[Resolved] Suspected spyware infection slowing PC - DDS log file posted

[Chalkie]

Just to update you, I ran a chkdsk scan overnight last night.

When I checked  this morning, the scan was over and the Check Disk dialogue box was closed so I have no data on how what results were.

I am running it again using the other option and hopefully will be able to report the results tomorrow.       

[Hoov]

When you get done with that, there should be no errors because they should have been fixed the first time. If there are errors then your harddrive is getting ready to die.

If all is well, please give me a copy of your event viewer logs using the instructions below.

I need you to go to the administration tools in XP. They are in the Control Panel. Open the Admin tools, then open the event viewer. Over on the left hand side and click on System. Then up at the top click on Action and then click on Save Events As, type in system as the file name,  make sure file type EVT is selected, and then navigate so it will save the file to your desktop, then click save. Over on the left hand side and click on Application. Then up at the top click on Action and then click on Save Events As, type in application as the file name,  make sure file type EVT is selected, and then navigate so it will save the file to your desktop, then click save. Zip them both up into a single zip file, post them back here in your next reply as attachments.

[Chalkie]

I am attaching last night's scan results as a zip file, as per your instructions, while this scan still runs.

[Hoov]

You can stop this scan. Do you know what brand the harddrive is? If you go into the device manager it will tell you if you do not know. Also can you tell me how old this harddrive is?

[Chalkie]

Device Manager just lists:

STM 3250318AS as the disk drive - I presume this is the hard drive. 

I think it is a Maxtor, although to be certain I guess I would need to open the machine up.

So we are looking at hard disk failure as the source of the problems?     

[Hoov]

It looks that way. The event viewer has entries form after you ran the chkdsk to almost a month and a half ago. But because Windows does such an imperfect job of testing a harddrive, we go with the manufacturers test.

The program you need is called Seatools Download it and install it. Then run it (the instructions to start it are right on the download page). Once it is running you need to go to basic tests at top and then to short test. Run it and let me know what the results are.

I know this test is for Seagate drives, but Maxtor was bought up by Seagate so they are all covered with the same tools.

[Chalkie]

I ran both the Short Drive Self Test and the Short generic Test.

The results in both cases: Pass.

[Hoov]

Go ahead and run the long generic test. This one will take a couple hours. So you might want to run it overnight, unless you don't need the computer.

If that passes, then we will need to make some changes to settings.

[Chalkie]

I ran the Long Generic scan overnight and am pasting the log file below: 

As you see the scan never completed despite running for over 13.5 hours. I found the PC shut down when I switched it on this morning which is odd, as I thought that I had set the Power options so that it dies not switch off.

--------------- SeaTools for Windows v1.2.0.6 ---------------
07/03/2012 16:43:42
Model: STM3250318AS
Serial Number: 9VY5T6RD
Firmware Revision: CC38
Short DST - Started 07/03/2012 16:43:41
Short DST - Pass 07/03/2012 16:44:43
Short DST - Started 07/03/2012 17:10:23
Short DST - Pass 07/03/2012 17:11:24
Short Generic - Started 07/03/2012 17:16:24
Short Generic - Pass 07/03/2012 17:22:46
Long Generic - Started 07/03/2012 19:19:53
Long Generic - Aborted 08/03/2012 08:50:28
 

[Hoov]

Was the PC off or did the monitor just power down? Look at this line, Long Generic - Aborted 08/03/2012 08:50:28, it stopped at 8:50 AM. Was that about the time you turned on the computer?

[Chalkie]

Yes - I did try the monitor power button several times  before hitting the on/off on the PC - should I run the scan again?

[Hoov]

Yes please. We have to make sure that your harddrive is stable before we go on. Because with what we may have to do, it could make a failing drive fail quicker.

[Chalkie]

OK, I will start it right  away and see if I can tweak the Power settings to make sure the computer does not switch off.

[Chalkie]

The long generic test has finally finished (but took a very long time - is that significant?)

The result: Pass

The hard disk is actually only two years old as the original one ailed.

[Hoov]

I knew it would take a long time. It read every single bit on the drive, the data that is there, and then empty space as well.

I have to leave for a bit, but when I get back I will have instructions for you.