23 Apr 2011   #1
Sexy Devil

Windows 7 Ultimate 64bit OS (6.1,build 7601)

Whenever I connect a pendrive/flash drive to my laptop I get this error message.But the most irritating thing is that it does not go !!. CLICK, CONTINUE or TRY AGAIN it wont go. It wont go. Even after I disconnect my drive it shows error. I have to take that error window below the date to it. It came 7 time while I was typing this thread.

24 Apr 2011   #2
Commodore Pet

Windows 7 Home Premium 64 bit SP1

Can you post a picture of device manager with the Universal Serial Bus Controller section open please.
25 Apr 2011   #3
Sexy Devil

Windows 7 Ultimate 64bit OS (6.1,build 7601)

yup... here is it.....Thanks for your reply..

26 Apr 2011   #4

Windows 7 Ultimate x64

Quote   Quote: Originally Posted by Sexy Devil View Post
Whenever I connect a pendrive/flash drive to my laptop I get this error message.But the most irritating thing is that it does not go !!. CLICK, CONTINUE or TRY AGAIN it wont go. It wont go. Even after I disconnect my drive it shows error. I have to take that error window below the date to it. It came 7 time while I was typing this thread.
IDMan.exe appears to be a program called Internet download manager you should be able to stop this program starting with Windows (msconfig.exe) or even uninstall it.
If you have no such program installed I would recomend scanning for Malware
Malwarebytes' Anti-Malware Free Download and Reviews - Fileforum
29 Apr 2011   #5
Sexy Devil

Windows 7 Ultimate 64bit OS (6.1,build 7601)

I have got many virus in my laptop.. How do I move them ?? What do I do ???

Attached Thumbnails
29 Apr 2011   #6

Windows 7 Ultimate x64

I will ask one of the experts to have a look, but I think you might have to reinstall
29 Apr 2011   #7

Windows 7 Ultimate 64 bit


Please run a Full Scan using Malwarebytes' and allow it to remove what it finds. Post the resulting Malwarebytes' log here for my review.


Please download DDS by sUBs from one of the links below, save it to your Desktop (It must be in this location).
Please disable any anti-malware program that will block scripts from running before running DDS.
  • Right-Click on dds.scr And select " Run as administrator "... and a command window will appear. This is normal.
  • Shortly after two logs will appear:
    • DDS.txt
    • Attach.txt
  • A window will open instructing you save & post the logs
  • Save the logs to a convenient place such as your desktop
  • Copy the contents of both logs & post in your next reply
29 Apr 2011   #8
Sexy Devil

Windows 7 Ultimate 64bit OS (6.1,build 7601)

Hello Carolyn .. I've done as you said
1) Malwarebytes' Log
2)DDS.txt(Compressed) {I compressed it because I got a message to do it after the scan}

Thank you..

File Type: txt mbam-log-2011-04-29 (21-34-51).txt (1.7 KB, 6 views)
File Type: rar DDS.rar (3.9 KB, 1 views)
File Type: rar Attach.rar (2.5 KB, 0 views)
29 Apr 2011   #9

Windows 7 Ultimate 64 bit

Quote   Quote: Originally Posted by Sexy Devil View Post
Hello Carolyn .. I've done as you said
1) Malwarebytes' Log
2)DDS.txt(Compressed) {I compressed it because I got a message to do it after the scan}

Thank you..
Thank you, but could you do me a favor please. Copy and paste the contents of DDS.txt and Attach.txt and post that. I prefer not to download files to my computer.
29 Apr 2011   #10
Sexy Devil

Windows 7 Ultimate 64bit OS (6.1,build 7601)

