Besides checking the program with Pest Control and McAfee, also scan it with these programs:

Spybot Search And Destroy
[security.kolla.de...]

AdAware
[lavasoftusa.com...]

One of these could pickup something that could be causing the problems your friend is experiencing...

Background: My inbox got "bombed" with over 5000 "undeliverable" returned e-mails, which I believe were generated by some hacker using my (insecure) form-mail program as a relay for spam. I installed a new secure cgi form-mail and the e-mails stopped, but I got three or more nasties into my computer network as a side effect of this.
After re-installing Windows; using AVG and PCillin House Call I have found and cleaned (3 of) them, but have these unexplained problems still:

1. My computer goes online by itself at odd intervals and I can hear lots of traffic on the modem, but can't find any programs running with SystemInformation/ProgramsRunning or AdAware.

2. My CDWriter starts (again at odd intervals) frantic Read/Write activity and the computer is all but frozen - usually have to restart to get working again. (There is no problem if I temporarily replace it with a plain CDROM).

3. My Satellite net download card freezes whenever a download is initiated.

Does anyone know of a virus type 'infection' that behaves like this? :)

[symantec.com...]

The reason you don't see it is because it's not running a registered program or service. It's in hiding. Try booting up your computer in safe-mode and see if your computer still does wierd things. If not, then you can be sure it is a service that your computer is loading unbeknownst to you. But I'm pretty sure it is just by what you've described. Good luck.