I think we are through.
Except for updating Java again (and some cleanup).
Java was just updated today to version 7, Update 11. It fixes the vulnerability that was being exploited that was in the news, and it changes the default security level in the Java Control Panel to High (you did that manually earlier).
So you need to download the new version, go to Control Panel, Add or Remove Programs, and uninstall Java, then install the new version that you just downloaded. If it already automatically updated, you can skip this. To check, go to Control Panel > Add or Remove Programs, double-click on Java, and when the Java Control Panel opens, in the General tab click the "About" button, and if it says Version 7 Update 10, you need to update, if it says Version 7 Update 11, then it's current and you can skip updating it.
Go to start > run and copy and paste the next command in the field:
Make sure there's a space between Combofix and /
Then hit enter.
This will uninstall Combofix, implement some cleanup procedures, and reset System Restore points.
Next, you need to delete the utilities you downloaded and their logs:
Sophos Virus Removal Tool.exe (you can keep the scanner installed if you want to run it later, it will update before it scans)
mbar-1.01.0.1016.zip (Malwarebytes Anti-Rootkit, I would also uninstall it now, it's a beta version, not a final release) Note: your file name may have been different if it was updated between now and when you downloaded it.
The .reg files that you downloaded:
And the .bat files that you created:
Whew! That was a few utilities.
You may want to try a better firewall than the one that comes with Windows XP. You might consider Comodo Firewall Free.
To help keep malware off your system:
- Keep Windows updated at Windows Update or Microsoft Update.
- Keep your other applications updated, there are vulnerabilities that rely on exploits through other programs like Java, Microsoft Office, Adobe Reader, Flash, and others.
- Run a program like Secunia Online Software Inspector or FileHippo Update Checker to see what programs need to be updated.
- Be careful with flash drives, as they can spread infections. See this post on USB/flash drive safety.
- Stay away from P2P software; even with a clean P2P program, their networks are often riddled with malware.
- Don't click on attachments or links in e-mail, and read your e-mail in text-only mode for the highest safety.
- Don't click on links received in instant message programs.
- In place of Internet Explorer, browse with Firefox with the NoScript and AdBlock Plus add-ons.
- A HOSTS file will prevent Internet Explorer from communicating with sites known to be associated with adware or spyware. A good regularly updated HOST file is MVPS HOSTS File, available at http://www.mvps.org/...p2002/hosts.htm
- A free non-resident utility to prevent the installation of ActiveX-based malware is JavaCool's SpywareBlaster. For real-time protection, there is SpywareGuard. Both are available at http://www.javacools...m/products.html
- I recommend reading Tony Klein's article So How did I get Infected in the First Place? at http://www.spywarein...showtopic=60955
Does your problem appear resolved?
And remember, you need to always run an antivirus program and a firewall, or your system isn't protected.