DDS.txt -
DDS (Ver_11-03-05.01) - NTFS_AMD64
Run by SHARON LEONG BF at 21:36:03.48 on Fri 04/29/2011
Internet Explorer: 9.0.8112.16421
Microsoft Windows 7 Ultimate 6.1.7600.0.1252.1.1033.18.2990.1488 [GMT 5.5:30]
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
============== Running Processes ===============
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
C:\Program Files (x86)\Virtual Router\VirtualRouterService.exe
C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSub.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Sony\VAIO Smart Network\VSNClient.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files (x86)\Internet Download Manager\IDMan.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files (x86)\Virtual Router\VirtualRouterClient.exe
C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
C:\Program Files\Sony\VAIO Power Management\SPMService.exe
C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\eLitecore\Cyberoam Client for 24Online\CyberoamClient.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
C:\Users\SHARON LEONG BF\Desktop\dds.EXE
============== Pseudo HJT Report ===============
uStart Page = hxxp://
mWinlogon: Userinit=userinit.exe
BHO: IDM integration (IDMIEHlprObj Class): {0055c089-8582-441b-a0bf-17b458c2a3a8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
uRun: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
uRun: [Google Update] "C:\Users\SHARON LEONG BF\AppData\Local\Google\Update\GoogleUpdate.exe" /c
uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [ISBMgr.exe] "C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe"
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\24ONLI~1.LNK - C:\Program Files (x86)\eLitecore\Cyberoam Client for 24Online\CyberoamClient.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\BLUETO~1.LNK - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\VIRTUA~1.LNK - C:\Windows\Installer\{8DB05F7E-1F7A-4CC0-882F-375B97F04CD4}\_E6D9769DD20AF384865041.exe
uPolicies-system: DisableTaskMgr = 1 (0x1)
uPolicies-system: DisableRegistryTools = 1 (0x1)
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
IE: Download all links with IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
IE: Download with IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
IE: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://
TCP: {0D548D23-0F47-4DC8-809B-4EE335871805} =
Notify: VESWinlogon - VESWinlogon.dll
================= FIREFOX ===================
FF - ProfilePath - C:\Users\SHARON~1\AppData\Roaming\Mozilla\Firefox\Profiles\324ocki5.default\
FF - prefs.js: browser.startup.homepage - hxxp://
FF - plugin: C:\Users\SHARON LEONG BF\AppData\Local\Google\Update\\npGoogleOneClick8.dll
FF - plugin: C:\Users\SHARON LEONG BF\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
FF - plugin: C:\Users\SHARON LEONG BF\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
FF - plugin: C:\Windows\system32\Wat\npWatWeb.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
============= SERVICES / DRIVERS ===============
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\System32\drivers\vwififlt.sys [2009-7-14 59904]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2010-3-21 202752]
R2 IDMWFP;IDMWFP;C:\Windows\System32\drivers\idmwfp.sys [2011-4-5 146568]
R2 rimspci;rimspci;C:\Windows\System32\drivers\rimssne64.sys [2010-3-21 93696]
R2 risdsnpe;risdsnpe;C:\Windows\System32\drivers\risdsne64.sys [2010-3-21 75776]
R2 Virtual Router;VirtualRouterService;C:\Program Files (x86)\Virtual Router\VirtualRouterService.exe [2009-11-18 12288]
