Windows XP Professional with keyboard and mouse that stop responding after short period of use

Sarangk 14:

Forgive me, bad memory.  I also updated the NVIDIA display driver.

The repair replaced hundreds of files. SFC stopped part way through but completed on the second go.

Apache is still not operational. I like to have a localhost running for website work and hope to get it back up soon.

Other than Apache, you see nothing else that could generate further trouble, right?

Well, httpd can possibly a malware.
But other than that, I don't see anything (other experts might be more helpful in this regard)

I'll anyway sugest the following:

- Monitor the CPU utilization and the memory utilization of processes
- Scan your system using an online malware scanner

Hope this helps.

Warm regards,
Sarang

AVG and Malware come up clean. I would have assumed it was a driver issue but for all of the files missing or changed.

I had to uninstall reinstall rhapsody. System event view showed: The MCSTRM service failed to start due to the following error: The system cannot find the file specified.

This has reoccurred so I will have to uninstall reinstall again I presume.

Does this indicate anything to you.

Thank you so much for your comments so far.

-- Bill

Download UBCD. You can run memory + hard drive diagnostics using this
http://www.ultimatebootcd.com/download.html

Also run dxdiag to test the graphics card
http://support.microsoft.com/kb/190900

If all passess try switching the keyboard with a known working keyboard and test to see if pc freezes

optoma:

UBCD downloading.
dxdiag finds no problems.

Thank you, optoma.

i just want to confirm that this is A desktop PC not a Laptop...?

If its a laptop its because of the windows Power managment system... when the battery gets to a certain level the OS cuts off the power to the keyboard and mouse... theres no way to stop it really unless you buy a new battery or keep it plugged into the mains...

if not then it could still be the Windows Power managment try disabling it...

Mbrincat:

Thank you.

It is a desktop.

That is a good idea. I will check it out.

After restarting after running UBCD it has happened one more time.

Thinking this is a driver problem and will begin to check drivers one at a time.

-- Bill

Did you try switching the keyboard?

Optoma:

Thank you.

I did try installing a different keyboard earlier when the problem was severe. The installation couldn't complete at the time but has since worked. I am back to the original keyboard now.

-- Bill

MozyHome Remote Backup has had problems running from the outset.  It still is failing. I would really like to get it going. I use ShadowProtect to another internal drive but want the offsite protection.

It tends to hang probalby because of whatever causes the keyboard and mouse to stop working.

Driver?

Another AVG scan is six hours into a run...

Only cookies found so far.

did you try disabling the Windows Power managment? if you have installed windows again it may be a power managment setting in your bios? what motherboard are you using? i know that some asus motherboards have power managment software which can disable USB etc. if you've got the option to use a PS2 keyboard and mouse give that a try you might find that they continue to work whereas the usb ones won't...

Mbrincat:

Thank you.

Control Panel power management is off.  BIOS? I will have to shutdown to take a look. Before that I have to let some processes continue to completion.

Attached is the system information:

Open the System Information with WordPad.

has it frozen when you run UBCD4WIN??? That is boot from UBCD4win

It may be possible some remenants of malware/viruses are still present after hardware tests seem ok.

A few options if you like:
Malwarebytes http://www.malwarebytes.org/mbam-download.php
Superantispyware http://www.superantispyware.com/
Combofix http://www.bleepingcomputer.com/combofix/how-to-use-combofix

Nod32 online scan http://www.eset.com/onlinescan/
Kaspersky live cd http://devbuilds.kaspersky-labs.com/devbuilds/RescueDisk/

eXpeLLeD_4RM_heLL:

No it hasn't.

optoma:

Installed NVIDIA Network Drivers. Still waiting to see if there is a freeze up.

Unable to network with other of my computers before or after, still trying to figure this out.

Good comment.  Will try some that I haven't tried before.

Thank you.

Started SuperAntiSpyware scan and walked away.
On return, keyboard and mouse did not respond, there was no report on the screen so it didn't finish I assume and the disk drive light was off.
Powered off and on.
This is the second time in a row that F8 would not interrupt windows startup so I could go into safe mode.
Observing task manager after startup when response stopped I saw that it too had stopped although the disk drive remained solidly lit. Then the PC started working again.
Restarting SuperAnti...

If it freezes again try Kaspersky live cd.

optoma:

It froze again.
DriverCure download stopped at 26:09; AntiSpyware stopped at 25:07.
Alt-Tab shows little action box but doesn't work. Keyboard otherwise inoperative. Mouse moved but nothing else. Disk drive inactive.
AVG Firewall was off.
Processes 79; CPU Usage 39%; Commit Charge 971M/5211M
Power UP F8 worked; chose Safe Mode with Networking; Log on as Administrator.
If possible, in this state, I will try Kaspersky live cd. Otherwise, will try under regular log on.

Only way is to boot to the live cd.
Will scan your system "outside" of itself

morincat:

Disabled power management in BIOS.

PC repeatedly booted never getting beyond BIOS.

Re-enabled power management.

That was a little frightening.  There was no keyboard response.  I had to connect the keyboard directly to the PC to gain keyboard control.

optoma:

Downloaded kaspersky and created CD.  It wouldn't work. I proabably need to use the right thing to create an ISO disk.  Still working on this problem.

Returned again to a frozen PC.

Keyboard: only responded to ALT-TAB. It just displayed the choices and froze.
Mouse: would only move the cursor.

Installed all out of date drivers using Pareto product.

Noted possible flakyness in Belkin USB hub that the keyboard and mouse were connected to. Plugged keyboard and mouse directly into computer.

Awaiting further freezes.

Always best to have keyboard and mouse connected directly to machine-not through usb gadgets. May be the cause of issue.

optoma:

I agree.  I should have had the hub port lights facing toward me so that I could notice that they weren't lit up all of the time.

The KB&M are connected direct for now.

Time will tell. I'll give it a day.

Just checked the PC and found the KB and Mouse useless and the hard drive light off.

Powered off and back on and here I am again.

There must be a troubleshooting methodology. I feel like a blind man throwing darts, in the dark!

I am going to see if I can get the ISO disk, Kaspersky live cd, to work. I must have to burn it a certain way.

Got Feinman's ISO recorder.

Dowloading Kaspersky live CD.

cdburnerxp burns isos also http://cdburnerxp.se/


With troubleshooting a possible hardware problem like this, just have you machine connected with the mininum parts needed:keyboard,mouse,monitor cable,psu lead.
Have keyboard+mouse directly connected to pc(no usb hubs)

See what happens:)

This link may help you in troubleshooting steps http://www.howtofixcomputers.com/forums/how-guides/troubleshooting-computer-freezes-lockups-2694.html

Thank you, optoma:

Checked out the troubleshooting link and bookmarked it. Good reference. I also provide free repair services to elderly and out-of-work people.

ISO creation successful. After 30 minutes Kaspersky live CD still read 1% complete scanning only the first drive so I will run it tonight.

All drivers are up to date now.

Most recent software installations were GoToMyPC and MozyHome Online Backup. I may remove one of them after the next freeze.

Networking still doesn't work. Hmmm.

KB & M are connected directly.

Just home, awaiting  next freeze if it is going to happen.

Next, need to check disks and memory I presume.

Meanwhile, catching up on photography and website work.

-- Bill

Just had another freeze.

Checked temperatures and voltages in BIOS. OK

System Events:

SSPORT, MCSTRM, DigVecp failed to start. Could not find file specified.
Files are disappearing once again.

Redbook: The drive has not been shown to support digital audio playback.
ff 00 04 00 01 00 5c 00
00 00 00 00 09 00 ff 4f
Which drive?

Did kaspersky finish sucessfully?
What state/enviroment was the machine in when it froze?In windows?

optoma:

Didn't run Kaspersky last night fater all.

Has frozen three more times. If I can get some predictability to the freezes I can start leaving some things not running with msconfig.. It doesn't seem to matter what is running on the desktop. I walk away for an hour or two and return to a frozen machine most of the time. Other times it happens right after start-up.

Ran SFC to restore missing files.

Event log uneventful so far today despite freezes.

Updated system information in my profile on EE.

I have actually been able to get some work done.

Sorry just getting a bit off track!

Question:
1-From previous post ID:25321495. Did you run the hard drive and memory diagnostics and did they pass?

