The problem I have encountered is that when a customer brings in a computer that has serious problems, rarely, if ever does the restore point fix the problem. If it does, it usually causes other problems by programs that were installed since the restore point date.
Restore points work from the day the OS (operating system) was installed. A new restore point is created when major updates are done by Microsoft, new software installs, and you can create one manually if desired.
The biggest problem with restore points is that they will contain a virus if the computer becomes infected. Even if the virus is removed completely from the computer and all is clean and well, the virus still can remain hidden in the restore point from when the computer was infected.
Even though you have cleaned out all viruses, as there are still some lurking in the restore points, your current anti-virus program can detect them and will say you have viruses, which is really true. But only if you restore to a previous date that had the virus in it. Usually the antivirus programs will report problems in the System Volume Restore folder.
The only way to clear these out is to turn off the System Restore and then turn it back on. This will flush out the old restore points, and create one single new one, at the moment you turn it back on. This will eliminate any old bad points that contain malware or viruses or other problems.
Here is how to clean out the System Restore Folder:
Windows XP
Right Click on My Computer
Click on Properties
Click on the System Restore Tab
Click on the box next to "Turn off System Restore" and put a check mark there
Click on Apply
This will remove the old restore points
Now uncheck the "Turn off System Restore" which turns it back on
Click on Apply & OK
Vista / Windows 7
Right Click on My Computer
Click on Properties
Click on System Protection
Uncheck the box next to the Local Disk (C:) drive
Confirm you want to turn off system restore (if asked)
Click on Apply
Put a check back in on the Local Disk C: drive to turn the system restore back on
Click on Apply and then OK
You should not have to reboot the computer in between turning on and off the restore points. I have read you should reboot, but I found that you do not have to.
To easily double check if your restore points have been cleared out, install the latest CCleaner (see my earlier blog) and when you open it, click on the Tools Button, and System Restore, and you should only see one recent restore point. If you see a bunch, you did not clear them all out.
0 Response to "Virus Removal and Resetting Restore Points"
Posting Komentar