At first, I used another computer and googled the issue. I came across another message board where if I used Command Prompt and typed sfc/ scannow I can see if the issue would be resolved. It worked and then I followed your instructions too just to make sure it would work.
Here are the logs:
ComboFix 11-01-03.01 - Albert 01/03/2011 11:17:06.3.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6000.0.1252.1.1033.18.1917.1055 [GMT -8:00]
Running from: c:\users\Albert\Desktop\ComboFix.exe
Command switches used :: c:\users\Albert\Desktop\CFScript.txt
.
((((((((((((((((((((((((( Files Created from 2010-12-03 to 2011-01-03 )))))))))))))))))))))))))))))))
.
2011-01-03 19:40 . 2011-01-03 19:40 -------- d-----w- c:\users\Albert\AppData\Local\temp
2011-01-03 19:40 . 2011-01-03 19:40 -------- d-----w- c:\users\TEMP\AppData\Local\temp
2011-01-03 19:40 . 2011-01-03 19:40 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-01-03 18:47 . 2011-01-03 18:47 -------- d-----w- C:\_OTM
2010-12-31 23:30 . 2010-11-10 04:33 6273872 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{7236D729-65CB-4B11-94EF-0CE907646420}\mpengine.dll
2010-12-28 23:28 . 2010-12-28 23:28 -------- d-----w- c:\program files\ESET
2010-12-21 04:42 . 2010-12-21 04:42 -------- d-----w- c:\programdata\DivX
2010-12-15 01:38 . 2010-12-20 03:55 -------- d-----w- c:\program files\Spybot - Search & Destroy
2010-12-15 01:38 . 2010-12-19 21:35 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2010-12-12 04:10 . 2010-12-12 04:10 -------- d-----w- c:\users\Albert\AppData\Roaming\Malwarebytes
2010-12-12 04:10 . 2010-11-30 01:42 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-12-12 04:10 . 2010-12-12 04:10 -------- d-----w- c:\programdata\Malwarebytes
2010-12-12 04:10 . 2010-12-12 04:21 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-12-12 04:10 . 2010-11-30 01:42 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-12-11 02:17 . 2010-12-11 02:17 478720 --sha-w- c:\windows\system32\cscutil.dll
2010-12-10 22:29 . 2010-12-10 22:29 749832 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-10-19 18:41 . 2009-10-04 17:44 222080 ------w- c:\windows\system32\MpSigStub.exe
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2006-11-02 125440]
"DellSupportCenter"="c:\program files\Dell Support Center\bin\sprtcmd.exe" [2009-05-21 206064]
"EasyLinkAdvisor"="c:\program files\Linksys EasyLink Advisor\LinksysAgent.exe" [2007-03-16 454784]
"MsnMsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2006-11-02 201728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ccApp"="c:\program files\Common Files\Symantec Shared\ccApp.exe" [2008-10-17 51048]
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Digital Line Detect.lnk - c:\program files\Digital Line Detect\DLG.exe [2007-10-4 50688]
HP Button Manager.lnk - c:\program files\HP\Button Manager\BM.exe [2010-4-9 266240]
Magic-i.lnk - c:\program files\ArcSoft\Magic-i 3\Magic-i.exe [2010-4-9 530944]
QuickSet.lnk - c:\windows\Installer\{7F0C4457-8E64-491B-8D7B-991504365D1E}\NewShortcut2_53A01CC614B04512A2E710D39BF83DC4.exe [2007-10-4 45056]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLUA"= 0 (0x0)
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~1\Google\GOOGLE~2\GoogleDesktopNetwork3.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux5"=wdmaud.drv
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-1281210887-1614234157-3903570788-1000]
"EnableNotificationsRef"=dword:00000001
R3 COH_Mon;COH_Mon;c:\windows\system32\Drivers\COH_Mon.sys [2008-07-31 23888]
R3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [2010-08-17 30192]
R3 WSDPrintDevice;WSD Print Support via UMB;c:\windows\system32\DRIVERS\WSDPrint.sys [2006-11-02 16896]
S1 IDSvix86;Symantec Intrusion Prevention Driver;c:\progra~2\Symantec\DEFINI~1\SymcData\ipsdefs\20101229.001\IDSvix86.sys [2010-09-15 287792]
S2 LiveUpdate Notice;LiveUpdate Notice;c:\program files\Common Files\Symantec Shared\ccSvcHst.exe [2008-10-17 149352]
S2 lxdq_device;lxdq_device;c:\windows\system32\lxdqcoms.exe [2008-02-27 594600]
S2 lxdqCATSCustConnectService;lxdqCATSCustConnectService;c:\windows\system32\spool\DRIVERS\W32X86\3\\lxdqserv.exe [2009-04-28 94208]
S2 npf;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2010-01-27 50704]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2010-05-27 102448]
S3 SYMNDISV;SYMNDISV;c:\windows\System32\Drivers\SYMNDISV.SYS [2009-02-19 41008]
--- Other Services/Drivers In Memory ---
*NewlyCreated* - COMHOST
.
Contents of the 'Scheduled Tasks' folder
2010-12-11 c:\windows\Tasks\Norton Internet Security - Run Full System Scan - Albert.job
- c:\progra~1\NORTON~1\NORTON~1\Navw32.exe [2008-02-07 14:05]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://ww2.cox.com/myconnection/lasvegas/home.cox
mStart Page = hxxp://www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=4071005
uInternet Settings,ProxyOverride = *.local
uInternet Settings,ProxyServer = http=127.0.0.1:50370
DPF: Garmin Communicator Plug-In - hxxps://static.garmincdn.com/gcp/ie/2.9.2.0/GarminAxControl.CAB
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.net
Rootkit scan 2011-01-03 11:40
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
c:\windows\TEMP\TMP0000005FE6B8AECC059211C5 524288 bytes
scan completed successfully
hidden files: 1
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10k_ActiveX.exe,-101"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10k_ActiveX.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
Completion time: 2011-01-03 11:47:10
ComboFix-quarantined-files.txt 2011-01-03 19:47
ComboFix2.txt 2010-12-26 07:18
ComboFix3.txt 2010-12-20 20:48
Pre-Run: 62,631,972,864 bytes free
Post-Run: 62,765,305,856 bytes free
- - End Of File - - 172CB9C735F838D0884257C0314197DF
And OTM..
All processes killed
========== PROCESSES ==========
========== FILES ==========
File/Folder C:\Users\Albert\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\51\25d09bb3-16c47571 not found.
========== COMMANDS ==========
[EMPTYTEMP]
User: Albert
->Temp folder emptied: 199205792 bytes
->Temporary Internet Files folder emptied: 6580026 bytes
->Java cache emptied: 658494 bytes
->Flash cache emptied: 483889 bytes
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Public
->Temp folder emptied: 0 bytes
User: TEMP
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 307810 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 261912 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 198.00 mb
OTM by OldTimer - Version 3.1.17.2 log created on 01032011_104743
Files moved on Reboot...
File C:\Windows\temp\JET121B.tmp not found!
Registry entries deleted on Reboot...
-Uninstalled Combofix.
-Downloaded AVAST as instructed.
-Combofix has this thing of creating a new internet explorer on my computer, like a new icon right under CF's icon. I usually delete this icon. Is that okay? Why would I have a new IE icon?
-Uninstalled Dell Support Center
-Did OTC.
-Will create a system restore point as soon as computer reboots!
What else is left of the malware removal process?
I didn't do a HijackThis yet. Do I still need it?