Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

ComboFix help


  • Please log in to reply
8 replies to this topic

#1 MrFinleyJones

MrFinleyJones

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:50 AM

Posted 12 June 2015 - 05:31 PM

I was on the Blizzard website, and saw ComboFix thinking it was the run-of-the-mill anti-virus i opened the .exe

I restarted my computer and noticed a folder in the C drive, i deleted it anything else i should do?


Edited by Chris Cosgrove, 12 June 2015 - 05:47 PM.
Moved from Win 7 to 'Anti-virus and Anti-malware s/ware'


BC AdBot (Login to Remove)

 


#2 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,633 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:50 AM

Posted 12 June 2015 - 05:36 PM

Hi MrFinleyJones :)

ComboFix is a very powerful reporting and scripting tool that was developped by sUBs, used by members of the malware removal team here on BleepingComputer (and also on other forums). It is not an Antivirus program at all, nor an Antimalware. This tool can easily break a Windows installation if poorly and/or wrongly used. It can make the whole system unbootable and also delete everything present on your drives (leaving you with close to no chance of recovery) or damage your Windows installation so badly that you would be forced to reinstall it. Therefore, you should not be using ComboFix unless you are in one of the two situation listed below:
  • You have been trained in an online malware removal forum to use ComboFix;
  • You are using it under the supervision and instructions of a trained malware removal professional on BleepingComputer or another recognized malware removal forum (UNITE forums for example);
If you already ran ComboFix on your system and need assistance with the log, you will have to post a thread in the Virus, Trojan, Spyware, and Malware Removal Logs section of BleepingComputer, where a trained helper will assist you.

If you have any questions or concerns about ComboFix, quietman7 wrote a FAQ on it and you'll find all your answers in it.

ComboFix usage, Questions, Help? - Look here

Also be aware that BleepingComputer doesn't provide any advice on how to use ComboFix on your own, due to the nature of the tool and how dangerous it can be when used without supervision or proper training. To "uninstall" ComboFix, follow the instructions in the guide below:

How to use ComboFix

Follow the instructions under To uninstall ComboFix from Windows Vista or Windows 7 please perform the following steps.

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#3 MrFinleyJones

MrFinleyJones
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:50 AM

Posted 12 June 2015 - 06:01 PM

Hi MrFinleyJones :)

ComboFix is a very powerful reporting and scripting tool that was developped by sUBs, used by members of the malware removal team here on BleepingComputer (and also on other forums). It is not an Antivirus program at all, nor an Antimalware. This tool can easily break a Windows installation if poorly and/or wrongly used. It can make the whole system unbootable and also delete everything present on your drives (leaving you with close to no chance of recovery) or damage your Windows installation so badly that you would be forced to reinstall it. Therefore, you should not be using ComboFix unless you are in one of the two situation listed below:

  • You have been trained in an online malware removal forum to use ComboFix;
  • You are using it under the supervision and instructions of a trained malware removal professional on BleepingComputer or another recognized malware removal forum (UNITE forums for example);
If you already ran ComboFix on your system and need assistance with the log, you will have to post a thread in the Virus, Trojan, Spyware, and Malware Removal Logs section of BleepingComputer, where a trained helper will assist you.

If you have any questions or concerns about ComboFix, quietman7 wrote a FAQ on it and you'll find all your answers in it.

ComboFix usage, Questions, Help? - Look here

Also be aware that BleepingComputer doesn't provide any advice on how to use ComboFix on your own, due to the nature of the tool and how dangerous it can be when used without supervision or proper training. To "uninstall" ComboFix, follow the instructions in the guide below:

How to use ComboFix

Follow the instructions under To uninstall ComboFix from Windows Vista or Windows 7 please perform the following steps.

 

All I want to know if i am safe i closed it the second it opened, my internet went out for a second and it made a restore point I restarted it and deleted the folder now what?



#4 MrFinleyJones

MrFinleyJones
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:50 AM

Posted 12 June 2015 - 06:02 PM

If worse comes to worse I can always reinstall windows, although it seems to be fine?



#5 Aura

Aura

    Bleepin' Special Ops


  • Malware Response Team
  • 19,633 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:50 AM

Posted 12 June 2015 - 06:18 PM

You'll be just fine. If you restored your Internet (which ComboFix can break sometimes), you should be good. It's not malicious at all too.

unite_blue.png
Security Administrator | Sysnative Windows Update Senior Analyst | Malware Hunter | @SecurityAura
My timezone UTC-05:00 (East. Coast). If I didn't reply to you within 48 hours, please send me a PM.


#6 MrFinleyJones

MrFinleyJones
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:50 AM

Posted 12 June 2015 - 06:19 PM

Today I downloaded ComboFix I thought it was just a standard Anti-Virus and just downloaded it. I opened it up thinking no biggie.
 
I closed it after a few seconds. I failed to read the description a few things happened.
 
The first thing that happened is the internet shut off. Then a system restore point was made then there a folder was made in my C drive called ComboFix
 
I restarted the PC everything worked fine I deleted the folder. Internet was working fine and the System Restore point is waiting to be removed.
 
Could this of damaged my pc if so how? Can I restore these damages my PC appears to be normal everything working fine!


#7 MrFinleyJones

MrFinleyJones
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:50 AM

Posted 12 June 2015 - 06:20 PM

I am just scared as this is a brand new computer that I am trying to keep shiny clean it is very expensive here are my specs.

AMD FX 6300
Nividia GeForce 750ti
8 GB Hyper X DDR3 ram



#8 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,399 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:01:50 AM

Posted 12 June 2015 - 07:23 PM

...I restarted the PC everything worked fine I deleted the folder. Internet was working fine and the System Restore point is waiting to be removed.


The correct way to uninstall ComboFix, all of its related folders, files and logs is to make sure it is still on the Desktop (<-Important!!!) and follow these instructions.
  • When finished you will see a dialog box stating that "ComboFix has been uninstalled".
  • After that, you can remove the ComboFix.exe program from your Desktop by right-clicking on it and choosing delete.
  • If you encounter any problems using the switch from the Run dialog box or Search field, just rename ComboFix.exe to Uninstall.exe, then double-click on it to remove.
If ComboFix is no longer on your Desktop, re-download it from here, save to the Desktop and follow the instructions above to properly uninstall it from your computer.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#9 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,399 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:01:50 AM

Posted 12 June 2015 - 07:31 PM

...Could this of damaged my pc if so how?

ComboFix is a specialized first responder tool that has the ability to deal with multiple malware infections and has built in removal functionality which makes it very powerful. Combofix is intended by its creator to do two things: 1) automatically remove known infections and 2) provide a detailed system report similar to DDS that a trained expert can use to further investigate and remove malicious files and registry entries.

When run, ComboFix will disconnect your computer from the Internet as part of its routine and may require a reboot. The connection is automatically restored before ComboFix completes its run. However, if ComboFix runs into difficulty and terminates prematurely, the connection can be restored in most cases by restarting your machine. If you still do not have an Internet connection after rebooting then you have to maually restore it.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users