How to turn off System Restore on a client or a group of clients

Version 4

    Often it is necessary to turn off System Restore.  This is especially true when a system has had the Restore Points compromised or corrupted due to malware.

     

    To turn off System Restore on a particular client

    1. Click Start.

    2. Right-click My Computer, and then click Properties.

    3. On the System Restore tab, check Turn off System Restore or Turn off System Restore on all drives.

    Note: You must have Administrator rights to see the System Restore tab.

    4. Click Apply.

    5. At the confirmation message, click Yes.

     

    To turn off System Restore on a group of clients through Group Policy

    1. Load the policy that you want to modify. For example, go to Start, Programs, Administrative Tools, Active Directory Users and Computers
        right-click a domain; select Properties; select the Group Policy tab; then create a new policy or edit an existing policy.
    2. Navigate to Computer Configuration, Administrative Templates, System, System Restore.
    3. Double-click "Turn off System Restore," set it to Enabled, then click OK.
    4. Close the policy.

     

    To turn off System Restore via Script
    strComputer = "."

     

    Set objWMIService = GetObject("winmgmts:\\" & strComputer & "\root\default")

     

    Set objItem = objWMIService.Get("SystemRestore")
    errResults = objItem.Disable("")

    (Thanks to user Zman for this tip)

     

    For additional information regarding System Restore please see the following Microsoft article:

    http://support.microsoft.com/kb/831829