c7196b0b2cc
3224
setup.exe
C:\Program Files\Firefox Nightly\qipcap.dll
executable
MD5: 310743a476dd4c5835b51e699bbf8aca
SHA256: a72f0520367b5f0d111db659a67e736fcdaff1651d0858b2a0edb6f999c9a6d9
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\mozavutil.dll
executable
MD5: e9ffc0931cb2d024dfe0a0d3ac3cf305
SHA256: 02fc7e89bb914f9c47181ef64455dcd8ff17c464cd4a8ff686e8e61c2c82ca70
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-core-file-l1-2-0.dll
executable
MD5: 79ee4a2fcbe24e9a65106de834ccda4a
SHA256: 9f7bda59faafc8a455f98397a63a7f7d114efc4e8a41808c791256ebf33c7613
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-core-processenvironment-l1-1-0.dll
executable
MD5: 0c700b07c3497df4863c3f2fe37cd526
SHA256: 9f1f26794fd664e0a8b6fbd53bfca33dcf7b0dc37faf3eb7782bc38dff62cd8c
3224
setup.exe
C:\Program Files\Firefox Nightly\softokn3.dll
executable
MD5: 5453860353403631326d8f35e9573ff4
SHA256: b9176d4e3b076ee45d11f8499d13e4b90415e26b8f12d93e8999144bd3cfd920
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\mozavcodec.dll
executable
MD5: 2a27374ca50efef95202a46782295611
SHA256: 37e2ed9e7fce8d20cfa56dff461c2a19fae14f30bd6f3311851730a8e0e4f001
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-core-file-l1-1-0.dll
executable
MD5: eefe86b5a3ab256beed8621a05210df2
SHA256: 1d1c11fc1ad1febf9308225c4ccf0431606a4ab08680ba04494d276cb310bf15
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-core-namedpipe-l1-1-0.dll
executable
MD5: 990ac84ae2d83eeb532a28fe29602827
SHA256: dbd788b1c5694d65fa6f6e2202bfabb30adf77eb1973ceb9a737efb16e9edae2
3224
setup.exe
C:\Program Files\Firefox Nightly\ucrtbase.dll
executable
MD5: 6343ff7874ba03f78bb0dfe20b45f817
SHA256: 6f8f05993b8a25cadf5e301e58194c4d23402e467229b12e40956e4f128588b3
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\mozglue.dll
executable
MD5: 335764e3d3d492f20ed8665401039ec1
SHA256: b02bd0b7b9feb91f48f382fb1999dd0eaea07820f666a0103b5dcb9c77586a60
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-core-errorhandling-l1-1-0.dll
executable
MD5: d91bf81cf5178d47d1a588b0df98eb24
SHA256: f8e3b45fd3e22866006f16a9e73e28b5e357f31f3c275b517692a5f16918b492
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-core-memory-l1-1-0.dll
executable
MD5: 3940167ffb4383992e73f9a10e4b8b1e
SHA256: ec573431338371504b7b9e57b2d91382b856aabf25d2b4ad96486efb794c198e
3224
setup.exe
C:\Program Files\Firefox Nightly\updater.exe
executable
MD5: 24c99c1c7f10408f6a9f2d4b3c05bfe2
SHA256: 62c5d5416497be4f7e367d4235bd9537bc268513a031e2abaf0da2a3876bbdaf
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\msvcp140.dll
executable
MD5: 9dda681b0406c3575e666f52cbde4f80
SHA256: 1ecd899f18b58a7915069e17582b8bf9f491a907c3fdf22b1ba1cbb2727b69b3
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\AccessibleHandler.dll
executable
MD5: 8edbaf9b320d6812c7385b18b08565a0
SHA256: 5d0cefa4cf46ca22443bad43f877943939dbeba8a3f77f6be5c3cb624e2089e0
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-core-libraryloader-l1-1-0.dll
executable
MD5: 0c48220a4485f36feed84ef5dd0a5e9c
SHA256: 2dd4ebaa12cbba142b5d61a0ebf84a14d0d1bb8826ba42b63e303fe6721408df
3224
setup.exe
C:\Program Files\Firefox Nightly\vcruntime140.dll
executable
MD5: e79ef25890b214b13a7473e52330d0ec
SHA256: 7a114a9c1ca86e532d7f38e81c48f24ef2bfe6084f6056b3d4c3566ba43003d6
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\nss3.dll
executable
MD5: 94f0f4ae00d121fec06f75871e82a60c
SHA256: f23529c55415049b1bdaf1a4e7c85a6e67495ca56fe9232eac2292c841d8da47
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-core-debug-l1-1-0.dll
executable
MD5: 879920c7fa905036856bcb10875121d9
SHA256: 7e4cba620b87189278b5631536cdad9bfda6e12abd8e4eb647cb85369a204fe8
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-core-localization-l1-2-0.dll
executable
MD5: 23bd405a6cfd1e38c74c5150eec28d0a
SHA256: a7fa48de6c06666b80184afee7e544c258e0fb11399ab3fe47d4e74667779f41
3224
setup.exe
C:\Program Files\Firefox Nightly\uninstall\helper.exe
executable
MD5: 4cb1f227aba0bd3355c08d7145809eab
SHA256: e405df089764e9d8b9311034ffeb71327530647e2cfb329cb7aa4d54fdd5fdd7
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\nssdbm3.dll
executable
MD5: 60a28755e46d3f6173d16ab6823c8b0e
SHA256: ae609b77b5e168382d334be43d7b591377f44e340b76d8cc6959bab31ae04720
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-core-datetime-l1-1-0.dll
executable
MD5: 8894176af3ea65a09ae5cf4c0e6ff50f
SHA256: c64b7c6400e9bacc1a4f1baed6374bfbce9a3f8cf20c2d03f81ef18262f89c60
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-core-heap-l1-1-0.dll
executable
MD5: ff8026dab5d3dabca8f72b6fa7d258fa
SHA256: 535e9d20f00a2f1a62f843a4a26cfb763138d5dfe358b0126d33996fba9ca4d1
3224
setup.exe
C:\Program Files\Firefox Nightly\gmp-clearkey\0.1\clearkey.dll
executable
MD5: 0049e6e173b1ee9c0e538d6ced169991
SHA256: 52a78ad323ac471a873f163d17dd13db18106f1ad74d52a7c70ab0c9264f089c
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\nssckbi.dll
executable
MD5: cdec5ada0244cf7a9f07d7df8888ab59
SHA256: 3fbe80f615223f797c92abbf5f42b5f3a1708c7a672a13652de374dccb5d6f62
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\AccessibleMarshal.dll
executable
MD5: 15634e1732860958e6f331011d504a84
SHA256: 11d6729a2ae74e7a4efe0dfbe466b555b3fee0b999a685023f5c4df16adc969a
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-core-interlocked-l1-1-0.dll
executable
MD5: cfe87d58f973daeda4ee7d2cf4ae521d
SHA256: 4997fda5d0e90b8a0ab7da314cb56f25d1450b366701c45c294d8dd3254de483
3224
setup.exe
C:\Users\admin\AppData\Local\Temp\nsiEBED.tmp\AccessControl.dll
executable
MD5: c65ca3d8f5ba6ccd4a8aed940418cb6b
SHA256: efa1551cd9e8f470c680671d2a3c45060b95c28570efa8bee05c28aff2920525
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\plugin-hang-ui.exe
executable
MD5: b4e0e25c85c1751c57d224fdb3406794
SHA256: 99357779c1fc5bf04ba0020173a2c0c57f0537e4c93720aec61bab0c25efe01e
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-core-console-l1-1-0.dll
executable
MD5: aabbb38c4110cc0bf7203a567734a7e7
SHA256: 24b07028c1e38b9ca2f197750654a0dfb7d33c2e52c9dd67100609499e8028db
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-core-file-l2-1-0.dll
executable
MD5: 3f224766fe9b090333fdb43d5a22f9ea
SHA256: ae5e73416eb64bc18249ace99f6847024eceea7ce9c343696c84196460f3a357
3224
setup.exe
C:\Users\admin\AppData\Local\Temp\nsiEBED.tmp\nsExec.dll
executable
MD5: b55f7f1b17c39018910c23108f929082
SHA256: c4c6fe032f3cd8b31528d7b99661f85ee22cb78746aee98ec568431d4f5043f7
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\plugin-container.exe
executable
MD5: 0a6354043d2926376f8a378c45a6637f
SHA256: b5e2177a21408177e4d946e392351931c7959ee3bc91b55a7c4f8a153ae66dc3
3784
setup-stub.exe
C:\Users\admin\AppData\Local\Temp\nsb9988.tmp\CertCheck.dll
executable
MD5: 2979f933cbbac19cfe35b1fa02cc95a4
SHA256: bcb6572fcb846d5b4459459a2ef9bde97628782b983eb23fadacbaec76528e6f
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-core-handle-l1-1-0.dll
executable
MD5: 18fd51821d0a6f3e94e3fa71db6de3af
SHA256: dba84e704ffe5fcd42548856258109dc77c6a46fd0b784119a3548ec47e5644b
3224
setup.exe
C:\Users\admin\AppData\Local\Temp\nsiEBED.tmp\nsF5A3.tmp
executable
MD5: 6b1a2a0cf42150f657c485ed303f2aa5
SHA256: f320491b503bd30990a16dada0d5ab11c0edce1cd2194ed6c3046f276b5c0552
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\qipcap.dll
executable
MD5: 310743a476dd4c5835b51e699bbf8aca
SHA256: a72f0520367b5f0d111db659a67e736fcdaff1651d0858b2a0edb6f999c9a6d9
3784
setup-stub.exe
C:\Users\admin\AppData\Local\Temp\nsb9988.tmp\InetBgDL.dll
executable
MD5: 73a0bec837004bc5ae5cd0a5b0d3bcf8
SHA256: 0dd38281a824298100b2bc89ee5b8a5c9cd9ec7a3b051dff42037a891fa7c534
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-core-file-l1-2-0.dll
executable
MD5: 79ee4a2fcbe24e9a65106de834ccda4a
SHA256: 9f7bda59faafc8a455f98397a63a7f7d114efc4e8a41808c791256ebf33c7613
3040
maintenanceservice_installer.exe
C:\Users\admin\AppData\Local\Temp\nscF6AB.tmp\System.dll
executable
MD5: 17ed1c86bd67e78ade4712be48a7d2bd
SHA256: bd046e6497b304e4ea4ab102cab2b1f94ce09bde0eebba4c59942a732679e4eb
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\pingsender.exe
executable
MD5: f14eedebe15d2a855c68edf20c34c509
SHA256: 9cfa7a397677e654383fa44652a22a914ecac17693b0bbf49ba802c338b1a4ed
3784
setup-stub.exe
C:\Users\admin\AppData\Local\Temp\nsb9988.tmp\nsDialogs.dll
executable
MD5: 42b064366f780c1f298fa3cb3aeae260
SHA256: c13104552b8b553159f50f6e2ca45114493397a6fa4bf2cbb960c4a2bbd349ab
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-core-errorhandling-l1-1-0.dll
executable
MD5: d91bf81cf5178d47d1a588b0df98eb24
SHA256: f8e3b45fd3e22866006f16a9e73e28b5e357f31f3c275b517692a5f16918b492
3040
maintenanceservice_installer.exe
C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
executable
MD5: 5cea9f2e394a47ed6e35ad9604db0eda
SHA256: 21a38fea2f789368f07f72b0e0de3049a70cb1587e90c994a106589205ecb63e
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\softokn3.dll
executable
MD5: 5453860353403631326d8f35e9573ff4
SHA256: b9176d4e3b076ee45d11f8499d13e4b90415e26b8f12d93e8999144bd3cfd920
3784
setup-stub.exe
C:\Users\admin\AppData\Local\Temp\nsb9988.tmp\UserInfo.dll
executable
MD5: 1b446b36f5b4022d50ffdc0cf567b24a
SHA256: 2862c7bc7f11715cebdea003564a0d70bf42b73451e2b672110e1392ec392922
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-core-file-l1-1-0.dll
executable
MD5: eefe86b5a3ab256beed8621a05210df2
SHA256: 1d1c11fc1ad1febf9308225c4ccf0431606a4ab08680ba04494d276cb310bf15
3040
maintenanceservice_installer.exe
