Hello, WinDbg on a 64 bit Windows 7, was attached to a 64 bit user mode app. Why did the !vtop command work, but the !PTE command on the same virtual address (of a variable in the user mode app) returned a "not valid" as below? The user mode app is waiting for input. Many thanks for any help. lkd> !process 0 0 umode64v2.exe PROCESS fffffa8006ea0220 SessionId: 1 Cid: 03f8 Peb: 7fffffd3000 ParentCid: 04a4 DirBase: 1678b000 ObjectTable: fffff8a0013db010 HandleCount: 6. Image: UMode64v2.exe lkd> .process /p /r fffffa8006ea0220 Implicit process is now fffffa80`06ea0220 Loading User Symbols ..... lkd> .context User-mode page directory base is 1678b000 lkd> dd 13f459000 00000001`3f459000 deadbeef fffffffe 00000001 ffffffff lkd> !vtop 1678b000 13f459000 Amd64VtoP: Virt 00000001`3f459000, pagedir 1678b000 Amd64VtoP: PML4E 1678b000 Amd64VtoP: PDPE 18d39020 Amd64VtoP: PDE 1907afd0 Amd64VtoP: PTE 17efb2c8 Amd64VtoP: Mapped phys 7001000 Virtual address 13f459000 translates to physical address 7001000. lkd> !dd 7001000 # 7001000 deadbeef fffffffe 00000001 ffffffff lkd> !pte 13f459000 VA 000000013f459000 PXE at FFFFF6FB7DBED000 PPE at FFFFF6FB7DA00020 PDE at FFFFF6FB40004FD0 PTE at FFFFF680009FA2C8 contains 1A7000000CE88867 contains 02E0000012E08867 contains 0310000012B08867 contains 0000000000000000 pfn ce88 ---DA--UWEV pfn 12e08 ---DA--UWEV pfn 12b08 ---DA--UWEV not valid

Ask this in this forum: Windows Debugging Forum or in the WinDbg google group: http://groups.google.com/group/microsoft.public.windbg/topics"A programmer is just a tool which converts caffeine into code" CLIP- Stellvertreter http://www.winvistaside.de/