swen virus

I just did a scan with avast, and it found the swen virus. While it didn't delete it, I manually deleted the files it was contained in. That is, it was contained in some 3-4 year old outlook express email backups(.dbx file, marked as deleted emails). THIS was the best information I could find about the virus. I've been through that and I did see the following registry keys:

I don't think there is anything out of the ordinary with those strings, and I'm not confident enough to just delete those. Although, I have seen this virus on my computer in the past in the same folder and avast did delete it before and that is what concerns me.

I'm not seeing any side effects or symptoms of this virus, as my computer has been running very stable but I would like to know if there is any sure fire way of making sure it is not doing any harm, however slight, to my system.

 

You could always backup your registry before trying any changes.

 

Well, something is not right.

All of my keys, on a new install of XP, have a data value of "%1" %*.

Whats up with the extra windir info? That wasn't done by XP.

 

To be more specfic, I'll paste the first one:

[HKEY_CLASSES_ROOT\batfile\shell\open\command]
@="\"%1\" %*"

 

Thanks I don't have the %windir%, don't know why I didn't notice that.

I am running the trendmicro scan and it's going to take 1 1/2 hours So thanks for all your help I can take it from here.