ntldr_dbg use

Hello,

I’m new to windbg and am trying to use the ntldr_dbg file provided in the winddk\debug folder on an xp virtual machine. However, after replacing the file and attempting to restart the vm, I get a message saying ntldr is corrupt and the system doesn’t boot. Is there another step I’m missing?

I’ve never tried this using ntldr_dbg from a DDK, and I no longer have a DDK old enough installed to look at it. It’s been a while since I’ve done this with XP, but I used to do this using the NTLDR from the CHECKED verison of the OS that you are running in the virtual machine. Just replace the existing one with the CHECKED one.

Good luck,

mm

Thanks for the reply, replacing the regular ntldr with the checked version allows the system to boot. However, I was trying to use it to map some of the boot drivers with the .kdfiles command. With the checked version, the first breakpoint still occurs after the boot drivers have been loaded, so they don’t appear to be mapped.

I also have never tried this… This file isn’t compressed is it? Perhaps
you could try “c:\>Extract” on it???

On 10/12/07, xxxxx@umich.edu wrote:
>
> Thanks for the reply, replacing the regular ntldr with the checked version
> allows the system to boot. However, I was trying to use it to map some of
> the boot drivers with the .kdfiles command. With the checked version, the
> first breakpoint still occurs after the boot drivers have been loaded, so
> they don’t appear to be mapped.
>
> —
> You are currently subscribed to windbg as: xxxxx@gmail.com
> To unsubscribe send a blank email to xxxxx@lists.osr.com
>