from the web site: 'FireHole uses default web browser to transmit data to a remote host. To do this, it installs a DLL file (with interception funciton inside) on user's computer. After, this DLL loads itself to be in same process space than application aimed, here a trusted one, so FireHole has great probability to access the Internet stealthly. If the test is a succcess, this means 2 things: your firewall doesn't control applications that launch others, and is in addition vulnerable to DLL injection.'
firehole.exe