Web Pages Dnt Load

2 posters

GeekPolice :: GeekPolice tech support archive :: Technical Support

Web Pages Dnt Load23rd June 2011, 9:49 pm

At times my web pages do not load... i know it's not a net problem because other pcs hooked up here dnt not have the problem...

Wut to do plz?

Re: Web Pages Dnt Load24th June 2011, 1:20 am

Hello and welcome to GeekPolice.Net My name is Dave. I will be helping you out with your particular problem on your computer.

1. I will be working on your Malware issues. This may or may not solve other issues you have with your machine.
2. The fixes are specific to your problem and should only be used for this issue on this machine.
3. If you don't know or understand something, please don't hesitate to ask.
4. Please DO NOT run any other tools or scans while I am helping you.
5. It is important that you reply to this thread. Do not start a new topic.
6. Your security programs may give warnings for some of the tools I will ask you to use. Be assured, any links I give are safe.
7. Absence of symptoms does not mean that everything is clear.

If you can't access the internet with your infected computer you will have to download and transfer any programs to the computer you're using now and transfer them to the infected computer with a CD-RW or a USB storage device. I prefer a CD because a storage device can get infected. If you use a storage device hold the shift key down while inserting the USB storage device for about 10 secs. You will also have to transfer the logs you receive back to the good computer using the same method until we can get the computer back on-line.
*********************************************
SUPERAntiSpyware

If you already have SUPERAntiSpyware be sure to check for updates before scanning!

Download SuperAntispyware Free Edition (SAS)
* Double-click the icon on your desktop to run the installer.
* When asked to Update the program definitions, click Yes
* If you encounter any problems while downloading the updates, manually download and unzip them from here
* Next click the Preferences button.

•Under Start-Up Options uncheck Start SUPERAntiSpyware when Windows starts
* Click the Scanning Control tab.
* Under Scanner Options make sure only the following are checked:

•Close browsers before scanning
•Scan for tracking cookies
•Terminate memory threats before quarantining
•Please leave the others unchecked

•Click the Close button to leave the control center screen.

* On the main screen click Scan your computer
* On the left check the box for the drive you are scanning.
* On the right choose Perform Complete Scan
* Click Next to start the scan. Please be patient while it scans your computer.
* After the scan is complete a summary box will appear. Click OK
* Make sure everything in the white box has a check next to it, then click Next
* It will quarantine what it found and if it asks if you want to reboot, click Yes

•To retrieve the removal information please do the following:
•After reboot, double-click the SUPERAntiSpyware icon on your desktop.
•Click Preferences. Click the Statistics/Logs tab.

•Under Scanner Logs, double-click SUPERAntiSpyware Scan Log.

•It will open in your default text editor (preferably Notepad).
•Save the notepad file to your desktop by clicking (in notepad) File > Save As...

* Save the log somewhere you can easily find it. (normally the desktop)
* Click close and close again to exit the program.
*Copy and Paste the log in your post.
**********************************************
Web Pages Dnt Load Mbamicontw5

Please download Malwarebytes Anti-Malware from here.
Double Click mbam-setup.exe to install the application.

Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes Anti-Malware, then click Finish.
If an update is found, it will download and install the latest version.
Once the program has loaded, select "Perform Full Scan", then click Scan.
The scan may take some time to finish,so please be patient.
When the scan is complete, click OK, then Show Results to view the results.
Make sure that everything is checked, and click Remove Selected.
When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Extra Note)
Please save the log to a location you will remember.
The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
Copy and paste the entire report in your next reply.

Extra Note:

If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediately.
***************************************************
Download DDS from HERE or HERE and save it to your desktop.

Vista users right click on dds and select Run as administrator (you will receive a UAC prompt, please allow it)

* XP users Double click on dds to run it.
* If your antivirus or firewall try to block DDS then please allow it to run.
* When finished DDS will open two (2) logs.

1) DDS.txt
2) Attach.txt

* Save both logs to your desktop.
* Please copy and paste the entire contents of both logs in your next reply.

Note: DDS will instruct you to post the Attach.txt log as an attachment.
Please just post it as you would any other log by copying and pasting it into the reply.

Re: Web Pages Dnt Load25th June 2011, 4:35 am

Mbam Log:

Malwarebytes' Anti-Malware 1.51.0.1200
www.malwarebytes.org

Database version: 6937

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

6/24/2011 10:18:34 PM
mbam-log-2011-06-24 (22-18-28).txt

Scan type: Full scan (C:\|)
Objects scanned: 290949
Time elapsed: 1 hour(s), 23 minute(s), 46 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 4

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
c:\program files\panda security\panda cloud antivirus\lostandfound\document.exe (Trojan.Email.Gen) -> No action taken.
c:\system volume information\_restore{6eb7ff53-2f36-4bec-b7fa-aa3c1ac8cf97}\RP382\A0136214.exe (Malware.Packer.Gen) -> No action taken.
c:\system volume information\_restore{6eb7ff53-2f36-4bec-b7fa-aa3c1ac8cf97}\RP382\A0136357.EXE (Malware.Packer.Gen) -> No action taken.
c:\system volume information\_restore{6eb7ff53-2f36-4bec-b7fa-aa3c1ac8cf97}\rp389\a0141312.exe (Trojan.Email.Gen) -> No action taken.

SAS Log:

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 06/25/2011 at 00:25 AM

Application Version : 4.54.1000

Core Rules Database Version : 5242
Trace Rules Database Version: 5132

Scan type : Complete Scan
Total Scan Time : 02:01:48

Memory items scanned : 560
Memory threats detected : 0
Registry items scanned : 6725
Registry threats detected : 0
File items scanned : 148320
File threats detected : 9

Adware.Tracking Cookie
C:\Documents and Settings\Sir $wat\Cookies\sir_$wat@content.yieldmanager[2].txt
C:\Documents and Settings\Sir $wat\Cookies\sir_$wat@adinterax[2].txt
C:\Documents and Settings\Sir $wat\Cookies\sir_$wat@ad.yieldmanager[1].txt
media.kyte.tv [ C:\Documents and Settings\Sir $wat\Application Data\Macromedia\Flash Player\#SharedObjects\SVPEGWY7 ]

Trojan.Agent/Gen-Krpytik
C:\DOCUMENTS AND SETTINGS\SIR $WAT\MY DOCUMENTS\DOWNLOADS\CELL PHONE SKIN & SKIN MANAGER\FUNLIGHT_EDITOR\FUNLIGHT EDITOR 2\P2KAPI.DLL
C:\DOCUMENTS AND SETTINGS\SIR $WAT\MY DOCUMENTS\DOWNLOADS\CELL PHONE SKIN & SKIN MANAGER\NEW ONES\P2KSTYLE_V0500\P2KAPI.DLL
C:\DOCUMENTS AND SETTINGS\SIR $WAT\MY DOCUMENTS\DOWNLOADS\CELL PHONE SKIN & SKIN MANAGER\SKINSMANAGER_V0[1].31\P2KAPI2.DLL

Trojan.Agent/Gen-Nullo[Short]
C:\SYSTEM VOLUME INFORMATION\_RESTORE{6EB7FF53-2F36-4BEC-B7FA-AA3C1AC8CF97}\RP346\A0115962.EXE

Trojan.Agent/Gen-FakeAlert[OShot]
C:\SYSTEM VOLUME INFORMATION\_RESTORE{6EB7FF53-2F36-4BEC-B7FA-AA3C1AC8CF97}\RP356\A0120126.EXE

Re: Web Pages Dnt Load25th June 2011, 4:36 am

Attach Log:

