..were those the file names or the names of the malware detected?
Running the scans you've mentioned in Safe Mode would help. In addition, while in Safe Mode, I would download and run the Stinger removal tool from the link below. It removes many of the Spybot/Sdbot variants.
http://vil.nai.com/vil/stinger/
Hope this helps.
Grif
My daughter-in-law called and had problems with her keyboard typing weird stuff...I had her (XP Home system) disable system restore and get the free java scan from trendmicro. It found many things, but two items it said it couldn't remove and clicking details/instructions for removal said that there weren't any available.
The two file names are adw_se.72688 and the other is worm_spybot.b-7
Doing a google search for the first turned up nothing, but it seems strange that the name would be so close to AdAware SE and wondering if it's a spoofed name. The other comes up with Trendmicro's page for older worms/viruses and a dcp file that can supposed remove it but only as a new definition to their own virus program.
Why wouldn't ETrust be able to detect either of these items if it's current and running in real time? Why would no other virus program list it in google?
How do I tell her to get rid of these two items before enabling her system restore again? I'm planning to tell her to run AdAware and the MS Anti-spyware program next while I wait for an answer here.
TONI
Chowhound
Comic Vine
GameFAQs
GameSpot
Giant Bomb
TechRepublic