1. VMware中的是XP SP3, Host也是SP3. 当用WinDbg调试的时候, 总是说Symbols不对.
2. 我想可能是由于虚拟机是单核, 而Host是超线程的原因吧, 导致Ntoskrnl的版本不同的原因吧.
3. 删掉ntoskrnl.pdb文件夹, .reload, 成功了, 终于出现 Windows Internals(4th) 上说的那个结果了, 当然还是有很大差别的.

kd> !idt

Dumping IDT:

37: 806ef728 hal!PicSpuriousService37
3d: 806f0b70 hal!HalpApcInterrupt
41: 806f09cc hal!HalpDispatchInterrupt
50: 806ef800 hal!HalpApicRebootService
62: 81b94044 atapi!IdePortInterrupt (KINTERRUPT 81b94008)
63: 819333dc USBPORT!USBPORT_InterruptService (KINTERRUPT 819333a0)
73: 81bccdd4 SCSIPORT!ScsiPortInterrupt (KINTERRUPT 81bccd98)
82: 81b7fdd4 atapi!IdePortInterrupt (KINTERRUPT 81b7fd98)
83: 81bd0dd4 NDIS!ndisMIsr (KINTERRUPT 81bd0d98)
93: 81ba26cc i8042prt!I8042KeyboardInterruptService (KINTERRUPT 81ba2690)
a3: 81b9fdd4 i8042prt!I8042MouseInterruptService (KINTERRUPT 81b9fd98)
b1: 81b9d044 ACPI!ACPIInterruptServiceRoutine (KINTERRUPT 81b9d008)
b2: 8180b044 serial!SerialCIsrSw (KINTERRUPT 8180b008)
b4: 81b9e74c portcls!CKsShellRequestor::`scalar deleting destructor'+0x26 (KINTERRUPT 81b9e710)
          USBPORT!USBPORT_InterruptService (KINTERRUPT 81bd1d98)
c1: 806ef984 hal!HalpBroadcastCallService
d1: 806eed34 hal!HalpClockInterrupt
e1: 806eff0c hal!HalpIpiHandler
e3: 806efc70 hal!HalpLocalApicErrorService
fd: 806f0464 hal!HalpProfileInterrupt

如果是!idt -a的话, 会出现所有的, 上面的只是一个子集.

kd> !idt -a

Dumping IDT:

