1. #1
    jcgriff2's Avatar
    Join Date
    Feb 2012
    Location
    New Jersey Shore
    Posts
    16,165
    • specs System Specs
      • Manufacturer:
        HP
      • Model Number:
        HP ENVY TouchSmart 17-j130us Notebook - E8A04UA
      • Motherboard:
        HP Insyde 720265-501 6050A2549501-MB-A02
      • CPU:
        Intel Core i7-4700MQ Processor with Turbo Boost up to 3.4GHz.
      • Memory:
        12GB DDR3L SDRAM (2 DIMM)
      • Graphics:
        Intel HD graphics 4600 with up to 1792MB total graphics memory
      • Sound Card:
        Beats Audio quad speakers and two subwoofers
      • Hard Drives:
        1TB 5400RPM hard drive with HP ProtectSmart Hard Drive Protection
      • Disk Drives:
        Hitachi 500 GB SSD; 7 TB USB External
      • Power Supply:
        90w
      • Case:
        Laptop
      • Display:
        17.3-inch diagonal HD+ BrightView LED-backlit touchscreen display (1600 x 900)
      • Operating System:
        Windows 8.1

    Windbg New Features - Windows 10 (v10.0.10075.9)

    I found a few surprises in Windbg 10.0.10075.9

    There are many additional clickable fields; !analyze -v contains system and BIOS information now.

    Unfortunately, copy/paste does not pick up the hyperlink fields, but I have described a few below.

    !analyze -v (full):

    Read More:


    !analyze -v system, BIOS info
    Code:
    SYSTEM_SKU:  ASUS-NotebookSKU
    SYSTEM_VERSION:  1.0       
    BIOS_DATE:  09/11/2013
    BASEBOARD_PRODUCT:  N46JV
    BASEBOARD_VERSION:  1.0

    kv command now contains the .frame command for each line (the first 2 digits appear blue in Windbg 10) - not much help in a minidump though.

