I'm visiting my parents and was taking a look at my nephew's computer. He had several malware components slowing the thing down significantly. I was able to clean up most of the damage, uninstalled his Limewire and P2P components. After cleaning the machine and drive with avast! I think I have everything fixed but keep getting notification of the Win32:Agent-LTS trojan infecting a file in Docs&Settings\andy<currentuser>\local settings\temp\ac8zt2\msmdev.dll .
I instruct avast! to delete the file but it keeps coming right back and I can't (nor can avast! evidently) locate the process the keeps recreating the folder and file. If I manually delete the folder and files they still return. There's a temp file in the C:\d&s....\temp folder as well, ~DFE022.tmp that when I attempt to manually delete, it fails stating the file is in use. I rebooted in safe mode and deleted that file but it continues to come back as well. Finally, the trojan is creating other .tmp files at the rate of about one per minute named BITxx.tmp. Most of these BITxx.tmp files are 0 bytes but about every 4th or 5th one will be a 379KB file.
Suggestions?
Ernie