Quick dating
Custom Menu
  • iman dating
  • avatar sexdate5291 geiledating info
  • NEWS
    This beautiful urban waterfront park features pedestrian and bike paths, botanical gardens, sculptures, great wildlife-viewing, as well as paddleboats and excursion boat rides. You can watch unlimited cam sex without having to signup or pay.


    Failed updating etrust vet engine to version Instant sex webcam

    We need to see some information about what is happening in your machine.

    Please perform the following scan: Thanks for the reply.

    DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main, Start Page = IE - HKU\.

    DEFAULT\Software\Microsoft\Windows\Current Version\Internet Settings: "Proxy Enable" = 0 IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main, Start Page = IE - HKU\S-1-5-18\Software\Microsoft\Windows\Current Version\Internet Settings: "Proxy Enable" = 0 IE - HKU\S-1-5-19\Software\Microsoft\Windows\Current Version\Internet Settings: "Proxy Enable" = 0 IE - HKU\S-1-5-20\Software\Microsoft\Windows\Current Version\Internet Settings: "Proxy Enable" = 0 IE - HKU\S-1-5-21-1085031214-492894223-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main, Start Page = - HKU\S-1-5-21-1085031214-492894223-725345543-1003\..\URLSearch Hook: - Reg Error: Key error.

    EXE/3000IE: - %System Root%\web\LSP: c:\windows\system32\Vet DPF: Package Cab - hxxp://ak.imgag.com/imgag/cp/install/Ax Ctp2DPF: - hxxp://office.microsoft.com/templates/DPF: - hxxp:// - hxxp://photos.walmart.com/Walmart Outlook DPF: - file://c:\program files\masters of mystery - blood of betrayal\images\stg_DPF: - hxxp://download.macromedia.com/pub/shockwave/cabs/director/DPF: - hxxp://go.microsoft.com/fwlink/? \common\DPF: - hxxp://download.zonelabs.com/bin/free/cm/ICSCM_DPF: - hxxps://remote.lyondell.com/Citrix/ICAWEB/en/ica32/DPF: - file://c:\program files\private eye\images\stg_DPF: - hxxp://download.yahoo.com/dl/mail/yautoiol1DPF: - c:\program files\yahoo!

    \common\DPF: - hxxp://download.microsoft.com/download/F/6/E/F6E491A6-77E1-4E20-9F5F-94901338C922/wmv9VCM. CABDPF: - hxxp://photos.walmart.com/Walmart DPF: - hxxp://lads.myspace.com/upload/My Space Uploader1005DPF: - hxxp:// - hxxp://fulfillment.puretracks.com/DPF: - hxxp://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?

    failed updating etrust vet engine to version-84failed updating etrust vet engine to version-53

    DEFAULT\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: CDRAuto Run = 0O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: CDRAuto Run = 0O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-21-1085031214-492894223-725345543-1003\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O9 - Extra Button: @shdoclc.dll,-866 - - C:\WINDOWS\Web\()O9 - Extra ' Tools' menuitem : @shdoclc.dll,-864 - - C:\WINDOWS\Web\()O10 - Protocol_Catalog9\Catalog_Entries

    DEFAULT\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: CDRAuto Run = 0O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: CDRAuto Run = 0O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-21-1085031214-492894223-725345543-1003\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O9 - Extra Button: @shdoclc.dll,-866 - - C:\WINDOWS\Web\()O9 - Extra ' Tools' menuitem : @shdoclc.dll,-864 - - C:\WINDOWS\Web\()O10 - Protocol_Catalog9\Catalog_Entries

    DEFAULT\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: CDRAuto Run = 0O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: CDRAuto Run = 0O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-21-1085031214-492894223-725345543-1003\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O9 - Extra Button: @shdoclc.dll,-866 - - C:\WINDOWS\Web\()O9 - Extra ' Tools' menuitem : @shdoclc.dll,-864 - - C:\WINDOWS\Web\()O10 - Protocol_Catalog9\Catalog_Entries[[

    DEFAULT\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: CDRAuto Run = 0O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: CDRAuto Run = 0O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-21-1085031214-492894223-725345543-1003\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O9 - Extra Button: @shdoclc.dll,-866 - - C:\WINDOWS\Web\()O9 - Extra ' Tools' menuitem : @shdoclc.dll,-864 - - C:\WINDOWS\Web\()O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\windows\System32\Vet (Computer Associates International, Inc.)O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\windows\System32\Vet (Computer Associates International, Inc.)O12 - Plugin for: . File not found O12 - Plugin for: - C:\Program Files\Internet Explorer\PLUGINS\NPDoc (Intertrust Technologies, Inc.)O15 - HKU\S-1-5-21-1085031214-492894223-725345543-1003\..

    1260658687701DPF: - hxxp:// - hxxp://utilities.pcpitstop.com/Exterminate2/pcpitstop Anti DPF: - DPF: - hxxp:// - hxxp:// - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - hxxp://a19.g.akamai.net/7/19/7125/4058/ftp.coupons.com/r3302/Nestle/DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_02-windows-i586DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - file://c:\program files\mystery case files - ravenhearst\images\DPF: - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/DPF: - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/DPF: - hxxps://remote.lyondell.com/dana-cached/setup/Juniper Setup SP1DPF: - hxxp://driveragent.com/files/DPF: - hxxp://utilities.pcpitstop.com/Optimize3/pcpitstop2DPF: - hxxp:// Install Handler: cdo - - c:\program files\common files\microsoft shared\web folders\PKMCDO.

    DLLNotify: ccdfafeebacadd - c:\windows\system32\ccdfafeebacadd.dll================= FIREFOX ===================FF - Profile Path - c:\docume~1\stephen\applic~1\mozilla\firefox\profiles\vgg4xthp.default\FF - plugin: c:\program files\mozilla firefox\plugins\NPcol308FF - plugin: c:\program files\mozilla firefox\plugins\np Coupon FF - plugin: c:\program files\mozilla firefox\plugins\npica FF - plugin: c:\program files\mozilla firefox\plugins\np Moz Coupon FF - plugin: c:\program files\mozilla firefox\plugins\np My FF - plugin: c:\program files\real\realarcade\plugins\mozilla\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\---- FIREFOX POLICIES ----FF - user.js: yahoo.homepage.dontask - truec:\program files\mozilla firefox\greprefs\- pref("ui.use_native_colors", true);c:\program files\mozilla firefox\greprefs\- pref("ui.use_native_popup_windows", false);c:\program files\mozilla firefox\greprefs\- pref("browser.enable_click_image_resizing", true);c:\program files\mozilla firefox\greprefs\- pref("accessibility.browsewithcaret_shortcut.enabled", true);c:\program files\mozilla firefox\greprefs\- pref("javascript.high_water_mark", 32);c:\program files\mozilla firefox\greprefs\- pref("javascript.gc_frequency", 1600);c:\program files\mozilla firefox\greprefs\- pref("force-generic-ntlm", false);c:\program files\mozilla firefox\greprefs\- pref("enabled", false);c:\program files\mozilla firefox\greprefs\- pref("ui.trackpoint_hack.enabled", -1);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.debug", false);c:\program files\mozilla firefox\greprefs\- pref("browser.Weight", 2);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.bucket Size", 1);c:\program files\mozilla firefox\greprefs\- pref("browser.Time Groupings", 25);c:\program files\mozilla firefox\greprefs\- pref("browser.Grouping Size", 604800);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.boundary Weight", 25);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.prefix Weight", 5);c:\program files\mozilla firefox\greprefs\- pref("html5.enable", false);c:\program files\mozilla firefox\greprefs\- pref("security.ssl3.rsa_seed_sha", true);c:\program files\mozilla firefox\defaults\pref\- pref("app.update.download.background Interval", 600);c:\program files\mozilla firefox\defaults\pref\- pref("app.manual", " files\mozilla firefox\defaults\pref\- pref("browser.search.param.yahoo-fr-ja", "mozff");c:\program files\mozilla firefox\defaults\pref\- pref("extensions..name", "chrome://browser/locale/browser.properties");c:\program files\mozilla firefox\defaults\pref\- pref("extensions..description", "chrome://browser/locale/browser.properties");c:\program files\mozilla firefox\defaults\pref\- pref("xpinstall.whitelist.add", "addons.mozilla.org");c:\program files\mozilla firefox\defaults\pref\- pref("xpinstall.36", "getpersonas.com");c:\program files\mozilla firefox\defaults\pref\- pref("lightweight Themes.update.enabled", true);c:\program files\mozilla firefox\defaults\pref\- pref("Tabs.previews", false);c:\program files\mozilla firefox\defaults\pref\- pref("plugins.hide_infobar_for_outdated_plugin", false);c:\program files\mozilla firefox\defaults\pref\- pref("plugins.update.notify User", false);c:\program files\mozilla firefox\defaults\pref\- pref("toolbar.customization.usesheet", false);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.enable", false);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.max", 20);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.cachetime", 20);============= SERVICES / DRIVERS ===============R1 ANVIOCTL; ANVIOCTL;c:\windows\system32\drivers\[2006-7-21 233816]R1 apto6ko; Driver Computer Host ATK0110 Processor Generic Acoustic Microsoft Kernel;c:\windows\system32\drivers\[2000-10-24 32768]R1 ctxusbm; Citrix USB Monitor Driver;c:\windows\system32\drivers\[2009-9-8 65584]R1 VET-FILT; VET File System Filter;c:\windows\system32\drivers\[2009-11-9 26352]R1 VET-REC; VET File System Recognizer;c:\windows\system32\drivers\[2009-11-9 21104]R1 VETEFILE; VET File Scan Engine;c:\windows\system32\drivers\[2009-11-9 739696]R1 VETFDDNT; VET Floppy Boot Sector Monitor;c:\windows\system32\drivers\[2009-11-9 21488]R1 VETMONNT; VET File Monitor;c:\windows\system32\drivers\[2009-11-9 161008]R1 vsdatant;vsdatant;c:\windows\system32\[2006-7-21 280104]R2 CAISafe; CAISafe;c:\program files\ca\etrust internet security suite\etrust ez antivirus\[2007-5-2 144696]R2 cpqoko6; Transport/Protocol Event Shadow for Channel User Thumbnail;c:\windows\system32\-k tapisrvs [2001-8-23 12800]R2 VETMSGNT; VET Message Service;c:\program files\ca\etrust internet security suite\etrust ez antivirus\[2009-11-26 255216]R2 vsmon; True Vector Internet Monitor;c:\windows\system32\zonelabs\-service -- c:\windows\system32\zonelabs\-service [?

    File not found IE - HKU\S-1-5-21-1085031214-492894223-725345543-1003\Software\Microsoft\Windows\Current Version\Internet Settings: "Proxy Enable" = 0 FF - .extensions.enabled Items: [email protected]:1.0FF - .extensions.enabled Items: :2.1.2.20100119091315 FF - HKLM\software\mozilla\Firefox\Extensions\\: C:\Program Files\Real\Real Player\browserrecord [2009/05/29 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/03/19 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/03/19 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.0.0\Extensions\\Components: C:\Program Files\Netscape\Netscape Browser\Components [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.0.0\Extensions\\Plugins: C:\Program Files\Netscape\Netscape Browser\Plugins [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.3.0\Extensions\\Components: C:\Program Files\Netscape\Netscape Browser\Components [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.3.0\Extensions\\Plugins: C:\Program Files\Netscape\Netscape Browser\Plugins [2010/02/02 | 000,000,000 | ---D | M] [2008/12/28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Extensions[2010/03/26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Firefox\Profiles\vgg4xthp.default\extensions[2010/02/22 | 000,000,000 | ---D | M] (Yahoo!

