General Info

URL

https://advantageengineers-my.sharepoint.com/:b:/p/jhyoung/EfP3h2V15QNHr2j60Ip6vGgBuppNw2-7qNN3YpEcd2ObwQ

Full analysis
https://app.any.run/tasks/382a9433-1588-488d-8669-e6d6e1ea5c06
Verdict
Malicious activity
Analysis date
7/17/2019, 19:46:42
OS:
Windows 7 Professional Service Pack 1 (build: 7601, 32 bit)
Tags:

opendir

Indicators:

ANY.RUN is an interactive service which provides full access to the guest system. Information in this report could be distored by user actions and is provided for user acknowledgement as it is. ANY.RUN does not guarantee maliciousness or safety of the content.

Software environment set and analysis options

Launch configuration

Task duration
60 seconds
Additional time used
none
Fakenet option
off
Heavy Evaision option
off
MITM proxy
off
Route via Tor
off
Network geolocation
off
Privacy
Public submission
Autoconfirmation of UAC
off

Software preset

  • Internet Explorer 8.0.7601.17514
  • Adobe Acrobat Reader DC MUI (15.023.20070)
  • Adobe Flash Player 26 ActiveX (26.0.0.131)
  • Adobe Flash Player 26 NPAPI (26.0.0.131)
  • Adobe Flash Player 26 PPAPI (26.0.0.131)
  • Adobe Refresh Manager (1.8.0)
  • CCleaner (5.35)
  • FileZilla Client 3.36.0 (3.36.0)
  • Google Chrome (75.0.3770.100)
  • Google Update Helper (1.3.34.7)
  • Java 8 Update 92 (8.0.920.14)
  • Java Auto Updater (2.8.92.14)
  • Microsoft .NET Framework 4.7.2 (4.7.03062)
  • Microsoft Office Access MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Access Setup Metadata MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Excel MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office OneNote MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Outlook MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office PowerPoint MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Professional 2010 (14.0.6029.1000)
  • Microsoft Office Proof (English) 2010 (14.0.6029.1000)
  • Microsoft Office Proof (French) 2010 (14.0.6029.1000)
  • Microsoft Office Proof (Spanish) 2010 (14.0.6029.1000)
  • Microsoft Office Proofing (English) 2010 (14.0.6029.1000)
  • Microsoft Office Publisher MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Shared MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Shared Setup Metadata MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Office Single Image 2010 (14.0.6029.1000)
  • Microsoft Office Word MUI (English) 2010 (14.0.6029.1000)
  • Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (9.0.30729.6161)
  • Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (10.0.40219)
  • Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (12.0.30501.0)
  • Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (12.0.21005)
  • Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (12.0.21005)
  • Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.21.27702 (14.21.27702.2)
  • Microsoft Visual C++ 2019 X86 Additional Runtime - 14.21.27702 (14.21.27702)
  • Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.21.27702 (14.21.27702)
  • Mozilla Firefox 67.0.4 (x86 en-US) (67.0.4)
  • Notepad++ (32-bit x86) (7.5.1)
  • Opera 12.15 (12.15.1748)
  • Skype version 8.29 (8.29)
  • Update for Microsoft .NET Framework 4.7.2 (KB4087364) (1)
  • VLC media player (2.2.6)
  • WinRAR 5.60 (32-bit) (5.60.0)

Hotfixes

  • Client LanguagePack Package
  • Client Refresh LanguagePack Package
  • CodecPack Basic Package
  • Foundation Package
  • IE Troubleshooters Package
  • InternetExplorer Optional Package
  • KB2534111
  • KB2999226
  • KB4019990
  • KB976902
  • LocalPack AU Package
  • LocalPack CA Package
  • LocalPack GB Package
  • LocalPack US Package
  • LocalPack ZA Package
  • ProfessionalEdition
  • UltimateEdition

Behavior activities

MALICIOUS SUSPICIOUS INFO

No malicious indicators.

No suspicious indicators.

 Creates files in the user directory
  • firefox.exe (PID: 3500)
Reads CPU info
  • firefox.exe (PID: 3500)
Application launched itself
  • firefox.exe (PID: 3500)

Find more information about signature artifacts and mapping to MITRE ATT&CK™ MATRIX at the full report

Screenshots

Screenshot of unknown taken from 16162 ms from task started Screenshot of unknown taken from 17177 ms from task started Screenshot of unknown taken from 19307 ms from task started Screenshot of unknown taken from 22308 ms from task started Screenshot of unknown taken from 23318 ms from task started Screenshot of unknown taken from 24318 ms from task started Screenshot of unknown taken from 25327 ms from task started Screenshot of unknown taken from 26330 ms from task started Screenshot of unknown taken from 28331 ms from task started Screenshot of unknown taken from 30332 ms from task started Screenshot of unknown taken from 42361 ms from task started Screenshot of unknown taken from 43362 ms from task started Screenshot of unknown taken from 48385 ms from task started Screenshot of unknown taken from 49385 ms from task started Screenshot of unknown taken from 50385 ms from task started Screenshot of unknown taken from 58417 ms from task started Screenshot of unknown taken from 60418 ms from task started Screenshot of unknown taken from 68500 ms from task started Screenshot of unknown taken from 72522 ms from task started

Processes

Total processes
38
Monitored processes
6
Malicious processes
0
Suspicious processes
0

Behavior graph

+
start firefox.exe firefox.exe no specs firefox.exe firefox.exe firefox.exe firefox.exe
Specs description
Program did not start
Integrity level elevation
Task сontains an error or was rebooted
Process has crashed
Task contains several apps running
Executable file was dropped
Debug information is available
Process was injected
Network attacks were detected
Application downloaded the executable file
Actions similar to stealing personal data
Behavior similar to exploiting the vulnerability
Inspected object has sucpicious PE structure
File is detected by antivirus software
CPU overrun
RAM overrun
Process starts the services
Process was added to the startup
Behavior similar to spam
Low-level access to the HDD
Probably Tor was used
System was rebooted
Connects to the network
Known threat

Process information

Click at the process to see the details.

PID
3500
CMD
"C:\Program Files\Mozilla Firefox\firefox.exe" "https://advantageengineers-my.sharepoint.com/:b:/p/jhyoung/EfP3h2V15QNHr2j60Ip6vGgBuppNw2-7qNN3YpEcd2ObwQ"
Path
C:\Program Files\Mozilla Firefox\firefox.exe
Indicators
Parent process
––
User
admin
Integrity Level
MEDIUM
Version:
Company
Mozilla Corporation
Description
Firefox
Version
67.0.4
Modules
Image
c:\program files\mozilla firefox\firefox.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\mozilla firefox\mozglue.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\version.dll
c:\program files\mozilla firefox\msvcp140.dll
c:\program files\mozilla firefox\vcruntime140.dll
c:\program files\mozilla firefox\api-ms-win-crt-runtime-l1-1-0.dll
c:\program files\mozilla firefox\ucrtbase.dll
c:\program files\mozilla firefox\api-ms-win-core-localization-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-processthreads-l1-1-1.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-timezone-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l2-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-synch-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-string-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-heap-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-stdio-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-convert-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-locale-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-math-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-time-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-filesystem-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-environment-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-utility-l1-1-0.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\mozilla firefox\api-ms-win-crt-multibyte-l1-1-0.dll
c:\program files\mozilla firefox\nss3.dll
c:\windows\system32\winmm.dll
c:\windows\system32\wsock32.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\program files\mozilla firefox\lgpllibs.dll
c:\program files\mozilla firefox\xul.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\avrt.dll
c:\windows\system32\ole32.dll
c:\windows\system32\d3d11.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\credui.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\wtsapi32.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\kbdus.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\psapi.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\napinsp.dll
c:\windows\system32\pnrpnsp.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\winrnr.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\wbem\wbemprox.dll
c:\windows\system32\wbemcomn.dll
c:\windows\system32\wship6.dll
c:\windows\system32\cryptsp.dll
c:\windows\system32\winsta.dll
c:\windows\system32\rsaenh.dll
c:\windows\system32\wshqos.dll
c:\windows\system32\rpcrtremote.dll
c:\windows\system32\wbem\wbemsvc.dll
c:\windows\system32\wbem\fastprox.dll
c:\windows\system32\ntdsapi.dll
c:\windows\system32\apphelp.dll
c:\windows\system32\mscms.dll
c:\windows\system32\wpc.dll
c:\windows\system32\wevtapi.dll
c:\windows\system32\samcli.dll
c:\windows\system32\samlib.dll
c:\windows\system32\netutils.dll
c:\windows\system32\mmdevapi.dll
c:\windows\system32\propsys.dll
c:\windows\system32\audioses.dll
c:\windows\system32\d2d1.dll
c:\program files\google\update\1.3.34.11\npgoogleupdate3.dll
c:\windows\system32\msimg32.dll
c:\windows\system32\wininet.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\iertutil.dll
c:\program files\mozilla firefox\softokn3.dll
c:\windows\system32\sspicli.dll
c:\program files\mozilla firefox\freebl3.dll
c:\windows\system32\rasapi32.dll
c:\windows\system32\rasman.dll
c:\windows\system32\rtutils.dll
c:\progra~1\mozill~1\nssckbi.dll
c:\windows\system32\sensapi.dll
c:\windows\system32\rasadhlp.dll
c:\windows\system32\fwpuclnt.dll
c:\windows\system32\explorerframe.dll
c:\windows\system32\duser.dll
c:\windows\system32\dui70.dll
c:\windows\system32\actxprxy.dll
c:\program files\adobe\acrobat reader dc\reader\acrord32.exe

PID
2324
CMD
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="3500.0.1812456012\1523968457" -parentBuildID 20190619235627 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 3500 "\\.\pipe\gecko-crash-server-pipe.3500" 1168 gpu
Path
C:\Program Files\Mozilla Firefox\firefox.exe
Indicators
No indicators
Parent process
firefox.exe
User
admin
Integrity Level
MEDIUM
Version:
Company
Mozilla Corporation
Description
Firefox
Version
67.0.4
Modules
Image
c:\program files\mozilla firefox\firefox.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\mozilla firefox\mozglue.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\version.dll
c:\program files\mozilla firefox\msvcp140.dll
c:\program files\mozilla firefox\vcruntime140.dll
c:\program files\mozilla firefox\api-ms-win-crt-runtime-l1-1-0.dll
c:\program files\mozilla firefox\ucrtbase.dll
c:\program files\mozilla firefox\api-ms-win-core-localization-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-processthreads-l1-1-1.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-timezone-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l2-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-synch-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-string-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-heap-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-stdio-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-convert-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-locale-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-math-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-time-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-filesystem-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-environment-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-utility-l1-1-0.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\mozilla firefox\api-ms-win-crt-multibyte-l1-1-0.dll
c:\program files\mozilla firefox\nss3.dll
c:\windows\system32\winmm.dll
c:\windows\system32\wsock32.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\program files\mozilla firefox\lgpllibs.dll
c:\program files\mozilla firefox\xul.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\avrt.dll
c:\windows\system32\ole32.dll
c:\windows\system32\d3d11.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\credui.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\wtsapi32.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\mfplat.dll
c:\windows\system32\mf.dll
c:\windows\system32\atl.dll
c:\windows\system32\ksuser.dll
c:\windows\system32\dxva2.dll
c:\windows\system32\evr.dll
c:\windows\system32\powrprof.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\wship6.dll
c:\windows\system32\wshqos.dll
c:\windows\system32\msimg32.dll

