Solve : HJT? – InterviewSolution

InterviewSolution

1.	Solve : HJT?
Answer» I was wondering...where can I find a good HJT tutorial? It's such a useful program and we're all using it pretty frequently, so it'd be nice to know how to read the logs better. I can kinda get the main gist by looking at them and can sometimes spot things that shouldn't be there, but I don't quite fully understand everything involved.You could have a look, >here<, >here<, >here<, or >here<. Hope that helps. 8-)fffreakThanks a lot for the links. Those are super helpful. It's a lot of info and I'm a little tired, so I can't read it all right now, but what I've read so far has already cleared up quite a few questions I had. Thanks again; this is exactly what I was looking for.Your welcome, again easy to find when you're using Google.Sorry to go of topic but i have often wondered when sending a link how do i change the link to here or try this eg ?? You could have a look, >here<, >here<, >here<, or >here<. Hope that helps. Skyblue It is called BBCode, you can do this by... Code: [Select][url=http://www.google.com/]Google[/url]Thank you Now that tells me what its called,the question was how do i do it??? SkyblueI already told you . Code: [Select][url=http://www.google.com/]google[/url]He just showed you how. Use that code he posted as a guideline. Code: [Select][url=THE URL OF THE SITE YOU'RE LINKING TO]TEXT[/url] For example... Code: [Select]Please click [url=http://www.google.com]here[/url] Turns into... Please click here.CBMatt .... glad to hear someone else has caught the bug. With HJT it is imperative you remember old addage .... a little knowledge is a dangerous thing. The malware that you see in the log could be the tip of the iceberg. Much malware just hides deeper than HJT can see. Contrary to what some folk think HJT doesn't reveal everything. Far from it. There are free training places where you can learn the art of HJT fixing better than just "reading up" on it. Here are some of the best ..... TechSupprtForums "Academy" http://www.techsupportforum.com/tsf-academy/ Malware Removal "University" http://forum.malwareremoval.com/viewtopic.php?t=233 Tom Coyote "Classroom" http://forums.tomcoyote.org/index.php?showtopic=1421 Bleeping Computer "HJT Study Hall" http://www.bleepingcomputer.com/forums/topic4970.html Geekstogo "Geek University" (GeekU) http://www.geekstogo.com/forum/Would_you_like_to_learn_to_fight_malware-t4817.html SpywareInfo "BOOT camp" http://forums.spywareinfo.com/index.php?showtopic=34 You register at a school ... have a look round to see what's involved ... make your decision if you want to go ahead. You don't have to. There's no compulsion. Many people decide the committment's not there, it's too difficult or they simply haven't got the time. Oh yes .... to do it properly will take a lot of work and study but it will be worth it in the end. Happy hunting. OJThanks for all of the helpful links, oddjob. I'm looking into those sites right now. I'm busy with school, but I'm still interested in being adept with this program. I'm already starting to be able to point out CERTAIN things fairly quickly, which is nice. But of course, I still need more experience.With HJT follow what other experienced analysts do, google HJT entries and see what they indicate and, yes, do read up on those tutorials. They will give you an idea of what the entries can mean. The author wrote the main tutorial on which all others are based. You can read his tutorial here ... http://www.merijn.org/htlogtutorial.php When looking at other analysts' work you must not necessarily believe everything you read. Follow only the recommendations of people who are clearly correct in what they say. For example, if the analyst is a member of ASAP or is an MVP you can trust what they are doing. One small warning at the moment. In your research you may well see two programs being used when analysts fix HJT but which you must avoid at present.... Avenger and Combofix. Avenger involves writing specific instructions/code for the specific problem of the user in question. It's a VERY powerful tool and can easlily trash a system if someone else carries out the instructions. What I'm saying is that you can learn a lot by reading other analysts' fixes to problems but NEVER copy what they do with Avenger. At least not until you have more experience with HJT first. Combofix is a "point & shoot" tool. The user could d/l it, run it and it will fix many things without user intervention. It's very popular and easy to recommend to a user. HOWEVER, at the moment, the author of Combofix has pulled the tool from use. He has development problems with it. It must NOT be used for the time being. There are doubts as to whether the tool will ever return. Let us know what "training school" you choose. OJThis took me a couple of days because I've been super busy with school. But I finished up the MAJORITY of my current project, so I have a bit more time now. I looked around at the different sites and I think I'm going to give Geeks To Go a try. It seemed like the most appealing forum to me. So, I've submitted an APPLICATION. And now, I guess I WAIT to see if I get accepted or not. By the way, I've found another really helpful tutorial... http://hometown.aol.co.uk/jrmc137/hjttutorial/tutorial.htmYes, Matt, that is also a useful HJT tutorial. All these tutorials will be based on Merijn's own master copy but perhaps some are easier to follow. If in any HJT entry gives you doubt ... check with Merijn's one and research what other recognised analysts do with a given entry. Best of luck with your G2G application. I have no doubt you will be accepted (although do let me know if there's a problem). Happy bug hunting! OJJust to let you know, I've been accepted and I'm currently working on my first practice log. I haven't received any feedback yet, but I'm confident that I did well. My girlfriend is totally making fun of me, but I'm determined to do well in this. I'm already working on some of my canned speeches. Heh. Oh, and thanks for your help via PM. I'm downloading the two anti-malware programs you suggested and I'll run them as soon as they're done. Yay for dial-up... I'm going to have to get some sleep pretty soon because I have class in a few hours, so I might have to let you know how it goes later today.

Discussion

No Comment Found

Related InterviewSolutions