2-Did kaspersky finish successfully? Aborted? Frooze?

Optoma:

Putting in new floors today. Network down during that time.

Ran chkdsk again this morning. Volume clean.

Looked for my memory test software, haven't run yet.

Kaspersky tonight.

Multiple freezes today. Made getting anything done pretty difficult. Also, PC runs very very slowly at times. Very frustrating.

The problems below have reoccurred today after having been repaired yesterday:

System Events:

SSPORT, MCSTRM, DigVecp failed to start. Could not find file specified.
Files are disappearing once again.

Redbook: The drive has not been shown to support digital audio playback.
ff 00 04 00 01 00 5c 00
00 00 00 00 09 00 ff 4f
Which drive?

Driver Update Program reports that the Audio Drive is again out of date or bad. That lines up with the Redbook event information. Tried to update the driver again and the process hung.

Starting to see a pattern here?

have you tired a different hard drive or RAM as you need to rule out that the idea that the hard drive could have bad physical sectors which once data gets written to that area of the drive the PC freezes also you might have some dodgy RAM in the machine...

if your getting errros when trying to run a Live CD like kaspersky that points towards a hardware issue.

what is your hardware setup? i.e make / models of hardrive, RAM, motherboard, processor.

do you have any temperature monitors...?

To work out if its freezing rather than if your input devices are not responding try playing an audio file constantly then check the machine and if its still playing but your KB/M are not working you'll know its the input devices.

Mbrincat:

Disk checked out with CHKDSK
Memory test ran several hours without error.
Kaspersky running, no errors, at 30%.

I put the hardware setup into my profile here but I can't seem to figure out how you could see it. I am working from a different computer right now so I can't pull that information up until later today.

I have checked the temperatures immediately after a freeze by looking at BIOS and they were OK as were voltages.

Playing an audio file should cause disk activity. When it freezes, there is no disk drive activity based on looking at the light that flashes when there is activity.

I hope this addresses the issues you have brought up.

I will see what I can do to make the system information more available.

-- Bill

Kaspersky has been working all night on boot sectors and drive 1.  It is at 38% now.

It has only picked up four viruses and four trojans all in e-mail archives from 2006.

Memory test had no exceptions.

Just wondering if I could work around this problem by making drive 2 of 3 primary and install the operating system on it.

It would probably be better to figure this out.

Kaspersky has been running for nine hours without a freeze up.

Kaspersky: 47%.

On the upside it hasnt frooze and is detecting viruses, although it is taking a long time to scan!
You mention "drive 2 of 3".

3 hard drives in pc?
All with data on them?

Drive 2 was the original primary drive before being hit by something awhile back.
Drive 3 is a back-up drive. I use ShadowProtect.

Kaspersky is having a lot of data to scan so!

Kaspersky is at 51% with 9 objects detected.  All are in very old Outlook mail archives.

There is a lot of data on this PC. I am a published Photographer, record concerts and produce CD's, and create and maintain a number of websites.

Kaspersky: 15 hours, 55%.

Well, over the half way mark! :)

Kaspersky: 16 hours, 57%. No new events.

So far that machine hasn't lock up or frooze in over 16 hours. So far its a good indication that its not hardware related!

Right you are.

17 hours; 60%; no new objects found.

18:05 62% No more objects found.

21:23 73% No more objects found.
7.83 more hours
Est'd finish time: 5 AM

23:11 78%

27:36 90%

28:45 92% About four more hours. Still no threats of concern found.

Kaspersky completed with no threats found other than those in e-mails in Outlook Archives from before 2005.

So what is next to try?

Could you run combofix. Read through the overview firstly and follow its instructions. Whens its completed attach its logfile here.
 http://www.bleepingcomputer.com/combofix/how-to-use-combofix

Will do.

Have had to do some website work. No freeze ups.
Updated audio drivers.
Installed SP3.
Think I have AVG out of the picture.
Think I have SuperSpyware offline.
Waiting on SP3 installation.

SP3 reported it could not complete and reversed itself finally saying the PC might not work correctly.

Ok.
Try running combofix.
I take it that the machine isn't freezing up anymore?

It hasn't so far.

Still hasn't frozen up.

