I have various programs i open in OLLY and RUN perfect and no error at all never but if i attach this program, exception 80000004, errors in kernel32 and very strange things ocurrs, no in all programs only in some programs.

For example WEB PROTECTOR 2.0 is a little program 500 k.
http://www.protecthtml.com/
("http://www.protecthtml.com/
")

in w98 if you attach the errors ocurr, if open normally not
and others

is there a anti attach protection?

Ricardo Narvaja

hmm, never heard about this. i will try to see on my machine too.

It's due to the detection of debugger by the debugged program.
It's a protection )

The soft is packed with UPX, unpack with upx with -d option in command line

Anoymous: if is a detection of the debugger why not detect the debugger when open a program normallly with OLLY and make errors only when ataching, I dont look any protection only two jmps and a ret and when execute the ret the error apears.
I know antidebugging protection here it is not any protection antidebugger.

Darus, the UPX isn't the problema is easy remove and the error are equal in the dumped executable.

Ricardo

hmm i've said upx because when open the program normally there is no problem with antidebugging

hi,ricnar456
you want crack it that don't want buy it?
if TBD agree, i will post crack it.
too smile.
luucorp@yahoo.com

luucorp: if Ricardo wants it please use the email exchange information or use fraviamb.
... but if you have something generic, please post it

unpack the app and get rid of the api: IsDebuggerPresent or somethinglike that

I modify the kernel 32 this api always return 0 in my machine,this isnt the truble, why any try the program the link is in the first post.

Ricardo

this thread is locked due specific program antidebugging code.