HijackThis: Difference between revisions

This article does not cite any sources. Please help improve this article by adding citations to reliable sources. Unsourced material may be challenged and removed. Find sources: "HijackThis" – news · newspapers · books · scholar · JSTOR (December 2006) (Learn how and when to remove this message)

HijackThis

HijackThis 2.0.2 screenshot
Developer(s)	Trend Micro
Stable release	2.0.2 / July 7, 2007 (2007-07-07)
Operating system	Microsoft Windows
Type	Malware diagnostic & removal
License	Freeware
Website	www.trendsecure.com

HijackThis, sometimes abbreviated HJT, is a freeware spyware-removal tool for Microsoft Windows originally created by Merijn Bellekom, and later sold to Trend Micro. The program 'HiJackThis' not only lists 'hard' to find registry keys, startup entries, and BHO's (Browser Helper Objects) but lets you see in a nice list a summary of items/objects that are being used in your computer - see picture to the right - it shows it nicely. The software does not perform any kind of antivirus or malware scanning. You need to be an advanced user in order to use this software - it does nothing on it's own. It's an excellent tool and widely used by technicians like myself. HijackThis is used primarily for diagnosis of spyware, as blind use of its removal facilities can cause significant software damage to a computer^[1].

HijackThis can generate a plain text logfile detailing all entries it finds, and most entries can be removed or disabled by HijackThis. Inexperienced users are often advised to exercise caution, or to seek help when using the latter option^[1], as HijackThis does not discriminate between legitimate and unwanted items, with the exception of a small whitelist of legitimate entries — thus allowing a user to unintentionally prevent important programs from running, which may cause their system or its peripherals to stop working. HijackThis will, however, attempt to create backups of the files and registry entries it removes, which can be used to restore the system in the event of a mistake.

A common approach is to post the logfile to a forum where more experienced users will help decipher which entries need to be removed. Automated tools also exist that analyze saved logs and attempt to provide recommendations to the user, or to clean entries automatically. Use of such tools, however, is generally discouraged by those who specialize in manually dealing with HijackThis logs; they consider the tools to be potentially dangerous to inexperienced users, and neither accurate nor reliable enough to substitute for consulting with a trained human analyst.

Later versions of HijackThis include additional tools like a task manager, hosts file editor and alternate data stream scanner.

This section has an unclear citation style. The references used may be made clearer with a different or consistent style of citation and footnoting. (Learn how and when to remove this message)

• Official site
• merijn.org – website of HijackThis author Merijn Bellekom
• HijackThis Quickstart
• Polish HijackThis site