Hi,
We have two consistent bugchecks and I can see a few are verifier enabled:
BAD_POOL_HEADER (19)
This indicates that a pool header is corrupt.
If we run a !poolval on the pool pointer being freed (2nd parameter of the bugcheck), we get the following:
Code:
1: kd> !poolval fffff900c2448000
Pool page fffff900c2448000 region is Unknown
Validating Pool headers for pool page: fffff900c2448000
[COLOR=#ff0000][B]Pool page [ fffff900c2448000 ] is __inVALID.[/B][/COLOR]
There appears to be pool corruption, although it's UNKNOWN.
If we check the verifier settings, we can see that Special Pool was enabled:
Code:
1: kd> !verifier
Verify Level 92b ... enabled options are:
[COLOR=#ff0000][I][B] Special pool[/B][/I][/COLOR]
Special irql
All pool allocations checked on unload
Deadlock detection enabled
Security checks enabled
Miscellaneous checks enabled
and did not catch a driver, therefore I am going to assume at this point we are dealing with a hardware issue, most likely memory. The second consistent bugcheck further supports this:
PAGE_FAULT_IN_NONPAGED_AREA (50)
This indicates that invalid system memory has been referenced.
Usual causes are a bug in a device driver, hardware related memory issues, corrupt NTFS volume, anti-virus software.
Before going onto hardware diagnostics though, please temporarily remove and replace Norton with Microsoft Security Essentials for troubleshooting purposes:
Norton removal tool -
https://support.norton.com/sp/en/us...B19C8E11.4?entsrc=redirect_pubweb&pvid=f-home
MSE -
Microsoft Security Essentials - Microsoft Windows
If after removing it you are still crashing, begin hardware diagnostics starting with a Memtest for NO less than ~8 passes (several hours):
Memtest86+:
Download Memtest86+ here:
Memtest86+ - Advanced Memory Diagnostic Tool
Which should I download?
You can either download the pre-compiled ISO that you would burn to a CD and then boot from the CD, or you can download the auto-installer for the USB key. What this will do is format your USB drive, make it a bootable device, and then install the necessary files. Both do the same job, it's just up to you which you choose, or which you have available (whether it's CD or USB).
How Memtest works:
Memtest86 writes a series of test patterns to most memory addresses, reads back the data written, and compares it for errors.
The default pass does 9 different tests, varying in access patterns and test data. A tenth test, bit fade, is selectable from the menu. It writes all memory with zeroes, then sleeps for 90 minutes before checking to see if bits have changed (perhaps because of refresh problems). This is repeated with all ones for a total time of 3 hours per pass.
Many chipsets can report RAM speeds and timings via SPD (Serial Presence Detect) or EPP (Enhanced Performance Profiles), and some even support changing the expected memory speed. If the expected memory speed is overclocked, Memtest86 can test that memory performance is error-free with these faster settings.
Some hardware is able to report the "PAT status" (PAT: enabled or PAT: disabled). This is a reference to Intel Performance acceleration technology; there may be BIOS settings which affect this aspect of memory timing.
This information, if available to the program, can be displayed via a menu option.
Any other questions, they can most likely be answered by reading this great guide here:
FAQ : please read before posting
-------------------------------------------------------------------------------------------------------------
Chkdsk:
Chkdsk:
There are various ways to run Chkdsk~
Method 1:
Start > Search bar > Type cmd (right click run as admin to execute Elevated CMD)
Elevated CMD should now be opened, type the following:
chkdsk x: /r
x implies your drive letter, so if your hard drive in question is letter c, it would be:
chkdsk c: /r
Restart system and let chkdsk run.
Method 2:
Open the "Computer" window
Right-click on the drive in question
Select the "Tools" tab
In the Error-checking area, click <Check Now>.
If you'd like to get a log file that contains the chkdsk results, do the following:
Press Windows Key + R and type powershell.exe in the run box
Paste the following command and press enter afterwards:
get-winevent -FilterHashTable @{logname="Application"; id="1001"}| ?{$_.providername –match "wininit"} | fl timecreated, message | out-file Desktop\CHKDSKResults.txt
This will output a .txt file on your Desktop containing the results of the chkdsk.
If chkdsk turns out okay, run Seatools -
SeaTools | Seagate
You can run it via Windows or DOS. Do note that the only difference is simply the environment you're running it in. In Windows, if you are having what you believe to be device driver related issues that may cause conflicts or false positive, it may be a wise decision to choose the most minimal testing environment (DOS).
Run all tests EXCEPT: Fix All, Long Generic, and anything Advanced.
Regards,
Patrick