Constant HD activity and slow performance

For about the last week the computer has been working some of the time and others it has constant hard drive activity and is very slow to respond. I tried restoring to a earlier saved configuration but it only help for a short while.
No new applications or hardware have been added.
I ran the procedures outlined for the malware recovery and have attached the logs.
Hope someone can help.
Thanks in advance.

 

Hi norton47,
Welcome to Major Geeks!

The problem you've described may not be malware. I have only glanced through your logs, but what I noticed is that you had a lot of cookies and I expect there were a lot of temp files in your computer before you ran CCleaner. Also you have a lot of programs from McAfee and HP which use a lot of resources. There is also the possibility that your harddrive has a bad sector, or that there is a problem which is causing Dr. Watson to run. I would like to ask that you post in parallel in the Hardware Forum and or Software Forums and describe the kind of symptoms you're having. I'll check your logs more thoroughly for malware and using the different expertise of each forum, I you should get the help you need. You may want to make sure you have your data backed up in case there is a problem with your harddrive.

abri

 

I posted over on the forums and was directed to only have one post.
Machine is still very slow. This mornings boot up ran a CHKDSK which is the first time I have seen that. I did a back up from the windows menu and I have used a Western Digital eternal hard drive to make a copy of my data.
I am thinking about wiping windows and reloading it. I am trying to find the Windows restoration disc that should have come with the computer when I bought is. If I can't find it where would I get a copy to restore Windows XP.
I can't live with the computer this way. My wife uses it for school and she's starting to talk about taking it to the shop:cry.
Should I have ran all the tools in safe mode? I ran the Windows disc check and it came back fine. I deleted the HP programs except for the printer and I have cleared off a bunch of .jpgs files. I defragged.
What should I do next?
Thanks in advance

 

Hi Norton47,

Sorry for your getting sent out of hardware. Before I give you any instructions, I would like to suggest that you may not require a recovery disk to return your computer to the factory settings. There were some models which were delivered without cd's and if you have one of those, it may be possible to return the computer to it's original registry state by holding down the Ctrl key during bootup and hitting the F11 key a number of times until a menu appears which gives several choices of which one is a restoration of the original settings. Before you try anything along these lines, let's give the following a try:


1) To start with, you have Spybot's Teatimer enabled. I would like for you to disable it as follows:

To begin with, please disable Spybot's TeaTimer. This can be done two ways.
First:

• Right-click the Spybot Icon in the System Tray (looks like a blue/white calendar with a padlock symbol)
• If you have the new version 1.5, Click once on Resident Protection, then Right click the Spybot icon again and make sure Resident Protection is now Unchecked. The Spybot icon in the System tray should now be now colorless.
• If you have Version 1.4, Click on Exit Spybot S&D Resident

or Second, For Either Version :

• Open Spybot S&D
• Click Mode, choose Advanced Mode
• Go To the bottom of the Vertical Panel on the Left, Click Tools
• then, also in left panel, click Resident shows a red/white shield.
• If your firewall raises a question, say OK
• In the Resident protection status frame, Uncheck the box labeled Resident "Tea-Timer"(Protection of over-all system settings) active
• OK any prompts.
• Use File, Exit to terminate Spybot

2) Next I would like for you to clean off all the installation programs that have accumulated on your desktop. In the box is a list of programs. You can delete all of these either directly from the desktop using right click or from Windows Explorer:

3) Go to add/remove programs and uninstall the below:

Viewpoint Media Player

4) If you do not use Windows Messenger (not to be confused with MSN Messenger!!) I would like you to run Disable/Remove Windows Messenger

5) Next, I would like information on the following:

C:\Documents and Settings\Mark\Desktop\Backup.reg
C:\Documents and Settings\Mark\Desktop\backup2.reg
C:\Program Files\InterMute
C:\Program Files\PKWARE
C:\Program Files\Data Caching
C:\Program Files\Common Files\PKWARE
C:\Program Files\Common Files\Scanner

6) The following driver has some known issues with McAfee, so I would like to ask you to go into McAfee and create a rule which will prevent it from scanning this one file:

C:\WINDOWS\system32\drivers\mfehidk.sys

And now I would like to ask someone else to take a look at your thread and see if there might be something I've missed. SAS removed a lot of files, so there was malware on your computer and there may still be.

abri