1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Free Software Like RollBack RX That Will Restore A System On Log-Off

Discussion in 'BlackHat Lounge' started by BrianGriffen, Apr 3, 2011.

  1. BrianGriffen

    BrianGriffen Registered Member

    Joined:
    Mar 9, 2011
    Messages:
    78
    Likes Received:
    49
    I am looking for a software that will completely kill any changes made to my system every single time I log off.
    The type that I am looking for is what USA Libraries use.
    They set up the computer with everything that they want on it, like Internet Browsers, Office - Messagers and other "generic" programs. Then they somehow take a snapshot of that state and freeze the computer there.
    When any guest logs on they can do whatever they want with it but when they log off, everything that they did has been reversed.... like it never happened.

    I am NOT talking about system restore because that will leave a LOT of stuff. The library comps even delete files like jpgs that you save.

    The closest thing that I have found is RollBack RX, but it seems like a product meant as an enterprise solution. Does anyone know of one that I could install on a new machine?

    Looking for something low cost or free because I have to buy a new machine to run it on.
     
  2. zone69

    zone69 Junior Member

    Joined:
    Nov 24, 2008
    Messages:
    196
    Likes Received:
    1,290
    I don't know if any programs that can do this when you just log off. I use DeepFreeze which removes all changes made in one login session but only after you reboot.

    Code:
    http://www.faronics.com/en/Products/DeepFreeze/DeepFreezeCorporate.aspx
    
    P.S. I have no affiliation with Faronics. I just use this program.
     
  3. BrianGriffen

    BrianGriffen Registered Member

    Joined:
    Mar 9, 2011
    Messages:
    78
    Likes Received:
    49
    Well reboot would work too... take a little longer, but that won't kill me now will it? I will look into this.

    When you say you use this, do you actually have it and run it on your comp? Have you used it with great success?

    I am looking for something that will get rid of even the deepest buried pebbles in the mountain called the Windows registry.
     
  4. zone69

    zone69 Junior Member

    Joined:
    Nov 24, 2008
    Messages:
    196
    Likes Received:
    1,290
    I needed a solution to have all flavors of OS with different levels of service packs, like Windows XP SP3,
    Vista 32/64 bit SP1 - SP3, etc for my QA testers to be able to test software on clean images so am running this on a dozen machines.
    Essentially I create the image required, then DeepFreeze it.
    Any change(s) made by testers is 100% reverted on reboot, including registry changes, profile changes or any change for that matter.
    Absolutely nothing will stick on reboot when a machine is frozen.

    It was worked perfectly for me and I've been using it for 2 years now.
     
    • Thanks Thanks x 1
  5. BrianGriffen

    BrianGriffen Registered Member

    Joined:
    Mar 9, 2011
    Messages:
    78
    Likes Received:
    49
    Wow, that sounds great. Is there a way to have it only run on one user profile? I know that at the library, the Admin can log on and do whatever they want whenever they want, but when a patron logs in, their stuff is wiped out/
     
  6. zone69

    zone69 Junior Member

    Joined:
    Nov 24, 2008
    Messages:
    196
    Likes Received:
    1,290
    It runs on the system globally but an admin can Thaw the image and do as they wish .

    Basically you set a password for Deepfreeze, and the admin can then Thaw the image and add/change anything they wish. When done they DeepFreeze the image and the changes they made will stick from that point forward. I do this all the time since we need tools on our machines which get updated. I simply thaw image, update software, then DeepFreeze it again. works like a charm.

    [edit]
    You can also get into more complex configurations where you store a certain users profile on a different drive ( IE administrators) and don't freeze that drive. In doing so that user would be able to make changes as they wish. I haven't used this config since I haven't had the need for it.

    here's a list of all options it supports:
    Code:
    http://faronics.com/en/Products/DeepFreeze/DeepFreezeKeyFeatures.aspx
    
     
    • Thanks Thanks x 1
    Last edited: Apr 3, 2011
  7. BrianGriffen

    BrianGriffen Registered Member

    Joined:
    Mar 9, 2011
    Messages:
    78
    Likes Received:
    49
    OK. Sounds good. This will solve my problem for sure.
    It's either this or running virtual machines, which I haven't quite figured out yet, but either way; It's good to know that I have one option here that will work without question.
     
  8. BrianGriffen

    BrianGriffen Registered Member

    Joined:
    Mar 9, 2011
    Messages:
    78
    Likes Received:
    49
    I'm taking it to the extreme man.
    I have set up a Virtual Machine running on VMWare. The OS is the same WinXP as my normal comp. So it's running a full install without limitations. I am also only using this one Virtual Machine (as opposed to making 50+) because I am able to change the configuration of the VM in VMWare: Processor, OS, Disk, Ram - You name it. I will be able to make this same VM appear unique over and over again by shutting down and changing the VM Settings.
    I have also installed DeepFreeze on the VM and saved the state that I want. Obviously, I did this after getting everything ready to go. I could also take a snap-shot, using VMWare, but because of your help Zone and other threads I have read up on, I think DF is the solution.
    So now I am pretty sure I will be able to both conceal my Computers ID and prevent changes from the registry. The only thing I must now change is my IP, which is something that I worked out in another thread.

    I am about to start my Money Making Method (yeah, cliche in all CAPS), but that's what it is. Would cross my fingers but I think I have already gone way into stealth mode, so I am very confident that I will be able to do what I need to do with no future roadblocks.

    EDIT: DeepFreeze corrupts a virtual machine's HDD it looks like. Going to have to rely on snap-shots. Hopefully I can fix this without wiping out everything I did today.

    REEDIT: Yep. Must delete the VM and reinstall windows. Oh well. I know what to do at least.
     
    Last edited: Apr 4, 2011