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-06-23.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 8/12/2010 8:11:07 PM
System Uptime: 6/25/2011 12:26:03 AM (0 hours ago)
.
Motherboard: Foxconn | | G31MV/G31MV-K
Processor: Intel(R) Pentium(R) Dual CPU E2180 @ 2.00GHz | Socket 775 | 1999/200mhz
.
==== Disk Partitions =========================
.
A: is Removable
C: is FIXED (NTFS) - 466 GiB total, 299.127 GiB free.
D: is CDROM ()
E: is CDROM ()
F: is CDROM ()
I: is Removable
J: is Removable
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP295: 3/27/2011 9:33:15 AM - System Checkpoint
RP296: 3/28/2011 5:58:49 PM - System Checkpoint
RP297: 3/28/2011 7:04:08 PM - Removed 2_clock
RP298: 3/28/2011 7:06:22 PM - Removed Steam
RP299: 3/28/2011 7:14:54 PM - avast! Free Antivirus Setup
RP300: 3/29/2011 7:46:38 PM - System Checkpoint
RP301: 3/30/2011 8:21:10 PM - System Checkpoint
RP302: 3/31/2011 8:42:43 PM - System Checkpoint
RP303: 3/31/2011 9:30:25 PM - Installed IncrediMail.
RP304: 3/31/2011 10:40:14 PM - Installed DirectX
RP305: 4/2/2011 6:38:56 PM - System Checkpoint
RP306: 4/4/2011 6:53:11 AM - System Checkpoint
RP307: 4/8/2011 7:03:04 AM - System Checkpoint
RP308: 4/9/2011 7:43:51 PM - System Checkpoint
RP309: 4/10/2011 9:10:04 AM - Removed IncrediMail.
RP310: 4/13/2011 6:52:09 AM - System Checkpoint
RP311: 4/14/2011 6:51:03 AM - Installed DirectX
RP312: 4/14/2011 7:30:05 AM - Software Distribution Service 3.0
RP313: 4/14/2011 3:33:00 PM - Installed DirectX
RP314: 4/14/2011 5:09:37 PM - Software Distribution Service 3.0
RP315: 4/14/2011 6:12:22 PM - Software Distribution Service 3.0
RP316: 4/16/2011 9:05:49 AM - Installed International Cricket Captain 2005
RP317: 4/16/2011 11:28:29 AM - Software Distribution Service 3.0
RP318: 4/17/2011 12:18:51 PM - System Checkpoint
RP319: 4/18/2011 7:11:52 PM - System Checkpoint
RP320: 4/19/2011 10:48:32 AM - Software Distribution Service 3.0
RP321: 4/20/2011 12:13:41 PM - System Checkpoint
RP322: 4/21/2011 1:03:05 PM - System Checkpoint
RP323: 4/23/2011 9:13:44 AM - System Checkpoint
RP324: 4/24/2011 3:10:22 PM - System Checkpoint
RP325: 4/24/2011 9:37:27 PM - Removed International Cricket Captain 2005
RP326: 4/26/2011 1:25:03 PM - avast! Free Antivirus Setup
RP327: 4/26/2011 1:28:12 PM - Installed Kaspersky PURE.
RP328: 4/27/2011 6:53:39 AM - Removed Kaspersky PURE.
RP329: 4/27/2011 7:00:17 AM - Installed AVG 2011
RP330: 4/27/2011 7:00:38 AM - Installed AVG 2011
RP331: 4/27/2011 8:39:21 AM - Software Distribution Service 3.0
RP332: 4/28/2011 8:58:30 AM - System Checkpoint
RP333: 4/29/2011 9:14:01 AM - System Checkpoint
RP334: 5/1/2011 8:45:28 AM - System Checkpoint
RP335: 5/2/2011 9:56:33 AM - System Checkpoint
RP336: 5/3/2011 7:15:44 PM - System Checkpoint
RP337: 5/4/2011 7:51:19 PM - System Checkpoint
RP338: 5/6/2011 4:12:23 PM - System Checkpoint
RP339: 5/8/2011 12:47:04 PM - System Checkpoint
RP340: 5/10/2011 9:09:40 PM - Revo Uninstaller Pro's restore point - AVG 2011
RP341: 5/11/2011 8:18:09 PM - Software Distribution Service 3.0
RP342: 5/14/2011 12:03:25 AM - System Checkpoint
RP343: 5/14/2011 1:24:52 AM - Installed SPSS Statistics 17.0.
RP344: 5/15/2011 1:50:07 PM - System Checkpoint
RP345: 5/15/2011 2:57:33 PM - avast! Free Antivirus Setup
RP346: 5/15/2011 6:46:55 PM - Installed DirectX
RP347: 5/17/2011 7:18:49 AM - System Checkpoint
RP348: 5/18/2011 3:47:44 PM - System Checkpoint
RP349: 5/18/2011 9:39:23 PM - Removed Better Homes and Gardens Home Designer Suite 6.0
RP350: 5/20/2011 7:14:36 AM - System Checkpoint
RP351: 5/21/2011 9:02:10 AM - System Checkpoint
RP352: 5/21/2011 5:38:16 PM - Installed Microsoft XNA Framework Redistributable 3.1
RP353: 5/21/2011 5:48:05 PM - Installed DirectX
RP354: 5/21/2011 5:51:02 PM - Installed DirectX
RP355: 5/21/2011 5:57:21 PM - Installed DirectX
RP356: 5/21/2011 6:00:22 PM - Installed DirectX
RP357: 5/22/2011 7:06:18 PM - System Checkpoint
RP358: 5/24/2011 2:53:49 PM - System Checkpoint
RP359: 5/24/2011 7:05:13 PM - Installed LG USB Modem Drivers.
RP360: 5/25/2011 8:13:40 PM - System Checkpoint
RP361: 5/25/2011 8:26:03 PM - Installed LG PC Suite
RP362: 5/25/2011 8:26:51 PM - Installed LG USB Modem driver
RP363: 5/28/2011 9:46:56 AM - System Checkpoint
RP364: 5/29/2011 9:47:32 AM - Online Armor installation
RP365: 5/29/2011 6:45:43 PM - Installed Steam
RP366: 5/30/2011 7:08:37 PM - System Checkpoint
RP367: 5/31/2011 9:15:33 PM - System Checkpoint
RP368: 6/2/2011 11:29:29 AM - System Checkpoint
RP369: 6/5/2011 11:23:17 AM - System Checkpoint
RP370: 6/6/2011 4:58:17 PM - Removed SPSS 15.0 for Windows Evaluation Version
RP371: 6/6/2011 5:00:42 PM - Removed SpyHunter
RP372: 6/8/2011 4:05:22 PM - System Checkpoint
RP373: 6/10/2011 6:59:19 AM - System Checkpoint
RP374: 6/11/2011 7:35:58 PM - System Checkpoint
RP375: 6/12/2011 10:06:29 AM - avast! Free Antivirus Setup
RP376: 6/13/2011 7:56:50 PM - System Checkpoint
RP377: 6/15/2011 4:53:40 PM - System Checkpoint
RP378: 6/15/2011 5:28:04 PM - Software Distribution Service 3.0
RP379: 6/15/2011 10:52:17 PM - Software Distribution Service 3.0
RP380: 6/16/2011 7:40:10 AM - Software Distribution Service 3.0
RP381: 6/16/2011 9:44:59 PM - Software Distribution Service 3.0
RP382: 6/18/2011 6:44:48 PM - System Checkpoint
RP383: 6/19/2011 10:36:54 AM - Restore Operation
RP384: 6/19/2011 10:16:43 PM - Software Distribution Service 3.0
RP385: 6/21/2011 5:38:02 PM - System Checkpoint
RP386: 6/22/2011 5:54:30 PM - System Checkpoint
RP387: 12/31/2007 11:30:40 PM - System Checkpoint
RP388: 12/31/2007 11:59:56 PM - Software Distribution Service 3.0
RP389: 6/24/2011 7:23:46 AM - System Checkpoint
.
==== Installed Programs ======================
.
"Nero SoundTrax Help
179430
2007 Microsoft Office Suite Service Pack 2 (SP2)
7-Zip 4.65
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader 9.4.4
Adobe Shockwave Player
Advertising Center
Amnesia - The Dark Descent
Apple Software Update
ArcSoft Panorama Maker 4
Battle Los Angeles
CCleaner
Cricket Coach 2011 4.40
DolbyFiles
EA SPORTS(TM) Cricket 07 1.00
Easy Video Joiner 5.21
FIFA 08
File Uploader
FileHippo.com Update Checker
Free DVD Ripper Version 2.25
Freedom Fighters
HiJackThis
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
ImagXpress
ImgBurn
Intel(R) Graphics Media Accelerator Driver
International Cricket Captain 2010
Internet Download Manager
iTunes
Java Auto Updater
Java(TM) 6 Update 23
K-Lite Mega Codec Pack 6.5.0
LG Internet Kit
LG PC Suite
LG USB Modem Drivers
Magicka
Malwarebytes' Anti-Malware version 1.51.0.1200
Mavis Beacon Teaches Typing Platinum 20
Menu Templates - Starter Kit
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Extended
Microsoft Encarta Premium 2009
Microsoft Halo
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office Groove MUI (English) 2007
Microsoft Office Groove Setup Metadata MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Software Update for Web Folders (English) 12
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft XNA Framework Redistributable 3.1
Movie Templates - Starter Kit
Mozilla Firefox 5.0 (x86 en-US)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 6 Service Pack 2 (KB973686)
Nero 9
Nero BurningROM
Nero BurnRights
Nero ControlCenter
Nero CoverDesigner
Nero CoverDesigner Help
Nero Disc Copy Gadget
Nero Disc Copy Gadget Help
Nero DiscSpeed
Nero DriveSpeed
Nero Express
Nero InfoTool
Nero Installer
Nero Live
Nero Live Help
Nero PhotoSnap
Nero PhotoSnap Help
Nero Recode
Nero Recode Help
Nero Rescue Agent
Nero RescueAgent Help
Nero ShowTime
Nero StartSmart
Nero StartSmart Help
Nero Vision
Nero WaveEditor
Nero WaveEditor Help
NeroBurningROM
NeroExpress
neroxml
Nikon Message Center
Nikon Transfer
nLite 1.4.9.1
Panda Cloud Antivirus
Panda Security URL Filtering
Quake 4(TM)
QuickTime
RealNetworks - Microsoft Visual C++ 2008 Runtime
RealPlayer
REALTEK GbE & FE Ethernet PCI-E NIC Driver
Realtek High Definition Audio Driver
RealUpgrade 1.1
Return to Castle Wolfenstein
Revo Uninstaller Pro 2.5.1
Security Update for 2007 Microsoft Office System (KB969559)
Security Update for 2007 Microsoft Office System (KB969679)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Extended (KB2416472)
Security Update for Microsoft Office Excel 2007 (KB969682)
Security Update for Microsoft Office PowerPoint 2007 (KB957789)
Security Update for Microsoft Office Publisher 2007 (KB969693)
Security Update for Microsoft Office system 2007 (KB969613)
Security Update for Microsoft Office Word 2007 (KB969604)
Security Update for Windows Internet Explorer 8 (KB2360131)
Security Update for Windows Internet Explorer 8 (KB2416400)
Security Update for Windows Internet Explorer 8 (KB2482017)
Security Update for Windows Internet Explorer 8 (KB2497640)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2530548)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB981332)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2476687)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479628)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485376)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2503658)
Security Update for Windows XP (KB2503665)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2506223)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2508272)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2511455)
Security Update for Windows XP (KB2524375)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276)
Security Update for Windows XP (KB2544893)
Security Update for Windows XP (KB923789)
SoundTrax
Spelling Dictionaries Support For Adobe Reader 9
SPSS Statistics 17.0
Steam
Stronghold Crusader Extreme
StyleXP (remove only)
SUPERAntiSpyware
TuneUp Utilities Language Pack (en-US)
Tweak UI
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB969907)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update for Outlook 2007 Junk Email Filter (kb972691)
Update for Windows Internet Explorer 8 (KB2447568)
Update for Windows Internet Explorer 8 (KB976662)
Update for Windows XP (KB971029)
Virtual DJ - Atomix Productions
VLC media player 1.1.7
WebFldrs XP
Windows Internet Explorer 8
Windows Media Player Firefox Plugin
Windows Presentation Foundation
WinRAR 4.00 beta 3 (32-bit)
WinTools.net 11.5.1 Ultimate
Xilisoft Video Converter Ultimate
Yahoo! Messenger
.
==== Event Viewer Messages From Past Week ========
.
6/21/2011 6:34:59 AM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Application Layer Gateway Service service to connect.
6/21/2011 6:34:59 AM, error: Service Control Manager [7000] - The Application Layer Gateway Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
6/21/2011 6:15:13 PM, error: SideBySide [61] - Syntax error in manifest or policy file "C:\Program Files\Apple Software Update\Plugins\MSIInstallPlugin.dll.Manifest" on line 2. The required attribute version is missing from element assemblyIdentity.
6/21/2011 6:15:13 PM, error: SideBySide [61] - Syntax error in manifest or policy file "C:\Program Files\Apple Software Update\Plugins\EXEInstallPlugin.dll.Manifest" on line 2. The required attribute version is missing from element assemblyIdentity.
6/21/2011 6:15:13 PM, error: SideBySide [59] - Generate Activation Context failed for C:\Program Files\Apple Software Update\Plugins\MSIInstallPlugin.dll.Manifest. Reference error message: The operation completed successfully. .
6/21/2011 6:15:13 PM, error: SideBySide [59] - Generate Activation Context failed for C:\Program Files\Apple Software Update\Plugins\EXEInstallPlugin.dll.Manifest. Reference error message: The operation completed successfully. .
6/21/2011 6:15:13 PM, error: SideBySide [58] - Syntax error in manifest or policy file "C:\Program Files\Apple Software Update\Plugins\MSIInstallPlugin.dll.Manifest" on line 2.
6/21/2011 6:15:13 PM, error: SideBySide [58] - Syntax error in manifest or policy file "C:\Program Files\Apple Software Update\Plugins\EXEInstallPlugin.dll.Manifest" on line 2.
6/20/2011 6:12:50 PM, error: SideBySide [59] - Resolve Partial Assembly failed for Microsoft.VC90.DebugCRT. Reference error message: The referenced assembly is not installed on your system. .
6/20/2011 6:12:50 PM, error: SideBySide [59] - Generate Activation Context failed for c:\program files\real\realplayer\plugins\rmxrend.dll. Reference error message: The operation completed successfully. .
6/20/2011 6:12:50 PM, error: SideBySide [32] - Dependent Assembly Microsoft.VC90.DebugCRT could not be found and Last Error was The referenced assembly is not installed on your system.
6/19/2011 10:35:33 AM, error: DCOM [10000] - Unable to start a DCOM Server: {C2BFE331-6739-4270-86C9-493D9A04CD38}. The error: "%2" Happened while starting this command: C:\WINDOWS\system32\igfxsrvc.exe -Embedding
6/19/2011 10:35:33 AM, error: DCOM [10000] - Unable to start a DCOM Server: {078AEF33-C48A-49F7-AFF3-A0EE810BFE7C}. The error: "%2" Happened while starting this command: C:\WINDOWS\system32\igfxsrvc.exe -Embedding
6/18/2011 8:52:37 AM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: SuperMounter
6/18/2011 8:52:32 AM, error: Service Control Manager [7000] - The TuneUp Utilities Service service failed to start due to the following error: The system cannot find the path specified.
6/18/2011 11:22:05 AM, error: Service Control Manager [7000] - The StyleXPService service failed to start due to the following error: The system cannot find the file specified.
.
==== End Of File ===========================

