Posted 13 February 2007 - 10:51 AM
Q: I am trying to trace a installshield installation, I have to be able to break into iKernel.exe (InstallShield Engine) and trace the functions it calls, i can not just attach a debugger as it is not able to break into the process and show me a trace, I know this can be done with IDA Pro, and many other debuggers. But i do not know how to do it, one way we had done it before was to attach the debugger to the Setup.exe (which loads the Installshield Engine, and have it automatically reak into the Engine process just after it started, thus allowing us to trace its functions. But to put it simply, we have forgotton how we did it and we lost the documentaion on how we did it. So i am asking for any ideas on how to be able to trace the Ikernel.exe process.
Posted 19 March 2007 - 01:56 PM
Posted 22 March 2007 - 04:27 AM
Posted 22 March 2007 - 04:54 AM
btw, off-topic- I was just looking through old archives of win2osx, man i miss that site
Posted 23 March 2007 - 04:52 PM
Posted 24 March 2007 - 07:52 AM
Posted 24 March 2007 - 06:16 PM
i decompiled the script, but its really cryptic. We can ether trace the setup or the startupdisk.cpl (from a apple running windows) to be able to find out how it writes to the efi nvram (to set boot from csm or efi).
hm.. how its writes on nwram i tink you can find answer on intels northbridge specifications. what it's writs and exaclty there.. thats should be question.. could you send me thous files ? i mean that setup file and startupdisk.cpl i know ASM a litle bit i could try to find that you are looking for
Posted 05 April 2007 - 03:27 PM
(might sound like a dumbs answer, but I use windows only on my brothers pc I use Linux and OSX mainly)
I can remember alot of microsoft crap (installers etc) call from temp files (for example if I wanted a x86 package only to install on x64 I had to move the installer pack quickly enough to find my new file and not trow error about x86 OS .....
(my 2 grams)
Posted 06 April 2007 - 12:17 AM
Posted 06 July 2007 - 03:04 PM
Posted 07 July 2007 - 04:04 AM
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users