C:\Program Files\Mozilla Maintenance Service\Uninstall.exe
executable
MD5: 7acca32d94475dc532fbeb7fa92cf3fb
SHA256: fa128a745986650338310b8a38ef627818445134ce04168b9759005c7f5e6487
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\ucrtbase.dll
executable
MD5: 6343ff7874ba03f78bb0dfe20b45f817
SHA256: 6f8f05993b8a25cadf5e301e58194c4d23402e467229b12e40956e4f128588b3
3784
setup-stub.exe
C:\Users\admin\AppData\Local\Temp\nsb9988.tmp\UAC.dll
executable
MD5: 113c5f02686d865bc9e8332350274fd1
SHA256: 0d21041a1b5cd9f9968fc1d457c78a802c9c5a23f375327e833501b65bcd095d
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-core-datetime-l1-1-0.dll
executable
MD5: 8894176af3ea65a09ae5cf4c0e6ff50f
SHA256: c64b7c6400e9bacc1a4f1baed6374bfbce9a3f8cf20c2d03f81ef18262f89c60
3224
setup.exe
C:\Users\admin\AppData\Local\Temp\nsiEBED.tmp\ShellLink.dll
executable
MD5: d62d3e349689811f838dd10fb216eba1
SHA256: 5d103419245e2a5f124a96cace25d6836b2398edc0aa3919829b0fd6ad8b5d6a
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\uninstall\helper.exe
executable
MD5: 4cb1f227aba0bd3355c08d7145809eab
SHA256: e405df089764e9d8b9311034ffeb71327530647e2cfb329cb7aa4d54fdd5fdd7
3784
setup-stub.exe
C:\Users\admin\AppData\Local\Temp\nsb9988.tmp\System.dll
executable
MD5: 17ed1c86bd67e78ade4712be48a7d2bd
SHA256: bd046e6497b304e4ea4ab102cab2b1f94ce09bde0eebba4c59942a732679e4eb
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\updater.exe
executable
MD5: 24c99c1c7f10408f6a9f2d4b3c05bfe2
SHA256: 62c5d5416497be4f7e367d4235bd9537bc268513a031e2abaf0da2a3876bbdaf
3224
setup.exe
C:\Users\admin\AppData\Local\Temp\nsiEBED.tmp\ServicesHelper.dll
executable
MD5: d0b5c37ca029913314dfc21924423c6f
SHA256: 6d2f1df00e70097a667f6020205bbfea67a4fd5e0c244f0400752b4671c0a3f3
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\vcruntime140.dll
executable
MD5: e79ef25890b214b13a7473e52330d0ec
SHA256: 7a114a9c1ca86e532d7f38e81c48f24ef2bfe6084f6056b3d4c3566ba43003d6
3904
setup-stub.exe
C:\Users\admin\AppData\Local\Temp\nso937D.tmp\UAC.dll
executable
MD5: 113c5f02686d865bc9e8332350274fd1
SHA256: 0d21041a1b5cd9f9968fc1d457c78a802c9c5a23f375327e833501b65bcd095d
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\setup.exe
executable
MD5: e8e525c2e19f50678db0f8160be753f5
SHA256: 560d2c997a42b444136dfc33d197966e036ed830d7ad59545938c76197ce4ab2
3224
setup.exe
C:\Users\admin\AppData\Local\Temp\nsiEBED.tmp\InvokeShellVerb.dll
executable
MD5: 1a6e1ea7e90e50d9a18e034e7cde41a6
SHA256: 2fddc8b8ab4bf4838ea374d25e4cb9e83362c3f1cb24f380137d14c814d56169
3224
setup.exe
C:\Users\admin\AppData\Local\Temp\nsiEBED.tmp\UAC.dll
executable
MD5: 113c5f02686d865bc9e8332350274fd1
SHA256: 0d21041a1b5cd9f9968fc1d457c78a802c9c5a23f375327e833501b65bcd095d
3904
setup-stub.exe
C:\Users\admin\AppData\Local\Temp\nso937D.tmp\System.dll
executable
MD5: 17ed1c86bd67e78ade4712be48a7d2bd
SHA256: bd046e6497b304e4ea4ab102cab2b1f94ce09bde0eebba4c59942a732679e4eb
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-core-debug-l1-1-0.dll
executable
MD5: 879920c7fa905036856bcb10875121d9
SHA256: 7e4cba620b87189278b5631536cdad9bfda6e12abd8e4eb647cb85369a204fe8
3224
setup.exe
C:\Users\admin\AppData\Local\Temp\nsiEBED.tmp\liteFirewallW.dll
executable
MD5: 2c8980aa8fad2477864defb3fde39ca4
SHA256: c58dc0e0ef677f88290ce8bbd014d0ef3f70e4fa07f484993e26352102462c2c
3224
setup.exe
C:\Users\admin\AppData\Local\Temp\nsiEBED.tmp\CityHash.dll
executable
MD5: 737379945745bb94f8a0dadcc18cad8d
SHA256: d3d7b3d7a7941d66c7f75257be90b12ac76f787af42cd58f019ce0280972598a
2940
Firefox Installer.de.exe
C:\Users\admin\AppData\Local\Temp\7zSC7BF5EB9\setup-stub.exe
executable
MD5: 23827ae7e1fecacae78362396ed556c8
SHA256: 6d95a9593bc4726556535c177c8e7f9be120bf6a195d4cdfc15fb49c29e718c0
3224
setup.exe
C:\Program Files\Firefox Nightly\AccessibleHandler.dll
executable
MD5: 8edbaf9b320d6812c7385b18b08565a0
SHA256: 5d0cefa4cf46ca22443bad43f877943939dbeba8a3f77f6be5c3cb624e2089e0
3224
setup.exe
C:\Users\admin\AppData\Local\Temp\nsiEBED.tmp\System.dll
executable
MD5: 17ed1c86bd67e78ade4712be48a7d2bd
SHA256: bd046e6497b304e4ea4ab102cab2b1f94ce09bde0eebba4c59942a732679e4eb
3224
setup.exe
C:\Program Files\Firefox Nightly\api-ms-win-core-console-l1-1-0.dll
executable
MD5: aabbb38c4110cc0bf7203a567734a7e7
SHA256: 24b07028c1e38b9ca2f197750654a0dfb7d33c2e52c9dd67100609499e8028db
3224
setup.exe
C:\Program Files\Firefox Nightly\AccessibleMarshal.dll
executable
MD5: 15634e1732860958e6f331011d504a84
SHA256: 11d6729a2ae74e7a4efe0dfbe466b555b3fee0b999a685023f5c4df16adc969a
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\api-ms-win-crt-utility-l1-1-0.dll
executable
MD5: 70e9104e743069b573ca12a3cd87ec33
SHA256: 7e6b33a4c0c84f18f2be294ec63212245af4fd8354636804ffe5ee9a0d526d95
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\45997FE1A095857037D1F7518C7660CCAFD30135
binary
MD5: 2624e8f6c15bce4e0113a6ca56021dc0
SHA256: 0b0484d8aa090c8cf396611810e025f7888e3ec28f56545ec08d4d714102c952
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\storage\permanent\chrome\idb\2918063365piupsah.sqlite-journal
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\OfflineCache\index.sqlite-journal
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\storage\permanent\chrome\idb\1451318868ntouromlalnodry--epcr.sqlite
sqlite
MD5: 8fe224c77b57288d1c119cc2425e6bfc
SHA256: ae13b55b2dac709640a9952389216d738a15f53ee4f63880820851b762d6ac98
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\storage\permanent\chrome\idb\1451318868ntouromlalnodry--epcr.sqlite-wal
binary
MD5: a347d5a4fcc2057b2adb24e4a095fba7
SHA256: e125378fb1e684fa5aef5d07d473b9dd478687a48c92d9f5834a2902f5649174
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\storage\permanent\chrome\idb\1451318868ntouromlalnodry--epcr.sqlite-shm
binary
MD5: 5f6711bd73d49c207f45009dd647d98d
SHA256: c928d2c6cb060d19686fc886f424693a3f717fcca9c0fbfd105dee6cb93c4e17
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\storage\permanent\chrome\idb\1451318868ntouromlalnodry--epcr.sqlite-journal
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\content-prefs.sqlite-journal
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\storage\permanent\chrome\.metadata-v2
binary
MD5: c77db8e413c4153d5d27a9edb98d9d75
SHA256: 4c11d328dbd1ae8a3c66f05e80f3d7043a7950ccca502c1439b2ef1f42e77ee0
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\storage\permanent\chrome\.metadata-v2-tmp
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\storage\permanent\chrome\.metadata
binary
MD5: 883475e2f5ba9cd745bdad82bef9cb71
SHA256: 6a33bedc2f7dc8cbd61ec1948c290d5768fae81cabc2ce81f9c36e2fb174d45f
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\storage\permanent\chrome\.metadata-tmp
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\EC024C12E541096938D5B1136AC6484B3538451C
der
MD5: 90ecc7bed3152ba39aa07acdeb6ec3e8
SHA256: ced83b31fe2c9bfb208e40c967ad7505eff1e8273452e80d608ecb2a9ebabd70
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\storage.sqlite
sqlite
MD5: a55f6552ab8cccace674d611992e8d29
SHA256: 4588b397913b47169226adbabebeb3e1af351962d21e6b95c57292ce3270b98b
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\storage.sqlite-journal
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\prefs.js
text
MD5: 1497d6147ed98d95bff40f45fce8804c
SHA256: eb41e116e8429fca66fb0972957b20d4f77094a2057ef97532ab294bfa28cbd1
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cert9.db
sqlite
MD5: bafdbd7822f792c49e562b88067210c2
SHA256: ba28f570c4a4000644375138de01aef0505c216f90c93e42619de19aac809f81
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\sessionCheckpoints.json
text
MD5: c4ab2ee59ca41b6d6a6ea911f35bdc00
SHA256: 00ad9799527c3fd21f3a85012565eae817490f3e0d417413bf9567bb5909f6a2
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\sessionCheckpoints.json.tmp
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\extensions.json.tmp
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\search.json.mozlz4
jsonlz4
MD5: c54ccb2c41fbc56ffe4a40c02190e4ba
SHA256: 29fbb8c49ffb7c1309634e6173724e2d66c1df9b3ea16136dc011c8992012e41
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\handlers.json.tmp
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\handlers.json
text
MD5: 89d1ec16735279178d1a40f6b780821d
SHA256: 77e5d5fb436c3733bc3ee724619608d7bed596f6698eb160f064cee8e371a943
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\webappsstore.sqlite-journal
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\addons.json.tmp
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\addons.json
text
MD5: 55b5026150dc3a60d07b8bea2ae0f983
SHA256: a13174f20dde2249a49853d6eae20f07ffc4ddf1e3007ab3e4911e511ecffc1c
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\addonStartup.json.lz4
jsonlz4
MD5: 1033befd1f149a5fb65b93621af6306f
SHA256: bd9eaa64c7b69ef1abbb488b4fca5d551c210fd92b8143bee47387771bba0e96
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\extensions.json
text
MD5: 5ed60f8193c2d4083d56ad2cb6eff248
SHA256: 3d912db1134d8ab6f3d4076804ae3a8063173ccef1575399c742cb9de14e6f92
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\prefs.js
text
MD5: a8c6990a85c492de13b591a09e98d904
SHA256: 0f614f3793d329c531caa291b7163f80dd637ce9ee0a42364643157b0cc0e1d8
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\key4.db
sqlite
MD5: 02cebc9da177fe242f4ab2c9b0c1fe2f
SHA256: ce3e36c27c42c3e0e7c472ea0c6f02c467fd83865058ef91976980f3e23a8722
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\key4.db-journal
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\pkcs11.txt