DDS Log:

.
DDS (Ver_2011-06-23.01) - NTFSx86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_23
Run by Sir $wat at 0:27:44 on 2011-06-25
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2037.1514 [GMT -4:00]
.
AV: AVG Anti-Virus Free Edition 2011 *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: Panda Cloud Antivirus *Enabled/Updated* {5AD27692-540A-464E-B625-78275FA38393}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Panda Security\Panda Cloud Antivirus\PSUNMain.exe
C:\Documents and Settings\All Users\Application Data\Panda Security URL Filtering\Panda_URL_Filtering.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\LSI SoftModem\agrsmsvc.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\runservice.exe
C:\Program Files\Panda Security\Panda Cloud Antivirus\PSANHost.exe
C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Panda Security\Panda Cloud Antivirus\PSANToManager.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = about:blank
mWindow Title = Microsoft Internet Explorer
BHO: IDM integration (IDMIEHlprObj Class): {0055c089-8582-441b-a0bf-17b458c2a3a8} - c:\program files\internet download manager\IDMIECC.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: : {206e52e0-d52e-11d4-ad54-0000e86c26f6} - c:\progra~1\boosty~1.com\downlo~1\fdcatch.dll
BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\ie\rpbrowserrecordplugin.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: CoTGT_BHO Class: {c333cf63-767f-4831-94ac-e683d962c63c} - c:\program files\tgtsoft\stylexp\TGT_BHO.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: {32099AAC-C132-4136-9E9A-4E364A424E17} - No File
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [PSUNMain] "c:\program files\panda security\panda cloud antivirus\PSUNMain.exe" /Traybar
mRun: [Panda Security URL Filtering] "c:\documents and settings\all users\application data\panda security url filtering\Panda_URL_Filtering.exe"
dRunOnce: [RunNarrator] Narrator.exe
IE: Download all links with IDM - c:\program files\internet download manager\IEGetAll.htm
IE: Download with IDM - c:\program files\internet download manager\IEExt.htm
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~3\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office12\REFIEBAR.DLL
IE: {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - {552781AF-37E4-4FEE-920A-CED9E648EADD} - c:\program files\common files\microsoft shared\encarta search bar\ENCSBAR.DLL
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://go.microsoft.com/fwlink/?linkid=39204
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
TCP: DhcpNameServer = 192.168.4.100
TCP: Interfaces\{827A66EB-BDFC-4B42-B0E4-36AF3D6E5F37} : NameServer = 208.67.222.222,208.67.220.220
TCP: Interfaces\{827A66EB-BDFC-4B42-B0E4-36AF3D6E5F37} : DhcpNameServer = 192.168.4.100
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Name-Space Handler: ftp\DBoost - {3BF4771A-18F5-4EAB-80B7-AC254D3C7503} - c:\progra~1\boosty~1.com\downlo~1\fdcatch.dll
Name-Space Handler: http\DBoost - {3BF4771A-18F5-4EAB-80B7-AC254D3C7503} - c:\progra~1\boosty~1.com\downlo~1\fdcatch.dll
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.DLL
Notify: igfxcui - igfxdev.dll
Notify: WBSrv - c:\program files\stardock\object desktop\windowblinds\wbsrv.dll
AppInit_DLLs: c:\windows\system32\wbsys.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
SEH: {4F07DA45-8170-4859-9B5F-037EF2970034} - No File
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath -
.
============= SERVICES / DRIVERS ===============
.
R1 IDMTDI;IDMTDI;c:\windows\system32\drivers\idmtdi.sys [2011-4-21 98160]
R1 PSINKNC;PSINKNC;c:\windows\system32\drivers\PSINKNC.sys [2011-4-28 129992]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2010-2-17 12872]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2010-5-10 67656]
R2 LicCtrlService;LicCtrl Service;c:\windows\Runservice.exe [2010-8-12 2560]
R2 NanoServiceMain;Panda Cloud Antivirus Service;c:\program files\panda security\panda cloud antivirus\PSANHost.exe [2011-4-28 140608]
R2 PSINAflt;PSINAflt;c:\windows\system32\drivers\PSINAflt.sys [2011-4-28 143432]
R2 PSINFile;PSINFile;c:\windows\system32\drivers\PSINFile.sys [2011-4-28 97096]
R2 PSINProc;PSINProc;c:\windows\system32\drivers\PSINProc.sys [2011-4-28 111688]
R2 PSINProt;PSINProt;c:\windows\system32\drivers\PSINProt.sys [2011-4-28 112456]
S1 SuperMounter;SuperMounter; [x]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;"c:\program files\tuneup utilities 2011\tuneuputilitiesservice32.exe" --> c:\program files\tuneup utilities 2011\TuneUpUtilitiesService32.exe [?]
S3 ASPI;Advanced SCSI Programming Interface Driver;c:\windows\system32\drivers\ASPI32.SYS [2010-8-30 16512]
S3 cpuz132;cpuz132;\??\c:\docume~1\sir$wa~1\locals~1\temp\cpuz132\cpuz132_x32.sys --> c:\docume~1\sir$wa~1\locals~1\temp\cpuz132\cpuz132_x32.sys [?]
S3 esgiguard;esgiguard;\??\c:\program files\enigma software group\spyhunter\esgiguard.sys --> c:\program files\enigma software group\spyhunter\esgiguard.sys [?]
S3 FXDrv32;FXDrv32;\??\d:\fxdrv32.sys --> d:\FXDrv32.sys [?]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2010-8-31 22712]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2010-8-31 39984]
S3 MEMSWEEP2;MEMSWEEP2;\??\c:\windows\system32\34.tmp --> c:\windows\system32\34.tmp [?]
S3 qcusbser;Mobile Connector USB Device for Legacy Serial Communication;c:\windows\system32\drivers\cmusbser.sys [2010-8-12 97408]
S3 Revoflt;Revoflt;c:\windows\system32\drivers\revoflt.sys [2011-2-6 27064]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;\??\c:\program files\tuneup utilities 2011\tuneuputilitiesdriver32.sys --> c:\program files\tuneup utilities 2011\TuneUpUtilitiesDriver32.sys [?]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
S4 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2010-8-31 366640]
.
=============== Created Last 30 ================
.
2011-06-24 11:24:38 -------- d-----w- c:\documents and settings\all users\application data\SUPERAntiSpyware.com
2011-06-19 14:40:15 -------- d-----w- c:\windows\system32\wbem\repository\FS
2011-06-19 14:40:15 -------- d-----w- c:\windows\system32\wbem\Repository
2011-06-19 14:37:48 -------- d-----w- c:\program files\DAEMON Tools Lite
2011-06-19 14:37:47 -------- d-----w- c:\program files\10 Finger BreakOut
2011-06-19 14:37:46 -------- d-----w- c:\program files\VS Revo Group
2011-06-19 14:37:32 -------- d-----w- c:\program files\Free DVD Ripper
2011-06-19 14:37:31 -------- d-----w- c:\program files\Empire Interactive
2011-06-19 14:37:12 -------- d-----w- c:\windows\system32\Lang
2011-06-19 03:57:17 57344 ----a-w- c:\windows\system32\SETA4.tmp
2011-06-19 03:57:16 2686368 ----a-w- c:\windows\system32\SETA8.tmp
2011-06-19 03:57:16 183808 ----a-w- c:\windows\system32\SETA6.tmp
2011-06-19 03:57:15 3773440 ----a-w- c:\windows\system32\SETAA.tmp
2011-06-17 00:39:43 -------- d-----w- c:\documents and settings\sir $wat\local settings\application data\Gearbox Software
2011-06-15 21:28:59 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2011-06-12 14:14:40 -------- d-----w- c:\program files\Cricket Coach 2011
2011-06-12 14:11:45 -------- d-----w- c:\documents and settings\sir $wat\application data\Panda Security
2011-06-12 14:11:31 -------- d-----w- c:\documents and settings\sir $wat\application data\SurfSecret Privacy Suite
2011-06-12 14:11:15 -------- d-----w- c:\documents and settings\sir $wat\local settings\application data\panda2_0dn
2011-06-12 14:11:08 -------- d-----w- c:\documents and settings\all users\application data\Panda Security URL Filtering
2011-06-12 14:10:27 -------- d-----w- c:\program files\Panda Security
2011-06-12 14:10:27 -------- d-----w- c:\documents and settings\all users\application data\Panda Security
2011-06-06 21:10:47 -------- d-----w- C:\ComboFix
2011-06-06 21:00:22 -------- d-----w- c:\windows\D895FDE88F044B218651211FB2C05AA9.TMP
2011-06-05 20:28:05 -------- d-----w- c:\documents and settings\sir $wat\application data\Rovio
2011-06-04 18:15:59 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-06-01 18:20:10 -------- d-----w- c:\program files\Easy Video Joiner
2011-06-01 18:10:52 -------- d-----w- c:\documents and settings\sir $wat\application data\Any Flv Converter
2011-06-01 18:10:45 -------- d-----w- c:\program files\Any Flv Converter
2011-06-01 14:57:07 -------- d-----w- c:\documents and settings\sir $wat\local settings\application data\WMTools Downloaded Files
2011-05-29 22:45:44 -------- d-----w- c:\program files\Steam
2011-05-29 22:09:07 -------- d-----w- c:\program files\Amnesia - The Dark Descent
2011-05-29 12:12:33 -------- d-sha-r- C:\cmdcons
2011-05-29 02:29:01 -------- d-----w- c:\program files\Enigma Software Group
2011-05-29 02:28:27 -------- d-----w- c:\program files\common files\Wise Installation Wizard
.
==================== Find3M ====================
.
2011-06-25 04:27:40 2113 --sha-w- c:\windows\system32\mmf.sys
2011-05-29 13:11:30 39984 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-05-29 13:11:20 22712 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-05-21 20:48:03 1409 ----a-w- c:\windows\QTFont.for
2011-05-14 05:27:54 1024 ----a-w- c:\windows\system32\grcauth2.dll
2011-05-14 05:27:54 1024 ----a-w- c:\windows\system32\grcauth1.dll
2011-05-02 15:31:52 692736 ----a-w- c:\windows\system32\inetcomm.dll
2011-04-29 16:19:43 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-04-28 21:47:02 365888 ----a-w- c:\windows\system32\PSUNCpl.cpl
2011-04-28 11:57:57 112456 ----a-w- c:\windows\system32\drivers\PSINProt.sys
2011-04-28 11:57:38 97096 ----a-w- c:\windows\system32\drivers\PSINFile.sys
2011-04-28 11:57:38 143432 ----a-w- c:\windows\system32\drivers\PSINAflt.sys
2011-04-28 11:57:38 129992 ----a-w- c:\windows\system32\drivers\PSINKNC.sys
2011-04-28 11:57:38 111688 ----a-w- c:\windows\system32\drivers\PSINProc.sys
2011-04-25 16:11:12 916480 ----a-w- c:\windows\system32\wininet.dll
2011-04-25 16:11:11 43520 ------w- c:\windows\system32\licmgr10.dll
2011-04-25 16:11:11 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-04-25 12:01:22 385024 ----a-w- c:\windows\system32\html.iec
2011-04-21 14:42:05 74 --s-a-r- c:\windows\system32\Allow-it-Keygen-Part-SnD.cmd
2011-04-21 13:37:43 105472 ----a-w- c:\windows\system32\drivers\mup.sys
2011-03-28 17:46:40 98160 ----a-w- c:\windows\system32\drivers\idmtdi.sys
.
============= FINISH: 0:28:43.82 ===============