PID
3436
CMD
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="3500.3.1546029882\1880538640" -childID 1 -isForBrowser -prefsHandle 1340 -prefMapHandle 1696 -prefsLen 1 -prefMapSize 188076 -parentBuildID 20190619235627 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 3500 "\\.\pipe\gecko-crash-server-pipe.3500" 1768 tab
Path
C:\Program Files\Mozilla Firefox\firefox.exe
Indicators
Parent process
firefox.exe
User
admin
Integrity Level
LOW
Version:
Company
Mozilla Corporation
Description
Firefox
Version
67.0.4
Modules
Image
c:\program files\mozilla firefox\firefox.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\mozilla firefox\mozglue.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\version.dll
c:\program files\mozilla firefox\msvcp140.dll
c:\program files\mozilla firefox\vcruntime140.dll
c:\program files\mozilla firefox\api-ms-win-crt-runtime-l1-1-0.dll
c:\program files\mozilla firefox\ucrtbase.dll
c:\program files\mozilla firefox\api-ms-win-core-localization-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-processthreads-l1-1-1.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-timezone-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l2-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-synch-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-string-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-heap-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-stdio-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-convert-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-locale-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-math-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-time-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-filesystem-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-environment-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-utility-l1-1-0.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\user32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\mozilla firefox\api-ms-win-crt-multibyte-l1-1-0.dll
c:\program files\mozilla firefox\nss3.dll
c:\windows\system32\winmm.dll
c:\windows\system32\wsock32.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\program files\mozilla firefox\lgpllibs.dll
c:\program files\mozilla firefox\xul.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\avrt.dll
c:\windows\system32\ole32.dll
c:\windows\system32\d3d11.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\credui.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\wtsapi32.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\napinsp.dll
c:\windows\system32\pnrpnsp.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\winrnr.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\wship6.dll
c:\windows\system32\wshqos.dll
c:\windows\system32\mscms.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\mmdevapi.dll
c:\windows\system32\propsys.dll
c:\windows\system32\audioses.dll
c:\windows\system32\wpc.dll
c:\windows\system32\wevtapi.dll
c:\windows\system32\samcli.dll
c:\windows\system32\samlib.dll
c:\windows\system32\netutils.dll
c:\program files\mozilla firefox\softokn3.dll
c:\program files\mozilla firefox\freebl3.dll

PID
3976
CMD
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="3500.13.1696064450\2119556396" -childID 2 -isForBrowser -prefsHandle 2704 -prefMapHandle 2708 -prefsLen 5842 -prefMapSize 188076 -parentBuildID 20190619235627 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 3500 "\\.\pipe\gecko-crash-server-pipe.3500" 2736 tab
Path
C:\Program Files\Mozilla Firefox\firefox.exe
Indicators
Parent process
firefox.exe
User
admin
Integrity Level
LOW
Version:
Company
Mozilla Corporation
Description
Firefox
Version
67.0.4
Modules
Image
c:\program files\mozilla firefox\firefox.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\mozilla firefox\mozglue.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\version.dll
c:\program files\mozilla firefox\msvcp140.dll
c:\program files\mozilla firefox\vcruntime140.dll
c:\program files\mozilla firefox\api-ms-win-crt-runtime-l1-1-0.dll
c:\program files\mozilla firefox\ucrtbase.dll
c:\program files\mozilla firefox\api-ms-win-core-localization-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-processthreads-l1-1-1.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-timezone-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l2-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-synch-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-string-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-heap-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-stdio-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-convert-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-locale-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-math-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-time-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-filesystem-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-environment-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-utility-l1-1-0.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\mozilla firefox\api-ms-win-crt-multibyte-l1-1-0.dll
c:\program files\mozilla firefox\nss3.dll
c:\windows\system32\winmm.dll
c:\windows\system32\wsock32.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\program files\mozilla firefox\lgpllibs.dll
c:\program files\mozilla firefox\xul.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\avrt.dll
c:\windows\system32\ole32.dll
c:\windows\system32\d3d11.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\credui.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\wtsapi32.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\napinsp.dll
c:\windows\system32\pnrpnsp.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\winrnr.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\wship6.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\wshqos.dll
c:\windows\system32\mscms.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\mmdevapi.dll
c:\windows\system32\propsys.dll
c:\windows\system32\audioses.dll
c:\program files\mozilla firefox\softokn3.dll
c:\program files\mozilla firefox\freebl3.dll
c:\windows\system32\wpc.dll
c:\windows\system32\wevtapi.dll
c:\windows\system32\samcli.dll
c:\windows\system32\samlib.dll
c:\windows\system32\netutils.dll

PID
3684
CMD
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="3500.20.1933802462\1245979273" -childID 3 -isForBrowser -prefsHandle 3456 -prefMapHandle 3460 -prefsLen 6720 -prefMapSize 188076 -parentBuildID 20190619235627 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 3500 "\\.\pipe\gecko-crash-server-pipe.3500" 3472 tab
Path
C:\Program Files\Mozilla Firefox\firefox.exe
Indicators
Parent process
firefox.exe
User
admin
Integrity Level
LOW
Version:
Company
Mozilla Corporation
Description
Firefox
Version
67.0.4
Modules
Image
c:\program files\mozilla firefox\firefox.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\kernel32.dll
c:\program files\mozilla firefox\mozglue.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\version.dll
c:\program files\mozilla firefox\msvcp140.dll
c:\program files\mozilla firefox\vcruntime140.dll
c:\program files\mozilla firefox\api-ms-win-crt-runtime-l1-1-0.dll
c:\program files\mozilla firefox\ucrtbase.dll
c:\program files\mozilla firefox\api-ms-win-core-localization-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-processthreads-l1-1-1.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-timezone-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l2-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-synch-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-string-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-heap-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-stdio-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-convert-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-locale-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-math-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-time-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-filesystem-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-environment-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-utility-l1-1-0.dll
c:\windows\system32\user32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\usp10.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\mozilla firefox\api-ms-win-crt-multibyte-l1-1-0.dll
c:\program files\mozilla firefox\nss3.dll
c:\windows\system32\winmm.dll
c:\windows\system32\wsock32.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\program files\mozilla firefox\lgpllibs.dll
c:\program files\mozilla firefox\xul.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\avrt.dll
c:\windows\system32\ole32.dll
c:\windows\system32\d3d11.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\credui.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\wtsapi32.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\napinsp.dll
c:\windows\system32\pnrpnsp.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\winrnr.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\wship6.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\wshqos.dll
c:\windows\system32\mscms.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\mmdevapi.dll
c:\windows\system32\propsys.dll
c:\windows\system32\audioses.dll
c:\windows\system32\wpc.dll
c:\windows\system32\wevtapi.dll
c:\windows\system32\samcli.dll
c:\windows\system32\samlib.dll
c:\windows\system32\netutils.dll
c:\program files\mozilla firefox\softokn3.dll
c:\program files\mozilla firefox\freebl3.dll
c:\windows\system32\cryptsp.dll
c:\windows\system32\rsaenh.dll
c:\windows\system32\rpcrtremote.dll

PID
2816
CMD
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="3500.27.582624652\290873552" -childID 4 -isForBrowser -prefsHandle 1232 -prefMapHandle 3860 -prefsLen 6961 -prefMapSize 188076 -parentBuildID 20190619235627 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 3500 "\\.\pipe\gecko-crash-server-pipe.3500" 3872 tab
Path
C:\Program Files\Mozilla Firefox\firefox.exe
Indicators
Parent process
firefox.exe
User
admin
Integrity Level
LOW
Version:
Company
Mozilla Corporation
Description
Firefox
Version
67.0.4
Modules
Image
c:\program files\mozilla firefox\firefox.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\program files\mozilla firefox\mozglue.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\dbghelp.dll
c:\windows\system32\version.dll
c:\program files\mozilla firefox\msvcp140.dll
c:\program files\mozilla firefox\vcruntime140.dll
c:\program files\mozilla firefox\api-ms-win-crt-runtime-l1-1-0.dll
c:\program files\mozilla firefox\ucrtbase.dll
c:\program files\mozilla firefox\api-ms-win-core-localization-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-processthreads-l1-1-1.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-core-timezone-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-file-l2-1-0.dll
c:\program files\mozilla firefox\api-ms-win-core-synch-l1-2-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-string-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-heap-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-stdio-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-convert-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-locale-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-math-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-time-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-filesystem-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-environment-l1-1-0.dll
c:\program files\mozilla firefox\api-ms-win-crt-utility-l1-1-0.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\imm32.dll
c:\windows\system32\msctf.dll
c:\program files\mozilla firefox\api-ms-win-crt-multibyte-l1-1-0.dll
c:\program files\mozilla firefox\nss3.dll
c:\windows\system32\winmm.dll
c:\windows\system32\wsock32.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\nsi.dll
c:\program files\mozilla firefox\lgpllibs.dll
c:\program files\mozilla firefox\xul.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\avrt.dll
c:\windows\system32\ole32.dll
c:\windows\system32\d3d11.dll
c:\windows\system32\dxgi.dll
c:\windows\system32\dwmapi.dll
c:\windows\system32\credui.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winnsi.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\cfgmgr32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\devobj.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\wtsapi32.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\userenv.dll
c:\windows\system32\profapi.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
c:\windows\system32\cryptbase.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\nlaapi.dll
c:\windows\system32\napinsp.dll
c:\windows\system32\pnrpnsp.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\winrnr.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\sspicli.dll
c:\windows\system32\dwrite.dll
c:\windows\system32\wship6.dll
c:\windows\system32\mscms.dll
c:\windows\system32\wshqos.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\mmdevapi.dll
c:\windows\system32\propsys.dll
c:\windows\system32\audioses.dll
c:\windows\system32\wpc.dll
c:\windows\system32\wevtapi.dll
c:\windows\system32\samcli.dll
c:\windows\system32\samlib.dll
c:\windows\system32\netutils.dll

Registry activity

Total events
375
Read events
372
Write events
3
Delete events
0

Modification events

PID
Process
Operation
Key
Name
Value
3500
firefox.exe
write
HKEY_CURRENT_USER\Software\Mozilla\Firefox\Launcher
C:\Program Files\Mozilla Firefox\firefox.exe|Browser
0000000000000000
3500
firefox.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings
ProxyEnable
0
3500
firefox.exe
write
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections
SavedLegacySettings
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

