I don`t know how you`ve managed it, but you`ve got your computer infected again.
Boot in Safe Mode.
Turn off system restore.
In Windows Explorer, turn on "Show all files and folders, including hidden and system".
Open your task manager, and click on the processes tab. End process for(if there).
winsysupd10.exe
VCClient.exe
VCMain.exe
Close task manager.
Run HJT with no other programmes open, and have HJT fix the following by placing a tick in the little box next to( if there).
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://searchbar.findthewebsiteyouneed.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar =
http://searchbar.findthewebsiteyouneed.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
http://searchbar.findthewebsiteyouneed.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://searchbar.findthewebsiteyouneed.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer presented by Comcast
O4 - HKLM\..\Run: [winsysupd] C:\windows\winsysupd10.exe
O4 - HKCU\..\Run: [CU1] C:\Program Files\Common Files\VCClient\VCClient.exe
O4 - HKCU\..\Run: [CU2] C:\Program Files\Common Files\VCClient\VCMain.exe
O9 - Extra button: ComcastHSI - {669B269B-0D4E-41FB-A3D8-FD67CA94F646} -
http://www.comcast.net/ (file missing)
O9 - Extra button: Support - {8828075D-D097-4055-AA02-2DBFA9D85E8A} -
http://www.comcastsupport.com/ (file missing)
O9 - Extra button: Help - {97809617-3937-4F84-B335-9BB05EF1A8D4} -
http://online.comcast.net/help/ (file missing)
Fix all 016 DPF entries no matter what they are.
Only fix the 017 entries below, if they don`t belong to your ISP.
O17 - HKLM\System\CCS\Services\Tcpip\..\{0635EAD9-A37D-42E3-9F9F-F399B557BBB9}: NameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{47796BDB-FB18-40AA-9A56-15A5DAE988DE}: NameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{6FB92A78-E44D-4F59-AACC-40B9E9121E4E}: NameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{9A35381D-4AAF-4E8F-A5F9-CF0E48D382B4}: NameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{0635EAD9-A37D-42E3-9F9F-F399B557BBB9}: NameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{0635EAD9-A37D-42E3-9F9F-F399B557BBB9}: NameServer = 192.168.1.1
O20 - Winlogon Notify: SMDEn - C:\WINDOWS\system32\enrsl1971.dll (file missing)
O20 - Winlogon Notify: WebCheck - C:\WINDOWS\system32\gzedit.dll (file missing)
Now click on the fix checked button.
Close HJT.
Locate, and delete the following bold files(if there).
C:\windows\
winsysupd10.exe
C:\Program Files\Common Files\
VCClient\VCClient.exe
C:\Program Files\Common Files\
VCClient\VCMain.exe
Reboot into normal mode, and turn system restore back on.
Post a fresh HJT log.
Regards Howard