Re: Web Pages Dnt Load25th June 2011, 7:25 pm

Please run MBAM again, and this time, clean the infections.

Update Your Java (JRE)

Old versions of Java have vulnerabilities that malware can use to infect your system.

First Verify your Java Version

If there are any other version(s) installed then update now.

Get the new version (if needed)

If your version is out of date install the newest version of the Sun Java Runtime Environment.

Note: UNCHECK any pre-checked toolbar and/or software offered with the Java update. The pre-checked toolbars/software are not part of the Java update.

Be sure to close ALL open web browsers before starting the installation.

Remove any old versions

1. Download JavaRa and unzip the file to your Desktop.
2. Open JavaRA.exe and choose Remove Older Versions
3. Once complete exit JavaRA.

Additional Note: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications. To disable the JQS service if you don't want to use it, go to Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for Java Quick Starter. Click OK and reboot your computer.
***************************************************
The logs show that you appear to have two Anti-virus programs on your computer which is a no-no. Either AVG Anti-Virus Free Edition 2011 or Panda Cloud Antivirus will have to be disabled/uninstalled. I would suggest that you uninstall AVG because it will interfere with the running of ComboFix.

Please download ComboFix Web Pages Dnt Load Combofix

from BleepingComputer.com

Alternate link: GeeksToGo.com

and save it to your Desktop.
It would be easiest to download using Internet Explorer.
If you insist on using Firefox, make sure that your download settings are as follows:

* Tools->Options->Main tab
* Set to "Always ask me where to Save the files".

Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools A guide to do this can be found here
Double click ComboFix.exe & follow the prompts.
As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console
Web Pages Dnt Load Query_RC

Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.

Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:
Web Pages Dnt Load RC_successful

Click on Yes, to continue scanning for malware.
When finished, it shall produce a log for you. Please include the contents of C:\ComboFix.txt in your next reply.

If you have problems with ComboFix usage, see How to use ComboFix

Re: Web Pages Dnt Load26th June 2011, 12:19 am

Malwarebytes' Anti-Malware 1.51.0.1200
www.malwarebytes.org

Database version: 6949

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

6/25/2011 5:27:23 PM
mbam-log-2011-06-25 (17-27-22).txt

Scan type: Full scan (C:\|)
Objects scanned: 290426
Time elapsed: 49 minute(s), 45 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

Combo Log:

