Hullo,

I am using Softice 4.05 on NT 2K.

I am currently cracking application 'X'

This application loads a host of dlls, and other files (delay-loads, getprocessinfo, loadlib...etc). No problem.

It also loads pure binary dumps into virtual address space of app 'X'

These binary dumps form part of the code, needed to do things.

It loads more than 30 binary dumps (easily checked by filemon, createfilea, readfilea...etc)

And it loads these dumps at the start of the program.

Now, I need to know where each bin dump has been loaded into memory.

Map32/proc does not help.

query 'X' does help

But, the query command shows the memory allocated to .dlls and associated .exe and even certain objects.

I can definitely see my binary dumps. 30 of them at different address ranges in the same process address space.

But, I CANNOT see their file names associated.

This causes a big headache to understand which dump is being used by which dump file.

Is there any way to know this is ICE, or by any other means .??

Any assistance greatly appreciated.

Regards