I was tracing some network activity for an unrelated issue and noticed that when FF starts up it immediately makes multiple TCP connections to livejasmin.com. I have this site blocked by the Windows Firewall and have the host file direct it to 127.0.0.1 so nothing is actually going in or out, but why is FF doing this and how can I fix whatever was done to enable this happening? I have cleared all cookies and cache, and disabled all addons, and even started in safe mode, but regardless of what I do the very 1st connections that FF makes are always to livejasmin.com, which is obviously not a legit place for FF to be doing any of its routine updates or optimization tasks. My home page is https://google.com and the livejasmin.com connections appear before the 1st attempt to connect to google so this is clearly something malicious that found a way to get into FF early in the startup process. I have also run 2 different scans tools on the entire computer and both found nothing. I have reviewed all the running processes and do not see anything suspicious either. I do not see this issue with Chrome or Edge, just FF which is my primary browser. All browsers are updated to the latest version as well as the WIN10 OS. I have also removed my profile and started FF up without the profile, and I noticed the livejasmin.com connections again while the FF "your profile cannot be found" error message popped up. When I had FF make a new profile and set it as the default the same connections to livejasmin.com were made when I restarted FF with the new profile. So it is not tied to my profile.