Restore Windows to a previous state using System Restore

System Restore can return your computer system files and programs to a time when everything was working fine, so we will try to use this Windows feature to get rid of the malware.

  1. Restart your computer, and then press and hold F8 during the initial startup to start your computer in safe mode with a Command prompt.
    Note: With some computers, if you press and hold a key as the computer is booting you will get a stuck key message. If this occurs, instead of pressing and holding the “F8 key”, tap the “F8 key” continuously until you get the Advanced Boot Options screen.
  2. Use the arrow keys to select the Safe mode with a Command prompt option.
    Enter Safe Mode with Command Prompt
  3. At the command prompt, if you are using Windows Vista, 7 or 8 typeC:\windows\system32\rstrui.exe , and then press ENTER.
    If you are using Windows XP, you will need to typeC:\windows\system32\restore\rstrui.exe, and then press ENTER.
    [Image: Start System Restore from Safe Mode with Command Prompt]
  4. The System Restore utility will start, and you’ll need to select a restore point previous to this infection.
    Restore points in Windows 7
  5. After System Restore has completed its task, you should be able to boot in Windows normal mode, and perform a system scan (as seen on STEP 2) with Malwarebytes Anti-Malwareand HitmanPro to remove the malicious files from your machine.

Back to Deighton