|
Hide DS2.7 with Armadillo >3.xx Problem
Hello
I have problem which I can't resolve. I try search on forum and I found many answers but it not helped me. I have Arm >3.xx protected sw and when I run it with DS2.7 + IceExt2.5 + WinXp+SP1, Arm protected sw show me error "Error while unpacking programm, code 2. Please report to author". I need to trace "Father" part of code. I try Olly but when "Father" run then Olly lose control on it and any BP not working(or I do something wrong). Can somone help me how to hide DS2.7 or give me any tips? B.R |
Newer Armadillo can detect iceext, maybe this is your problem
-- bedrock |
I have 2 Arm protected sw. On win98 one of sw not detect softice 4.05,second one Hang win98. On WinXP both sw show that error. So if first sw protected by Armadillo ver. 3.xx is not detected in Win98 with SICE4.05 then why on XP it's detected(or make problems to decompress). Arm not show exactly that debugger is detected but show error what I report with my first post.
thx b.r |
Dont know about win 98, i dont use it.
On XP, after you have net start iceext, try renameing iceext's reg key: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\IceExt to txEecI for example, this is the key that arma checks i think |
not help coz before install IceExt it show same message.
Anyway I'll try install newer version of DS Do somone report here if have similar problem or not? thx b.r |
OpenServiceA check?
and arm 3.60 checks si if you installed that |
Hmm
If you erase IceExt information from the register, and then make sure to make the program jump at the right places, your program should run without problem. To find the "important" checks, use bp CreateFileA after attaching the child process to a running copy of Olly. After several hits, Olly will end up checking to see if Softice is installed. When that happens, exit the CreatefileA routine, and trace down a little bit in the code. There you will find the OpenService check. After that check you will find a couple of jumps that need to be changed during runtime.
Good luck, hobgoblin |
Now other problem....
ok nothing help, I used Olly to do all
but is other problem now , I have Arma sw what use CopyMemII with 2 bytes (instead 1000) so I suspend "father" and detach "son" and I Attach "son" in second Olly, and now problems start ,coz in tutorials I found to use "Set Memory Breakpoint on Access" on second section(Memory View in Olly) in tutorials is .Text section, in my case I is CODE section and start also from 0401000 , but when after set that pbreakpoint and run it(F9) it break at some exception what I skip by SHIFT+F9 and program stop in my breakpoint range but is not OEP, there stop at some instruciton what make exceptions and program terminate. Do somone explain me or help why I can't catch OEP ? I try to translate "150-armadillo con copymem2 sin truco de los 1000 bytes por flipi" Tutorial but there is clear wrote to make that breakpoint and program stop at OEP. b.r |
Hi peek
Hi peek,
PM me an url to the program you're working on, and I will take a look at it. Maybe I can help you in your efforts. hobgoblin |
| All times are GMT +8. The time now is 13:29. |
Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2026, vBulletin Solutions, Inc.
Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX