Advertisement

There's no such thing as a stupid question, but they're the easiest to answer.
Login
Search

Advertisement

Tech Tips and Reviews Tech Tips and Reviews
Search Search
Search for:
Tech Support Guy > > >

HijackThis log file analysis tool


(!)

It Wasn't me's Avatar
It Wasn't me It Wasn't me is offline
Senior Member with 487 posts.
THREAD STARTER
 
Join Date: Nov 2003
Location: USA
17-Feb-2005, 12:57 AM #1
HijackThis log file analysis tool
I found this to be a useful tool. I am posting this to find out what other people think of it. I in no way think that it should be used in the place of professional help with a hijackthis log. I am just looking for opinions.
http://hijackthis.de/index.php?langselect=english
Skivvywaver's Avatar
Computer Specs
Member with 13,935 posts.
 
Join Date: Mar 2001
Location: Behind my wall
17-Feb-2005, 01:29 AM #2
I have used it. It is useful but definitely not a replacement for a good human.

It gives me some false positives. It hits popupcop every time as nasty. If popupcop is a HiJacker I have been willingly HiJacked for about 4 years.

It is good for people like me that know what is supposed to be on their machine but once in awhile might see a stranger lurking in the log.
__________________
There is no signature here. Move along!
It Wasn't me's Avatar
It Wasn't me It Wasn't me is offline
Senior Member with 487 posts.
THREAD STARTER
 
Join Date: Nov 2003
Location: USA
17-Feb-2005, 01:37 AM #3
Yes I agree. It is NOT to used as a replacement for a human but I believe it can be used as and educational tool that will help those who don't know how to read Hijackthis logs. Most times it states (possible nasty) unless you recognize it. Then those who don't know should Google the possible nasty and find out what it is.
Skivvywaver's Avatar
Computer Specs
Member with 13,935 posts.
 
Join Date: Mar 2001
Location: Behind my wall
17-Feb-2005, 01:52 AM #4
Yep, I agree. If I get something I don't know about for sure I see the crew in the security forum.

They are so busy in there I try not to bother them unless I am for sure whacked. I don't read HiJack logs well, but I get by OK most of the time.

Remember the story about the Dutch boy that stuck his finger in the dam? I have about 50 Dutch boys on this machine. I run more security than is most likely needed but I don't get whacked very often.

Knock on wood I don't think I have had a log in security for almost a year.
It Wasn't me's Avatar
It Wasn't me It Wasn't me is offline
Senior Member with 487 posts.
THREAD STARTER
 
Join Date: Nov 2003
Location: USA
17-Feb-2005, 02:12 AM #5
Thanks SKIVVY
Good Humor your good you!
hewee's Avatar
Computer Specs
Member with 55,946 posts.
 
Join Date: Oct 2001
Location: Sacto. Ca.
17-Feb-2005, 02:47 AM #6
My log was looked at today as being clean, but here is the "Short analyzing" you get from clicking the link at the bottom.

O2 - BHO: SpywareBlock Class - {0A87E45F-537A-40B4-B812-E2544C21A09F} - C:\PROGRAM FILES\SPYCATCHER\SCACTIVEBLOCK.DLL - Unknown
O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit - Unknown
O4 - HKLM\..\Run: [SetPoint] C:\Program Files\Logitech\SetPoint\KEM.EXE - Unknown
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE - Unknown
O4 - HKLM\..\RunServices: [BitDefender Communicator] C:\Program Files\Common Files\Softwin\BitDefender Communicator\\xcommsvr.exe - Unknown
O4 - HKLM\..\RunServices: [BitDefender Live! Init] C:\Program Files\Softwin\BitDefender Free Edition\\bdinit.exe - Unknown
O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} (Update Class) - - Possibly nasty === " This is for the inlone housecall "

So I have used just to look at a log but I go by what other people here say. Then I keep and date the log so I can look at it later and see if there are changes etc.
__________________
Donating to TSG helps to keep the site going so please do your part and help.
Keep Your Security Software Current at Calendar of Updates
"Work like you don't need the money. Love like you've never been hurt. Dance like nobody's watching."
foxfire's Avatar
foxfire foxfire is offline
Member with 290 posts.
 
Join Date: Jan 2003
Location: North UK
Experience: Intermediate.
19-Feb-2005, 01:09 PM #7
Quote:
Originally Posted by It Wasn't me
I found this to be a useful tool. I am posting this to find out what other people think of it. I in no way think that it should be used in the place of professional help with a hijackthis log. I am just looking for opinions.
http://hijackthis.de/index.php?langselect=english
Yes, I have used this whilst learning to analyse HJT logs but I have found that it is NOT FOOLPROOF.

Unless the user understands exactly what it coughs up as malware, it can be
misinterpreted.

I would suggest that its useful as a guide but that a technical expert, as present in our Security Forum is far safer.

Foxfire
sachinsurose's Avatar
sachinsurose sachinsurose is offline
Computer Specs
Junior Member with 1 posts.
 
Join Date: Feb 2008
Experience: Intermediate
16-Feb-2008, 03:41 AM #8
From where to download HJT?
hewee's Avatar
Computer Specs
Member with 55,946 posts.
 
Join Date: Oct 2001
Location: Sacto. Ca.
16-Feb-2008, 05:28 AM #9
Quote:
Originally Posted by sachinsurose View Post
From where to download HJT?
http://www.trendsecure.com/portal/en...ols/hijackthis
As Seen On

BBC, Reader's Digest, PC Magazine, Today Show, Money Magazine
WELCOME TO TECH SUPPORT GUY!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.


(clock)
THIS THREAD HAS EXPIRED.
Are you having the same problem? We have volunteers ready to answer your question, but first you'll have to join for free. Need help getting started? Check out our Welcome Guide.

Search Tech Support Guy

Find the solution to your
computer problem!




Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools


WELCOME
You Are Using: Server ID
Trusted Website Back to the Top ↑