AumHa Forums

Tried restoring my system to an earlier restore point. System responded by advising me that it could not be done. Tried again with another one and received the same response.

Can anyone help with this problem?

Thanks

Many issues can lead to the 'issue' you describe and we have very little information about your system in order to draw conclusions.

Your best bet, in my opinion, is to review the troubleshooting information found in this link => http://bertk.mvps.org/html/srfail.html , courtesy of AumHa VSOP and MS-MVP Bert Kinney.

Your solution likely lies within the troubleshooting steps found in the aforementioned link.

Good Luck

What information do you need?

I reviewed your suggestion and it is much too complicated for me to follow.

Thanks,
David

Sorry for the delay, it has been quite a busy week for me.

Bert's checklist is one that you can work through step by step. I'll have you run a couple information gathering tools to see what might be getting in the way and follow up with specific instructions for moving forward following your reply.

Please do not make any changes to your system, by installing new software/hardware, do not run any "fix" programs and/or remove any files unless instructed to do so, by me.
Please read these instructions carefully before executing and then perform the steps, in the order given.
lf you have any questions or problems, executing these instructions, <<STOP>> do not proceed, post back with the question or problem.

Run CKScanner
Please download by clicking here => CKScanner ... Save it to your desktop.
Make sure that CKScanner.exe is on the your desktop before running the application!

1. Double-click on the CKScanner.exe icon... then click the Search For Files button.
   Using Vista, you must right click the (CKScanner.exe) icon and choose "Run As Administrator", then click the "Search For Files" button.
2. When the scan is finished (the cursor hourglass disappears) click the Save List To File button.
   A text file will be created on your desktop named "ckfiles.txt"
3. Click OK at the file saved message box. Double-click on the ckfiles.txt icon on your desktop.
4. Please copy/paste the contents of ckfiles.txt in your next reply.

Run GMER
Please download by clicking here => GMER... random file name.exe by GMER.

The downloaded file will have a random name... this prevents malware from detecting and blocking it.

Note: Do not run any programs while Gmer is running.
**Caution** Rootkit scans often produce false positives. Do NOT take any action on any "<--- ROOKIT" entries

1. Double click on the random named.exe to execute. If asked, allow the gmer.sys driver load.
   Using Vista, you must right click random named.exe and choose "Run As Administrator".
2. If it gives you a warning about rootkit activity and asks if you want to run scan...click on NO <--- Important!
3. On the right side panel, several boxes have been checked. Please UNCHECK the following: (see image below)
   
   • Sections
   • IAT/EAT
   • Drives/Partition other than Systemdrive (typically C:\)
   • Show All <-- don't miss this one
   
   
   Click on image to enlarge
   
4. If you don't get a warning then... Click the Rootkit/Malware tab at the top of the GMER window.
5. Click the Scan button.
6. Once the scan has finished... click Copy.
7. Open Notepad and paste (Ctrl+V) what you copied.
8. Select "Save As" in Notepad...saving the file to your desktop as "gmerRK.txt"... then close Notepad.
9. Copy and paste the contents of the files gmerRK.txt in your next reply.

Run RSIT
Please download by clicking here => RSIT by random/random... save it to your desktop.

1. Right click on RSIT.exe and select "Run As Administrator" to run it. If Windows UAC prompts you, please allow it.
2. Please read the disclaimer... click on Continue.
3. RSIT will start running. When done... 2 logs files...will be produced.
   The first one, "log.txt", <<will be maximized... the second one, "info.txt", <<will be minimized.
4. Please post both... "log.txt" and "info.txt", file contents in your next reply.

(These logs can be lengthy, so post 1 log per reply please.)

Post Back
Please post back with the following:

1. Any problem executing the instructions?
2. CKScanner ckfiles.txt file contents.
3. GMER gmerRK.txt file contents
4. RSIT log.txt and info.txt file contents.

Good Luck

Always state your full Windows version (e.g., WinXP SP3; WinXP 64-bit SP2; Vista SP1; Vista 64-bit SP2; Win7; Win7 64-bit) when posting in a forum or newsgroup. Please do so in your next reply.

What anti-virus application or security suite is installed and is your subscription current? What anti-spyware applications (other than Defender)? What third-party firewall (if any)?

Has a(another) Norton or McAfee application ever been installed on the computer (e.g., a free-trial version that came preinstalled when you bought it)?
What led you to try using System Restore?

Is this a sudden, new problem?

Post the complete (verbatim) error message.

Thanks for the reply. I'll give it a try during the week.

You don't need to quote my previous reply as part of yours. I've removed it.

Please answer Robear's questions too.

The instructions that I provided will not fix SR. They are meant at gathering information about the system so that I could guide you through the necessary steps in Bert's site.

I'm not sure why it will take until next week to do the simple steps I requested. Is this system yours or does it belong to someone else, possibly the owner of the system that you have time to ask about here => viewtopic.php?f=62&t=43552

Let me know which system pertains to this thread and answer Robear's questions, please.

Good Luck

I'm recovering from a serious illness. I really don't want to get into this. So, why don't we forget the whole thing. Thanks for trying to help.

[DONE ~Admin]