ComboFix 11-06-25.03 - Sir $wat 06/25/2011 17:32:07.4.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2037.1385 [GMT -4:00]
Running from: c:\documents and settings\Sir $wat\Desktop\ComboFix.exe
AV: Panda Cloud Antivirus *Enabled/Updated* {5AD27692-540A-464E-B625-78275FA38393}
.
.
((((((((((((((((((((((((( Files Created from 2011-05-25 to 2011-06-25 )))))))))))))))))))))))))))))))
.
.
2011-06-25 20:13 . 2011-06-25 20:13 -------- d-----w- c:\program files\Common Files\Java
2011-06-25 20:09 . 2011-06-25 20:09 73728 ----a-w- c:\windows\system32\javacpl.cpl
2011-06-24 11:24 . 2011-06-24 11:24 -------- d-----w- c:\documents and settings\All Users\Application Data\SUPERAntiSpyware.com
2011-06-19 14:40 . 2011-06-19 14:40 -------- d-----w- c:\windows\system32\wbem\Repository
2011-06-19 14:38 . 2011-06-19 14:38 -------- d-----w- c:\documents and settings\Sir $wat\Application Data\ImgBurn
2011-06-19 14:38 . 2011-06-19 14:38 -------- d-----w- c:\program files\ImgBurn
2011-06-19 14:37 . 2011-06-19 14:37 -------- d-----w- c:\program files\DAEMON Tools Lite
2011-06-19 14:37 . 2011-06-19 14:37 -------- d-----w- c:\program files\10 Finger BreakOut
2011-06-19 14:37 . 2011-06-19 14:37 -------- d-----w- c:\program files\VS Revo Group
2011-06-19 14:37 . 2011-06-19 14:37 -------- d-----w- c:\program files\Free DVD Ripper
2011-06-19 14:37 . 2011-06-19 14:37 -------- d-----w- c:\program files\Empire Interactive
2011-06-19 14:37 . 2011-06-19 14:37 -------- d-----w- c:\windows\system32\Lang
2011-06-19 03:57 . 2009-01-21 15:43 57344 ----a-w- c:\windows\system32\SETA4.tmp
2011-06-19 03:57 . 2009-01-21 15:44 2686368 ----a-w- c:\windows\system32\SETA8.tmp
2011-06-19 03:57 . 2009-01-21 15:43 183808 ----a-w- c:\windows\system32\SETA6.tmp
2011-06-19 03:57 . 2009-01-21 15:44 3773440 ----a-w- c:\windows\system32\SETAA.tmp
2011-06-17 00:39 . 2011-06-17 00:39 -------- d-----w- c:\documents and settings\Sir $wat\Local Settings\Application Data\Gearbox Software
2011-06-15 21:28 . 2011-04-21 13:37 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2011-06-12 14:14 . 2011-06-12 14:14 -------- d-----w- c:\program files\Cricket Coach 2011
2011-06-12 14:11 . 2011-06-12 14:11 -------- d-----w- c:\documents and settings\Sir $wat\Application Data\Panda Security
2011-06-12 14:11 . 2011-06-12 14:11 -------- d-----w- c:\documents and settings\Sir $wat\Application Data\SurfSecret Privacy Suite
2011-06-12 14:11 . 2011-06-12 15:08 -------- d-----w- c:\documents and settings\Sir $wat\Local Settings\Application Data\panda2_0dn
2011-06-12 14:11 . 2011-06-25 19:31 -------- d-----w- c:\documents and settings\All Users\Application Data\Panda Security URL Filtering
2011-06-12 14:10 . 2011-06-12 21:47 -------- d-----w- c:\program files\Panda Security
2011-06-12 14:10 . 2011-06-12 14:10 -------- d-----w- c:\documents and settings\All Users\Application Data\Panda Security
2011-06-06 21:00 . 2011-06-06 21:00 -------- d-----w- c:\windows\D895FDE88F044B218651211FB2C05AA9.TMP
2011-06-05 20:28 . 2011-06-05 20:28 -------- d-----w- c:\documents and settings\Sir $wat\Application Data\Rovio
2011-06-04 18:15 . 2011-06-04 18:15 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-06-01 18:20 . 2011-06-01 18:20 -------- d-----w- c:\program files\Easy Video Joiner
2011-06-01 18:10 . 2011-06-06 20:55 -------- d-----w- c:\documents and settings\Sir $wat\Application Data\Any Flv Converter
2011-06-01 18:10 . 2011-06-06 20:55 -------- d-----w- c:\program files\Any Flv Converter
2011-06-01 14:57 . 2011-06-01 14:57 -------- d-----w- c:\documents and settings\Sir $wat\Local Settings\Application Data\WMTools Downloaded Files
2011-05-29 22:45 . 2011-06-06 20:42 -------- d-----w- c:\program files\Steam
2011-05-29 22:09 . 2011-05-29 22:37 -------- d-----w- c:\program files\Amnesia - The Dark Descent
2011-05-29 02:29 . 2011-05-29 02:29 -------- d-----w- c:\program files\Enigma Software Group
2011-05-29 02:28 . 2011-05-29 02:28 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-06-25 20:09 . 2010-08-13 01:14 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-05-29 13:11 . 2010-08-31 22:46 39984 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-05-29 13:11 . 2010-08-31 22:46 22712 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-05-21 20:48 . 2011-05-21 20:48 1409 ----a-w- c:\windows\QTFont.for
2011-05-02 15:31 . 2010-08-13 00:07 692736 ----a-w- c:\windows\system32\inetcomm.dll
2011-04-29 16:19 . 2004-08-04 06:15 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-04-28 21:47 . 2011-04-28 21:47 365888 ----a-w- c:\windows\system32\PSUNCpl.cpl
2011-04-28 11:57 . 2011-04-28 11:57 112456 ----a-w- c:\windows\system32\drivers\PSINProt.sys
2011-04-28 11:57 . 2011-04-28 11:57 97096 ----a-w- c:\windows\system32\drivers\PSINFile.sys
2011-04-28 11:57 . 2011-04-28 11:57 143432 ----a-w- c:\windows\system32\drivers\PSINAflt.sys
2011-04-28 11:57 . 2011-04-28 11:57 129992 ----a-w- c:\windows\system32\drivers\PSINKNC.sys
2011-04-28 11:57 . 2011-04-28 11:57 111688 ----a-w- c:\windows\system32\drivers\PSINProc.sys
2011-04-25 16:11 . 2004-08-04 07:56 916480 ----a-w- c:\windows\system32\wininet.dll
2011-04-25 16:11 . 2004-08-04 07:56 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-04-25 16:11 . 2004-08-04 07:56 43520 ------w- c:\windows\system32\licmgr10.dll
2011-04-25 12:01 . 2004-08-04 05:59 385024 ----a-w- c:\windows\system32\html.iec
2011-04-21 14:42 . 2011-04-21 14:36 74 --s-a-r- c:\windows\system32\Allow-it-Keygen-Part-SnD.cmd
2011-04-21 13:37 . 2004-08-04 06:15 105472 ----a-w- c:\windows\system32\drivers\mup.sys
2011-03-28 17:46 . 2011-04-21 17:30 98160 ----a-w- c:\windows\system32\drivers\idmtdi.sys
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]
@="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"
[HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]
2011-03-02 15:23 68216 ----a-w- c:\program files\Internet Download Manager\IDMShellExt.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Panda Malware Icon]
@="{F5D1CF73-C196-48F8-AAAC-B9181E22B4E6}"
[HKEY_CLASSES_ROOT\CLSID\{F5D1CF73-C196-48F8-AAAC-B9181E22B4E6}]
2011-05-09 10:45 288584 ----a-w- c:\program files\Panda Security\Panda Cloud Antivirus\PSUNShell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Panda Suspect Icon]
@="{9AE343CB-BA45-4618-AF6A-0230EE6FC793}"
[HKEY_CLASSES_ROOT\CLSID\{9AE343CB-BA45-4618-AF6A-0230EE6FC793}]
2011-05-09 10:45 288584 ----a-w- c:\program files\Panda Security\Panda Cloud Antivirus\PSUNShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2011-03-30 399736]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PSUNMain"="c:\program files\Panda Security\Panda Cloud Antivirus\PSUNMain.exe" [2011-04-28 439616]
"Panda Security URL Filtering"="c:\documents and settings\All Users\Application Data\Panda Security URL Filtering\Panda_URL_Filtering.exe" [2011-05-17 231592]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-04-08 254696]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"RunNarrator"="Narrator.exe" [2008-04-14 53760]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2009-09-03 22:21 548352 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\WBSrv]
2010-06-07 18:59 214320 ----a-w- c:\program files\Stardock\Object Desktop\WindowBlinds\WbSrv.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\system32\wbsys.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
2010-04-01 09:16 357696 ----a-w- c:\program files\DAEMON Tools Lite\DTLite.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LtMoh]
2005-05-18 07:57 188416 ------w- c:\program files\ltmoh\ltmoh.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
2008-04-14 00:12 1695232 ------w- c:\program files\Messenger\msmsgs.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
2008-04-10 08:52 16861184 ------r- c:\windows\RTHDCPL.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
2011-05-30 10:30 1242448 ----a-w- c:\program files\Steam\Steam.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\STYLEXP]
2006-05-24 18:31 1372160 ----a-w- c:\program files\TGTSoft\StyleXP\StyleXP.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2011-04-08 16:59 254696 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
2010-12-02 23:24 274608 ----a-w- c:\program files\Real\realplayer\Update\realsched.exe
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"IDMan"=c:\program files\Internet Download Manager\IDMan.exe /onboot
"Messenger (Yahoo!)"="c:\program files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
"STYLEXP"=c:\program files\TGTSoft\StyleXP\StyleXP.exe -Hide
"ctfmon.exe"=c:\windows\system32\ctfmon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"IgfxTray"=c:\windows\system32\igfxtray.exe
"HotKeysCmds"=c:\windows\system32\hkcmd.exe
"Persistence"=c:\windows\system32\igfxpers.exe
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe"
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe"
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" -atboottime
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe"
"Nikon Transfer Monitor"=c:\program files\Common Files\Nikon\Monitor\NkMonitor.exe
"TkBellExe"="c:\program files\real\realplayer\update\realsched.exe" -osboot
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
"FirewallOverride"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe"=
"c:\\Program Files\\Microsoft Games\\Halo\\halo.exe"=
"c:\\Program Files\\Return to Castle Wolfenstein\\WolfMP.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\FM\\Sports Interactive\\Football Manager 2011\\fm.exe"=
"c:\\Program Files\\VideoLAN\\VLC\\vlc.exe"=
"c:\\Program Files\\Konami\\Battle Los Angeles\\bin\\BattleLA.exe"=
"c:\\Program Files\\Internet Download Manager\\IDMan.exe"=
"c:\\Program Files\\SPSSInc\\Statistics17\\SPSSWinWrapIDE.exe"=
"c:\\Program Files\\SPSSInc\\Statistics17\\statistics.com"=
"c:\\Program Files\\SPSSInc\\Statistics17\\statistics.exe"=
"c:\\Program Files\\Steam\\Steam.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"23596:TCP"= 23596:TCP:BitComet 23596 TCP
"23596:UDP"= 23596:UDP:BitComet 23596 UDP
.
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [11/2/2010 8:45 PM 691696]
R1 IDMTDI;IDMTDI;c:\windows\system32\drivers\idmtdi.sys [4/21/2011 1:30 PM 98160]
R1 PSINKNC;PSINKNC;c:\windows\system32\drivers\PSINKNC.sys [4/28/2011 7:57 AM 129992]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [2/17/2010 2:25 PM 12872]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [5/10/2010 2:41 PM 67656]
R2 NanoServiceMain;Panda Cloud Antivirus Service;c:\program files\Panda Security\Panda Cloud Antivirus\PSANHost.exe [4/28/2011 7:58 AM 140608]
R2 PSINAflt;PSINAflt;c:\windows\system32\drivers\PSINAflt.sys [4/28/2011 7:57 AM 143432]
R2 PSINFile;PSINFile;c:\windows\system32\drivers\PSINFile.sys [4/28/2011 7:57 AM 97096]
R2 PSINProc;PSINProc;c:\windows\system32\drivers\PSINProc.sys [4/28/2011 7:57 AM 111688]
R2 PSINProt;PSINProt;c:\windows\system32\drivers\PSINProt.sys [4/28/2011 7:57 AM 112456]
S1 SuperMounter;SuperMounter; [x]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [3/18/2010 12:16 PM 130384]
S2 LicCtrlService;LicCtrl Service;c:\windows\Runservice.exe [8/12/2010 8:47 PM 2560]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;"c:\program files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe" --> c:\program files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe [?]
S3 ASPI;Advanced SCSI Programming Interface Driver;c:\windows\system32\drivers\ASPI32.SYS [8/30/2010 2:21 PM 16512]
S3 esgiguard;esgiguard;\??\c:\program files\Enigma Software Group\SpyHunter\esgiguard.sys --> c:\program files\Enigma Software Group\SpyHunter\esgiguard.sys [?]
S3 FXDrv32;FXDrv32;\??\d:\fxdrv32.sys --> d:\FXDrv32.sys [?]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [8/31/2010 6:46 PM 22712]
S3 MEMSWEEP2;MEMSWEEP2;\??\c:\windows\system32\34.tmp --> c:\windows\system32\34.tmp [?]
S3 qcusbser;Mobile Connector USB Device for Legacy Serial Communication;c:\windows\system32\drivers\cmusbser.sys [8/12/2010 9:39 PM 97408]
S3 Revoflt;Revoflt;c:\windows\system32\drivers\revoflt.sys [2/6/2011 8:35 PM 27064]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;\??\c:\program files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys --> c:\program files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys [?]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [3/18/2010 12:16 PM 753504]
S4 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [8/31/2010 6:46 PM 366640]
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - JAVAQUICKSTARTERSERVICE
*Deregistered* - MBAMSwissArmy
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Contents of the 'Scheduled Tasks' folder
.
2011-06-21 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2006-08-29 17:21]
.
2011-06-25 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-343818398-602609370-839522115-1003.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-11-05 16:33]
.
2011-06-21 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-343818398-602609370-839522115-1003.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-11-05 16:33]
.
.
------- Supplementary Scan -------
.
uStart Page = about:blank
mWindow Title = Microsoft Internet Explorer
IE: Download all links with IDM - c:\program files\Internet Download Manager\IEGetAll.htm
IE: Download with IDM - c:\program files\Internet Download Manager\IEExt.htm
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.4.100
TCP: Interfaces\{827A66EB-BDFC-4B42-B0E4-36AF3D6E5F37}: NameServer = 208.67.222.222,208.67.220.220
Name-Space Handler: ftp\DBoost - {3BF4771A-18F5-4EAB-80B7-AC254D3C7503} - c:\progra~1\BOOSTY~1.COM\DOWNLO~1\fdcatch.dll
Name-Space Handler: http\DBoost - {3BF4771A-18F5-4EAB-80B7-AC254D3C7503} - c:\progra~1\BOOSTY~1.COM\DOWNLO~1\fdcatch.dll
FF - ProfilePath -
.
- - - - ORPHANS REMOVED - - - -
.
ShellExecuteHooks-{4F07DA45-8170-4859-9B5F-037EF2970034} - (no file)
AddRemove-{8C3727F2-8E37-49E4-820C-03B1677F53B6} - c:\program files\InstallShield Installation Information\{8C3727F2-8E37-49E4-820C-03B1677F53B6}\setup.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-06-25 17:36
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\MEMSWEEP2]
"ImagePath"="\??\c:\windows\system32\34.tmp"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-343818398-602609370-839522115-1003\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}]
@Denied: (Full) (Everyone)
"scansk"=hex(0):29,31,c8,47,b1,bd,5b,58,17,ad,57,be,48,4c,e7,33,be,6c,6c,84,79,
ee,ca,27,19,6d,16,5a,c6,63,ff,cb,44,29,d5,59,75,05,85,f5,00,00,00,00,00,00,\
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{8de0f251-25bc-4250-bcad-dbac3cde1ad8}]
@Denied: (Full) (Everyone)
"Model"=dword:00000161
"Therad"=dword:00000015
"MData"=hex(0):73,d5,cf,b8,a4,07,89,80,31,e4,35,6b,2a,ca,fe,43,b6,1f,81,1f,5a,
1b,4d,36,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,\
.
[HKEY_LOCAL_MACHINE\software\LicCtrl\LicCtrl\LicCtrl\LicCtrl*lkzs$i&#&y@^t! #^$ g9^$&pgb SDB36o \9A6A5634BD3048B3]
"1"=hex:f2,dc,b8,ca,29,8b,06,04,aa,02,59,06,c2,ef,5d,4d,b0,17,3e,13,b8,98,f9,
10,0a,f2,16,5c,a8,1c,4f,a3
"2"=hex:e7,27,cf,42,f4,44,fe,c6,d8,f2,16,d1,8e,4d,81,a5,c1,5f,93,ef,b5,cb,1d,
04,36,ee,2f,8d,a7,5c,96,01
"3"=hex:f2,dc,b8,ca,29,8b,06,04,aa,02,59,06,c2,ef,5d,4d,7c,ee,b3,94,39,1d,bb,
5e,97,e6,9e,cf,eb,f2,94,ca,73,e6,d4,34,53,90,04,70,e8,7f,25,57,05,a4,49,dd,\
.
[HKEY_LOCAL_MACHINE\software\LicCtrl\LicCtrl\LicCtrl\LicCtrl*lkzs$i&#&y@^t! #^$ g9^$&pgb SDB36o \9A6A5634BD3048B3\B7DAAD172AA12168E008FD873A1BED58]
"1"=hex:15,c0,1b,ee,a2,cd,62,4d,d2,23,38,04,69,c0,07,cb,be,7f,03,af,a5,f1,05,
d0,1a,47,b5,40,b3,3c,2a,70,56,10,ce,bb,de,cc,2b,9c
"2"=hex:d2,8b,43,26,53,71,d1,c2
"3"=hex:81,20,8f,ab,28,6a,52,9c
"4"=hex:2f,ad,a2,e7,8a,bf,05,5e
"5"=hex:bf,e5,23,7b,b0,66,d6,fc,b8,e8,6b,a0,96,52,f7,32,80,09,8f,24,b7,b3,55,
1a,98,d1,47,16,02,43,61,1c,b9,d5,8f,2a,7b,81,b1,fb,95,22,f8,b3,2c,53,9d,ae,\
"6"=hex:bf,e5,23,7b,b0,66,d6,fc,bc,64,22,fb,7e,d3,39,3e,a3,00,33,13,c0,21,f4,
51,6c,4e,0c,96,e2,dd,ad,8a,b6,c4,05,e8,5a,bd,9a,e9,d4,1a,3d,68,9d,00,32,20
"7"=hex:f2,dc,b8,ca,29,8b,06,04,aa,02,59,06,c2,ef,5d,4d,3f,f3,42,c6,c3,65,02,
28,73,ee,9e,5f,dc,e9,7b,7f,2e,33,55,23,c0,bf,6f,0f,06,ce,de,e3,81,cf,0f,34,\
"8"=hex:9d,9e,b2,b9,a7,a5,f4,ae,4d,29,c2,a3,c0,78,c4,c5,67,80,23,00,91,97,a4,
41,a3,0f,5f,5b,48,b0,e4,e8,66,58,a7,f0,30,cd,83,af,bb,1d,3e,83,dd,5b,a9,b1,\
"9"=hex:81,20,8f,ab,28,6a,52,9c
"18"=hex:70,56,26,33,e3,20,f8,ab
"10"=hex:81,20,8f,ab,28,6a,52,9c
"11"=hex:81,20,8f,ab,28,6a,52,9c
"12"=hex:81,20,8f,ab,28,6a,52,9c
"13"=hex:81,20,8f,ab,28,6a,52,9c
"14"=hex:81,20,8f,ab,28,6a,52,9c
"24"=hex:81,20,8f,ab,28,6a,52,9c
"26"=hex:81,20,8f,ab,28,6a,52,9c
"27"=hex:81,20,8f,ab,28,6a,52,9c
"19"=hex:81,20,8f,ab,28,6a,52,9c
"22"=hex:81,20,8f,ab,28,6a,52,9c
.
[HKEY_LOCAL_MACHINE\software\LicCtrl\LicCtrl\LicCtrl\LicCtrl*lkzs$i&#&y@^t! #^$ g9^$&pgb SDB36o \C6F447273BC65EF0]
"1"=hex:af,49,68,4a,a1,03,67,91,19,71,84,cd,48,2c,98,f8,ee,08,c6,eb,cb,98,eb,
30,ad,8c,c5,8a,3e,53,91,13
"2"=hex:58,11,50,42,2e,f2,55,51,6f,f7,9a,ef,6b,f3,36,21,ec,a7,58,e2,e8,c3,4d,
78,80,c1,ec,38,21,d8,13,6c
"3"=hex:af,49,68,4a,a1,03,67,91,19,71,84,cd,48,2c,98,f8,e7,e9,9a,5d,76,44,f3,
e8,cb,fa,f8,8a,c7,df,0f,18,db,65,d2,ff,d4,73,8c,c0,e1,dd,91,71,a1,e6,83,ee,\
.
[HKEY_LOCAL_MACHINE\software\LicCtrl\LicCtrl\LicCtrl\LicCtrl*lkzs$i&#&y@^t! #^$ g9^$&pgb SDB36o \C6F447273BC65EF0\DB1F6FC68C43F8333D65B2E83E53AECC]
"1"=hex:8c,de,d0,aa,f8,58,db,1b,5a,48,bb,3c,bc,6d,16,45,82,f9,29,62,54,90,0b,
6a
"2"=hex:44,51,6d,f0,c2,8a,1e,cb
"3"=hex:f3,9f,eb,5c,4f,94,c6,39,82,ce,82,96,82,59,83,0e,1e,5e,e3,2f,e2,88,c6,
37,24,80,60,ff,e7,7b,f6,ac,b8,26,6d,41,88,2d,08,95,bd,57,78,ca,0a,50,be,b7,\
"4"=hex:2f,ad,a2,e7,8a,bf,05,5e
"5"=hex:bf,e5,23,7b,b0,66,d6,fc,b8,e8,6b,a0,96,52,f7,32,80,09,8f,24,b7,b3,55,
1a,98,d1,47,16,02,43,61,1c,b9,d5,8f,2a,7b,81,b1,fb,95,22,f8,b3,2c,53,9d,ae,\
"6"=hex:bf,e5,23,7b,b0,66,d6,fc,bc,64,22,fb,7e,d3,39,3e,a3,00,33,13,c0,21,f4,
51,6c,4e,0c,96,e2,dd,ad,8a,b6,c4,05,e8,5a,bd,9a,e9,d4,1a,3d,68,9d,00,32,20
"7"=hex:8c,de,d0,aa,f8,58,db,1b,5a,48,bb,3c,bc,6d,16,45,2e,d2,e2,b6,76,7e,06,
aa,50,e4,e2,6b,fb,0f,81,d4,1c,9b,9f,a1,ff,fe,c6,ab,ef,4d,ef,8d,b9,d1,fb,43,\
"8"=hex:9d,9e,b2,b9,a7,a5,f4,ae,4d,29,c2,a3,c0,78,c4,c5,bf,0c,1a,52,a6,e7,1b,
f8,8f,ad,2f,ee,2b,2a,17,6b,07,c2,a6,58,1c,05,63,f1,ec,ed,80,b1,0f,6f,9a,62
"9"=hex:81,20,8f,ab,28,6a,52,9c
"18"=hex:70,56,26,33,e3,20,f8,ab
"10"=hex:0f,1f,9e,11,ed,e3,a4,c9
"11"=hex:81,20,8f,ab,28,6a,52,9c
"12"=hex:81,20,8f,ab,28,6a,52,9c
"13"=hex:81,20,8f,ab,28,6a,52,9c
"14"=hex:81,20,8f,ab,28,6a,52,9c
"24"=hex:81,20,8f,ab,28,6a,52,9c
"26"=hex:81,20,8f,ab,28,6a,52,9c
"27"=hex:81,20,8f,ab,28,6a,52,9c
"19"=hex:81,20,8f,ab,28,6a,52,9c
"22"=hex:81,20,8f,ab,28,6a,52,9c
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(744)
c:\program files\SUPERAntiSpyware\SASWINLO.DLL
c:\windows\system32\WININET.dll
c:\program files\Stardock\Object Desktop\WindowBlinds\wbsrv.dll
.
- - - - - - - > 'explorer.exe'(396)
c:\windows\system32\WININET.dll
c:\documents and settings\All Users\Application Data\Panda Security URL Filtering\panda_url_filtering.dll
c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\MSVCR80.dll
c:\program files\Internet Download Manager\IDMShellExt.dll
c:\program files\Panda Security\Panda Cloud Antivirus\PSUNShell.DLL
c:\program files\Panda Security\Panda Cloud Antivirus\PSNCGP.dll
c:\program files\Panda Security\Panda Cloud Antivirus\PSNCIPC.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
.
Completion time: 2011-06-25 17:38:29
ComboFix-quarantined-files.txt 2011-06-25 21:38
ComboFix2.txt 2011-05-29 12:22
.
Pre-Run: 321,078,747,136 bytes free
Post-Run: 321,199,902,720 bytes free
.
- - End Of File - - 0373E055E2458C751EEB5F331B691A04

