几个实用的WinDBG命令
WinDbg单独下载地址http://www.windbg.org/
kn command
dump current stack
1: kd> kn
# ChildEBP RetAddr
00 81e33c6c 81898d7c nt!RtlpBreakWithStatusInstruction
01 81e33c74 81898d2e nt!KdCheckForDebugBreak+0x22
02 81e33d20 8183ddd5 nt!KeUpdateRunTime+0x270
03 81e33d50 8187dba2 nt!PopIdleDefaultHandler+0x239
04 81e33d54 00000000 nt!KiIdleLoop+0xa
.frame N command
where N is the frame number to navigate to that frame
1: kd> .frame 3
03 81e33d50 8187dba2 nt!PopIdleDefaultHandler+0x239
1: kd> dv
[...]
f+ and .f- command
1: kd> .f-
02 81e33d20 8183ddd5 nt!KeUpdateRunTime+0x270
1: kd> .f+
03 81e33d50 8187dba2 nt!PopIdleDefaultHandler+0x239
set as default debugger
Go into WinDbg directory (Debugging Tools for Windows) and type
windbg -I
use microsoft debug info
f:\BusObjSymbols;SRV*f:\localsymbols*http://msdl.microsoft.com/download/symbols
sombols其他用法可参见http://support.microsoft.com/kb/311503
1791
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
