how to analyze system crash(memory dump)of windows

最新推荐文章于 2015-03-07 21:02:55 发布
最新推荐文章于 2015-03-07 21:02:55 发布
阅读量614 收藏
点赞数
分类专栏: WINDOWS
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/coolper/article/details/12037021
版权 
Here are simple instructions on how to do it:

1. Make sure that the memory was dumped. To configure it (in XP, in W2K it's similar): 
  1.

     Start -> Control Panel -> System -> Advanced -> 'Startup and
     Recovery - click on the 'Settings' button

  2. Make sure under 'System failure' 'Automatically restart' is NOT
     checked; 'Write debugging information' should be set to 'Complete
     memory dump'. You may need to restart the OS.

2. After a BSOD occurred, wait until it is completely written before rebooting the OS. 3. After the OS completed booting, you can look at the memory dump (usually, under %SystemRoot%\memory.dmp - which is usually c:\windows\memory.dmp), using the Debugging Tools for Windows (install from http://www.microsoft.com/whdc/devtools/debugging/installx86.Mspx ). Note! If you use it on 64bit OS, you need the amd64 version). 4. Open WindDbg (Start->All Programs->Debugging Tools for Windows ->WinDbg), go to File->Symbol File Path and enter: SRV*http://msdl.microsoft.com/download/symbols If you have your own symbols as well, use: srv*c:\symbols*http://msdn.microsoft.com/download/symbols 
5. Open the crash dump using File->Open Crash Dump

6. Run the command '!analyze -v' (this may take a while).

Copy the whole output - it may be relevant.

<script type=text/javascript charset=utf-8 src="http://static.bshare.cn/b/buttonLite.js#style=-1&uuid=&pophcol=3&lang=zh"></script> <script type=text/javascript charset=utf-8 src="http://static.bshare.cn/b/bshareC0.js"></script>
阅读(309) | 评论(0) | 转发(0) |
0

