GENERALIZED ROUTINE FOR CLEANING UP AN INFECTED PC :
If you think you have a virus, get rid of it as soon as possible. These programs are like a cancer
and will multiply until you cannot cure the disease without killing the patient.
Much of the software I use is freely available on the internet and can be found at
minornotes.com/misc.html
Although I often don't, it's a good idea to boot to safe mode.
For XP, go to start/run, type msconfig and in BOOT.INI choose SAFEBOOT then restart.
For 98/95, restart and tap shift/F3 or shift/F5 after the bios screen.
For 2000/NT, it's shift/F8.
For Win ME, well, first get rid of ME and then start again.
The first thing I look for is a recent backup, either in SystemTools/SystemRestore
or start/run/regedit/import as a backed up registry. Rarely do I find any backups unless it's a machine
I've previously worked on. No backup is the single biggest oversight made by computer owners.
For XP, turn off SystemRestore in ControlPanel/System. Not mandatory, but there are viruses capable of using the restore file as a hiding place for it's "eggs". I believe Microsoft has addressed this issue with their endless updates, but many people choose to turn off the auto update feature in XP.
Using Startup Mechanic or start/run/msconfig/startup, disable any suspicious looking processes that launch when Windows loads. There's really nothing that HAS to start with Windows, so if you turn something off that you're not sure of it can be fixed later.
Run the utility "Hijack This". This works like msconfig but includes critical windows services and browser helper objects that can have serious effects if accidentaly disabled. This list needs to be studied very carefully unless you're familiar with it's entries.
Reboot. Empty all internet junk files with a clean utility like Ace or Norton, or by your IE browser in tools/internet options/clear history, delete cookies and delete files (check delete offline content).
Run AdAware, SpyBot, Xoft and/or any other spyware scanner you can throw at it. A reboot may be necessary but not always.
Run AVG or similar virus scanner at full sweep. Eat lunch. Drink a beer. This will take over an hour to complete.
Reboot in normal mode. For XP, start/run/msconfig/BOOT.INI/uncheck SAFEBOOT.
Re-run all spyware scanners and HijackThis. If anything is found, write down the virus filenames and go online to find a solution for those specific infections. Otherwise, run Ace or any other registry/temp file cleaner then defrag hard drive (optional).
For XP, turn on SystemRestore in ControlPanel/System and reboot one last time. If everything is okay backup your work either in SystemTools/SystemRestore
or start/run/regedit/export.