text
MD5: 94ac4931dfb88c0b8c7807d07778a564
SHA256: e1a2a0d1b6a4d178738ab59b62630348b12f58a7c59a7fd680b14289d6c1da43
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\prefs.js
text
MD5: cd1f5ac2aa6432631671acfa13cf3e15
SHA256: 0915e3e1c9c999fbeb2d07a76ee35d75d1c63bb07f9989405edcb6e71c50f2e5
2300
firefox.exe
C:\ProgramData\Mozilla\updates\6F193CCC56814779\update-config.json
text
MD5: 73fb7ee28411ca10abcf6cba977d101e
SHA256: 849d46105aeb4cafcf5e3b9ed655d08afdcc82e60af3460fe316792292aae1aa
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\times.json
text
MD5: 1a344c9ff5f8eb8a1248577c7ac99e26
SHA256: 09d3ddf44952786f2b6da8b54523ca1d7c3bcf288ad08e8f54f7888287c73aa2
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\times.json.tmp
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\prefs.js
text
MD5: b5a60247af25cf4b13ccdcef0ee7ada7
SHA256: e9b52f42aec6dfc5f782a5169bb73b2b20ca9c7de1ad682b7a876b3590596186
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\pluginreg.dat
text
MD5: bb41a5eee03ef43a7c1f9fcf0924ea7c
SHA256: b7251b1613038b056a60bc667d0a8982238c9b784485ce2b2e5d5ab302441dcd
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\pluginreg.dat.tmp
––
MD5:  ––
SHA256:  ––
3784
setup-stub.exe
C:\Users\admin\AppData\Local\Temp\~DFDDE4D83F59BDA1BD.TMP
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\sessionCheckpoints.json
text
MD5: ea8b62857dfdbd3d0be7d7e4a954ec9a
SHA256: 792955295ae9c382986222c6731c5870bd0e921e7f7e34cc4615f5cd67f225da
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\prefs.js
text
MD5: 8d2bb35d1b7cdea90bedae4aad6e27bd
SHA256: eacc01563ea6b6e7e0fb70b63e1e36ca1bde1d4ab04ac61176affa960f955d58
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\favicons.sqlite-shm
binary
MD5: b7c14ec6110fa820ca6b65f5aec85911
SHA256: fd4c9fda9cd3f9ae7c962b0ddf37232294d55580e1aa165aa06129b8549389eb
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\favicons.sqlite
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\favicons.sqlite-wal
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\favicons.sqlite-journal
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\places.sqlite-journal
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\permissions.sqlite-journal
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\prefs.js
text
MD5: 2699f8427c2cfe6e976571f3a36e362e
SHA256: 3eaad6336c66eb1076152f38eafe4bf814fc782e7485371f6f1c214ef4b4e19d
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\extensions.json
text
MD5: 1aa014360f1b71cea0ddca0dc406906e
SHA256: 85e0da6a3c0b9ce707963a35da71fac8276a63dba5455fc44a2f22aff1977138
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\prefs.js
text
MD5: 5a3be797ff5ad6914c6788c9d04b2c3f
SHA256: 70f41b873d1ab04e3117b679d1739b93889eb88778a7b06fb0be145bc6f9d93e
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cookies.sqlite-journal
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\blocklist.xml
xml
MD5: 4bae9c31d8bba2f2768a616ff9c1be6a
SHA256: c1136ea42ac051895c334a58020f11f3728ce11623176fe324bed8979974f51d
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\prefs.js
text
MD5: 1fa078f7482c86d2dfd5306ad8b28f3d
SHA256: a350b16d813eb083a5c23ee94980856bdddc2bb3766e1015834ef4a07b6709cb
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cookies.sqlite
sqlite
MD5: 34d80d7db6e2a275c754095c23104747
SHA256: f13ff2e9a8e1dbf52e32ea26f55e39cdb609874129ed0bc03419125c2617d790
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\compatibility.ini
ini
MD5: 7fa56877d5a50bcf138d61e363fea547
SHA256: 609787be3c6b6fa8f3f7003b834dbf423e98735c6cf19b25346f27252ec23558
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\times.json
text
MD5: 926bfed7d01c193e820cda0059632489
SHA256: a3c1602fa2ef6d9f7697dc3c8aaeb231aa0735d6c22d31d3e307b4337ab8d68b
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\profiles.ini
text
MD5: b2d435c2e7f7cb81c8f40928cbd76190
SHA256: fa93a9bdbb392c2aa7b93a25c58b5421d3980c183e7e104778c25065f0118eb0
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\installs.ini
text
MD5: 9cdc618170c8e0ee0d427d5af7fec86d
SHA256: e7e9d95c05edc0e04c729e714f9bb0a9dc6a9f434ffcd453a33dcb4e8d47f35d
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Crash Reports\InstallTime20190210094433
text
MD5: a206d41303ca810c3fabd53f8d39a2ab
SHA256: 74472cf2852caf0764a6e5b1654f5af269f6c05f6df80bcf1d848c7f33df3237
3784
setup-stub.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\postSigningData
text
MD5: 15cb83fdf00447d83e27cfb37dd0c445
SHA256: e9f2fe73aa783ca4fda51b889bd634974b5deb2dae73e38fca8816a007041527
3784
setup-stub.exe
C:\Program Files\Firefox Nightly\install.log
text
MD5: c352f27cc90c64d305888f71aa609aeb
SHA256: d4c5915be51098752d0fe5c16bc45f502f57fc4fe57e175b8014619b1472f9e2
3784
setup-stub.exe
C:\Program Files\Firefox Nightly\install.tmp
––
MD5:  ––
SHA256:  ––
3224
setup.exe
C:\Program Files\Firefox Nightly\install.log
text
MD5: c352f27cc90c64d305888f71aa609aeb
SHA256: d4c5915be51098752d0fe5c16bc45f502f57fc4fe57e175b8014619b1472f9e2
3224
setup.exe
C:\Program Files\Firefox Nightly\uninstall\uninstall.log
text
MD5: ac500c47eb9522d32074775b491c1486
SHA256: e74c25708d8354069ae070bff889cfc90e7d69fba5a0c7d9478bf0b7207ac371
3784
setup-stub.exe
C:\Program Files\Firefox Nightly\install.tmp
text
MD5: c352f27cc90c64d305888f71aa609aeb
SHA256: d4c5915be51098752d0fe5c16bc45f502f57fc4fe57e175b8014619b1472f9e2
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\prefs.js
text
MD5: ea49d8106699fc9e900d4f671c9aeac6
SHA256: f5f6043e570feb1df9fe604b51ae8f06fc1c7209b337126001c35e5e017d30c3
3224
setup.exe
C:\Users\admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Firefox Nightly.lnk
lnk
MD5: b85aa2cc8a221765510799a182769c66
SHA256: 3b718f86ef792e4f1edabe94c2bc968499cd93995667919ebabb4377925e63df
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\mozplugin-block-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
3224
setup.exe
C:\Program Files\Firefox Nightly\uninstall\shortcuts_log.ini
text
MD5: ac784c412a2ab8f08c77841be7932d9c
SHA256: be99edc362d04bd900bda40fa98d1eb23294809f0562390db344cbc42a27c2bd
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\mozstd-trackwhite-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
3224
setup.exe
C:\Users\Public\Desktop\Firefox Nightly.lnk~RF19f9a8.TMP
lnk
MD5: 813cc2c55039d1e45b72eba8cdefbcc3
SHA256: 000a7e2d7e9942248e3a3ac983f66bd1c528737e1b245b8a06b0af46b5b22022
3224
setup.exe
C:\Users\Public\Desktop\Firefox Nightly.lnk
lnk
MD5: 813cc2c55039d1e45b72eba8cdefbcc3
SHA256: 000a7e2d7e9942248e3a3ac983f66bd1c528737e1b245b8a06b0af46b5b22022
3224
setup.exe
C:\Users\Public\Desktop\~irefox Nightly.tmp
––
MD5:  ––
SHA256:  ––
3224
setup.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox Nightly.lnk~RF19f989.TMP
lnk
MD5: b85aa2cc8a221765510799a182769c66
SHA256: 3b718f86ef792e4f1edabe94c2bc968499cd93995667919ebabb4377925e63df
3224
setup.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox Nightly.lnk
lnk
MD5: b85aa2cc8a221765510799a182769c66
SHA256: 3b718f86ef792e4f1edabe94c2bc968499cd93995667919ebabb4377925e63df
3224
setup.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\~irefox Nightly.tmp
––
MD5:  ––
SHA256:  ––
2940
Firefox Installer.de.exe
C:\Users\admin\AppData\Local\Temp\7zSC7BF5EB9\postSigningData
text
MD5: 15cb83fdf00447d83e27cfb37dd0c445
SHA256: e9f2fe73aa783ca4fda51b889bd634974b5deb2dae73e38fca8816a007041527
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\mozstd-trackwhite-digest256.sbstore
binary
MD5: e861c8d8cdb44a662ac1556cf843716b
SHA256: d5cc64e07eef3c9165a041584b7e729bee1dd7f1f4b3a9763fb7fd0853be5c56
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\mozplugin-block-digest256.sbstore
binary
MD5: d6acf2573e12afdd7939568804d3fcc1
SHA256: 5525cbf8f8dc41d19ac632ed324e55293a510ae0eeba16d0e3f33c707aa58a0c
2120
maintenanceservice.exe
C:\Program Files\Mozilla Maintenance Service\logs\maintenanceservice-install.log
text
MD5: aaf3d6d1ed9fe0fd99717b54aaab1669
SHA256: e328e909562edbabfe3b89dc03f212daf09573605436f56783f282a81180329a
2120
maintenanceservice.exe
C:\Program Files\Mozilla Maintenance Service\logs\log8e801dee-4860-4772-a01c-c551cb3f5be9
––
MD5:  ––
SHA256:  ––
3784
setup-stub.exe
C:\Program Files\Firefox Nightly\install.tmp
text
MD5: 8e9181aa7699c0f0cfdb28f6ba1472c1
SHA256: 67c9e241c6254a06697b569f694247efeb5490f2477428374e08ccef2b3c9dfe
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\content-track-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
3040
maintenanceservice_installer.exe
C:\Program Files\Mozilla Maintenance Service\updater.ini
binary
MD5: c96a5c1fc045307dd34f2fba0d06e2b9
SHA256: b7e379c825e124b2c5dc8ac9fe5d25a4960b8b36fec92d1b82e1be0d0694b3a8
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\block-flashsubdoc-digest256.sbstore
binary
MD5: 04824a1f92353f43ebb9e7f74b7476fd
SHA256: b48e58ebab82e4c376f16150a3fff850c1111ff1f5985d68819cfd6f0db159d2
3784
setup-stub.exe
C:\Program Files\Firefox Nightly\install.tmp
text
MD5: 91a67d1c9d26fa100e28e77ecc9119a1
SHA256: 77c2d5361f861158a02d6893326e46b0a7ffbcb17e1b365c7652c463170ef3a8
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\block-flashsubdoc-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\content-track-digest256.sbstore
binary
MD5: bb7ecacd4ebe6ba367088bbe749c8a63
SHA256: b76343878ff583d2c42357433b3a0e616664860d38db455a21e69a2deb6d711d
3784
setup-stub.exe
C:\Program Files\Firefox Nightly\install.tmp
text
MD5: ca03de2f505bdcfa709f408ecd1672ca
SHA256: 720f5eac35206d537088f800dd1aa37be3463ff06733ab26fd3319b6740ee711