Re: Web Pages Dnt Load26th June 2011, 1:55 am

Download CKScanner by askey127 to your desktop.

* Double click CKScanner.exe and click Search For Files
* After a very short time, when the cursor hourglass disappears, click Save List To File
* A message box will verify the file saved.
* There will now be a file called CKFiles.txt on your desktop.
* Copy and paste the contents of CKFiles.txt in your next reply.
************************************************************
P2P - I see you have P2P software installed on your machine (uTorrent). We are not here to pass judgment on file-sharing as a concept. However, we will warn you that engaging in this activity and having this kind of software installed on your machine will always make you more susceptible to re-infections. It is certainly contributing to your current situation.

Please note: Even if you are using a "safe" P2P program, it is only the program that is safe. You will be sharing files from uncertified sources, and these are often infected. The bad guys use P2P filesharing as a major conduit to spread their wares.

I would strongly recommend that you uninstall them, however that choice is up to you. If you choose to remove these programs, you can do so via Control Panel >> Add or Remove Programs.
*********************************************************
Re-running ComboFix to remove infections:

Close any open browsers.
Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
Open notepad and copy/paste the text in the quotebox below into it:

KillAll::

File::
c:\windows\system32\SETA4.tmp
c:\windows\system32\SETA8.tmp
c:\windows\system32\SETA6.tmp
c:\windows\system32\SETAA.tmp
c:\windows\D895FDE88F044B218651211FB2C05AA9.TMP
Save this as CFScript.txt, in the same location as ComboFix.exe
Referring to the picture above, drag CFScript into ComboFix.exe
When finished, it shall produce a log for you at C:\ComboFix.txt
I don't need to see the log from this action.

********************************************************
SysProt Antirootkit

Download
SysProt Antirootkit from the link below (you will find it at the bottom
of the page under attachments, or you can get it from one of the
mirrors).

http://sites.google.com/site/sysprotantirootkit/

Unzip it into a folder on your desktop.

Double click Sysprot.exe to start the program.
Click on the Log tab.
In the Write to log box select the following items.
- Process << Selected
- Kernel Modules << Selected
- SSDT << Selected
- Kernel Hooks << Selected
- IRP Hooks << NOT Selected
- Ports << NOT Selected
- Hidden Files << Selected
At the bottom of the page
- Hidden Objects Only << Selected
Click on the Create Log button on the bottom right.
After a few seconds a new window should appear.
Select Scan Root Drive. Click on the Start button.
When it is complete a new window will appear to indicate that the scan is finished.
The log will be saved automatically in the same folder Sysprot.exe was extracted to. Open the text file and copy/paste the log here.