    Toolbar) -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Firefox\Profiles\vgg4xthp.default\extensions\[2010/03/26 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions[2009/09/12 | 000,124,240 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\CCMSDK.dll[2009/09/12 | 000,070,488 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\Cgp Core.dll[2009/09/12 | 000,091,480 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\confmgr.dll[2009/09/12 | 000,022,360 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\ctxlogging.dll[2009/12/11 | 000,442,368 | ---- | M] (Invenda Corporation) -- C:\Program Files\Mozilla Firefox\plugins\NPcol308.dll[2009/11/19 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\np Coupon Printer.dll[2009/09/12 | 000,406,864 | ---- | M] () -- C:\Program Files\Mozilla Firefox\plugins\npica N.dll[2009/11/19 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\np Moz Coupon Printer.dll[2009/08/31 | 000,147,456 | ---- | M] (Oberon Media) -- C:\Program Files\Mozilla Firefox\plugins\np My Games.dll[2008/09/15 | 000,376,832 | ---- | M] ( ) -- C:\Program Files\Mozilla Firefox\plugins\npsnapfish.dll[2009/09/12 | 000,023,896 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\Tcp O1 HOSTS File: ([2007/04/18 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (no name) - - No CLSID value found.

    ||

    DEFAULT\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: CDRAuto Run = 0O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: CDRAuto Run = 0O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-21-1085031214-492894223-725345543-1003\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O9 - Extra Button: @shdoclc.dll,-866 - - C:\WINDOWS\Web\()O9 - Extra ' Tools' menuitem : @shdoclc.dll,-864 - - C:\WINDOWS\Web\()O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\windows\System32\Vet (Computer Associates International, Inc.)O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\windows\System32\Vet (Computer Associates International, Inc.)O12 - Plugin for: . File not found O12 - Plugin for: - C:\Program Files\Internet Explorer\PLUGINS\NPDoc (Intertrust Technologies, Inc.)O15 - HKU\S-1-5-21-1085031214-492894223-725345543-1003\..1260658687701DPF: - hxxp:// - hxxp://utilities.pcpitstop.com/Exterminate2/pcpitstop Anti DPF: - DPF: - hxxp:// - hxxp:// - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - hxxp://a19.g.akamai.net/7/19/7125/4058/ftp.coupons.com/r3302/Nestle/DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_02-windows-i586DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - file://c:\program files\mystery case files - ravenhearst\images\DPF: - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/DPF: - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/DPF: - hxxps://remote.lyondell.com/dana-cached/setup/Juniper Setup SP1DPF: - hxxp://driveragent.com/files/DPF: - hxxp://utilities.pcpitstop.com/Optimize3/pcpitstop2DPF: - hxxp:// Install Handler: cdo - - c:\program files\common files\microsoft shared\web folders\PKMCDO.DLLNotify: ccdfafeebacadd - c:\windows\system32\ccdfafeebacadd.dll================= FIREFOX ===================FF - Profile Path - c:\docume~1\stephen\applic~1\mozilla\firefox\profiles\vgg4xthp.default\FF - plugin: c:\program files\mozilla firefox\plugins\NPcol308FF - plugin: c:\program files\mozilla firefox\plugins\np Coupon FF - plugin: c:\program files\mozilla firefox\plugins\npica FF - plugin: c:\program files\mozilla firefox\plugins\np Moz Coupon FF - plugin: c:\program files\mozilla firefox\plugins\np My FF - plugin: c:\program files\real\realarcade\plugins\mozilla\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\---- FIREFOX POLICIES ----FF - user.js: yahoo.homepage.dontask - truec:\program files\mozilla firefox\greprefs\- pref("ui.use_native_colors", true);c:\program files\mozilla firefox\greprefs\- pref("ui.use_native_popup_windows", false);c:\program files\mozilla firefox\greprefs\- pref("browser.enable_click_image_resizing", true);c:\program files\mozilla firefox\greprefs\- pref("accessibility.browsewithcaret_shortcut.enabled", true);c:\program files\mozilla firefox\greprefs\- pref("javascript.high_water_mark", 32);c:\program files\mozilla firefox\greprefs\- pref("javascript.gc_frequency", 1600);c:\program files\mozilla firefox\greprefs\- pref("force-generic-ntlm", false);c:\program files\mozilla firefox\greprefs\- pref("enabled", false);c:\program files\mozilla firefox\greprefs\- pref("ui.trackpoint_hack.enabled", -1);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.debug", false);c:\program files\mozilla firefox\greprefs\- pref("browser.Weight", 2);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.bucket Size", 1);c:\program files\mozilla firefox\greprefs\- pref("browser.Time Groupings", 25);c:\program files\mozilla firefox\greprefs\- pref("browser.Grouping Size", 604800);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.boundary Weight", 25);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.prefix Weight", 5);c:\program files\mozilla firefox\greprefs\- pref("html5.enable", false);c:\program files\mozilla firefox\greprefs\- pref("security.ssl3.rsa_seed_sha", true);c:\program files\mozilla firefox\defaults\pref\- pref("app.update.download.background Interval", 600);c:\program files\mozilla firefox\defaults\pref\- pref("app.manual", " files\mozilla firefox\defaults\pref\- pref("browser.search.param.yahoo-fr-ja", "mozff");c:\program files\mozilla firefox\defaults\pref\- pref("extensions..name", "chrome://browser/locale/browser.properties");c:\program files\mozilla firefox\defaults\pref\- pref("extensions..description", "chrome://browser/locale/browser.properties");c:\program files\mozilla firefox\defaults\pref\- pref("xpinstall.whitelist.add", "addons.mozilla.org");c:\program files\mozilla firefox\defaults\pref\- pref("xpinstall.36", "getpersonas.com");c:\program files\mozilla firefox\defaults\pref\- pref("lightweight Themes.update.enabled", true);c:\program files\mozilla firefox\defaults\pref\- pref("Tabs.previews", false);c:\program files\mozilla firefox\defaults\pref\- pref("plugins.hide_infobar_for_outdated_plugin", false);c:\program files\mozilla firefox\defaults\pref\- pref("plugins.update.notify User", false);c:\program files\mozilla firefox\defaults\pref\- pref("toolbar.customization.usesheet", false);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.enable", false);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.max", 20);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.cachetime", 20);============= SERVICES / DRIVERS ===============R1 ANVIOCTL; ANVIOCTL;c:\windows\system32\drivers\[2006-7-21 233816]R1 apto6ko; Driver Computer Host ATK0110 Processor Generic Acoustic Microsoft Kernel;c:\windows\system32\drivers\[2000-10-24 32768]R1 ctxusbm; Citrix USB Monitor Driver;c:\windows\system32\drivers\[2009-9-8 65584]R1 VET-FILT; VET File System Filter;c:\windows\system32\drivers\[2009-11-9 26352]R1 VET-REC; VET File System Recognizer;c:\windows\system32\drivers\[2009-11-9 21104]R1 VETEFILE; VET File Scan Engine;c:\windows\system32\drivers\[2009-11-9 739696]R1 VETFDDNT; VET Floppy Boot Sector Monitor;c:\windows\system32\drivers\[2009-11-9 21488]R1 VETMONNT; VET File Monitor;c:\windows\system32\drivers\[2009-11-9 161008]R1 vsdatant;vsdatant;c:\windows\system32\[2006-7-21 280104]R2 CAISafe; CAISafe;c:\program files\ca\etrust internet security suite\etrust ez antivirus\[2007-5-2 144696]R2 cpqoko6; Transport/Protocol Event Shadow for Channel User Thumbnail;c:\windows\system32\-k tapisrvs [2001-8-23 12800]R2 VETMSGNT; VET Message Service;c:\program files\ca\etrust internet security suite\etrust ez antivirus\[2009-11-26 255216]R2 vsmon; True Vector Internet Monitor;c:\windows\system32\zonelabs\-service -- c:\windows\system32\zonelabs\-service [?File not found IE - HKU\S-1-5-21-1085031214-492894223-725345543-1003\Software\Microsoft\Windows\Current Version\Internet Settings: "Proxy Enable" = 0 FF - .extensions.enabled Items: [email protected]:1.0FF - .extensions.enabled Items: :2.1.2.20100119091315 FF - HKLM\software\mozilla\Firefox\Extensions\\: C:\Program Files\Real\Real Player\browserrecord [2009/05/29 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/03/19 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/03/19 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.0.0\Extensions\\Components: C:\Program Files\Netscape\Netscape Browser\Components [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.0.0\Extensions\\Plugins: C:\Program Files\Netscape\Netscape Browser\Plugins [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.3.0\Extensions\\Components: C:\Program Files\Netscape\Netscape Browser\Components [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.3.0\Extensions\\Plugins: C:\Program Files\Netscape\Netscape Browser\Plugins [2010/02/02 | 000,000,000 | ---D | M] [2008/12/28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Extensions[2010/03/26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Firefox\Profiles\vgg4xthp.default\extensions[2010/02/22 | 000,000,000 | ---D | M] (Yahoo!Toolbar) -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Firefox\Profiles\vgg4xthp.default\extensions\[2010/03/26 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions[2009/09/12 | 000,124,240 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\CCMSDK.dll[2009/09/12 | 000,070,488 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\Cgp Core.dll[2009/09/12 | 000,091,480 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\confmgr.dll[2009/09/12 | 000,022,360 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\ctxlogging.dll[2009/12/11 | 000,442,368 | ---- | M] (Invenda Corporation) -- C:\Program Files\Mozilla Firefox\plugins\NPcol308.dll[2009/11/19 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\np Coupon Printer.dll[2009/09/12 | 000,406,864 | ---- | M] () -- C:\Program Files\Mozilla Firefox\plugins\npica N.dll[2009/11/19 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\np Moz Coupon Printer.dll[2009/08/31 | 000,147,456 | ---- | M] (Oberon Media) -- C:\Program Files\Mozilla Firefox\plugins\np My Games.dll[2008/09/15 | 000,376,832 | ---- | M] ( ) -- C:\Program Files\Mozilla Firefox\plugins\npsnapfish.dll[2009/09/12 | 000,023,896 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\Tcp O1 HOSTS File: ([2007/04/18 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (no name) - - No CLSID value found.

    ]]0000000001 - C:\windows\System32\Vet (Computer Associates International, Inc.)O10 - Protocol_Catalog9\Catalog_Entries[[

    DEFAULT\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: CDRAuto Run = 0O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: CDRAuto Run = 0O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-21-1085031214-492894223-725345543-1003\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O9 - Extra Button: @shdoclc.dll,-866 - - C:\WINDOWS\Web\()O9 - Extra ' Tools' menuitem : @shdoclc.dll,-864 - - C:\WINDOWS\Web\()O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\windows\System32\Vet (Computer Associates International, Inc.)O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\windows\System32\Vet (Computer Associates International, Inc.)O12 - Plugin for: . File not found O12 - Plugin for: - C:\Program Files\Internet Explorer\PLUGINS\NPDoc (Intertrust Technologies, Inc.)O15 - HKU\S-1-5-21-1085031214-492894223-725345543-1003\..

    1260658687701DPF: - hxxp:// - hxxp://utilities.pcpitstop.com/Exterminate2/pcpitstop Anti DPF: - DPF: - hxxp:// - hxxp:// - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - hxxp://a19.g.akamai.net/7/19/7125/4058/ftp.coupons.com/r3302/Nestle/DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_02-windows-i586DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - file://c:\program files\mystery case files - ravenhearst\images\DPF: - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/DPF: - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/DPF: - hxxps://remote.lyondell.com/dana-cached/setup/Juniper Setup SP1DPF: - hxxp://driveragent.com/files/DPF: - hxxp://utilities.pcpitstop.com/Optimize3/pcpitstop2DPF: - hxxp:// Install Handler: cdo - - c:\program files\common files\microsoft shared\web folders\PKMCDO.

