Why 32 bit registers are called EAX, EBX, ECX, EDX etc.

This is actually an interesting story, Back in the days when we had 8 bit processors (8 bit processors means registers in processors will be able to hold 8 bit data), registers were called like,AL, BL So, when we moved to 16 bit processors, we named them as,AX, BX.. (AX can be broken into AH…

6

How to look at value of structure object who is member of Class object while debugging in WinDbg??

Sometimes when you debug applications, it happens that you have got the pointer to class which has few member variables including structures and another class objects! How to look at values of those inner class/structure variable’s members?? So, here is the tip. Following is the code being used for demonstrating commands. 1: struct testStruct 2:…

0

How to break in WinDbg when particular function returns specific value??

If you are debugging a lot, you might come across a need where you need to put a breakpoint on a function and special requirement is you need to break only when that function returns a specific value!! e.g. I am checking for CoCreateInstance method from COM library and want to break only when it…

2

Looking at commands supported by WinDbg extensions..

If you want to look at commands supported by any windbg extensions, you can follow various ways. You can use !<ext_name>.help command to see all the commands supported by that extension. Replace <ext_name> with your extension module name. (Note: This will only work if particular extension supports help command.) You can open the extension DLL…

0

How to attach WinDbg to a service?

There are various ways to do this. Find the PID for process that is hosting the service. You can do this with the help of command,tasklist /svcLook for service and associated PID, then go to command prompt, into the directory where windbg is installed and give command,windbg.exe -p <ProcessID> Another way is to directly use…

2

Loading/reloading symbols for just one module..

Many a times it happens that from within a debugging session, we need to load / reload symbols for a particular module (Talking in context of WinDbg).. e.g. we started debugging, set normal symbol path and down the line while debugging, came to know that we need symbol for particular module. We modify symbol file…

1

How to find out what all processes have loaded particular DLL..

I was searching for a way to find all the processes running right now, who has loaded particular DLL.. And found a really good command that shows really useful output.. You dont have to install anything on your windows, just go to command prompt and fire command.PS: Replace wbemsvc.dll with DLL in question. The same…

1

Thanks Ted Pattison

I have just finished reading "Programming Distributed Applications With COM & Microsoft Visual Basic 6.0". I really loved this book, though technologies explained in this book are somewhat older (we have new version for almost all technologies explained there), but reason I read this book was I wanted to explain the evolution process of today’s…

1

What is AppID??

If you have got chance to work with DCOM /COM+ frequently; you might have come across the term called AppID (if you are not able to recollect, take a look here, HKEY_CLASSES_ROOT\AppID). Many people are confused about what AppID is?? If you are one of them, go on… read the following part. The AppID concept…

11