Fix for SecuROM bug

Process Explorer doesn't installs any kernel mode interceptors and it is absolutely unknown why its not unloading its driver at exit.

However everything is not safe, including driver loading in the first. So I can't agree with such statements. The same Blue Screen can happened when you installing hooks by the same criteria.


Edited by EP_X0FF - 18 June 2007 at 8:10pm

@ molotov

It will come in handy for learning some C++ in the near future

Edited by molotov - 18 June 2007 at 8:36am

I consider the fact that SecuROM doesn't allow you to run an app even after PE has closed a simple bug in their detection algorithm.  Here's a workaround (binary and source included):

http://www.chase.net.au/HidePE100.zip

Note - there's code there to specifically prevent you from running PE at the same time so this *isn't* a circumvention of their protection.  If they don't want PE running, fine, just don't make us reboot to run apps when we may well have long running background tasks on our workstations.

If you think this is a bad idea to post, please remove it.  Just wanted to share something that will relieve a bunch of my frustration with not wanting to reboot for a quick 15 minute game between working.

The simple rundown on how it works is pretty obvious - it just creates an empty DACL and applies it to the PROCEXP100 symlink in the object manager.  When the app is done, it just resets the DACL to the original value.  I included a "reset" switch as well just in case something happens and you need to reset it manually.

Hope that helps some folks out there.


Edited by throx - 15 June 2007 at 1:01pm