R2 VSNService;VSNService;C:\Program Files\Sony\VAIO Smart Network\VSNService.exe [2010-3-21 821760]
R3 SFEP;Sony Firmware Extension Parser;C:\Windows\System32\drivers\SFEP.sys [2010-3-21 11392]
R3 VAIO Power Management;VAIO Power Management;C:\Program Files\Sony\VAIO Power Management\SPMService.exe [2010-3-21 571248]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;C:\Windows\System32\drivers\vwifimp.sys [2009-7-14 17920]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\System32\drivers\yk62x64.sys [2010-3-21 395264]
S3 btwl2cap;Bluetooth L2CAP Service;C:\Windows\System32\drivers\btwl2cap.sys [2010-3-21 35104]
S3 UfasoftSnifDriver4;Ufasoft Snif Driver v4;C:\Program Files (x86)\Ufasoft\Snif\usft_sn4-64.sys [2011-1-31 66176]
S3 UfasoftSnifDriver6;Ufasoft Snif Filter Driver;C:\Windows\System32\drivers\usft_flt6-64.sys [2011-1-31 60336]
S3 UfasoftWiFiDriver;UfasoftWiFiDriver;C:\Program Files (x86)\Ufasoft\Snif\usft_wifi-64.sys [2011-1-31 736152]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2011-4-3 1255736]
=============== Created Last 30 ================
2011-04-27 10:21:21 737072 ----a-w- C:\PROGRA~3\Microsoft\eHome\Packages\SportsV2\SportsTemplateCore-2\Microsoft.MediaCenter.Sports.UI.dll
2011-04-27 10:20:39 4283672 ----a-w- C:\PROGRA~3\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\markup.dll
2011-04-27 10:07:48 42776 ----a-w- C:\PROGRA~3\Microsoft\eHome\Packages\MCEClientUX\dSM-2\StartResources.dll
2011-04-27 10:07:38 539968 ----a-w- C:\PROGRA~3\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2011-04-26 17:34:13 -------- d-----w- C:\Users\SHARON~1\AppData\Roaming\Malwarebytes
2011-04-26 17:34:10 38224 ----a-w- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
2011-04-26 17:34:09 -------- d-----w- C:\PROGRA~3\Malwarebytes
2011-04-26 17:34:07 24152 ----a-w- C:\Windows\System32\drivers\mbam.sys
2011-04-26 17:34:07 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2011-04-23 14:53:07 -------- d-----w- C:\Program Files (x86)\NCH Software
2011-04-22 04:13:23 737072 ----a-w- C:\PROGRA~3\Microsoft\eHome\Packages\SportsV2\SportsTemplateCore\Microsoft.MediaCenter.Sports.UI.dll
2011-04-22 04:05:57 4283672 ----a-w- C:\PROGRA~3\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\markup.dll
2011-04-22 04:02:59 42776 ----a-w- C:\PROGRA~3\Microsoft\eHome\Packages\MCEClientUX\dSM\StartResources.dll
2011-04-22 04:02:54 539968 ----a-w- C:\PROGRA~3\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2011-04-21 07:51:16 982912 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
2011-04-16 10:20:31 -------- d-----w- C:\Users\SHARON~1\AppData\Local\Google
2011-04-16 10:19:18 -------- d-----w- C:\Users\SHARON~1\AppData\Local\Deployment
2011-04-16 10:19:18 -------- d-----w- C:\Users\SHARON~1\AppData\Local\Apps
2011-04-15 10:47:45 -------- d-----w- C:\Program Files (x86)\Common Files\Sandlot Shared
2011-04-15 10:47:45 -------- d-----w- C:\PROGRA~3\Sandlot Games
2011-04-14 14:30:59 -------- d-----w- C:\Program Files (x86)\TeamViewer
2011-04-07 05:53:41 521448 ----a-w- C:\Windows\System32\deployJava1.dll
2011-04-06 15:31:30 122880 ----a-w- C:\Windows\UnGins.exe
2011-04-06 15:31:30 -------- d-----w- C:\Program Files (x86)\eLitecore
2011-04-05 18:01:01 146568 ----a-w- C:\Windows\System32\drivers\idmwfp.sys
2011-04-05 06:37:54 -------- d-----w- C:\Users\SHARON~1\AppData\Roaming\NCH Software
2011-04-04 07:55:57 -------- d-----w- C:\Users\SHARON~1\AppData\Local\Adobe
2011-04-03 16:03:36 -------- d-----w- C:\Program Files (x86)\GlideWrapper
