Combofix--The best antivirus software ever? | FerrariChat
Buy

Combofix--The best antivirus software ever?

Discussion in 'Technology' started by atomstrange, Dec 23, 2008.

This site may earn a commission from merchant affiliate links, including eBay, Amazon, Skimlinks, and others.

  1. atomstrange

    atomstrange Formula Junior

    Jun 3, 2005
    856
    Lenexa KS
    Full Name:
    Nathan
    #1 atomstrange, Dec 23, 2008
    I had a nasty rootkit virus on my machine that I could not get rid of. I used every single antivirus software available(avg, semantec, nod32, trendmicro, symantec, bitdefender, system mechanic) none of them could get rid of it. The virus was a web browser hack as well so it was very frustrating. I spent two weeks trying to get rid of it. Combofix got rid of everything on the first try. It logs every action the virus takes, even detects if the virus attaches itself to combofix and tell you everything. It even shut down all my startup problems that were lagging my machine. I am very happy with it and its free. You may give a donation to the creator. Just thought I would share and would like to hear if anyone has any objections or problems with it. Just google combofix.exe and u can find it.
     
  2. atomstrange

    atomstrange Formula Junior

    Jun 3, 2005
    856
    Lenexa KS
    Full Name:
    Nathan
    #2 atomstrange, Dec 23, 2008
  3. thecarreaper

    thecarreaper F1 World Champ
    Silver Subscribed

    Sep 30, 2003
    18,054
    Savannah
    #3 thecarreaper, Dec 27, 2008
  4. Wade

    Wade Three Time F1 World Champ
    Owner

    Mar 31, 2006
    32,793
    East Central, FL
    Full Name:
    Wade O.
    #4 Wade, Dec 27, 2008
    Both excellent posts and great info! Thanks
     
  5. thecarreaper

    thecarreaper F1 World Champ
    Silver Subscribed

    Sep 30, 2003
    18,054
    Savannah
    #5 thecarreaper, Dec 28, 2008
    cant get combofix to work with my licensed copy of XP 64. i downloaded it from a pc with XP32, perhaps is "knows" what version you have when you download it? ( OS specific)

    my main rig is still infected. went into safe mode and removed smitfraud , js juan zedo and virtumonde. now have some antivirus 2008 (trojan)or similar on there.

    i think i have a java issue.....

    going to blow out the registry next.....

    good thing i have 2 1/2 computers.
     
  6. ojbj

    ojbj Karting
    BANNED

    Dec 14, 2008
    54
    #6 ojbj, Dec 28, 2008
    what's the 1/2 computer? an iphone? graphing calculator? mp3 player?
     
  7. thecarreaper

    thecarreaper F1 World Champ
    Silver Subscribed

    Sep 30, 2003
    18,054
    Savannah
    #7 thecarreaper, Dec 29, 2008
    a skeleton of a computer that i use to test hardware and memory sticks. it can get on the net, if i have it put together with enough left over parts.

    its great for troubleshooting hardware failures.

    went into my registry and manually removed specific keys.

    sure took some time though. good thing i am on vacation.
     
  8. mseals

    mseals Two Time F1 World Champ
    Lifetime Rossa Owner

    Sep 9, 2007
    24,468
    Kuwait
    Full Name:
    Mike Seals
    #8 mseals, Dec 30, 2008
    Were you ever able to get Combofix to work with X64?

    Mike in Kuwait
     
  9. thecarreaper

    thecarreaper F1 World Champ
    Silver Subscribed

    Sep 30, 2003
    18,054
    Savannah
    #9 thecarreaper, Dec 31, 2008
    nope. it opens and says its not compatible and then closes. i deleted it, and hacked my registry line by line and deleted all the trojan registry keys. several scans have turned up a clean system. i uninstalled my Sun Java after downloading a newer version and rebooted. seems to have helped.

    i really like XP64, though i doubt it will be supported for too much longer. it does seems to share some of the drivers with Vista, as i have cross pollinated the two a few times with great results.
     
  10. kizdan

    kizdan F1 Veteran

    Dec 31, 2003
    5,505
    #10 kizdan, Jan 2, 2009
    I just downloaded Combofix, and ran it, and all it seemed to do was create a log. Did it automatically delete everything, or is there another step I need to take with it?
     
