Reverse Engineering RET Homepage RET Members Reverse Engineering Projects Reverse Engineering Papers Reversing Challenges Reverser Tools RET Re-Search Engine Reverse Engineering Forum Reverse Engineering Links

Go Back   Reverse Engineering Team Board > Reverse Engineering Board > Reverse Code Engineering
FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply
 
Thread Tools Display Modes
  #1  
Old 01-28-2012, 03:23 AM
fepitch fepitch is offline
Member
 
Join Date: Dec 2009
Posts: 15
Default Can OS Upgrade/Updates Undo Emulations?

I emulated a Sentinel Rainbow Super Pro about three years ago. I don't use the software that needs the dongle that much. However, I use the machines for other things and I do get automatic operating system updates on the two XP machines that the emulation was done on.

Tonight I went to use the software and the dongle was no longer emulated on either machine. Emulation had worked perfectly when I regularly used the program without fail. I'd bet that it has to have something to do with Windows upgrades and updates as the actual software that uses the dongle is no longer supported and stopped being supported long before I emulated the dongle. Dongles are also not available for the software which is what drove me to emulate the dongle to make sure I would always have access to the software even if the dongle broke.

On one of my machines, I reinstalled the dongle driver and got the software to work with the physical dongle again. My original emulation would not work and the new emulation that I did using Git's multikey did not allow emulation to return either. Under both circumstances the software asked for the dongle and then would not acknowledge the dongle when it was put in the USB port even after restarts. Plug and play also kept asking for the location of the driver. I did download the newest driver and had to go back to the old one because the program would not work with the new driver.

Are there dongles that were emulatable in earlier versions of operating systems that can no longer be emulated?

Can someone please tell how to get this dongle emulated again? If not, can someone tell me if it is possible to get a blank Rainbow SuperPro and make a duplicate of the one that I have now?

Thanks in advance for sharing your wisdom!!
Reply With Quote
  #2  
Old 01-28-2012, 08:08 AM
Git Git is offline
Super Moderator
 
Join Date: Oct 2007
Location: Torino
Posts: 1,797
Default

MK is not my emulator, mine remains private. You can't get blank dongles. If you look on the MK web site there is a tool to clean the emulator registry so you can start again enad reinstall the emulator on a clean machine. DOn't forget to reinstall the registry file too. Try that and reports back with specific details if it fails.

Git
Reply With Quote
  #3  
Old 02-05-2012, 06:30 PM
fepitch fepitch is offline
Member
 
Join Date: Dec 2009
Posts: 15
Default

Hi Git,
I tried your suggestion and unfortunately things did not change.
So I tried making a new registry file by using the following tools in the sequence listed:
1. Sentinel Dumper from software-key.org dongle==> bin
2. PVA 3.33 from rapidshare bin ==> dmp
3. dmp2mkey from rapidshare dmp ==> reg
4. Loading the registry with the new reg key behind making change to the 00000000 string to 00000001 after Dword
5. Executing Multikey32 from rapidshare (mk 18.2.3)

Here is the registry entry I sent to the registry and then ran install.cmd

Install gave me all the proper messages, but the program was still lookiing for the dongle. The program does run if you give it the physical dongle.

I actually uninstalled the program that uses the dongle, used the dongle deletion program from Safe-net to entirely wipe out registry entries, used the remove command in MK to further be sure there was nothing in the registry, did a find command on the registry to be sure nothing was left by looking for the word Sentinel and the seni386.dll. Only after doing all of that did I place the modified entry there and invoke install.cmd.

I've done something wrong, I'm sure, but I don't know what. Here is the registry key that I installed. Can you please tell me where I took a wrong turn in the road?
Attached Images
File Type: jpg DumpFile.JPG (58.0 KB, 61 views)
Reply With Quote
  #4  
Old 02-05-2012, 08:28 PM
kjms kjms is offline
Senior Member
 
Join Date: Aug 2009
Posts: 337
Default

@fepitch if you use multikey 18.2.3 you must change cell05,cell07=1
"CellType"=hex:\
01,01,03,03,03,01,03,01,\
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\MultiK ey\Dumps\0000477F]

