Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Symantec Endpoint Protection Deleted ComboFix!


  • Please log in to reply
3 replies to this topic

#1 JohnBailo

JohnBailo

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:07:47 AM

Posted 23 November 2014 - 12:38 PM

A couple of days ago, Symantec Endpoint Protection ran, and found Combofix.exe in my Downloads folder.

It flagged it as a virus and deleted it!

 

Anything I should worry about?

 

(This is a business computer, so I don't want to set off alarms in IT, but ComboFix has bailed me out numerous times when Symantec can't).



BC AdBot (Login to Remove)

 


#2 ElfBane

ElfBane

  • Members
  • 775 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Florida
  • Local time:08:47 AM

Posted 24 November 2014 - 04:13 AM

Combofix is a powerful program and shouldn't be used on-a-whim. If used improperly it can essentially brick your PC. Your IT dept. will then be DELIGHTED to fix the problem.



#3 technonymous

technonymous

  • Members
  • 2,474 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:47 AM

Posted 24 November 2014 - 05:32 AM

It's a false positive I am sure. If you haven't deleted Norton's history you can go back in there and restore and exclude it from the scans. Deleting history in Norton removes Quarantined files permanently.



#4 hamluis

hamluis

    Moderator


  • Moderator
  • 55,391 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:07:47 AM

Posted 24 November 2014 - 11:22 AM

Is there a reason that ComboFix was installed on the system?  It's not the type of program that users should keep on a system and run routinely...it's not an AV program but, as stated, a powerful tool used by knowledgeable personnel to attempt/aid in removal of malware.

 

Louis






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users