Skip to main content
Start a Conversation

Unsolved

This post is more than 5 years old

ky331

3 Apprentice

 • 

15.2K Posts

12154

January 29th, 2013 11:00

ComboFix temporarily pulled by BC due to infection

Please stress that people should not be running ComboFix on their own... it should only be run under expert supervision.  

So this is a note to the experts:

"Unfortunately it has come to light that the program ComboFix had a file in it that is infected with the Sality virus. The minute we heard about this, we pulled the executable so that it is no longer available from BleepingComputer.com. Unfortunately we have no control over other sites that may have mirrored ComboFix without permission, so please do not attempt to download it elsewhere.

The developer, sUBs, is currently looking into what happened..."

http://www.bleepingcomputer.com/forums/topic483431.html

Bugbatter

20.5K Posts

January 29th, 2013 14:00

Thanks, ky331. That is good to alert members of. However, this forum does not do one-on-one malware removal. According to the disclaimer included with ComboFix, anyone using the tool should be using it under supervision of someone trained in its use. That training is done by the developer of ComboFix and by several online security sites which have malware removal schools. That is why this news has not been made public in some places. All qualified analysts are aware of the situation and have informed the people they are helping.

Bugbatter

20.5K Posts

January 29th, 2013 18:00

So this is a note to the experts:
Staff members of malware removal forums were notified early at their home sites.  Because certain components of this issue are private, I am going to lock this discussion. Please go HERE for updates and for posting your comments.

Thanks :emotion-15:

Anonymous

5 Practitioner

 • 

274.2K Posts

January 29th, 2013 18:00

 Wowsers!!  Shocking news, ky, thanks for sharing.

Bugbatter

20.5K Posts

January 30th, 2013 13:00

 The issue has been resolved. ComboFix is now live, clean, and available from its normal links. :emotion-1:

Bugbatter

20.5K Posts

January 31st, 2013 17:00

[Duplicate post deleted.]

Bugbatter

20.5K Posts

February 7th, 2013 12:00

A couple of excellent follow-up articles from our friends at ESET:

ComboFix Fixed: Popular Utility Safe to Use
http://blog.eset.com/2013/02/05/combofix-fixed-popular-utility-safe-to-use

Combofix: a cocktail of infective factors
http://blog.eset.com/2013/02/01/combofix-a-cocktail-of-infective-factors

View More

View All

No Events found!

Top