  11. atomstrange

    atomstrange Formula Junior

    Jun 3, 2005
    856
    Lenexa KS
    Full Name:
    Nathan
    #11 atomstrange, Jan 5, 2009
    Look for the log.txt file. It will give a run down of what was deleted.. Mine looked like this....

    ComboFix 08-12-12.05 - Owner 2008-12-13 15:09:08.1 - NTFSx86
    Microsoft Windows XP Home Edition [GMT -6:00]
    Running from: f:\documents and settings\Owner\Desktop\ComboFix.exe
    * Created a new restore point
    .

    ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
    .

    f:\documents and settings\Owner\Application Data\gadcom
    f:\documents and settings\Owner\Application Data\IUpd721
    f:\documents and settings\Owner\Application Data\IUpd721\Logs\scns.log
    f:\documents and settings\Owner\Application Data\NI.GSCNS
    f:\documents and settings\Owner\Application Data\NI.GSCNS\dl.ini
    f:\documents and settings\Owner\Application Data\NI.GSCNS\settings.ini
    f:\documents and settings\Owner\Local Settings\Temporary Internet Files\bestwiner.stt
    f:\documents and settings\Owner\Local Settings\Temporary Internet Files\fbk.sts
    f:\windows\system32\asubinov.ini
    f:\windows\system32\delidubu.dll
    f:\windows\system32\dim
    f:\windows\system32\dogumivu.dll
    f:\windows\system32\dokakuru.dll
    f:\windows\system32\drivers\core.cache.dsk
    f:\windows\system32\elihegof.ini
    f:\windows\system32\feyiloto.dll
    f:\windows\system32\fogehile.dll
    f:\windows\system32\gp2
    f:\windows\system32\gside.exe
    f:\windows\system32\hiyokovu.dll
    f:\windows\system32\ID2
    f:\windows\system32\juliyowe.dll
    f:\windows\system32\lululune.dll
    f:\windows\system32\moyofilu.dll
    f:\windows\system32\mp
    f:\windows\system32\nelesoye.dll
    f:\windows\system32\nukatojo.dll
    f:\windows\system32\otoliyef.ini
    f:\windows\system32\ovijafof.ini
    f:\windows\system32\ovsfvonk.dll
    f:\windows\system32\rafomife.dll
    f:\windows\system32\ubudiled.ini
    f:\windows\system32\uvilebez.ini
    f:\windows\system32\uvokoyih.ini
    f:\windows\system32\vonibusa.dll
    f:\windows\system32\wefeyubi.dll
    f:\windows\system32\wuduzuli.dll
    f:\windows\system32\wvvuxyay.ini
    f:\windows\system32\wvvuxyay.ini2
    f:\windows\system32\x4
    f:\windows\system32\yyvkqqxx.ini
    f:\windows\system32\zebelivu.dll
    f:\windows\system32\zukuzibi.dll
     
  12. F-40

    F-40 Rookie

    May 27, 2015
    1
    #12 F-40, May 27, 2015
    I trust av labs and use AVG, free edition. No issues at all.
    But these days we need to use on demand antimalware scanners like malwarebytes or adwcleaner, they help with non-viral things like omiga-plus browser hijacker.
     
  13. arpadkal

    arpadkal Rookie

    Oct 11, 2009
    19
    North Wales, PA
    #13 arpadkal, Jun 6, 2015
    This might be slightly complicated, (at first) but here is what I do. I run my pc with a copy of vmware workstation. I have a VM image for banking, one for general surfing car forums and sites I know are solid. Finally I have one imagine for testing "free applications" and surfing that might not be so solid. Each image has a several snapshots. If things go to hell I can either restore the snap shot or load up a fresh image. Zero virus or malware since. Snapshots allow you to play a true time machine when something bad arrives. Just load up the previous snap shot pre-problem and in about 5 minutes you're back up and running like nothing happened. The only reason I update snap shots is to keep recent with patches (otherwise you'd have to re-run all those patches every time) Also if you ever wanted to play with unix its an easy way to do it. Or if you have some really old school games that run in dos or win 95 you can keep a vm handy for those too. Test Drive circa 1987 anyone?
     

Share This Page