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\block-flash-digest256.sbstore
binary
MD5: 0e8fe60ccd7e9b4c32589a5743a95302
SHA256: 2b124d4026850a3cffd28dbacb58aec28f7dcd4d40bc14e52bbe96d60ce4e749
3224
setup.exe
C:\Program Files\Firefox Nightly\browser\features\[email protected]
abr
MD5: c6ea7d49ff5412c59cd199cc753d73cc
SHA256: 4ff5963adcb33d006e30bfd17ecf92027c291e8002db7c9699434fd0fd462c81
3224
setup.exe
C:\Program Files\Firefox Nightly\browser\features\[email protected]
abr
MD5: 0e80b34ac26caa47b8e23a60ce8d0b0b
SHA256: 9d574610ccc168773923c481074d48467410f5b4ba27046f5202d377166c7fe2
3224
setup.exe
C:\Program Files\Firefox Nightly\browser\features\[email protected]
abr
MD5: 3dd02dc97c9d2d1d3a95be0e9e521293
SHA256: ede295196dd76ad63a81230628b67634ae5775a09d155dce0b2eb18da865c42f
3224
setup.exe
C:\Program Files\Firefox Nightly\browser\features\[email protected]
abr
MD5: 5e9ef370f1405e9c366143ea55e83b47
SHA256: a52058b0bdc66ba43e80c59b9405dfff7a47d34914bd719f90ad07cf2731a0ce
3224
setup.exe
C:\Program Files\Firefox Nightly\browser\features\[email protected]
abr
MD5: 4df20a9e3aedcacbc54f30623226e4d2
SHA256: d48e4736e7828700e13daa747e6421aef20a82ce617961de1bdf1f7edbba9db2
3224
setup.exe
C:\Program Files\Firefox Nightly\browser\VisualElements\VisualElements_70.png
image
MD5: d54b74c36003c6a235d63f4889529b12
SHA256: ee2eebd78368f705e3b989ccfaa5a0d55c3a8911d1dc146e5c1d2cf14d62d3b4
3224
setup.exe
C:\Program Files\Firefox Nightly\browser\VisualElements\VisualElements_150.png
image
MD5: 3cce8a0bfe318e41c51a137f58b9ba21
SHA256: 8376681a31ff7daf26a7fab90fc2047648cce3be390a6124807301df396b9ced
3224
setup.exe
C:\Program Files\Firefox Nightly\browser\omni.ja
––
MD5:  ––
SHA256:  ––
3224
setup.exe
C:\Program Files\Firefox Nightly\browser\crashreporter-override.ini
text
MD5: eafaba41b9629eccd23cd7b919e176d0
SHA256: 6da26a69dfa3d73bca9a3a7a71c857bd4ea56db380c401aa771d42ad2af839c6
3224
setup.exe
C:\Program Files\Firefox Nightly\browser\blocklist.xml
xml
MD5: 4bae9c31d8bba2f2768a616ff9c1be6a
SHA256: c1136ea42ac051895c334a58020f11f3728ce11623176fe324bed8979974f51d
3224
setup.exe
C:\Program Files\Firefox Nightly\defaults\pref\channel-prefs.js
text
MD5: 9259bc9ed5da0830a0c5004d56c7306e
SHA256: 1baf312dc13b01b1fccb2bafe6f1ade5781d4109c5366dafe17649608d011894
3224
setup.exe
C:\Program Files\Firefox Nightly\fonts\TwemojiMozilla.ttf
pi2
MD5: 45e4b56b51ec8e6d931c65813aec86f1
SHA256: a46849eea291e146d201782472879660466b4a0b01c1717c72f619920dc2610d
3784
setup-stub.exe
C:\Program Files\Firefox Nightly\install.tmp
text
MD5: 7896580caaf6e85be8a9ce8615c767c9
SHA256: fc2ffb940dfcdc56b67891d51ec0ef428cb4283f9d3deb27e882a42b5df76ff3
3224
setup.exe
C:\Program Files\Firefox Nightly\gmp-clearkey\0.1\manifest.json
text
MD5: cffdadfaeeaaf0a5a78e7f9a299aa7f1
SHA256: ef47e83036753b53f59d079fef62bfedc749abdbcdb0fe16f448d9920f11114c
3224
setup.exe
C:\Program Files\Firefox Nightly\gmp-clearkey\0.1\clearkey.dll.sig
pi2
MD5: c202f12fe19d1389e27238c8f2aa0917
SHA256: ccf3dfa1643fc6e535430ee4d9ecb8d0277764dba63b27d65eced0e6e314cb0a
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\block-flash-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\base-track-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
3224
setup.exe
C:\Program Files\Firefox Nightly\xul.dll.sig
pi2
MD5: 20b2ca5db6651ee6396f75f298efa7ce
SHA256: 350857d574756dfdabdc1a9b8f9ef9c0ec10a95f7920ae6befeab65c8d4f594e
3224
setup.exe
C:\Program Files\Firefox Nightly\xul.dll
––
MD5:  ––
SHA256:  ––
3784
setup-stub.exe
C:\Program Files\Firefox Nightly\install.tmp
text
MD5: 4544ed1ba92c94d434147534c3e5ef69
SHA256: b71120a3e633ac1b9757cf7f32a43dfda75c5ff111a5db8e7948850ea63247c7
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\base-track-digest256.sbstore
binary
MD5: 2d8a52149d4a48b28a7816cc969323a6
SHA256: d48434db83ec8f74c3d23d97ab98567446c531ea66d25bb59fd92b839ccf27cb
3224
setup.exe
C:\Program Files\Firefox Nightly\updater.ini
binary
MD5: c96a5c1fc045307dd34f2fba0d06e2b9
SHA256: b7e379c825e124b2c5dc8ac9fe5d25a4960b8b36fec92d1b82e1be0d0694b3a8
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\45997FE1A095857037D1F7518C7660CCAFD30135
binary
MD5: b4973e4990cf782d6cad447ec69bab73
SHA256: dc1aa326289de16e62596040869d2c926f472c91346d9c92ae2453b1cc4b3bc2
3224
setup.exe
C:\Program Files\Firefox Nightly\update-settings.ini
text
MD5: fb62bafca8d9ab74cd2326b108ed2401
SHA256: 587fdd3eec9f14fa2de2281318162351af269b78f25f8024da651edf03b84da0
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\0EDDF8C091E2FED62E44BEDDDC1723F5BF38FE4F
binary
MD5: 03a35057b4b4f7c837dcaab91dfa6936
SHA256: 4bcc1da9d8809f64d2f44d90677b388fe3f5bac11c751c383318b4ce1af833d3
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\F4C00672EECD7B6EB5266196D7EE7F3566197DA9
der
MD5: c57a4088761571d9da614353c654aa5f
SHA256: f8185bcf6ca4e7949cd29fdc3c5df7823119fd37743ac37366d5470c06a1e436
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\6B6885EE2FFA8B6880B7B64FCA3B1210ADC8B87A
der
MD5: 52dffb62cfb0254be0d519385d274d8f
SHA256: 59fe6d19e17964e82f93aebf5e57b711a0ec1b173728b3ecbdcb31881f5f392f
3224
setup.exe
C:\Program Files\Firefox Nightly\precomplete
text
MD5: 467297d70d2013d2674c88144693b1d7
SHA256: d2c7220a3be1357ac1dd848df5e4b951259a5fe765519adec774d7a84d346c27
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\E4B1FB1C48360E5AD329596DC4E9841D7B3E8E18
der
MD5: 6d885d3699c181b05fe51f68745d2bb9
SHA256: 8db96fa0fc14e632689ec59830aec036cb40173b3cb89bb9d6ece58b771a3420
3224
setup.exe
C:\Program Files\Firefox Nightly\plugin-container.exe.sig
pi2
MD5: d311a3ca31d1e4026d244e3b36b7a33d
SHA256: 33ca946d66682d8fda2397f29def34a2f3e9c405045ab319134108e120d4b8eb
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\C1D42B97CC4366D098D6FBEDAABBEE64D0B7E8CE
der
MD5: 1a155eb43d4218b9971c4744d8992201
SHA256: d060e493a4c9d6038582b9a76cf40987325de817578710835b27c54291639a58
3224
setup.exe
C:\Program Files\Firefox Nightly\platform.ini
text
MD5: bfbe9941aa02f4cb73d484ebd51f3057
SHA256: 635817fd065fc2193480bb1b833947ec69ecc73e340ec8adddbd1b9d38764846
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cert9.db
sqlite
MD5: 080b44ec5531cc21e7ba254b3b2215ed
SHA256: c080a5e16dfd024aeff950f668fb7495f5c5079ff1b3e9511a17283bdcf69319
3224
setup.exe
C:\Program Files\Firefox Nightly\omni.ja
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cert9.db-journal
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\10FFBB5C5D45CDDB68DC3974F6FBE00DE7E4C00A
der
MD5: f38a3f108f0f3256ba382fdfdf352da3
SHA256: ce53a08bf5d3390ce6004af77de1a796fe96c922ebc4a15752e1e64e685f5556
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\prefs.js
text
MD5: 4b0675682e5200aac5f28770fcc76f04
SHA256: 3f4019901f30a08a713e078fe32e9a423da3c32e7896a1361ae494e7f1dde2f7
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\C755CC8B0223C96D278F512B7FD50FD721AD9846
der
MD5: 2536954ef7f8a91f529800d021d23df3
SHA256: 55e7aa09db71613513363918789e934ac5298986604249f7309e0002be05597e
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\2ABBD18C187E61CF40FB6DD8E738DCC6A436C184
pgc
MD5: 9712d626dee037e069e9f02fd07beb27
SHA256: 197498e98acfa2cdbc2ea76f0dd9aa4970dbe1c51726911414e631c0c746ded0
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\prefs.js
text
MD5: 0721c2dbcbf655d5519353a926c054e2
SHA256: eabe0ddaa9549eaec2dd4160d08770ff20ae58c4b86c41e23abcc10193dc398a
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\datareporting\state.json
text
MD5: cfd184cdb5726aca690987ad7cd4e0f8
SHA256: a9927799d80df83983ce6d81ff908be5e07150d94f11dd4ab60e77b43837503f
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\datareporting\state.json.tmp
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\162BDAA0391079DE536E0ED1CD11B422E27454DB
cer
MD5: 6f57bdc1811fd4e425bc505f1078d1fb
SHA256: 57a390325b5940b2caa0074d98d47162433223056fb3c3650340c92a72610f29
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\162BDAA0391079DE536E0ED1CD11B422E27454DB
cer
MD5: b3d637fc4875976407eb35eb856602fe
SHA256: 01cfd9f4d49c9d4feb0ae4063764bbfa5aa3a89bdb3b58ce98300ba45f6eb2c7
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\96E3CDF8FA4A0DCBB81F0A922B22FED61FC7D2FB
compressed
MD5: 653b7d9af985963ec1434e18bae14343
SHA256: 44e32a79399127ca6bb7532da774f2bfccc1763ce240faa417b60640b7116c92
3784
setup-stub.exe
C:\Program Files\Firefox Nightly\install.tmp
text
MD5: 0ae79ee66b6174923b7e3778215069ef
SHA256: 39d21286a152a6a76161c56c47ddad2ba19ae64cc651d37d4e66d33f75df3f3f
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\AA4E1F01C83887A165C96A666C4B992B73A1739A
compressed
MD5: 88125e3c47e7a9bf917ac56e04877ffd
SHA256: aff7b5fa2fdfe9d29e8af438c042cb13a296cc2cd38d3eef6ff23b95a58e7e4a
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\prefs.js
text
MD5: 87fcfae47a9cbebe50c62dcc2af046bf
SHA256: c492806cec7ce6aeab815a062219cb86903e7285f23b32c8b8798a23593cdef1
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\3C682637D01F7C5DE0041908F19652176AF31C39
compressed
MD5: 89c5163acbd061f28dafdbac2632bbcf
SHA256: 43d219d081b5872a92c08309ce2741d0706e2327a96f410e457888e97dcfaca6
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\162BDAA0391079DE536E0ED1CD11B422E27454DB
cer
MD5: 5faed1c664423cffc7b60097097dd089
SHA256: 4a41f3fe69e082da5fe3b8132a0649534115c35a2cf8db8fb26893f1b1aafddb
3224
setup.exe
C:\Program Files\Firefox Nightly\fix_stack_using_bpsyms.py
text
MD5: 403e1c931a0f86f58932f6e239e28ee1
SHA256: f20cd480ce185701a3c14a7249edd6ca6e7b36223ae2267eb9318adaca8f5ed4
3224
setup.exe