    DLLNotify: ccdfafeebacadd - c:\windows\system32\ccdfafeebacadd.dll================= FIREFOX ===================FF - Profile Path - c:\docume~1\stephen\applic~1\mozilla\firefox\profiles\vgg4xthp.default\FF - plugin: c:\program files\mozilla firefox\plugins\NPcol308FF - plugin: c:\program files\mozilla firefox\plugins\np Coupon FF - plugin: c:\program files\mozilla firefox\plugins\npica FF - plugin: c:\program files\mozilla firefox\plugins\np Moz Coupon FF - plugin: c:\program files\mozilla firefox\plugins\np My FF - plugin: c:\program files\real\realarcade\plugins\mozilla\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\---- FIREFOX POLICIES ----FF - user.js: yahoo.homepage.dontask - truec:\program files\mozilla firefox\greprefs\- pref("ui.use_native_colors", true);c:\program files\mozilla firefox\greprefs\- pref("ui.use_native_popup_windows", false);c:\program files\mozilla firefox\greprefs\- pref("browser.enable_click_image_resizing", true);c:\program files\mozilla firefox\greprefs\- pref("accessibility.browsewithcaret_shortcut.enabled", true);c:\program files\mozilla firefox\greprefs\- pref("javascript.high_water_mark", 32);c:\program files\mozilla firefox\greprefs\- pref("javascript.gc_frequency", 1600);c:\program files\mozilla firefox\greprefs\- pref("force-generic-ntlm", false);c:\program files\mozilla firefox\greprefs\- pref("enabled", false);c:\program files\mozilla firefox\greprefs\- pref("ui.trackpoint_hack.enabled", -1);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.debug", false);c:\program files\mozilla firefox\greprefs\- pref("browser.Weight", 2);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.bucket Size", 1);c:\program files\mozilla firefox\greprefs\- pref("browser.Time Groupings", 25);c:\program files\mozilla firefox\greprefs\- pref("browser.Grouping Size", 604800);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.boundary Weight", 25);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.prefix Weight", 5);c:\program files\mozilla firefox\greprefs\- pref("html5.enable", false);c:\program files\mozilla firefox\greprefs\- pref("security.ssl3.rsa_seed_sha", true);c:\program files\mozilla firefox\defaults\pref\- pref("app.update.download.background Interval", 600);c:\program files\mozilla firefox\defaults\pref\- pref("app.manual", " files\mozilla firefox\defaults\pref\- pref("browser.search.param.yahoo-fr-ja", "mozff");c:\program files\mozilla firefox\defaults\pref\- pref("extensions..name", "chrome://browser/locale/browser.properties");c:\program files\mozilla firefox\defaults\pref\- pref("extensions..description", "chrome://browser/locale/browser.properties");c:\program files\mozilla firefox\defaults\pref\- pref("xpinstall.whitelist.add", "addons.mozilla.org");c:\program files\mozilla firefox\defaults\pref\- pref("xpinstall.36", "getpersonas.com");c:\program files\mozilla firefox\defaults\pref\- pref("lightweight Themes.update.enabled", true);c:\program files\mozilla firefox\defaults\pref\- pref("Tabs.previews", false);c:\program files\mozilla firefox\defaults\pref\- pref("plugins.hide_infobar_for_outdated_plugin", false);c:\program files\mozilla firefox\defaults\pref\- pref("plugins.update.notify User", false);c:\program files\mozilla firefox\defaults\pref\- pref("toolbar.customization.usesheet", false);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.enable", false);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.max", 20);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.cachetime", 20);============= SERVICES / DRIVERS ===============R1 ANVIOCTL; ANVIOCTL;c:\windows\system32\drivers\[2006-7-21 233816]R1 apto6ko; Driver Computer Host ATK0110 Processor Generic Acoustic Microsoft Kernel;c:\windows\system32\drivers\[2000-10-24 32768]R1 ctxusbm; Citrix USB Monitor Driver;c:\windows\system32\drivers\[2009-9-8 65584]R1 VET-FILT; VET File System Filter;c:\windows\system32\drivers\[2009-11-9 26352]R1 VET-REC; VET File System Recognizer;c:\windows\system32\drivers\[2009-11-9 21104]R1 VETEFILE; VET File Scan Engine;c:\windows\system32\drivers\[2009-11-9 739696]R1 VETFDDNT; VET Floppy Boot Sector Monitor;c:\windows\system32\drivers\[2009-11-9 21488]R1 VETMONNT; VET File Monitor;c:\windows\system32\drivers\[2009-11-9 161008]R1 vsdatant;vsdatant;c:\windows\system32\[2006-7-21 280104]R2 CAISafe; CAISafe;c:\program files\ca\etrust internet security suite\etrust ez antivirus\[2007-5-2 144696]R2 cpqoko6; Transport/Protocol Event Shadow for Channel User Thumbnail;c:\windows\system32\-k tapisrvs [2001-8-23 12800]R2 VETMSGNT; VET Message Service;c:\program files\ca\etrust internet security suite\etrust ez antivirus\[2009-11-26 255216]R2 vsmon; True Vector Internet Monitor;c:\windows\system32\zonelabs\-service -- c:\windows\system32\zonelabs\-service [?

    File not found IE - HKU\S-1-5-21-1085031214-492894223-725345543-1003\Software\Microsoft\Windows\Current Version\Internet Settings: "Proxy Enable" = 0 FF - .extensions.enabled Items: [email protected]:1.0FF - .extensions.enabled Items: :2.1.2.20100119091315 FF - HKLM\software\mozilla\Firefox\Extensions\\: C:\Program Files\Real\Real Player\browserrecord [2009/05/29 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/03/19 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/03/19 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.0.0\Extensions\\Components: C:\Program Files\Netscape\Netscape Browser\Components [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.0.0\Extensions\\Plugins: C:\Program Files\Netscape\Netscape Browser\Plugins [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.3.0\Extensions\\Components: C:\Program Files\Netscape\Netscape Browser\Components [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.3.0\Extensions\\Plugins: C:\Program Files\Netscape\Netscape Browser\Plugins [2010/02/02 | 000,000,000 | ---D | M] [2008/12/28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Extensions[2010/03/26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Firefox\Profiles\vgg4xthp.default\extensions[2010/02/22 | 000,000,000 | ---D | M] (Yahoo!

    Toolbar) -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Firefox\Profiles\vgg4xthp.default\extensions\[2010/03/26 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions[2009/09/12 | 000,124,240 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\CCMSDK.dll[2009/09/12 | 000,070,488 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\Cgp Core.dll[2009/09/12 | 000,091,480 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\confmgr.dll[2009/09/12 | 000,022,360 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\ctxlogging.dll[2009/12/11 | 000,442,368 | ---- | M] (Invenda Corporation) -- C:\Program Files\Mozilla Firefox\plugins\NPcol308.dll[2009/11/19 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\np Coupon Printer.dll[2009/09/12 | 000,406,864 | ---- | M] () -- C:\Program Files\Mozilla Firefox\plugins\npica N.dll[2009/11/19 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\np Moz Coupon Printer.dll[2009/08/31 | 000,147,456 | ---- | M] (Oberon Media) -- C:\Program Files\Mozilla Firefox\plugins\np My Games.dll[2008/09/15 | 000,376,832 | ---- | M] ( ) -- C:\Program Files\Mozilla Firefox\plugins\npsnapfish.dll[2009/09/12 | 000,023,896 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\Tcp O1 HOSTS File: ([2007/04/18 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (no name) - - No CLSID value found.

    ||

    DEFAULT\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: CDRAuto Run = 0O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: CDRAuto Run = 0O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-21-1085031214-492894223-725345543-1003\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O9 - Extra Button: @shdoclc.dll,-866 - - C:\WINDOWS\Web\()O9 - Extra ' Tools' menuitem : @shdoclc.dll,-864 - - C:\WINDOWS\Web\()O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\windows\System32\Vet (Computer Associates International, Inc.)O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\windows\System32\Vet (Computer Associates International, Inc.)O12 - Plugin for: . File not found O12 - Plugin for: - C:\Program Files\Internet Explorer\PLUGINS\NPDoc (Intertrust Technologies, Inc.)O15 - HKU\S-1-5-21-1085031214-492894223-725345543-1003\..1260658687701DPF: - hxxp:// - hxxp://utilities.pcpitstop.com/Exterminate2/pcpitstop Anti DPF: - DPF: - hxxp:// - hxxp:// - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - hxxp://a19.g.akamai.net/7/19/7125/4058/ftp.coupons.com/r3302/Nestle/DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_02-windows-i586DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - file://c:\program files\mystery case files - ravenhearst\images\DPF: - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/DPF: - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/DPF: - hxxps://remote.lyondell.com/dana-cached/setup/Juniper Setup SP1DPF: - hxxp://driveragent.com/files/DPF: - hxxp://utilities.pcpitstop.com/Optimize3/pcpitstop2DPF: - hxxp:// Install Handler: cdo - - c:\program files\common files\microsoft shared\web folders\PKMCDO.DLLNotify: ccdfafeebacadd - c:\windows\system32\ccdfafeebacadd.dll================= FIREFOX ===================FF - Profile Path - c:\docume~1\stephen\applic~1\mozilla\firefox\profiles\vgg4xthp.default\FF - plugin: c:\program files\mozilla firefox\plugins\NPcol308FF - plugin: c:\program files\mozilla firefox\plugins\np Coupon FF - plugin: c:\program files\mozilla firefox\plugins\npica FF - plugin: c:\program files\mozilla firefox\plugins\np Moz Coupon FF - plugin: c:\program files\mozilla firefox\plugins\np My FF - plugin: c:\program files\real\realarcade\plugins\mozilla\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\---- FIREFOX POLICIES ----FF - user.js: yahoo.homepage.dontask - truec:\program files\mozilla firefox\greprefs\- pref("ui.use_native_colors", true);c:\program files\mozilla firefox\greprefs\- pref("ui.use_native_popup_windows", false);c:\program files\mozilla firefox\greprefs\- pref("browser.enable_click_image_resizing", true);c:\program files\mozilla firefox\greprefs\- pref("accessibility.browsewithcaret_shortcut.enabled", true);c:\program files\mozilla firefox\greprefs\- pref("javascript.high_water_mark", 32);c:\program files\mozilla firefox\greprefs\- pref("javascript.gc_frequency", 1600);c:\program files\mozilla firefox\greprefs\- pref("force-generic-ntlm", false);c:\program files\mozilla firefox\greprefs\- pref("enabled", false);c:\program files\mozilla firefox\greprefs\- pref("ui.trackpoint_hack.enabled", -1);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.debug", false);c:\program files\mozilla firefox\greprefs\- pref("browser.Weight", 2);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.bucket Size", 1);c:\program files\mozilla firefox\greprefs\- pref("browser.Time Groupings", 25);c:\program files\mozilla firefox\greprefs\- pref("browser.Grouping Size", 604800);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.boundary Weight", 25);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.prefix Weight", 5);c:\program files\mozilla firefox\greprefs\- pref("html5.enable", false);c:\program files\mozilla firefox\greprefs\- pref("security.ssl3.rsa_seed_sha", true);c:\program files\mozilla firefox\defaults\pref\- pref("app.update.download.background Interval", 600);c:\program files\mozilla firefox\defaults\pref\- pref("app.manual", " files\mozilla firefox\defaults\pref\- pref("browser.search.param.yahoo-fr-ja", "mozff");c:\program files\mozilla firefox\defaults\pref\- pref("extensions..name", "chrome://browser/locale/browser.properties");c:\program files\mozilla firefox\defaults\pref\- pref("extensions..description", "chrome://browser/locale/browser.properties");c:\program files\mozilla firefox\defaults\pref\- pref("xpinstall.whitelist.add", "addons.mozilla.org");c:\program files\mozilla firefox\defaults\pref\- pref("xpinstall.36", "getpersonas.com");c:\program files\mozilla firefox\defaults\pref\- pref("lightweight Themes.update.enabled", true);c:\program files\mozilla firefox\defaults\pref\- pref("Tabs.previews", false);c:\program files\mozilla firefox\defaults\pref\- pref("plugins.hide_infobar_for_outdated_plugin", false);c:\program files\mozilla firefox\defaults\pref\- pref("plugins.update.notify User", false);c:\program files\mozilla firefox\defaults\pref\- pref("toolbar.customization.usesheet", false);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.enable", false);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.max", 20);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.cachetime", 20);============= SERVICES / DRIVERS ===============R1 ANVIOCTL; ANVIOCTL;c:\windows\system32\drivers\[2006-7-21 233816]R1 apto6ko; Driver Computer Host ATK0110 Processor Generic Acoustic Microsoft Kernel;c:\windows\system32\drivers\[2000-10-24 32768]R1 ctxusbm; Citrix USB Monitor Driver;c:\windows\system32\drivers\[2009-9-8 65584]R1 VET-FILT; VET File System Filter;c:\windows\system32\drivers\[2009-11-9 26352]R1 VET-REC; VET File System Recognizer;c:\windows\system32\drivers\[2009-11-9 21104]R1 VETEFILE; VET File Scan Engine;c:\windows\system32\drivers\[2009-11-9 739696]R1 VETFDDNT; VET Floppy Boot Sector Monitor;c:\windows\system32\drivers\[2009-11-9 21488]R1 VETMONNT; VET File Monitor;c:\windows\system32\drivers\[2009-11-9 161008]R1 vsdatant;vsdatant;c:\windows\system32\[2006-7-21 280104]R2 CAISafe; CAISafe;c:\program files\ca\etrust internet security suite\etrust ez antivirus\[2007-5-2 144696]R2 cpqoko6; Transport/Protocol Event Shadow for Channel User Thumbnail;c:\windows\system32\-k tapisrvs [2001-8-23 12800]R2 VETMSGNT; VET Message Service;c:\program files\ca\etrust internet security suite\etrust ez antivirus\[2009-11-26 255216]R2 vsmon; True Vector Internet Monitor;c:\windows\system32\zonelabs\-service -- c:\windows\system32\zonelabs\-service [?File not found IE - HKU\S-1-5-21-1085031214-492894223-725345543-1003\Software\Microsoft\Windows\Current Version\Internet Settings: "Proxy Enable" = 0 FF - .extensions.enabled Items: [email protected]:1.0FF - .extensions.enabled Items: :2.1.2.20100119091315 FF - HKLM\software\mozilla\Firefox\Extensions\\: C:\Program Files\Real\Real Player\browserrecord [2009/05/29 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/03/19 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/03/19 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.0.0\Extensions\\Components: C:\Program Files\Netscape\Netscape Browser\Components [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.0.0\Extensions\\Plugins: C:\Program Files\Netscape\Netscape Browser\Plugins [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.3.0\Extensions\\Components: C:\Program Files\Netscape\Netscape Browser\Components [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.3.0\Extensions\\Plugins: C:\Program Files\Netscape\Netscape Browser\Plugins [2010/02/02 | 000,000,000 | ---D | M] [2008/12/28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Extensions[2010/03/26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Firefox\Profiles\vgg4xthp.default\extensions[2010/02/22 | 000,000,000 | ---D | M] (Yahoo!Toolbar) -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Firefox\Profiles\vgg4xthp.default\extensions\[2010/03/26 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions[2009/09/12 | 000,124,240 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\CCMSDK.dll[2009/09/12 | 000,070,488 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\Cgp Core.dll[2009/09/12 | 000,091,480 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\confmgr.dll[2009/09/12 | 000,022,360 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\ctxlogging.dll[2009/12/11 | 000,442,368 | ---- | M] (Invenda Corporation) -- C:\Program Files\Mozilla Firefox\plugins\NPcol308.dll[2009/11/19 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\np Coupon Printer.dll[2009/09/12 | 000,406,864 | ---- | M] () -- C:\Program Files\Mozilla Firefox\plugins\npica N.dll[2009/11/19 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\np Moz Coupon Printer.dll[2009/08/31 | 000,147,456 | ---- | M] (Oberon Media) -- C:\Program Files\Mozilla Firefox\plugins\np My Games.dll[2008/09/15 | 000,376,832 | ---- | M] ( ) -- C:\Program Files\Mozilla Firefox\plugins\npsnapfish.dll[2009/09/12 | 000,023,896 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\Tcp O1 HOSTS File: ([2007/04/18 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (no name) - - No CLSID value found.