00: 804df350 nt!KiTrap00
01: 804df4cb nt!KiTrap01
02: Task Selector = 0x0058
03: 804df89d nt!KiTrap03
04: 804dfa20 nt!KiTrap04
05: 804dfb81 nt!KiTrap05
06: 804dfd02 nt!KiTrap06
07: 804e036a nt!KiTrap07
08: Task Selector = 0x0050
09: 804e078f nt!KiTrap09
0a: 804e08ac nt!KiTrap0A
0b: 804e09e9 nt!KiTrap0B
0c: 804e0c42 nt!KiTrap0C
0d: 804e0f38 nt!KiTrap0D
0e: 804e164f nt!KiTrap0E
0f: 804e197c nt!KiTrap0F
10: 804e1a99 nt!KiTrap10
11: 804e1bce nt!KiTrap11
12: Task Selector = 0x00A0
13: 804e1d34 nt!KiTrap13
14: 804e197c nt!KiTrap0F
15: 804e197c nt!KiTrap0F
16: 804e197c nt!KiTrap0F
17: 804e197c nt!KiTrap0F
18: 804e197c nt!KiTrap0F
19: 804e197c nt!KiTrap0F
1a: 804e197c nt!KiTrap0F
1b: 804e197c nt!KiTrap0F
1c: 804e197c nt!KiTrap0F
1d: 804e197c nt!KiTrap0F
1e: 804e197c nt!KiTrap0F
1f: 806effd0 hal!HalpApicSpuriousService
20: 00000000
21: 00000000
22: 00000000
23: 00000000
24: 00000000
25: 00000000
26: 00000000
27: 00000000
28: 00000000
29: 00000000
2a: 804deb92 nt!KiGetTickCount
2b: 804dec95 nt!KiCallbackReturn
2c: 804dee34 nt!KiSetLowWaitHighThread
2d: 804df77c nt!KiDebugService
2e: 804de631 nt!KiSystemService
2f: 804e197c nt!KiTrap0F
30: 804ddcf0 nt!KiUnexpectedInterrupt0
31: 804ddcfa nt!KiUnexpectedInterrupt1
32: 804ddd04 nt!KiUnexpectedInterrupt2
33: 804ddd0e nt!KiUnexpectedInterrupt3
34: 804ddd18 nt!KiUnexpectedInterrupt4
35: 804ddd22 nt!KiUnexpectedInterrupt5
36: 804ddd2c nt!KiUnexpectedInterrupt6
37: 806ef728 hal!PicSpuriousService37
38: 804ddd40 nt!KiUnexpectedInterrupt8
39: 804ddd4a nt!KiUnexpectedInterrupt9
3a: 804ddd54 nt!KiUnexpectedInterrupt10
3b: 804ddd5e nt!KiUnexpectedInterrupt11
3c: 804ddd68 nt!KiUnexpectedInterrupt12
3d: 806f0b70 hal!HalpApcInterrupt
3e: 804ddd7c nt!KiUnexpectedInterrupt14
3f: 804ddd86 nt!KiUnexpectedInterrupt15
40: 804ddd90 nt!KiUnexpectedInterrupt16
41: 806f09cc hal!HalpDispatchInterrupt
42: 804ddda4 nt!KiUnexpectedInterrupt18
43: 804dddae nt!KiUnexpectedInterrupt19
44: 804dddb8 nt!KiUnexpectedInterrupt20
45: 804dddc2 nt!KiUnexpectedInterrupt21
46: 804dddcc nt!KiUnexpectedInterrupt22
47: 804dddd6 nt!KiUnexpectedInterrupt23
48: 804ddde0 nt!KiUnexpectedInterrupt24
49: 804dddea nt!KiUnexpectedInterrupt25
4a: 804dddf4 nt!KiUnexpectedInterrupt26
4b: 804dddfe nt!KiUnexpectedInterrupt27
4c: 804dde08 nt!KiUnexpectedInterrupt28
4d: 804dde12 nt!KiUnexpectedInterrupt29
4e: 804dde1c nt!KiUnexpectedInterrupt30
4f: 804dde26 nt!KiUnexpectedInterrupt31
50: 806ef800 hal!HalpApicRebootService
51: 804dde3a nt!KiUnexpectedInterrupt33
52: 804dde44 nt!KiUnexpectedInterrupt34
53: 804dde4e nt!KiUnexpectedInterrupt35
54: 804dde58 nt!KiUnexpectedInterrupt36
55: 804dde62 nt!KiUnexpectedInterrupt37
56: 804dde6c nt!KiUnexpectedInterrupt38
57: 804dde76 nt!KiUnexpectedInterrupt39
58: 804dde80 nt!KiUnexpectedInterrupt40
59: 804dde8a nt!KiUnexpectedInterrupt41
5a: 804dde94 nt!KiUnexpectedInterrupt42
5b: 804dde9e nt!KiUnexpectedInterrupt43
5c: 804ddea8 nt!KiUnexpectedInterrupt44
5d: 804ddeb2 nt!KiUnexpectedInterrupt45
5e: 804ddebc nt!KiUnexpectedInterrupt46
5f: 804ddec6 nt!KiUnexpectedInterrupt47
60: 804dded0 nt!KiUnexpectedInterrupt48
61: 804ddeda nt!KiUnexpectedInterrupt49
62: 81b94044 atapi!IdePortInterrupt (KINTERRUPT 81b94008)
63: 819333dc USBPORT!USBPORT_InterruptService (KINTERRUPT 819333a0)
