if (ms) blog++;

Random bits of (hopefully) useful technical information on Windows, with a focus on understanding and troubleshooting.

Browse by Tags

Related Posts
  • Blog Post: User-mode dump creation (pre-Vista)

    For applications that are crashing or hanging, you will need to have the Debugging Tools for Windows present on the machine, and use the script ADPlus.vbs to attach the command line debugger (cdb.exe) to create dump files. To keep the examples simple I will assume the tools were installed in the folder...
  • Blog Post: Analyzing User Mode Dumps

    So you’ve managed to get a dump from a process… now what? Dump analysis is a skill that requires a bit of knowledge of how processors work, how to read assembly language, how functions are called, what stacks and heaps are, and so on – it’s way beyond the scope of a blog to give you this set of skills...
  • Blog Post: Kernel-mode dump analysis

    I’ve already covered the different types of memory dump in a previous blog entry, so this is a quick dip into how we manually trigger a bugcheck to create a memory dump on demand, and also how we can take a look inside the kernel of a running OS without crashing it.   Crash Landing In the event...
  • Blog Post: User-mode dump creation (Vista onwards)

    The ADPlus method of creating dumps is still valid after Windows Server 2003, however there is an easier way to have the OS create the same data which was introduced in Windows Vista…   Hung Jury For processes that are hung or consuming lots of CPU time, you can use Task Manager to create hang mode...
  • Blog Post: Hyper-V VM State Dump Tool

    vm2dmp is a newly released tool to create a complete memory dump of a Hyper-V virtual machine: http://code.msdn.microsoft.com/vm2dmp Along with the Debugging Tools for Windows , it can be used to view the valid memory pages of a virtual machine’s snapshot state or saved state. Very useful if you have...