    The first line - 00- command = .frame 0n0;dv /t /v
    Code:
    2: kd> kv
     # Child-SP          RetAddr           : Args to Child                                                           : Call Site
    00 ffffd000`d70b7578 fffff800`d2f2df56 : 00000000`000000c2 00000000`00000007 00000000`00001200 00000000`cd6cc1d9 : nt!KeBugCheckEx
    01 ffffd000`d70b7580 fffff800`f68ded43 : 00000000`00004000 ffffe001`17130e6c ffffe001`171307f0 00000000`0000006c : nt!ExFreePool+0x26a
    02 ffffd000`d70b7670 fffff800`f68de612 : 00000000`00000000 00000000`00004000 fffff800`f68d6010 fffff800`f68bbb36 : FLTMGR!FltReleaseFileNameInformation+0xc3
    03 ffffd000`d70b76b0 fffff800`f68b44c0 : ffffe001`171307f0 ffffe001`1b07d500 ffffe001`19478000 ffffe001`1b07d500 : FLTMGR!FltpRemoveAllNamesCachedForFileObject+0x1c2
    04 ffffd000`d70b7730 fffff800`f68b55ac : ffffd000`d70b7940 ffffe001`1b07d500 00000000`00000000 ffffd000`d70b7802 : FLTMGR!FltpPerformPreCallbacks+0x720
    05 ffffd000`d70b7840 fffff800`f68b35ce : ffffe001`18445450 00000000`00000000 ffffe001`1adf7b20 ffffe001`00000000 : FLTMGR!FltpPassThroughInternal+0x8c
    06 ffffd000`d70b7870 fffff800`f68b30aa : ffffe001`1712db10 ffffe001`1adf7780 ffffe001`1adf7780 ffffe001`170f5c60 : FLTMGR!FltpPassThrough+0x2be
    07 ffffd000`d70b7920 fffff800`d302db58 : ffffe001`1b07d500 ffffe001`17128030 ffffe001`1adf7780 00000000`00000001 : FLTMGR!FltpDispatch+0x9a
    08 ffffd000`d70b7980 fffff800`d3054160 : 00000000`00000000 ffffe001`1b07d500 ffffe001`170f5c60 ffffe001`1b07d4d0 : nt!IopDeleteFile+0x128
    09 ffffd000`d70b7a00 fffff800`d2cf353f : 00000000`00000000 00000000`00000001 ffffe001`1b07d500 00000000`00000000 : nt!ObpRemoveObjectRoutine+0x64
    0a ffffd000`d70b7a60 fffff800`d30a77e6 : 00000000`000800a1 ffffe001`1850f520 ffffe001`000800a1 00000000`00000000 : nt!ObfDereferenceObject+0x8f
    0b ffffd000`d70b7aa0 fffff800`d2da2c48 : fffff800`d2fe4000 ffffd000`d70b7b50 ffffe001`1850f528 00000000`00000000 : nt!MiSegmentDelete+0x11e
    0c ffffd000`d70b7ae0 fffff800`d2dc10bd : 00000000`00000000 fffff800`d2f627a0 ffffe001`170f2800 00000000`00000012 : nt!MiProcessDereferenceList+0x100
    0d ffffd000`d70b7b70 fffff800`d2d61280 : ffffe001`1722a880 00000000`00000080 ffffe001`1722a880 00000000`00000000 : nt!MiDereferenceSegmentThread+0xd9
    0e ffffd000`d70b7c00 fffff800`d2ddffc6 : ffffd000`db2f5180 ffffe001`1722a880 ffffd000`db3013c0 00000000`00000000 : nt!PspSystemThreadStartup+0x58
    0f ffffd000`d70b7c60 00000000`00000000 : ffffd000`d70b8000 ffffd000`d70b2000 00000000`00000000 00000000`00000000 : nt!KiStartSystemThread+0x16
    Clicking on 00 resulted:
    Code:
    2: kd> .frame 0n0;dv /t /v
    00 ffffd000`d70b7578 fffff800`d2f2df56 nt!KeBugCheckEx
    Unable to enumerate locals, HRESULT 0x80004005
    Private symbols (symbols.pri) are required for locals.
    Type ".hh dbgerr005" for details.
    In the loaded driver listing, both the module name heading itself is blue and hyper (command = lmDtnsm + same for each individual driver name (command = lmDvmFLTMGR (FLTMGR is of course a driver name)

    The result of the latter (individual driver name) -- with additional hyper fields:
    Code:
    2: kd> lmDvmFLTMGR
    Browse full module list
    start             end                 module name
    fffff800`f68b2000 fffff800`f690e000   FLTMGR     (pdb symbols)          c:\symbols\fltMgr.pdb\ACF4EF6122C14FD5A8323B3F55B630722\fltMgr.pdb
        Loaded symbol image file: FLTMGR.SYS
        Mapped memory image file: c:\symbols\FLTMGR.SYS\53FBF00C5c000\FLTMGR.SYS
        Image path: \SystemRoot\system32\DRIVERS\FLTMGR.SYS
        Image name: FLTMGR.SYS
        Browse all global symbols  functions  data
        Timestamp:        Mon Aug 25 22:25:16 2014 (53FBF00C)
        CheckSum:         0005F90F
        ImageSize:        0005C000
        File version:     6.3.9600.17326
        Product version:  6.3.9600.17326
        File flags:       0 (Mask 3F)
        File OS:          40004 NT Win32
        File type:        3.7 Driver
        File date:        00000000.00000000
        Translations:     0409.04b0
        CompanyName:      Microsoft Corporation
        ProductName:      Microsoft® Windows® Operating System
        InternalName:     fltMgr.sys
        OriginalFilename: fltMgr.sys
        ProductVersion:   6.3.9600.17326
        FileVersion:      6.3.9600.17326 (winblue_r3.140825-1335)
        FileDescription:  Microsoft Filesystem Filter Manager
        LegalCopyright:   © Microsoft Corporation. All rights reserved.

