You might need to go into your registry, and delete all signs of it that way. Sometimes, a missed dll or pf file sets to run the virus, and if a needed file is not found, it can be scripted to open a port and redownload the files. My advice to you would be to find the application, if any, in task manager and find the process tree. Or in task manager, find the process, ie. lsass.exe, and then boot into safe mode without networking, if that is how your connection is set up, or unplug your ethernet cable, do not rely on just disabling your network connection via windows. While in safe mode,delete all branches of the virus, then search the registry via the "find next" option, delete all instances of the virus, and before shutting down out of safe mode, empty recycling bin, AND delete them from the RECYCLER file in C:\\.(NOTE: you cannot just delete the main or subfolders for RECYCLER, you have to go inside and manually delete the files. ALSO, to find the RECYCLER folder, you need to go to tools, folder options, view, and then tick the show hidden files and folders, then click apply. After all that, restart back into windows to see if it is gone.
NOTE: The reference I made to lsass.exe, is this: Because of the default font of Windows, uppercase I and lowercase L look exactly the same. So the process lsass.exe(Uppercase I) is indeed a system process, on the otherhand, lsass.exe(Lowercase L) is a trojan/malware/browser pirate.
Hope this little tidbit helped you any, and good luck