where is my system restore

I originally posted this in Software and was sent to this forum
Having a number of problems

On the family computer, with multiple logins, I am Administrator.

In winxp sp2, system restore in unavailable. I have tried going to My Computer, Properties- No system restore. All Programs-System Tools-System Restore-Keep getting message that System restore is unable to protect my computer. Please restart and run system restore again.

2. I am unable to search my computer from the Start Bar. Start-Search will not activate anything.

3. Computer is running very very slow. Norton's found and deleted some sort of dialer but since then turtle speed.

Here is my HJT log. Did not know if it will help.

Since then a new problem has crept up. Upon boot, it is now taking 2 minutes before the IDE drives are detected. After the "Windows scriggly" screen, it is taking another 2 minutes to open the log-in screen.

I have read, down loaded and run all the the scans in the Read and Run First with the exception of the ActiveScan. I got a kernel32 error with internet explorer. What do I need to do to move to the next step?

 

Attach the logs from the online scans with a current HJT log.

 

Here are the logs attached.

 

Scan with HijackThis and check the boxes for the following entries:
( Make sure ALL browser windows are closed when you click FIX )

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.com/0SEENUS/SAOS01
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://red.clientapps.yahoo.com/customize/ycomp_wave/defaults/sp/*http://www.yah oo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.com/0SEENUS/SAOS01
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://red.clientapps.yahoo.com/customize/ycomp_wave/defaults/sp/*http://www.yah oo.com

O20 - Winlogon Notify: GoToMyPC - G2WinLogon.dll (file missing)

Again, make sure ALL browser windows are closed when you click FIX.

Next, run CCleaner to clean up cookies and temp files.

Finally, I would like you to flush your System Restore points. Please follow the instructions in the below:

• Disable and Re-enable System Restore
  
  
• Turn OFF System Restore to flush any bad Restore Points.
  
  
• Then, follow the instructions at the bottom of the linked page to Re-enable the Restore Utility which will create a fresh restore point.

After you complete the above reboot and then scan with HijackThis and attach the new log.

Let me know of any problems you may have encountered with the above instructions and also let me know how things are running now.

 

I deleted the request files with HJT. Ran CC Cleaner. I was unable to flush System Restore. Receive a message " System Restore is unable to protect your computer. Please restart and run system restore again." Did this and got the same message.

Start-Search still does not produce any results.

The issue with the log boot process is still there. Upon restarting, computer sits idle for 2 minutes before detecting clock and drives.

HJT log attached.

 

In addition, in trying to follow the directions to Disable and Enable System Restore, there is not System Restore Tab.

 

I don't think your problem is malware related, to be sure let's run one more scan.

Please see the below thread on how to install and run Spy Sweeper.

• Running Spy Sweeper...

 

Installed and ran Spy sweeper. It found 41 items. I went through the process of deleting them. Log attached.

Cpu speed has increased. Still unable to search for files and folders via Start>Search.
Still no System Restore. Rebooting issue still exists

 

Everything looks good, for your other problems I would recommend posting those in the Software Forum as they are not malware related.

Good Luck!

 

So you don't keep running in circles . . . . I've got a few questions


Short of reinstalling SP2 (which may do the trick) let's try this:

Do you have this folder? ---> C:\Windows\system32\Restore
-- If so, please open it and locate SRDIAG.exe
- DoubleClick SRDIAG.exe and let it run. A DOS window may open and need to be closed after running this.

-- If you are able to run SRDIAG.exe, please locate these 4 documents (they'll appear in the Restore Folder) and attach them for me:

- SR-EventLogs.txt
- SR-FileList.log
- SR-Reg.txt
- SR-RP.log


And I guess we'll go from there . . . .

PP

 

Here are the requested logs

 

While waiting on PP to check those logs, give this a try...

Navigate to the following folder:

C:\WINDOWS\INF

Locate the file SR.INF, right click and select Install from the menu. Reboot and see if you can access SR.

 

I think BJ is on the right track here. Give his suggestion a try and let us know how you fare.

-- If you get any further error messages, please write them down and post them for us.

-- Something to check as well:
Click START > RUN > type services.msc > Click OK
Check for System Restore Service and see if it is Started and the Startup Type is set to Automatic


We'll see if we can't get this sorted out!
PP

 

I naviated to the inf files. The closest that I have to your request was a SR file; but it is setup information. When I clicked on it I got a text file. attached

Went to services and System Restore is there and set to automatic.

Question? When I navigated to the Windows folder, I see about 60 or 70 files labeled $NtUninstalKB.(numbers).......... Would this Have anything to do with the problem?

 

Okay, My Bad,

When I checked services, System Restore was not Started. I changed the setting and rebooted and now it is available. Thanks.

Now where do I go for the other issues?

Still no search capabilities

Still slow booting process

 

Honestly, I'm not sure there is a "Quick Fix" for those. I have a few ideas, but rather than grasp at straws, you guys may want to try these steps first:

** Boot To SAFE MODE
- Open My Computer
- RightClick on C: Drive > select Properties > click Tools tab
- Select Error-Checking and click Check Now
- Make sure both Check disk options boxes are checked
- Click Start

This may take a while to run.


**After that is done, Click START > RUN > type sfc /scannow > ENTER
Let that run (you may need your XP disk) and then reboot and see how things are working. Again, note any errors / problems you may encounter.

Best Luck
PP

 

Followed instructions. Only small issue was that I could not run the error checking while in Safe Mode. Got a message that it could not run scan because it need exclusive control of certain files. I rebooted and the scan completed. There were no errors that I saw. Of course I did not sit and watch all 5 procedures.

The /scannow ran. By the time I got back to the computer, it had booted into Windows. I rebooted only to find that the same problem still exists.

 

What problems are you currently having? When you say "no search capabilities" what does it do when searching?

 

We probably need to change the name of this post since the system restore has been fixed; but also listed in the initial post was the problem that

Start>Search did not work. Does not produce a search screen.

 

Since we got the majority of your issues resolved, I would post the search problem in the Software Forum. Start a new thread so they can address only the current issue.

Good Luck!

 

Okay, I am going to the software forum. Thanks for all your help with the system restore issue. I certainly learned alot.

 

Good Luck!