1. I've downloaded the MS debugger
(
http://msdl.microsoft.com/download/symbols/debuggers/dbg_x86_6.2.13.1.exe).
2. Install it with default settings.
3. Tryed to simulate the problem, i.e., wait for 1-2 hours of computer inactivity.
Start browsing and trying to 'force' the use of the brandwidth.
4. ashServ.exe starts to freeze, i.e., using all CPU available, well, in fact, up to 90%)
5.
Disable the Standard Shield, otherwise the whole computer will fail, colapse.
6. Start the debugger. When started, hit F6 and in the process list, select "ashServ.exe".
7. In the Command window with a command prompt line at the bottom, type the following:
.symfix This will instruct the debugger to use the Microsoft debugging symbol server.
This command should be accepted by the debugger with a message similar to this:
No downstream store given, using etc. etc...
Symbol search path is: SRV**http://msdl.microsoft.com/download/symbols8. Tell the debugger to dump the process to a file with the .dump command:
.dump /ma C:\avast.dmp This command take a lot of time to complete as the CPU usage is broked down by ashServ.exe.
But it also depends on the speed of the Internet connection, as it will donwloade the symbols
from the Microsoft site.
9. The debugger just won't tell when the process is finished.
The best way to find out is to type some garbage to the command prompt and see whether
it's responding or not. If it's responding, i.e. coplaining about invalid command or something
like that, the previous command has already completed and we're ready to go.
10. After that, shut everything down (both the debugger and avast).
11. Make a *.zip file with C:\avast.dmp file and upload to some HTTP/FTP site.