Was the HD usage by CIS constant or only when updating? Your sentence is ambiguous.
After update was done, after windows reboot. After 2nd reboot with setting changes. After 3rd reboot with some more advanced fiddling.
At first i thought it was the scan initiated on update that was causing it and stopped that, but that merely reduced the slowdown a bit.
And my initial post said “after doing so” in regards to updating.
Could you see what process was making System (stuff that runs in the kernel) was making the HD go crazy?
The CIS files were the only ones with noticeable activity (by tracking I/O and cpu usage in task manager and by checking through process explorer).
explorer.exe had activity but beyond being slowed down by the overall system crawl it did not seem to do anything unusual.
CIS does not use svchost.exe nor are there processes running under svchost.exe for as far as I know. Only when running something in the sandbox or running Virtual Kiosk you will see two (or more) instances of svchost.exe run virtualised under cmdvirth.exe. Unless you're talking about virtualised svchost processes I am not inclined to believe CIS is involved in elevated memory usage by one of multiple svchost processes.
It´s a longtime infamous memory leak issue in XP that Microsoft in their almighty wisdom refused to fix properly. Try googling it, common problem, with no obvious or simple single fix. Worst case, the svchost will use up a cpu/core all by itself and/or increase memory usage up to what´s available in minutes.
In original installation of Win XP SP2, i managed to fix it well enough, then i was forced to update to SP3 however and the fix no longer works and the leak became annoying. Removal of CIS however made a drastic difference.
Since my opening post, that specific svchost.exe has gone from 21.9MB to 22.9MB. Before removing CIS it increased in size tens of MBs per day and would by now probably have been somewhere in the 100-200MB range.
So no, it´s not CIS by itself. But CIS was most certainly doing something that made the svchost leak turn itself up to “too much”.
That being said. Sometimes left overs of previously installed security programs can cause all sorts of strange effects. Could you try running clean up tools for security programs you had installed in the past?
This system did not have another security program installed before CIS.
Clean install together with Win XP installation on clean HDD.
Right now it has ZoneAlarm, but that will soon change again as someone there seems to have gone utterly incompetent and made it impossible to run Torrent software properly without the Pro version and even then it doesn´t seem to work well with anything like it(like Steams distributed download system).