Do not use Combofix on your own!!

[Tookeri]

Hitman Pro
This is widely known to cause a lot of problems (BSODs, errors booting Windows etc.) so I'd keep a wide berth from this.

Just curious, I assume you mean if you let HitmanPro clean what it finds? But that there's no risk with only scanning and viewing the result without proceeding with any cleaning actions. That's the way I use it.

 

[Dokie]

I have been helping seniors in my retirement center for three years. I only used combofix one time and it allowed me to clean up the PC and get the senior back up and running. I'm by no means telling amateurs to use this powerful tool.
It's always good to have a way to recover if some thing goes wrong. I did run it one time on my PC and experienced good results. I read the malware sections on a lot of forums and seldom see combofix used. It seems to be a last resort for trained malware fighters. If everyone used a 3rd party back up program, malware fighters would be out of a job.
I did take one PC back to factory as it was requested by the senior who had been very badly infected with malware!

 

[Victek]

While I am no expert, if you want to find instances of amateurs using Combofix just go to BleepingComputer and search the forums. You will find 1000's of frantic people who post seeking help because they used Combofix unsupervised. The problems range from blue screens, to programs that no longer run; to lost networks and internet connections; and even to "yes" computer is now a doorstop.

Sooner or later amateur users of Combofix will have a catastrophic problem, so be sure you have OS installation discs, program discs, and data backups handy... you will need them.

Regarding Combofix I'd like to know what supervision consists of? There are no user configurable options as far as I can tell. Who are the people in SevenForums qualified to provide help with Combofix and are there any public threads showing how they help?

 

[tom982]

Regarding Combofix I'd like to know what supervision consists of? There are no user configurable options as far as I can tell. Who are the people in SevenForums qualified to provide help with Combofix and are there any public threads showing how they help?

There are a lot of user configurable options, but they aren't publicly disclosed. Combofix has a private tutorial which is over 400 A4 pages long.

Jacee and cottonball are the only qualified helpers I know of here (sorry if I've forgotten anyone!). Most helpers can be found here:

http://uniteagainstmalware.com/instructors/
http://uniteagainstmalware.com/eliminators/

cottonball isn't on that list as he helps under a different username at malware removal forums.

 

[A Guy]

We generally do not have Combofix help here as it is quite specialized, and there are dedicated security forums who do it regularly. If you need malware help that requires Combofix, they will instruct you to use it, and how

A Guy

 

[Victek]

There are a lot of user configurable options, but they aren't publicly disclosed. Combofix has a private tutorial which is over 400 A4 pages long.

Most helpers can be found here:

Malware Removal Instructors - UNITE Against Malware
Malware Removal Eliminators - UNITE Against Malware

Thanks for the info about unite-against-malware.com

As for ComboFix having a private tutorial, I find it problematic that the software is publicly available while the instructions for using it are not.

 

[tom982]

There are a lot of user configurable options, but they aren't publicly disclosed. Combofix has a private tutorial which is over 400 A4 pages long.

Most helpers can be found here:

Malware Removal Instructors - UNITE Against Malware
Malware Removal Eliminators - UNITE Against Malware

Thanks for the info about unite-against-malware.com

As for ComboFix having a private tutorial, I find it problematic that the software is publicly available while the instructions for using it are not.

No problem, glad you found it useful.

I understand where you're coming from but it's kept private to stop people recommending it without the necessary training and damaging the computers of unknowing OPs here and elsewhere. It's also to try and prevent malware creators from combating its removal techniques.

There are malware removal tools with public tutorials if you're interested: FRST and OTL. Ultimately, the only way to learn safely is to do it through one of the UNITE schools.

 

[A Guy]

As for ComboFix having a private tutorial, I find it problematic that the software is publicly available while the instructions for using it are not.

It is not elitist. If they were getting paid, it would be one thing. But since they are all volunteering their time...The software is publicly available because the individuals have to download it somehow. But it's only meant to be used when suggested by a trained expert, and they instruct the individual in it's use for their unique situation. Since it is not meant to be used without supervision, then not making those instructions public makes sense on that alone. A Guy

 

[Victek]

As for ComboFix having a private tutorial, I find it problematic that the software is publicly available while the instructions for using it are not.

