Why isn't system restore reccomended as the 1st step in the malware removal guide?

I will probably get flamed into submission over this, but I really feel that the first step towards malware/spyware and virus removal should be system restore launched from safe mode.

I can't even begin list how many times this has been effective for me as a tech in removing malware.

After that scanning with malwarebytes, super antispyware and avira free usually will remove any remaining junk left over.

 

Re: Why isn't system restore reccomended as the 1st step in the malware removal guide

Yeah, it is possible for the system to write the virus into restore, so when you auto resort to the system restore, you're not doing anything but rolling back to the beginning of your infection. Also, severe infections will prevent you from running a system restore. I've seen some so sever the only way to remove them successfully was wiping the entire system.

 

Re: Why isn't system restore reccomended as the 1st step in the malware removal guide

In my experience if system restore from safe mode, avira, malwarebytes, and SAS can't fix it, it's worthy of a reformat.

For my customers who have repeat infections, I have successfully helped most of them migrate to linux mint and they are more than happy with it.

While system restore may not get rid of more advanced malware, it get's rid of the vast majority I've encountered as a tech.

I can find no valid reasons why system restore shouldn't be used as a first step to malware removal.




Just my $0.02

 

Re: Why isn't system restore reccomended as the 1st step in the malware removal guide

The above quote says it all don't you think, the word ( REPEAT ) means that it has'nt gone away at all but just been laid dormant in hidden files and waiting for that chance to show again ! :major

 

Re: Why isn't system restore reccomended as the 1st step in the malware removal guide

That's why you guys rock and there are no others or any other place like MG's :major

 

Re: Why isn't system restore reccomended as the 1st step in the malware removal guide

No.

After I do a system restore, I remove the customer drive and scan it on my bench computer using avira with all options turned to max. Then with SAS, and malwarebytes. This is done using a clean computer.

Then I return the drive to their machine, boot to windows and install avira.

Most of the repeat infections are due to the customer removing avira and installing something else and using limewire to download malware.

Linux mint and frostwire, seem to resolve this issue if they keep reinfecting themselves.

 

Re: Why isn't system restore reccomended as the 1st step in the malware removal guide

System restore could be added to your procedure as a first step, that's all I am suggesting.

To me it makes more sense to do this first, then scan for anything system restore could not remove. It makes the job a lot easier, not having to battle with virii/spyware running in memory.

I see no real argument for why it should not be used first before continuing with your malware removal guide, other than the added time it takes to do a system restore which I believe in negligible.

Adding system restore as a first step to you're guide doesn't change the whole process that much. I really don't see what the big deal is.

If a user keeps downloading and installing viruses via limewire or facebook toolbar applications, and removing the virus scan you install because they like something else better, it doesn't leave you with a whole lot of other options besides switching them to linux.

I've had several customers download the same virus repeatedly even after a reformat, several times. Linux sometimes is the only other option.

Reformatting is always a last resort, but when I do reformat I always make sure I backup everything I am told to backup which is usually a long arduous process. All bookmarks, email, music, movies, pictures etc. I save everything I can think of plus any special data from customer programs that they need restored.

 

Re: Why isn't system restore reccomended as the 1st step in the malware removal guide

TimW,

Adding system restore as a first step to you're guide doesn't change anything.

It seems like you're just being bullheaded and obstinate about defending the status quo.

There really are no arguments for not doing it first, other than it adds slightly to the amount of time you spend on the removal.

Just saying

 

Re: Why isn't system restore reccomended as the 1st step in the malware removal guide

dr m,

I actually take pride in being the best tech in my area. You guys have a good guide put together, but it just seems a little bit silly to me to not do system restore first before continuing with the guide. It makes the process so much easier, not having to deal with virii and spyware in running in the background.