C:\Program Files\Firefox Nightly\firefox.VisualElementsManifest.xml
text
MD5: 2fe740c5f060fc6f56647b117664766d
SHA256: e1341c127ac2c2c3313895ff52f1b53680fabcd16606a6652db7e01b1a59d45a
3224
setup.exe
C:\Program Files\Firefox Nightly\firefox.exe.sig
pi2
MD5: fc6c004ca3a951e5720995d6adc7bfa1
SHA256: 436c96d4f629b6e6bd129c833989c228cdb60d0fc85b68fe75e68d1a3524e28c
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\45997FE1A095857037D1F7518C7660CCAFD30135
binary
MD5: c9c5272d445b1bea4d39b8777f66a96b
SHA256: 7861b3b3d7cda88e3cf2177285bd33dcb543b5341bc2d0cf1cf23e82e17fef9f
3224
setup.exe
C:\Program Files\Firefox Nightly\dmd.py
text
MD5: 03d30b2f513a478390293aed00bcd2e7
SHA256: 72dad7f5ae8673215e9c76aa7f0f2e410a4d9b5609a2d5db4e30d75b3c603dce
3224
setup.exe
C:\Program Files\Firefox Nightly\dependentlibs.list
text
MD5: f1c886fb038dec82ac9cee08226f9697
SHA256: 8758174f92502b86f77ddc56465915e21b443ec9f5d73a8fa1efc5afa7dbfe35
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\66F684AF9CC570C6247262B47C769C601C2A338B
binary
MD5: caeed8178c9ceb6ec94113fea770bbf3
SHA256: acf2139cf7e09eb132e35886144d4aee7eb6a5304040acb64a27a9c48e716308
3224
setup.exe
C:\Program Files\Firefox Nightly\crashreporter.ini
text
MD5: 7b862a77b2967205964f577473b00f90
SHA256: b535dd5bd89577c1934ad22a17c5c57a070dea02f3f618086748149ee8479bc8
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\0EDDF8C091E2FED62E44BEDDDC1723F5BF38FE4F
binary
MD5: 0e503b9a7f564facd10cd8b47ff6a409
SHA256: 420234adb3f4dc8eff4efb6f2b07827b3563bd8074ce99c8973cbe40e159ec74
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating
––
MD5:  ––
SHA256:  ––
3784
setup-stub.exe
C:\Program Files\Firefox Nightly\install.tmp
text
MD5: b51b7028be57109954040b35aa9e225e
SHA256: b4848779384cd3e3bac474913e565030ddb277400bfd95a596332e7078adac2c
3224
setup.exe
C:\Program Files\Firefox Nightly\application.ini
text
MD5: a4a4070311b39c04f2d308ce2fe058e9
SHA256: a24b9d820b66e8e35b1521b078392dfc01283f40cb555b5ac8986171e106e45f
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-backup
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\block-flash-digest256.pset
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\block-flash-digest256.sbstore
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\mozplugin-block-digest256.pset
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\content-track-digest256.pset
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\mozplugin-block-digest256.sbstore
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\content-track-digest256.sbstore
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\base-track-digest256.pset
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\base-track-digest256.sbstore
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\block-flashsubdoc-digest256.sbstore
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\block-flashsubdoc-digest256.pset
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\prefs.js
text
MD5: 3b04ad619917e9c2300f7cc0d6d7f128
SHA256: f3159c16a6a6d69e983f06a2c92b51cb9351c38fcd74c196cf91f5c983f3aa73
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\mozstd-trackwhite-digest256.sbstore
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\mozstd-trackwhite-digest256.pset
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\storage\default\moz-extension+++b19964c7-5692-4c85-9077-eeb9d725e8d3^userContextId=4294967295\idb\3647222921wleabcEoxlt-eengsairo.sqlite
sqlite
MD5: b16da362a57ca80ca8c14f0bc0062ab2
SHA256: fd01a7505bddaa8b9e783dda4d13ca7ace5784d1da98df677ec662b636413995
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\storage\default\moz-extension+++b19964c7-5692-4c85-9077-eeb9d725e8d3^userContextId=4294967295\idb\3647222921wleabcEoxlt-eengsairo.sqlite-shm
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\storage\default\moz-extension+++b19964c7-5692-4c85-9077-eeb9d725e8d3^userContextId=4294967295\idb\3647222921wleabcEoxlt-eengsairo.sqlite-wal
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\162BDAA0391079DE536E0ED1CD11B422E27454DB
cer
MD5: 3dbdf758da33f7c0a49f3a07bd485df3
SHA256: e5ab90cac005e23b9c8625fcd38d36ea491c085f850483e8c3a8a3037cf77ca6
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\storage\default\moz-extension+++b19964c7-5692-4c85-9077-eeb9d725e8d3^userContextId=4294967295\idb\3647222921wleabcEoxlt-eengsairo.sqlite-journal
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\storage\default\moz-extension+++b19964c7-5692-4c85-9077-eeb9d725e8d3^userContextId=4294967295\.metadata-v2
binary
MD5: 6097413bdc3b69b907af7440919de0f9
SHA256: 9c7652599fd29c480cc448fe0db94026ee881efeee5b7525535bd4ec77f6c9d3
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\storage\default\moz-extension+++b19964c7-5692-4c85-9077-eeb9d725e8d3^userContextId=4294967295\.metadata-v2-tmp
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\storage\default\moz-extension+++b19964c7-5692-4c85-9077-eeb9d725e8d3^userContextId=4294967295\.metadata
binary
MD5: d0e17954ae66c543983248100ad48386
SHA256: 308b1818209a13dbefa875007e873f441e435d5d2c921a5365ec4064c6b5d68d
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\storage\default\moz-extension+++b19964c7-5692-4c85-9077-eeb9d725e8d3^userContextId=4294967295\.metadata-tmp
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\162BDAA0391079DE536E0ED1CD11B422E27454DB
cer
MD5: f12073d19830e1904aeeeb8c46c98812
SHA256: 484578f23365f0573d5ccd98c9a726fe29fdd877b10bd252f57356e0cac7b69f
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\except-flashsubdoc-digest256.sbstore
binary
MD5: ba0009932844173bc8f9af264229df24
SHA256: 66d1c00c04d86e313e9a02775cdf906b1be8d4cd6bef423a1b9e21cc4e9f50c1
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\except-flashsubdoc-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\162BDAA0391079DE536E0ED1CD11B422E27454DB
cer
MD5: ac649318b99fb0028643ad220bb8413e
SHA256: 735710cc58b0008bfef12c56a787fd724996c08d624e9608a0a67b03eaa72121
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\allow-flashallow-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\allow-flashallow-digest256.sbstore
binary
MD5: d886a47c89d9c49c795da345bc236990
SHA256: a03c5e2656d2f292bf5794c8eeb8d223cd6ba4f4bfb2ed1f325460e879d0bcf7
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\except-flash-digest256.sbstore
binary
MD5: c921d8e98fa01b4f303481e112202e92
SHA256: 4ef1038730ec8bc7206713c29a936768831b922c5e6c83355fd62d7401d8c1dc
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\except-flash-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\except-flashallow-digest256.sbstore
binary
MD5: 6f85bc4b2ecb49e26b0bd83a821065d0
SHA256: c0b3bc9b3dc507ab654caf72d13c3aefa58c9b13b1e4d14dd8816712d80a7e54
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\except-flashallow-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\test-unwanted-simple.sbstore
binary
MD5: a5695cc64d77967232b0c1344c6e72b3
SHA256: 042a22b8681d754671d2018ba109b31a53ee3728d48c6379043f8e3394e7fbad
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\test-unwanted-simple.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\test-trackwhite-simple.sbstore
binary
MD5: 65e942614eee70680464ac4be75019fc
SHA256: 34395085da32c8b4efe9959e3b0d756b43ffed17694d66f39b966cd331bd9a94
3784
setup-stub.exe
C:\Program Files\Firefox Nightly\install.tmp
text
MD5: e8cb0819289484d09313a8fbda34d930
SHA256: e6dc2f8210c43ccd205a3f88edfcc8e34c75faaf5d0de4d66a1d984adf4bf068
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\test-trackwhite-simple.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\test-track-simple.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\test-track-simple.sbstore
binary
MD5: 95f28ede25c301301f25fbbd9a3c56ec
SHA256: 87763df78772f7d750b0fa5a31eec23e931fd3bd1cbb33beddfc61889da36478
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\test-phish-simple.sbstore
binary
MD5: 3d1ce5e50208f0cb3b979186043a548f
SHA256: 1e13d05d482c3d533dc6035af2b2d6e84749412a5748d1435b70cec8b312340b
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\test-malware-simple.sbstore
binary
MD5: 3675254e341df799d4307c1f59109185
SHA256: 23d108134bed6099793f7dd6b8b6e62081ec3b945efdbc7c5e0e779fd9b82f98
3224
setup.exe
C:\Program Files\Firefox Nightly\Accessible.tlb
tlb
MD5: ee105b897dbd5a5b75e6a91b9fafa8bd
SHA256: c5f6e85a679a98ba0fcd45f50464b6d6ebb2f0b76b4506388e9086e5fa6f93bb
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\test-phish-simple.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
3224
setup.exe
C:\Users\admin\AppData\Local\Temp\nsiEBED.tmp\components.ini
text
MD5: 8e8bd40324f4c95fcca8e567f4252c08
SHA256: 1f0beb1c46fe6b473d08e388c1098d5044d86e19cc83af4aaae3e06831fcb2bf
3224
setup.exe
C:\Users\admin\AppData\Local\Temp\nsiEBED.tmp\shortcuts.ini
text
MD5: ebc31cc05057e2b04a6b63a7750fd2c0
SHA256: e7942a996007e0f013ed5e2c307c3b1a82a565e2a5adbac93ec9d177241e5929
3224
setup.exe
C:\Users\admin\AppData\Local\Temp\nsiEBED.tmp\extensions.ini
text
MD5: 2ed482117f3148d08f92e22bed69f5ed
SHA256: 4e3f2413784c7e3666c667eb2c35084154536edf9335d96f24d18a1d17590066
3224
setup.exe
C:\Users\admin\AppData\Local\Temp\nsiEBED.tmp\options.ini
text
MD5: 72cc0053aa7383021e543fdb9c9a4c94
SHA256: 23ea8ed00ba7910c47d5ad9f8e3aadcb25d71a86eccb3e8aba2895ea79b8980b
3224
setup.exe
C:\Users\admin\AppData\Local\Temp\nsiEBED.tmp\summary.ini
text
MD5: c9b5d86a9a0f014293b24a0922837564
SHA256: 775c85f3552754ad3794b88c0cb6d6fc43d412cd9a87a4b9e847386a5bd0a9c4
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\test-harmful-simple.sbstore
