High memory usage and BSOD when try to use verifer.exe


  1. Posts : 5
    Windows 7 Home Premium 32bit.
       #1

    High memory usage and BSOD when try to use verifer.exe


    Starting a few days ago on my DELL VOSTRO system the memory usage grows continuously (as reported by task manager) up to about 3 GB (it takes about 4,5 hours since reboot until the value is reached) and then I'm forced to restart. I'm only using the computer for web related stuff (browse, mail). When the memory is so high in the list of running processes (if I sort the list by mem usage) in the top I have firefox and thunderbird both with ~200 MB so there is no obvious problem here.
    I tried running verifier.exe (Pool tracking all drivers) , but upon reboot (when I start tying the password) I get a BSOD. I've attached SF diagnostic tool output to this thread.

    Thank you
      My Computer


  2. Posts : 138
    Windows 7 Enterprise x64, Windows 8 Enterprise x64
       #2

    Probably casued by the Nic driver, update it:
    Realtek PCIe GBE Family Controller
    8d585000 8d5ca000 Rt86win7 Thu Mar 04 14:42:33 2010 (4B8FB8C9)

    To keep your system stable I recommend you make the following changes:

    Update the following drivers:
    Intel(R) HD Graphics
    8fe0d000 906e9000 igdkmd32 Wed Jun 02 18:37:38 2010 (4C0688D2)

    DW1501 Wireless-N WLAN Half-Mini Card
    (this one wasn't loaded in the dumps)

    Unistall the following programs:

    Kaspersky Endpoint Security 8 for Windows (Replace With Microsoft Security Essentials)
    Daemon Tools, make sure you get rid of the sptd.sys driver

    You also have this driver loaded with two different names, you might want to check if it's some kind of malware:
    afrkdx1s.sys (101512-29749-01.dmp)
    start end module name
    928ec000 92925000 afrkdx1s T (no symbols)
    Loaded symbol image file: afrkdx1s.SYS
    Image path: \SystemRoot\System32\Drivers\afrkdx1s.SYS
    Image name: afrkdx1s.SYS
    Timestamp: Tue Jul 14 23:12:41 2009 (4A5CF4C9)
    CheckSum: 00043B00
    ImageSize: 00039000
    Translations: 0000.04b0 0000.04e4 0409.04b0 0409.04e4

    ax2jftez.sys (101512-28126-01.dmp)
    start end module name
    908b1000 908ea000 ax2jftez T (no symbols)
    Loaded symbol image file: ax2jftez.SYS
    Image path: \SystemRoot\System32\Drivers\ax2jftez.SYS
    Image name: ax2jftez.SYS
    Timestamp: Tue Jul 14 23:12:41 2009 (4A5CF4C9)
    CheckSum: 00043B00
    ImageSize: 00039000
    Translations: 0000.04b0 0000.04e4 0409.04b0 0409.04e4
      My Computer


  3. Posts : 5
    Windows 7 Home Premium 32bit.
    Thread Starter
       #3

    Thank you for your reply,
    I've updated the Realtek PCIe GBE Family Controller driver, but I can not find any new version for Windows 7 32 bit for Intel(R) HD Graphics.

    Also I've uninstalled Daemon tools, but Kaspersky I need to keep due to company policies.

    For the driver loaded twice under different names, can you suggest a way to check if it is malware or not?

    Thank you
      My Computer


  4. Posts : 138
    Windows 7 Enterprise x64, Windows 8 Enterprise x64
       #4

    gabbello said:
    Thank you for your reply,
    I've updated the Realtek PCIe GBE Family Controller driver, but I can not find any new version for Windows 7 32 bit for Intel(R) HD Graphics.
    Well if the Intel Driver Update Utility doesn't work on your machine you could try this driver.

    gabbello said:
    For the driver loaded twice under different names, can you suggest a way to check if it is malware or not?
    If you're able to find the file there's several online malware analyzer you could try:
    Norman Sandbox

    Jotti's malware scan

    VirusTotal
      My Computer


  5. Posts : 5
    Windows 7 Home Premium 32bit.
    Thread Starter
       #5

    Sorry for the late reply. I upgraded the Display driver, disabled kaspersky for a period of time, I've even created a new user on windows but the mem high load is there.

    I've attached two RamMap saves (one for when the load was about 2.8 GB with no program running) and one for how it looks when I boot (1.4 GB occupied). Also I've attached a printsreen with the tasklist and as you can see there is no program that consumes the 82% reported by task manager.

    using the Empty options of RamMAp does not help (it gets rid of max 200 Mb, but then the load still increases)
      My Computer


  6. Posts : 5
    Windows 7 Home Premium 32bit.
    Thread Starter
       #6

    RAM issue.RMP - 4shared.com - online file sharing and storage - download
    RAM.png - 4shared.com - photo sharing - download image

    I think I found where the memory is. It appears as Modified in Resource Monitor (see attached printscreen), any idea why this is so high.
      My Computer


  7. Posts : 138
    Windows 7 Enterprise x64, Windows 8 Enterprise x64
       #7

    Task manager is not very good for troubleshooting memory problems, use Process Explorer instead. Start it and open the File menu and choose "Show Details for all Processes" then add the "Private Bytes" and the "Private Delta Bytes" columns.

    The next time you have memory problems click on the Private Bytes column to sort it with the highest value first and take a screen shot then press CTRL+I, select the memory tab and take another screenshot and upload the screenshots here.
      My Computer


  8. Posts : 5
    Windows 7 Home Premium 32bit.
    Thread Starter
       #8

    Ok, I think I found the problematic process. It was the DW WLAN (dell wireless utility). I noticed this by adding the Handles column in task manager and sort the process by this value. The Handles for the DW WLAN process (can't remember it's exact file name) was constantly increasing until it reached a threshold (I think 50k) and then the memory usage was very high. On the Process Explorer list also the process appeared quite high in the list when sorted by "Private Delta Bytes".

    Thank you for your help.
      My Computer


 

  Related Discussions
Our Sites
Site Links
About Us
Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 05:22.
Find Us