-
Notifications
You must be signed in to change notification settings - Fork 67
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
drltrace can't output the trace of child process #15
Comments
Thank you for opening this issue. Could you try debug version of drltrace on latest Adobe? |
Dear Maksim,
Thanks for the quick update. I will try it tonight and reply it to you as soon as possible.
Sincerely,
Wei-Han
取得 iOS 版 Outlook<https://aka.ms/o0ukef>
…________________________________
From: Maksim Shudrak <notifications@github.com>
Sent: Saturday, February 9, 2019 2:26:26 AM
To: mxmssh/drltrace
Cc: Huang, Wei-Han; Author
Subject: Re: [mxmssh/drltrace] drltrace can't output the trace of child process (#15)
Thank you for opening this issue. Could you try debug version of drltrace on latest Adobe?
https://github.com/mxmssh/drltrace/releases/download/0.9d/drltrace_win32_debug.rar
—
You are receiving this because you authored the thread.
Reply to this email directly, view it on GitHub<#15 (comment)>, or mute the thread<https://github.com/notifications/unsubscribe-auth/AlhxiN-_-PWQAUAbYgYUG36XYSR0cW3_ks5vLngigaJpZM4ayJAl>.
|
It can get the dll such as 'JP2KLib.dll' now. Thanks for all the contribution and help. |
Great, thank you for feedback. The question is why release version doesn't work :) |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Thanks for all the contribution and information in drltrace. I have just started the research of binary analysis in Windows. And I am trying to apply drltrace on my research to trace the library calls of Adobe Acrobat DC reader. However, I suffered from an issue that I can't get the Adobe related dll such as 'JP2KLib.dll' by applying -only_to_lib flag on drltrace.
My command is ".\drltrace.exe -logdir D:\Winfuzz_test\drltrace_win_x32\log -only_to_lib "JP2KLib.dll" -- "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe" D:\Winfuzz_test\test\1.pdf"
And the environment is Windows 7 with visual studio 2013.
After I tried it on Acrobat Reader 9.0, I can successfully get the 'JP2LLib.dll' in the trace. Maksim told me that maybe the reason is that Acrobat Reader DC will call 'JP2Klib.dll' in its child process, but drltrace can't get the log of the child process now. Can you help me to examine this issue? Thanks for all the help and information.
The text was updated successfully, but these errors were encountered: