I have run MalwareBytes, Spybot Search and Destroy, ComboFix, Avira, RKill, McAfee VirusScan and TDSKiller. Only Avira finds some of the files as infected with the TR/crypt.zpack.gen or TR/cryptxpack.gen3 virus, but not all the corrupted exe's are found. I have to keep monitoring each running application to see if the network utilization jumps and then track down the offending process using Process Monitor. Once that process is located, I have to rename the EXE and either remove and reinstall the software or find a clean copy of that file somewhere.
I have two of the infected files in my dropbox that can be downloaded and reviewed.
I need to find a tool that can find this virus located in the EXE's and be able to clean it. Any recommendations?
Edited by Blade Zephon, 09 March 2011 - 01:56 PM.