HiJackThis is now Open Source

[Beauregard T. Shagnasty]

Henry wrote:

> Beauregard T. Shagnasty wrote:
>> Henry wrote:
>>>I got my HijackThis log and went to www.hijackthis.de and clicked on
>>>English and I can't figure out what to do with my log. I thought
>>>someone would look at it and tell me what was wrong and what to do. Am
>>>I not correct and how do I do that please?
>>
>> "You can paste a logfile in this textbox"
>>
>> "or you can choose a logfile from your computer"
>>
>> What part of that do you need help with? Paste your log into the
>> textbox and click the Analyze button.
>>
> I did that but I didn't know what to do with the results that came back.

As I remember, each log entry has a marker and what to do.

> I seem to remember a couple of years ago that I sent my log file to a
> web site and someone with more knowledge than me, looked at it and
> replied as to what I should do.

Here's a list:
http://hjt-data.trendmicro.com/hjt/a...this/index.php

--
-bts
-This space for rent, but the price is high

[Peter Foldes]

Shows how much you know you Troll

Yes you posted the same before 2 yrs ago and again last year

Here is some links where they can analyze the HT LOGS

NOTE: Registration is REQUIRED in any of the below before posting a log

Suggested primary:
http://www.thespykiller.co.uk/index.php?board=3.0

Suggested secondary:
http://www.bleepingcomputer.com/forums/forum22.html
http://www.malwarebytes.org/forums/i...hp?showforum=7

Suggested tertiary:
http://www.dslreports.com/forum/cleanup
http://www.cybertechhelp.com/forums/...splay.php?f=25
http://www.atribune.org/forums/index.php?showforum=9
http://www.geekstogo.com/forum/Malwa..._Here-f37.html
http://gladiator-antivirus.com/forum...?showforum=170
http://forum.networktechs.com/forumdisplay.php?f=130
http://forums.maddoktor2.com/index.php?showforum=17
http://www.spywarewarrior.com/viewforum.php?f=5
http://forums.spywareinfo.com/index.php?showforum=18
http://forums.techguy.org/f54-s.html
http://forums.tomcoyote.org/index.php?showforum=27
http://forums.subratam.org/index.php?showforum=7
http://www.5starsupport.com/ipboard/...p?showforum=18
http://aumha.net/viewforum.php?f=30
http://makephpbb.com/phpbb/viewforum.php?f=2
http://forums.techguy.org/54-security/
http://forums.security-central.us/forumdisplay.php?f=13

JS

[~BD~]

Peter Foldes wrote:

> Here is some links where they can analyze the HT LOGS
>
> NOTE: Registration is REQUIRED in any of the below before posting a log
>
> Suggested primary:
> http://www.thespykiller.co.uk/index.php?board=3.0
>
> Suggested secondary:
> http://www.bleepingcomputer.com/forums/forum22.html
> http://www.malwarebytes.org/forums/i...hp?showforum=7
>
> Suggested tertiary:
> http://www.dslreports.com/forum/cleanup
> http://www.cybertechhelp.com/forums/...splay.php?f=25
> http://www.atribune.org/forums/index.php?showforum=9
> http://www.geekstogo.com/forum/Malwa..._Here-f37.html
>
> http://gladiator-antivirus.com/forum...?showforum=170
> http://forum.networktechs.com/forumdisplay.php?f=130
> http://forums.maddoktor2.com/index.php?showforum=17
> http://www.spywarewarrior.com/viewforum.php?f=5
> http://forums.spywareinfo.com/index.php?showforum=18
> http://forums.techguy.org/f54-s.html
> http://forums.tomcoyote.org/index.php?showforum=27
> http://forums.subratam.org/index.php?showforum=7
> http://www.5starsupport.com/ipboard/...p?showforum=18
> http://aumha.net/viewforum.php?f=30
> http://makephpbb.com/phpbb/viewforum.php?f=2
> http://forums.techguy.org/54-security/
> http://forums.security-central.us/forumdisplay.php?f=13
>
> JS


Tell me, Peter .....

If one logs on to one of the servers you mention above - and 'registers'
- would that not make it relatively easy for a hacker lurking there to
place a 'backdoor' *through* one's firewall?

Is there any organisation (FBI perhaps?) responsible for checking that
no such action *is* taken by somebody on one or more of the 'help' sites
listed?

I appreciate that getting through a firewall is not a plug-n-play thing
for script-kiddies; it has to be carefully planned and executed!

--
Dave - "It is much better to be hated for what you are, than to be loved
for what you definitely are not." "Do unto others as you would have them
do unto you."

[Beauregard T. Shagnasty]

~BD~ wrote:

> If one logs on to one of the servers you mention above - and 'registers'
> - would that not make it relatively easy for a hacker lurking there to
> place a 'backdoor' *through* one's firewall?

