Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Tools for HJT


  • Please log in to reply

#1
ditto

ditto

    - i pwn n00bs -

  • Member
  • PipPipPipPip
  • 1,260 posts
1) CLSID (BHO & Toolbar) list
http://www.sysinfo.org/bhoinfo.php

Use this for the 02/03 items in the hijackthis logs.

A free standing exe file is available from here.
http://www.spywarein...les/bholist.zip
TIP put this in the spywareblaster folder and add a shortcut to the desktop - or where ever you wish to run it from.

It also has a online version available from.
http://www.sysinfo.org/bholist.php

2) Spywareblaster

http://www.javacools...areblaster.html

Use this for 016's in the log - also needed for some other tools...

3) Pacmans Startup List
http://www.sysinfo.org/startupinfo.php

Use this for the 04 items in the hijackthis logs.

A free standing exe file is available from here.
http://www.pacs-port...s/start_ups.exe
TIP

It also has a online version available from.
http://www.sysinfo.org/startuplist.php

4) CWS Domains List
http://www.spywarein...cws_domains.txt

Use this to check for CWS domains in R0/R1 (and others) lines in hijackthis logs.

TIP 'File save' this in the spywareblaster folder and add a shortcut to the desktop - or where ever you wish to run it from.
TIP Also if you have a copy of CWShredder create a Short Cut link to it and change the program being called to add '/debug'. Now when opening it opens in debug mode and you can enter a website name into the box to check if it is a CWS or not.

5) DNS Look ups
You often need to look up from an IP address to findout what a site does. This is often needed for the 017's in a log and also for Hosts entries.
Sam Spade from here: http://www.samspade.org/
It can be used from the site, and also download the windows exe file for use from your own machine.
Also DNS Lookup from DNSstuff: http://www.dnsstuff.com/
They can also be used in reverse to look up an IP from the domain name.

6) Spybot - Search & Destroy
One of those tools we recommend to users. BUT do you know what it targets.
To find out - start Spybot in advanced mode (from menu - not icon), Excludes, Products.
Right click a blank space in the right hand section, export list.
You now have a notepad file to search etc. of those items Spybot targets.
  • 0

Advertisements







Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP