UnHookExec.inf can be a very useful tool in winning control of a computer back from an infection. There are similar scripts available from a quick Internet search, but Symantec's is one that I have used successfully in the past.
Another (currently unsupported) solution is to use a bootable LiveCD. Booting off such a LiveCD and scanning the computer from a small Linux-based OS can be a lot easier than trying to wrestle with Windows when an infection has tied one hand behind the admin's back. (Again, there are several such tools which an Internet search will find, and experienced admins can create their own LiveCD that cleans using the Norton Security Scanner tool.)
Symantec currently has a project underway to create a supported LiveCD for Enterprise use. It is currently in development, but should be available for all customers within a relatively short time. I have made a note to update the forum when it is released.
Thanks and best regards.