Find the malicious files. To do this you will need a good process monitor, Emsisoft Hijack Free is great and it is freeware. Using hijack free look at the current processes you have running. Pay special attention to any that appear in red. Processes that are red are bad.
Look through the ports, services, autoruns and others for corresponding information. Remember that red is bad. You can try to kill the malicious processes straight away using hijack free. You may be able to kill them and delete the files and autorun entries. If you cannot then you may need to note down the file names and try it in safe mode.
When you think you have removed all the malicious files then do a final scan using Emsisoft Anti Malware in safe mode.