上一篇:windows service 说明

下一篇:compile spice qxl driver for windows

相关热门文章
给主人留下些什么吧!~~
评论热议
coolper
关注
专栏目录
How to Analyze IoT Data in ThingSpeak.zip
08-11
标题 "How to Analyze IoT Data in ThingSpeak" 指的是一个教程,它教导用户如何在ThingSpeak平台上分析物联网(IoT)数据。ThingSpeak是一个开源的物联网平台,允许用户收集、存储、可视化和分析来自各种IoT设备的...
Latex错误解决:The rtxmi source file could not be found.
夏尔的小木屋
03-22 5861
老师发来一个他以前论文的latex源文件,用winEdt编译不通过。报错信息如下:The rtxmi source file could not be found.解决方法:1,win+r 进入命令提示符,进入winEdt安装路径的“miktex\config”文件夹。比如我的是:D:\Program Files\MiKTeX\miktex\config。2,运行命令:initexmf --edi...
LaTex使用技巧(10):the memo…
Frances_S的漫漫SE路
03-07 2413
编好源文件后点LaTeX之后出现 latex.exe:The memory file dump could not found. 于是无法生成dvi文件,这该怎么办呢? 解决方案:找到LaTex安装路径,选择CTEX文件夹,右键单击选择“管理员获得所有权“,此时系统会自动弹出命令提示符执行命令,等到命令执行结束后,即可获得所有权,重新运行latex可生成dvi文件。 memory file du
Dump analyze.pdf
09-29
Dump analyze.pdf》是一份关于Windows异常问题分析方法和应用的文档,它详细介绍了从Windows Vista之后引入.NET环境后,异常问题分析和查看方法的变化。文档内容涉及了多个分析Windows内存转储(Dump)文件的核心...
Windows调试(通过dump文件定位崩溃)
03-31
Windows操作系统中,当应用程序发生异常崩溃时,为了找出导致崩溃的原因,我们通常会借助于dump文件进行调试。Dump文件是系统在程序崩溃时记录的内存快照,它包含了程序运行时的关键信息,如进程内存、线程状态、...
How to Efficiently Analyze a DDR4 Interface
09-02
DDR4接口分析是现代高速数字设计中的一个关键环节,特别是在高性能计算和数据中心应用中。Cadence公司的DDR4接口分析课程提供了深入理解如何有效地处理这一挑战的途径。在2015年的MemCon会议上,Taranjit Kukal和...
analyze iis crash
08-06
在IT行业中,尤其是在系统管理和故障排查领域,"analyze iis crash"是一个常见且重要的任务。IIS(Internet Information Services)是微软提供的一个Web服务器服务,它承载着许多关键的在线应用和服务。当IIS崩溃时...
compile spice qxl driver for windows
云,无处不在 雾,是下一代
09-26 1569
You need to setup windows 2003 ddk enviorment (you can install it on windows xp guest)the iso for the installtion can be found at:http://download.microsoft.com/download/9/0/f/90f019ac-8243-48d3-91cf-8
kvm windows guest NMI crash dump in libvirt
云,无处不在 雾,是下一代
09-26 1330
1.create a DWORD value NMICrashDump = 1 in HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\CrashControl ;2. uncheck "automatically restart" in "Properties of my computer" -> "Advanced" -> "Startup
grub启动windows xp配置
云,无处不在 雾,是下一代
09-26 936
# on /dev/sda1title Microsoft Windows XP Professionalroot (hd0,0)savedefaultmakeactivechainloader +1 管理员在2009年8月13日编辑了该文章文章。 --> -->
windows stack分析
云,无处不在 雾,是下一代
09-26 900
从Stack说开去 从我个人的经验看,谈到内存时说堆的文章最多,说stack的最少。我这里反其道而行的原因是stack其实要比堆更重要,可以有不使用堆的程序,但你不可能不使用stack,虽然由于对stack的管理是由编译器确定了的,进而他较少出错。 通过链接开关/STACK:reserve[,commit]可以指定进程主线程的stack大小,当你建立其他线程时如果不指定dwStackSize参数,
windbg调试kvm windows虚机
云,无处不在 雾,是下一代
09-26 879
准备2台虚机,一台target目标机,用于运行要调试的windows系统(调试内核),一台debug调试机,用于运行windbg,配置步骤如下:1.运行target虚机,在kvm命令中添加-serial tcp::9000,server,nowait参数,启动好之后,修改boot.ini(XP)文件,添加multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Mi
禁用恢复XP待机功能
云,无处不在 雾,是下一代
09-26 834
禁用reg文件:Windows Registry Editor Version 5.00[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ACPI\Parameters]"AMLIMaxCTObjs"=hex:04,00,00,00"Attributes"=dword:00000070[HKEY_LOCAL_MACHINE\SYSTEM\C
rdp 6.x auto-logon windows xp(file or activx)
云,无处不在 雾,是下一代
09-26 799
.rdp file auto-logon To work around this problem, turn off the new features in Remote Desktop Connection 6.0 to revert to the features in Remote Desktop Connection 5.x. To do this, follow these ste
查看windows进程信息命令
云,无处不在 雾,是下一代
09-26 744
使用命令:wmic process帮助信息wmic process /?wmic process get /?如果想查询某一个进程的命令行参数,使用下列方式: wmic process where caption=”svchost.exe” get caption,commandline /value
A Faster makeimg
云,无处不在 雾,是下一代
09-26 705
If you're working with WM6 and you have to do a makeimg, assuming you haven't changed any .reg, .dat, or .db files (which are merged as part of the makeimg process), you can cut your makeimg time do
Win CE/Mobile Physical/Virtual cached/uncached
云,无处不在 雾,是下一代
09-26 630
The virtual address range you can use for the virtual-to-physical mappingin OEMAddressTable is only 0x80000000 to 0x9FFFFFFF (512MB).Every entry in this table is replicated in the second table in the
sysprep example
云,无处不在 雾,是下一代
09-26 619
;SetupMgrTag [Unattended]     OemSkipEula=Yes     InstallFilesPath=C:\sysprep\i386 [GuiUnattended]     AdminPassword="xxx"     EncryptedAdminPassword=NO     AutoLogon=Yes     AutoLogonCount=
How to analyze the power tree
最新发布
03-29
1. Identify the power source: Begin by identifying the primary power source, which could be a battery, wall outlet, or other power source. 2. Trace the power path: Follow the power path from the power source to the various components in the system. This will help you understand how power is distributed throughout the system. 3. Identify power regulators: Look for power regulators that control the voltage and current supplied to different components. These regulators ensure that each component receives the correct amount of power. 4. Identify power consumers: Identify the components that consume the most power in the system. This will help you understand where power is being used and where potential efficiency improvements can be made. 5. Analyze power consumption: Use a power meter or other tool to measure the power consumption of different components in the system. This will help you identify areas where power consumption can be reduced. 6. Identify power-saving features: Look for power-saving features in the system, such as sleep modes or power management software. These features can help reduce power consumption and extend battery life. 7. Evaluate power efficiency: Evaluate the overall efficiency of the power system by comparing the power output to the power input. This will help you understand how effectively the system is using power and where improvements can be made.
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值