    *** Load W10 Windbg and try it out! - http://go.microsoft.com/fwlink/p/?LinkId=536682

    From: https://msdn.microsoft.com/en-us/win...or=-2147217396



    The entire dump output - !analyze -v;kv;lmnt

    Read More:
    blueelvis, Go The Power, zigzag3143 and 3 others say thanks for this.

    BSOD Posting Instructions - Windows 10, 8.1, 8, 7 & Vista ` ` `Carrona Driver Reference Table (DRT)
    https://www.sysnative.com/
    Sysnative Hex-Decimal-UNIX Date Conversion

    Has Sysnative Forums helped you?
    Please consider donating to help support the forum.
    Thank You!

    Microsoft MVP 2009-2015
    Windows Insider MVP 2018 - Present


    • Ad Bot

      advertising
      Beep.

        
       

  2. #2
    x BlueRobot's Avatar
    Join Date
    May 2013
    Location
    Minkowski Space
    Posts
    1,872

    Re: Windbg New Features - Windows 10 (v10.0.10075.9)

    Have they added any new extensions?
    Machines Can Think

    We don't make mistakes; we just have happy accidents.

  3. #3
    jcgriff2's Avatar
    Join Date
    Feb 2012
    Location
    New Jersey Shore
    Posts
    16,165
    • specs System Specs
      • Manufacturer:
        HP
      • Model Number:
        HP ENVY TouchSmart 17-j130us Notebook - E8A04UA
      • Motherboard:
        HP Insyde 720265-501 6050A2549501-MB-A02
      • CPU:
        Intel Core i7-4700MQ Processor with Turbo Boost up to 3.4GHz.
      • Memory:
        12GB DDR3L SDRAM (2 DIMM)
      • Graphics:
        Intel HD graphics 4600 with up to 1792MB total graphics memory
      • Sound Card:
        Beats Audio quad speakers and two subwoofers
      • Hard Drives:
        1TB 5400RPM hard drive with HP ProtectSmart Hard Drive Protection
      • Disk Drives:
        Hitachi 500 GB SSD; 7 TB USB External
      • Power Supply:
        90w
      • Case:
        Laptop
      • Display:
        17.3-inch diagonal HD+ BrightView LED-backlit touchscreen display (1600 x 900)
      • Operating System:
        Windows 8.1

    Re: Windbg New Features - Windows 10 (v10.0.10075.9)

    That I don't know.

    BSOD Posting Instructions - Windows 10, 8.1, 8, 7 & Vista ` ` `Carrona Driver Reference Table (DRT)
    https://www.sysnative.com/
    Sysnative Hex-Decimal-UNIX Date Conversion

    Has Sysnative Forums helped you?
    Please consider donating to help support the forum.
    Thank You!

    Microsoft MVP 2009-2015
    Windows Insider MVP 2018 - Present

Similar Threads

  1. Can't install WinDbg for windows 7
    By wmorri in forum Windows 7 | Windows Vista
    Replies: 5
    Last Post: 09-03-2014, 01:38 AM
  2. Win 8.1 WinDbg (WinDbg:6.3.9431.0 x86 version)
    By usasma in forum BSOD, Crashes, Kernel Debugging
    Replies: 9
    Last Post: 07-06-2013, 06:46 AM
  3. WinDbg 6.11.1.402 versus WinDbg 6.2.8229.0 Huge Time Disparity
    By writhziden in forum BSOD Processing Apps Download | Information | Discussions
    Replies: 32
    Last Post: 12-12-2012, 03:18 PM
  4. Windbg versions + Windows 8
    By jcgriff2 in forum BSOD Processing Apps Download | Information | Discussions
    Replies: 2
    Last Post: 10-24-2012, 09:09 PM

Log in

Log in