Thanks Michal, those were extremely clear instructions.

WinDbg seems a little ugly to look at compared to other systems that I’m familiar with, but it’s certainly better than a lot of the debuggers that I’ve used in the past.

The results are …

0:000> g
Breakpoint 1 hit
eax=00000000 ebx=00020384 ecx=00010101 edx=ffffffff esi=0012ff1d edi=002bbd2c
eip=0026695f esp=0012fcec ebp=0012ff14 iopl=0 nv up ei pl nz na pe nc
cs=001b ss=0023 ds=0023 es=0023 fs=0038 gs=0000 efl=00000202
0026695f 85c0 test eax,eax
0:000> r eax
0:000> !gle
LastErrorValue: (Win32) 0x57c (1404) – Invalid hook handle.
LastStatusValue: (NTSTATUS) 0 – STATUS_WAIT_0