 

Re: Why isn't system restore reccomended as the 1st step in the malware removal guide

And supposing you "transfer" to a different OS doesn't agree with the customer?
They may feel comfortable with Windows and NOT want to change.
I go by the old saying"If something isn't broken, don't fix it."
Our Malware staff has a set that has proven itself time after time. Doesn't sound to me that it needs any "fixing".

 

Re: Why isn't system restore reccomended as the 1st step in the malware removal guide

I have switched several people to linux mint without any major issues. The few customers that wished to return to windows I was more than happy to do a free reformat.

I sometimes have to inform people I can't work on their virus removal issues anymore. Some customers just absolutely refuse to run a virus scan removing it the first chance they get, yet enjoy downloading and installing thousands of files per day from limewire and facebook apps and bit torrent sites.

They repeatedly download and reinstall viruses after first removing their own virus scanners. If they won't make the switch the linux, after 2-3 reformat's I refuse to fix their machine again. It's just too frustrating to deal with.

It's not broken, but imho it's not optimal. System restore as a first step removes a lot of headache.

 

Re: Why isn't system restore reccomended as the 1st step in the malware removal guide

I am not suggesting system restore as a replacement to the malware removal guide, I am simply saying it should be a prerequisite to it.


Reasons which were what exactly? It doesn't get rid of more advanced malware? It adds slightly to the amount of time spent doing a removal?

Sorry but if those are the best "reasons" you guys can come up with the pros vastly outweigh the cons.

99% of the time system restore has worked beautifully for me, making the process of removal malware so much easier.

Not having to deal with malware running in memory makes the process drastically more efficient.

 

Re: Why isn't system restore reccomended as the 1st step in the malware removal guide

Nick,

I am confused as to these reasons. What are they? Why is it a flawed plan?

 

Re: Why isn't system restore reccomended as the 1st step in the malware removal guide

You're saying your customers get viruses from limewire but you suggest frostwire? P2P programs are all the same, they are all malware's hiding spot regardless of name and I am a bit surprised a tech as yourself would suggest one.

 

Re: Why isn't system restore reccomended as the 1st step in the malware removal guide

If they are going to do p2p, I suggest they use linux mint. Frostwire is similar to limewire and is available in the ubuntu repositories.

 

Re: Why isn't system restore reccomended as the 1st step in the malware removal guide

I forgot to mention if it's a field call I usually use a system restore then use the latest avira's rescue system burnt to cd to scan for viruses/malware.

I think the malware removal guide is great, but I think it could be improved on.

 

Re: Why isn't system restore reccomended as the 1st step in the malware removal guide

You are confusing. You refuse to help those that re-infect themselves multiple times but are telling them how to do it. For those that you switch to Linux, the user most likely doesn't really know how to use it because you can't just plug and play around with everything like you do on Windows. So you must be providing it for them. It's like giving a child a cookie and telling them just to look at it.

 

Re: Why isn't system restore reccomended as the 1st step in the malware removal guide

What I don't suggest anyone use p2p on windows, only linux.

I refuse to help people who remove their virus scans after they have been told not to, then reinfect themselves over and over. Usually my cut of is 5 times or so.

Linux mint is easy to use, so easy a cave man could do it.

 

Re: Why isn't system restore reccomended as the 1st step in the malware removal guide

That is the most ridiculous thing I have ever heard.

Well, this is the end of the line for this thread and I.. I can not longer contribute to such foolishness. I hope you have a pleasant evening lordmaynoth

 

Re: Why isn't system restore reccomended as the 1st step in the malware removal guide

Nick to be honest I really don't think you are paying attention to what I am saying. I am not suggesting system restore as a replacement or an alternative to the malware guide, merely as a first step to take before continuing with it.

On a field call I use a current avira rescue system cd immediately after a system restore, then install avira antivir, malwarebytes and super antispyware.

System restore isn't the complicated process you make it out to be. Any person who is incapable of running it surely isn't capable of following the malware guide put forth in the forums.

I do virus removal daily, I can say without feeling arrogant I am the best tech in my area. I may not be at TimW's or the other staff's level but I know what works.

