• Announcements

    • Budfred

      IE 11 copy/paste problem

      It has come to our attention that people using Internet Explorer 11 (IE 11) are having trouble with copy/paste to the forum. If you encounter this problem, using a different browser like Firefox or Chrome seems to get around the problem. We do not know what the problem is, but it seems to be specific to IE 11 and we are hopeful that Microsoft will eventually fix it.
Sign in to follow this  
Followers 0
Acsell

Analyze your own HijackThis log

129 posts in this topic

I have written the following tutorial to show you how to analyse your own hijackThis log-

 

hometown.aol.co.uk/jrmc137/hjttutorial/tutorial.htm"]hometown.aol.co.uk/jrmc137/hjttutorial/tutorial.htm[/url]

 

Tutorial Mirror (mirror located at spywarewarrior.com)

 

//hometown.aol.co.uk/JRMC137/hjttutorial/tutorial.pdf"]PDF Version[/url]

 

(All of the links above point to the same tutorial but are located on a different servers. These mirrors have been made available because some people were experiencing difficulty accessing the site. If you have problems with one link then try another.)

 

It will tell you how and where to look up and research each item in your log, which tools and databases you will need and where to get them. It will show you how to tell which items are good or bad and how to know which items need fixing with HijackThis.

 

It will also show you what these items represent in graphical form or provide a link to further information on the items so that you will know exactly what you are fixing.

 

Please note that not all problems can be fixed with HijackThis alone. In some cases you may need further help. In the tuturial I have tried to point out which cases this might relate to. If you find that your problem isn't solved by following the above tutorial or I have suggested in the tutorial that you may need further help then post your log in the forum.

 

Edit to disable links that may be hacked... Please use caution for links in the tutorial...

Specifically, do not use hxxp://www.allsecpros.com, that site is compromised, if you wish to research file-names etc. please use http://www.systemlookup.com/ -jedi

Edited by jedi

Share this post


Link to post
Share on other sites

Hello Acsell :wave: I must commend you for a very very informative site you should get a Medal for it. It has answered a lot of question's for me it is now in my Favorites

 

Thank You :D

Share this post


Link to post
Share on other sites

I wanted to get to your tutorial but my son's filter blocked it out for "porn and recreational nudity". :unsure:

Share this post


Link to post
Share on other sites

Great site,

looking through it just helped me to get started fighting spyware. Excellent job.

 

Anyone who starts learning spyware should read it.

 

Thanks

 

Maksym

Share this post


Link to post
Share on other sites

Excellent Tutorial !

Should be required reading for every Helper Trainee.

I have a link to it, on my quick launch tool bar.

Congratulations , you assume no previous experience by the user.

Share this post


Link to post
Share on other sites

I have to agree with Piatan, I have seen tutorials that were pretty helpful, but yours is very easy to understand and straight forward. You give great examples too.

Share this post


Link to post
Share on other sites

thank you, thank you, thank you a thousand times over

 

im a former IT professional so when all of my friends and family get these issues im the first one they turn too, this tutorial has enabled me to help them much quicker and more fully remove all the malware from their systems, Hijackthis is such a powerful tool but i had only just begun to fully understand how to best use it, this tutorial alows me to jump ahead and skip the rest of the learnign curve :thumbsup::thumbsup::thumbsup::thumbsup::thumbsup::thumbsup::thumbsup::thumbsup:

Share this post


Link to post
Share on other sites

Nice write up as I'm sure it'll help many users in the fight against these parasites.

 

I've been successfully fighting spyware for a long time now and I find we need as many trained people as possible to help combat this menace.

 

Although personally, when I work on a system, I prefer to work directly on the system instead of trying to talk someone through it remotely as I find it to be easier for me than to try to explain what to do. :)

Share this post


Link to post
Share on other sites

I registered JUST so i could say THANK YOU THANK YOU THANK YOU for this tutorial, it was a BIG help and i haven't had any stealthy :ph34r: popups since (not to jinx it :oops: )...

 

You are THE bomb diggety and a half. :thumbsup:

 

Also a hats off in general to all the people who rack their brain and spend their energy helping us malware-ridden users.

 

:love:

Share this post


Link to post
Share on other sites

Thank you thank you. I learned a lot - and fixed my own problems.

