Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.


Symantec Endpoint Protection Deleted ComboFix!

  • Please log in to reply
3 replies to this topic

#1 JohnBailo


  • Members
  • 6 posts
  • Local time:04:48 AM

Posted 23 November 2014 - 12:38 PM

A couple of days ago, Symantec Endpoint Protection ran, and found Combofix.exe in my Downloads folder.

It flagged it as a virus and deleted it!


Anything I should worry about?


(This is a business computer, so I don't want to set off alarms in IT, but ComboFix has bailed me out numerous times when Symantec can't).

BC AdBot (Login to Remove)


#2 ElfBane


  • Members
  • 775 posts
  • Gender:Male
  • Location:Florida
  • Local time:05:48 AM

Posted 24 November 2014 - 04:13 AM

Combofix is a powerful program and shouldn't be used on-a-whim. If used improperly it can essentially brick your PC. Your IT dept. will then be DELIGHTED to fix the problem.

#3 technonymous


  • Members
  • 2,516 posts
  • Gender:Male
  • Local time:02:48 AM

Posted 24 November 2014 - 05:32 AM

It's a false positive I am sure. If you haven't deleted Norton's history you can go back in there and restore and exclude it from the scans. Deleting history in Norton removes Quarantined files permanently.

#4 hamluis



  • Moderator
  • 56,272 posts
  • Gender:Male
  • Location:Killeen, TX
  • Local time:04:48 AM

Posted 24 November 2014 - 11:22 AM

Is there a reason that ComboFix was installed on the system?  It's not the type of program that users should keep on a system and run routinely...it's not an AV program but, as stated, a powerful tool used by knowledgeable personnel to attempt/aid in removal of malware.



0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users