Project 2: HijackThis (10 Points)

What You Need for This Project

A Windows computer. The instructions below assume you are using Windows 10.

Installing HijackThis

In a Web browser, go to

http://www.majorgeeks.com/files/details/hijackthis.html

Click one of the links in the "Download Locations" section and follow the instructions on your screen to download HijackThis.

If the download doesn't start, check to see if NoScript is blocking it. If you see the "Scripts Currently Forbidden" message at the bottom of the Firefox window, click the Options button and then click "Temporarily Allow All This Page".

You need to find the file you downloaded. Some browsers put it in the Downlods folder, others put it on the Desktop.

Double-click the hijackthis_sfx.exe file you downloaded. A "WinZip Self-Extractor" box appears. Click the Unzip button.

Click OK.

Running HijackThis

At the lower left of the desktop, click the Start button. Click "File Explorer", "This PC".

In the left pane of File Explorer, expand "Local Disk (C:)" and expand "Program Files". Click "HiJack This".

In the right pane, right-click HijackThis.exe and click "Run as Administrator", as shown below.

If a "User Account Control" box appears, click Yes.

A HijackThis box pops up with a warning message. Read it and click OK.

The main HijackThis box appears, as shown below. Click the "Do a system scan and save a logfile" button.

Analyzing the Logfile at HijackThis.de

A logfile appears in Notepad, with a long list of processes and registry keys, as shown to the right on this page. This list is hard to understand in this form, so we'll use a free online tool to interpret it.

In a Web browser, go to http://hijackthis.de

If NoScript is running, you may see a "Scripts Partially Allowed" message at the bottom of the Browser window. In that case, click the Options button and then click "Allow hijackthis.de".

Click in the Notepad window showing the log file. Press Ctrl+A to select all the text, and Ctrl+C to copy it to the Clipboard.

In the Firefox window, in the hijackthis.de page, click in the white box in the middle of the page. Right-click and click Paste. The text should appear in the box, as shown below.

In the hijackthis.de page, at the bottom, click the Analyze button.

You should see a list of items found on your computer, with a rating of each item's safety, as shown below on this page, as shown below. This is very useful when trying to clean spyware off infected computers!

Saving a Screen Image

Make sure the hijackthis.de Web page is open, showing some of the items from your machine with safety ratings.

Press Shift+PrintScrn That will copy the whole desktop to the clipboard.

YOU MUST SUBMIT WHOLE-DESKTOP IMAGES FOR FULL CREDIT

At the lower left of the desktop, in the search box, type PAINT. Open Paint. Click in the Paint window and press Ctrl+V.

Save the image with the filename "Your Name Proj 2".

Turning In Your Project

Email the image to me as an attachment to an e-mail message. Send it to: cnit.120@gmail.com with a subject line of "Proj 2 From Your Name", replacing Your Name with your own first and last name. Send a Cc to yourself.

Last Modified: 1-28-16