Files activity

Executable files
0
Suspicious files
132
Text files
29
Unknown types
58

Dropped files

PID
Process
Filename
Type
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\crashes\store.json.mozlz4.tmp
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-malware-proto.vlpset
binary
MD5: aa763a4fd50972886f477bf1d4edf36e
SHA256: 1907ed154d327be8913d32536a3a0a0aac65f1b1fc9a6867c441a8949503c441
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionstore-backups\recovery.baklz4
jsonlz4
MD5: d388a8965126dc851868503675ac10bc
SHA256: ee79599db943824e3fd15e0141e2637c45e6392894545d6c3bda75952fb9691c
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionstore-backups\recovery.jsonlz4
jsonlz4
MD5: 627498db7be828f5139b4283aea0f178
SHA256: f0f23f624b74009bea44133d5ce3f168210f1482e716e36a8cb01deb5efcd105
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionstore-backups\recovery.jsonlz4.tmp
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: db7f17f8624da796b1dccaef376b9182
SHA256: 9c55421476eeadd72e70e009e8ad25b1a8b7e6c96ee5b96c9c1da485e1470a63
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs-1.js
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.sqlite
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.sqlite-shm
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.sqlite-wal
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\logins.json
text
MD5: 50e9858f2da5d8233d89db905904fabf
SHA256: f840d441b5ade41cba3131d99353dd635df86c8fdf09169739b1e91cd4ee29f9
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\logins.json.tmp
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\B76A7A8748AFEBE027E0B8C93C57F2A6CD4E7788
binary
MD5: 8d8f56229692d8f69389688c4b3c5c82
SHA256: e38222231f480ea2d9d1fba83291411547e2a356b1705b6abf95dabf338e3125
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\D4DCE1901F5785647A3C9493BCA8BAF8E907619F
binary
MD5: eb1de9d6c3b951250b2d855343c0f5ad
SHA256: da7c00f66804cb5a682ed40d2d87a54dfa4bcc69f41673006e7a62e4ffa4c891
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\2E61E79E106C4A0B8864B09821908E2D6FF91AD5
binary
MD5: af01e1106b53839ae7e944ed24f234d5
SHA256: 9194f4ee6bb04de2100d0cf2b022caee4d67342b02e099f55b0c991f9a84ec31
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: 73fa3bf28eb10ec4a37cb15e6e30b7da
SHA256: bb5c26a77fe62bf99b8f0b2061af8d7983a42e88517bee9d359b38a300a5b808
3500
firefox.exe
C:\Users\admin\AppData\Local\Temp\mz_etilqs_fXcAXcXnYPy4Emr
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\EEAEA8AB98877B6DD1B0F31F837915B7FD47F46F
cer
MD5: bfd0f7738fcf1c701aed53de1b687eb1
SHA256: 90d329f0730e5627daaf861de38b861ad2f0b69fb4d8eac1ae27dabac9960fd6
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\D00A688072D5E651DFCBF1F615D0FF8CC68B8989
binary
MD5: 1dd976701b3345cd2e5d6a9c157687b1
SHA256: 9433397b1352e9702cfd48a5d99fdf0729da8d8a087028cd6a15ca56288a8b9c
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\1836CC1ECC545FA7B1A59C8B19A2E984D0122ED4
cer
MD5: ea6322ccccdec3dca539f583334a72ef
SHA256: 216730664884efb9ac54ee0bad628608fe3606a1e5a8036965f3f5235a89c05e
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\7B230AB1AF8D8511EACCCB69C1917AB2C031B2FC
binary
MD5: 3d02a750c66a4bac2a7b45013a2b5003
SHA256: 3e4082dc62b752839fc2ea1912702fb81eca64ca0e64316bee498b81ee4b1f27
3500
firefox.exe
C:\Users\admin\AppData\Local\Temp\mz_etilqs_tVoCtsGQPeZxqiQ
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.sqlite-shm
binary
MD5: b032f194876f2502c3e7110de38f71ff
SHA256: b0a6f038453ebc718a8c9179ea14e949d9b546d8b16ba4754cb9b08d7a913c28
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.sqlite-wal
binary
MD5: 3bdabcc7145349718a27622548679f51
SHA256: 5f532aff5c34794eb8c76c2e341337f0a9e6736a4a5ab5a7b408da78dd7fb649
3500
firefox.exe
C:\Users\admin\AppData\Local\Temp\mz_etilqs_qu6Wbr8XIcd4EL9
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: e689802ebc939fa3c786c36c56f669b7
SHA256: cc5f8cb4c8664551c31f8013ea571e9c294809501fa014e818e41d2fe893c701
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\1836CC1ECC545FA7B1A59C8B19A2E984D0122ED4
cer
MD5: 4ecbb7950f5bb3eb4a3a8a96be3c142f
SHA256: 7cd7ea53d997bf0214cec0ff4c67f4c4b9a953286054d7da8ef28b03bb5fbc77
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\D17FDEA053F042E7C1F46E73FEFE25911325753D
binary
MD5: b809a2f628c82b134e7ce5c6323680de
SHA256: a4202e06e76292d8ab458620b841237feef91dab2f8d5881074a43bf88229c08
3500
firefox.exe
C:\Users\admin\AppData\Local\Temp\mz_etilqs_dKuz1gw11TfuNgn
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\permissions.sqlite-journal
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\04E55B30B274BBCB2DDD23B3D92098BAD7C02F8C
cer
MD5: 16f741b1a0a152915bb3c90c6e4939ac
SHA256: 144f2f98adb6fa9b4ee4ee62482eda821210a2cb79d5c1bea9c60fc0afdcff43
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.sqlite
sqlite
MD5: 09ddd701a2da58ddc144eddde75096d8
SHA256: f487dcc597bdd208ab0d5adb0e026adb7f448aea3cf29a3d1f87d98f6370ee6d
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\B1EAE5BEE35D601BF27D9EE7503A2CC3CF0986CC
binary
MD5: 99a636e5aa582e0080e2d7b106fa9f57
SHA256: 619ab38cb54d03165b5cba5984e593e521431520db9c95e5402f9e318833f163
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\4B95BEAA903CBF97959E5B54B75FE23C32885CC6
vc
MD5: f9736beccdddfc0c0a9f6f79eee76f29
SHA256: 28b4b429c91c51c472dcf9a13bcf992178dd807ec43c1bdd23fef48a75994a54
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\2E61E79E106C4A0B8864B09821908E2D6FF91AD5
binary
MD5: 3770db75177de9b939c4ff8ffbf32125
SHA256: 5ba2e5c64422c5739f54a679d36d959239a8f0d03b36e8496636bcbcdc059b0a
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\04E55B30B274BBCB2DDD23B3D92098BAD7C02F8C
binary
MD5: cb8cced1a927d2a0a61c84c528cf7ad4
SHA256: 0ece38a4378cd4635e2d5a9a36ca0d66f64ba1a9ab2096122ae4f23fd1fa51e5
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\1AD304ABBA46C7D0DD5727FCF78E035E346AC85A
binary
MD5: b50047b6619a46c7f0e85e6013d00f3c
SHA256: 3a98c83de7dacffd8156383790d4596d93fd3189c0cc79323c7ad03981068bd1
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionstore-backups\recovery.jsonlz4
jsonlz4
MD5: d388a8965126dc851868503675ac10bc
SHA256: ee79599db943824e3fd15e0141e2637c45e6392894545d6c3bda75952fb9691c
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionstore-backups\recovery.baklz4
jsonlz4
MD5: 5d5b3e854bc24ae8b4496cb0de15d29c
SHA256: 15462ac7eeabc6804f8e5b1303d4ae56b0e9aff71426009a8967d9f284f265ef
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\13E9313BAD39F6E8DCA712DF28C4582E3E2ED373
image
MD5: f759bcc1833371ce8ef865d450dcc7eb
SHA256: cbd485d60acb560c412ea770eb8a17f83394ce1578875335df81619c4d106717
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\F6DE4E22BB423C2C9E9EC3A3FDE377DCB96680ED
compressed
MD5: ea93ea40f0a1d7bc87c7a0b45594c177
SHA256: 14a76da4bccd10d3437ee9ff64f2ad7491d590c6159aea20588be2d9dc9aae19
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\5A7C8A86F6595D29022E437F856EB7AD53A4A1AE
binary
MD5: 9e914c3b158da478ee407ac5e8cea968
SHA256: 72e126b2ba36a2688a91df229a9fd8c3f40a47b39a6d2433caedd2154923e84c
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\C38B66C0B26E24ECEB1C5302636C4C3991548847
binary
MD5: 70fd69b92fdd1e1bba2c5c82229dd731
SHA256: 3603cee36cc0fe940d1b4ae8547d625c2cbb52a142a43f52ab640ea2c283f2bb
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\B1EAE5BEE35D601BF27D9EE7503A2CC3CF0986CC
binary
MD5: b34a2d29b75636d40a388f65a6e2e462
SHA256: 32250470dc7d72ba3b51c8e54feb8943e0554f50cbe8d6e30b19622e974ac707
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\D14E89E9C0B1611A544D1BF058490F1AB052C547
text
MD5: 323f883fbb1224b611d4ae621569b4cd
SHA256: b413805e30fa3c13c6d139b20018e1e48274c1a547f1e5631aab2f6d45027ccf
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: 1346dbf5a6f660ea5c2df2422867653f
SHA256: e8a905290ae22e1d0249ed3741dc20e272567db9b39cfc9d2eebb15a3872efd5
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\1836CC1ECC545FA7B1A59C8B19A2E984D0122ED4
cer
MD5: 6ae484912ce316747af16e973a04a5dd
SHA256: d7edb4adafb4587cab020f5e5dcdb1fecbe7503f7f502887e6ee2abf1f2ad8a3
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\5C801F832162D8B9DA2131263826A0E53BC6BC31
binary
MD5: aeef6a9bb3334ee0adae69805b53b65d
SHA256: d256d46033350eb920d215be78b6070185a286b235b81e5bba6fb886fcfe164b
3500
firefox.exe
C:\Users\admin\AppData\Local\Temp\mz_etilqs_VIcN8Oe65JJSc7L
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: 7aaadfc03080de94ba4a1179744766c7
SHA256: 20f22026d8423ec429f4ccc9e479538ce33203329401a72adc5b5d06e9e074b2
3500
firefox.exe
C:\Users\admin\AppData\Local\Temp\mz_etilqs_mcTCOrKAPqP3wg8
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\1836CC1ECC545FA7B1A59C8B19A2E984D0122ED4
cer
MD5: 5b3ab50b14aa6900df5a9962846a1026
SHA256: c74a32715ebed3d2f3722530e8cfb330cca24dafe77ef7f98b937c83dfab7297
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\71AC4FE466B672AC3AA04372348F46ED137544CA
binary
MD5: 31624e1f16a8c7c443e7dc3aab322b2e
SHA256: 59d90190bc65c6622ab85d2c6b9753e6c546c8ebe98fc300e59792771b6c09c0
3500
firefox.exe
C:\Users\admin\AppData\Local\Temp\mz_etilqs_3CdGRJCpflDHWIj
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: 093de18c6e68b6edb27c22234da86dae
SHA256: 4b8bcc2deaa4d54e48a50abf2ffe79614e1695eb0c10726c4d49265d3b985f48
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\2E61E79E106C4A0B8864B09821908E2D6FF91AD5
binary
MD5: 6ae608069d99b3ee2a92458c47e74f21
SHA256: 71421d7fb8ee1c6bfd6c1477bde6a8edab614fa700fd6cab2e6d76bad067333c
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\2B8FB3A7C1E8990CE64886D66718692D2B2ED2BC
binary
MD5: bf2ce59f8c61b4d9a1de1c1fa6d27c7f
SHA256: e6f034a7c97c228fab6d9a6bb6e9d1b2bda901958d447832d2abcac1a7ed6a94
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\5773C189C11B0C47FA5802B58F384BFFD79F6F6F
image
MD5: 7dddb6b46771bf062be186286106be37
SHA256: 43a7c2c5d95bea7d723d518840fa791d360ae9844ded409f192de4f366234f04
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\13E9313BAD39F6E8DCA712DF28C4582E3E2ED373
image
