Newbie2k2
August 30th, 2002, 09:25
i got this Aspr. protected variant.. maybe modified for betters results by the author... i don't want or need to unpack it by now.. but i need my regmon and filemon. working it seems this app. detects everything, Sice, Filemon......... it close my regmon every time i tried to open the program. the patchs available at Programmers tools don't work with latest versions and i can't get olders ones... the cuestions is how can patch my regmon or file mon to avoid detection by this target:
i want to see what's going on in the registry while the bitch is loading but it won't let me.. it close both file monitor and reg monitor made by sysinternal network... both are latest version 4.34... i guess.
please guys i need some good instructions or tips.... not complaints or just a line saying this has been discused before... i'm new here...
thanks!!!

dion
August 30th, 2002, 11:40
mmm.. try bpx on CloseHandle to see what have been done by that b****

Newbie2k2
August 30th, 2002, 14:30
i can't even run Sice, it seems icedump needs a little update... frogice always crash...... i want to know how to patch regmon and filemon to avoid detection.......
JMI
August 30th, 2002, 15:49
Newbie2k2:
Here you came with your first post and once again we have someone who thought their question was SO important that they didn't bother to look around first or READ THE POSTING GUIDELINES before they posted a question that has, indeed, been both asked and answered here before. Had you bothered to read those guidelines, you would have discovered that your eyes did not deceive you, that is actually a "Search" button at the top of the forums and, "surprise," if you use your brain and the button, you will very often find that the answer to your question is already here. and available to you without asking it again.
Use the "Search" button and enter the obvious choices for YOUR problem, which are "asprotect + regmon" and you will find (and should have already found) the answer to your question, some of it from no less an illuminary than CrackZ himself.
Another good use of your brain, instead of the "somebody help me, I too lazy to try to help myself", type of reaction, would be to think about "how" a program running on your computer might actually be detected by another program, and if detected, how would it shut it down. This, of course, might mean that you will have to begin to learn something about API's and the steps Windows goes through to find and close a program.
If you had bothered to examine any of these issues, you would have found help for the problem of asprotect shutting down Sice also. Consider the possibilities of using the "Search" button and something obvious from you questions, such as "asprotect+ Sice+shutting down" or, perhaps, just "asprotect+softice."
Again, using your brain, you might have checked out some of the Links at the bottom of the Forum and done some actual research. Here's another hint: Go to the AntiCrack Site and look at the "Current Active Section" or, wow, even use the search feature there and you'll discover, (and should already have discovered) that they have two sections titled "RCE Anti-Debugger" and "RCE Anti-Disassembler."
The point of all this is not to attack you, but to point out the failure of your efforts/attempt to help yourself. Learning to search is one of the most important skills you can learn about reverse code engineering, because that is how you find the information that is already available about the subjects that interest YOU. The Guidelines suggest that you take these steps BEFORE posting your question, but you should have done it on your own simply because going out and finding the answer actually teaches you something, i.e. how to find the answer. Learning how to find the answer, will lead you to discover that there is a very great wealth of material already available out there, if you will only bother to look. If you don't know "how to search," again there is an entire section devoted to the craft in the Fravia's mirror, linked at the bottom of the Forums.
Regards.
nofurs
August 30th, 2002, 16:13
woh what a harsh flamming!
They are just lazy to search.They have brains coz they want you to help them to find it
JMI
August 30th, 2002, 16:51
cluesurf:
I do not believe that I wrote a "personal" attack on Newbie2k2. I clearly criticized the lack of effort and the failure to read the posting guidelines, not the individual, but I did actually gave the answer to the problem (or more correctly, where it may be found.)
I have no need nor interest in doing anything other than "teaching" that the answers to most questions are already available for those who will make an effort to look for them. Just giving the answer "teaches" the person who receives it very little. Helping to "teach" them how to attempt to analize what the issues are that they need to solve and how to go about seeking the answer on their own gives the "tools" that are needed to problem solve in life in general, and in RCE in particular. I neither believe nor suggest that all answers are out there, but the process of the seeking is of value in and of itself and is the "how" we learn to actually "think."
I'm not interested in punishing Newbie2k2 or getting some form of "mea culpa" for the lack of effort. I'm interested only that Newbie2k2 and others LEARN how to attempt to find the answers by using their brains as a necessary skill. The form of my response "assumes" that they have a brain, and simply haven't exercised it on the subject yet.
This is supposed to be one of the places where people who have attempted to help themselves come when they can't find the answer, not where they ask a question they haven't attempted to investigate or solve themselves. Even though Newbie2k2 did not make that effort, or at least didn't show any effort, I still taught "how to find the answer" that was already there.
Regards.
DooGie
August 31st, 2002, 00:51
JMI
Feel you were a bit hard on Newbie2k2. The guy is trying to learn and probably becoming impatient by hitting a brick wall all the time. We've all done it. You've obviously got a lot of patience and experience. Others need guiding in a gentler way.
Powered by vBulletin® Version 4.2.2 Copyright © 2018 vBulletin Solutions, Inc. All rights reserved.