    ]]0000000019 - C:\windows\System32\Vet (Computer Associates International, Inc.)O12 - Plugin for: . File not found O12 - Plugin for: - C:\Program Files\Internet Explorer\PLUGINS\NPDoc (Intertrust Technologies, Inc.)O15 - HKU\S-1-5-21-1085031214-492894223-725345543-1003\..

    1260658687701DPF: - hxxp:// - hxxp://utilities.pcpitstop.com/Exterminate2/pcpitstop Anti DPF: - DPF: - hxxp:// - hxxp:// - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - hxxp://a19.g.akamai.net/7/19/7125/4058/ftp.coupons.com/r3302/Nestle/DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_02-windows-i586DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - file://c:\program files\mystery case files - ravenhearst\images\DPF: - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/DPF: - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/DPF: - hxxps://remote.lyondell.com/dana-cached/setup/Juniper Setup SP1DPF: - hxxp://driveragent.com/files/DPF: - hxxp://utilities.pcpitstop.com/Optimize3/pcpitstop2DPF: - hxxp:// Install Handler: cdo - - c:\program files\common files\microsoft shared\web folders\PKMCDO.

    DLLNotify: ccdfafeebacadd - c:\windows\system32\ccdfafeebacadd.dll================= FIREFOX ===================FF - Profile Path - c:\docume~1\stephen\applic~1\mozilla\firefox\profiles\vgg4xthp.default\FF - plugin: c:\program files\mozilla firefox\plugins\NPcol308FF - plugin: c:\program files\mozilla firefox\plugins\np Coupon FF - plugin: c:\program files\mozilla firefox\plugins\npica FF - plugin: c:\program files\mozilla firefox\plugins\np Moz Coupon FF - plugin: c:\program files\mozilla firefox\plugins\np My FF - plugin: c:\program files\real\realarcade\plugins\mozilla\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\---- FIREFOX POLICIES ----FF - user.js: yahoo.homepage.dontask - truec:\program files\mozilla firefox\greprefs\- pref("ui.use_native_colors", true);c:\program files\mozilla firefox\greprefs\- pref("ui.use_native_popup_windows", false);c:\program files\mozilla firefox\greprefs\- pref("browser.enable_click_image_resizing", true);c:\program files\mozilla firefox\greprefs\- pref("accessibility.browsewithcaret_shortcut.enabled", true);c:\program files\mozilla firefox\greprefs\- pref("javascript.high_water_mark", 32);c:\program files\mozilla firefox\greprefs\- pref("javascript.gc_frequency", 1600);c:\program files\mozilla firefox\greprefs\- pref("force-generic-ntlm", false);c:\program files\mozilla firefox\greprefs\- pref("enabled", false);c:\program files\mozilla firefox\greprefs\- pref("ui.trackpoint_hack.enabled", -1);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.debug", false);c:\program files\mozilla firefox\greprefs\- pref("browser.Weight", 2);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.bucket Size", 1);c:\program files\mozilla firefox\greprefs\- pref("browser.Time Groupings", 25);c:\program files\mozilla firefox\greprefs\- pref("browser.Grouping Size", 604800);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.boundary Weight", 25);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.prefix Weight", 5);c:\program files\mozilla firefox\greprefs\- pref("html5.enable", false);c:\program files\mozilla firefox\greprefs\- pref("security.ssl3.rsa_seed_sha", true);c:\program files\mozilla firefox\defaults\pref\- pref("app.update.download.background Interval", 600);c:\program files\mozilla firefox\defaults\pref\- pref("app.manual", " files\mozilla firefox\defaults\pref\- pref("browser.search.param.yahoo-fr-ja", "mozff");c:\program files\mozilla firefox\defaults\pref\- pref("extensions..name", "chrome://browser/locale/browser.properties");c:\program files\mozilla firefox\defaults\pref\- pref("extensions..description", "chrome://browser/locale/browser.properties");c:\program files\mozilla firefox\defaults\pref\- pref("xpinstall.whitelist.add", "addons.mozilla.org");c:\program files\mozilla firefox\defaults\pref\- pref("xpinstall.36", "getpersonas.com");c:\program files\mozilla firefox\defaults\pref\- pref("lightweight Themes.update.enabled", true);c:\program files\mozilla firefox\defaults\pref\- pref("Tabs.previews", false);c:\program files\mozilla firefox\defaults\pref\- pref("plugins.hide_infobar_for_outdated_plugin", false);c:\program files\mozilla firefox\defaults\pref\- pref("plugins.update.notify User", false);c:\program files\mozilla firefox\defaults\pref\- pref("toolbar.customization.usesheet", false);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.enable", false);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.max", 20);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.cachetime", 20);============= SERVICES / DRIVERS ===============R1 ANVIOCTL; ANVIOCTL;c:\windows\system32\drivers\[2006-7-21 233816]R1 apto6ko; Driver Computer Host ATK0110 Processor Generic Acoustic Microsoft Kernel;c:\windows\system32\drivers\[2000-10-24 32768]R1 ctxusbm; Citrix USB Monitor Driver;c:\windows\system32\drivers\[2009-9-8 65584]R1 VET-FILT; VET File System Filter;c:\windows\system32\drivers\[2009-11-9 26352]R1 VET-REC; VET File System Recognizer;c:\windows\system32\drivers\[2009-11-9 21104]R1 VETEFILE; VET File Scan Engine;c:\windows\system32\drivers\[2009-11-9 739696]R1 VETFDDNT; VET Floppy Boot Sector Monitor;c:\windows\system32\drivers\[2009-11-9 21488]R1 VETMONNT; VET File Monitor;c:\windows\system32\drivers\[2009-11-9 161008]R1 vsdatant;vsdatant;c:\windows\system32\[2006-7-21 280104]R2 CAISafe; CAISafe;c:\program files\ca\etrust internet security suite\etrust ez antivirus\[2007-5-2 144696]R2 cpqoko6; Transport/Protocol Event Shadow for Channel User Thumbnail;c:\windows\system32\-k tapisrvs [2001-8-23 12800]R2 VETMSGNT; VET Message Service;c:\program files\ca\etrust internet security suite\etrust ez antivirus\[2009-11-26 255216]R2 vsmon; True Vector Internet Monitor;c:\windows\system32\zonelabs\-service -- c:\windows\system32\zonelabs\-service [?

    File not found IE - HKU\S-1-5-21-1085031214-492894223-725345543-1003\Software\Microsoft\Windows\Current Version\Internet Settings: "Proxy Enable" = 0 FF - .extensions.enabled Items: [email protected]:1.0FF - .extensions.enabled Items: :2.1.2.20100119091315 FF - HKLM\software\mozilla\Firefox\Extensions\: C:\Program Files\Real\Real Player\browserrecord [2009/05/29 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\Components: C:\Program Files\Mozilla Firefox\components [2010/03/19 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/03/19 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.0.0\Extensions\Components: C:\Program Files\Netscape\Netscape Browser\Components [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.0.0\Extensions\Plugins: C:\Program Files\Netscape\Netscape Browser\Plugins [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.3.0\Extensions\Components: C:\Program Files\Netscape\Netscape Browser\Components [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.3.0\Extensions\Plugins: C:\Program Files\Netscape\Netscape Browser\Plugins [2010/02/02 | 000,000,000 | ---D | M] [2008/12/28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Extensions[2010/03/26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Firefox\Profiles\vgg4xthp.default\extensions[2010/02/22 | 000,000,000 | ---D | M] (Yahoo!

    Toolbar) -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Firefox\Profiles\vgg4xthp.default\extensions\[2010/03/26 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions[2009/09/12 | 000,124,240 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\CCMSDK.dll[2009/09/12 | 000,070,488 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\Cgp Core.dll[2009/09/12 | 000,091,480 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\confmgr.dll[2009/09/12 | 000,022,360 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\ctxlogging.dll[2009/12/11 | 000,442,368 | ---- | M] (Invenda Corporation) -- C:\Program Files\Mozilla Firefox\plugins\NPcol308.dll[2009/11/19 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\np Coupon Printer.dll[2009/09/12 | 000,406,864 | ---- | M] () -- C:\Program Files\Mozilla Firefox\plugins\npica N.dll[2009/11/19 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\np Moz Coupon Printer.dll[2009/08/31 | 000,147,456 | ---- | M] (Oberon Media) -- C:\Program Files\Mozilla Firefox\plugins\np My Games.dll[2008/09/15 | 000,376,832 | ---- | M] ( ) -- C:\Program Files\Mozilla Firefox\plugins\npsnapfish.dll[2009/09/12 | 000,023,896 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\Tcp O1 HOSTS File: ([2007/04/18 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (no name) - - No CLSID value found.

    0000000001 - C:\windows\System32\Vet (Computer Associates International, Inc.)O10 - Protocol_Catalog9\Catalog_Entries[[

    DEFAULT\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: CDRAuto Run = 0O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: CDRAuto Run = 0O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-21-1085031214-492894223-725345543-1003\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O9 - Extra Button: @shdoclc.dll,-866 - - C:\WINDOWS\Web\()O9 - Extra ' Tools' menuitem : @shdoclc.dll,-864 - - C:\WINDOWS\Web\()O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\windows\System32\Vet (Computer Associates International, Inc.)O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\windows\System32\Vet (Computer Associates International, Inc.)O12 - Plugin for: . File not found O12 - Plugin for: - C:\Program Files\Internet Explorer\PLUGINS\NPDoc (Intertrust Technologies, Inc.)O15 - HKU\S-1-5-21-1085031214-492894223-725345543-1003\..

    1260658687701DPF: - hxxp:// - hxxp://utilities.pcpitstop.com/Exterminate2/pcpitstop Anti DPF: - DPF: - hxxp:// - hxxp:// - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - hxxp://a19.g.akamai.net/7/19/7125/4058/ftp.coupons.com/r3302/Nestle/DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_02-windows-i586DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - file://c:\program files\mystery case files - ravenhearst\images\DPF: - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/DPF: - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/DPF: - hxxps://remote.lyondell.com/dana-cached/setup/Juniper Setup SP1DPF: - hxxp://driveragent.com/files/DPF: - hxxp://utilities.pcpitstop.com/Optimize3/pcpitstop2DPF: - hxxp:// Install Handler: cdo - - c:\program files\common files\microsoft shared\web folders\PKMCDO.

