I suspect the phishing alert was triggered by the version numbers that
look like IP addresses (and poorly formed URLs). But the IP addresses
don’t appear to be valid targets…
…dave
From: xxxxx@lists.osr.com
[mailto:xxxxx@lists.osr.com] On Behalf Of Gary G. Little
Sent: Thursday, July 20, 2006 6:17 PM
To: Kernel Debugging Interest List
Subject: RE: [windbg] uf PsCreateProcess failing to disassemble in lkd
Strange. The OP posters e-mail was flagged as possible phishing attempt
in OutLook 2007 Beta 2. It might be a quirk of a Beta but then anyone
logging into this type of forum with a name of “blufferisme isme” is …
shy a brick or two. I’d normally discount this type of warning on this
forum, but given the lack of judgment in the choice of the nickname used
does give me pause.
The personal opinion of
Gary G. Little
From: xxxxx@lists.osr.com
[mailto:xxxxx@lists.osr.com] On Behalf Of Drew Bliss
Sent: Thursday, July 20, 2006 4:15 PM
To: Kernel Debugging Interest List
Subject: RE: [windbg] uf PsCreateProcess failing to disassemble in lkd
I am able to do this on XPSP2. What does the disassembly look like when
you just use ‘u’?
From: xxxxx@lists.osr.com
[mailto:xxxxx@lists.osr.com] On Behalf Of blufferisme isme
Sent: Thursday, July 20, 2006 12:38 AM
To: Kernel Debugging Interest List
Subject: [windbg] uf PsCreateProcess failing to disassemble in lkd
i was trying to unassemble PspCreateProcess via
file -> kernel->local
and doing an uf nt!PspCreateProcess
version 6.6.3.5 was failing with an error unable to access memory
so i downloded the latest version
viz 6.6.7.5
this also errs with a different message
code not found aborting
while the same could be disassembled with
u nt!PspCreateProcess or u nt!PspCreateProcess L200
u 8058###
os == xp-sp2
I can do uf on other Funcions like
uf nt!MmCreateProcessAddressSpace
and they seem to work well
i have disassembled this function earlier in w2k using livekd (ex
sysinternals) without problems
can some one point out what could be the problem
You are currently subscribed to windbg as: unknown lmsubst tag argument:
‘’
To unsubscribe send a blank email to xxxxx@lists.osr.com
__________ NOD32 1.1668 (20060719) Information __________
This message was checked by NOD32 antivirus system.
http://www.eset.com
You are currently subscribed to windbg as: unknown lmsubst tag argument:
‘’
To unsubscribe send a blank email to xxxxx@lists.osr.com