BleepingComputer.com: ComboFix Recommendations

Just ran ComboFix and 2 things I noticed.

1) I always save it with an "alternate name" as some viruses don't let it run. When it updated itself it tried to run ComboFix.exe which wasn't there of course because of the naming convention. Do some check to see what it renamed the file to.

2) The tendency for it to reboot to fix some nasties would be nice if it auto rebooted back into safemode or safemode with networking instead of normal mode. Maybe temporarily mod the boot.ini for a /safeboot. Sometimes going back into normal mode load crap back on the system that you just got done removing, if you haven't got your system completely safe.

I love ComboFix as a tool and I back it 100% so don't take offense to these suggestions. They are only to help speed the removal of the nasties we all hate.
Anyone who helps bring these virus's to their knees deserves a pat on the back in my opinion.
Keep up the good work.

I realize you are only making suggestions but please note the message text in blue at the top of this forum.

No one should be using ComboFix unless specifically instructed to do so by a Malware Removal Expert who can interpret the logs. It is a powerful tool intended by its creator to be "used under the guidance and supervision of an expert. Using this tool incorrectly could lead to disastrous problems with your operating system such as preventing it from ever starting again. Please read the pinned topic ComboFix usage, Questions, Help? - Look here.

Modifying the boot.ini to force booting into safe mode when there is malware on your system could have disastrous results and render your computer unbootable. Some types of malware can delete or alter the safeboot key in the registry resulting in the inability to reboot fully into safe mode or back to normal mode. When this occurs, you may be locked in a continuous reboot loop afterwards where you cannot get back to into the system to undo your changes.

I am sorry you feel that way but i have been in this business for over 15 years now so i think i am well qualified.
as i said i use it as a tool.
you use tools when you know what you are doing...you use toys when you don't.

Although your suggestions might be useful for someone with 15 years of business experience ( so you say ), most of our members here do not have that benefit meuchel. The way Bleeping Computer utilizes ComboFix as a tool, as you so aptly state, is the way the developer wants it to be utilized. The BC staff do not recommend the use of ComboFix outside of the Malware Removal forum and only Malware removal team members that supervise, offer advice on how to use it. Our feelings do not enter into it in any way. This topic is now closed.