Try combofix and see if that helps
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
Remember to close all programs (even your antivirus) before letting it run a scan.
Then post back a log from combofix
OK, I scanned, and these were my results for Rootrepeal.
ROOTREPEAL (c) AD, 2007-2009
Scan Start Time: 2009/09/07 20:16
Program Version: Version 1.3.5.0
Windows Version: Windows XP SP3
Drivers
Name: dump_atapi.sys
Image Path: C:\WINDOWS\System32\Drivers\dump_atapi.sys
Address: 0xF5159000 Size: 98304 File Visible: No Signed: -
Status: -
Name: dump_WMILIB.SYS
Image Path: C:\WINDOWS\System32\Drivers\dump_WMILIB.SYS
Address: 0xF7C23000 Size: 8192 File Visible: No Signed: -
Status: -
Name: rootrepeal.sys
Image Path: C:\WINDOWS\system32\drivers\rootrepeal.sys
Address: 0xF0681000 Size: 49152 File Visible: No Signed: -
Status: -
Hidden/Locked Files
Path: C:\hiberfil.sys
Status: Locked to the Windows API!
Path: C:\Documents and Settings\HP_Owner\Cookies\hp_owner@blatsnarf[3].txt
Status: Could not get file information (Error 0xc0000008)
Path: c:\documents and settings\hp_owner\local settings\temp~df93e6.tmp
Status: Allocation size mismatch (API: 24576, Raw: 0)
Path: c:\documents and settings\hp_owner\local settings\temp~dfc65a.tmp
Status: Allocation size mismatch (API: 16384, Raw: 0)
SSDT
#: 025 Function Name: NtClose
Status: Hooked by “C:\WINDOWS\System32\Drivers\aswSP.SYS” at address 0xf550a6b8
#: 041 Function Name: NtCreateKey
Status: Hooked by “C:\WINDOWS\System32\Drivers\aswSP.SYS” at address 0xf550a574
#: 065 Function Name: NtDeleteValueKey
Status: Hooked by “C:\WINDOWS\System32\Drivers\aswSP.SYS” at address 0xf550aa52
#: 068 Function Name: NtDuplicateObject
Status: Hooked by “C:\WINDOWS\System32\Drivers\aswSP.SYS” at address 0xf550a14c
#: 119 Function Name: NtOpenKey
Status: Hooked by “C:\WINDOWS\System32\Drivers\aswSP.SYS” at address 0xf550a64e
#: 122 Function Name: NtOpenProcess
Status: Hooked by “C:\WINDOWS\System32\Drivers\aswSP.SYS” at address 0xf550a08c
#: 128 Function Name: NtOpenThread
Status: Hooked by “C:\WINDOWS\System32\Drivers\aswSP.SYS” at address 0xf550a0f0
#: 177 Function Name: NtQueryValueKey
Status: Hooked by “C:\WINDOWS\System32\Drivers\aswSP.SYS” at address 0xf550a76e
#: 204 Function Name: NtRestoreKey
Status: Hooked by “C:\WINDOWS\System32\Drivers\aswSP.SYS” at address 0xf550a72e
#: 247 Function Name: NtSetValueKey
Status: Hooked by “C:\WINDOWS\System32\Drivers\aswSP.SYS” at address 0xf550a8ae
==EOF==