1. #1
    Moderator, News & Information
    BSOD Kernel Dump Analyst
    Contributor
    JMH's Avatar
    Join Date
    Apr 2012
    Posts
    7,194

    Troubleshooting Memory Leaks With Just a Dump.


    Hello debuggers, the debug ninja is back again. Sometimes we have a scenario where a process is using a lot of memory, and the only data we are able to get at the moment is a user dump. Ordinarily data from tools such as umdh or xperf would be preferable because they provide memory usage data over a period of time and can include call stack information. However, umdh requires restarting the process (which loses the state of high memory usage), and xperf requires the installation of the Windows Performance Toolkit which may not always be an immediate option.

    When we have such a dump we may not be able to specifically identify what piece of code is generating the high memory usage, but we may be able to narrow the scope of troubleshooting to a specific dll.

    The first thing we need to do is identify what type of memory is using most of the address space. The debugger command !address –summary allows us to do this:
    http://blogs.msdn.com/b/ntdebugging/...st-a-dump.aspx
    zigzag3143, Vir Gnarus and jcgriff2 say thanks for this.


    MVP 2013 - 2016

    Microsoft Community Contributor
    Windows Insider MVP July 2016 to end June 2017
    Dyami & Wankiya
    Team Zigzag




    • Ad Bot

      advertising
      Beep.

        
       

  2. #2

    Join Date
    Mar 2012
    Posts
    469

    Re: Troubleshooting Memory Leaks With Just a Dump.

    Sweet! This sucker has evaded me. I normally check their blog frequently but this one just slipped past.

    A couple things of note here:

    1. This will not work with a minidump.
    2. This was done with a user mode dump of a process, not a kernel dump. Be aware that if these commands mentioned do work with a kernel dump, the output may be very different as it displays overall kernel memory usage as opposed to being specifically related to just this process.

Similar Threads

  1. [SOLVED] Unable to change to Complete Memory Dump
    By Shintaro in forum BSOD, Crashes, Kernel Debugging
    Replies: 2
    Last Post: 11-19-2012, 07:49 AM
  2. Automatic Memory Dump Settings on Windows 8
    By Capt.Jack Sparrow in forum Windows 8 | Windows RT
    Replies: 3
    Last Post: 09-16-2012, 09:34 AM
  3. Automatic Memory Dump Settings on Windows 8
    By JMH in forum BSOD Processing Apps Download | Information | Discussions
    Replies: 1
    Last Post: 09-16-2012, 12:43 AM
  4. Automatic Memory Dump Settings on Windows 8
    By JMH in forum Microsoft News
    Replies: 0
    Last Post: 09-15-2012, 11:46 PM
  5. Replies: 3
    Last Post: 07-20-2012, 04:10 PM

Log in

Log in