Re TR4A's post in the Smiley Tracey thread, watch for file KDLL.DLL in CWindows\System. It could be logging any passwords you type in. The file is not a Windows file but appears when the first BadTrans virus is downloaded.

Re my post above, yes McAfee did manage to delete the infected Kernel32.dll and it was immediately recreated by Windows so all is well.