cannot erradicate this malware - help!

[pilihp]

Documents & settings / local settings / TEMP is being inundated with files of the type 67exmodule32d.3.exe.
AVG detects these as "Trojan horse proxy.sfz or.ful" and will delete on demand; however, the .exe file then appears in the 'processes' tab of Windows Task manager and consumes vast amounts of memory whilst packet movement on the internet connection increases drastically. The original .exe file is also detected by Bit Defender and describes it as "Generic malware.SMYVdg.CFD645D5".

If the internet connection is closed, no .exe files appear anywhere.
Niether Spybot nor Ad Aware recognise anything wrong.
I am behind a firewall that is part of a router. Win XP firewall is also ON.

What can I do? This situation is intolerable!

Philip

 

[satrow]

Post a HijackThis log please?

http://www.merijn.org/index.php

or

http://216.180.233.162/~merijn/

 

[pilihp]

satrow, please forgive my ignorance but where do i get the log from? I have seen other people's long lists of gobledigook but never understood their origin.

 

[satrow]

When you start the program (which you need to extract to it's own folder, on the desktop will be fine), use the scan and save a logfile option - it'll be self evident when you start it . If it doesn't run or closes in a second or two, try renaming the HijackThis file to HJT and then run it.

 

[Diancecht]

Maybe this helps:

http://www.bleepingcomputer.com/forums/lofiversion/index.php/t51083.html

Cheers,
Dian

 

[pilihp]

satrow, thanks; all understood. Have sent logfile to a forum so will see what happens.

Dian, thanks also. Seems the same type of problem.

Philip