HijackThis adalah "alat" yang sangat berguna untuk mengesan sama ada komputer anda diserang virus,spyware ataupun etc..
Kenape HijackThis?
HijackThis akan memberitahu
-proses yang sedang berjalan di dalam PC(termasuk virus)
-apa yang akan dimulakan selepas anda menghidupkan PC anda(start-up program la tu).
Mane nak dapat benda ni?
-download dkat link ni (http://majorgeeks.com/download3155.html)
Dah download..macam mana nak guna?
-
1)Lakukan imbasan dengan menggunakan butang "Do a system scan and save a logfile"
2)Nanti akan keluar "log listing" yg berjela-jela mcm dkat bawah ni,pastu save listing tu dkat dalam desktop.
.exe
C:\windows\system32\wscntfy.exe
C:\windows\Explorer.EXE
C:\Program Files\Motorola\MotoConnectService\MotoConnect.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\TortoiseHg\TortoiseHgOverlayServer.exe
C:\WINDOWS\ZSSnp211.exe
C:\WINDOWS\Domino.exe
C:\Java_ME_platform_SDK_3.0\bin\device-manager.exe
C:\program files\relevantknowledge\rlvknlg.exe
C:\Program Files\Ares\Ares.exe
C:\Program Files\Java\jdk1.6.0_20\bin\javaw.exe
C:\windows\system32\wuauclt.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\windows\system32\taskmgr.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\Opera\opera.exe
C:\WINDOWS\system32\notepad.exe
C:\Documents and Settings\neo\Desktop\HijackThis.exe
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.imesh.com/sidebar.html?src=ssb
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: (no name) - {1FD79A59-37B1-459B-9097-09F9FAB8A523} - (no file)
O2 - BHO: CDNSCacheObj Object - {376892AE-1825-4E5F-9F85-23F9640051CC} - C:\WINDOWS\XviDplg.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\YTSingleInstance.dll
O3 - Toolbar: Y
Logfile of HijackThis v1.99.1
Scan saved at 12:58:37 PM, on 7/14/2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\windows\System32\smss.exe
C:\windows\system32\winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\svchost.exe
C:\windows\System32\svchost.exe
C:\windows\system32\spoolsv.exe
C:\Program Files\Motorola\MotoConnectService\MotoConnectService.exe
C:\windows\system32\svchost
Kenape HijackThis?
HijackThis akan memberitahu
-proses yang sedang berjalan di dalam PC(termasuk virus)
-apa yang akan dimulakan selepas anda menghidupkan PC anda(start-up program la tu).
Mane nak dapat benda ni?
-download dkat link ni (http://majorgeeks.com/download3155.html)
Dah download..macam mana nak guna?
-
1)Lakukan imbasan dengan menggunakan butang "Do a system scan and save a logfile"
2)Nanti akan keluar "log listing" yg berjela-jela mcm dkat bawah ni,pastu save listing tu dkat dalam desktop.
.exe
C:\windows\system32\wscntfy.exe
C:\windows\Explorer.EXE
C:\Program Files\Motorola\MotoConnectService\MotoConnect.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\TortoiseHg\TortoiseHgOverlayServer.exe
C:\WINDOWS\ZSSnp211.exe
C:\WINDOWS\Domino.exe
C:\Java_ME_platform_SDK_3.0\bin\device-manager.exe
C:\program files\relevantknowledge\rlvknlg.exe
C:\Program Files\Ares\Ares.exe
C:\Program Files\Java\jdk1.6.0_20\bin\javaw.exe
C:\windows\system32\wuauclt.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\windows\system32\taskmgr.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\Opera\opera.exe
C:\WINDOWS\system32\notepad.exe
C:\Documents and Settings\neo\Desktop\HijackThis.exe
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.imesh.com/sidebar.html?src=ssb
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: (no name) - {1FD79A59-37B1-459B-9097-09F9FAB8A523} - (no file)
O2 - BHO: CDNSCacheObj Object - {376892AE-1825-4E5F-9F85-23F9640051CC} - C:\WINDOWS\XviDplg.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\YTSingleInstance.dll
O3 - Toolbar: Y
Logfile of HijackThis v1.99.1
Scan saved at 12:58:37 PM, on 7/14/2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\windows\System32\smss.exe
C:\windows\system32\winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\svchost.exe
C:\windows\System32\svchost.exe
C:\windows\system32\spoolsv.exe
C:\Program Files\Motorola\MotoConnectService\MotoConnectService.exe
C:\windows\system32\svchost
No comments:
Post a Comment