hijackthis log.

Please follow the steps below:

- Run ALL the steps in this Sticky thread READ ME FIRST BEFORE ASKING FOR SUPPORT: Basic Spyware, Trojan And Virus RemovalMake sure you check version numbers and get all updates.

- Very Important: Make sure you tell us the results from running the tutorial...was anything found? Were you unable to complete any of the scans?...Were you unable to download any of the tools?...Did you do the on-line scans as suggested? etc.


After doing ALL of the above you still have a problem:

- Download HijackThis 1.99.1

- Unzip the hijackthis.exe file to a folder you create named C:\Program Files\HJT

- Do NOT run Hijack This from the Desktop, a temp folder, or a sub-folder of C:\Documents and Settings, or choose to run it directly from the downloaded ZIP file.

- Before running HijackThis: You must close each of the following:your web browser, e-mail client, instant messenger, and programs like notepad, wordpad, MS Word etc. And any other unnecessary running programs.

- Run HijackThis and save your log file.

- Post your log as an ATTACHMENT to your next message. (Do NOT copy/paste the log into your post).

 

Heres some you can remove from safe mode anyhow to hopefully get it right the first time. Your main problem jumped right out at me dealing with SYSUPUDT.EXE and DCF5678.EXE

C:\WINDOWS\SYSUPUDT.EXE
C:\WINDOWS\DCF5678.EXE
O2 - BHO: CIEObject Object - {5D647E9C-6B37-4636-9A78-DADB1EB93BDF} - C:\WINDOWS\SYSTEM\CTXPOPUP.DLL
O4 - HKLM\..\Run: [AdUpdater] C:\WINDOWS\SYSUPUDT.EXE
O4 - HKLM\..\Run: [AdPopup] C:\WINDOWS\DCF5678.EXE
O9 - Extra button: Freeserve - {4C7B9CA0-57A8-11D6-9373-D96654A1E879} - http://www.freeserve.net/ (file missing) (HKCU)
O15 - Trusted Zone: *.boxsearch.net
O15 - Trusted Zone: *.brdatahost.com
O16 - DPF: {17D72920-7A15-11D4-921E-0080C8DA7A5E} (AimSp32 Class) - http://makeover.ivillage.co.uk/save/makeover.cab