Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Combofix Log - No Virus Names Listed


  • Please log in to reply
5 replies to this topic

#1 alexhern

alexhern

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:01:43 PM

Posted 27 June 2013 - 03:16 PM

Combofix is a great program to remove a variety of malware, but the scan process and log does not show the names of the viruses it is removing.

 

How do I add a switch or option to combofix or perhaps alter one of the files it uses so that I can see the names of the malware it found and will be removing.


Edited by Orange Blossom, 27 June 2013 - 03:26 PM.
Moved to general AV forum. ~ OB


BC AdBot (Login to Remove)

 


#2 Budapest

Budapest

    Bleepin' Cynic


  • Moderator
  • 23,579 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:06:43 AM

Posted 27 June 2013 - 04:12 PM

Sorry but discussions pertaining to how Combofx works, what it can or cannot do, what the log results mean, any future plans, updates, etc is not available to the public in order to safeguard and protect the integrity of the tool from malware writers. As such, the developer does not want his tool discussed outside of private forums and therefore we cannot answer specific questions.

More info here: http://www.bleepingcomputer.com/forums/t/273628/combofix-usage-questions-help-look-here/
The power of accurate observation is commonly called cynicism by those who haven't got it.

—George Bernard Shaw

#3 Grinler

Grinler

    Lawrence Abrams


  • Admin
  • 43,567 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:04:43 PM

Posted 27 June 2013 - 07:16 PM

Alexhem, I am not sure I fully understand your question. ComboFix will show a list of all filenames that it removes.

#4 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:06:43 AM

Posted 27 June 2013 - 08:17 PM



Alexhem, I am not sure I fully understand your question. ComboFix will show a list of all filenames that it removes.

Just to add a bit to what the boss has already stated.

You also need to know how to read the logs, and from there work out the How / When / Why / and Where a problem is located.

 

This is a years worth of training, and not just running a blind scan whenever you feel like "playing" -

Malwarebytes' Anti-Malware Free (aka MBAM) and SUPERAntiSpyware Free (aka SAS) are designed for these random scans.

Only my 2 cents worth (+30% for inflation) -

 

Thank You -



#5 alexhern

alexhern
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:01:43 PM

Posted 27 June 2013 - 09:06 PM

Sorry but discussions pertaining to how Combofx works, what it can or cannot do, what the log results mean, any future plans, updates, etc is not available to the public in order to safeguard and protect the integrity of the tool from malware writers. As such, the developer does not want his tool discussed outside of private forums and therefore we cannot answer specific questions.

More info here: http://www.bleepingcomputer.com/forums/t/273628/combofix-usage-questions-help-look-here/

 

Yes, I agree, I will cease and desist talking about the workings of combofix.

 

 

 



Alexhem, I am not sure I fully understand your question. ComboFix will show a list of all filenames that it removes.

Just to add a bit to what the boss has already stated.

You also need to know how to read the logs, and from there work out the How / When / Why / and Where a problem is located.

 

This is a years worth of training, and not just running a blind scan whenever you feel like "playing" -

Malwarebytes' Anti-Malware Free (aka MBAM) and SUPERAntiSpyware Free (aka SAS) are designed for these random scans.

Only my 2 cents worth (+30% for inflation) -

 

Thank You -

 

 

Yes, the log does tell me which files and/or folders were deleted.  But it doesn't show the name of the malware it deleted, for example, a file called temp.exe was deleted, but the report will not say that temp.exe was deleted because it found the storm worm (Trojan-Downloader.Win32.Small.dam) inside it.  I think answering this from anyone at this point violates the first rule of talking about combofix, so I'll stop.  But that's what I meant about naming the malware.

 

Alright, break-it-up, nothing to see here, move along.


Edited by alexhern, 27 June 2013 - 09:06 PM.


#6 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,388 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:04:43 PM

Posted 28 June 2013 - 07:34 AM

I can tell you this...each security vendor uses their own naming conventions to identify various types of malware. Names with Generic or Patched are a very broad category and differ widely from vendor to vendor.Thus, for sUBs, the developer of ComboFix, it would be almost impossible to pick which vendor's name to use and attempting to try would be a waste of his valuable time.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users