MD5: 669824ddf4f5344485b58f88108bec05
SHA256: 47a26d472dbbc256b8f73de72e65a1fbda2764b7999b3d7c35a0e3d74300986b
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\F6DE4E22BB423C2C9E9EC3A3FDE377DCB96680ED
compressed
MD5: 67897a07a178450fa5e51c93a910d409
SHA256: d01c2937fd01ee681a289249c9c81b7ea7a5deae33f83b70b3d92cd9fba2c912
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\5A7C8A86F6595D29022E437F856EB7AD53A4A1AE
binary
MD5: 3ffce50daf65470c0a13b7e9d382e232
SHA256: f66f58cb033629a6917c12a5ff138a996359622277456f1326f8767064836947
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\C38B66C0B26E24ECEB1C5302636C4C3991548847
binary
MD5: 7f8d152624d0bf10ef3a7601d93f37bd
SHA256: 85c347b007076c336db4ed7992b18f80411c42ec99cadf24e619f300c1d211ef
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\629BF908B30C9E9DE3A6B62726E0DC104A76F568
binary
MD5: fa8cea9ffe40e373dd6095b1baf57d07
SHA256: eea22498219f259619baf4f2bf9e7ae60f3a8fb85a707e9d0e9057a4fd5f567c
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\formhistory.sqlite-journal
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionstore-backups\recovery.jsonlz4
jsonlz4
MD5: 5d5b3e854bc24ae8b4496cb0de15d29c
SHA256: 15462ac7eeabc6804f8e5b1303d4ae56b0e9aff71426009a8967d9f284f265ef
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionstore-backups\recovery.baklz4
jsonlz4
MD5: 2db7f1b4f84008d3a19e077d6db06da9
SHA256: 92f0101a22eefdc8d18add89df6c7ffb692ffd27baaf08068804fd1ede0f71dd
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\66F0A479A97742AECB318EBEEAABA0EC86A320F1
compressed
MD5: bbe7a9b4eced808140d43c2c5c692ade
SHA256: 4be36428eee7c8fd23d46ac25d4abf000e6cc146ba2e4e2ea526ee184406d911
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\2E61E79E106C4A0B8864B09821908E2D6FF91AD5
binary
MD5: 4ecb9418670c84bd6a552503f7130138
SHA256: 295122734fd6aa8f7ba780d5876837cf99af0d11583af562004c82e0cbb62d6a
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\F8C4CC0161EE9240F2A0B7CA7915B2D8BE594F4C
binary
MD5: 60a4c3e134aaa3a4d672f7e8d4e2cca7
SHA256: 31b99e87e8c95d3fb8cb9c1c348a3f143c3685f8366ab72310c69edd17ddd4ef
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\1657114595AmcateirvtiSty.sqlite
sqlite
MD5: 7653fd66bed7909ecd551e7f30a18729
SHA256: 4469ba36c72b7c5708f0d4b3f9f85f515b33c11e2d65995a9aa917774f170941
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\1657114595AmcateirvtiSty.sqlite-shm
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\2918063365piupsah.sqlite-shm
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\1657114595AmcateirvtiSty.sqlite-wal
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\E141DF8419A08135F993DD7BFC4C157105BE87A3
image
MD5: 9da4bc471aad09ec96be74e881f6ca9e
SHA256: eb27b618d14602e0b853598081f8a9d193c68b432bb3c8569215d64d94b37bfb
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\13E9313BAD39F6E8DCA712DF28C4582E3E2ED373
image
MD5: 3bba8979405175c64339e02ffcbe2a73
SHA256: 5d1062de50bea9d4b974cafd28ab9f7aefccfb72d69f223d634e80a5476c4a35
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\3561288849sdhlie.sqlite-shm
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\1451318868ntouromlalnodry--epcr.sqlite-shm
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\EFC2F2E0A34373652134BD6B4B586BD074C805EF
image
MD5: 59df04c30deaf5159596d2fd64a8327f
SHA256: e1dd26666d73408578591bbb2d056f5ec417e1803702b472e14893a82aec3f9e
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\C38B66C0B26E24ECEB1C5302636C4C3991548847
binary
MD5: b256587ae10c49f9def795dc2404087c
SHA256: 3eecec5bbc8c5b3eb507f721e0530340cd84b8d41c7c150c1d5f7139790a0055
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\default\moz-extension+++a35bff6e-5489-4e10-95ce-0340b402ad38^userContextId=4294967295\idb\3647222921wleabcEoxlt-eengsairo.sqlite
sqlite
MD5: 0f38e51e7c85a379ee25bdda3d301ea2
SHA256: abd6a1be8682a308bd7f636fff5eb14810409773f2b0b1a32fdb352dc88e853b
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\default\moz-extension+++a35bff6e-5489-4e10-95ce-0340b402ad38^userContextId=4294967295\idb\3647222921wleabcEoxlt-eengsairo.sqlite-wal
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\default\moz-extension+++a35bff6e-5489-4e10-95ce-0340b402ad38^userContextId=4294967295\idb\3647222921wleabcEoxlt-eengsairo.sqlite-shm
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\5A7C8A86F6595D29022E437F856EB7AD53A4A1AE
binary
MD5: 9e40e54594c9648812cd8c65c2528ddc
SHA256: 9f376c305b060984f28b8e85de364dc4beb5863a057321b03f303f2c0f918092
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\startupCache\scriptCache-child.bin
binary
MD5: 377acc3af381683cce2a6e1f4e660333
SHA256: 6891da4af0da5eac3629387172668de8df38c4295ad58b846b187f703b8b8a0f
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\startupCache\scriptCache-child-new.bin
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\startupCache\scriptCache.bin
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\startupCache\scriptCache-new.bin
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\startupCache\urlCache.bin
binary
MD5: 06bf7bc2ab42c44b54ac6a2f77c58200
SHA256: 8b665a7ffd6f385ed733732c1abe6eb8171d4f63390ca7bd71e9d3d055ce53d0
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\startupCache\urlCache-new.bin
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\F8C4CC0161EE9240F2A0B7CA7915B2D8BE594F4C
binary
MD5: 17d6651ded090e831eaf09d159775b85
SHA256: 08adb09801fd8590abec3ae83c12616e01c45cb65c3b82a5b4b6f0a964ead1d0
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\F8C4CC0161EE9240F2A0B7CA7915B2D8BE594F4C
binary
MD5: 783580cd63570cd3c2cbe9da9bdfa969
SHA256: 2ceb6bda4a23a733ab4d3ffb4a611712c63787486507bb9a33a894cae7d27923
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\66F0A479A97742AECB318EBEEAABA0EC86A320F1
compressed
MD5: be78106aa1a43686ae9655e7e24f9959
SHA256: a48376f95186e236367990f32a1a1220f044c5c7bc4064ddb620446a40134d20
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\3F4F73B97EB6E00E874E5497E68E4A33D6FA8CA3
binary
MD5: ac2dbdb2a88dec8adb265daff5c27495
SHA256: 82b2507403458119395848df56e0fbdd3b77f60f65471a247e434bedb8daf997
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\FD14BCFB84614D0F9760A1E0AC57DF397F7F2598
binary
MD5: cd7b359f20bca70971cf51271d79093e
SHA256: 92f2532c241dfb44607d3ffcd46e093d49a94ced9b71601d174f88f628c9e376
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\D43EF456088749A4D09E2436C52149FCADD0492F
binary
MD5: a4a0e0ea9e42a1d31155050f512d99c7
SHA256: 130607d3ac9bc6abe09038caa11088400879affab5ba4a87d3db145af3cff7df
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\41508BF2F8B4C9F89C92E52BD86D24156703A7FC
binary
MD5: 1b6c65badfe0a71a2c94976f2852ad62
SHA256: e4580e69debf59b7db2eee2872559c6b67c103ecda64198f2656d7016e3bb2f7
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\894E3667C89F313F2B9CA04F483C1BAC952FCE7C
binary
MD5: e3da50319652ad4aa6b752c69a6eff6d
SHA256: adbd76b78ea08a13139efd4b9862e555e9d367863ce9393c9f065b6af523a3aa
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\940235FCA109996C418227D69A9EDC07F3A7450E
binary
MD5: 0513775c8db7a8102871b10cf452740d
SHA256: b22066f9c5e70de15ea228d4afb8ebd1d3a554d670adbeefb687eb247089ab2f
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\59FA5320CC13CAD264C3351087905CB6DABB2CA7
binary
MD5: 44dc7293d044953eca1e9d943e758359
SHA256: ff89b573c967c0b51497bb28878e84fdf4c7c1ea86daba2d18a9ac027177b00e
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\2E61E79E106C4A0B8864B09821908E2D6FF91AD5
binary
MD5: e660a910562a0780f22cb3a1512c9d01
SHA256: fa80ac5635855dddceaa3326ab579085ea2aa7091400f7114e3270c5dd308a9a
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: 020a7b7b319e20a49d82c4a824c23477
SHA256: c1c67a817d55dc267aa2c9d110cafbd2a730d82feb8e970309e1cde0ae998ee0
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-backup
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\mozstd-trackwhite-digest256.sbstore
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\mozstd-trackwhite-digest256.pset
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\mozstd-trackwhite-digest256-1.sbstore
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\base-track-digest256.sbstore
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\base-track-digest256-1.sbstore
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\base-track-digest256.pset
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-unwanted-simple.sbstore
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-track-simple.sbstore
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-unwanted-simple.pset
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-trackwhite-simple.pset
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-trackwhite-simple.sbstore
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-track-simple.pset
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-phish-simple.sbstore
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-phish-simple.pset
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-malware-simple.pset
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-malware-simple.sbstore
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-harmful-simple.sbstore
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-harmful-simple.pset
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-block-simple.sbstore
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-block-simple.pset
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\mozplugin-block-digest256.sbstore
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-unwanted-proto.vlpset
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\mozplugin-block-digest256.pset
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-phish-proto.vlpset
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-unwanted-proto.metadata
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-phish-proto.metadata
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-downloadwhite-proto.pset
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-malware-proto.vlpset