Re: Web Pages Dnt Load26th June 2011, 3:38 am

Hey, thanx so much for your help...

CKfiles log:

CKScanner - Additional Security Risks - These are not necessarily bad
c:\documents and settings\sir $wat\desktop\games\gba games\no$gba\jackie chan adventures (cracked).gba
c:\documents and settings\sir $wat\desktop\games\gba games\no$gba\jackie chan adventures (cracked).sa1
c:\documents and settings\sir $wat\desktop\games\rockstar games\gta san andreas\crack\gta_sa.exe
c:\documents and settings\sir $wat\desktop\games\rockstar games\gta san andreas\crack\hoodlum.nfo
c:\documents and settings\sir $wat\desktop\games\rockstar games\gta san andreas\crack\how to crack gta san andreas.txt
c:\documents and settings\sir $wat\desktop\games\rockstar games\gta san andreas\data\decision\craig\crack1.ped
c:\documents and settings\sir $wat\desktop\games\stronghold crusader\gm\cracks.gm1
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\atomix.productions.-.virtual.dj.v2.0.exe
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\atomix virtual dj professional 5.0 rev5\fo-vdj5.exe
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\atomix virtual dj professional 5.0 rev5\read me.txt
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\1 cut per beat.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\16 cuts per beat.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\2 cuts per beat.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\3 cuts per beat.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\32 cuts per beat.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\4 cuts per beat.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\6 cuts per beat.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\8 cuts per beat.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\adjustable autowah.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\adjustable compressor.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\adjustable linear sawtooth flanger.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\adjustable phaser.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\autocut.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\autowah.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\autowah2.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\backspin.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\balance.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\beat break.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\beatrepeat.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\brake beat.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\brake.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\brake2.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\brakeandswirlup.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\compressor_1.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\compressor_2.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\cut.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\cut2.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\cutfx.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\cutoff_w_slider.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\devil_chorus.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\dfv flanger.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\distort.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\djcorpse_flanger.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\echo.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\expander.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\filters.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\flanger.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\flanger2.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\flanger_lite.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\flanger_lite_8x.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\flanging_chorus.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\flippin doubles.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\flippindouble.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\full_reverse.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\funny flanger v2.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\hallway echo.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\heavy echo.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\highpass.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\highpass_w_slider.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\jn-cut.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\karaoke.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\limiter.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\longflanger.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\lowpass.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\matrix v1[1].1.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\metalsweep.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\mic_ctrl v1[1].2.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\overloop.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\pan flanger.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\pan.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\panfx.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\panv2.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\pan_volumefix.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\plug_in.xml
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\psychoecho.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\quadriphonic flanger.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\repeat song.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\reverb.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\reverse.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\reverse2.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\sampler.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\scicht.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\scrambler.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\scratchroutine01.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\scribble scratch beta.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\slideloop.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\smartrepeat.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\stabs scratch beta.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\tk filter v2.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\tremolo.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\turntable brake.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\tv effect.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\vinyl.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\virtualdj slideloop.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\virtualdj varloop.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\vocal remover.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\vocals+.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\vocals.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\effects\watersweep.dll
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\music\copyright.txt
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\samples\bel amour.vdj
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\samples\copyright.txt
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\samples\coucher avec moi.vdj
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\samples\doo wap.vdj
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\samples\everybody say hou.vdj
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\samples\floorfilla.vdj
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\samples\get more free sound effects on www.a1freesoundeffects.com.url
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\samples\gym tonic.vdj
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\samples\i have a dream.vdj
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\samples\les hommes c'est pas des mecs bien.vdj
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\samples\love parade.vdj
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\samples\one more time.vdj
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\samples\pump it up.vdj
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\samples\pump up the volume.vdj
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\samples\push.vdj
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\samples\put your hands up.vdj
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\samples\satisfaction.vdj
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\samples\saxo.vdj
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\samples\siren.vdj
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\samples\storm.vdj
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\samples\syndicate of law.vdj
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\samples\this this this.vdj
c:\documents and settings\sir $wat\my documents\downloads\atomix virtual dj 2.00 + crack +effect +sample + skin by shuma t\samples\up and down.vdj
c:\documents and settings\sir $wat\my documents\downloads\cell phone skin & skin manager\mobtime cell phone manager 2006 v6 05 winall cracked-underpl.rar
c:\documents and settings\sir $wat\my documents\downloads\compressed\spss 17 crack.rar
c:\documents and settings\sir $wat\my documents\my games\pes2010 crack _helalsoft.rar
c:\documents and settings\sir $wat\my documents\my games\bigfish_games_-_magic_vines___crack__reflexive_\magicvinessetup.exe
c:\documents and settings\sir $wat\my documents\my games\bigfish_games_-_magic_vines___crack__reflexive_\crack\how to use the crack.txt
c:\program files\amnesia - the dark descent\redist\sounds\11\11_glass_crack.snt
c:\program files\amnesia - the dark descent\redist\sounds\11\11_glass_crack01.ogg
c:\program files\amnesia - the dark descent\redist\sounds\11\11_glass_crack02.ogg
c:\program files\amnesia - the dark descent\redist\sounds\11\11_glass_crack03.ogg
c:\program files\amnesia - the dark descent\redist\static_objects\castlebase\ceiling\corridor_crack.dae
c:\program files\amnesia - the dark descent\redist\static_objects\castlebase\ceiling\corridor_crack.msh
c:\program files\amnesia - the dark descent\redist\static_objects\cellarbase\special\cracked_ceiling.dae
c:\program files\amnesia - the dark descent\redist\static_objects\cellarbase\special\cracked_ceiling.msh
c:\program files\amnesia - the dark descent\redist\static_objects\decals\cracks_blue.dds
c:\program files\amnesia - the dark descent\redist\static_objects\decals\cracks_blue.mat
c:\program files\amnesia - the dark descent\redist\static_objects\decals\cracks_blue01.dae
c:\program files\amnesia - the dark descent\redist\static_objects\decals\cracks_blue01.msh
c:\program files\amnesia - the dark descent\redist\static_objects\decals\cracks_blue02.dae
c:\program files\amnesia - the dark descent\redist\static_objects\decals\cracks_blue02.msh
c:\program files\amnesia - the dark descent\redist\static_objects\decals\cracks_blue03.dae
c:\program files\amnesia - the dark descent\redist\static_objects\decals\cracks_blue03.msh
c:\program files\amnesia - the dark descent\redist\static_objects\decals\cracks_blue04.dae
c:\program files\amnesia - the dark descent\redist\static_objects\decals\cracks_blue04.msh
c:\program files\amnesia - the dark descent\redist\static_objects\decals\cracks_blue_back.dds
c:\program files\amnesia - the dark descent\redist\static_objects\decals\cracks_blue_back.mat
c:\program files\amnesia - the dark descent\redist\static_objects\decals\cracks_brown.dds
c:\program files\amnesia - the dark descent\redist\static_objects\decals\cracks_brown.mat
c:\program files\amnesia - the dark descent\redist\static_objects\decals\cracks_brown01.dae
c:\program files\amnesia - the dark descent\redist\static_objects\decals\cracks_brown01.msh
c:\program files\amnesia - the dark descent\redist\static_objects\decals\cracks_brown02.dae
c:\program files\amnesia - the dark descent\redist\static_objects\decals\cracks_brown02.msh
c:\program files\amnesia - the dark descent\redist\static_objects\decals\cracks_brown03.dae
c:\program files\amnesia - the dark descent\redist\static_objects\decals\cracks_brown03.msh
c:\program files\amnesia - the dark descent\redist\static_objects\decals\cracks_brown04.dae
c:\program files\amnesia - the dark descent\redist\static_objects\decals\cracks_brown04.msh
c:\program files\amnesia - the dark descent\redist\static_objects\decals\cracks_brown_back.dds
c:\program files\amnesia - the dark descent\redist\static_objects\decals\cracks_brown_back.mat
c:\program files\amnesia - the dark descent\redist\static_objects\decals\cracks_nrm.dds
c:\program files\amnesia - the dark descent\redist\static_objects\decals\cracks_spec.dds
c:\program files\amnesia - the dark descent\redist\static_objects\dungeonbase\ceiling\default_cracked.dae
c:\program files\amnesia - the dark descent\redist\static_objects\dungeonbase\ceiling\default_cracked.msh
c:\program files\amnesia - the dark descent\redist\static_objects\dungeonbase\wall\corridor_graves_cracked.dae
c:\program files\amnesia - the dark descent\redist\static_objects\dungeonbase\wall\corridor_graves_cracked.msh
c:\program files\paradox interactive\magicka\content\levels\textures\surface\nature\ground\dirt01_cracked_0.xnb
c:\program files\paradox interactive\magicka\content\levels\textures\surface\nature\ground\dirt01_cracked_nrm_0.xnb
c:\program files\paradox interactive\magicka\content\levels\textures\surface\structure\stone\wall_cracked01_0.xnb
c:\program files\paradox interactive\magicka\content\levels\textures\surface\structure\stone\wall_cracked_nrm_0.xnb
c:\program files\xilisoft\video converter ultimate\script\crack.js
c:\windows\system32\allow-it-keygen-part-snd.cmd
scanner sequence 3.ZZ.11.XWNAIP
----- EOF -----

Plz note, when i click create log an error pops up and says the drive is not ready, it door may be open. But its not...
What cn be the problem?

Re: Web Pages Dnt Load26th June 2011, 3:42 am

got it to work...

