Posted 03 December 2009 - 10:45 PM
has anyone experimented with seeing how combofix does what it does?
i would like to get a working verision or mod for vistape.
where i work we use vistape on 50+ computers a day, so the more automation the better.
thanks for the help
Posted 04 December 2009 - 05:16 AM
1. there are number of file names written in bat file ,which known as malicious files . and they are removed on the run .
2. remove junk
3. reset registry settings to default .
so there is NO point using it inside PE .
BUT it is my one of the most important tools to be used while running actual windows.
Posted 04 December 2009 - 06:29 AM
i hope to make running it from vistape as effective as running it from windows.
is that all it does is compare filenames, because when i run it and check out the logs most of the sys files it deletes out of sys32 seem to be random character strings?
Posted 04 December 2009 - 06:34 AM
Posted 04 December 2009 - 06:45 AM
do you know which of combofixes bat files that it unpacks hold the known infected filenames?
Posted 22 May 2010 - 03:21 AM
You could add it to your PE CD for running when you don't boot from it, but it's better to always get the latest version of combofix if the computer's internet connectivity is still working.
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users