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-malware-proto.metadata
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-badbinurl-proto.vlpset
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-downloadwhite-proto.metadata
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\EE197B20CAB0419D1C0BD23EE03034F880EDC296
image
MD5: 088b85bc2fc4fe3ddb02143cf796c2b5
SHA256: 3287d728c7166eea5ff4b3ace0991afa869909a532fa4af94bfae99650f9b58a
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-badbinurl-proto.metadata
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flashsubdoc-digest256.sbstore
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flashsubdoc-digest256.pset
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flashallow-digest256.sbstore
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\block-flashsubdoc-digest256.sbstore
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\block-flashsubdoc-digest256.pset
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flash-digest256.pset
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flashallow-digest256.pset
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flash-digest256.sbstore
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\block-flash-digest256.sbstore
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\8853D2FFC01AA63D15F81B14832A0B9E71B33613
compressed
MD5: 2946d4930fc09350a06c84e24e9e30b5
SHA256: 4a2480a0e0f93eca8ddfb32d8259bc2e7084fb126505ec70115174e3af32d719
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\3428896C8A9132471F5989C455A8C13637750A24
image
MD5: f9df11ff901937d0975f1344da9a5a12
SHA256: f5145051d9938793da4ec34300c68c1d10f9b7e1d50f2ed8ffe3f445309db15b
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\block-flash-digest256.pset
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: b316e9ce533f0279f4dde542e0c75789
SHA256: 036cb80c1d836d5765feb371bc1bc8cde940d7a8c224999fa79c752457588894
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\cert9.db
sqlite
MD5: 9d8c79f24918344344c16c516d5c414e
SHA256: 099518025117376a3281e67e6f941e7946ff8e480385b75c216ff1424b3298a5
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\cert9.db-journal
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\DE490F88B2E6CE42FCBEBDE239DDEA947CFC2F00
der
MD5: b0173b4e956353be3d6d4277d7184444
SHA256: 9f2c625e6340c485ae9c89e853e5bb99c2cb7772e6414f8d4b6eb2dbaf578629
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\CB008DD04F26C038D7A0A3BAB0E83BFF5578157E
der
MD5: d1e55503901af16dee13ead6ab76f43b
SHA256: c50265b504599d24ad9c1e6fd3c265b3f9e514203871e141979a96ee5d3df8de
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\crashes\store.json.mozlz4
jsonlz4
MD5: a6338865eb252d0ef8fcf11fa9af3f0d
SHA256: 078648c042b9b08483ce246b7f01371072541a2e90d1beb0c8009a6118cbd965
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-malware-proto.metadata
binary
MD5: 35f1b7110168e150ad4a4e18b1add211
SHA256: 3724049ec6f83e18aff607673b54776494ff9a773c970ea80c13819bffe8aad5
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-phish-proto.metadata
binary
MD5: eefa7d29020a3692446ce08f9894183a
SHA256: 6ba6cb3b69f94244dc3156deda8507644bdbf720344946031d9277b016029284
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\35130CB306F8F26861E949DBF9D1CBF306C4B301
woff
MD5: bce9d0592f8f01e85cd491bc3d5a7b5c
SHA256: 20135714da93725e905b6bbbb5efd4d1802f18aeb86c1e55841546d60d1e7e0c
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\D9CEE1F0AA66A4623FE83584D1187A42283B9788
pdf
MD5: 42e47c56a085d2354bd5173c8f83eb31
SHA256: c5285a060f8b1f92055259ae23f44dd0de2cea92e141ef8e413ae5bfe8bfbfef
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\E5BF4E631A7ACBBFE420A74B1AB3C001B2C5FC71
compressed
MD5: 761910ddf8df73303da16b4af8e11b84
SHA256: 6c09dc399b64de1a5836856f9baf6a83d1175a0d7275b54acc74752cbc173bc9
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\50C7DD1D32A552792B7B86BAF9E47EEA8E4423D5
binary
MD5: af44d987693b11a97eefd97fc47164af
SHA256: 047a9be5354ae230bcf8534cc9a5f7884deb479b7ccc81bf599a241dce636396
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\730BBC97275949ED79E6409A8574FD82BC7FA0EC
compressed
MD5: 863b19d64f9d62270fb685c3bc6acf46
SHA256: 14469f0c5cc3015cbbbfb129a0ebd47969f808fe0e3f4c4eca772f06e0640e0a
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\30DD342308C7F45E72F66648C5693BF4B2D4892B
compressed
MD5: 0deaecde3060d58daca31c89c1557100
SHA256: b770236e3d1155df2b65e8c12296547b23372c06bfe8a9deacf77d7d6f322ed9
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\3B84D6EF102A19A735C81931CF5676CD63A76ABD
compressed
MD5: ca58e0e8e023a8716933f2e3cf8c6fe7
SHA256: d147252b2a27482a7ad04686a0da1e631398b6303f16b32ff15aa02dd37926b2
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-unwanted-simple.sbstore
binary
MD5: a5695cc64d77967232b0c1344c6e72b3
SHA256: 042a22b8681d754671d2018ba109b31a53ee3728d48c6379043f8e3394e7fbad
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\D5D14E6F88329DD543A57FDB69D39FEA8E8ADAAF
compressed
MD5: 332ceb9b44e39db8c3571703172542b3
SHA256: 41ae20504a4ee9d5aac14146a03e548e541277c157d6db6261e1ccecc3d1d425
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-trackwhite-simple.sbstore
binary
MD5: 65e942614eee70680464ac4be75019fc
SHA256: 34395085da32c8b4efe9959e3b0d756b43ffed17694d66f39b966cd331bd9a94
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-track-simple.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-phish-simple.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-track-simple.sbstore
binary
MD5: 95f28ede25c301301f25fbbd9a3c56ec
SHA256: 87763df78772f7d750b0fa5a31eec23e931fd3bd1cbb33beddfc61889da36478
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-trackwhite-simple.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-unwanted-simple.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-phish-simple.sbstore
binary
MD5: 3d1ce5e50208f0cb3b979186043a548f
SHA256: 1e13d05d482c3d533dc6035af2b2d6e84749412a5748d1435b70cec8b312340b
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-malware-simple.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-malware-simple.sbstore
binary
MD5: 3675254e341df799d4307c1f59109185
SHA256: 23d108134bed6099793f7dd6b8b6e62081ec3b945efdbc7c5e0e779fd9b82f98
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\mozstd-trackwhite-digest256.sbstore
binary
MD5: d772261ff33497d3681e094f23282ffe
SHA256: 8ee76fa11d5a67f0c93766da3b1ac0c942020afba15b55a8750a896292cf4dce
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-harmful-simple.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-harmful-simple.sbstore
binary
MD5: 051fb32dece757ba112ac36dc72e3a91
SHA256: 0806d98fb3de55f75d7c0b17e26146567e08c483031526659a4a35d09b97ef19
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-block-simple.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-block-simple.sbstore
binary
MD5: e2cf527ca7550b7e7bdf7311e483a2c3
SHA256: f1e07b1d717433f47073dc54a7d98e3e87b3d0fa88e53466f93ea544af885d11
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\mozstd-trackwhite-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-unwanted-proto.pset
binary
MD5: 72e2352f7976b0dd90f2a68047493b8c
SHA256: e0d74336b6c041b6087a697dd7f65fa1da7ea035e202e3d977cc6a7e5bdc13a8
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\mozplugin-block-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\mozplugin-block-digest256.sbstore
binary
MD5: d6acf2573e12afdd7939568804d3fcc1
SHA256: 5525cbf8f8dc41d19ac632ed324e55293a510ae0eeba16d0e3f33c707aa58a0c
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-unwanted-proto.metadata
binary
MD5: eb744b05b13e9410146dab0bd459efa0
SHA256: bfde7f131200eb06c1d54b03d2ce1be1ff31062e8009c937243464712dcd2d50
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\3D16CC27D57F721854FDDA8FAA7C0DA6E9AAA9B5
compressed
MD5: 187bf168bc85c09562dbf01f7b129d1d
SHA256: 2b6627513da26c52dbd9b41f42d28fe73a927b680cdb979a7f0ef799cce50c47
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-phish-proto.pset
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-downloadwhite-proto.pset
binary
MD5: 7655fffe7cfbe1ebf96afea5fe2e1376
SHA256: ff2f663c4e453706b7817109f6a43e8b3389e8cfb1b7d64aace2bfba45f3a359
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-malware-proto.pset
binary
MD5: e608435b687616692a96462e1ac26756
SHA256: 6aa8ee3813d86411d8073a4c2f850b1e8e734c3759d860cbe54ec7f378a82a52
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-downloadwhite-proto.metadata
binary
MD5: 498dae4e538658a57f464748f2dabfda
SHA256: 8778f52cd9cb4f4787bf7ba18006d212f8c3004652d163f7786556a8eef3a067
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-malware-proto.metadata
binary
MD5: 704df61fa2e3f587b268ad85126bc689
SHA256: 7e97db3c9370a35f59a6a649e6cf608e4f5ed572f87f433ea652977ac2cc48d5
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-phish-proto.metadata
binary
MD5: ddf263974b1925672d369bbcc8f830de
SHA256: 92a7323dd7eb199618a1e2e823a71919285a70196bfe627808c66cf1c1f3c8e3
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\block-flashsubdoc-digest256.sbstore
binary
MD5: 04824a1f92353f43ebb9e7f74b7476fd
SHA256: b48e58ebab82e4c376f16150a3fff850c1111ff1f5985d68819cfd6f0db159d2
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-badbinurl-proto.pset
binary
MD5: 844aff63a5f67cd54d9814b7b54abf18
SHA256: 8985970b72a7bcfcf54c4a2474c36ea9a911ab3672881ee299d58f5a4e64e690
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flashsubdoc-digest256.sbstore
binary
MD5: ba0009932844173bc8f9af264229df24
SHA256: 66d1c00c04d86e313e9a02775cdf906b1be8d4cd6bef423a1b9e21cc4e9f50c1
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-badbinurl-proto.metadata
binary
MD5: 778202e2ee08f4b4073413c0b03e05fc
SHA256: 33147037ce75ec0a48b3da60d619bc76c2471f5f20c15f9d075671de2067cfb0
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flashallow-digest256.sbstore
binary
MD5: 6f85bc4b2ecb49e26b0bd83a821065d0
SHA256: c0b3bc9b3dc507ab654caf72d13c3aefa58c9b13b1e4d14dd8816712d80a7e54
