[Jeb]

This is one of the latest webpages to be developed on the NSC network. I am getting more involved in training to fight malware, so I am going to set up this NSC page to serve as an adjunct. This page of the developing NSC network was started 11am Feb 16 2007.
NSC 1.0 | NSC Anti Malware V1.0
-------------------------------------------------------------------------------------------

This NSC webpage is under development so that it can be used as an adjunct to my ongoing training in fighting malware. It is also meant to be used by the general public, which is why it was added to this NSC network.

Geeks To Go Forums: http://www.geekstogo.com/forum/

Grinler's HJT
http://www.bleepingc...tutorial42.html

Merijn's HJT
http://www.spywarein...logtutorial.php

Grinler's AdAware
http://www.bleepingc...tutorial48.html



Within Merijn's HJT are at least two databases that are priceless in identifying malware:

F entries can be identified using Castle Cops' Startup List
http://www.castlecop...tartupList.html

O2 (Browser Helper Objects) and O3's
You can use the CLSID's as identifiers.
Check 'em against the BHO and Toolbar List
http://www.castlecops.com/CLSID.html

O4's
Check 'em against the PacMan's Startup List
http://www.castlecop...tartupList.html

Google http://www.google.com/
for O17's


Feb 17 2007
Split from IRC discussion
http://www.geekstogo...on-t149129.html

Malware Removal
http://www.malwareremoval.com/

MalWare Removal Forum Index (2,928 members as of 849pm Feb 17 2007.)
http://forum.malware...bbcc1e22c78209f
WOW What a multi-colored board legend!!!


Essexboy is an excellent Senior Class malware fighter, thusly I have posted the thread:
Help! Random pop ups.
http://www.geekstogo...s...148230&st=0


Feb 28 2007

Found a Geeks to Go thread where a user had a very long log:
Alcan worm, I already ran the script.
http://www.geekstogo...rm-t150237.html

WHEW!! MAN THAT WAS A LOOOOONG LOG!!














--------------------------