using process explorer to examine runaway processes

i was watching russinovich’s presentation called “the case of the unexplained 2010” when something he mentioned caught my attention: wmiprvse.  if you watch the segment from 21:00 to 32:00, you’ll get some good insight on troubleshooting with process explorer.  fun stuff…

you can watch the video here and get process explorer here.