Last edited by kjms : 02-05-2012 at 08:43 PM.
Reply With Quote
  #5  
Old 02-06-2012, 09:12 AM
BfoX BfoX is offline
Senior Member
 
Join Date: Aug 2007
Posts: 2,236
Send a message via ICQ to BfoX Send a message via MSN to BfoX Send a message via Yahoo to BfoX
Default

@fepitch: upload your bin-file. your reg is wrong...
__________________
... Either you work well or you work much ....
Reply With Quote
  #6  
Old 02-08-2012, 01:27 PM
geophylika geophylika is offline
Senior Member
 
Join Date: Jul 2008
Location: China
Posts: 77
Angry

Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\MultiK ey\Dumps\XXXX0000]
"DongleType"=dword:00000003
"Copyright"="None"
"Created"="Sat Aug 29 22:44:19.875 2009"
"Name"="BBFE Sentinel SuperPro Dump"
"Type"=dword:00000000
"CellType"=hex:\
01,01,03,03,03,03,03,03,\
00,00,02,02,03,03,03,03,\
00,00,00,00,00,00,00,00,\
00,00,00,00,00,00,00,00,\
00,00,00,00,00,00,00,00,\
00,00,00,00,00,00,00,00,\
00,00,00,00,00,00,00,00,\
00,00,00,00,00,00,00,00
"sntMemory"=hex:\
2A,00,XX,XX,00,00,00,00,00,00,00,00,00,00,00,00,\
00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,\
00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,\
00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,\
00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,\
00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,\
00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,\
00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00

why the bin2reg result can't be work?
Reply With Quote
  #7  
Old 02-08-2012, 09:34 PM
kjms kjms is offline
Senior Member
 
Join Date: Aug 2009
Posts: 337
Default

geophylika
Code:
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\MultiK ey\Dumps\XXXX0000]
"Name"="BBFE Sentinel SuperPro Dump" are you missed this one????
"sntMemory"=hex:\
2A,00,XX,XX,00,00,00,00,00,00,00,00,00,00,00,00,\
Hide your serial no, not devid
Reply With Quote
  #8  
Old 02-09-2012, 04:03 AM
BfoX BfoX is offline
Senior Member
 
Join Date: Aug 2007
Posts: 2,236
Send a message via ICQ to BfoX Send a message via MSN to BfoX Send a message via Yahoo to BfoX
Default

you have upro dongle?
better is show the dump file....
__________________
... Either you work well or you work much ....
Reply With Quote
  #9  
Old 02-11-2012, 10:17 AM
fepitch fepitch is offline
Member
 
Join Date: Dec 2009
Posts: 15
Default Here are my zipped files: bin, dump and reg

I have attached all the files that I got along the way. When I changed cells five and seven to "01" in the reg file, still no go. The dongle continues to work.

Thanks for taking time to look at my situation.
Attached Files
File Type: zip Reteam.zip (24.0 KB, 50 views)
Reply With Quote
  #10  
Old 02-11-2012, 11:20 AM
BfoX BfoX is offline
Senior Member
 
Join Date: Aug 2007
Posts: 2,236
Send a message via ICQ to BfoX Send a message via MSN to BfoX Send a message via Yahoo to BfoX
Default

Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\MultiK ey\Dumps\0000477F]
"DongleType"=dword:00000003
"Type"=dword:00000000
"CellType"=hex:\
01,01,03,03,03,01,03,01,\
01,01,01,01,03,03,01,01,\
03,03,03,03,03,03,03,03,\
00,00,00,00,00,00,00,00,\
00,00,00,00,00,00,00,00,\
00,00,00,00,00,00,00,00,\
00,00,00,00,00,00,00,00,\
00,00,00,00,00,00,00,00
"sntMemory"=hex:\
31,16,7F,47,00,00,00,00,00,00,00,00,5E,F9,00,00,\
79,9E,49,3B,76,02,00,00,C7,C4,A9,D0,00,00,00,00,\
10,F2,11,F0,12,F2,13,F0,C7,C4,A9,D0,38,CB,56,DF,\
00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,\
00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,\
00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,\
00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,\
00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00
__________________
... Either you work well or you work much ....
Reply With Quote
Reply


Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump





Powered by vBulletin® Version 3.6.4
Copyright ©2000 - 2020, Jelsoft Enterprises Ltd.