binary
MD5: 051fb32dece757ba112ac36dc72e3a91
SHA256: 0806d98fb3de55f75d7c0b17e26146567e08c483031526659a4a35d09b97ef19
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\test-malware-simple.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\xul.dll.sig
pi2
MD5: 20b2ca5db6651ee6396f75f298efa7ce
SHA256: 350857d574756dfdabdc1a9b8f9ef9c0ec10a95f7920ae6befeab65c8d4f594e
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\test-harmful-simple.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\xul.dll
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\test-block-simple.sbstore
binary
MD5: e2cf527ca7550b7e7bdf7311e483a2c3
SHA256: f1e07b1d717433f47073dc54a7d98e3e87b3d0fa88e53466f93ea544af885d11
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\test-block-simple.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\updater.ini
binary
MD5: c96a5c1fc045307dd34f2fba0d06e2b9
SHA256: b7e379c825e124b2c5dc8ac9fe5d25a4960b8b36fec92d1b82e1be0d0694b3a8
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\update-settings.ini
text
MD5: fb62bafca8d9ab74cd2326b108ed2401
SHA256: 587fdd3eec9f14fa2de2281318162351af269b78f25f8024da651edf03b84da0
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\162BDAA0391079DE536E0ED1CD11B422E27454DB
cer
MD5: fd06eba36ebe98488b16e6d7e7468a1e
SHA256: e0c970c03782991cd1152417480b2e916509fdff13d9a68997cb4cdf8707b877
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\162BDAA0391079DE536E0ED1CD11B422E27454DB
cer
MD5: 690dda078391599880fc6d02ad49978b
SHA256: c67705c2dc14b9234e4df6cf28965032c89b32399a6e9df804f6d0756280270f
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\6CBF96031D4729176243C2E2DD26B5A1FE3CCDF9
der
MD5: 1f083a64b34c50c05a9e9e631a588642
SHA256: 1e1d28f51e3876285d29e5db046fbf3c0a38d0c5d3a646d9b473f86ce9e954aa
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\162BDAA0391079DE536E0ED1CD11B422E27454DB
cer
MD5: b5f12365984e048ebb1957637c2da30c
SHA256: 090bdf99c0df69eb94cb256f7c4030868a7845328a676fc5681e3e53f0872a71
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\search.json.mozlz4
jsonlz4
MD5: acd93a8d8832ea2f5033eb74f6b85c7c
SHA256: 97682561a0f43f7b584c0d22b28a26b46cfcdcfda523091aff8742557e61839b
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\precomplete
text
MD5: 467297d70d2013d2674c88144693b1d7
SHA256: d2c7220a3be1357ac1dd848df5e4b951259a5fe765519adec774d7a84d346c27
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\platform.ini
text
MD5: bfbe9941aa02f4cb73d484ebd51f3057
SHA256: 635817fd065fc2193480bb1b833947ec69ecc73e340ec8adddbd1b9d38764846
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\plugin-container.exe.sig
pi2
MD5: d311a3ca31d1e4026d244e3b36b7a33d
SHA256: 33ca946d66682d8fda2397f29def34a2f3e9c405045ab319134108e120d4b8eb
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\search.json.mozlz4.tmp
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\containers.json
text
MD5: 94a3843fad8c45c48b0e07342df3dfdc
SHA256: 854ff2076f71097b030c302a1ea71d8e851d2920b9ff5fc8dc8f16c91ba95b72
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\omni.ja
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\containers.json.tmp
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\4265731732BC0C00F9D6F90C8B7B570CE22F6987
binary
MD5: fa2ed73a1f610556ebc77503d664a3d5
SHA256: c01650760aa160f089c3c791cfeddf995fe40f220d24e95b6781369264086844
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\E21F074DBAD1CB7994F383C419228B689766FB1C
compressed
MD5: 797ad7e10cf798eab1b8902d8164b599
SHA256: 41f1e8d6d1dfbd03b9eb38903718d314cf58fc13b12a7abd21438f289a609f2e
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\3C65B887EA29E617091A5AE14B0D7268FA2053A2
compressed
MD5: b99dbece0b681a9409a503c9a8863afc
SHA256: 7af56d99c0ea4d6dea0fd3c1acff6b48a2c298d220e289dc634bcae30bc3515f
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\6D730121FD763F5F1F5C0FA06E1E8AC73C97591D
compressed
MD5: 8c92831f671b022b54224aab7bfc9be4
SHA256: 88cf0bb040dcc97326e8aec00c9a04d13d18319a2e1dfc9bf1ede46549e5f9f5
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\16114BA75206B6FA4C51ADC8A73DB4C6635F6AF9
woff2
MD5: 407659933e3c772a8f20be27fadc8755
SHA256: e0d78b7de1534af23487e847166d590d70eaa17d45685df15eccebddedd93b4a
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\A698B6CF98F43F9B0EE1C1DAF3F2CB9BFF09A47C
image
MD5: 1a4df1500e28509d89c619145249361a
SHA256: 4d350bbb1fd2fe157b08c1561b028091fe811893c8f5bb918115d8a6e426593d
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\9A5EF06F16171A9BDA90EE71C06F89A0C79BF17C
compressed
MD5: 917fdd4c9f08513a33fd0e503e360e8e
SHA256: d1fe06eebb33eed1b0e36f634d0f38f916164b054a15dd98151affca5716ed04
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\57B158DEF1DDA4EB8D7E463C132782854F5F2A22
compressed
MD5: 4f663da6f9bc5de3df0f7ca11d46fcf4
SHA256: 8ba79eeb61cfa63f1b5fab71d8503d7762f01377af088ff3082e0d7a2741507a
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\2FD2E2A71F89E3A92F68CB796207228217259289
woff2
MD5: 028ef1b331d878c84ebab4fac94b0892
SHA256: 6be9bf3c636a58dd3035fbc855ebe1352467183a4c3f374087058c9ba8b3251c
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\3DC22F5944D3DAF62AB003C5B080F75A94EF149A
compressed
MD5: e7734748f9eb807865279e5de12357e5
SHA256: a824867fb305ab5b5b40c612c1a6e71d6eacb0e95cdd926f8cb5a9197e4ba260
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\A02D5AC48AAEBEAFEED63256030E5B9CD1889379
compressed
MD5: 2d3b26c08c8b1f4f3a9f7c0fc6e309bc
SHA256: f882bce3b67eab11d38147b6716302a9715af892301b1a81c6d2f91346b1e27c
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\89DBE1DF558BB8439E2062ECC3272086F2E3FF1F
image
MD5: 1f89bb0ab29924899c1cde8f9bb89a9c
SHA256: cdcd2a8e71048a1865d76c1682f2e1d7bfcd7bb898816104aeb11108421fdc11
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\gmp-clearkey\0.1\manifest.json
text
MD5: cffdadfaeeaaf0a5a78e7f9a299aa7f1
SHA256: ef47e83036753b53f59d079fef62bfedc749abdbcdb0fe16f448d9920f11114c
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\gmp-clearkey\0.1\clearkey.dll.sig
pi2
MD5: c202f12fe19d1389e27238c8f2aa0917
SHA256: ccf3dfa1643fc6e535430ee4d9ecb8d0277764dba63b27d65eced0e6e314cb0a
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\addonStartup.json.lz4
jsonlz4
MD5: f7d795080f932b2d52cbd2995c95e984
SHA256: fb5ad6936869e7daf7c287c65ba34eaa27ed605141d9624b0841d5d6559222e7
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\addonStartup.json.lz4.tmp
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\698AC159A6BCBA0D13FE6F10F1A38E498F826F33
ini
MD5: dd1eb01a6df3c30aca15e860e5302db1
SHA256: 9bdd1c9dc83696d6a3674728ca81de985cb595b367267e7ec6495a63dcbfe3e1
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\fonts\TwemojiMozilla.ttf
pi2
MD5: 45e4b56b51ec8e6d931c65813aec86f1
SHA256: a46849eea291e146d201782472879660466b4a0b01c1717c72f619920dc2610d
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\fix_stack_using_bpsyms.py
text
MD5: 403e1c931a0f86f58932f6e239e28ee1
SHA256: f20cd480ce185701a3c14a7249edd6ca6e7b36223ae2267eb9318adaca8f5ed4
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\firefox.exe.sig
pi2
MD5: fc6c004ca3a951e5720995d6adc7bfa1
SHA256: 436c96d4f629b6e6bd129c833989c228cdb60d0fc85b68fe75e68d1a3524e28c
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\3C7D7F41DBFE9CEADDAA2B02D8511F5AB3DCBDF0
der
MD5: 30d9c0730a006f70c1c50008d2298df5
SHA256: 6e2b13160b418de7bfb6daa13ecd4d45e2f07d6d582c089242ae59370669e2dc
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\firefox.VisualElementsManifest.xml
text
MD5: 2fe740c5f060fc6f56647b117664766d
SHA256: e1341c127ac2c2c3313895ff52f1b53680fabcd16606a6652db7e01b1a59d45a
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\dependentlibs.list
text
MD5: f1c886fb038dec82ac9cee08226f9697
SHA256: 8758174f92502b86f77ddc56465915e21b443ec9f5d73a8fa1efc5afa7dbfe35
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\defaults\pref\channel-prefs.js
text
MD5: 9259bc9ed5da0830a0c5004d56c7306e
SHA256: 1baf312dc13b01b1fccb2bafe6f1ade5781d4109c5366dafe17649608d011894
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\dmd.py
text
MD5: 03d30b2f513a478390293aed00bcd2e7
SHA256: 72dad7f5ae8673215e9c76aa7f0f2e410a4d9b5609a2d5db4e30d75b3c603dce
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\C7BCCD2D2CA294B38AE834D818CF5D5C0C7A65BE
compressed
MD5: 4688dbffecb9aafb8b8e98df88afcb7d
SHA256: e02491abc92b02be059d7696bbd0adbc0eaafd0ec1807428a4fad51315b8bf5f
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\crashreporter.ini
text
MD5: 7b862a77b2967205964f577473b00f90
SHA256: b535dd5bd89577c1934ad22a17c5c57a070dea02f3f618086748149ee8479bc8
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\browser\VisualElements\VisualElements_70.png
image
MD5: d54b74c36003c6a235d63f4889529b12
SHA256: ee2eebd78368f705e3b989ccfaa5a0d55c3a8911d1dc146e5c1d2cf14d62d3b4
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\D5D7B247774E63182A9E2C82B62424AAB64C79A8
image
MD5: a656aa82bdef317e23211f83320e10a5
SHA256: c08a65dee08b526f762534de5cb4a9f47e4bcfb9155263d500339b56e8d3c8bb
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\browser\VisualElements\VisualElements_150.png
image
MD5: 3cce8a0bfe318e41c51a137f58b9ba21
SHA256: 8376681a31ff7daf26a7fab90fc2047648cce3be390a6124807301df396b9ced
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\browser\omni.ja
––
MD5:  ––
SHA256:  ––
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\browser\features\[email protected]
abr
MD5: c6ea7d49ff5412c59cd199cc753d73cc
SHA256: 4ff5963adcb33d006e30bfd17ecf92027c291e8002db7c9699434fd0fd462c81