    DLLNotify: ccdfafeebacadd - c:\windows\system32\ccdfafeebacadd.dll================= FIREFOX ===================FF - Profile Path - c:\docume~1\stephen\applic~1\mozilla\firefox\profiles\vgg4xthp.default\FF - plugin: c:\program files\mozilla firefox\plugins\NPcol308FF - plugin: c:\program files\mozilla firefox\plugins\np Coupon FF - plugin: c:\program files\mozilla firefox\plugins\npica FF - plugin: c:\program files\mozilla firefox\plugins\np Moz Coupon FF - plugin: c:\program files\mozilla firefox\plugins\np My FF - plugin: c:\program files\real\realarcade\plugins\mozilla\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\---- FIREFOX POLICIES ----FF - user.js: yahoo.homepage.dontask - truec:\program files\mozilla firefox\greprefs\- pref("ui.use_native_colors", true);c:\program files\mozilla firefox\greprefs\- pref("ui.use_native_popup_windows", false);c:\program files\mozilla firefox\greprefs\- pref("browser.enable_click_image_resizing", true);c:\program files\mozilla firefox\greprefs\- pref("accessibility.browsewithcaret_shortcut.enabled", true);c:\program files\mozilla firefox\greprefs\- pref("javascript.high_water_mark", 32);c:\program files\mozilla firefox\greprefs\- pref("javascript.gc_frequency", 1600);c:\program files\mozilla firefox\greprefs\- pref("force-generic-ntlm", false);c:\program files\mozilla firefox\greprefs\- pref("enabled", false);c:\program files\mozilla firefox\greprefs\- pref("ui.trackpoint_hack.enabled", -1);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.debug", false);c:\program files\mozilla firefox\greprefs\- pref("browser.Weight", 2);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.bucket Size", 1);c:\program files\mozilla firefox\greprefs\- pref("browser.Time Groupings", 25);c:\program files\mozilla firefox\greprefs\- pref("browser.Grouping Size", 604800);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.boundary Weight", 25);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.prefix Weight", 5);c:\program files\mozilla firefox\greprefs\- pref("html5.enable", false);c:\program files\mozilla firefox\greprefs\- pref("security.ssl3.rsa_seed_sha", true);c:\program files\mozilla firefox\defaults\pref\- pref("app.update.download.background Interval", 600);c:\program files\mozilla firefox\defaults\pref\- pref("app.manual", " files\mozilla firefox\defaults\pref\- pref("browser.search.param.yahoo-fr-ja", "mozff");c:\program files\mozilla firefox\defaults\pref\- pref("extensions..name", "chrome://browser/locale/browser.properties");c:\program files\mozilla firefox\defaults\pref\- pref("extensions..description", "chrome://browser/locale/browser.properties");c:\program files\mozilla firefox\defaults\pref\- pref("xpinstall.whitelist.add", "addons.mozilla.org");c:\program files\mozilla firefox\defaults\pref\- pref("xpinstall.36", "getpersonas.com");c:\program files\mozilla firefox\defaults\pref\- pref("lightweight Themes.update.enabled", true);c:\program files\mozilla firefox\defaults\pref\- pref("Tabs.previews", false);c:\program files\mozilla firefox\defaults\pref\- pref("plugins.hide_infobar_for_outdated_plugin", false);c:\program files\mozilla firefox\defaults\pref\- pref("plugins.update.notify User", false);c:\program files\mozilla firefox\defaults\pref\- pref("toolbar.customization.usesheet", false);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.enable", false);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.max", 20);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.cachetime", 20);============= SERVICES / DRIVERS ===============R1 ANVIOCTL; ANVIOCTL;c:\windows\system32\drivers\[2006-7-21 233816]R1 apto6ko; Driver Computer Host ATK0110 Processor Generic Acoustic Microsoft Kernel;c:\windows\system32\drivers\[2000-10-24 32768]R1 ctxusbm; Citrix USB Monitor Driver;c:\windows\system32\drivers\[2009-9-8 65584]R1 VET-FILT; VET File System Filter;c:\windows\system32\drivers\[2009-11-9 26352]R1 VET-REC; VET File System Recognizer;c:\windows\system32\drivers\[2009-11-9 21104]R1 VETEFILE; VET File Scan Engine;c:\windows\system32\drivers\[2009-11-9 739696]R1 VETFDDNT; VET Floppy Boot Sector Monitor;c:\windows\system32\drivers\[2009-11-9 21488]R1 VETMONNT; VET File Monitor;c:\windows\system32\drivers\[2009-11-9 161008]R1 vsdatant;vsdatant;c:\windows\system32\[2006-7-21 280104]R2 CAISafe; CAISafe;c:\program files\ca\etrust internet security suite\etrust ez antivirus\[2007-5-2 144696]R2 cpqoko6; Transport/Protocol Event Shadow for Channel User Thumbnail;c:\windows\system32\-k tapisrvs [2001-8-23 12800]R2 VETMSGNT; VET Message Service;c:\program files\ca\etrust internet security suite\etrust ez antivirus\[2009-11-26 255216]R2 vsmon; True Vector Internet Monitor;c:\windows\system32\zonelabs\-service -- c:\windows\system32\zonelabs\-service [?

    File not found IE - HKU\S-1-5-21-1085031214-492894223-725345543-1003\Software\Microsoft\Windows\Current Version\Internet Settings: "Proxy Enable" = 0 FF - .extensions.enabled Items: [email protected]:1.0FF - .extensions.enabled Items: :2.1.2.20100119091315 FF - HKLM\software\mozilla\Firefox\Extensions\\: C:\Program Files\Real\Real Player\browserrecord [2009/05/29 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/03/19 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/03/19 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.0.0\Extensions\\Components: C:\Program Files\Netscape\Netscape Browser\Components [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.0.0\Extensions\\Plugins: C:\Program Files\Netscape\Netscape Browser\Plugins [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.3.0\Extensions\\Components: C:\Program Files\Netscape\Netscape Browser\Components [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.3.0\Extensions\\Plugins: C:\Program Files\Netscape\Netscape Browser\Plugins [2010/02/02 | 000,000,000 | ---D | M] [2008/12/28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Extensions[2010/03/26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Firefox\Profiles\vgg4xthp.default\extensions[2010/02/22 | 000,000,000 | ---D | M] (Yahoo!

    Toolbar) -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Firefox\Profiles\vgg4xthp.default\extensions\[2010/03/26 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions[2009/09/12 | 000,124,240 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\CCMSDK.dll[2009/09/12 | 000,070,488 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\Cgp Core.dll[2009/09/12 | 000,091,480 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\confmgr.dll[2009/09/12 | 000,022,360 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\ctxlogging.dll[2009/12/11 | 000,442,368 | ---- | M] (Invenda Corporation) -- C:\Program Files\Mozilla Firefox\plugins\NPcol308.dll[2009/11/19 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\np Coupon Printer.dll[2009/09/12 | 000,406,864 | ---- | M] () -- C:\Program Files\Mozilla Firefox\plugins\npica N.dll[2009/11/19 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\np Moz Coupon Printer.dll[2009/08/31 | 000,147,456 | ---- | M] (Oberon Media) -- C:\Program Files\Mozilla Firefox\plugins\np My Games.dll[2008/09/15 | 000,376,832 | ---- | M] ( ) -- C:\Program Files\Mozilla Firefox\plugins\npsnapfish.dll[2009/09/12 | 000,023,896 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\Tcp O1 HOSTS File: ([2007/04/18 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (no name) - - No CLSID value found.

    ||

    DEFAULT\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: CDRAuto Run = 0O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: CDRAuto Run = 0O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-21-1085031214-492894223-725345543-1003\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O9 - Extra Button: @shdoclc.dll,-866 - - C:\WINDOWS\Web\()O9 - Extra ' Tools' menuitem : @shdoclc.dll,-864 - - C:\WINDOWS\Web\()O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\windows\System32\Vet (Computer Associates International, Inc.)O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\windows\System32\Vet (Computer Associates International, Inc.)O12 - Plugin for: . File not found O12 - Plugin for: - C:\Program Files\Internet Explorer\PLUGINS\NPDoc (Intertrust Technologies, Inc.)O15 - HKU\S-1-5-21-1085031214-492894223-725345543-1003\..1260658687701DPF: - hxxp:// - hxxp://utilities.pcpitstop.com/Exterminate2/pcpitstop Anti DPF: - DPF: - hxxp:// - hxxp:// - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - hxxp://a19.g.akamai.net/7/19/7125/4058/ftp.coupons.com/r3302/Nestle/DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_02-windows-i586DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - file://c:\program files\mystery case files - ravenhearst\images\DPF: - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/DPF: - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/DPF: - hxxps://remote.lyondell.com/dana-cached/setup/Juniper Setup SP1DPF: - hxxp://driveragent.com/files/DPF: - hxxp://utilities.pcpitstop.com/Optimize3/pcpitstop2DPF: - hxxp:// Install Handler: cdo - - c:\program files\common files\microsoft shared\web folders\PKMCDO.DLLNotify: ccdfafeebacadd - c:\windows\system32\ccdfafeebacadd.dll================= FIREFOX ===================FF - Profile Path - c:\docume~1\stephen\applic~1\mozilla\firefox\profiles\vgg4xthp.default\FF - plugin: c:\program files\mozilla firefox\plugins\NPcol308FF - plugin: c:\program files\mozilla firefox\plugins\np Coupon FF - plugin: c:\program files\mozilla firefox\plugins\npica FF - plugin: c:\program files\mozilla firefox\plugins\np Moz Coupon FF - plugin: c:\program files\mozilla firefox\plugins\np My FF - plugin: c:\program files\real\realarcade\plugins\mozilla\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\---- FIREFOX POLICIES ----FF - user.js: yahoo.homepage.dontask - truec:\program files\mozilla firefox\greprefs\- pref("ui.use_native_colors", true);c:\program files\mozilla firefox\greprefs\- pref("ui.use_native_popup_windows", false);c:\program files\mozilla firefox\greprefs\- pref("browser.enable_click_image_resizing", true);c:\program files\mozilla firefox\greprefs\- pref("accessibility.browsewithcaret_shortcut.enabled", true);c:\program files\mozilla firefox\greprefs\- pref("javascript.high_water_mark", 32);c:\program files\mozilla firefox\greprefs\- pref("javascript.gc_frequency", 1600);c:\program files\mozilla firefox\greprefs\- pref("force-generic-ntlm", false);c:\program files\mozilla firefox\greprefs\- pref("enabled", false);c:\program files\mozilla firefox\greprefs\- pref("ui.trackpoint_hack.enabled", -1);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.debug", false);c:\program files\mozilla firefox\greprefs\- pref("browser.Weight", 2);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.bucket Size", 1);c:\program files\mozilla firefox\greprefs\- pref("browser.Time Groupings", 25);c:\program files\mozilla firefox\greprefs\- pref("browser.Grouping Size", 604800);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.boundary Weight", 25);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.prefix Weight", 5);c:\program files\mozilla firefox\greprefs\- pref("html5.enable", false);c:\program files\mozilla firefox\greprefs\- pref("security.ssl3.rsa_seed_sha", true);c:\program files\mozilla firefox\defaults\pref\- pref("app.update.download.background Interval", 600);c:\program files\mozilla firefox\defaults\pref\- pref("app.manual", " files\mozilla firefox\defaults\pref\- pref("browser.search.param.yahoo-fr-ja", "mozff");c:\program files\mozilla firefox\defaults\pref\- pref("extensions..name", "chrome://browser/locale/browser.properties");c:\program files\mozilla firefox\defaults\pref\- pref("extensions..description", "chrome://browser/locale/browser.properties");c:\program files\mozilla firefox\defaults\pref\- pref("xpinstall.whitelist.add", "addons.mozilla.org");c:\program files\mozilla firefox\defaults\pref\- pref("xpinstall.36", "getpersonas.com");c:\program files\mozilla firefox\defaults\pref\- pref("lightweight Themes.update.enabled", true);c:\program files\mozilla firefox\defaults\pref\- pref("Tabs.previews", false);c:\program files\mozilla firefox\defaults\pref\- pref("plugins.hide_infobar_for_outdated_plugin", false);c:\program files\mozilla firefox\defaults\pref\- pref("plugins.update.notify User", false);c:\program files\mozilla firefox\defaults\pref\- pref("toolbar.customization.usesheet", false);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.enable", false);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.max", 20);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.cachetime", 20);============= SERVICES / DRIVERS ===============R1 ANVIOCTL; ANVIOCTL;c:\windows\system32\drivers\[2006-7-21 233816]R1 apto6ko; Driver Computer Host ATK0110 Processor Generic Acoustic Microsoft Kernel;c:\windows\system32\drivers\[2000-10-24 32768]R1 ctxusbm; Citrix USB Monitor Driver;c:\windows\system32\drivers\[2009-9-8 65584]R1 VET-FILT; VET File System Filter;c:\windows\system32\drivers\[2009-11-9 26352]R1 VET-REC; VET File System Recognizer;c:\windows\system32\drivers\[2009-11-9 21104]R1 VETEFILE; VET File Scan Engine;c:\windows\system32\drivers\[2009-11-9 739696]R1 VETFDDNT; VET Floppy Boot Sector Monitor;c:\windows\system32\drivers\[2009-11-9 21488]R1 VETMONNT; VET File Monitor;c:\windows\system32\drivers\[2009-11-9 161008]R1 vsdatant;vsdatant;c:\windows\system32\[2006-7-21 280104]R2 CAISafe; CAISafe;c:\program files\ca\etrust internet security suite\etrust ez antivirus\[2007-5-2 144696]R2 cpqoko6; Transport/Protocol Event Shadow for Channel User Thumbnail;c:\windows\system32\-k tapisrvs [2001-8-23 12800]R2 VETMSGNT; VET Message Service;c:\program files\ca\etrust internet security suite\etrust ez antivirus\[2009-11-26 255216]R2 vsmon; True Vector Internet Monitor;c:\windows\system32\zonelabs\-service -- c:\windows\system32\zonelabs\-service [?File not found IE - HKU\S-1-5-21-1085031214-492894223-725345543-1003\Software\Microsoft\Windows\Current Version\Internet Settings: "Proxy Enable" = 0 FF - .extensions.enabled Items: [email protected]:1.0FF - .extensions.enabled Items: :2.1.2.20100119091315 FF - HKLM\software\mozilla\Firefox\Extensions\\: C:\Program Files\Real\Real Player\browserrecord [2009/05/29 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/03/19 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/03/19 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.0.0\Extensions\\Components: C:\Program Files\Netscape\Netscape Browser\Components [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.0.0\Extensions\\Plugins: C:\Program Files\Netscape\Netscape Browser\Plugins [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.3.0\Extensions\\Components: C:\Program Files\Netscape\Netscape Browser\Components [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.3.0\Extensions\\Plugins: C:\Program Files\Netscape\Netscape Browser\Plugins [2010/02/02 | 000,000,000 | ---D | M] [2008/12/28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Extensions[2010/03/26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Firefox\Profiles\vgg4xthp.default\extensions[2010/02/22 | 000,000,000 | ---D | M] (Yahoo!Toolbar) -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Firefox\Profiles\vgg4xthp.default\extensions\[2010/03/26 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions[2009/09/12 | 000,124,240 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\CCMSDK.dll[2009/09/12 | 000,070,488 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\Cgp Core.dll[2009/09/12 | 000,091,480 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\confmgr.dll[2009/09/12 | 000,022,360 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\ctxlogging.dll[2009/12/11 | 000,442,368 | ---- | M] (Invenda Corporation) -- C:\Program Files\Mozilla Firefox\plugins\NPcol308.dll[2009/11/19 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\np Coupon Printer.dll[2009/09/12 | 000,406,864 | ---- | M] () -- C:\Program Files\Mozilla Firefox\plugins\npica N.dll[2009/11/19 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\np Moz Coupon Printer.dll[2009/08/31 | 000,147,456 | ---- | M] (Oberon Media) -- C:\Program Files\Mozilla Firefox\plugins\np My Games.dll[2008/09/15 | 000,376,832 | ---- | M] ( ) -- C:\Program Files\Mozilla Firefox\plugins\npsnapfish.dll[2009/09/12 | 000,023,896 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\Tcp O1 HOSTS File: ([2007/04/18 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (no name) - - No CLSID value found.

