HiJackThis is now Open Source

[FromTheRafters]

OldGringo38 wrote:
> On 02/20/2012 01:36 PM, ~BD~ wrote:
>> HijackThis is a free utility that generates an in depth report of
>> registry and file settings from your computer. HijackThis makes no
>> separation between safe and unsafe settings in its scan results giving
>> you the ability to selectively remove items from your machine. In
>> addition to this scan and remove capability HijackThis comes with
>> several tools useful in manually removing malware from a computer.
>>
>> IMPORTANT: HijackThis does not determine what is good or bad. Do not
>> make any changes to your computer settings unless you are an expert
>> computer user.
>>
>> However ......
>>
>> Advanced users can use HijackThis to remove unwanted settings or files.
>>
>> http://sourceforge.net/projects/hjt/
>>
>> One may then post an HJT report here for some independent guidance:-
>>
>> www.hijackthis.de
>>
>> Any takers?
>>
>
> Is that available for Linux?
>
For working *in* Linux, or for working *on* Linux?

[Aardvark]

On Mon, 20 Feb 2012 18:59:10 -0500, FromTheRafters wrote:

> OldGringo38 wrote:
>> On 02/20/2012 01:36 PM, ~BD~ wrote:
>>> HijackThis is a free utility that generates an in depth report of
>>> registry and file settings from your computer. HijackThis makes no
>>> separation between safe and unsafe settings in its scan results giving
>>> you the ability to selectively remove items from your machine. In
>>> addition to this scan and remove capability HijackThis comes with
>>> several tools useful in manually removing malware from a computer.
>>>
>>> IMPORTANT: HijackThis does not determine what is good or bad. Do not
>>> make any changes to your computer settings unless you are an expert
>>> computer user.
>>>
>>> However ......
>>>
>>> Advanced users can use HijackThis to remove unwanted settings or
>>> files.
>>>
>>> http://sourceforge.net/projects/hjt/
>>>
>>> One may then post an HJT report here for some independent guidance:-
>>>
>>> www.hijackthis.de
>>>
>>> Any takers?
>>>
>>>
>> Is that available for Linux?
>>
> For working *in* Linux, or for working *on* Linux?

Either way, it's pretty pointless. :-)



--
"Any man's death diminishes me, because I am involved
in mankind, and therefore never send to know for whom
the bell tolls; it tolls for thee".
-John Donne (1572-1631)

[FromTheRafters]

Aardvark wrote:
> On Mon, 20 Feb 2012 18:59:10 -0500, FromTheRafters wrote:
>
>> OldGringo38 wrote:
>>> On 02/20/2012 01:36 PM, ~BD~ wrote:
>>>> HijackThis is a free utility that generates an in depth report of
>>>> registry and file settings from your computer. HijackThis makes no
>>>> separation between safe and unsafe settings in its scan results giving
>>>> you the ability to selectively remove items from your machine. In
>>>> addition to this scan and remove capability HijackThis comes with
>>>> several tools useful in manually removing malware from a computer.
>>>>
>>>> IMPORTANT: HijackThis does not determine what is good or bad. Do not
>>>> make any changes to your computer settings unless you are an expert
>>>> computer user.
>>>>
>>>> However ......
>>>>
>>>> Advanced users can use HijackThis to remove unwanted settings or
>>>> files.
>>>>
>>>> http://sourceforge.net/projects/hjt/
>>>>
>>>> One may then post an HJT report here for some independent guidance:-
>>>>
>>>> www.hijackthis.de
>>>>
>>>> Any takers?
>>>>
>>>>
>>> Is that available for Linux?
>>>
>> For working *in* Linux, or for working *on* Linux?
>
> Either way, it's pretty pointless. :-)
>
Perhaps, but if someone wanted to have it as a tool in a Linux based
LiveCD toolkit it might be nice to be able to load a hive and look for
suspicious entries. Such a log having been created would still have the
same value as a *real* such scan - with an added benefit of getting
around entries being hidden from HJT by an active so-called rootkit.

Linux entries are not centrally located, but could still be scanned for
known malicious mods - that is - if there were any. Still, even in Linux
it would be a good idea to scan for such things from a known clean (Live
CD?) environment.

[Aardvark]

On Tue, 21 Feb 2012 14:20:07 -0500, FromTheRafters wrote:

> Aardvark wrote:
>> On Mon, 20 Feb 2012 18:59:10 -0500, FromTheRafters wrote:
>>
>>> OldGringo38 wrote:
>>>> On 02/20/2012 01:36 PM, ~BD~ wrote:
>>>>> HijackThis is a free utility that generates an in depth report of
>>>>> registry and file settings from your computer. HijackThis makes no
>>>>> separation between safe and unsafe settings in its scan results
>>>>> giving you the ability to selectively remove items from your
>>>>> machine. In addition to this scan and remove capability HijackThis
>>>>> comes with several tools useful in manually removing malware from a
>>>>> computer.
>>>>>
>>>>> IMPORTANT: HijackThis does not determine what is good or bad. Do not
>>>>> make any changes to your computer settings unless you are an expert
>>>>> computer user.
>>>>>
>>>>> However ......
>>>>>
>>>>> Advanced users can use HijackThis to remove unwanted settings or
>>>>> files.
>>>>>
>>>>> http://sourceforge.net/projects/hjt/
>>>>>
>>>>> One may then post an HJT report here for some independent guidance:-
>>>>>
>>>>> www.hijackthis.de
>>>>>
>>>>> Any takers?
>>>>>
>>>>>
>>>> Is that available for Linux?
>>>>
>>> For working *in* Linux, or for working *on* Linux?
>>
>> Either way, it's pretty pointless. :-)
>>
> Perhaps, but if someone wanted to have it as a tool in a Linux based
> LiveCD toolkit it might be nice to be able to load a hive and look for
> suspicious entries. Such a log having been created would still have the
> same value as a *real* such scan - with an added benefit of getting
> around entries being hidden from HJT by an active so-called rootkit.
>

Good point. Gotcha.

> Linux entries are not centrally located, but could still be scanned for
> known malicious mods - that is - if there were any. Still, even in Linux
> it would be a good idea to scan for such things from a known clean (Live
> CD?) environment.

'Nother good point.



--
"Any man's death diminishes me, because I am involved
in mankind, and therefore never send to know for whom
the bell tolls; it tolls for thee".
-John Donne (1572-1631)