I've been playing around with some HJT analysis programs, and I like them. I was wondering what others think about them. They're not error, or full proof but I find them to be helpful.
HJT Analysis
help2go
HJT NetworkTechs
1
HJT Analysis by HJT Programs
Started by krit86lr, Mar 15 2006 07:57 AM
3 replies to this topic
#1 OFFLINE
-
- Members
-
- 1,958 posts
Power Member
- Gender:Female
- Location:Missouri, USA
Posted 15 March 2006 - 07:57 AM
CCleaner Beginner's Guide | Winapp2.ini: Personalize Your CCleaner | DAF | Fix CCleaner Crashes | CCleaner Issues Re-appearing
#2 OFFLINE
-
- Moderators
-
- 13,328 posts
Captain Spectacular
- Gender:Male
- Location:Shadow Moses
#3 OFFLINE
-
- Members
-
- 1,958 posts
Power Member
- Gender:Female
- Location:Missouri, USA
Posted 15 March 2006 - 08:22 AM
Andavari, on Mar 15 2006, 02:08 AM, said:
Automatted HJT analysis is nice, however the lack of something called Common Sense™ may always hinder them. Such would be the point false postives, the flagging non-malicious entries as malicious.
It's HJT for Dummies!
CCleaner Beginner's Guide | Winapp2.ini: Personalize Your CCleaner | DAF | Fix CCleaner Crashes | CCleaner Issues Re-appearing
#4 OFFLINE
-
- Spyware Moderators
-
- 1,821 posts
Power Member
- Gender:Male
- Location:Manchester. UK
- Interests:Music, Movies, Website Building & Design, Malware Testing/Research and spending time with friends & family.
Posted 15 March 2006 - 10:51 AM
I think the automated Analysis programs are ok to give some indications of whats bad but no one should ever fix what they suggest in my opinion, There is too many malware programs using genuine filenames but in the wrong location so that could easily lead to one of the Automated services flagging the genuine entries as dangerous and recommending it be removed and also missing malware entries and saying its ok.
Hijack This also has some bugs which makes it show certain entries as file missing even though the file does exist. It can easily do that with 09, 010, 018 and 023 entries so some Automated services may show these can be removed as the file isnt there but removing them would cause alot of problems if they do exist and are needed services. There's so many Hijack This forums these days where you can get one on one feedback there really is no excuse to use a quick fix method like the Automated programs. Its ok for advanced users who know whats legit or malware but not recommended for novice users as it could damage the system in a way that cannot be easily repaired. I just tried one of them now and it has all my 04 startup entries showing as 'Probably not needed - Safe to remove' , doesnt really fill me with confidence that it suggests removing all my startup programs which are genuine, Although they are not essential It would be a pain having to start them all manually each time the system reboots
Hijack This also has some bugs which makes it show certain entries as file missing even though the file does exist. It can easily do that with 09, 010, 018 and 023 entries so some Automated services may show these can be removed as the file isnt there but removing them would cause alot of problems if they do exist and are needed services. There's so many Hijack This forums these days where you can get one on one feedback there really is no excuse to use a quick fix method like the Automated programs. Its ok for advanced users who know whats legit or malware but not recommended for novice users as it could damage the system in a way that cannot be easily repaired. I just tried one of them now and it has all my 04 startup entries showing as 'Probably not needed - Safe to remove' , doesnt really fill me with confidence that it suggests removing all my startup programs which are genuine, Although they are not essential It would be a pain having to start them all manually each time the system reboots