    ]]0000000019 - C:\windows\System32\Vet (Computer Associates International, Inc.)O12 - Plugin for: . File not found O12 - Plugin for: - C:\Program Files\Internet Explorer\PLUGINS\NPDoc (Intertrust Technologies, Inc.)O15 - HKU\S-1-5-21-1085031214-492894223-725345543-1003\..1260658687701DPF: - hxxp:// - hxxp://utilities.pcpitstop.com/Exterminate2/pcpitstop Anti DPF: - DPF: - hxxp:// - hxxp:// - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - hxxp://a19.g.akamai.net/7/19/7125/4058/ftp.coupons.com/r3302/Nestle/DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_02-windows-i586DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - file://c:\program files\mystery case files - ravenhearst\images\DPF: - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/DPF: - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/DPF: - hxxps://remote.lyondell.com/dana-cached/setup/Juniper Setup SP1DPF: - hxxp://driveragent.com/files/DPF: - hxxp://utilities.pcpitstop.com/Optimize3/pcpitstop2DPF: - hxxp:// Install Handler: cdo - - c:\program files\common files\microsoft shared\web folders\PKMCDO.DLLNotify: ccdfafeebacadd - c:\windows\system32\ccdfafeebacadd.dll================= FIREFOX ===================FF - Profile Path - c:\docume~1\stephen\applic~1\mozilla\firefox\profiles\vgg4xthp.default\FF - plugin: c:\program files\mozilla firefox\plugins\NPcol308FF - plugin: c:\program files\mozilla firefox\plugins\np Coupon FF - plugin: c:\program files\mozilla firefox\plugins\npica FF - plugin: c:\program files\mozilla firefox\plugins\np Moz Coupon FF - plugin: c:\program files\mozilla firefox\plugins\np My FF - plugin: c:\program files\real\realarcade\plugins\mozilla\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\---- FIREFOX POLICIES ----FF - user.js: yahoo.homepage.dontask - truec:\program files\mozilla firefox\greprefs\- pref("ui.use_native_colors", true);c:\program files\mozilla firefox\greprefs\- pref("ui.use_native_popup_windows", false);c:\program files\mozilla firefox\greprefs\- pref("browser.enable_click_image_resizing", true);c:\program files\mozilla firefox\greprefs\- pref("accessibility.browsewithcaret_shortcut.enabled", true);c:\program files\mozilla firefox\greprefs\- pref("javascript.high_water_mark", 32);c:\program files\mozilla firefox\greprefs\- pref("javascript.gc_frequency", 1600);c:\program files\mozilla firefox\greprefs\- pref("force-generic-ntlm", false);c:\program files\mozilla firefox\greprefs\- pref("enabled", false);c:\program files\mozilla firefox\greprefs\- pref("ui.trackpoint_hack.enabled", -1);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.debug", false);c:\program files\mozilla firefox\greprefs\- pref("browser.Weight", 2);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.bucket Size", 1);c:\program files\mozilla firefox\greprefs\- pref("browser.Time Groupings", 25);c:\program files\mozilla firefox\greprefs\- pref("browser.Grouping Size", 604800);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.boundary Weight", 25);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.prefix Weight", 5);c:\program files\mozilla firefox\greprefs\- pref("html5.enable", false);c:\program files\mozilla firefox\greprefs\- pref("security.ssl3.rsa_seed_sha", true);c:\program files\mozilla firefox\defaults\pref\- pref("app.update.download.background Interval", 600);c:\program files\mozilla firefox\defaults\pref\- pref("app.manual", " files\mozilla firefox\defaults\pref\- pref("browser.search.param.yahoo-fr-ja", "mozff");c:\program files\mozilla firefox\defaults\pref\- pref("extensions..name", "chrome://browser/locale/browser.properties");c:\program files\mozilla firefox\defaults\pref\- pref("extensions..description", "chrome://browser/locale/browser.properties");c:\program files\mozilla firefox\defaults\pref\- pref("xpinstall.whitelist.add", "addons.mozilla.org");c:\program files\mozilla firefox\defaults\pref\- pref("xpinstall.36", "getpersonas.com");c:\program files\mozilla firefox\defaults\pref\- pref("lightweight Themes.update.enabled", true);c:\program files\mozilla firefox\defaults\pref\- pref("Tabs.previews", false);c:\program files\mozilla firefox\defaults\pref\- pref("plugins.hide_infobar_for_outdated_plugin", false);c:\program files\mozilla firefox\defaults\pref\- pref("plugins.update.notify User", false);c:\program files\mozilla firefox\defaults\pref\- pref("toolbar.customization.usesheet", false);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.enable", false);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.max", 20);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.cachetime", 20);============= SERVICES / DRIVERS ===============R1 ANVIOCTL; ANVIOCTL;c:\windows\system32\drivers\[2006-7-21 233816]R1 apto6ko; Driver Computer Host ATK0110 Processor Generic Acoustic Microsoft Kernel;c:\windows\system32\drivers\[2000-10-24 32768]R1 ctxusbm; Citrix USB Monitor Driver;c:\windows\system32\drivers\[2009-9-8 65584]R1 VET-FILT; VET File System Filter;c:\windows\system32\drivers\[2009-11-9 26352]R1 VET-REC; VET File System Recognizer;c:\windows\system32\drivers\[2009-11-9 21104]R1 VETEFILE; VET File Scan Engine;c:\windows\system32\drivers\[2009-11-9 739696]R1 VETFDDNT; VET Floppy Boot Sector Monitor;c:\windows\system32\drivers\[2009-11-9 21488]R1 VETMONNT; VET File Monitor;c:\windows\system32\drivers\[2009-11-9 161008]R1 vsdatant;vsdatant;c:\windows\system32\[2006-7-21 280104]R2 CAISafe; CAISafe;c:\program files\ca\etrust internet security suite\etrust ez antivirus\[2007-5-2 144696]R2 cpqoko6; Transport/Protocol Event Shadow for Channel User Thumbnail;c:\windows\system32\-k tapisrvs [2001-8-23 12800]R2 VETMSGNT; VET Message Service;c:\program files\ca\etrust internet security suite\etrust ez antivirus\[2009-11-26 255216]R2 vsmon; True Vector Internet Monitor;c:\windows\system32\zonelabs\-service -- c:\windows\system32\zonelabs\-service [?File not found IE - HKU\S-1-5-21-1085031214-492894223-725345543-1003\Software\Microsoft\Windows\Current Version\Internet Settings: "Proxy Enable" = 0 FF - .extensions.enabled Items: [email protected]:1.0FF - .extensions.enabled Items: :2.1.2.20100119091315 FF - HKLM\software\mozilla\Firefox\Extensions\: C:\Program Files\Real\Real Player\browserrecord [2009/05/29 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\Components: C:\Program Files\Mozilla Firefox\components [2010/03/19 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/03/19 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.0.0\Extensions\Components: C:\Program Files\Netscape\Netscape Browser\Components [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.0.0\Extensions\Plugins: C:\Program Files\Netscape\Netscape Browser\Plugins [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.3.0\Extensions\Components: C:\Program Files\Netscape\Netscape Browser\Components [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.3.0\Extensions\Plugins: C:\Program Files\Netscape\Netscape Browser\Plugins [2010/02/02 | 000,000,000 | ---D | M] [2008/12/28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Extensions[2010/03/26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Firefox\Profiles\vgg4xthp.default\extensions[2010/02/22 | 000,000,000 | ---D | M] (Yahoo!Toolbar) -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Firefox\Profiles\vgg4xthp.default\extensions\[2010/03/26 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions[2009/09/12 | 000,124,240 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\CCMSDK.dll[2009/09/12 | 000,070,488 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\Cgp Core.dll[2009/09/12 | 000,091,480 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\confmgr.dll[2009/09/12 | 000,022,360 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\ctxlogging.dll[2009/12/11 | 000,442,368 | ---- | M] (Invenda Corporation) -- C:\Program Files\Mozilla Firefox\plugins\NPcol308.dll[2009/11/19 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\np Coupon Printer.dll[2009/09/12 | 000,406,864 | ---- | M] () -- C:\Program Files\Mozilla Firefox\plugins\npica N.dll[2009/11/19 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\np Moz Coupon Printer.dll[2009/08/31 | 000,147,456 | ---- | M] (Oberon Media) -- C:\Program Files\Mozilla Firefox\plugins\np My Games.dll[2008/09/15 | 000,376,832 | ---- | M] ( ) -- C:\Program Files\Mozilla Firefox\plugins\npsnapfish.dll[2009/09/12 | 000,023,896 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\Tcp O1 HOSTS File: ([2007/04/18 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (no name) - - No CLSID value found.

    0000000001 - C:\windows\System32\Vet (Computer Associates International, Inc.)O10 - Protocol_Catalog9\Catalog_Entries[[

    DEFAULT\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: CDRAuto Run = 0O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: CDRAuto Run = 0O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-21-1085031214-492894223-725345543-1003\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O9 - Extra Button: @shdoclc.dll,-866 - - C:\WINDOWS\Web\()O9 - Extra ' Tools' menuitem : @shdoclc.dll,-864 - - C:\WINDOWS\Web\()O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\windows\System32\Vet (Computer Associates International, Inc.)O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\windows\System32\Vet (Computer Associates International, Inc.)O12 - Plugin for: . File not found O12 - Plugin for: - C:\Program Files\Internet Explorer\PLUGINS\NPDoc (Intertrust Technologies, Inc.)O15 - HKU\S-1-5-21-1085031214-492894223-725345543-1003\..

    1260658687701DPF: - hxxp:// - hxxp://utilities.pcpitstop.com/Exterminate2/pcpitstop Anti DPF: - DPF: - hxxp:// - hxxp:// - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - hxxp://a19.g.akamai.net/7/19/7125/4058/ftp.coupons.com/r3302/Nestle/DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_02-windows-i586DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - file://c:\program files\mystery case files - ravenhearst\images\DPF: - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/DPF: - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/DPF: - hxxps://remote.lyondell.com/dana-cached/setup/Juniper Setup SP1DPF: - hxxp://driveragent.com/files/DPF: - hxxp://utilities.pcpitstop.com/Optimize3/pcpitstop2DPF: - hxxp:// Install Handler: cdo - - c:\program files\common files\microsoft shared\web folders\PKMCDO.

    DLLNotify: ccdfafeebacadd - c:\windows\system32\ccdfafeebacadd.dll================= FIREFOX ===================FF - Profile Path - c:\docume~1\stephen\applic~1\mozilla\firefox\profiles\vgg4xthp.default\FF - plugin: c:\program files\mozilla firefox\plugins\NPcol308FF - plugin: c:\program files\mozilla firefox\plugins\np Coupon FF - plugin: c:\program files\mozilla firefox\plugins\npica FF - plugin: c:\program files\mozilla firefox\plugins\np Moz Coupon FF - plugin: c:\program files\mozilla firefox\plugins\np My FF - plugin: c:\program files\real\realarcade\plugins\mozilla\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\---- FIREFOX POLICIES ----FF - user.js: yahoo.homepage.dontask - truec:\program files\mozilla firefox\greprefs\- pref("ui.use_native_colors", true);c:\program files\mozilla firefox\greprefs\- pref("ui.use_native_popup_windows", false);c:\program files\mozilla firefox\greprefs\- pref("browser.enable_click_image_resizing", true);c:\program files\mozilla firefox\greprefs\- pref("accessibility.browsewithcaret_shortcut.enabled", true);c:\program files\mozilla firefox\greprefs\- pref("javascript.high_water_mark", 32);c:\program files\mozilla firefox\greprefs\- pref("javascript.gc_frequency", 1600);c:\program files\mozilla firefox\greprefs\- pref("force-generic-ntlm", false);c:\program files\mozilla firefox\greprefs\- pref("enabled", false);c:\program files\mozilla firefox\greprefs\- pref("ui.trackpoint_hack.enabled", -1);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.debug", false);c:\program files\mozilla firefox\greprefs\- pref("browser.Weight", 2);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.bucket Size", 1);c:\program files\mozilla firefox\greprefs\- pref("browser.Time Groupings", 25);c:\program files\mozilla firefox\greprefs\- pref("browser.Grouping Size", 604800);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.boundary Weight", 25);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.prefix Weight", 5);c:\program files\mozilla firefox\greprefs\- pref("html5.enable", false);c:\program files\mozilla firefox\greprefs\- pref("security.ssl3.rsa_seed_sha", true);c:\program files\mozilla firefox\defaults\pref\- pref("app.update.download.background Interval", 600);c:\program files\mozilla firefox\defaults\pref\- pref("app.manual", " files\mozilla firefox\defaults\pref\- pref("browser.search.param.yahoo-fr-ja", "mozff");c:\program files\mozilla firefox\defaults\pref\- pref("extensions..name", "chrome://browser/locale/browser.properties");c:\program files\mozilla firefox\defaults\pref\- pref("extensions..description", "chrome://browser/locale/browser.properties");c:\program files\mozilla firefox\defaults\pref\- pref("xpinstall.whitelist.add", "addons.mozilla.org");c:\program files\mozilla firefox\defaults\pref\- pref("xpinstall.36", "getpersonas.com");c:\program files\mozilla firefox\defaults\pref\- pref("lightweight Themes.update.enabled", true);c:\program files\mozilla firefox\defaults\pref\- pref("Tabs.previews", false);c:\program files\mozilla firefox\defaults\pref\- pref("plugins.hide_infobar_for_outdated_plugin", false);c:\program files\mozilla firefox\defaults\pref\- pref("plugins.update.notify User", false);c:\program files\mozilla firefox\defaults\pref\- pref("toolbar.customization.usesheet", false);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.enable", false);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.max", 20);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.cachetime", 20);============= SERVICES / DRIVERS ===============R1 ANVIOCTL; ANVIOCTL;c:\windows\system32\drivers\[2006-7-21 233816]R1 apto6ko; Driver Computer Host ATK0110 Processor Generic Acoustic Microsoft Kernel;c:\windows\system32\drivers\[2000-10-24 32768]R1 ctxusbm; Citrix USB Monitor Driver;c:\windows\system32\drivers\[2009-9-8 65584]R1 VET-FILT; VET File System Filter;c:\windows\system32\drivers\[2009-11-9 26352]R1 VET-REC; VET File System Recognizer;c:\windows\system32\drivers\[2009-11-9 21104]R1 VETEFILE; VET File Scan Engine;c:\windows\system32\drivers\[2009-11-9 739696]R1 VETFDDNT; VET Floppy Boot Sector Monitor;c:\windows\system32\drivers\[2009-11-9 21488]R1 VETMONNT; VET File Monitor;c:\windows\system32\drivers\[2009-11-9 161008]R1 vsdatant;vsdatant;c:\windows\system32\[2006-7-21 280104]R2 CAISafe; CAISafe;c:\program files\ca\etrust internet security suite\etrust ez antivirus\[2007-5-2 144696]R2 cpqoko6; Transport/Protocol Event Shadow for Channel User Thumbnail;c:\windows\system32\-k tapisrvs [2001-8-23 12800]R2 VETMSGNT; VET Message Service;c:\program files\ca\etrust internet security suite\etrust ez antivirus\[2009-11-26 255216]R2 vsmon; True Vector Internet Monitor;c:\windows\system32\zonelabs\-service -- c:\windows\system32\zonelabs\-service [?

    File not found IE - HKU\S-1-5-21-1085031214-492894223-725345543-1003\Software\Microsoft\Windows\Current Version\Internet Settings: "Proxy Enable" = 0 FF - .extensions.enabled Items: [email protected]:1.0FF - .extensions.enabled Items: :2.1.2.20100119091315 FF - HKLM\software\mozilla\Firefox\Extensions\\: C:\Program Files\Real\Real Player\browserrecord [2009/05/29 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/03/19 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/03/19 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.0.0\Extensions\\Components: C:\Program Files\Netscape\Netscape Browser\Components [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.0.0\Extensions\\Plugins: C:\Program Files\Netscape\Netscape Browser\Plugins [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.3.0\Extensions\\Components: C:\Program Files\Netscape\Netscape Browser\Components [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.3.0\Extensions\\Plugins: C:\Program Files\Netscape\Netscape Browser\Plugins [2010/02/02 | 000,000,000 | ---D | M] [2008/12/28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Extensions[2010/03/26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Firefox\Profiles\vgg4xthp.default\extensions[2010/02/22 | 000,000,000 | ---D | M] (Yahoo!

    Toolbar) -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Firefox\Profiles\vgg4xthp.default\extensions\[2010/03/26 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions[2009/09/12 | 000,124,240 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\CCMSDK.dll[2009/09/12 | 000,070,488 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\Cgp Core.dll[2009/09/12 | 000,091,480 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\confmgr.dll[2009/09/12 | 000,022,360 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\ctxlogging.dll[2009/12/11 | 000,442,368 | ---- | M] (Invenda Corporation) -- C:\Program Files\Mozilla Firefox\plugins\NPcol308.dll[2009/11/19 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\np Coupon Printer.dll[2009/09/12 | 000,406,864 | ---- | M] () -- C:\Program Files\Mozilla Firefox\plugins\npica N.dll[2009/11/19 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\np Moz Coupon Printer.dll[2009/08/31 | 000,147,456 | ---- | M] (Oberon Media) -- C:\Program Files\Mozilla Firefox\plugins\np My Games.dll[2008/09/15 | 000,376,832 | ---- | M] ( ) -- C:\Program Files\Mozilla Firefox\plugins\npsnapfish.dll[2009/09/12 | 000,023,896 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\Tcp O1 HOSTS File: ([2007/04/18 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (no name) - - No CLSID value found.

    ||

    DEFAULT\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: CDRAuto Run = 0O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: CDRAuto Run = 0O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O7 - HKU\S-1-5-21-1085031214-492894223-725345543-1003\SOFTWARE\Microsoft\Windows\Current Version\policies\Explorer: No Drive Type Auto Run = 145O9 - Extra Button: @shdoclc.dll,-866 - - C:\WINDOWS\Web\()O9 - Extra ' Tools' menuitem : @shdoclc.dll,-864 - - C:\WINDOWS\Web\()O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\windows\System32\Vet (Computer Associates International, Inc.)O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\windows\System32\Vet (Computer Associates International, Inc.)O12 - Plugin for: . File not found O12 - Plugin for: - C:\Program Files\Internet Explorer\PLUGINS\NPDoc (Intertrust Technologies, Inc.)O15 - HKU\S-1-5-21-1085031214-492894223-725345543-1003\..1260658687701DPF: - hxxp:// - hxxp://utilities.pcpitstop.com/Exterminate2/pcpitstop Anti DPF: - DPF: - hxxp:// - hxxp:// - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - hxxp://a19.g.akamai.net/7/19/7125/4058/ftp.coupons.com/r3302/Nestle/DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_02-windows-i586DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - file://c:\program files\mystery case files - ravenhearst\images\DPF: - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/DPF: - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/DPF: - hxxps://remote.lyondell.com/dana-cached/setup/Juniper Setup SP1DPF: - hxxp://driveragent.com/files/DPF: - hxxp://utilities.pcpitstop.com/Optimize3/pcpitstop2DPF: - hxxp:// Install Handler: cdo - - c:\program files\common files\microsoft shared\web folders\PKMCDO.DLLNotify: ccdfafeebacadd - c:\windows\system32\ccdfafeebacadd.dll================= FIREFOX ===================FF - Profile Path - c:\docume~1\stephen\applic~1\mozilla\firefox\profiles\vgg4xthp.default\FF - plugin: c:\program files\mozilla firefox\plugins\NPcol308FF - plugin: c:\program files\mozilla firefox\plugins\np Coupon FF - plugin: c:\program files\mozilla firefox\plugins\npica FF - plugin: c:\program files\mozilla firefox\plugins\np Moz Coupon FF - plugin: c:\program files\mozilla firefox\plugins\np My FF - plugin: c:\program files\real\realarcade\plugins\mozilla\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\---- FIREFOX POLICIES ----FF - user.js: yahoo.homepage.dontask - truec:\program files\mozilla firefox\greprefs\- pref("ui.use_native_colors", true);c:\program files\mozilla firefox\greprefs\- pref("ui.use_native_popup_windows", false);c:\program files\mozilla firefox\greprefs\- pref("browser.enable_click_image_resizing", true);c:\program files\mozilla firefox\greprefs\- pref("accessibility.browsewithcaret_shortcut.enabled", true);c:\program files\mozilla firefox\greprefs\- pref("javascript.high_water_mark", 32);c:\program files\mozilla firefox\greprefs\- pref("javascript.gc_frequency", 1600);c:\program files\mozilla firefox\greprefs\- pref("force-generic-ntlm", false);c:\program files\mozilla firefox\greprefs\- pref("enabled", false);c:\program files\mozilla firefox\greprefs\- pref("ui.trackpoint_hack.enabled", -1);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.debug", false);c:\program files\mozilla firefox\greprefs\- pref("browser.Weight", 2);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.bucket Size", 1);c:\program files\mozilla firefox\greprefs\- pref("browser.Time Groupings", 25);c:\program files\mozilla firefox\greprefs\- pref("browser.Grouping Size", 604800);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.boundary Weight", 25);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.prefix Weight", 5);c:\program files\mozilla firefox\greprefs\- pref("html5.enable", false);c:\program files\mozilla firefox\greprefs\- pref("security.ssl3.rsa_seed_sha", true);c:\program files\mozilla firefox\defaults\pref\- pref("app.update.download.background Interval", 600);c:\program files\mozilla firefox\defaults\pref\- pref("app.manual", " files\mozilla firefox\defaults\pref\- pref("browser.search.param.yahoo-fr-ja", "mozff");c:\program files\mozilla firefox\defaults\pref\- pref("extensions..name", "chrome://browser/locale/browser.properties");c:\program files\mozilla firefox\defaults\pref\- pref("extensions..description", "chrome://browser/locale/browser.properties");c:\program files\mozilla firefox\defaults\pref\- pref("xpinstall.whitelist.add", "addons.mozilla.org");c:\program files\mozilla firefox\defaults\pref\- pref("xpinstall.36", "getpersonas.com");c:\program files\mozilla firefox\defaults\pref\- pref("lightweight Themes.update.enabled", true);c:\program files\mozilla firefox\defaults\pref\- pref("Tabs.previews", false);c:\program files\mozilla firefox\defaults\pref\- pref("plugins.hide_infobar_for_outdated_plugin", false);c:\program files\mozilla firefox\defaults\pref\- pref("plugins.update.notify User", false);c:\program files\mozilla firefox\defaults\pref\- pref("toolbar.customization.usesheet", false);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.enable", false);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.max", 20);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.cachetime", 20);============= SERVICES / DRIVERS ===============R1 ANVIOCTL; ANVIOCTL;c:\windows\system32\drivers\[2006-7-21 233816]R1 apto6ko; Driver Computer Host ATK0110 Processor Generic Acoustic Microsoft Kernel;c:\windows\system32\drivers\[2000-10-24 32768]R1 ctxusbm; Citrix USB Monitor Driver;c:\windows\system32\drivers\[2009-9-8 65584]R1 VET-FILT; VET File System Filter;c:\windows\system32\drivers\[2009-11-9 26352]R1 VET-REC; VET File System Recognizer;c:\windows\system32\drivers\[2009-11-9 21104]R1 VETEFILE; VET File Scan Engine;c:\windows\system32\drivers\[2009-11-9 739696]R1 VETFDDNT; VET Floppy Boot Sector Monitor;c:\windows\system32\drivers\[2009-11-9 21488]R1 VETMONNT; VET File Monitor;c:\windows\system32\drivers\[2009-11-9 161008]R1 vsdatant;vsdatant;c:\windows\system32\[2006-7-21 280104]R2 CAISafe; CAISafe;c:\program files\ca\etrust internet security suite\etrust ez antivirus\[2007-5-2 144696]R2 cpqoko6; Transport/Protocol Event Shadow for Channel User Thumbnail;c:\windows\system32\-k tapisrvs [2001-8-23 12800]R2 VETMSGNT; VET Message Service;c:\program files\ca\etrust internet security suite\etrust ez antivirus\[2009-11-26 255216]R2 vsmon; True Vector Internet Monitor;c:\windows\system32\zonelabs\-service -- c:\windows\system32\zonelabs\-service [?File not found IE - HKU\S-1-5-21-1085031214-492894223-725345543-1003\Software\Microsoft\Windows\Current Version\Internet Settings: "Proxy Enable" = 0 FF - .extensions.enabled Items: [email protected]:1.0FF - .extensions.enabled Items: :2.1.2.20100119091315 FF - HKLM\software\mozilla\Firefox\Extensions\\: C:\Program Files\Real\Real Player\browserrecord [2009/05/29 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/03/19 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/03/19 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.0.0\Extensions\\Components: C:\Program Files\Netscape\Netscape Browser\Components [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.0.0\Extensions\\Plugins: C:\Program Files\Netscape\Netscape Browser\Plugins [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.3.0\Extensions\\Components: C:\Program Files\Netscape\Netscape Browser\Components [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.3.0\Extensions\\Plugins: C:\Program Files\Netscape\Netscape Browser\Plugins [2010/02/02 | 000,000,000 | ---D | M] [2008/12/28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Extensions[2010/03/26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Firefox\Profiles\vgg4xthp.default\extensions[2010/02/22 | 000,000,000 | ---D | M] (Yahoo!Toolbar) -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Firefox\Profiles\vgg4xthp.default\extensions\[2010/03/26 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions[2009/09/12 | 000,124,240 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\CCMSDK.dll[2009/09/12 | 000,070,488 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\Cgp Core.dll[2009/09/12 | 000,091,480 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\confmgr.dll[2009/09/12 | 000,022,360 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\ctxlogging.dll[2009/12/11 | 000,442,368 | ---- | M] (Invenda Corporation) -- C:\Program Files\Mozilla Firefox\plugins\NPcol308.dll[2009/11/19 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\np Coupon Printer.dll[2009/09/12 | 000,406,864 | ---- | M] () -- C:\Program Files\Mozilla Firefox\plugins\npica N.dll[2009/11/19 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\np Moz Coupon Printer.dll[2009/08/31 | 000,147,456 | ---- | M] (Oberon Media) -- C:\Program Files\Mozilla Firefox\plugins\np My Games.dll[2008/09/15 | 000,376,832 | ---- | M] ( ) -- C:\Program Files\Mozilla Firefox\plugins\npsnapfish.dll[2009/09/12 | 000,023,896 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\Tcp O1 HOSTS File: ([2007/04/18 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (no name) - - No CLSID value found.

