Server.exe

[SheenBR]

My server.exe wont start in olly! The game runs but the server.exe not! The olly throws an exception in this:

7C96F771 0FB707 MOVZX EAX,WORD PTR DS:[EDI]
7C96F774 C1E0 03 SHL EAX,3
7C96F777 8945 D0 MOV DWORD PTR SS:[EBP-30],EAX
7C96F77A 68 3CF9967C PUSH ntdll.7C96F93C ; ASCII "RtlFreeHeap"
7C96F77F 57 PUSH EDI
7C96F780 56 PUSH ESI
7C96F781 E8 05EDFFFF CALL ntdll.7C96E48B
7C96F786 84C0 TEST AL,AL
7C96F788 0F84 51010000 JE ntdll.7C96F8DF
7C96F78E 3B1D 50FF977C CMP EBX,DWORD PTR DS:[7C97FF50]
7C96F794 75 3E JNZ SHORT ntdll.7C96F7D4
7C96F796 64:A1 18000000 MOV EAX,DWORD PTR FS:[18]
7C96F79C 8945 CC MOV DWORD PTR SS:[EBP-34],EAX
7C96F79F 8B40 30 MOV EAX,DWORD PTR DS:[EAX+30]
7C96F7A2 8B40 0C MOV EAX,DWORD PTR DS:[EAX+C]
7C96F7A5 8B40 0C MOV EAX,DWORD PTR DS:[EAX+C]
7C96F7A8 8945 C8 MOV DWORD PTR SS:[EBP-38],EAX
7C96F7AB 8945 C4 MOV DWORD PTR SS:[EBP-3C],EAX
7C96F7AE 83C0 2C ADD EAX,2C
7C96F7B1 50 PUSH EAX
7C96F7B2 68 48F9967C PUSH ntdll.7C96F948 ; ASCII "HEAP[%wZ]: "
7C96F7B7 E8 1B0EFCFF CALL ntdll.DbgPrint
7C96F7BC FF35 50FF977C PUSH DWORD PTR DS:[7C97FF50]
7C96F7C2 68 54F9967C PUSH ntdll.7C96F954 ; ASCII "About to free block at %p
"

Then i do Shift+F8 and it goes here:

7C90E480 8B1C24 MOV EBX,DWORD PTR SS:[ESP]
7C90E483 51 PUSH ECX
7C90E484 53 PUSH EBX
7C90E485 E8 FDBF0100 CALL ntdll.7C92A487
7C90E48A 0AC0 OR AL,AL
7C90E48C 74 0C JE SHORT ntdll.7C90E49A
7C90E48E 5B POP EBX
7C90E48F 59 POP ECX
7C90E490 6A 00 PUSH 0
7C90E492 51 PUSH ECX
7C90E493 E8 C6EBFFFF CALL ntdll.ZwContinue
7C90E498 EB 0B JMP SHORT ntdll.7C90E4A5

Then Shift+F8 it return to the first code, the after several Shift+F8 olly closes the server.exe

What is happening?

 

[bobsobol]

There are "CriticalSections" in the code which, if you stop execution, or hit a breakpoint, you cannot resume.

However, you should be able to get the "Break on Entry" to work unless you have a "bad build".

When you are messing with adding sections and rearranging the structure of a PE (Portable Executable) it can become "border line" compliant. At which point, it may run in Windows, but be too corrupt for Olly to be able to make sense of it.

This is done deliberately by some Exe Encryptors... but not many, as it also increases the risk that the program won't run on some present or future version of Windows. The Windows Executive kernel (the bit that loads a program, links it to any DLLs and adds it's entry point to the active process list) is pretty lax, and can cope with all sorts of things that fall outside the official documentation of the PE format.

There are also some environmental conditions under which some versions of Olly are more "fussy". Can you open the 4096.exe jPT server in Olly? Have you tried different versions of Olly? I'm still using v2.0 Beta j because the current V2.0 Beta k gives me trouble... and a lot of people are still happier using the final v1.10, which is slower, but much more stable... and still I find it doesn't cope with the massive threading that the server uses as well. (but maybe I just don't have enough patients.

 

[SheenBR]

bobsobol, i do not have the 4096.exe, could you attach it here so i can test?

---------- Post added at 10:24 PM ---------- Previous post was at 10:12 PM ----------

Thanks man!!! I think thats why people loves you!! It worked with the 4096.exe! Thanks!

 

[rxaicy]

add the file Char and Field,and then it will function well.

 

[SheenBR]

its already added, but my game.exe can not connect to the 4096 server! Why not?

 

[bobsobol]

Because the protocol for 4096 has not been fixed from that of early jPT Betas (Nearly the same as EPT now) to that of KPT. (which most of us use for client)

But it proves the point that your main server has been modified too many times.

Really, it's best to plan out and document all changes and apply them in one PE edit. But it's not Hexing or Olly changes (mostly) that causes the problem, it's LordPE, CFF Explorer Suite, PE Explorer, ToPo etc changes that causes the issue you are facing.

 

[SheenBR]

Then bobsobol, do you have a server.exe that was not modified so many times and do not crash in olly?