Still having problems

After running through all the steps in the README, I find my computer is still slow to respond, sometimes taking 20 seconds or more to do something like change window focus. Also, see that the processor load is between 85% and 100% even when there are no programs running or browser windows open.

The hard drive LED flickers constantly, indicating HD activity, when there shouldn't be anything happening that I am aware of.

These problems started about 3 days ago, and I have tried a system restore, but that hasn't helped. For some reason, there are no restore points shown that are older than a couple of days ago.

I'm running Windows 7 (64 bit, so there is no RRlog.txt), AMD Phenom II X2 550 with 8 GB of memory (Dual-Channel DDR3 @ 669MHz). I've run the Microsoft memory diagnostic, no problems found. (also CCleaner and Windows Essentials AV scan)

 

Hi and welcome to Major Geeks, kevin95630!

Please follow the directions here on we would like you run SAS: SUPERAntiSpyware - running & getting a log

Please complete the above using those directions and I will review the rest of your logs.

 

I am not finding any malware in your logs.

Question...
Did these problems start occurring around the time you installed Skype?

If you uninstall Skype using Revo Uninstaller, do the problems go away?

If not, try the below...

Please download Process Explorer by SysInternals to your desktop.

• See the download links under this icon:
• Extract the contents of ProcessExplorer.zip into a folder on your desktop entitled "procexp".
• Double-click procexp.exe to open Process Explorer.
• From the menu at the top, select View > Select Columns...
  The Select Columns Dialog box appears.
• In the Process Image tab (you should be here by default), place a check-mark in Command Line.
• In the Process Memory tab, place a check-mark in Working Set Size.
• Now click OK to exit from the Select Columns configuration. menu.
• Now sort the results by Working Set Size -- To do this, click at the top of the column labeled "Working Set".
  Note: It does not matter to me if the numbers in this column are largest to smallest or vice versa.
• Click File > Save As > Procexp.txt
• Attach Procexp.txt to your next message. (How to attach items to your post)

 

Thanks chaslang
That sounds like it is the culprit

 

kevin95630, as chaslang pointed out, it is most likely a problem with the Western Digital File Management Engine.

1) Launch services.msc (Start menu -> Run -> services.msc)
2) Stop WD File Management Engine (Right click -> Stop)
3) Change service from Automatic to Manual (Right click -> Properties -> Startup type: Manual)
4) From now on when you want it to startup, simply start service via services.msc. You can stop it via Task Manager or service.msc. I start it before bed and stop in the morning. A pain, but this will prevent it from starting upon reboot.

Source: WDFME.exe Process Keeps Running - clarkd11372's post

Try the above and see if the problem goes away.

 

I just implemented the fix you suggested, and it looks like the demons have been expelled from my machine. It's responding quickly and CPU load shows dramatically more realistic numbers, fluctuating around 20% or less.

I don't have a WD drive in the machine, but I do have a WD network storage drive (MyBook Live) so had installed the software for that. It serves as a backup device.

I've had a lot of other little problems with this, and should have suspected it was the culprit, since I also had problems with a WD MyBook external USB drive. WD makes great drives, but I've lost confidence in their software, and will find another solution for backups.

Thank-you so much for your help in getting this resolved. It was really putting a crimp on everything, and you guys helped me sort this out in nothing flat. I was really dreading the idea of taking the box in for service, where I know someone would have charged me $100 to run AV and CCleaner on it and then tell me that the solution was to reinstall Windows.

Is there a "donate" function where I can express my thanks in a more concrete way?

 

Glad to hear it

You're welcome.

Support Majorgeeks:
Majorgeeks Geek Wear. Hats, T-Shirts, Hoodies

If you are not having any other malware problems, it is time to do our final steps:

1. We recommend you keep SUPERAntiSpyware and Malwarebytes Anti-Malware for scanning/removal of malware. Unless you purchase them, they provide no protection. They do not use any significant amount of resources ( except a little disk space ) until you run a scan.
2. If we had you use ComboFix, uninstall ComboFix (This uninstall will only work as written if you installed ComboFix on your Desktop like we requested.)
   • Click START then RUN and enter the below into the run box and then click OK. Note the quotes are required
   • "%userprofile%\Desktop\combofix" /uninstall
     • Notes: The space between the combofix" and the /uninstall, it must be there.
     • This will uninstall ComboFix and also reset hidden files and folders settings back to Windows defaults.
   • Go back to step 6 oof the READ ME and renable your Disk Emulation software with Defogger if you had disabled it.
   • Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
   • If we had you download any registry patches like fixme.reg or fixWLK.reg (or any others), you can delete these files now.
   • If running Vista, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
   • Go to add/remove programs and uninstall HijackThis if it present
   • Goto the C:\MGtools folder and find the MGclean.bat file. Double click on this file to run this cleanup program that will remove files and folders
     related to MGtools and some other items from our cleaning procedures.
   • After doing the above, you should work thru the below link:
3. How to Protect yourself from malware!

 

Thank-you again for your help. I did order some t-shirts and will wear them proudly. I also appreciate your endorsement of the above software solutions. I have used the free versions extensively, but was reluctant to purchase and install them because I wasn't sure there was any benefit and because I was concerned about resource usage, so I found your comments on this particularly useful.

 

No problem. Surf safely!