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\browser\features\[email protected]
abr
MD5: 0e80b34ac26caa47b8e23a60ce8d0b0b
SHA256: 9d574610ccc168773923c481074d48467410f5b4ba27046f5202d377166c7fe2
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\browser\features\[email protected]
abr
MD5: 3dd02dc97c9d2d1d3a95be0e9e521293
SHA256: ede295196dd76ad63a81230628b67634ae5775a09d155dce0b2eb18da865c42f
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\browser\features\[email protected]
abr
MD5: 4df20a9e3aedcacbc54f30623226e4d2
SHA256: d48e4736e7828700e13daa747e6421aef20a82ce617961de1bdf1f7edbba9db2
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\browser\features\[email protected]
abr
MD5: 5e9ef370f1405e9c366143ea55e83b47
SHA256: a52058b0bdc66ba43e80c59b9405dfff7a47d34914bd719f90ad07cf2731a0ce
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cert9.db
sqlite
MD5: 51a7943a25fea6fba7eb6c88a3246a07
SHA256: ea7b468ca2b393346b4feb76fac71c8cbfb621b143f86ab043beb549011415a5
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\6A0862DC18E13171B6117E1CAB0A12CB974B2CD3
der
MD5: 9f2eb9ce44448b9a979ac184dedd75dd
SHA256: 10c93ad953b8dd3793e08ad62c4c6e2896890332bced8f3227cc22a98d6801f4
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\prefs.js
text
MD5: bdf14fdf8f099fae18e9e366d3347c2c
SHA256: ec565c2cf903d993b3cf0e0352b59fd864cd64f9cda658d7be831d7148f70d0b
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\browser\blocklist.xml
xml
MD5: 4bae9c31d8bba2f2768a616ff9c1be6a
SHA256: c1136ea42ac051895c334a58020f11f3728ce11623176fe324bed8979974f51d
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\2C7648CA9CA8AFF95B749D2E89CE8A58BFCED8E5
der
MD5: d07ecb5c227b4baae8c3c8cf59f36266
SHA256: eb900a300f61338ee819cb52c8a60198697f0655bc5a9bf7c3076a3f567d5c76
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\A936C3D91F2BADC16249AC5B0868C3D53299CD1B
binary
MD5: cb9ac22e996078556b7a163a4997e169
SHA256: e584e39c86def42c790f6aef195957e27d35fcd43170ec56192a080d6f294f11
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\5C3B1B4A3AF3BDDFB5E032BA9BA685FAE38E7418
binary
MD5: d20c634a6a00ff1003747ce9287a3266
SHA256: 163e5257e80b2b97096cca6b0e0fd2b184d68ef81f430cec792f7832cd27d4bb
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\C664ABAE6A070392F60C7BFF721450AA0CF7DBA0
binary
MD5: fdf33ef05e8d04bdeabf460d99313322
SHA256: 5f3fe549aa10c8f72e091c1313fc1718e2dd208d99128bd1e48438738fd83904
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\E044228CC91563D0417E4365BC256BF9734ED0B7
compressed
MD5: e5388d68c611b5b9bf4814a0d8397eb7
SHA256: 3e5178e1db824bb64b68adbf831dbe6b453609fefda11c01383d2c968a67cb6d
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\application.ini
text
MD5: a4a4070311b39c04f2d308ce2fe058e9
SHA256: a24b9d820b66e8e35b1521b078392dfc01283f40cb555b5ac8986171e106e45f
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\D8E39298F9AD42FDA7A024557E24BB135D2FE0B4
compressed
MD5: 11b3e336864fd647a825a0fbe897c95c
SHA256: c855c201ea062a2e6074d33b8a15902e704d4d3753fd3485f8d3c7f8d6cd2785
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\D03859D268745D55974971F47F4622DAC4363515
compressed
MD5: c05c8781a3e0b2dd7339f3ad29c67a00
SHA256: 70909b66ecc1b9071897841f748246466096be653a5d96ef384840201e7a31b0
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\6509930F4539DB79DA356F2C5D01976D46756302
compressed
MD5: 143d6efd5741a2717d46ea73d50803ff
SHA256: 7cb0e1d9a274dec67c4cfe21a5c28442b5322595bd91cecedf1e0e6646e38e69
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\863C89121F6B8F9B86DAD458CF263CE94F9E75B2
image
MD5: 84fcd0960de5f177d2fef10ab5cd81bc
SHA256: 91573254b18e3f7f16eeb0ebc4a7bd3009a58ea664bf51ff15180ce416e05421
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\browser\crashreporter-override.ini
text
MD5: eafaba41b9629eccd23cd7b919e176d0
SHA256: 6da26a69dfa3d73bca9a3a7a71c857bd4ea56db380c401aa771d42ad2af839c6
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\8419A2637E780F24D2A2B6A86D7C862193C89CBA
image
MD5: 01fe334a6db2ad5007a24ac01783cc1e
SHA256: e1506d7bc93431441be7e602c4fb01c8f0520c770d502976fc23cd72d1e08c3b
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\sessionstore-backups\recovery.jsonlz4
jsonlz4
MD5: 9df9ee91d0b907377eda34622fdc1cc9
SHA256: 406fdce47c8079d14dce0e59b19eb45607e86b2f9644a5aa99c225f77b0b156d
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\78DBE55782B7B81AF853B4884323B48C34429A53
image
MD5: 5ed277da312d1b30081acc55129bcb5b
SHA256: 562a566bc3b1420b7cbd1dd42b5f47dbc317353719ee6a92d775f9c9b76cda41
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\DFC42896C791034AA152214A96020985CC5E9195
image
MD5: cfd66b2ca4a368e2ad22125b60b62049
SHA256: 8e632153abdc3c0abdff6b079760cab05d43ba365975685b58a71ba26a3b06a5
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\sessionstore-backups\recovery.jsonlz4.tmp
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\storage\permanent\chrome\idb\3561288849sdhlie.sqlite
sqlite
MD5: 4a9a1755a42e770cbd44f5d25c365fed
SHA256: 6170efd4380e5347178392b053253bc6ae91b348dbbd9841b94ff9b97e2f8de5
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\storage\permanent\chrome\idb\3561288849sdhlie.sqlite-wal
binary
MD5: df8b7cd06476f345b44b0e577904caa5
SHA256: 7739faa3d1853adfba5228fd7a786d81178d190ae199fa74a9a3408e69bd07ff
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\9671DB4E21A40D05E565A5211964DD6D443A716F
image
MD5: ede676184d79d2346a773193ded45fd4
SHA256: 710e1f3aa8d3fc5eb43d4ad1e4bc5e93a94297df8f414359c859d7bbe421d237
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\storage\permanent\chrome\idb\3561288849sdhlie.sqlite-shm
binary
MD5: e4c0cc0801ec5550dbeaa1a6143cc211
SHA256: 950e5d7c277ac3207fc98e0f405c64283f8b2f5fb1ee584ddf492c513aaf79e3
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\test-block-simple.pset
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\test-block-simple.sbstore
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\test-trackwhite-simple.pset
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\test-trackwhite-simple.sbstore
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\storage\permanent\chrome\idb\3561288849sdhlie.sqlite-journal
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\test-track-simple.pset
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\test-track-simple.sbstore
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\test-harmful-simple.pset
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\3244F5F2CCB24B610C4A5F2F3BA8F5A81E173FF8
binary
MD5: abffb9eacc73d8e9a5bc52930e74867b
SHA256: 660b44df63d17de7261d7515ad976fd684d0a2bb89f28a48637b2926d2335038
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\test-harmful-simple.sbstore
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\EC4484E8B672FC4127C42B1E64701D536E797E76
compressed
MD5: 02a42a4535b95204156b036a045d750f
SHA256: a8b55f5442559558a850f747a36c98a114446c57bb30fcb83d428b060712f90f
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\AC5E012C1887C7B691A8EA00C4E754025E25C235
compressed
MD5: c8a7627a1f386fe3937b47d40682efa3
SHA256: 8f0aad0d85f019e104f5e23226b88f62b6abd1b33a73aae73d96b48ff1a7cde3
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\110B6AE26ED0F1FDF64E4B981C46CBE15635E8BB
compressed
MD5: df8cfb00099a2c62121027b388805d9e
SHA256: 7af857881e7496fca7d8f1a7c94d80b5fba4fb755a9b3287b2de354762ba75b3
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\test-unwanted-simple.pset
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\storage\permanent\chrome\idb\1657114595AmcateirvtiSty.sqlite
sqlite
MD5: 2e4792f319d85fde2644ed96194db1bf
SHA256: 25c0381d0b39b1fdf96ec225ac6785f7e72ed6c2e65aef1de54f2e333333aedd
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\storage\permanent\chrome\idb\1657114595AmcateirvtiSty.sqlite-wal
binary
MD5: 85fabaa3da98b8af6671002bf9b83ab3
SHA256: ded97eea8421a38e33949a109d7a495357894ec21791c6359c382f68d4ab54ab
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\C78C77DD43BBA2938E610F2B70201ACCF601FB6E
compressed
MD5: 3efd695f61ab87c05145e4a73e6a9c37
SHA256: 1f4f3f1689b84dc6baf9b50a44529c6481517f5409ace125e1f687c2ebe5a7f2
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\storage\permanent\chrome\idb\1657114595AmcateirvtiSty.sqlite-shm
binary
MD5: 0c6b611b0f70902e32e8a80404984bf4
SHA256: b75d30ee724af26149ac42e3868133c1c55450dd49bc46ca4bb5cf5a2d47ffc7
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\test-unwanted-simple.sbstore
––
MD5:  ––
SHA256:  ––
3352
download.exe
C:\Users\admin\AppData\Local\Temp\7zS81D83AE9\core\Accessible.tlb
tlb
MD5: ee105b897dbd5a5b75e6a91b9fafa8bd
SHA256: c5f6e85a679a98ba0fcd45f50464b6d6ebb2f0b76b4506388e9086e5fa6f93bb
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\startupCache\webext.sc.lz4.tmp
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\startupCache\webext.sc.lz4
binary
MD5: 4575dcc02171841d2c240744a2df3f44
SHA256: a586bfe22eb56a5d0c848654330c9dce7d2afec4b42e65a352d90fca6319deef
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\prefs.js
text
MD5: 3eda97043c5da93440a3ebe930af82c9
SHA256: 9d08ca208787aa71eaeea151ea97bb366c1c2320c0596011a3aa247f38e6d601
3784
setup-stub.exe
C:\Users\admin\AppData\Local\Temp\nsb9988.tmp\config.ini
text
MD5: 63a63d35cf97699b161b8e1e20916731
SHA256: cf54a33781b1e2e6caae72e3f63297bc9172279bb5f991a16ac0919a87c90a4d
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\test-phish-simple.pset
––
MD5:  ––
SHA256:  ––
3784
setup-stub.exe
