Home > Citrix, Debugging > Reading x32 stack – Learned two new commands!!!

Reading x32 stack – Learned two new commands!!!

December 25th, 2011 Leave a comment Go to comments
 

Learned two new commands while working on an issue. I have Windows 7 x64 OS and was troubleshooting an issue… I took a process dump and tried opening in WinDbg…

As you can see stack is not showing properly… after some searching on web I found some useful articles… it looks as processes are x32 but dump is taken on x64, therefore, I can’t read it. Further browsing through the help (.hh) of Windbg, I found below two commands: -

0:000> .load wow64exts
0:000> .effmach x86

So I ran these command (Check Red block): -

after this, I ran command again to get stack information kv

Looks better now !!! (little more learning :-) )…

 

  1. No comments yet.
  1. No trackbacks yet.