« DebugWare Patterns (Part 3)
If I knew about that command, .step_filter … »

WinDbg shortcuts: !envvar

More than a year ago I wrote a post about checking computer name in various memory dump types:

Where did the crash dump come from?

Today I found yet another shortcut for process memory dumps using WinDbg command !envvar:

0:003> !envvar COMPUTERNAME
        COMPUTERNAME = MYHOMEPC

Of course, we can use it for any other variable. It also works for complete memory dumps but we need to set the appropriate process context first:

3: kd> !envvar PATH
        PATH = C:\WINDOWS\system32;C:\WINDOWS;[...]

- Dmitry Vostokov @ DumpAnalysis.org -

This entry was posted on Monday, August 4th, 2008 at 9:31 pm and is filed under Crash Dump Analysis, Debugging, WinDbg Tips and Tricks. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

One Response to “WinDbg shortcuts: !envvar”

  1. Taehwa Says:
    August 5th, 2008 at 1:18 am

    It’s very cool command to see hostname.

    I usually use blow command. ^^

    lkd> dt srv!SrvComputerName
    “CSS-TALEE”
    +0×000 Length : 0×12
    +0×002 MaximumLength : 0×22
    +0×004 Buffer : 0xe1d37af8 “CSS-TALEE”

Leave a Reply

You must be logged in to post a comment.