fozzie, there is little information posted for public viewing in regards to this tool and many other specialized fix tools. We don't want the bad guys to see or know how everything we use works. We also don't want folks using some of these tools without the supervison of an expert to guide them along. When you are accepted into a formal training program to learn more about malware removal, there will be ample opportunity for such questions in more detail. Just be patient until then.
I second this for sure on keeping it secret....even though I am sure they are working on getting around Combofix now. Hello all, my name is Ziah and I am new here. I have been a tech for about 15 years now. I wanted to sign up to reply to this. I totally agree that we should try to keep our tools away from the bad guys. And yes, Combofix is a tool that should only be used by someone that knows what he/she is doing. Recently we have had to even rename some of the tools we use because some spyware is so good at hiding...it can even detect when a tool is looking for it, therefore disguising itself and remaining hidden. I clean many machines daily......the bad guys...just get "badder" and their spyware gets nastier. A smitfraud variant on a customer machine today completely deleted Combofix right as I ran it. I had to pull my usual tricks to get it to run and was finally able to clean the machine. Anyway, it's good to be here and hopefully I can lend some of my years of knowledge to the forum.