ComboFix should not keep your computer from starting nor affect it's power...it is intended by its creator to do two things: 1
) automatically remove known infections and 2
) provide a detailed system report similar to FRST/DDS that a trained expert can use to further investigate and remove malicious files and registry entries. NirCmd
is a command-line utility that can be used to perform many different tasks such as executing programs, writing to and deletion of values and keys in the registry, creating file shortcuts, restarting a computer, shutting it down, and much more. Since NirCmd is so versatile it is embedded with various specialized fix tools used during malware analysis and disinfection.
As a general policy, Bleeping Computer does not offer advice
on how to run ComboFix unless we asked someone to run it or
if there is a problem with the computer caused by running the tool. We recommend that people should not be using ComboFix without being advised to do so by a trained expert (see here
) who is assisting them deal with a malware problem. When issues arise due to complex malware infections, problems running ComboFix (i.e. stalling, hanging, crashing) or with other security tools causing conflicts, experts are usually aware of them and can advise what should or should not be done while providing individual assistance.
With that said, there are circumstances ComboFix will hang
or stall at various stages
due to malware interference
, failure to disable other real-time protection tools or the presence of CD Emulators (Daemon Tools, Alchohol 120%, Astroburn, AnyDVD) so that it does not complete successfully. Also, depending on how badly a system is infected, ComboFix may take longer to complete its routine than it normally does or fail to run properly. While that is not normal behavior, it is not unusual. In such cases, it is helpful to know at what stage CF stalled/crashed and to provide that information to the Helper who is assisting you so they can investigate.
Since you already ran Combofix, please follow the instructions in the Preparation Guide For Requesting Help
starting at Step 6.
Start a new topic
- If you cannot complete a step, then skip it and continue with the next.
, give it a relevant title and post your log(s) along with a brief description of your problem, a summary of any anti-malware tools you have used and a summary of any steps that you have performed on your own. If you cannot produce any of the required logs...start the new topic anyway
. Explain that you followed the Prep. Guide, were unable to create the logs, and describe what happened when you tried to create them.
After doing that, please reply back in this thread with a link to the new topic.