The malware removal guide is great, I am merely suggesting system restore as a first step, then maybe the avira rescue cd, before continuing with the guide.

Why work harder than you have to? Why fight malware and virii running in memory if you don't have to?

I don't force anyone to run any operating system they don't want to run. If they don't like linux I will be happy to switch them back to windows for free. Not having to worry about malware makes running a windows enviroment look insane however. I have a windows 7 hard drive dedicated to gaming, but all other activities are done in linux.

 

Re: Why isn't system restore reccomended as the 1st step in the malware removal guide

What?

Linux can't be infected by common windows viruses you will find on bittorent sites and limewire.

Explain to me why it is ridiculous.

 

Re: Why isn't system restore reccomended as the 1st step in the malware removal guide

Mostly because of the stress.

I like helping people, but I don't like helping idiots why refuse to listen to you.

I get too frustrated telling them not to do something, then almost out of spite it seems they do it. Uninstall avira antivir, install some crap AV I've never heard of or run without an antivirus period, then download 200 executable programs from bittorrent/limewire and call me screaming and upset when they are infected again as if somehow it's my fault.

I can't really deal with stupid angry people, I simply recommend another tech for them to take their computer to if they are unwilling to try linux mint after a few reformats of windows.

 

Re: Why isn't system restore reccomended as the 1st step in the malware removal guide

Because you should be teaching them GOOD browsing/downloading habits, not catering to the bad ones rolleyes

 

Re: Why isn't system restore reccomended as the 1st step in the malware removal guide

For somebody that claims to have such vast knowledge you can't even figure out which forum this thread should have been started in? Wow...I'm impressed rolleyes

Moving thread.

 

Re: Why isn't system restore reccomended as the 1st step in the malware removal guide

Yeah people don't want to change their ways.

Case in point an old man kept infecting himself from a porn site, I suggested safer alternatives. His response was: "I LIKE WHAT I LIKE". He would uninstall avira and install install an old virus scan from a cd he had laying around and never update the subscription for it. I finally was able to get him to switch to linux mint and he loves it.

Most people do not change their behavior no matter how much counseling you give them, they don't listen, and they don't care. Linux mint offers a great solution in such cases.

 

Re: Why isn't system restore reccomended as the 1st step in the malware removal guide

I tried it last time in the malware removal forum and had issues, so I purposefully posted in the lobby.

 

Re: Why isn't system restore reccomended as the 1st step in the malware removal guide

This is the 3rd time you have reposted the same thing. I suggest you slow down and not do it again.

Your first thread was moved for chaslang to respond to and I'm sure he will when he has the time. Until then, stop reposting the same thing over and over again!

 

Re: Why isn't system restore reccomended as the 1st step in the malware removal guide

yeah abby why are you deleting my threads about avira rescue cd system? Is it because I upset you somehow and you are doing it out of spite or what?

 

Re: Why isn't system restore reccomended as the 1st step in the malware removal guide

Oh please..don't give yourself so much credit. rolleyes You obviously came in here with a chip on your shoulder and are not open to a realistic discussion of time proven, thousands upon thousands of success stories for what does work the best.

As for your other topic, b/c you seem so hard headed I moved it for chaslang to discuss with you (that and your current topic) rather than having those that don't actually work the procedures on a daily basis. Straight to the top so to speak.

Now, if you can't find your way clear to wait patiently for chaslang to respond and keep repeating topics that have been moved and deleted well...I guess you best just log out b/c we are not gonna play your childish games nor deal with your blatant disrespect.

 

Re: Why isn't system restore reccomended as the 1st step in the malware removal guide

I feel the same, thanks.

 

Re: Why isn't system restore reccomended as the 1st step in the malware removal guide

I have kept it civil. I was discussing avira rescue cd in a separate thread only to have it deleted. I reported only to have the repost disappear. Then I am accused of playing childish games? LOL guys keep it classy yo.