2011-04-03 16:03:15 -------- d-----w- C:\Program Files (x86)\WinPcap
2011-04-03 05:43:10 -------- d-----w- C:\Program Files (x86)\Alcohol Soft
2011-04-03 05:40:36 503352 ----a-w- C:\Windows\System32\drivers\sptd.sys
2011-04-03 04:50:07 -------- d-----r- C:\Users\SHARON LEONG BF\Virtual Machines
2011-04-03 04:37:47 360712 ----a-w- C:\Windows\System32\drivers\vpcvmm.sys
2011-04-03 04:37:47 2264064 ----a-w- C:\Windows\System32\VPCWizard.exe
2011-04-03 04:37:46 4514816 ----a-w- C:\Windows\System32\vpc.exe
2011-04-03 04:37:46 1210368 ----a-w- C:\Windows\System32\VMWindow.exe
2011-04-03 04:22:00 66304 ----a-w- C:\Windows\System32\drivers\vpcnfltr.sys
2011-04-03 04:21:59 793600 ----a-w- C:\Windows\SysWow64\vmsal.exe
2011-04-03 04:08:48 -------- d-----w- C:\Windows\SysWow64\Wat
2011-04-03 04:08:47 -------- d-----w- C:\Windows\System32\Wat
2011-04-03 03:03:22 33792 ----a-w- C:\Windows\SysWow64\NPSExec.exe
2011-04-03 03:03:21 565760 ----a-w- C:\Windows\SysWow64\MSVCP50.DLL
2011-04-02 09:54:19 -------- d-----w- C:\Program Files (x86)\WinpkFilter
2011-04-02 09:54:16 -------- d-----w- C:\Program Files (x86)\Onlineeye
2011-04-01 16:29:35 243712 ----a-w- C:\Windows\System32\drivers\ks.sys
2011-04-01 13:52:13 463360 ----a-w- C:\Windows\System32\drivers\srv.sys
2011-04-01 13:52:13 402944 ----a-w- C:\Windows\System32\drivers\srv2.sys
2011-04-01 13:52:13 236032 ----a-w- C:\Windows\System32\srvsvc.dll
2011-04-01 13:52:13 161792 ----a-w- C:\Windows\System32\drivers\srvnet.sys
2011-04-01 13:52:12 9728 ----a-w- C:\Windows\SysWow64\sscore.dll
2011-04-01 13:37:52 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
2011-04-01 13:37:52 22016 ----a-w- C:\Windows\SysWow64\secur32.dll
2011-04-01 13:37:52 153160 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
2011-04-01 13:37:52 1446912 ----a-w- C:\Windows\System32\lsasrv.dll
2011-04-01 13:34:38 720896 ----a-w- C:\Windows\System32\odbc32.dll
2011-04-01 13:34:38 573440 ----a-w- C:\Windows\SysWow64\odbc32.dll
2011-04-01 13:34:37 987136 ----a-w- C:\Program Files (x86)\Common Files\System\ado\msado15.dll
2011-04-01 13:34:37 495616 ----a-w- C:\Program Files\Common Files\System\ado\msadox.dll
2011-04-01 13:34:37 466944 ----a-w- C:\Program Files\Common Files\System\ado\msadomd.dll
2011-04-01 13:34:37 372736 ----a-w- C:\Program Files (x86)\Common Files\System\ado\msadox.dll
2011-04-01 13:34:37 352256 ----a-w- C:\Program Files (x86)\Common Files\System\ado\msadomd.dll
2011-04-01 13:34:37 258048 ----a-w- C:\Program Files\Common Files\System\msadc\msadco.dll
2011-04-01 13:34:37 208896 ----a-w- C:\Program Files (x86)\Common Files\System\msadc\msadco.dll
2011-04-01 13:34:37 1425408 ----a-w- C:\Program Files\Common Files\System\ado\msado15.dll
2011-04-01 13:34:10 112000 ----a-w- C:\Windows\System32\consent.exe
2011-04-01 13:21:46 8424784 ----a-w- C:\PROGRA~3\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2011-04-01 13:21:42 8424784 ----a-w- C:\PROGRA~3\Microsoft\Windows Defender\Definition Updates\{F30408DC-53F0-4063-A310-113EC6399E11}\mpengine.dll
2011-04-01 13:21:42 270720 ------w- C:\Windows\System32\MpSigStub.exe
2011-04-01 11:49:19 -------- d-----w- C:\Users\SHARON~1\AppData\Local\Chris_Pietschmann_(http__
2011-04-01 11:48:08 -------- d-----w- C:\Program Files (x86)\Virtual Router
==================== Find3M ====================
2011-04-21 07:51:16 662528 ----a-w- C:\Windows\System32\XpsPrint.dll
2011-01-31 12:44:52 60336 ----a-w- C:\Windows\System32\drivers\usft_flt6-64.sys
============= FINISH: 21:36:33.91 ===============
