Disclaimer:

This document is provide to help you install the debugging tools and to analyze a crash dump to provide root cause for a BSOD. The process is relatively simple to obtain the analyses but to fully interpret the values and data after execution may require a deeper knowledge of windows and understanding of the background services

Section 1: Procedure For Installation

1. Download debugging tools from here

http://www.microsoft.com/downloads/info.aspx?na=41&SrcFamilyId=6B6C21D2-2006-4AFA-9702529FA782D63B&SrcDisplayLang=en&u=http%3a%2f%2fdownload.microsoft.com%2fdownload%2fA%2f6%2fA%2fA6AC035D-DA3F-4F0C-ADA4-37C8E5D34E3D%2fwinsdk_web.exe

2. Run the installer and click next

clip_image002

3. Accept the license and click next

clip_image004

4. Accept the default install path and click next

clip_image006

5. Accept the default installation options and click next

clip_image008

6. Click Next to begin the install

clip_image010

7. Click Finish to complete the installation

clip_image012

Section 2: Procedure to Anaylze A Dump File

1. Click Start àAll Programs à Debugging Tools For Windows (x64) à Winbdg

clip_image014

2. Once the windows debugger opens click file à symbol path

3. Fill in the field with the following to use the current symbols online and click ok

NOTE: Debug Symbols Location for download

http://msdn.microsoft.com/en-us/windows/hardware/gg463028.aspx

clip_image016

4. Now click open crash dump and browse to where you have your dump located

5. Click Yes to save information in this workspace

clip_image017

6. Allow Windbg to analyze the file and observe the output

7. As you will notice under bug analysis it will give you the faulting file in this case it was ntkrnlmp.exe, but this is not the root cause ….

clip_image019

8. Now in the field at the bottom of the screen type !analyze –v to get verbose information on the fault.. see below

clip_image021

9. From this we can see there is a problem with SMCGUI.exe which is a Symantec antivirus application. The customer is advised to disk check the system, ensure the exclusions are configured correctly and ensure there is no errors in the Hardware logs.

Advertisements