Combofix infected

Just a heads up in case anyone is thinking of using this in a malware removal situation, the download is infected with Sality virus.

Info here

http://www.wildersse...469#post2180469

Bad news, big news. Thanks for the heads up, Hazelnut.

Edit:

The Bleeping Computer download link is down, but there are still some sites that allow a download of very recent versions of Combofix.

I don't know when the infection got in, so I regard them all as unsafe till further notice.

Hence the reason to virus scan/malware scan each and every download because even trusted software has the potential to contain an infection.

How ironic: software that is designed to fight malware is infected with malware !

Thing is the people who are likely to have to download and use it are infected and may have compromised av's running anyway.

Also users under instruction from Malware Removal Experts are told to disable their anti virus before running it.

This is why it is important to have known-good & tested offline backups. Stuff gets out of hand? ..just restore!

This is why it is important to have known-good & tested offline backups. Stuff gets out of hand? ..just restore!

Unfortunately a lot of users out there are not as prepared and experienced as you are.

But let's not get into that here as this thread is primarily a heads-up thread about combofix.

Thanks for the heads up Hazel. Fortunately for me I have never had the need to run combofix. And like Keetah I always do backups of my system partition.