[salpal]

I was asked if ComboFix was free or not. Since my reply also included additional info about the difficult time I personally had removing this DNS hijacking malware, I thought I'd post it to forewarn others....
------------------------------------------------------------------------
------------------------------------------------------------------------
I'm pretty sure it is still free-ware. I had to use it a week or so ago to fix my niece's college PC that got corrupted with both a DNS hijack and the bogus "AntiVirus 2009" malware programs. While the MalwareBytes tool is straight-forward, easy to run, and fixes the AntiVirus 2009 problem, I had a heck of a time with getting ComboxFix to clean up the DNS hijacking problem.

I kinda knew going in that it was going to be difficult after reading some other users' posts on various forums but figured worse case, I would just have to re-install the whole XP operating system - and was prepared to do so since she needed to head back to school with her PC. I downloaded the ComboFix software from the link in my previous message posting, disregarded their warning about not running it w/o working with one of their folks (I've been playing with PC's since before IBM came out with the XT in the 80's and used to work in internet security so I felt pretty comfortable), and took a chance.

I ended up having to run it 3 times to get it clean. To be honest though, while it was running the first time, I did not really pay attention and missed an error message. After running it each time, I then tested going to an internet link. It was not until after that 3rd time - about 2 hours later - that it was successful.

CAVEAT:
These various hijacking malware programs seem to be the "latest thing" in nuisance, kiddie script programs and they tend to play leapfrog with the fixes. So while one solution may work for one person's PC, you may have to scour the various forums for the latest tool to resolve what may be a more complicated issue in your specific case. How's that for a disclaimer-
-------------------------------------------------------------------------
--------------------------------------------------------------------------

[Russ_Boston]

That's what i meant earlier when I said that spyware/malware programs don't always ID the problem and/or fix them. Some of these malwares are very stubborn and it takes multiple approaces. I used the Spybot program and it did find many errors for which I'm grateful but new malware showed up yesterday. Not a biggie but it is tough to stop and prevent everything.

I use Firefox most of the time and it keeps most of the bugs away but it's only a matter of time. I guess that's why people like Midstate stay in business

[salpal]

Agreed -- definitely!!
I'm hoping he'll need some part-time help by the time we're ready to move down-

Yesterday I just signed us up with TV guest coordinator for a 6-night visit to check things out the last week in March....can't wait!!!

[homeball]

Quote:

Originally Posted by Russ_Boston

That's what i meant earlier when I said that spyware/malware programs don't always ID the problem and/or fix them. Some of these malwares are very stubborn and it takes multiple approaces. I used the Spybot program and it did find many errors for which I'm grateful but new malware showed up yesterday. Not a biggie but it is tough to stop and prevent everything.

I use Firefox most of the time and it keeps most of the bugs away but it's only a matter of time. I guess that's why people like Midstate stay in business

Here's an update. I ran the HIGHJACKTHIS program and it didn't find anything definitively serious. When I looked at the list, I could pretty much identify each item and the legitimate program it belonged to. I even saw a change or two that I myself had done. So, I think I'll give it a rest for awhile unless I develope a major problem.

-Dave-