Ok, I imagine that I am not the only one who arrives at a site, hits the news posts button, comments, perhaps puts up a new thread and then moves on to the next site. Othertimes I may take a full look through the site more often it is the former, not the later in my case.

This thread has my tips, and also seeks imput too, 2cts welcome.

My way of blitz replying then:
- have 'canned replies folder' minimized to taskbar
- have window of email inbox minimized to taskbar.
- post then edit, no point in doing a slow perfect post if three people have replied before you.
- use hyphans and not numbers for points(as now so you can delete or add at will.
- for interagations marks use ' in place of " : 'yes'.
- keep an eye on what you are writing and see if you can make a canned if you feel that you have written the reply before.
- when there is no exact canned, use an open ended canned(template), for example

run command
press: winkey + r button
type:
press: enter
or

press: start>control panel>

just filling in the details and needed.

- create link replies for example:

Hi there, simply most malware will be removed if you follow the steps in the link given here; however, in the rare case that the malware beats the steps mentioned, then the link goes on to tell what to do after that.

http://www.geekstogo.com/forum/You_Must_Re..._Log-t2852.html


- learn to use the: alt + tab, ctrl + c, ctrl + v, hotkeys
- remember to keep an eye on your email inbox, feedback tells you if your posts have worked
- don't get into fights with people, bare in mind what they are saying, ask if you don't understand but let be.
- avoid emicons in canned, they change with sites.
- no need to post in sites that you feel unconfortable with, no need to fight lost battles either.
- always look for new sites even if you are happy with the ones you are at, you may find ones that either teach you new things or are just what you are looking for.

Anyway, I have broken one of my rules because I like to keep my post shortish but I hope this post pleases, or at least stimulates you to add something here since I know that I have left out a lot of other points too.
Sin.,
flea

I know many people over at GTG use canned speeches, and I created a few for malware removal while in GeekU (an excellent malware-removal training program, I dropped out due to homework and my job). I think some of them use programs, do you know of any good ones?

I don't know how many times I had to explain and request a CHKDSK or Repair (although I usually point them to a link in my sig now). I started making tutorials on my site, but I haven't had time to add any new ones for a while because I've been really busy.

hi pi rules,
Yes, the idea is one makes canned stuff explanations, or make canned redirects,and then one either links the victim to it with the link and a little worded explaination as for example the ones you see below, or posts the canned solution directly, now since this is the blizt reply thread, an idea is to make a template(canned) with all the needed redirects keeping it with the other canned in a folder minimized to taskbar:


Hi there, simply most malware will be removed if you follow the steps in the link given here; however, in the rare case that the malware beats the steps mentioned, then the link goes on to tell what to do after that.
http://www.geekstogo.com/forum/You_Must_Re..._Log-t2852.html

or (your chechdisk, keith's standard reply)

This will help clear that I beleve, let me know if it does the trick.

http://www.kickenhardware.net/forum/showthread.php?t=3835

or

I think the simplest thing would just be to repair the os.

http://www.geekstogo.com/forum/Repair-Windows-XP-t138.html

xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx xxxxxxxxxxxxxx

a reply like this that I have written here takes at least ten minutes and has my usual spelling misses, whereas those redirects take less than a minutes from the stage where one first sees the post, to the point where has posted the reply.

Hi, a few more points about blizt replying then:

- one cannot reply quickly if one hasn't got ones preparation ready
- one cannot learn if ones replies are unclear to the poster
- one keeps tabs on questions that one couldn't answer
- one reflects at the end of the stint
- one edits ones canned for the next stint
- one copies other people's replies to digest

Fleamailman,

The link you gave providing malware removal instructions is very good. Just a couple notes though:

1) The link fails to mention the critical step of clearing the restore point and creating a new one once the system is clean. Advanced malware will trick the operating system into thinking it's a critical system file and embed itself into the System Restore files. Given that the average user seems to love using System Restore, failing to clear and recreate the restore point is a recipe for disaster.

2) The link mentions enabling all startup items in msconfig (including malware items). This is done so HijackThis will show these items and the online experts have a better understanding of what they're up against. This instruction applies to online techs only. It does not apply to techs who are actually in front of the system and performing malware removal.

Seth, thank you for offering to edit the tut in the way you would feel better, looking forward to seeing it then. Yes, I normally write something like a provizow as follows: 'attention if you are doing a HJT log with a malware removal do not attempt the adjust the startups'.

Seth, edited that post startupwise, now editing it restoringwise, glad to see someone reading the post then.

Seth, does this sound right?

After removing malware, one should delete previous 'system restore' points since that might also restore the malware.

to delete previous 'system restore points'

runbox command
press: winkey + r button
type: sysdm.cpl
press: enter
click: system restore
click: turn off system restore
press: apply
"warning this deletes all saved restore point to date", press: yes

(ah, but one then has to turn the restore points system back on)

to turn on 'system restore'

runbox command
press: winkey + r button
type: sysdm.cpl
press: enter
click: system restore
unclick: turn off system restore
press: apply
press: ok

link if you the above is unclear:
http://service1.symantec.com/SUPPORT/tsgeninfo.nsf/docid/2001111912274039?OpenDocument&src=sec_doc_nam