Just wondering if the partial SP3 installation helped.

Just started ComboFix.

Unable to run ComboFix.

First try:

Screen goes blank; flashes. Windows Task Manager shows a number of n.pif processes left behind and others.

Second try:

Used msconfig to change start-up loading to none.

Got disclaimer screen, nothing further.

Maybe should wait to see if freezes continue to happen.

And, try to complete an SP3 installation.

OK

I will be away for the weekend.

Will have to wait until return.

Did combofix run?

Hi optoma:

Thank you for checking back in with me.

Upon returning I installed SP3. The PC continued to run, albeit slowly, without freeze-ups.

There is still a problem with non-working sound.

To address the speed issue I opened msconfig and turned off all start-up items.  I am adding back a few at a time after first seeking information about each on on the Internet and , on some, making sure the file on the PC is the right size and in the right place.

The sound doesnt' work and needs a driver. I am not sure which one. It is identified as Realtek High Definition Audio but this is probalby NVIDIA High Definition Audio. I did have a driver service running but it isn't now and I have to figure that out or reinstall it.

-- humbill

Your welcome.
Download SIW http://www.gtopala.com/siw-download.html
Run it and there is loads a sections  within it but go to motherboard section and it should tell you the exact name and model of the board.
Once you know this go to the motherboards website and you should get the correct audio drivers there.

In hijackthis remove:
O24 - Desktop Component 0: (no name) - (no file)

Hi optoma:

O24 does not delete.

Working.

Cool!
http://www.bleepingcomputer.com/tutorials/tutorial42.html#O24Diag

Registry entry:

Windows Registry Editor Version 5.00

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
"Source"=""
"SubscribedURL"=""
"FriendlyName"=""
"Flags"=dword:00000000
"Position"=hex:2c,00,00,00,00,00,00,00,01,00,00,00,bc,01,00,00,6c,01,00,00,e8,\
  03,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00
"CurrentState"=dword:00000001
"OriginalStateInfo"=hex:18,00,00,00,00,00,00,00,00,00,00,00,ff,ff,ff,ff,ff,ff,\
  ff,ff,01,00,00,00
"RestoredStateInfo"=hex:18,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,\
  00,00,01,00,00,00

Safe to delete it?

Registry entry:

Windows Registry Editor Version 5.00

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
"Source"=""
"SubscribedURL"=""
"FriendlyName"=""
"Flags"=dword:00000000
"Position"=hex:2c,00,00,00,00,00,00,00,01,00,00,00,bc,01,00,00,6c,01,00,00,e8,\
  03,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00
"CurrentState"=dword:00000001
"OriginalStateInfo"=hex:18,00,00,00,00,00,00,00,00,00,00,00,ff,ff,ff,ff,ff,ff,\
  ff,ff,01,00,00,00
"RestoredStateInfo"=hex:18,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,\
  00,00,01,00,00,00

Safe to delete it?

Still want to run combofix?

Run combofix if you already havn't ran it. Follow its tutorial firstly
http://www.bleepingcomputer.com/combofix/how-to-use-combofix

Not sure how to turn off AVG 8.5 Anitvirus, everything else is done so I am starting the combofix.

It ran.

AVG found malware after. I quaranteened it.

Looking for the report.

Log file was to display automatically.

AVG must have interrupted.

Need help killing it.

http://www.bleepingcomputer.com/forums/topic114351.html
It says how to stop AVG from running.
Combofix's log is usually located at :
C\Combofix.txt

It says:
AVG 8.5
Please open the AVG 8.5 Control Center, by right clicking on the AVG icon on task bar.

    * Click on Open AVG Interface.
    * Double click on Resident Shield
    * Deselect the option to "Enable Resident Shield."
    * Save changes, and exit the application.
    * To re-enable AVG 8.5, please select "Enable Resident Shield" again.

This is what I did but AVG Antivirus continued to run. Maybe msconfig is the way to kill it.

in msconfig uncheck any avg entries in startup ,and services sections

Run completed. Lot attached.

Ok,
Combofix found and deleted items.
Unfortunately, I dont have indept knowledge to check its log fully so hopefully someone else will review it shortly.
 Regards,
Optoma.