Your hinky paranoia is working overtime yet again.

Why do you care? You use a Mac.

--
-bts
-This space for rent, but the price is high

[~BD~]

Beauregard T. Shagnasty wrote:
> ~BD~ wrote:
>
>> If one logs on to one of the servers you mention above - and 'registers'
>> - would that not make it relatively easy for a hacker lurking there to
>> place a 'backdoor' *through* one's firewall?
>
> Your hinky paranoia is working overtime yet again.

I care about the safety of others, not for myself. I abhor Cybercrime
and those who commit same. Surely you do, too?

> Why do you care? You use a Mac.

Do keep up, Bts! ;-)

Tsunami backdoor trojan ported from *Linux* to take control of Macs too
__________________________________________________ _____________________

The Linux-based Tsunami backdoor trojan has made its way over to the
Mac, according to security firm ESET. The company posted to its blog
(hat tip to Macworld) that a Mac-specific variant, OSX/Tsunami.A has
made an appearance on the trojan scene, though ESET made no mention of
whether it was gaining any traction among users.

ESET's Robert Lipovsky wrote on Wednesday that the code for
OSX/Tsunami.A was ported from the Linux version of the trojan that the
company has been tracking since 2002. Hard-coded is a list of IRC
servers and channels, which the trojan tries to connect to in order to
listen for malicious commands sent from those channels.

Lipovsky published a list of the commands pulled from the Linux variant
of Tsunami, but the general gist is that the trojan can open a backdoor
to perform DDoS attacks, download files, or execute shell commands.
Tsunami has "the ability to essentially take control of the affected
machine."

Security firm Sophos also acknowledged the appearance of the
Mac-targeted Tsunami backdoor, but reminded users that there is still
"far less malware [in] existence for Mac OS X than for Windows." Still,
the company says the problem is real and that users should protect
themselves with anti-malware software. "We fully expect to see
cybercriminals continuing to target poorly protected Mac computers in
the future," Sophos' Graham Cluley wrote. "If the bad guys think they
can make money out of infecting and compromising Macs, they will keep
trying."

http://arstechnica.com/apple/news/20...f-macs-too.ars

--
Dave - "It is much better to be hated for what you are, than to be loved
for what you definitely are not." "Do unto others as you would have them
do unto you."

[Beauregard T. Shagnasty]

~BD~ wrote:

> Beauregard T. Shagnasty wrote:
>> ~BD~ wrote:
>>> If one logs on to one of the servers you mention above - and
>>> 'registers' - would that not make it relatively easy for a hacker
>>> lurking there to place a 'backdoor' *through* one's firewall?
>>
>> Your hinky paranoia is working overtime yet again.
>
> I care about the safety of others, not for myself. I abhor Cybercrime
> and those who commit same. Surely you do, too?
>
>> Why do you care? You use a Mac.
>
> Do keep up, Bts! ;-)
>
> Tsunami backdoor trojan ported from *Linux* to take control of Macs too

Apples/oranges. That has absolutely nothing to do with HighJackThis (the
subject of your thread), which is a Windows-only program.

Do keep up, ~BD~.

--
-bts
-This space for rent, but the price is high

[~BD~]

Beauregard T. Shagnasty wrote:
> Henry wrote:
>
>> Beauregard T. Shagnasty wrote:
>>> Henry wrote:
>>>> I got my HijackThis log and went to www.hijackthis.de and clicked on
>>>> English and I can't figure out what to do with my log. I thought
>>>> someone would look at it and tell me what was wrong and what to do. Am
>>>> I not correct and how do I do that please?
>>>
>>> "You can paste a logfile in this textbox"
>>>
>>> "or you can choose a logfile from your computer"
>>>
>>> What part of that do you need help with? Paste your log into the
>>> textbox and click the Analyze button.
>>>
>> I did that but I didn't know what to do with the results that came back.
>
> As I remember, each log entry has a marker and what to do.
>
>> I seem to remember a couple of years ago that I sent my log file to a
>> web site and someone with more knowledge than me, looked at it and
>> replied as to what I should do.
>
> Here's a list:
> http://hjt-data.trendmicro.com/hjt/a...this/index.php


It's rather a shame that this one hasn't been kept up to date
http://aumha.org/

--
Dave - "It is much better to be hated for what you are, than to be loved
for what you definitely are not." "Do unto others as you would have them
do unto you."