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flash-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flashsubdoc-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flashallow-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\except-flash-digest256.sbstore
binary
MD5: c921d8e98fa01b4f303481e112202e92
SHA256: 4ef1038730ec8bc7206713c29a936768831b922c5e6c83355fd62d7401d8c1dc
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\allow-flashallow-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\base-track-digest256.sbstore
binary
MD5: 23e438fd4af1829d4469ff8d0bc83854
SHA256: 96e0d7644aea81d26f039ae633eb405583e11b020363090dac5cad9b4b188846
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\allow-flashallow-digest256.sbstore
binary
MD5: d886a47c89d9c49c795da345bc236990
SHA256: a03c5e2656d2f292bf5794c8eeb8d223cd6ba4f4bfb2ed1f325460e879d0bcf7
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\block-flashsubdoc-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\block-flash-digest256.sbstore
binary
MD5: 0e8fe60ccd7e9b4c32589a5743a95302
SHA256: 2b124d4026850a3cffd28dbacb58aec28f7dcd4d40bc14e52bbe96d60ce4e749
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\block-flash-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\base-track-digest256.pset
cdxl
MD5: 076933ff9904d1110d896e2c525e39e5
SHA256: 4cbbd8ca5215b8d161aec181a74b694f4e24b001d5b081dc0030ed797a8973e0
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: abd048bc578e725d3bccd4983b5d8a8e
SHA256: 7380c76ecce8f7daf1872a2980f2e6d2a3f54e0bccc2cf3ade951177a52e86a0
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\E4AD594127F84CF7CD08795F1F414850B761C65B
woff
MD5: 146b204b0ec010ea783888b3e03e6bd4
SHA256: e3dd4a957887bf1f010daabef08b44f5398f9133722aa53f394122d4c3dddffa
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\05A427D7E3E0AA0B43BB6742B50E978B546D845A
woff
MD5: 6a9d65dad57d1bf42078b58b7c812acc
SHA256: 459b9c4a3e34bad30ecd252208a957b84e6d9d835948881e6ad3f4e6ae11c6da
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\EBBC97EC4403019C8009E8DE0E58BBD244AD6C32
woff
MD5: 71d3da1d774e50e97472dd1f286b52e5
SHA256: cdff94ce50db83094d264a46f59ea04727943f190cdd6d3fc915711d5812aa6e
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\1B34F7E7E746BA261D56DDD805D272166E88B1AE
compressed
MD5: 324b72f4035e8ac40975954910908597
SHA256: 2b15249f96e6deaef446c0a731b0a9aa31fabedff3e7f6d4f7ea8d2bd7b12b21
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\0DEA0589297C0D47A542CE08235F656DFCD181B6
compressed
MD5: dd443ad433698e6eb781944850b4b1c1
SHA256: 4b43bb1c6ae67b92010cf6208339514ce55cbda04088caa123399cf5deed8d37
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\05AD38307AE04A5A8E230CD1BCCB3491C1D1F12B
compressed
MD5: a8816eb569ac5347ad7e92a3d7b56b00
SHA256: c3eb2f4d382578ba494bf5040abc0bb629f823e65d386b7bc2c7941aabc0c627
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\7805BBDB56F64F990AED5E2553670A5A5A1FF36C
image
MD5: fa4f873569284cdd9dd777b5c87ceab6
SHA256: f41481fd44ff8f18368d0d9f8b95af2d866cf5d83461fe432a39d90ac68bf8c7
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\default\moz-extension+++a35bff6e-5489-4e10-95ce-0340b402ad38^userContextId=4294967295\idb\3647222921wleabcEoxlt-eengsairo.sqlite-shm
binary
MD5: cf63662cb52380c34e29eb2ff8a6cfb7
SHA256: 591675ed17123220c03822db28b2bb38ff25d27138e4b00b65fb60f4ef067fed
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\default\moz-extension+++a35bff6e-5489-4e10-95ce-0340b402ad38^userContextId=4294967295\idb\3647222921wleabcEoxlt-eengsairo.sqlite
sqlite
MD5: 0e41d3b6da1116556981d9ca7f1d6b54
SHA256: f1198d2ef45b34f0d225758ba796c86de713d86e710a3006fa13775c4d21ff43
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\default\moz-extension+++a35bff6e-5489-4e10-95ce-0340b402ad38^userContextId=4294967295\idb\3647222921wleabcEoxlt-eengsairo.sqlite-wal
binary
MD5: 50c85b79ce559338fcd4c6594fa414eb
SHA256: 8b362dc66b5a6ff2a09d9c0e3684d25a9381f6861c45b629227af5bbc75a1254
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\default\moz-extension+++a35bff6e-5489-4e10-95ce-0340b402ad38^userContextId=4294967295\idb\3647222921wleabcEoxlt-eengsairo.sqlite-journal
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\default\moz-extension+++a35bff6e-5489-4e10-95ce-0340b402ad38^userContextId=4294967295\.metadata-v2
binary
MD5: 0353d633f846494de4335fffef6d4a32
SHA256: 4769069a14ff8852983ea88e4552a1f6325bbb11b6702e58ebeccb5545960167
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\default\moz-extension+++a35bff6e-5489-4e10-95ce-0340b402ad38^userContextId=4294967295\.metadata
binary
MD5: 28b85416e7b25b7bbd2a068a68b12cbc
SHA256: 78dbfef6f8e84aad70706857d32c6fe9ca33b40e32f603f9b7f9b34d81ba6a10
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\default\moz-extension+++a35bff6e-5489-4e10-95ce-0340b402ad38^userContextId=4294967295\.metadata-v2-tmp
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\default\moz-extension+++a35bff6e-5489-4e10-95ce-0340b402ad38^userContextId=4294967295\.metadata-tmp
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\67B1C2D7C094CF70A902F5166D9983C2BCB6DCB2
image
MD5: cd48ca39296d64e9ecea505dc283620e
SHA256: fc3dfe45f5a24d2f38f2e4ad18f0f88827acfbd66a6cfaa6a9882b065c68fbf6
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\8B43E7150FBF8FCFC1940BAC1BC33A0F69EDFF84
compressed
MD5: e8d1c7c848a6932018612d254eadddd9
SHA256: ae12791a0214142c5470b3d08bb3180d454b9369d653aa052c1de6540f05da96
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\0B69BB77BFE58F65E4D48A2302DF6D9D09028076
compressed
MD5: 5eee7384d4069c3a0629651122314cd6
SHA256: 7c991929eac73831dd9c1116444a9f055e381d0222ced08a9ef324c8d985c5da
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\268780135FDC68E4D788ACF346EA11C3E5D4AB70
compressed
MD5: d4aab64e02d465d1e1b10d3ccfa92f2d
SHA256: bd967e4182b2800647ec83c7770c26bdc93b00fd2e94dc4a651fc1771a30e150
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\9677836FC43286657B0C87FF73673272ED5910C7
compressed
MD5: 9c13f0b2e8cc4c915cc5c7019164281c
SHA256: 0c5440579659fa6b95e1f93502defb3140867e01640a100e40275c9bad916974
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\991AE86708897131546231063A53CFD5BDC60176
compressed
MD5: 8080280552fe034de286df65956be91d
SHA256: a62cd5e65c988d3eae157b70263ebdbe8083c5f9e4ee8d97bfbc89b06b3aa5b2
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\9F0F80299399CC03DDFF1226F4D3EB25AC1DDA21
compressed
MD5: f07e5ac09bb14360ce6a7f50a0041116
SHA256: 3a921c2904d82f5b4f37d9b853ebbd70596289ebce6290979c2c4872781decec
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\doomed\3830
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\66F0A479A97742AECB318EBEEAABA0EC86A320F1
compressed
MD5: 158f136b3776cf46fe3f3fae3b146bb5
SHA256: 130a3b511ee20fd608ade2faf7a1a9101b7efa62dde7e0c3b856f852a1b89a17
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\55FF0D9B75018E07038434D20DDF4D6148F21080
binary
MD5: 1606ef6ae920535744392f6ac77e5d9b
SHA256: 45e39661f24ad17d73eadd246ec303d618f0e8973e8570e3ee7b48e96e29abc6
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\D43EF456088749A4D09E2436C52149FCADD0492F
binary
MD5: 3be0ebd5a7d04bf708f52862047a2947
SHA256: 690b8b36779129a5dabaa31c3e0f51752a3275aa9b33cd267f90e28ffbbf736d
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\8CB80EBF2491F7AF1361851ED4E8FF87A7A15BCD
binary
MD5: 22244c89d5c10fe337ca6c04e575cb37
SHA256: efb3ed0d09cad0645ff387ce5f5becbc2ddba54ba6e6142de30864c431e4affb
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\4067DAF0AE5B033E92B6F2B562349F78FAC48EBD
binary
MD5: e02abb400b68de25781a0129995a2716
SHA256: 6468a858146cbeeaad2b288356fd0dd187e68e261f5acae206a625e5e9e4ad42
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\F40B612A23993EA351FA9D15D8B60498AF4F675B
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\C1C50B9CA1BCA8B859347B822F046690B6811FAE
compressed
MD5: 4c43dd72322f1ba4dd0328d638b6f194
SHA256: cb5ff4fcdd66da4ea4e7be863386ca823469ebfba71398551792f0d19b390cca
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\9EF70CE62A588C0A8217C3CB6C2D95C808166A74
compressed
MD5: b3bdc9e65443c77578209db64f0513b4
SHA256: c66b35aca67212e6460f41fb79eb02faf0ca06b22f3015bebea992a073466855
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\4853FA4BDA346205FD1FC88217343FE1B0822B11
compressed
MD5: 3f452f5257f394c1276703889957740d
SHA256: f5f6b5b18240b76543acb8782a4dcf064aa95a01e9c1bed2c1c7dbd91364b19a
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\A21D9302EBF23E7020E40E0C578BF3E242A95795
compressed
MD5: 2d6589c93d2793bfb8c593eda1b5d7a3
SHA256: 9b43cc7efaec7e254c3959d8b9ae0bda9ac7b550879ede5cd1f800ca912eb548
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\6D547DAA1E9A6DD44836375E2EFC2BCC531A18AE
compressed
MD5: 99c3a27158c0f4a95779f77e520457a6
SHA256: 80a40b0cc0c7f13889daa297a8983d126f4d5de0d8bbf2497a5a26e0fc2b5c2f
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionstore-backups\recovery.jsonlz4
jsonlz4
MD5: 2db7f1b4f84008d3a19e077d6db06da9
SHA256: 92f0101a22eefdc8d18add89df6c7ffb692ffd27baaf08068804fd1ede0f71dd
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionstore-backups\previous.jsonlz4
jsonlz4
MD5: d282be26272e1e2a33d64d5be0e55f51
SHA256: 8e09de9b62723612ca98aca7137289dd00e19fa0d3a81a167341cc8020e310d1
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\FC3008D530B5D63D37C214521ADCA80CDAA7FDB1
compressed
MD5: de2cc4b4697d6e4e01047bbe7ccc487d
SHA256: 26aa2276281f930ad5657fc18769a976d53e8e2964ea972dc217b0bfdd5dd84b
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\D4C79A36FF5D80ABA146C691970810B80BACE5B5
compressed
MD5: 06b541e67bfdf3a5c2dad3d239cf279b
SHA256: 0b412c894714fbe01dba01de28370c4ce7c0ce912f23aab6d9c7d20ed724a61f
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\835427A1CC770553494C1149E52CE336D00B2C32
compressed
MD5: f0ca3968733e72f0c672dc539da152eb
SHA256: bd752245728e92c5bc7173bd60ce445f91132b306860c65fc5c13a6a874c11ee
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\BE4C3A086FED2D143ADACB0DC4877794A62ABC0A
compressed
MD5: 459633be3751d88528ca1390169a6a92
SHA256: e06f2f4a0b51c6f09dddaade95409fa9e076f6aaa686943cdb00fb15114db02f
