Category Archives: Windbg

Finding an Exception in a user-mode minidump

I spend most of my time in kernel and so I still fumble around sometimes when asked to look at user-mode crash dumps. In particular, someone gave me an .hdmp file recently — I don’t know much about this kind … Continue reading

Posted in Debugging, usermode, Windbg | Leave a comment

MEX is Your Friend: Analyzing 32-bit Processes in a 64-bit Kernel Dump

Introduction In 2016, Microsoft publicly released a WinDBG extension called MEX. It has a number of commands that make life easier when kernel debugging or analyzing a crash dumps. You can download it here if you want to give it a … Continue reading

Posted in Debugging, Windbg | Leave a comment

Why does Windows Performance Analyzer Disappear When I Load a Trace?

As mentioned in a previous post, I’ve been tracking down Windows performance issues using the remarkable Windows Performance Toolkit (WPT). Today, I tried launching the Windows Performance Analyzer tool on a fresh Windows 8.1 system but it silently disappeared when … Continue reading

Posted in Troubleshooting, Windbg | Tagged , , , | 3 Comments