Inline patch or loader for Asprotec 1,24-1.3????

[the_beginner]

@JMI

PHP Code:

the_beginner:

Small lesson in proper English spelling, simply because your effor makes a word you do not intend. 

You keep spelling the English word "got" (erhalten) as "god" which is the English word for Gott. Major difference. I know that in German a "d" at then end of a word can sometimes be pronounced as a "t" but that is a rather important word not to use by mistake. Verstehen?  

Regards, 


ok ok My English is very bad,but Nobody is Perfect


@diablo2oo2

Many thanks,I hope this help me


(Ich k�nnte auch Schreiben vielen Dank denn Du kommst ja auch aus dem Deutschland oder wie kommt man zu einer .de Adresse :-) )

cu

[JMI]

the_beginner:

Nobody is criticizing your English or suggesting it is 'bad." I simply pointed out that one small letter made a very important difference in those two words, an error which you might want not to make. And thanks for the offer.

Regards,

I know a tool named "AIPH" can do it.
You can search this forum or woodmann forum to get it.

[the_beginner]

hi

can someone explain How can I find the adress of hProcess for this loader?
my proggy ist protect by Asprotec 2.0 :-(

thanks

[diablo2oo2]

good tutorial:
http://biw.rult.at/coding/loader.htm


hProcess is part of PROCESS_INFORMATION structure. this structure is filled when you call CreateProcess. just check the tutorial

[britedream]

in two ways , that I know, one is a perfect but harder than the other one, the second is less perfect, it misses some time but you always can re-click the target, easy, it involves only one comparison that you have to make it jump , which is so obvious that you don't even have to look for it to find it, and a jump to the oep, after that aspr is practically finished.you can patch once you are at the oep or better yet is to patch when the target is about to execute the code you are trying to change.


regards.
BriteDream

[diablo2oo2]

could you paste this jump location code?