激活DEBUG : bcdedit /debug {ID} ON 这里的{ID} 的ID值还是刚才的ID值.
命令执行成功后, 重新启动机器.
选择DebugPoint登录,开启Windbg
连接成功, 则显示如下: Microsoft (R) Windows Debugger Version 6.6.0007.5 Copyright (c) Microsoft Corporation. All rights reserved.
Opened \\.\pipe\com_1 Waiting to reconnect... Connected to Windows Vista 6000 x86 compatible target, ptr64 FALSE Kernel Debugger connection established. Symbol search path is: symsrv*symsrv.dll*F:\symbols*http://msdl.microsoft.com/download/symbols Executable search path is: Windows Vista Kernel Version 6000 MP (1 procs) Free x86 compatible Built by: 6000.16386.x86fre.vista_rtm.061101-2205 Kernel base = 0x81800000 PsLoadedModuleList = 0x81911db0 System Uptime: not available Break instruction exception - code 80000003 (first chance) ******************************************************************************* * * You are seeing this message because you pressed either * CTRL+C (if you run kd.exe) or, * CTRL+BREAK (if you run WinDBG), * on your debugger machine's keyboard. * * THIS IS NOT A BUG OR A SYSTEM CRASH * * If you did not intend to break into the debugger, press the "g" key, then * press the "Enter" key now. This message might immediately reappear. If it * does, press "g" and "Enter" again. * ******************************************************************************* nt!RtlpBreakWithStatusInstruction: 81881760 cc int 3