you may also want to remove the RealTek monitoring app;
Realtek -
C:\WINDOWS\ALCXMNTR.EXE
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE Quote:
|
"Realtek AC97 Audio - Event Monitor. "Sypware" file used surreptitiously monitor one's actions. It is not a sinister one, like remote control programs, but it is being used by Realtek to gather data about customers"
|
and also the RealPlayer nonsense;
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\ACE Mega CoDecS Pack\SystemS\RealMedia\Update_OB\realsched.exe" -osboot
still using your Winmodem for anything ? (evcen though I have Cable internet, I still use my USR 3Com PCI winmodem for Faxing and Answering system - perhaps skype is still using your modem ?)
Perhaps HP's Deskjet is reaching out for an update
or it's an AIM / MSN messenger exploit, since those ports related are open
Have you disabled Windows Messenger Service ?
http://www.microsoft.com/windowsxp/u.../stopspam.mspx
btw - those are some funky mathematical font characters you posted - I don't know how you could search your HDD for those easily.
I never like the idea of having multiple resident AntiVirus scanners loaded and running at the same time, as you seem to have -- but using HouseCall, or Online scanners is Ok as a supplement ...Avert Stinger
http://vil.nai.com/vil/averttools.asp is another one that comes to mind (standalone app and downloable, then run)
Check your IE Internet Options | Security Tab | Trusted Zones, and make sure AOL (or others) haven't added their sites in there - e.g. free.aol.com
are you using ZA free personal version ?
and how many PC's on your LAN ?