SysProt AntiRootkit v1.0.1.0
by swatkat

******************************************************************************************
******************************************************************************************

No Hidden Processes found

******************************************************************************************
******************************************************************************************
Kernel Modules:
Module Name: spwe.sys
Service Name: ---
Module Base: B9EB4000
Module End: B9FA7000
Hidden: Yes

Module Name: Combo-Fix.sys
Service Name: ---
Module Base: BA108000
Module End: BA117000
Hidden: Yes

Module Name: \SystemRoot\System32\Drivers\af3bxpuc.SYS
Service Name: ---
Module Base: B8F4D000
Module End: B8F86000
Hidden: Yes

Module Name: \??\C:\ComboFix\catchme.sys
Service Name: catchme
Module Base: BA440000
Module End: BA448000
Hidden: Yes

Module Name: \??\C:\WINDOWS\system32\Drivers\PROCEXP113.SYS
Service Name: ---
Module Base: BA646000
Module End: BA648000
Hidden: Yes

******************************************************************************************
******************************************************************************************
SSDT:
Function Name: ZwCreateKey
Address: B9EB50E0
Driver Base: B9EB4000
Driver End: B9FA7000
Driver Name: spwe.sys

Function Name: ZwEnumerateKey
Address: B9ECDDA4
Driver Base: B9EB4000
Driver End: B9FA7000
Driver Name: spwe.sys

Function Name: ZwEnumerateValueKey
Address: B9ECE132
Driver Base: B9EB4000
Driver End: B9FA7000
Driver Name: spwe.sys

Function Name: ZwOpenKey
Address: B9EB50C0
Driver Base: B9EB4000
Driver End: B9FA7000
Driver Name: spwe.sys

Function Name: ZwQueryKey
Address: B9ECE20A
Driver Base: B9EB4000
Driver End: B9FA7000
Driver Name: spwe.sys

Function Name: ZwQueryValueKey
Address: B9ECE08A
Driver Base: B9EB4000
Driver End: B9FA7000
Driver Name: spwe.sys

Function Name: ZwSetValueKey
Address: B9ECE29C
Driver Base: B9EB4000
Driver End: B9FA7000
Driver Name: spwe.sys

Function Name: ZwTerminateProcess
Address: A76A8416
Driver Base: A76A2000
Driver End: A76BC000
Driver Name: \SystemRoot\system32\DRIVERS\PSINProc.sys

******************************************************************************************
******************************************************************************************
No Kernel Hooks found

******************************************************************************************
******************************************************************************************

Re: Web Pages Dnt Load26th June 2011, 7:44 pm

Plz note, when i click create log an error pops up and says the drive is not ready, it door may be open. But its not...
What cn be the problem?

It's really hard to determine without having hands on the computer.
Is there any change in the problem with loading pages?

Please download SystemLook from one of the links below and save it to your desktop.

Link # 1
Link # 2

Temporarily disable your antivirus and any antispyware real time protection before performing a scan. Click this link to see a list of security programs that should be disabled and how to disable them.

Double-click SystemLook.exe to run it.

Copy the contents of the following codebox into the main textfield.

Code:

:filefind
af3bxpuc.SYS

Click the Look button to start the scan.

Note: The scan may take some time so please just let it do its work and be patient (or do something else unrelated to the computer).

When finished, a notepad window will open with the results of the scan. Please post the log. The log can also be found on your desktop entitled SystemLook.txt

Re: Web Pages Dnt Load27th June 2011, 9:49 am

Hi, it hasnt completely stopped, but it has eased up alot.

SystemLook 04.09.10 by jpshortstuff
Log created at 05:34 on 27/06/2011 by Sir $wat
Administrator - Elevation successful

========== filefind ==========

Searching for "af3bxpuc.SYS"
No files found.

-= EOF =-

Re: Web Pages Dnt Load27th June 2011, 6:53 pm

I'd like to scan your machine with ESET OnlineScan

•Hold down Control and click on the following link to open ESET OnlineScan in a new window.
ESET OnlineScan
•Click the Web Pages Dnt Load EsetOnline

button.
•For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

Click on to download the ESET Smart Installer. Save it to your desktop.
Double click on the icon on your desktop.

•Check

•Click the Web Pages Dnt Load EsetStart

button.
•Accept any security warnings from your browser.
•Check Web Pages Dnt Load EsetScanArchives

•Push the Start button.
•ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
•When the scan completes, push Web Pages Dnt Load EsetListThreats

•Push

, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
•Push the Web Pages Dnt Load EsetBack

button.
•Push Web Pages Dnt Load EsetFinish

A log file will be saved here: C:\Program Files\ESET\ESET Online Scanner\log.txt

Re: Web Pages Dnt Load1st July 2011, 12:01 am

ESETSmartInstaller@High as downloader log:
Can not read file from internet.ESETSmartInstaller@High as downloader log:
Can not read file from internet.Can not read file from internet.ESETSmartInstaller@High as downloader log:
Can not read file from internet.Can not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
all ok
ESETSmartInstaller@High as downloader log:
Can not read file from internet.ESETSmartInstaller@High as downloader log:
Can not read file from internet.Can not read file from internet.ESETSmartInstaller@High as downloader log:
Can not read file from internet.Can not read file from internet.ESETSmartInstaller@High as downloader log:
Can not read file from internet.ESETSmartInstaller@High as downloader log:
Can not read file from internet.Can not read file from internet.ESETSmartInstaller@High as downloader log:
Can not read file from internet.Can not read file from internet.ESETSmartInstaller@High as downloader log:
Can not read file from internet.Can not read file from internet.ESETSmartInstaller@High as downloader log:
Can not read file from internet.Can not read file from internet.ESETSmartInstaller@High as downloader log:
Can not read file from internet.Can not read file from internet.ESETSmartInstaller@High as downloader log:
Can not read file from internet.Can not read file from internet.ESETSmartInstaller@High as downloader log:
Can not read file from internet.esets_scanner_update returned -1 esets_gle=1
esets_scanner_update returned -1 esets_gle=1
esets_scanner_update returned -1 esets_gle=1
ESETSmartInstaller@High as downloader log:
all ok
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6427
# api_version=3.0.2
# EOSSerial=599594a4cdbe924fbf4ca7253f8ee949
# end=finished
# remove_checked=true
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2011-06-30 10:30:57
# local_time=2011-06-30 06:30:57 (-0500, Eastern Daylight Time)
# country="United States"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=512 16777215 100 0 21059329 21059329 0 0
# compatibility_mode=1032 16777174 0 1 1866353 1866353 0 0
# compatibility_mode=1538 16774102 20 3 0 137071458 0 0
# compatibility_mode=8192 67108863 100 0 0 0 0 0
# scanned=152409
# found=3
# cleaned=3
# scan_time=11511
C:\Documents and Settings\Sir $wat\My Documents\Downloads\Nero_9\Nero-9.0.9.4c_trial.exe Win32/Toolbar.AskSBar application (deleted - quarantined) 00000000000000000000000000000000 C
C:\System Volume Information\_restore{6EB7FF53-2F36-4BEC-B7FA-AA3C1AC8CF97}\RP375\A0133186.msi multiple threats (deleted - quarantined) 00000000000000000000000000000000 C
C:\WINDOWS\Installer\2d4fed.msi multiple threats (deleted - quarantined) 00000000000000000000000000000000 C

Re: Web Pages Dnt Load1st July 2011, 12:50 am

That looks good. I need to check something with my colleagues.

Re: Web Pages Dnt Load1st July 2011, 6:26 pm

Ok. If there are no other issues, let's do some cleanup.

To uninstall ComboFix

Click the Start button. Click Run. For Vista: type in Run in the Start search, and click on Run in the results pane.
In the field, type in ComboFix /uninstall

Web Pages Dnt Load Combofix_uninstall_image

(Note: Make sure there's a space between the word ComboFix and the forward-slash.)

Then, press Enter, or click OK.
This will uninstall ComboFix, delete its folders and files, hides System files and folders, and resets System Restore.

**********************************************
Clean out your temporary internet files and temp files.

Download TFC by OldTimer to your desktop.

Double-click TFC.exe to run it.

Note: If you are running on Vista, right-click on the file and choose Run As Administrator

TFC will close all programs when run, so make sure you have saved all your work before you begin.

* Click the Start button to begin the cleaning process.
* Depending on how often you clean temp files, execution time should be anywhere from a few seconds to a minute or two.
* Please let TFC run uninterrupted until it is finished.

Once TFC is finished it should restart your computer. If it does not, please manually restart the computer yourself to ensure a complete cleaning.
********************************************
Looking over your log it seems you don't have any evidence of a third party firewall.

Firewalls protect against hackers and malicious intruders. You need to download a free firewall from one of these reliable vendors.

Remember only install ONE firewall

1) Comodo Personal Firewall (Uncheck during installation "Install Comodo SafeSurf..", Make Comodo my default search provider" and "Make Comodo Search my homepage" and uncheck any HopSurf and/or Ask.com options if you choose this one)
2) Online Armor
3) Agnitum Outpost
4) PC Tools Firewall Plus

If you are using the built-in Windows XP firewall, it is not recommended as it does not block outgoing connections. This means that any malware on your computer is free to "phone home" for more instructions. Simply put, Windows XP contains a mediocre firewall. This firewall is NO replacement for a dedicated software solution. Remember to use only one firewall at the same time.
**********************************************
Use the Secunia Software Inspector to check for out of date software.

•Click Start Now

•Check the box next to Enable thorough system inspection.

•Click Start

•Allow the scan to finish and scroll down to see if any updates are needed.
•Update anything listed.
.
----------

Go to Microsoft Windows Update and get all critical updates.

----------

I suggest using WOT - Web of Trust. WOT is a free Internet security addon for your browser. It will keep you safe from online scams, identity theft, spyware, spam, viruses and unreliable shopping sites. WOT warns you before you interact with a risky website. It's easy and it's free.

SpywareBlaster- Secure your Internet Explorer to make it harder for ActiveX programs to run on your computer. Also stop certain cookies from being added to your computer when running Mozilla based browsers like Firefox.
* Using SpywareBlaster to protect your computer from Spyware and Malware
* If you don't know what ActiveX controls are, see here

Protect yourself against spyware using the Immunize feature in Spybot - Search & Destroy. Guide: Use Spybot's Immunize Feature to prevent spyware infection in real-time. Note: To ensure you have the latest Immunizations always update Spybot - Search & Destroy before Immunizing. Spybot - Search & Destroy FAQ

Check out Keeping Yourself Safe On The Web for tips and free tools to help keep you safe in the future.

Also see Slow Computer? It may not be Malware for free cleaning/maintenance tools to help keep your computer running smoothly.
Safe Surfing!

Web Pages Dnt Load

descriptionWeb Pages Dnt Load23rd June 2011, 9:49 pm

descriptionRe: Web Pages Dnt Load24th June 2011, 1:20 am

descriptionRe: Web Pages Dnt Load25th June 2011, 4:35 am

descriptionRe: Web Pages Dnt Load25th June 2011, 4:36 am

descriptionRe: Web Pages Dnt Load25th June 2011, 7:25 pm

descriptionRe: Web Pages Dnt Load26th June 2011, 12:19 am

descriptionRe: Web Pages Dnt Load26th June 2011, 1:55 am

descriptionRe: Web Pages Dnt Load26th June 2011, 3:38 am

descriptionRe: Web Pages Dnt Load26th June 2011, 3:42 am

descriptionRe: Web Pages Dnt Load26th June 2011, 7:44 pm

descriptionRe: Web Pages Dnt Load27th June 2011, 9:49 am

descriptionRe: Web Pages Dnt Load27th June 2011, 6:53 pm

descriptionRe: Web Pages Dnt Load1st July 2011, 12:01 am

descriptionRe: Web Pages Dnt Load1st July 2011, 12:50 am

descriptionRe: Web Pages Dnt Load1st July 2011, 6:26 pm

descriptionRe: Web Pages Dnt Load