 

A bit scared of trying a new browser after weeks of hijacker-induced misery - but I will as a small 'thank you'.

 

Regards,

 

Guy Siner

Share this post


Link to post
Share on other sites

thats a great tutorial but i have one huge problem i use to i saved the log and when i click on it to post it in a thread my computer will not open it i think my brother messed up and deleted excuse him for he knows not what he does but know i need to know where i can download the notepad application i was wondering if any of you can help me

 

thanks in advance

mike

Share this post


Link to post
Share on other sites

Thanks For the site info. Started classes at Tom Coyotes awhile back, and this really helps.

Share this post


Link to post
Share on other sites

@xoxo_babygurl_xoxo

@tiffanyross

 

If you have a question or coment relating to the HJT tutorial, then post it here. If you need your log analyzed then please start new threads (topics) of your own in Malware removal.

Share this post


Link to post
Share on other sites

Thank You...very very much

 

I was hit with - Home Search Assistent , Search Extender , and Shopping Wizard

 

In my final steps of wrapping this up, I saw your information and it was a huge help.

 

 

Thanks!

 

Titanium22

(Dallas, TX)

 

[i have read all the instructions/FAQs about using this site, and where to actually post issues. }

Share this post


Link to post
Share on other sites
I have written the following tutorial to show you how to analyse your own hijackThis log-

 

http://hometown.aol.co.uk/jrmc137/hjttutorial/tutorial.htm

 

It will tell you how and where to look up and research each item in your log, which tools and databases you will need and where to get them. It will show you how to tell which items are good or bad and how to know which items need fixing with HijackThis.

 

It will also show you what these items represent in graphical form or provide a link to further information on the items so that you will know exactly what you are fixing.

 

Please note that not all problems can be fixed with HijackThis alone. In some cases you may need further help. In the tuturial I have tried to point out which cases this might relate to. If you find that your problem isn't solved by following the above tutorial or I have suggested in the tutorial that you may need further help then post your log in the forum.

How do you set it up step by step i had a problem installing it.... :scratchhead:

Share this post


Link to post
Share on other sites

Just wanted to let you know that your site was very helpful to me. I, of course saved it to my favorites and will study it. You wouldn't happen to know by any chance how to permantly uninstall the "Home search Assistent" and its friends from a pc after they are unwelcomingly installed? Just checking to see if there is a sure fire way. ( case you already had experience with it). I posted a log on Sept 2nd and 3rd for help and got no responses. Thank you

Share this post


Link to post
Share on other sites

Hi Acsell

 

I have just used your tutorial on reading HIjackThis to fix my wfie's PC

 

Many thanks , it was a great help and fixing IE6 was farily easy with the

tutorial.

 

Bob C

Share this post


Link to post
Share on other sites

I must say, this is an excellent tutorial! I'm a NetAdmin at the University of North Carolina at Wilmington, and this has helped me to diagnose and fix dozens of problems related to spyware/adware/browsers. I can't thank you enough for how comprehensive it is, how straight-forward and non-supposing. Kudos to you! :cool:

Share this post


Link to post
Share on other sites
I am sorry, but I can't get to he page, it said they can't find it or it doesn't exist. Where can I find this log?

 

Thanks!

120016[/snapback]

 

sorry, I've fixed it now. I updated it last night and renamed the page incorrectly.

 

Thank you all for your comments :D ,

 

Acsell

Share this post


Link to post
Share on other sites

Here's a site I found while trying to get rid of a nasty one. Think it's related to the z1.adserver hijacker. Donno for sure, cause ZoneAlarm is blocking the run dll as an app from running it, but all scans, Ad-Aware SE, Spybot S & D & PestPatrol are all coming up clean!

 

Anyhow, here's the link:

 

HijackThis log file analysis

 

Had a few false alarms, but had to "google" many, many fewer hits! :D

Share this post


Link to post
Share on other sites

Thank you for the great site! I definatly will use it! It has lots of killer information that anyone can use right away!

Share this post


Link to post
Share on other sites

Thanks for the great page. I think I am going to try and join the good fight. I am not completely illiterate, it's just been a really long time. I think that this will help more people solve their problems on their own. Thanks again for the great tutorial.

