locked
Windows 7 Low memory Error - O/S slows down become unresponsive Virus may be??? RRS feed

  • Question

  • Log Name:      System
    Source:        Microsoft-Windows-Resource-Exhaustion-Detector
    Date:          6/06/2012 11:02:13 PM
    Event ID:      2004
    Task Category: Resource Exhaustion Diagnosis Events
    Level:         Warning
    Keywords:      Events related to exhaustion of system commit limit (virtual memory).
    User:          SYSTEM
    Computer:      MFC-ARTRM-1.isikcollege.vic.edu.au
    Description:
    Windows successfully diagnosed a low virtual memory condition. The following programs consumed the most virtual memory: sqlservr.exe (1948) consumed 54161408 bytes, svchost.exe (932) consumed 47792128 bytes, and svchost.exe (1188) consumed 31444992 bytes.
    Event Xml:
    <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
      <System>
        <Provider Name="Microsoft-Windows-Resource-Exhaustion-Detector" Guid="{9988748E-C2E8-4054-85F6-0C3E1CAD2470}" />
        <EventID>2004</EventID>
        <Version>0</Version>
        <Level>3</Level>
        <Task>3</Task>
        <Opcode>33</Opcode>
        <Keywords>0x8000000020000000</Keywords>
        <TimeCreated SystemTime="2012-06-06T13:02:13.965376600Z" />
        <EventRecordID>22220</EventRecordID>
        <Correlation ActivityID="{1870A766-36E9-46F6-A4A4-FD6F9EA36812}" />
        <Execution ProcessID="932" ThreadID="2260" />
        <Channel>System</Channel>
        <Computer>MFC-ARTRM-1.isikcollege.vic.edu.au</Computer>
        <Security UserID="S-1-5-18" />
      </System>
      <UserData>
        <MemoryExhaustionInfo xmlns:auto-ns2="http://schemas.microsoft.com/win/2004/08/events" xmlns="http://www.microsoft.com/Windows/Resource/Exhaustion/Detector/Events">
          <SystemInfo>
            <SystemCommitLimit>6305341440</SystemCommitLimit>
            <SystemCommitCharge>6305341440</SystemCommitCharge>
            <ProcessCommitCharge>332771328</ProcessCommitCharge>
            <PagedPoolUsage>211611648</PagedPoolUsage>
            <PhysicalMemorySize>2010374144</PhysicalMemorySize>
            <PhysicalMemoryUsage>1894592512</PhysicalMemoryUsage>
            <NonPagedPoolUsage>45281280</NonPagedPoolUsage>
            <Processes>40</Processes>
          </SystemInfo>
          <ProcessInfo>
            <Process_1>
              <Name>sqlservr.exe</Name>
              <ID>1948</ID>
              <CreationTime>2012-06-06T00:03:10.864854200Z</CreationTime>
              <CommitCharge>54161408</CommitCharge>
              <HandleCount>321</HandleCount>
              <Version>0.0.0.0</Version>
              <TypeInfo>1089</TypeInfo>
            </Process_1>
            <Process_2>
              <Name>svchost.exe</Name>
              <ID>932</ID>
              <CreationTime>2012-06-06T00:03:09.392849000Z</CreationTime>
              <CommitCharge>47792128</CommitCharge>
              <HandleCount>362</HandleCount>
              <Version>6.1.7600.16385</Version>
              <TypeInfo>33858</TypeInfo>
            </Process_2>
            <Process_3>
              <Name>svchost.exe</Name>
              <ID>1188</ID>
              <CreationTime>2012-06-06T00:03:37.044053400Z</CreationTime>
              <CommitCharge>31444992</CommitCharge>
              <HandleCount>337</HandleCount>
              <Version>6.1.7600.16385</Version>
              <TypeInfo>1091</TypeInfo>
            </Process_3>
            <Process_4>
              <Name>
              </Name>
              <ID>0</ID>
              <CreationTime>1601-01-01T00:00:00.000000000Z</CreationTime>
              <CommitCharge>0</CommitCharge>
              <HandleCount>0</HandleCount>
              <Version>0.0.0.0</Version>
              <TypeInfo>0</TypeInfo>
            </Process_4>
            <Process_5>
              <Name>
              </Name>
              <ID>0</ID>
              <CreationTime>1601-01-01T00:00:00.000000000Z</CreationTime>
              <CommitCharge>0</CommitCharge>
              <HandleCount>0</HandleCount>
              <Version>0.0.0.0</Version>
              <TypeInfo>0</TypeInfo>
            </Process_5>
            <Process_6>
              <Name>
              </Name>
              <ID>0</ID>
              <CreationTime>1601-01-01T00:00:00.000000000Z</CreationTime>
              <CommitCharge>0</CommitCharge>
              <HandleCount>0</HandleCount>
              <Version>0.0.0.0</Version>
              <TypeInfo>0</TypeInfo>
            </Process_6>
          </ProcessInfo>
          <PagedPoolInfo>
            <Tag_1>
              <Name>CM31</Name>
              <PoolUsed>104509440</PoolUsed>
            </Tag_1>
            <Tag_2>
              <Name>MmSt</Name>
              <PoolUsed>18315512</PoolUsed>
            </Tag_2>
            <Tag_3>
              <Name>CM25</Name>
              <PoolUsed>13127680</PoolUsed>
            </Tag_3>
          </PagedPoolInfo>
          <NonPagedPoolInfo>
            <Tag_1>
              <Name>MmCa</Name>
              <PoolUsed>11517696</PoolUsed>
            </Tag_1>
            <Tag_2>
              <Name>Pool</Name>
              <PoolUsed>4302408</PoolUsed>
            </Tag_2>
            <Tag_3>
              <Name>KLAR</Name>
              <PoolUsed>4268096</PoolUsed>
            </Tag_3>
          </NonPagedPoolInfo>
          <ExhaustionEventInfo>
            <Time>2012-06-06T13:01:28.842644800Z</Time>
          </ExhaustionEventInfo>
        </MemoryExhaustionInfo>
      </UserData>
    </Event>

    This is the event log that I found on the computer relation to this fault, so far I could not find any virus well Kaspersky endpoint security is not picking up anything I have done a full scan with malwarebytes as well same thing.

    Can you guys give me some ideas?

    Regards,


    Gokhan Cil

    • Moved by Carey FrischMVP Thursday, June 7, 2012 3:45 AM Moved to more appropriate forum (From:Windows 7 Miscellaneous)
    Thursday, June 7, 2012 2:24 AM

Answers