Two blue screens, win7 I have memory dumps, how to use them?

Hi,

I have a new Win 7 64 bit Pro PC.

I have had 2 Blue Screens saying windows has shut down the computer to protet data due to an error. It creates a memory dump.

The first happened when a musci video was playing in WMP, the 2nd as I was converting and moving video around I had copied from my camcorder.

How ccan I post or use the memory dump to get an idea of whats causing the problem?

I5 650 3.2ghz
4 gig ram
ATI 4550 video card
win 7 Pro 64 bit

Thanks for any help, would love to narrow this down.

 

If you copy the *.dmp files to your Desktop, you can zip and attach them here.

 

Thanks for the tip, I have zipped and attached the two dumps, if someone could help me with this it would be much appreciated.

 

Ok, I loaded the dumps into BlueScreenView, the most recent one had logged an error with ntoskrnl.exe - this is most unlikely to be the driver at fault, it's a core Windows file and can almost always be ignored. The BSOD was a SYSTEM_SERVICE_EXCEPTION 0x3b.

The earlier dump looks much more useful, dxgmms1.sys+21098 and watchdog.sys are the drivers logged.

Cross referencing the 0x10e (this was the BSOD) with caronna.org, I get this:

Your BSOD Parameter 1 is 0x1f, for which a specific cause is not listed.



Moving on to the first driver in the entry, Google listed only one hit for dxgmms1.sys+21098 64-bit 0x10e, there are some suggestions on the resulting Microsoft page about further diagnosing and troubleshooting that may be of use to you.

For the second driver, a similar Google search lists about 24 entries in the last year. I didn't see anything helpful in the few I looked at that seemed relevant though.



You might be able to find errors logged in the System or Application logs just before the time the BSODs happened that will help.

If you could force another BSOD that contained a full driver listing in the dump file, it might help find any outdated drivers that need replacing, which might get us closer to finding the real culprit and a fix for it.

 

Thanks so much for taking the time to help. If I can get it to happen again, I will get the memory dump again, you mention if it contained the full driver listing it would be helpful.....is there a way to turn this on for memory dumps or is it a luck of the draw thing?

In the meantime, I will check through my drivers and see if there are any updates.

Thanks again for your help.

 

Most dumps contain the full driver list at the time the crash occurred but it does have an element of luck or depends on the type of crash.

 

Hi Satrow,

Tonight at 8:23pm there was another blue screen crash.

This time, my wife had been watching a couple of episodes of a tv show in WMP (an AVI file), closed it down and went to shut down the PC, as soon as shutdown was pressed she got the blue screen.

I have attached the following mini dump as well as an XML file windows said it had created upon rebboot.

If you can see any info that can help isolate my problem that would be great.

Thanks,
Rudyard

 

My check of the error indicates that it's "An unknown memory management error occurred." In this case, I think that a driver has accessed a region of memory that it shouldn't, rather than it being faulty memory of any kind.

There are several old drivers listed in the dump file, some of which I'm sure, will have more recent versions available - Atheros wireless and Realtek wired network adapters, an Adobe program and Avast!. Any, or a combination, of these may be affecting the stability of your PC or actually causing your BSOD's. We really need to rule these out before checking the hardware, I think.

Code:

PCASp50a64.sys	11/29/2006 02:45:19	
PxHlpa64.sys	12/10/2007 23:49:01	
jswpslwfx.sys	5/15/2008 10:28:50	
adfs.SYS	6/26/2008 20:52:37	

The top 3 are, I think wireless drivers, the last is an Adobe driver.

Code:

WN111v2w7x.sys 10/21/2009 04:01:33

This is a Netgear (wireless?) driver.

Code:

PhilCap64.sys	3/17/2010 07:52:43

I think this must be a TV/video capture card driver.

Code:

Rt64win7.sys	3/4/2010 13:42:52	
RTKVHD64.sys	3/26/2010 10:30:50

RealTek wired network adapter, there are some of these drivers updated as recently as last month, but it depends on your specific hardware (and the RealTek drivers may change the name of the device from the currently listed W7 default drivers name).

Code:

aswFsBlk.SYS	9/7/2010 14:47:09	
aswMonFlt.sys	9/7/2010 14:47:32	
aswRdr.SYS	9/7/2010 14:47:47	
aswSP.SYS	9/7/2010 14:52:07	
aswTdi.SYS	9/7/2010 14:52:27

Avast! drivers/filters - mine are dated from just a few days ago.


You should update all of the above using Google searches in conjunction with the details in your device manager/installed programs to track down the latest versions of these drivers/softwares and download and install them - do not use Windows Update to scan for driver updates, these will not be as recent as the makers will have and may give other problems. Use downloaded installers or the manual install options in Device Manager not the auto search feature.

 

Many thanks again,

1 - I have successfully updated the netgear driver:
WN111v2w7x.sys from http://kb.netgear.com/app/answers/detail/a_id/15564

New driver date: 27/04/2010 and version from device manager: 3.5.0.19

2 - The Adobe driver adfs.SYS I cannot find an update to so I have uninstalled my CS4 suite and Acrobat for the time being, only the flash plugin that is required from many websites is installed (cant find any info on exactly which Adobe product uses it).

I will at some point need acrobat and some other software back on but for now they are gone.

3 - PCASp50a64.sys - All I can find is a something called 'rawether for windows' on the net, have no idea what it is and all sounds very technical also cant find any drivers fo it.....has anyone heard of this compnay or product before?

http://www.rawether.net/RawetherV6_0/NewInThisRelease.htm

4 - This in general is my problem trying to follow this up, is there a way to find out what programs/hardware the drivers belong to? I am having trouble getting updates when im not sure what product they belong to and google searches seem to send me to a lot of sites telling me if the processes are virus or not.

When looking for the realtek drivers, I went to the Gigabyte website and found my motherboard, checked the version printed on the physical MB to get the right ones and got this big list and the problem is they are .exe files and I am still unsure if they are the ones im looking for as the name is not descriptive. If I run them will it tell me what it is and I get a chance to cancel or is it to late once I double click it?

http://www.gigabyte.com.au/products/product-page.aspx?pid=3568&dl=1#driver

The website recomends I use a program called DriverAgent......is this a scam or are these programs useful? It might help me find the drivers I am confused about?


Thanks again and sorry for all the questions but this part is harder than I anticipated.

 

quick update:

managed to update Rt64win7.sys to 7.32.1111.2010 11/11/2010 from website above

 

guess same point it crashed last time although this is the first time I have not played any video).

Stuff attached again, hopefully narrows it down with some new info.

 

Sorry for some reason half my post is missing, please disregard that post and read this one (although attachment is still in post above):

Had another BS just after I updated Rt64win7.sys and then I went into AVAST! and found there was a program update which I updated (not a definitions update an actual program update).

After it finished it said I needed to restart, it begand shutting windows down and then it crashed.

I guess at the same point it crashed last time although this is the first time I have not played any video).

Stuff attached again, hopefully narrows it down with some new info.

We can count out the netgear USB wireless as that was updated and it still happened. Same with Rt64win7.sys as that was also updated.

 

Hmm, the Avast! drivers and filters are still the same old ones, try updating from here. If updating it or a crash occurs during the reboot process, try uninstalling the old version first.

The Rawether driver is some kind of network packet monitoring driver, probably installed by some software related to networking you have installed.

 

Have uninstalled the old and reinstalled the new AVAST! as per your link, thanks.