Hey guys, I've literally tried everything possible to get my System Restore to fuction. I'm 99% sure that I have a sophisticated malware that disabled my ability to use the Restore Function. Why am I assuming this? Well, because I get no dialogue box/window when I try to open System Restore via Normal Boot and Safe Boot using Start or cmd. I also have this presumption due to the fact that my SystemRestore is not located in the HKEY:
Start > Run > regedit.exe > HKEYLOCALMACHINE \ Software \ Policies \ Microsoft \ Windows NT \ [SystemRestore]
Nor did disabling the ability to disable System Restore work, not even in safe mode (Most likely because it's non-existent/unrecognized?):
Run > gpedit.msc > Computer Configuration > Administrative > Templates System > System Restore
Where the "Turn Off System Restore" setting is located for System Restore, I attempted to forbid turning it off, but to no avail, not even after re-booting into Safe Mode
The problem arose once I actually decided to take a closer look at my anti-spyware. I had kept getting notifications that "Threats are being removed, no action needed," however, when I took a closer look at the so-called "quarantined" items, there were 1 or 2 that their descriptions were errors, could not find repeated for each attempt of its removal. I tried downloading 2 other scanners but they only detected cookies.
I wanted to give it one last go before I attempt to re-install Windows and more than likely just wipe my computer clean of everything.
I have a 2009 Windows 7 Professional Dell Intel(R) Core2 Duo CPU with 2.26GHz 6 GB 64-bit Operating System
Any help or suggestions you guys can throw at me would be greatly appreciated. Again, if all else fails, re-installing Windows will be my go-to.
Govan1x 11:12 01 Feb 2018 Have you tried running sfc /scannow in cmd as administrator.
I just ran it, and I got this message:
Windows Resource Protection found corrupt files but was unable to fix some of them. Details are included in the CBS.log windir\Logs\CBS\CBS.log. For example C:\Window\Logs\CBS\CBS.log
I managed to open the CBS.log but I'm unsure where to check.
I would try running System File Checker again. There are times when it will repair any corrupted files on the second or third attempt.
As far as I know you can run this in cmd as administrator on W7.Just copy and paste that into cmd.It is a follow up to sfc /scannow
DISM.exe /Online /Cleanup-image /Restorehealth
beeuuem~2 16:44 01 Feb 2018 I would try running System File Checker again. There are times when it will repair any corrupted files on the second or third attempt.
Still got the same message after running it a couple more times.
DISM.exe /Online /Cleanup-image /Restorehealth
"The restorehealth option is not recognized in this context."
I'm sorry that didn't help. It has worked for me in the past - and, as you know, anything is worth trying. I hope that you receive some more constructive assistance from others here.
beeuuem~2 19:51 01 Feb 2018 If you are sure it is malware have you run any programs such as Malwarebytes or Combofix to remove the malware?
Yeah, I've run multiple malware and spyware scans on a myriad of different scanners.
How you access the repair options will depend upon whether you have a Windows installation disk or whether your operating system came pre-installed by your PC manufacturer.
If no repair options are available your PC manufacturer may have replaced the tools or customised them. Check your Computer Manual before proceeding as another key may be needed to access the Repair/recovery options.
Start your PC
If your PC has one operating system Press and Hold the F8 key as your PC starts. If the Windows Logo appear you will need to start again
If you have a dual boot system a Boot option menu will appear. Highlight the Windows operating system and Press the F8 key
An Advanced Tools menu options screen will now appear
Highlight the repair Your Computer option and Press Enter
Select a keyboard layout, and then Click the Next button
Next select your user Name and Enter your Password, then Click OK
The recovery options should now appear
Windows Installation Disk
Make sure your PC is set to boot directly from the Windows DVD, most modern PCs are set this way. With older machines you may need to check the PC's BIOS
Start the PC
Immediately insert the Windows DVD into the DVD drive
A Black screen will appear with the words 'Press any key to boot from CD or DVD', Press Any key to start the booting process
The 'Windows is loading files' screen will now appear with a progress bar.
After a few minutes the Microsoft copyright window ill appear and another small progress bar will be visible
You will next see a Blue curtained screen
Next the Language option screen will appear Select your language and keyboard language and the Click the Next button
At the bottom left of the next screen - the Install screen, Click on the Repair Your Computer option
The System recovery options will now search for your Windows installation
Once the Windows installation has been located, Highlight it and then Click the Next button
The set of recovery options now appears, Click on the Option you require and follow the on screen prompts
Repair / Recovery Options
- Startup repair - This automatically fixes problems that are preventing Windows from starting
- System Restore - This will Restore Windows to an earlier point in time
- Windows Complete PC Restore (Available in Windows Vista Business, Enterprise and Ultimate editions only)- If you don't have a backup then don't use this option This will completely restore your entire PC - programs, system settings and files - from the back up that you have previously created. Any other data will be lost
- Windows Memory Diagnostic Tool - This checks your computer's memory hardware for errors
- Command Prompt - This opens a Command Window
This thread is now locked and can not be replied to.