    ]]0000000019 - C:\windows\System32\Vet (Computer Associates International, Inc.)O12 - Plugin for: . File not found O12 - Plugin for: - C:\Program Files\Internet Explorer\PLUGINS\NPDoc (Intertrust Technologies, Inc.)O15 - HKU\S-1-5-21-1085031214-492894223-725345543-1003\..1260658687701DPF: - hxxp:// - hxxp://utilities.pcpitstop.com/Exterminate2/pcpitstop Anti DPF: - DPF: - hxxp:// - hxxp:// - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - hxxp://a19.g.akamai.net/7/19/7125/4058/ftp.coupons.com/r3302/Nestle/DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_02-windows-i586DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - hxxp://com/update/1.6.0/jinstall-1_6_0_17-windows-i586DPF: - file://c:\program files\mystery case files - ravenhearst\images\DPF: - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/DPF: - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/DPF: - hxxps://remote.lyondell.com/dana-cached/setup/Juniper Setup SP1DPF: - hxxp://driveragent.com/files/DPF: - hxxp://utilities.pcpitstop.com/Optimize3/pcpitstop2DPF: - hxxp:// Install Handler: cdo - - c:\program files\common files\microsoft shared\web folders\PKMCDO.DLLNotify: ccdfafeebacadd - c:\windows\system32\ccdfafeebacadd.dll================= FIREFOX ===================FF - Profile Path - c:\docume~1\stephen\applic~1\mozilla\firefox\profiles\vgg4xthp.default\FF - plugin: c:\program files\mozilla firefox\plugins\NPcol308FF - plugin: c:\program files\mozilla firefox\plugins\np Coupon FF - plugin: c:\program files\mozilla firefox\plugins\npica FF - plugin: c:\program files\mozilla firefox\plugins\np Moz Coupon FF - plugin: c:\program files\mozilla firefox\plugins\np My FF - plugin: c:\program files\real\realarcade\plugins\mozilla\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\FF - Hidden Extension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\---- FIREFOX POLICIES ----FF - user.js: yahoo.homepage.dontask - truec:\program files\mozilla firefox\greprefs\- pref("ui.use_native_colors", true);c:\program files\mozilla firefox\greprefs\- pref("ui.use_native_popup_windows", false);c:\program files\mozilla firefox\greprefs\- pref("browser.enable_click_image_resizing", true);c:\program files\mozilla firefox\greprefs\- pref("accessibility.browsewithcaret_shortcut.enabled", true);c:\program files\mozilla firefox\greprefs\- pref("javascript.high_water_mark", 32);c:\program files\mozilla firefox\greprefs\- pref("javascript.gc_frequency", 1600);c:\program files\mozilla firefox\greprefs\- pref("force-generic-ntlm", false);c:\program files\mozilla firefox\greprefs\- pref("enabled", false);c:\program files\mozilla firefox\greprefs\- pref("ui.trackpoint_hack.enabled", -1);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.debug", false);c:\program files\mozilla firefox\greprefs\- pref("browser.Weight", 2);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.bucket Size", 1);c:\program files\mozilla firefox\greprefs\- pref("browser.Time Groupings", 25);c:\program files\mozilla firefox\greprefs\- pref("browser.Grouping Size", 604800);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.boundary Weight", 25);c:\program files\mozilla firefox\greprefs\- pref("browser.formfill.prefix Weight", 5);c:\program files\mozilla firefox\greprefs\- pref("html5.enable", false);c:\program files\mozilla firefox\greprefs\- pref("security.ssl3.rsa_seed_sha", true);c:\program files\mozilla firefox\defaults\pref\- pref("app.update.download.background Interval", 600);c:\program files\mozilla firefox\defaults\pref\- pref("app.manual", " files\mozilla firefox\defaults\pref\- pref("browser.search.param.yahoo-fr-ja", "mozff");c:\program files\mozilla firefox\defaults\pref\- pref("extensions..name", "chrome://browser/locale/browser.properties");c:\program files\mozilla firefox\defaults\pref\- pref("extensions..description", "chrome://browser/locale/browser.properties");c:\program files\mozilla firefox\defaults\pref\- pref("xpinstall.whitelist.add", "addons.mozilla.org");c:\program files\mozilla firefox\defaults\pref\- pref("xpinstall.36", "getpersonas.com");c:\program files\mozilla firefox\defaults\pref\- pref("lightweight Themes.update.enabled", true);c:\program files\mozilla firefox\defaults\pref\- pref("Tabs.previews", false);c:\program files\mozilla firefox\defaults\pref\- pref("plugins.hide_infobar_for_outdated_plugin", false);c:\program files\mozilla firefox\defaults\pref\- pref("plugins.update.notify User", false);c:\program files\mozilla firefox\defaults\pref\- pref("toolbar.customization.usesheet", false);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.enable", false);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.max", 20);c:\program files\mozilla firefox\defaults\pref\- pref("browser.taskbar.previews.cachetime", 20);============= SERVICES / DRIVERS ===============R1 ANVIOCTL; ANVIOCTL;c:\windows\system32\drivers\[2006-7-21 233816]R1 apto6ko; Driver Computer Host ATK0110 Processor Generic Acoustic Microsoft Kernel;c:\windows\system32\drivers\[2000-10-24 32768]R1 ctxusbm; Citrix USB Monitor Driver;c:\windows\system32\drivers\[2009-9-8 65584]R1 VET-FILT; VET File System Filter;c:\windows\system32\drivers\[2009-11-9 26352]R1 VET-REC; VET File System Recognizer;c:\windows\system32\drivers\[2009-11-9 21104]R1 VETEFILE; VET File Scan Engine;c:\windows\system32\drivers\[2009-11-9 739696]R1 VETFDDNT; VET Floppy Boot Sector Monitor;c:\windows\system32\drivers\[2009-11-9 21488]R1 VETMONNT; VET File Monitor;c:\windows\system32\drivers\[2009-11-9 161008]R1 vsdatant;vsdatant;c:\windows\system32\[2006-7-21 280104]R2 CAISafe; CAISafe;c:\program files\ca\etrust internet security suite\etrust ez antivirus\[2007-5-2 144696]R2 cpqoko6; Transport/Protocol Event Shadow for Channel User Thumbnail;c:\windows\system32\-k tapisrvs [2001-8-23 12800]R2 VETMSGNT; VET Message Service;c:\program files\ca\etrust internet security suite\etrust ez antivirus\[2009-11-26 255216]R2 vsmon; True Vector Internet Monitor;c:\windows\system32\zonelabs\-service -- c:\windows\system32\zonelabs\-service [?File not found IE - HKU\S-1-5-21-1085031214-492894223-725345543-1003\Software\Microsoft\Windows\Current Version\Internet Settings: "Proxy Enable" = 0 FF - .extensions.enabled Items: [email protected]:1.0FF - .extensions.enabled Items: :2.1.2.20100119091315 FF - HKLM\software\mozilla\Firefox\Extensions\: C:\Program Files\Real\Real Player\browserrecord [2009/05/29 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\Components: C:\Program Files\Mozilla Firefox\components [2010/03/19 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/03/19 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.0.0\Extensions\Components: C:\Program Files\Netscape\Netscape Browser\Components [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.0.0\Extensions\Plugins: C:\Program Files\Netscape\Netscape Browser\Plugins [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.3.0\Extensions\Components: C:\Program Files\Netscape\Netscape Browser\Components [2010/02/02 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Netscape Browser 8.1.3.0\Extensions\Plugins: C:\Program Files\Netscape\Netscape Browser\Plugins [2010/02/02 | 000,000,000 | ---D | M] [2008/12/28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Extensions[2010/03/26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Firefox\Profiles\vgg4xthp.default\extensions[2010/02/22 | 000,000,000 | ---D | M] (Yahoo!Toolbar) -- C:\Documents and Settings\Stephen\Application Data\Mozilla\Firefox\Profiles\vgg4xthp.default\extensions\[2010/03/26 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions[2009/09/12 | 000,124,240 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\CCMSDK.dll[2009/09/12 | 000,070,488 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\Cgp Core.dll[2009/09/12 | 000,091,480 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\confmgr.dll[2009/09/12 | 000,022,360 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\ctxlogging.dll[2009/12/11 | 000,442,368 | ---- | M] (Invenda Corporation) -- C:\Program Files\Mozilla Firefox\plugins\NPcol308.dll[2009/11/19 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\np Coupon Printer.dll[2009/09/12 | 000,406,864 | ---- | M] () -- C:\Program Files\Mozilla Firefox\plugins\npica N.dll[2009/11/19 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\np Moz Coupon Printer.dll[2009/08/31 | 000,147,456 | ---- | M] (Oberon Media) -- C:\Program Files\Mozilla Firefox\plugins\np My Games.dll[2008/09/15 | 000,376,832 | ---- | M] ( ) -- C:\Program Files\Mozilla Firefox\plugins\npsnapfish.dll[2009/09/12 | 000,023,896 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\Tcp O1 HOSTS File: ([2007/04/18 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (no name) - - No CLSID value found.

    Leave a Reply

    1. online datingh 10-Feb-2020 00:25

      Any radiometric dates that show a supposedly “old” rock to be young are rejected “Few people realize that the index fossil dating system, despite its poor assumptions and many problems, is actually the primary dating tool for geologic time. In other words, radiometric dating methods are actually fit into the geological column, which was set up by [index] fossil dating over 100 years ago.”(Michael Oard, meteorologist and creationist scientist, 1984) All radiometric dating methods use this basic principle to extrapolate the age of artifacts being tested.


    Pages: [1] 2 3 4 5 6 | Next | Last


    




    Copyright © 2017 - riv.sundukdedamoroza.ru