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\24AE40A18BF48E3BE49139684D8FDDC9B427E0DC
compressed
MD5: 8c1c7c84cc197cf250e026a682083fbd
SHA256: fa385258c24415a5e71bf2b194bdad0096f3bf8c7a30ec6ca97b2c6178322191
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\48B7D2F0D67DFD3906299F2150B52E46B8629F9F
der
MD5: 9fa2219567a1721fdcb07821a3ab5cda
SHA256: 4dcf002e33b3b8779906cd8e9682fbdeaa368b3f9035451c683f005dab20c683
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\cert9.db
sqlite
MD5: 885124ddd183625ed466d3f4638544c0
SHA256: 1c3087a9f1cc5cdda1154d018df98af2e1ac26679b24ed8f6ac795184bf3c941
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\C7487395EA5043259B57689E318DFB1EE0ABB15B
compressed
MD5: cfd1374efc628e6140f2bd8e58b33ae7
SHA256: 0c08a2d2ddf76c257aa929e4051034523a1c64a48c59e71db9226fd631be1ef4
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\E41AB4FC86E24939A427AC932305316414BA4606
compressed
MD5: 15f101b7b16d840710f78dca39ef8ac8
SHA256: c09d10ca4a5802e5ca474a9e1108e88e7490dc01f7b747769f9badb13d1cce9d
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\698EF1D16747D2753B2A8F07D4F72E7BEFA06A1E
compressed
MD5: d3bd438bfcffac002f11be20df485711
SHA256: 32657b728d34278a06c1c309199687ba87b4a925375d2238bd85a0204ca0befd
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\4D8CB425D2C581EF3F34CDCEC7242D53FA5249AB
compressed
MD5: 12b2066dc7d875196532a1b3708dd48b
SHA256: 878e087243ab68fc059d68adb1500e2eab23e79408ef511439af3aea8a89b3e1
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\DBADE43CA2FA7EAB2B74D1700DDC0376CDFE84A0
compressed
MD5: 63c08dd96c6f1cb57bc1b1db08431c4e
SHA256: 3baa1c4d7d047f8b405a8eddb2e95b1ca66bcd2dc989fe6c501f468041416f56
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\CA4315590F2302021B929E82289D98DB3CBD2D84
compressed
MD5: db8e6e1aac5d68c82d60ea28cd1d49bf
SHA256: 869ea133f2df3dae43becf61de2bba1bc0f20d6550d55e8f0a023ef7481b6346
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\E2FEA4F7835F6438A2B322F7C97CDC00103DF8F3
compressed
MD5: ececadeb81a5ffb7982bf0d3ad85e56c
SHA256: d731c10bc5f3e5fdbe07259ca7875ac7055be6ec4f3c2a8036fef5249247e25d
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\3BE4CFD2FBAE9F5F96BCA06434A913FC8338E74C
compressed
MD5: 98ef96218eba1b4836b4fe07b943c1b8
SHA256: 8b88b75bbee9c73adecc770b9abd5d9c7d96b35c5b883021ef243b24962a8bb2
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\1B2655B990FDD2593994F32A2AE22BCA01A3E58D
compressed
MD5: 169715f4e2392d92500455c8435a1115
SHA256: 9421ef0fbaaf9b5f5caa55b11cbbab8707044a8eb5e472680377b1209b25f06c
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\addonStartup.json.lz4
jsonlz4
MD5: 351583f788997971d6d0e40152cefd23
SHA256: fa70ea6714bd13f2e974400187afcd659c62a52712444e8f32e48320ea47d3a7
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\addonStartup.json.lz4.tmp
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\A41D06564A2B844CB515B859116B14A3189FC7B2
compressed
MD5: 70580b634885c8bdf2fa76f9faa661bb
SHA256: eaffcd3ecb3c97e02a06f194d456aa95def4c1e02170725d66d4ed94e44e3f1a
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\DA17F00C6643E17EA8F1C589CE02D20C4D1EE6DB
compressed
MD5: 857dc8ca08345daa02ffc0708e770c37
SHA256: ca733bd947ee5b7dce3fb5a0c737be83372f0c255a55e5b63aabc72d19412d8e
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\3B39F116F0C75063B6531100EE5160A11E67C0B7
compressed
MD5: e393256810ddc2f1e81addf1332ddce4
SHA256: 32821fa9231836e78c2c8a78054b1d478b7477582f188d2ec67469a668a4ddf7
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\cert9.db
sqlite
MD5: 95234c02a49b1dc5737c2df5e7fa0647
SHA256: b68d58639218f70b4ca13a949818ca6d8217654502c1d32f00a74b0118829388
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\66F0A479A97742AECB318EBEEAABA0EC86A320F1
compressed
MD5: 8da455c1dfab9fab2085c34307a00eb7
SHA256: 720ba95973c60e0e33440b2ca9e217331a0016e04cef65c2331c8e1fc9ccc2e4
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\EB5AB273428CDAA2189B85F3D49F4B3D7EE76819
der
MD5: 7141cbd9b71a7debb2ed0fd153b9d60e
SHA256: f7b07b519e6e281742edaddda9058c321781bdc26449d146fcd92a1c7c30b7b5
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: dd892031993b9773941b646751e33deb
SHA256: 7978313b6994669750bae0acc3c52d11434df4cfd1dd1693e1f7e57211f26345
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\search.json.mozlz4
jsonlz4
MD5: 68e9ac9fef80601cf47db48b376461b1
SHA256: 1dd991193cd44f504f4d423ce268a8ad00718ea68af5ab0a7daee39ac3f73ade
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\search.json.mozlz4.tmp
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: 1446f7b857b1e1d8328d0cf819f0f6fd
SHA256: ea3b7cd305013b87fd94ed8f6ad7d59be546f7c7c7529826bcd214407d000a93
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\59492F030C339E91FFEB2CB196987133F6AA543F
binary
MD5: 07d8f768739939dab28cd56a938cc475
SHA256: 77a7b81a24dddfcaa09524eb4fdbcd3b3359d9ed08054e817befa39727987cd2
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\C0B0377A963DBAB98FEAA48A86AB6E6C349828FF
binary
MD5: f63ebed63a141a5890b98fab8d54261a
SHA256: 3e6e4673be28bec0052c57bc7cf605c0093b99a15bf746c1012ea717d63f8dcf
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-trackwhite-simple-1.sbstore
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-block-simple-1.sbstore
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-track-simple-1.sbstore
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-harmful-simple-1.sbstore
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-unwanted-simple-1.sbstore
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-malware-simple-1.sbstore
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\test-phish-simple-1.sbstore
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\7C979B6EE805CD399AB01BF0DE7762F4252BD79E
der
MD5: f41ad7d74463ef3d9ff7b32a6da4f0cc
SHA256: 6d4ac9eeb379f376cb21de08dd9fa20e127c4895bccf7d37e5e015651a21e92c
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\E7D36882C162896B4275E624B34ED6DBDA880A22
der
MD5: bf9c4ab9108c07ec22846423fe65ae48
SHA256: 764ef5cff708c63572493c860866cf080478bc2630395933e1ea21716adc312f
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-unwanted-proto.pset
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-malware-proto.pset
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\google4\goog-badbinurl-proto.pset
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\2446C1C63A909CDC43709B7B125EACA3407506B3
ini
MD5: c17c3b93d5e755bab140bf34674a5d27
SHA256: 637912fc6cca44af6ef606aef8d13207ace041e78597eade152f25c9d0ae65d6
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\cert9.db
sqlite
MD5: d8acaf9de555f61c8696572cdc41935f
SHA256: 8adf8224478934ccf849f8cd2469fd10ef9a53660393ec74ff0657af558af77c
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\allow-flashallow-digest256.sbstore
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\safebrowsing-updating\allow-flashallow-digest256.pset
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\cache2\entries\6848E2C8507724098FA4E914A930383138FECEB3
der
MD5: bad2a9543ab2163c3b3b2bd56c3dafcb
SHA256: d4e5e3fcb37ab651554ce3cb12b07ef8a8dd4990b050c78b56fe61f8678d6b03
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: 61e04f058e592438993dcc5c8087b674
SHA256: 39d3b68fb7d143fe276c1e9ad89d9b4f0aa38e95788fca8278d73407e7e3b51f
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\3561288849sdhlie.sqlite-shm
binary
MD5: b7c14ec6110fa820ca6b65f5aec85911
SHA256: fd4c9fda9cd3f9ae7c962b0ddf37232294d55580e1aa165aa06129b8549389eb
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\search.json.mozlz4
jsonlz4
MD5: 03e22f63ea4be5add7aef9050d485611
SHA256: 0b5a2bcd1edf7ee6252f04b41403e0bc21f2eedf7cbaa6565f6562238c771c13
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionCheckpoints.json
text
MD5: c4ab2ee59ca41b6d6a6ea911f35bdc00
SHA256: 00ad9799527c3fd21f3a85012565eae817490f3e0d417413bf9567bb5909f6a2
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\sessionCheckpoints.json.tmp
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\1657114595AmcateirvtiSty.sqlite-shm
binary
MD5: b7c14ec6110fa820ca6b65f5aec85911
SHA256: fd4c9fda9cd3f9ae7c962b0ddf37232294d55580e1aa165aa06129b8549389eb
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\2918063365piupsah.sqlite-shm
binary
MD5: b7c14ec6110fa820ca6b65f5aec85911
SHA256: fd4c9fda9cd3f9ae7c962b0ddf37232294d55580e1aa165aa06129b8549389eb
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\1451318868ntouromlalnodry--epcr.sqlite-shm
binary
MD5: b7c14ec6110fa820ca6b65f5aec85911
SHA256: fd4c9fda9cd3f9ae7c962b0ddf37232294d55580e1aa165aa06129b8549389eb
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.sqlite-shm
binary
MD5: b7c14ec6110fa820ca6b65f5aec85911
SHA256: fd4c9fda9cd3f9ae7c962b0ddf37232294d55580e1aa165aa06129b8549389eb
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\prefs.js
text
MD5: d65b2bd591a1d6cc666241e6eef1afe7
SHA256: 1b94f69a3bf3cb9f7349fe274ca82166c22d675f9b043b19f2770d044ae9bd16
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\pluginreg.dat
text
MD5: 37818d9b7248f34395c2db3c0bd4b07f
SHA256: ff229e03d2ab696e81957957ea8d71280b5800a2b0f70ea77998c3fa4e98a8a6
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\pluginreg.dat.tmp
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\qldyz51w.default\cookies.sqlite-shm
binary
MD5: b7c14ec6110fa820ca6b65f5aec85911
SHA256: fd4c9fda9cd3f9ae7c962b0ddf37232294d55580e1aa165aa06129b8549389eb
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\startupCache\scriptCache-current.bin
––
MD5:  ––
SHA256:  ––
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\startupCache\urlCache-current.bin
binary
MD5: fd4ac055b608cf2c11c9b2c796a4fe1a
SHA256: 1d8a349613f7dcb71bf648c8c7f780f3953a2bc53435846289101fd77d8887af
3500
firefox.exe
C:\Users\admin\AppData\Local\Mozilla\Firefox\Profiles\qldyz51w.default\startupCache\scriptCache-child-current.bin
binary
MD5: 6a1ef5c5ae2f682a0606848fa329072b
SHA256: 29312a09916820dec3eee29b40c503fee9569204e291320bd9c908b3386b1896

