Posted 22 November 2008 - 12:35 AM
My company has been very successful with malware removal by using HJT, SmitFraudFix, and Combofix (as well as manually deleteing the left over goodies). Recently we have been getting a few infections that are not getting caught with these scans. Today I encountered a couple of infections (Antivirus Trigger, and Online antispyware Test) that smit and combofix just passed right over. I have also heard from my coworkers that AV2009 will actually block combofix from even running (This was possibly worked around by renaming Combofix.exe to T.exe, but i did not do it myself, i just heard it worked that way). I was able to clean up the problems today manually with HJT, killbox and a LOT of regedit work, but it took a hell of a long time. I was wondering if anyone else was having similiar problems with their cleanup attempts.
I have heard some talk recently about Unhack Me being able to get these, but the reviews i have read for it have been mixed to say it nicely. If it were my personal computer i would have no problem taking the time to manually clean out the infections, but i work onsite at customers homes and business', so the last thing they want to hear is that it will take me 3+ hours for a cleanup.
Basically im wondering if anyone has encountered these same problems, and what you did to get rid of the malware in a timely fashion. In reality, a 3+ hour job runs the customer about half+ the price of a new pc. Are there any different scans we should be using for these newer spyware progs, or would it just be sensible for time and money sake to do a backup and reinstall as soon as we see our utilities not picking the infections up?
Thanks in advance for the opinions and thoughts