System Restore And Malware Infections

Discussion in 'other security issues & news' started by ggf31416, Mar 15, 2007.

Thread Status:
Not open for further replies.
  1. ggf31416

    ggf31416 Registered Member

    Aug 20, 2006
    (Windows XP built-in) System Restore creates backup copies of some extensions and the registry.
    If a computer were infected, supposing that:
    a) There is a restore point for a date prior to the infection
    b) System Restore doesn't fail for reasons not related to the infection
    c) There isn't any other available backup

    how effective would be system restore to clear the infection? Enough to justify trying it before disabling it?

    Is there malware that adds itself to existing restore points or block the system restore feature?
  2. TairikuOkami

    TairikuOkami Registered Member

    Oct 10, 2005
    There are not many infections (except rootkits), which could not be clean up with tools.
    System restore is a good thing, but for software related problem only, not for cleaning PC.
    It does not need to add itself, Windows back up infections too, I call it Mallware restore.
    I met many people with infected PCs asking, how to remove malware from System Restore.
  3. zcv

    zcv Registered Member

    Dec 11, 2002
    You disable/re enable SR - that wipes all the RP's.

    But you do that only after a system is clean because there is nothing to go back to just in caase the cure is worse than the disease.
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.