Jump to content

HijackThis 2.0.0 Beta

Sputnik

By Sputnik
in Software

 Share

Recommended Posts

TonyKlein

TonyKlein

Posted
Posted
Hope it doesn't go the way of CWShredder.

 

CWShredder and HT are really two different animals; CWShredder is now certainly a dead duck, but whereas a couple of years ago a dedicated CWS removal tool certainly made sense, these days such a large proportion of current malware can be considered to be CWS related, that it is really beyond the scope of any single removal tool.

 

Trend is of course already targeting adware through its AV and AS solutions, so I can kind of understand why they decided to abandon CWShredder.

 

Let's indeed hope they'll treat HT with a bit more respect.

Tony Ms-mvp_small.gifCLSID List - A Collection of Autostart Locations

Link to comment
Share on other sites
Humpty

Humpty

Posted
Posted

Thanks for pointing it out Sputnik.

 

Sent one of the Wilders update team your link.His reply:

Yes, I was aware of this yesterday and I will post it later after I have time to work up a post about it and it will have a link to Trend Micro who owns it now, not filehippo. There are many people concerned about the EULA on this.

Thanks

Link to comment
Share on other sites
  • Moderators
rridgely

rridgely

Posted
  • Moderators
Posted

At first glance I didn't notice anything all that different.

As long as this one works on vista I'm happy.

 

I did notice there is a "upload to be analyzed" button. I clicked it and it took me to a page with a key of what all of the 0- entries mean, but the rest was useless. It doesn't say whats good or bad it just says how commen the entries are.(not that it matters anyway, those auto analyzer sites are never all that accurate anyway)

Link to comment
Share on other sites
TonyKlein

TonyKlein

Posted
Posted
At first glance I didn't notice anything all that different.

 

[v2.00.0]

* AnalyzeThis added for log file statistics

* Recognizes Windows Vista and IE7

* Fixed a few bugs in the O23 method

* Fixed a bug in the O22 method (SharedTaskScheduler)

* Did a few tweaks on the log format

* Fixed and improved ADS Spy

* Improved Itty Bitty Procman (processes are frozen before they are killed)

* Added listing of O4 autoruns from other users

* Added listing of the Policies Run items in O4 method, used by SmitFraud trojan

* Added /silentautolog parameter for system admins

* Added /deleteonreboot [file] parameter for system admins

* Added O24 - ActiveX Desktop Components enumeration

* Added Enhanced Security Confirguration (ESC) Zones to O15 Trusted Sites check

 

At least it's good to see that a few bugs have been fixed (take for example O22s not displaying due to HT looking in the wrong place), and a couple of autostart locations added.

 

It certainly successfully lists my O22's (a HT first...):

 

Logfile of Trend Micro HijackThis v2.0.0 (BETA)

Scan saved at 13:30:38, on 12-3-2007

Platform: Windows XP SP2 (WinNT 5.01.2600)

 

Boot mode: Normal

 

O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll

O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll

 

And I also like the fact that it confirms the scan was run in Normal Mode.

 

 

I agree with you on the Analyze button; we certainly don't want people to go analyzing their own logs without the help of someone knowlegeable...

Tony Ms-mvp_small.gifCLSID List - A Collection of Autostart Locations

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing
×
×
  • Create New...

Important Information

By using this site, you agree to our Terms of Use.

  I accept