64: 804ddef8 nt!KiUnexpectedInterrupt52
65: 804ddf02 nt!KiUnexpectedInterrupt53
66: 804ddf0c nt!KiUnexpectedInterrupt54
67: 804ddf16 nt!KiUnexpectedInterrupt55
68: 804ddf20 nt!KiUnexpectedInterrupt56
69: 804ddf2a nt!KiUnexpectedInterrupt57
6a: 804ddf34 nt!KiUnexpectedInterrupt58
6b: 804ddf3e nt!KiUnexpectedInterrupt59
6c: 804ddf48 nt!KiUnexpectedInterrupt60
6d: 804ddf52 nt!KiUnexpectedInterrupt61
6e: 804ddf5c nt!KiUnexpectedInterrupt62
6f: 804ddf66 nt!KiUnexpectedInterrupt63
70: 804ddf70 nt!KiUnexpectedInterrupt64
71: 804ddf7a nt!KiUnexpectedInterrupt65
72: 804ddf84 nt!KiUnexpectedInterrupt66
73: 81bccdd4 SCSIPORT!ScsiPortInterrupt (KINTERRUPT 81bccd98)
74: 804ddf98 nt!KiUnexpectedInterrupt68
75: 804ddfa2 nt!KiUnexpectedInterrupt69
76: 804ddfac nt!KiUnexpectedInterrupt70
77: 804ddfb6 nt!KiUnexpectedInterrupt71
78: 804ddfc0 nt!KiUnexpectedInterrupt72
79: 804ddfca nt!KiUnexpectedInterrupt73
7a: 804ddfd4 nt!KiUnexpectedInterrupt74
7b: 804ddfde nt!KiUnexpectedInterrupt75
7c: 804ddfe8 nt!KiUnexpectedInterrupt76
7d: 804ddff2 nt!KiUnexpectedInterrupt77
7e: 804ddffc nt!KiUnexpectedInterrupt78
7f: 804de006 nt!KiUnexpectedInterrupt79
80: 804de010 nt!KiUnexpectedInterrupt80
81: 804de01a nt!KiUnexpectedInterrupt81
82: 81b7fdd4 atapi!IdePortInterrupt (KINTERRUPT 81b7fd98)
83: 81bd0dd4 NDIS!ndisMIsr (KINTERRUPT 81bd0d98)
84: 804de038 nt!KiUnexpectedInterrupt84
85: 804de042 nt!KiUnexpectedInterrupt85
86: 804de04c nt!KiUnexpectedInterrupt86
87: 804de056 nt!KiUnexpectedInterrupt87
88: 804de060 nt!KiUnexpectedInterrupt88
89: 804de06a nt!KiUnexpectedInterrupt89
8a: 804de074 nt!KiUnexpectedInterrupt90
8b: 804de07e nt!KiUnexpectedInterrupt91
8c: 804de088 nt!KiUnexpectedInterrupt92
8d: 804de092 nt!KiUnexpectedInterrupt93
8e: 804de09c nt!KiUnexpectedInterrupt94
8f: 804de0a6 nt!KiUnexpectedInterrupt95
90: 804de0b0 nt!KiUnexpectedInterrupt96
91: 804de0ba nt!KiUnexpectedInterrupt97
92: 804de0c4 nt!KiUnexpectedInterrupt98
93: 81ba26cc i8042prt!I8042KeyboardInterruptService (KINTERRUPT 81ba2690)
94: 804de0d8 nt!KiUnexpectedInterrupt100
95: 804de0e2 nt!KiUnexpectedInterrupt101
96: 804de0ec nt!KiUnexpectedInterrupt102
97: 804de0f6 nt!KiUnexpectedInterrupt103
98: 804de100 nt!KiUnexpectedInterrupt104
99: 804de10a nt!KiUnexpectedInterrupt105
9a: 804de114 nt!KiUnexpectedInterrupt106
9b: 804de11e nt!KiUnexpectedInterrupt107
9c: 804de128 nt!KiUnexpectedInterrupt108
9d: 804de132 nt!KiUnexpectedInterrupt109
9e: 804de13c nt!KiUnexpectedInterrupt110
9f: 804de146 nt!KiUnexpectedInterrupt111
a0: 804de150 nt!KiUnexpectedInterrupt112
a1: 804de15a nt!KiUnexpectedInterrupt113
a2: 804de164 nt!KiUnexpectedInterrupt114
a3: 81b9fdd4 i8042prt!I8042MouseInterruptService (KINTERRUPT 81b9fd98)
a4: 804de178 nt!KiUnexpectedInterrupt116
a5: 804de182 nt!KiUnexpectedInterrupt117
a6: 804de18c nt!KiUnexpectedInterrupt118
a7: 804de196 nt!KiUnexpectedInterrupt119
a8: 804de1a0 nt!KiUnexpectedInterrupt120
a9: 804de1aa nt!KiUnexpectedInterrupt121
aa: 804de1b4 nt!KiUnexpectedInterrupt122
ab: 804de1be nt!KiUnexpectedInterrupt123
ac: 804de1c8 nt!KiUnexpectedInterrupt124
ad: 804de1d2 nt!KiUnexpectedInterrupt125
ae: 804de1dc nt!KiUnexpectedInterrupt126
af: 804de1e6 nt!KiUnexpectedInterrupt127
b0: 804de1f0 nt!KiUnexpectedInterrupt128
b1: 81b9d044 ACPI!ACPIInterruptServiceRoutine (KINTERRUPT 81b9d008)