[~BD~]

Beauregard T. Shagnasty wrote:
> ~BD~ wrote:
>
>> Beauregard T. Shagnasty wrote:
>>> ~BD~ wrote:
>>>> If one logs on to one of the servers you mention above - and
>>>> 'registers' - would that not make it relatively easy for a hacker
>>>> lurking there to place a 'backdoor' *through* one's firewall?
>>>
>>> Your hinky paranoia is working overtime yet again.
>>
>> I care about the safety of others, not for myself. I abhor Cybercrime
>> and those who commit same. Surely you do, too?
>>
>>> Why do you care? You use a Mac.
>>
>> Do keep up, Bts! ;-)
>>
>> Tsunami backdoor trojan ported from *Linux* to take control of Macs too
>
> Apples/oranges. That has absolutely nothing to do with HighJackThis (the
> subject of your thread), which is a Windows-only program.
>
> Do keep up, ~BD~.
>

Not a magnanimous response. You know full well that I was responding to
Foldes, a proven liar, with regard to various 'help' sites.

--
Dave - "It is much better to be hated for what you are, than to be loved
for what you definitely are not." "Do unto others as you would have them
do unto you."

[Beauregard T. Shagnasty]

~BD~ wrote:

> Beauregard T. Shagnasty wrote:
>> ~BD~ wrote:
>>> Beauregard T. Shagnasty wrote:
>>>> ~BD~ wrote:
>>>>> If one logs on to one of the servers you mention above - and
>>>>> 'registers' - would that not make it relatively easy for a hacker
>>>>> lurking there to place a 'backdoor' *through* one's firewall?
>>>>
>>>> Your hinky paranoia is working overtime yet again.
>>>
>>> I care about the safety of others, not for myself. I abhor Cybercrime
>>> and those who commit same. Surely you do, too?
>>>
>>>> Why do you care? You use a Mac.
>>>
>>> Do keep up, Bts! ;-)
>>>
>>> Tsunami backdoor trojan ported from *Linux* to take control of Macs
>>> too
>>
>> Apples/oranges. That has absolutely nothing to do with HighJackThis
>> (the subject of your thread), which is a Windows-only program.
>>
>> Do keep up, ~BD~.
>
> Not a magnanimous response. You know full well that I was responding to
> Foldes, a proven liar, with regard to various 'help' sites.

No, I don't know full well, as you replied to me. I do not see "Foldes"
in the attributes above. And the Tsunami trojan still has nothing to do
with HighJackThis.

--
-bts
-This space for rent, but the price is high

[~BD~]

Beauregard T. Shagnasty wrote:
> ~BD~ wrote:
>
>> Beauregard T. Shagnasty wrote:
>>> ~BD~ wrote:
>>>> Beauregard T. Shagnasty wrote:
>>>>> ~BD~ wrote:
>>>>>> If one logs on to one of the servers you mention above - and
>>>>>> 'registers' - would that not make it relatively easy for a hacker
>>>>>> lurking there to place a 'backdoor' *through* one's firewall?
>>>>>
>>>>> Your hinky paranoia is working overtime yet again.
>>>>
>>>> I care about the safety of others, not for myself. I abhor Cybercrime
>>>> and those who commit same. Surely you do, too?
>>>>
>>>>> Why do you care? You use a Mac.
>>>>
>>>> Do keep up, Bts! ;-)
>>>>
>>>> Tsunami backdoor trojan ported from *Linux* to take control of Macs
>>>> too
>>>
>>> Apples/oranges. That has absolutely nothing to do with HighJackThis
>>> (the subject of your thread), which is a Windows-only program.
>>>
>>> Do keep up, ~BD~.
>>
>> Not a magnanimous response. You know full well that I was responding to
>> Foldes, a proven liar, with regard to various 'help' sites.
>
> No, I don't know full well, as you replied to me. I do not see "Foldes"
> in the attributes above.


This is how SeaMonkey presents the thread:

http://i43.tinypic.com/suvpcw.jpg

Forgive me, then, for assuming that you'd be viewing something similar.

> And the Tsunami trojan still has nothing to do with HighJackThis.

Agreed. I had no intention of making it seem that it had. :-(

Here are the 'References' from your Header:

<XOydneUV-YkkPd_SnZ2dnUVZ8sydnZ2d@bt.com>
<jhugf4$2tv$1@speranza.aioe.org> <ueSdnYaJkMn4fN_SnZ2dnUVZ7vOdnZ2d@bt.com>
<jhvfev$8vb$1@speranza.aioe.org> <pOKdnfXHrq6vD97SnZ2dnUVZ8mSdnZ2d@bt.com>
<ji03vg$8d2$1@dont-email.me> <mdWdnRBjSf24A97SnZ2dnUVZ7smdnZ2d@bt.com>
<ji08l6$7f8$1@dont-email.me> <KbKdnXoeodeEOt7SnZ2dnUVZ7o2dnZ2d@bt.com>

--
Dave - "It is much better to be hated for what you are, than to be loved
for what you definitely are not." "Do unto others as you would have them
do unto you."