bearskin Posted October 19, 2009 Report Share Posted October 19, 2009 I'm not around that often. can someone tell me why we don't use hijach this logs anymore? don't it work? Quote Link to post Share on other sites
Rorschach112 Posted October 19, 2009 Report Share Posted October 19, 2009 Its not particularly helpful anymore Quote Link to post Share on other sites
TheTerrorist_75 Posted October 19, 2009 Report Share Posted October 19, 2009 Newer programs that dig deeper have been written by those who have been involved with fighting malware. Quote Link to post Share on other sites
garmanma Posted October 20, 2009 Report Share Posted October 20, 2009 One of the project managers for HJT has contacted Bleeping Computer saying that they are revamping it and asking for suggestionsHe was pretty gung-ho for a while but I haven't seen much of him lately Quote Link to post Share on other sites
Rorschach112 Posted October 20, 2009 Report Share Posted October 20, 2009 Even with numerous changes, HJT still wont be good enough to use as our main diagnostic tool on forums. I don't expect to see any serious changes for a year or two, which isn't feasible with malware removal these days Quote Link to post Share on other sites
Pete_C Posted October 21, 2009 Report Share Posted October 21, 2009 I'm not around that often. can someone tell me why we don't use hijach this logs anymore? don't it work?As noted, while it was state of the art in the past it has become apparent that malware continues to evolve. Other tools such as RSIT and Old Timers , give additional information such as files and folders created in the last thirty days which are extremely useful in identifying an infection. Sure there are other tools such as combofix which will do this; but combofix is very dangerous when in the hands of an amateur or if run when certain specific infections are present. While Hijackthis is still a usefull tool for preliminary screening and cleanup; often it leaves you asking for a followup with one of the other tools just to find out what is really there. So some sites have chosen to skip the preliminaries and just go with asking for an OT or RSIT log instead.Why go with a hijackthis log then? Well in my opinion there are a couple reasons. First is confidence; a lot of people know about hijackthis and trust it if they see you asking for a hijackthis log they feel that they are in the right place for help. Secondly it allows prescreening; cutting out the actuall infections from simple cases where the person is "just checking" to see why their machine seems slow. Quote Link to post Share on other sites
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.