It is not elitist. If they were getting paid, it would be one thing. But since they are all volunteering their time...The software is publicly available because the individuals have to download it somehow. But it's only meant to be used when suggested by a trained expert, and they instruct the individual in it's use for their unique situation. Since it is not meant to be used without supervision, then not making those instructions public makes sense on that alone. A Guy

I appreciate what you're saying, but if the goal is to protect users who can't use the software safely then it seems to me access to the software should be restricted instead of just withholding the instructions. Also when I've used combofix I don't remember seeing a warning and information about where to go for supervision.

 

[tom982]

Let's face it, 99% of people wouldn't bother to read the 400 page tutorial and that's not even considering, the considerable amount of background knowledge required to remove modern malware infections. It takes over 6 months to complete the training, it's not something you can skim through and hope it works.

The very first screen CF shows is this:

Source: BleepingComputer

It warns not to use it without supervision. Clicking on the link below takes you to this:

ComboFix: A guide and tutorial on using ComboFix

You should not run ComboFix unless you are specifically asked to by a helper. Also, due to the power of this tool it is strongly advised that you do not attempt to act upon any of the information displayed by ComboFix without supervision from someone who has been properly trained. If you do so, it may lead to problems with the normal functionality of your computer.

It should also be noted that when you run ComboFix it will automatically delete files from the following locations:

Windows Recycle Bin
Temporary Internet Files
Temp Folder

If you store files that you wish to keep in one of these location, it is suggested that you move them to a safer location rather than relying on the above temporary storage locations.

Please note that this guide is the only authorized guide for the use of ComboFix and cannot be copied without permission from BleepingComputer.com and sUBs. Furthermore, the ComboFix program cannot be hosted at any other site without direct permission from the developer. It is also understood that the use of ComboFix is done at your own risk.

For those who wish to help finance the author's work, he is accepting contributions via Paypal. You can contribute by clicking on the following image:

Using ComboFix

If you need help with malware removal, then please create a topic at one of the forums listed later in the guide and ask for help. Please note that each forum has different policies, so please be sure to read any pinned topics and rules for the particular forum about how you should go about receiving help. If a ComboFix log has been requested by a helper then please create one by following the instructions below.

The warnings and information are there but most people won't think twice before disregarding them.

 

[Jacee]

The warnings and information are there but most people won't think twice before disregarding them.

Yes, that's a definite problem. :warn:

 

[cosmicanddavid]

combofix ruins your system try getting rid of the qoobox its near impossible i had to reinstall windows because of that junk

 

[LMiller7]

Combofix is a very useful tool. But like all powerful tools it requires sufficient knowledge to use it safely and effectively. This is not the fault of the tool. The author explicitly states that it is intended for advanced users and IT professionals.

In the hands of a skilled surgeon a scalpel is a life saving tool but in other hands it is dangerous.

 

[torchwood]

Qoobox.
ie the virus vault is uninstalled during Combofix removal AFTER you agree to remove it (qoobox/virus).


Roy

 

[cosmicanddavid]

well i tried the combofix uninstall method that didnt show nothing at all even with fresh reinstall of windows 7 is still hard to delete luckily the tool unlocker managed to delete it combofix is a trojan that hijacks your pc how do we not know what it doing to your pc when it scanning?? i wont be using trojancombofix drwebcureit antivirus zemana antimalware malwarebytes that leave junk left behind all over your pc when u install it

 

[Barman58]

Combofix is a tool designed by, and for the exclusive use of IT professionals, or those explicitly trained in it's use and also in malware removal and discovery. It is not designed to be used without full training and experience

ComboFix usage, Questions, Help? - Look here - Anti-Virus, Anti-Malware, and Privacy Software

 

[A Guy]

Hence this thread...

A Guy

 

[Layback Bear]

You are Correct A Guy

Thread name.

Do not use Combofix on your own!!

Jack