New
#11
Thank you all for the warm welcome. I can't believe how many of you are so active on so many forums.
You can thank who ever has the SevenForums Twitter account for making me aware of all the fun here. I don't get the time to scour the forums for WinPatrol questions but I did see a reference on Twitter about this thread so I figured I should stop by.
Thanks again,
Bill
I'm test driving WinPatrol. Does it slow down a scan by MSE?
WinPatrol shouldn't slow down any processes. Many WinPatrol features have the option to set the time between Scotty's patrols. Scotty will patrol in "real time" for WinPatrol Plus subscribers. This means that if there is a change to a monitored feature, immediate notification will be provided. With the free version of WinPatrol, it is up to the user to set the time between patrols. Depending on your settings in Windows 7 for system tray, you will notice some "movement" by Scotty when he is on patrol.
Of course you can ask. (Corrine considers whether she should answer the question . . . )
Ok, first a bit of a rant:
Much too frequently when a person has malware problems, the first solution offered is to clear System Restore. Let me assure you that is most definitely not a solution. The only way malware in System Restore can re-infect the computer is if the computer is restored to an infected point. That said, keep in mind that System Restore is not an endless repository. Old restore points are cycled out in favor of new restore points.
The reason, however, for not clearing System Restore is that should something go horribly wrong during the cleanup process, without a restore point, there may be no other option than a repair reinstall of the operating system. Certainly an infected restore point can be better in that case, particularly if the computer is an OEM install without a repair disk. Keep in mind that antivirus and anti-malware programs do occasionally have false/positives. Also, many people seem to be of the opinion that willy-nilly registry edits is the way to clean an infected computer.
Note to self: finish that draft blog post on System Restore.
Now to answer your question:
Note also, please, that I also recommended a Quick scan. In a Full scan, MBAM (and A/V programs) scans System Restore. If it does not completely clean the file, the user may not have a good restore point. At a minimum, they will be returned to the state prior to the restore, which could be defective due to a f/p or incorrect user action.
Both Marcin Kleczynski and Bruce Harrison (MBAM developers) recommend a Quick scan. The first step should be to clear temporary files. (I recommend ATF Cleaner by Microsoft MVP Atribune, from ATF-Cleaner.exe - www.atribune.org followed by a shutdown/restart prior to scanning.)
After the computer is clean, create a fresh restore point and then use Disk Cleanup to delete all but the most recent restore point.
- Click start, type Disk Cleanup in the search box
- Right-Click Disk Cleanup and select "Run as Administrator" and accept the UAC elevation prompt.
- Select the drive where Windows is installed (if you have more than one drive) and click "OK".
- When the scan completes, check/uncheck desired boxes.
- Next, please click the More Options tab at the top.
- Click the "Clean up..." button under the "System Restore and Shadow Copies" section at the bottom.
- Click Delete in response to the question "Are you sure you want to delete all but the most recent restore point?", click OK and answer Yes again.
- The disk clean up utility will remove the selected items. When it completes, please restart the computer to properly record the changes made to the hard disk.
Perhaps more than you asked. I hope this helps.