C:\Users\admin\AppData\Local\Temp\nsb9988.tmp\download.exe
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\test-phish-simple.sbstore
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\test-malware-simple.pset
––
MD5:  ––
SHA256:  ––
3784
setup-stub.exe
C:\Users\admin\AppData\Local\Temp\nsb9988.tmp\bgstub_2x.jpg
image
MD5: e6b3252c0722a72dc6ec9dbd8e50e6fa
SHA256: 4736734f8d6c0671b22ff75706d639abb3b9de2b111cf3843c91983f6c19af79
3784
setup-stub.exe
C:\Users\admin\AppData\Local\Temp\nsb9988.tmp\bgstub.jpg
image
MD5: b5c054d2ceb21424777cf0a5a665dbc5
SHA256: d756b51ae5eb99cddaee671a202f73c7f56ceb43c936b1856bd434e90b207ea7
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\safebrowsing-updating\test-malware-simple.sbstore
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\storage\permanent\chrome\idb\1657114595AmcateirvtiSty.sqlite-journal
––
MD5:  ––
SHA256:  ––
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\storage\permanent\chrome\idb\2918063365piupsah.sqlite
sqlite
MD5: 850bd425358b2482e4e79bd7d792901e
SHA256: 339490f36d7413d267fe9ffab08702af432b36fce6a9020600382e5fb691952b
2300
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\46gosgde.default-nightly\cache2\entries\CC21786BD1E46EA9EB2ECD77D09298FEFBBA80E0
der
MD5: 542d00a4742b19112fff7a50e5af0749
SHA256: 654c791830d88a47074af44583ba60fd2bf338f06def26edd6bf73ece2f50787
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\storage\permanent\chrome\idb\2918063365piupsah.sqlite-wal
binary
MD5: 488fc637b3dad46e362cc9442eb26307
SHA256: f1dfe5787e0031bdd3b4a13a7e0e6f7ddaa29cf5509380bcaa101572069dbf52
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\storage\permanent\chrome\idb\2918063365piupsah.sqlite-shm
binary
MD5: d8ae84ba9d920a0ec8ee80fde681cf10
SHA256: 22f4b90bd6b01153deece9d58cf51c8c0a806dfdfb762f47ea168cf8ab0e8e30
2300
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\46gosgde.default-nightly\prefs-1.js
––
MD5:  ––
SHA256:  ––

Find more information of the staic content and download it at the full report

Network activity

HTTP(S) requests
14
TCP/UDP connections
33
DNS requests
83
Threats
0

HTTP requests

PID Process Method HTTP Code IP URL CN Type Size Reputation
3784 setup-stub.exe GET 200 52.42.67.12:80 http://download-stats.mozilla.org/stub/v8/nightly/nightly/de/0/0/6/1/7601/1/0/0/2/0/45173704/45173704/0/0/13/13/0/0/22/2/0/0/1/0/0/67.0a1/20190210094433/1/1/0/3/13.32.221.111/campaign%3D%2528not%2Bset%2529%26content%3D%2528not%2Bset%2529%26medium%3D%2528none%2529%26source%3Dwww.mozilla.org/0/0 US
––
––
whitelisted
2300 firefox.exe GET 200 2.16.186.112:80 http://detectportal.firefox.com/success.txt unknown
text
whitelisted
2300 firefox.exe POST 200 93.184.220.29:80 http://ocsp.digicert.com/ US
binary
der
whitelisted
2300 firefox.exe POST 200 93.184.220.29:80 http://ocsp.digicert.com/ US
binary
der
whitelisted
2300 firefox.exe POST 200 172.217.16.131:80 http://ocsp.pki.goog/GTSGIAG3 US
binary
der
whitelisted
2300 firefox.exe POST 200 93.184.220.29:80 http://ocsp.digicert.com/ US
binary
der
whitelisted
2300 firefox.exe POST 200 93.184.220.29:80 http://ocsp.digicert.com/ US
binary
der
whitelisted
2300 firefox.exe POST 200 93.184.220.29:80 http://ocsp.digicert.com/ US
binary
der
whitelisted
2300 firefox.exe POST 200 93.184.220.29:80 http://ocsp.digicert.com/ US
binary
der
whitelisted
2300 firefox.exe POST 200 93.184.220.29:80 http://ocsp.digicert.com/ US
binary
der
whitelisted
2300 firefox.exe POST 200 172.217.16.131:80 http://ocsp.pki.goog/GTSGIAG3 US
binary
der
whitelisted
2300 firefox.exe POST 200 172.217.16.131:80 http://ocsp.pki.goog/GTSGIAG3 US
binary
der
whitelisted
2300 firefox.exe POST 200 172.217.16.131:80 http://ocsp.pki.goog/GTSGIAG3 US
binary
der
whitelisted
2300 firefox.exe POST 200 172.217.16.131:80 http://ocsp.pki.goog/GTSGIAG3 US
binary
der
whitelisted

Download PCAP, analyze network streams, HTTP content and a lot more at the full report

Connections

PID Process IP ASN CN Reputation
3784 setup-stub.exe 52.5.199.146:443 Amazon.com, Inc. US unknown
3784 setup-stub.exe 13.32.221.111:443 Amazon.com, Inc. US unknown
3784 setup-stub.exe 52.42.67.12:80 Amazon.com, Inc. US unknown
2300 firefox.exe 52.18.148.152:443 Amazon.com, Inc. IE unknown
2300 firefox.exe 2.16.186.112:80 Akamai International B.V. –– whitelisted
2300 firefox.exe 104.16.40.2:443 Cloudflare Inc US shared
2300 firefox.exe 93.184.220.29:80 MCI Communications Services, Inc. d/b/a Verizon Business US whitelisted
2300 firefox.exe 34.215.11.207:443 Amazon.com, Inc. US unknown
2300 firefox.exe 52.89.32.107:443 Amazon.com, Inc. US unknown
2300 firefox.exe 63.245.208.195:443 Mozilla Corporation US unknown
2300 firefox.exe 172.217.23.136:443 Google Inc. US whitelisted
2300 firefox.exe 13.32.159.252:443 Amazon.com, Inc. US unknown
2300 firefox.exe 13.32.223.237:443 Amazon.com, Inc. US suspicious
2300 firefox.exe 172.217.16.131:80 Google Inc. US whitelisted
2300 firefox.exe 35.244.179.255:443 US unknown
2300 firefox.exe 52.35.215.194:443 Amazon.com, Inc. US unknown
2300 firefox.exe 13.32.223.243:443 Amazon.com, Inc. US unknown
2300 firefox.exe 13.32.223.211:443 Amazon.com, Inc. US unknown
2300 firefox.exe 172.217.23.174:443 Google Inc. US whitelisted
2300 firefox.exe 52.34.107.172:443 Amazon.com, Inc. US unknown
2300 firefox.exe 35.166.152.203:443 Amazon.com, Inc. US unknown
2300 firefox.exe 216.58.207.68:443 Google Inc. US whitelisted
2300 firefox.exe 216.58.206.10:443 Google Inc. US whitelisted

DNS requests

Domain IP Reputation
download.mozilla.org 52.5.199.146
34.237.104.187
34.193.234.146
107.23.232.109
3.208.35.0
54.165.154.57
whitelisted
download-installer.cdn.mozilla.net 13.32.221.111
whitelisted
download-stats.mozilla.org 52.42.67.12
52.10.26.75
whitelisted
location.services.mozilla.com 52.18.148.152
34.252.164.43
34.251.59.153
whitelisted
detectportal.firefox.com 2.16.186.112
2.16.186.50
whitelisted
locprod1-elb-eu-west-1.prod.mozaws.net 34.251.59.153
34.252.164.43
52.18.148.152
whitelisted
a1089.dscd.akamai.net 2.16.186.50
2.16.186.112
whitelisted
www.mozilla.org 104.16.40.2
104.16.41.2
whitelisted
www.mozilla.org.cdn.cloudflare.net 104.16.41.2
104.16.40.2
whitelisted
ocsp.digicert.com 93.184.220.29
whitelisted
prod-tp.sumo.moz.works 50.112.160.118
52.39.96.89
whitelisted
cs9.wac.phicdn.net 93.184.220.29
whitelisted
accounts.firefox.com 34.215.11.207
52.10.137.44
52.40.232.37
whitelisted
support.mozilla.org 52.39.96.89
50.112.160.118
whitelisted
search.services.mozilla.com 52.89.32.107
52.27.184.151
34.216.89.123
whitelisted
search.r53-2.services.mozilla.com 34.216.89.123
52.27.184.151
52.89.32.107
whitelisted
mozilla.org 63.245.208.195
unknown
www.googletagmanager.com 172.217.23.136
whitelisted
snippets.cdn.mozilla.net 13.32.159.252
whitelisted
www-googletagmanager.l.google.com 172.217.23.136
whitelisted
normandy.cdn.mozilla.net 13.32.223.237
13.32.223.131
13.32.223.155
13.32.223.159
whitelisted
d6wjo2hisqfy2.cloudfront.net 13.32.223.159
13.32.223.155
13.32.223.131
13.32.223.237
whitelisted
drcwo519tnci7.cloudfront.net No response whitelisted
ocsp.pki.goog 172.217.16.131
whitelisted
classify-client.services.mozilla.com 35.244.179.255
whitelisted
pki-goog.l.google.com 172.217.16.131
whitelisted
prod.normandy.prod.cloudops.mozgcp.net 35.244.179.255
whitelisted
shavar.services.mozilla.com 52.35.215.194
54.201.6.28
34.212.119.231
52.88.72.192
52.35.21.241
54.187.176.55
whitelisted
shavar.prod.mozaws.net 54.187.176.55
52.35.21.241
52.88.72.192
34.212.119.231
54.201.6.28
52.35.215.194
whitelisted
content-signature.cdn.mozilla.net 13.32.223.243
13.32.223.90
13.32.223.88
13.32.223.220
whitelisted
d12uj65dsn9ho1.cloudfront.net 13.32.223.220
13.32.223.88
13.32.223.90
13.32.223.243
whitelisted
www.facebook.com 157.240.1.35
whitelisted
www.wikipedia.org 91.198.174.192
whitelisted
www.youtube.com 172.217.23.142
216.58.206.14
216.58.207.46
216.58.207.78
172.217.16.174
216.58.208.46
172.217.16.142
172.217.22.46
172.217.18.110
172.217.23.174
172.217.21.206
216.58.205.238
172.217.18.14
whitelisted
star-mini.c10r.facebook.com No response whitelisted
www.reddit.com 151.101.1.140
151.101.65.140
151.101.129.140
151.101.193.140
whitelisted
youtube-ui.l.google.com 172.217.18.14
216.58.205.238
172.217.21.206
172.217.23.174
172.217.18.110
172.217.22.46
172.217.16.142
216.58.208.46
172.217.16.174
216.58.207.78
216.58.207.46
216.58.206.14
172.217.23.142
whitelisted
twitter.com 104.244.42.1
104.244.42.65
whitelisted
reddit.map.fastly.net 151.101.193.140
151.101.129.140
151.101.65.140
151.101.1.140
whitelisted
tracking-protection.cdn.mozilla.net 13.32.223.211
13.32.223.27
13.32.223.102
13.32.223.42
whitelisted
d1zkz3k4cclnv6.cloudfront.net 13.32.223.42
13.32.223.102
13.32.223.27
13.32.223.211
whitelisted
www.google-analytics.com 172.217.23.174
whitelisted
www-google-analytics.l.google.com No response whitelisted
tiles.services.mozilla.com 52.34.107.172
34.209.108.219
35.160.41.125
34.218.217.119
52.39.131.77
52.26.103.165
52.25.70.97
34.216.156.21
whitelisted
tiles.r53-2.services.mozilla.com 34.216.156.21
52.25.70.97
52.26.103.165
52.39.131.77
34.218.217.119
35.160.41.125
34.209.108.219
52.34.107.172
whitelisted
addons.mozilla.org 35.166.152.203
34.211.206.211
34.215.33.66
52.10.50.117
35.166.51.240
54.187.89.91
whitelisted
olympia.prod.mozaws.net 54.187.89.91
35.166.51.240
52.10.50.117
34.215.33.66
34.211.206.211
35.166.152.203
whitelisted
www.google.com 216.58.207.68
whitelisted
safebrowsing.googleapis.com 216.58.206.10
whitelisted

Threats

No threats detected.

Debug output strings

No debug info.