Find more information of the staic content and download it at the full report

Network activity

HTTP(S) requests
10
TCP/UDP connections
37
DNS requests
88
Threats
2

HTTP requests

PID Process Method HTTP Code IP URL CN Type Size Reputation
3500 firefox.exe GET 200 95.100.39.17:80 http://detectportal.firefox.com/success.txt DE
text
whitelisted
3500 firefox.exe POST 200 93.184.220.29:80 http://ocsp.digicert.com/ US
binary
der
whitelisted
3500 firefox.exe POST 200 93.184.220.29:80 http://ocsp.digicert.com/ US
binary
der
whitelisted
3500 firefox.exe POST 200 93.184.220.29:80 http://ocsp.digicert.com/ US
binary
der
whitelisted
3500 firefox.exe POST 200 172.217.18.99:80 http://ocsp.pki.goog/GTSGIAG3 US
binary
der
whitelisted
3500 firefox.exe POST 200 104.18.24.243:80 http://ocsp.msocsp.com/ US
binary
der
whitelisted
3500 firefox.exe POST 200 93.184.220.29:80 http://ocsp.digicert.com/ US
binary
der
whitelisted
3500 firefox.exe POST 200 93.184.220.29:80 http://ocsp.digicert.com/ US
binary
der
whitelisted
3500 firefox.exe GET 301 104.27.179.4:80 http://hokowhitu.xyz/advantageengineers/advantageengineersdoc/office365/ US
––
––
suspicious
3500 firefox.exe GET 200 104.27.178.4:80 http://hokowhitu.xyz/.well-known/http-opportunistic US
text
suspicious

Download PCAP, analyze network streams, HTTP content and a lot more at the full report

Connections

PID Process IP ASN CN Reputation
3500 firefox.exe 95.100.39.17:80 Akamai International B.V. DE unknown
3500 firefox.exe 52.50.56.62:443 Amazon.com, Inc. IE unknown
3500 firefox.exe 13.107.136.9:443 Microsoft Corporation US whitelisted
3500 firefox.exe 93.184.220.29:80 MCI Communications Services, Inc. d/b/a Verizon Business US whitelisted
3500 firefox.exe 52.10.239.220:443 Amazon.com, Inc. US unknown
3500 firefox.exe 34.213.89.114:443 Amazon.com, Inc. US unknown
3500 firefox.exe 13.225.79.58:443 US unknown
3500 firefox.exe 52.11.30.237:443 Amazon.com, Inc. US unknown
3500 firefox.exe 172.217.22.42:443 Google Inc. US whitelisted
3500 firefox.exe 172.217.18.99:80 Google Inc. US whitelisted
3500 firefox.exe 2.16.186.25:443 Akamai International B.V. –– whitelisted
3500 firefox.exe 2.19.34.64:443 Akamai International B.V. –– unknown
3500 firefox.exe 104.18.24.243:80 Cloudflare Inc US shared
3500 firefox.exe 52.114.128.10:443 Microsoft Corporation US whitelisted
3500 firefox.exe 13.107.136.13:443 Microsoft Corporation US unknown
3500 firefox.exe 52.40.28.81:443 Amazon.com, Inc. US unknown
3500 firefox.exe 104.27.179.4:443 Cloudflare Inc US suspicious
3500 firefox.exe 13.225.78.67:443 US unknown
3500 firefox.exe 104.27.179.4:80 Cloudflare Inc US suspicious
3500 firefox.exe 104.27.178.4:80 Cloudflare Inc US suspicious
3500 firefox.exe 104.27.178.4:443 Cloudflare Inc US suspicious
3500 firefox.exe 13.225.78.71:443 US unknown
3500 firefox.exe 13.225.78.98:443 US unknown
3500 firefox.exe 20.190.137.98:443 Microsoft Corporation US unknown

DNS requests

Domain IP Reputation
detectportal.firefox.com 95.100.39.17
95.100.39.8
whitelisted
a1089.dscd.akamai.net 95.100.39.8
95.100.39.17
whitelisted
location.services.mozilla.com 52.50.56.62
52.210.139.31
108.128.247.43
whitelisted
locprod1-elb-eu-west-1.prod.mozaws.net 108.128.247.43
52.210.139.31
52.50.56.62
whitelisted
advantageengineers-my.sharepoint.com 13.107.136.9
unknown
push.services.mozilla.com 52.10.239.220
whitelisted
autopush.prod.mozaws.net 52.10.239.220
whitelisted
ocsp.digicert.com 93.184.220.29
whitelisted
spo-0004.spo-msedge.net 13.107.136.9
unknown
cs9.wac.phicdn.net No response whitelisted
tiles.services.mozilla.com 34.213.89.114
52.25.71.236
34.210.151.118
34.208.138.0
35.166.166.56
54.186.90.148
54.186.163.246
34.209.86.85
whitelisted
snippets.cdn.mozilla.net 13.225.79.58
whitelisted
tiles.r53-2.services.mozilla.com 34.209.86.85
54.186.163.246
54.186.90.148
35.166.166.56
34.208.138.0
34.210.151.118
52.25.71.236
34.213.89.114
whitelisted
drcwo519tnci7.cloudfront.net No response whitelisted
search.services.mozilla.com 52.11.30.237
34.215.70.240
54.190.222.97
whitelisted
search.r53-2.services.mozilla.com 54.190.222.97
34.215.70.240
52.11.30.237
whitelisted
safebrowsing.googleapis.com 172.217.22.42
whitelisted
ocsp.pki.goog 172.217.18.99
whitelisted
pki-goog.l.google.com 172.217.18.99
whitelisted
spoprod-a.akamaihd.net 2.16.186.25
2.16.186.40
whitelisted
a1531.g2.akamai.net 2.16.186.40
2.16.186.25
whitelisted
static2.sharepointonline.com 2.19.34.64
whitelisted
e1780.g.akamaiedge.net No response whitelisted
ocsp.msocsp.com 104.18.24.243
104.18.25.243
whitelisted
ocsp.globalsign.cloud No response malicious
browser.pipe.aria.microsoft.com 52.114.128.10
whitelisted
pipe.cloudapp.aria.akadns.net 52.114.128.10
unknown
southcentralus1-mediap.svc.ms 13.107.136.13
unknown
spo-0008.spo-msedge.net 13.107.136.13
unknown
shavar.services.mozilla.com 52.40.28.81
52.41.30.135
52.26.199.81
52.39.125.163
35.155.164.84
35.166.72.120
whitelisted
shavar.prod.mozaws.net No response whitelisted
hokowhitu.xyz 104.27.179.4
104.27.178.4
suspicious
tracking-protection.cdn.mozilla.net 13.225.78.67
13.225.78.87
13.225.78.65
13.225.78.23
whitelisted
d1zkz3k4cclnv6.cloudfront.net 13.225.78.23
13.225.78.65
13.225.78.87
13.225.78.67
whitelisted
support.mozilla.org 52.39.170.29
34.208.233.116
whitelisted
www.youtube.com 216.58.208.46
172.217.16.142
172.217.22.46
172.217.22.78
172.217.22.110
216.58.210.14
172.217.16.206
172.217.18.110
172.217.23.174
216.58.205.238
172.217.21.238
172.217.22.14
172.217.18.14
172.217.23.142
216.58.206.14
216.58.207.46
whitelisted
www.facebook.com 185.60.216.35
whitelisted
star-mini.c10r.facebook.com 185.60.216.35
whitelisted
prod-tp.sumo.mozit.cloud No response malicious
youtube-ui.l.google.com 216.58.207.46
216.58.206.14
172.217.23.142
172.217.18.14
172.217.22.14
172.217.21.238
216.58.205.238
172.217.23.174
172.217.18.110
172.217.16.206
216.58.210.14
172.217.22.110
172.217.22.78
172.217.22.46
172.217.16.142
216.58.208.46
whitelisted
www.wikipedia.org 91.198.174.192
whitelisted
www.reddit.com 151.101.1.140
151.101.65.140
151.101.129.140
151.101.193.140
whitelisted
twitter.com No response whitelisted
www.mozilla.org 104.16.40.2
104.16.41.2
whitelisted
www.mozilla.org.cdn.cloudflare.net 104.16.41.2
104.16.40.2
whitelisted
dyna.wikimedia.org No response whitelisted
reddit.map.fastly.net No response whitelisted
firefox.settings.services.mozilla.com 13.225.78.71
13.225.78.55
13.225.78.9
13.225.78.107
whitelisted
d2k03kvdk5cku0.cloudfront.net 13.225.78.107
13.225.78.9
13.225.78.55
13.225.78.71
whitelisted
content-signature.cdn.mozilla.net 13.225.78.98
13.225.78.23
13.225.78.28
13.225.78.85
whitelisted
d12uj65dsn9ho1.cloudfront.net 13.225.78.85
13.225.78.28
13.225.78.23
13.225.78.98
whitelisted
login.microsoftonline.com 20.190.137.98
20.190.137.96
40.126.9.6
40.126.9.8
whitelisted
www.prd.aa.aadg.windows.net.nsatc.net 40.126.9.8
40.126.9.6
20.190.137.96
20.190.137.98
suspicious

Threats

PID Process Class Message
3500 firefox.exe Potentially Bad Traffic AV INFO HTTP Request to a *.xyz domain
3500 firefox.exe Potentially Bad Traffic AV INFO HTTP Request to a *.xyz domain

Debug output strings

No debug info.