From LedHed's Wiki
Jump to: navigation, search

Overview

Process Explorer is a handy tool for troubleshooting various server problems. Process Explorer is a product of Sysinternals.


Enabling Debugging

Process Explorer has a handy feature that allows you to open a process an see what threads are running inside it (like svchost.exe).

If you want to get more detailed info on the threads themselves you need to install the MS Debugging Helper DLL (dbghelp.dll). I found this file in:

C:\Program Files\Windows Defender\

You can get also get it by installing the latest "Debugging Tools for Windows" Then point Process Explorer to the DLL by clicking Options -> Configure Symbols and adding the path to the DLL

You can also setup the symbols server by adding this line to the symbols path:

srv*C:\Symbols*http://msdl.microsoft.com/download/symbols


Reference

http://forum.sysinternals.com/topic10741.html#47621 (bottom post by: molotov)

https://developer.microsoft.com/en-us/windows/hardware/windows-driver-kit