 |  |  |  |  |  |  |  |
Some suspicous things to look at in you HJT log
 |
•
•
Join Date: May 2004
Posts: 1,478
Reputation: 
Solved Threads: 18
ok first off before you post a hijack this log you should probably do a basic spyware/virus scan with ad-aware, spybot S&D, and you anti virus software software.
Also make sure that when fixing problems to back up the files either via system restore or hijackthis will do it for you.
Now when you scan with hijack this you arent really going to understand what it is saying so to help you out here are somethings to watch for.
1.Things that are potentially viruses:
Sometimes you can tell if something is a virus by the name i would watch out for things that are like random series of letters of numbers i.e gf324sd.exe or 123fre786.exe these are probably viruses.
2. Here are some basic spyware things that you should watch out for:
webrebates
ebatesmoneymaker
mysearch bar
myfunstart
bargain buddy
cydoor
cool websearch
gator
xxxtoolbar
well those are just some of the main ones the occur frequently.
3.How to make sure spyware and viruses dont return or are properly deleted:
Well first off you should make sure that you have proper firewalls in place most makers of anti-virus software also make firewalls. The windows firewall should be up (if running sp2 it well inform you when either anti-virus or firewall software is disabled).
A good way to make sure that spyware does not return is to get something like spyware blaster which blocks sites and active x controllers associated with spyware send info onto your computer.
Now to make sure that spyware and viruses are deleted you should scan for spyware after restarting your computer. Now when using hijackthis it will not show you things like what processes are running while you are in the program so you have to save the log and exit out and when you open the log it should have a list of programs and their locations that where running on your computer while scanning. Now if one of these processes looks like it could be a virus or is known to be a virus then open up your task manager stop that process (make sure it doesn't restart) goto the location that is in your log (usually C:\WINDOWS\System32) then find the file (you might have to turn on view hidden files and folders in the folders properties) and delete it (make sure that you have set a restore point before deleting) then empty you recycle bin and restart. When restarting hit Esc+F8 and choose boot into safe mode. when you boot into safe mode check to see that the file is gone and then reboot normally.
that covers some pretty basic stuff you should look for in hijack this.
Also make sure that when fixing problems to back up the files either via system restore or hijackthis will do it for you.
Now when you scan with hijack this you arent really going to understand what it is saying so to help you out here are somethings to watch for.
1.Things that are potentially viruses:
Sometimes you can tell if something is a virus by the name i would watch out for things that are like random series of letters of numbers i.e gf324sd.exe or 123fre786.exe these are probably viruses.
2. Here are some basic spyware things that you should watch out for:
webrebates
ebatesmoneymaker
mysearch bar
myfunstart
bargain buddy
cydoor
cool websearch
gator
xxxtoolbar
well those are just some of the main ones the occur frequently.
3.How to make sure spyware and viruses dont return or are properly deleted:
Well first off you should make sure that you have proper firewalls in place most makers of anti-virus software also make firewalls. The windows firewall should be up (if running sp2 it well inform you when either anti-virus or firewall software is disabled).
A good way to make sure that spyware does not return is to get something like spyware blaster which blocks sites and active x controllers associated with spyware send info onto your computer.
Now to make sure that spyware and viruses are deleted you should scan for spyware after restarting your computer. Now when using hijackthis it will not show you things like what processes are running while you are in the program so you have to save the log and exit out and when you open the log it should have a list of programs and their locations that where running on your computer while scanning. Now if one of these processes looks like it could be a virus or is known to be a virus then open up your task manager stop that process (make sure it doesn't restart) goto the location that is in your log (usually C:\WINDOWS\System32) then find the file (you might have to turn on view hidden files and folders in the folders properties) and delete it (make sure that you have set a restore point before deleting) then empty you recycle bin and restart. When restarting hit Esc+F8 and choose boot into safe mode. when you boot into safe mode check to see that the file is gone and then reboot normally.
that covers some pretty basic stuff you should look for in hijack this.
•
•
Join Date: May 2004
Posts: 1,478
Reputation:
Solved Threads: 18
please add your own add ons and comments.
|
Similar Threads
- Lots of pop ups/things installing themselves *HJT log* (Viruses, Spyware and other Nasties)
- HJT Log, Need assistance removing "Blue Bar" (Viruses, Spyware and other Nasties)
- Help Fix My Neighbor's Computer (HJT Log) (Viruses, Spyware and other Nasties)
- Desperate help with HJT log! (Viruses, Spyware and other Nasties)
- HJT Log file (Viruses, Spyware and other Nasties)
- bridge.dll run error HJT log inside (Viruses, Spyware and other Nasties)
- HJT Log File For Laptop: Need Help! (Viruses, Spyware and other Nasties)
Other Threads in the Viruses, Spyware and other Nasties Forum
- Previous Thread: Too much spyware/popups to stand
- Next Thread: another bridge.dll problem please help?
| Thread Tools | Search this Thread |
You need to join our community in order to build your list of favorite forums. You can visit the forum index for a listing of all forums.
Related Forum Features
Latest Viruses, Spyware and other Nasties Posts
adware anti-malware anti-virussitesaccessissue antivirus apple attack audio avg backtoschoolspeech bar blackhat botnet botnets censorship china commercial commercials conficker connect control crosssitescripting cyber cybercrime cyberwarfare ddos domains e-mafia education email europe exam exploit fake fancheckvirus gaming gtaiv gumblar halloween hijack hosting internet iphone kaspersky legal mail malware mcafee mega-d messagelabs microsoft mobile msn nazi news obama onlinethreats paedophile parents patch phishing police policeprovirusmba-mblockedinternetaccess president pro problem redirect reliability report research risk rogueantivirus samhain sans school search security seopoisoning sites software spam spyware spywareexternalwindows7adminstratortrojans sqlinjection symantec system teen translate trojan unabletoaccessanti-virussites unwanted update usa virus viruses vista war windows worm yahoo zeroday