b2: 8180b044 serial!SerialCIsrSw (KINTERRUPT 8180b008)
b3: 804de20e nt!KiUnexpectedInterrupt131
b4: 81b9e74c portcls!CKsShellRequestor::`scalar deleting destructor'+0x26 (KINTERRUPT 81b9e710)
          USBPORT!USBPORT_InterruptService (KINTERRUPT 81bd1d98)
b5: 804de222 nt!KiUnexpectedInterrupt133
b6: 804de22c nt!KiUnexpectedInterrupt134
b7: 804de236 nt!KiUnexpectedInterrupt135
b8: 804de240 nt!KiUnexpectedInterrupt136
b9: 804de24a nt!KiUnexpectedInterrupt137
ba: 804de254 nt!KiUnexpectedInterrupt138
bb: 804de25e nt!KiUnexpectedInterrupt139
bc: 804de268 nt!KiUnexpectedInterrupt140
bd: 804de272 nt!KiUnexpectedInterrupt141
be: 804de27c nt!KiUnexpectedInterrupt142
bf: 804de286 nt!KiUnexpectedInterrupt143
c0: 804de290 nt!KiUnexpectedInterrupt144
c1: 806ef984 hal!HalpBroadcastCallService
c2: 804de2a4 nt!KiUnexpectedInterrupt146
c3: 804de2ae nt!KiUnexpectedInterrupt147
c4: 804de2b8 nt!KiUnexpectedInterrupt148
c5: 804de2c2 nt!KiUnexpectedInterrupt149
c6: 804de2cc nt!KiUnexpectedInterrupt150
c7: 804de2d6 nt!KiUnexpectedInterrupt151
c8: 804de2e0 nt!KiUnexpectedInterrupt152
c9: 804de2ea nt!KiUnexpectedInterrupt153
ca: 804de2f4 nt!KiUnexpectedInterrupt154
cb: 804de2fe nt!KiUnexpectedInterrupt155
cc: 804de308 nt!KiUnexpectedInterrupt156
cd: 804de312 nt!KiUnexpectedInterrupt157
ce: 804de31c nt!KiUnexpectedInterrupt158
cf: 804de326 nt!KiUnexpectedInterrupt159
d0: 804de330 nt!KiUnexpectedInterrupt160
d1: 806eed34 hal!HalpClockInterrupt
d2: 804de344 nt!KiUnexpectedInterrupt162
d3: 804de34e nt!KiUnexpectedInterrupt163
d4: 804de358 nt!KiUnexpectedInterrupt164
d5: 804de362 nt!KiUnexpectedInterrupt165
d6: 804de36c nt!KiUnexpectedInterrupt166
d7: 804de376 nt!KiUnexpectedInterrupt167
d8: 804de380 nt!KiUnexpectedInterrupt168
d9: 804de38a nt!KiUnexpectedInterrupt169
da: 804de394 nt!KiUnexpectedInterrupt170
db: 804de39e nt!KiUnexpectedInterrupt171
dc: 804de3a8 nt!KiUnexpectedInterrupt172
dd: 804de3b2 nt!KiUnexpectedInterrupt173
de: 804de3bc nt!KiUnexpectedInterrupt174
df: 804de3c6 nt!KiUnexpectedInterrupt175
e0: 804de3d0 nt!KiUnexpectedInterrupt176
e1: 806eff0c hal!HalpIpiHandler
e2: 804de3e4 nt!KiUnexpectedInterrupt178
e3: 806efc70 hal!HalpLocalApicErrorService
e4: 804de3f8 nt!KiUnexpectedInterrupt180
e5: 804de402 nt!KiUnexpectedInterrupt181
e6: 804de40c nt!KiUnexpectedInterrupt182
e7: 804de416 nt!KiUnexpectedInterrupt183
e8: 804de420 nt!KiUnexpectedInterrupt184
e9: 804de42a nt!KiUnexpectedInterrupt185
ea: 804de434 nt!KiUnexpectedInterrupt186
eb: 804de43e nt!KiUnexpectedInterrupt187
ec: 804de448 nt!KiUnexpectedInterrupt188
ed: 804de452 nt!KiUnexpectedInterrupt189
ee: 804de459 nt!KiUnexpectedInterrupt190
ef: 804de460 nt!KiUnexpectedInterrupt191
f0: 804de467 nt!KiUnexpectedInterrupt192
f1: 804de46e nt!KiUnexpectedInterrupt193
f2: 804de475 nt!KiUnexpectedInterrupt194
f3: 804de47c nt!KiUnexpectedInterrupt195
f4: 804de483 nt!KiUnexpectedInterrupt196
f5: 804de48a nt!KiUnexpectedInterrupt197
f6: 804de491 nt!KiUnexpectedInterrupt198
f7: 804de498 nt!KiUnexpectedInterrupt199
f8: 804de49f nt!KiUnexpectedInterrupt200
f9: 804de4a6 nt!KiUnexpectedInterrupt201
fa: 804de4ad nt!KiUnexpectedInterrupt202
fb: 804de4b4 nt!KiUnexpectedInterrupt203
fc: 804de4bb nt!KiUnexpectedInterrupt204
fd: 806f0464 hal!HalpProfileInterrupt