Please Help!!!

Welcome to Major Geeks!

I have no problem getting Spybot to scan without using the mouse. All the hotkeys are shown with underlines just like most applications. Alt-F followed by Alt-C gets a scan going.

What I first started reading your message, I immediately assumed that this was more than likely not a malware issue. And your logs do not show any malware to make me change this immediate assessment.

What are you using the below files for?

Code:

2007-12-22 12:14 . 2007-12-22 12:14 123 --a------ C:\WINDOWS\tmpcpyis.bat
2007-12-22 12:14 . 2007-12-22 12:14 122 --a------ C:\WINDOWS\tmpdelis.bat
2007-12-22 12:14 . 2007-12-22 12:14 26 --a------ C:\WINDOWS\winstart.bat

I will however give you a few things to do.


Run this Disable/Remove Windows Messenger to remove Windows Messenger. Do not confuse Windows Messenger with MSN Messenger because they are not the same. Windows Messenger is a frequent cause of popups.

Uninstall the below software:
J2SE Runtime Environment 5.0 Update 11
J2SE Runtime Environment 5.0 Update 6
Java(TM) 6 Update 3
Java(TM) SE Runtime Environment 6 Update 1
Kazaa Lite K++ v2.4.1 <-- should have been uninstalled in step 0 of the READ ME

Make sure you reboot after uninstalling the above!

After reboot, now install the current version of Sun Java from: Sun Java Runtime Environment


Run C:\MGtools\analyse.exe by double clicking on it. This is really HijackThis (select Do a system scan only) and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:

R3 - URLSearchHook: (no name) - {37D2CDBF-2AF4-44AA-8113-BD0D2DA3C2B8} - (no file)
O3 - Toolbar: (no name) - {F5735C15-1FB2-41FE-BA12-242757E69DDE} - (no file)
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_04\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

And if you don't use a remote control with your DVD player, also fix the below:
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"

After clicking Fix, exit HJT.

Copy the bold text below to notepad. Save it as fixme.reg to your desktop. Be sure the "Save as" type is set to "all files" Once you have saved it
double click it and allow it to merge with the registry.

Also delete all files in the below folder except ones from the current date (Windows will not let you delete the files from the current day).
C:\Documents and Settings\Bill\Local Settings\Temp

Now run Ccleaner!

Now run the C:\MGtools\GetLogs.bat file by double clicking on it. Then attach the new C:\MGlogs.zip file that will be created.

Make sure you tell me how things are working now!

 

Hardware.

What process? Or do you literally mean the process that is labeled System?

 

EHCI = Enhanced Host Controller Interface.

See: http://www.intel.com/technology/usb/ehcispec.htm