 

JimmyLost :blink:

Share this post


Link to post
Share on other sites

Acsell, thank you for creating the tutorial, which was comprehensive and easy to use, and I'm sure took a significant amount of time to produce. I had posted a problem here, but after working through your tutorial and reviewing solutions posted here to similar problems, I think I was able to rid my computer of the malware (I then immediately downloaded Firefox and will use that as my browser going forward, as suggested by Mike Healan). I didn't realize these kinds of forums existed until I started researching the problem I had, and commend you and the other "helpers" for your efforts. In some sense, these forums are a kind of nexus where the best of the internet, people selflessly helping others, meets the worst of the internet, malware creators violating others. Thank you again.

Share this post


Link to post
Share on other sites
That page linked me to a blank page?

139406[/snapback]

 

Yeah, me too, whats up, have you closed it down??

Share this post


Link to post
Share on other sites
That page linked me to a blank page?

139406[/snapback]

 

Yeah, me too, whats up, have you closed it down??

139427[/snapback]

 

It must just be a problem that AOL are having. I have upoaded a mirror copy here as well-

 

http://members.aol.com/jrmc137/Tutorial/

 

Let me know if that link is any better.

 

Thanks, Acsell

Edited by Acsell

Share this post


Link to post
Share on other sites

ACSELL,

May I add my thanks to your growing list of tributes.

 

It is concise,logically presented & totally understandable to the

 

complete beginner. I consider it to be a masterpiece & will use it

 

as a reference, to others, in future.

 

 

I salute your communication skills,they are superb & after reading

 

your Profile, I understand why. :D:D

 

 

Foxcub.

Share this post


Link to post
Share on other sites

Acsell,

 

None of the pictures can be viewed :(

 

If you want to send it to me, I could conver the whole thing into adobe format and then you (or someone) could host the file... that way it would open the same for everyone, and be easily printable.

 

Just a thought,

 

T2

Share this post


Link to post
Share on other sites
ACSELL,

May I add my thanks to your growing list of tributes.

 

It is concise,logically presented & totally understandable to the

 

complete beginner. I consider it to be a masterpiece & will use it

 

as a reference, to others, in future.

 

 

I salute your communication skills,they are superb & after reading

 

your Profile, I understand why. biggrin.gif biggrin.gif

 

 

Foxcub.

 

Thanks Foxcub :). I'm glad you and others are finding it useful.

 

None of the pictures can be viewed sad.gif

 

Thanks for letting me know, it seemed to work OK here for some reason :s. I have now fixed the images.

 

 

I hope you don't mind, if you do let me know, I put a mirror of your site up.

 

http://www.secnut.com/tutorial.htm

 

Yes, that's fine. Thanks for asking :)

 

mpfeif101 has kindly mirrored the tutorial as well.

 

http://www.antispyware.nextdesigns.net/hjt/tutorial.htm

Share this post


Link to post
Share on other sites

Thanks Acsell

 

have briefly read the tutorial and have added to my favourites so I can study in depth later. Hopefully I will be able to use it to sort some of my problems out in the future before having to pester somebody here!!

Probably will never trust myself completely though and no doubt will still ask for my log to be checked by an expert!

 

Many thanks to you and all of your co-experts

 

jetgat

Share this post


Link to post
Share on other sites

Hey Lurvy,

 

I was wondering where I could get a good "secure" spy zapper. Thanks for the listings. I'll give'em a whirl. :blush2: I was leary in trying the ones that "popped up" on my screen. Yep, I have a few of those little buggies running around my computer. I've deleted most of them from my registry and windows manually -but there are two that I can't zap and keep them zapped. I need a large bottle of raid! LOL

 

And thanks for the "house call" scanner url. I misplaced that url ages ago and meant to put that back in my faves. ;)

Share this post


Link to post
Share on other sites

very nice, i neaver took time to look at the log file and see that is actually tells me everything... my only questions, which wasn't in the tutorial is an F2 it is for explorer.exe which i know i gotta keep but what do the F2's do are they like the r1 and r2's? thank you so much...

Share this post


Link to post
Share on other sites

THANK YOU!!! I had been fighting a particularly stubborn spyware program that Ad-Aware and SpyBot could not get rid of. After using your guide to my log from Hijack This, I got rid of the crap and was able to finally use my computer! THANK YOU!!! :!:

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.
Sign in to follow this  
Followers 0