How to analyze a memory dump on Windows after a blue screen error?
I would use Microsoft's debugging tool: WinDbg. It can read and automatically analyze memory dumps like yours. (The WinDbg command is aptly named: !analyze
)
The tool is powerful, but quite complex. Here is a detailed HOW TO guide.
The same forum suggests BlueScreenView. I have not tried it; it's probably simpler to use, but does not give as detailed information.
update:
Is there any way to understand which particular driver has a problem?
After !analyze
run k
or kd
. This will show the stack trace right before the crash. The stack trace is the list of function calls made right before the crash, with the most recent one at the top. You should at least be able to learn the filenames of the modules (DLL's) involved.
I suggest sharing the full results of !analyze
and/or the memory dump with people who are are skilled at WinDbg and are interested in helping. The previously linked MajorGeeks forum looks like a good place.