ÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄ
   ÛÛÛ ÛÛ ÛÛÛ  ÛÛ ÛÛÛßÛÛ ÛÛÛßÛÛ     ÛÛÛßÛÛ ÛÛÛ ÛÛ ßßß ÛÛÛßÛÛ ÛÛÛ    ÛÛÛßÛÜ
   ÛÛÛ ÛÛ ÛÛÛÛ ÛÛ ÛÛÛ ÛÛ ÛÛÛ        ÛÛÛ    ÛÛÛ ÛÛ ÛÛÛ ÛÛÛ    ÛÛÛ    ÛÛÛ ÛÛ
   ²ÛÛ ÛÛ ²ÛÛÛÛÛÛ ²ÛÛßß  ²ÛÛß   ßßß ßßßßÛÛ ²ÛÛßÛÛ ²ÛÛ ²ÛÛß   ²ÛÛ    ²ÛÛ ÛÛ
   ±²Û ÛÛ ±²Û ÛÛÛ ±²Û    ±²Û        ±²Û ÛÛ ±²Û ÛÛ ±²Û ±²Û    ±²Û    ±²Û ÛÛ
   °±²ÛÛÛ °±²  ÛÛ °±²    °±²ÜÛÛ     °±²ÜÛÛ °±² ÛÛ °±² °±²ÜÛÛ °±²ÜÛÛ °±²ÜÛß

	  UNPE-SHiELD v0.11 (C) Copyright 1998 by G-RoM [PC/BS/PNC]
  ÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄ
                           D O C U M E N T A T I O N
  ÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄ

        I.   What is UNPE-SHiELD?
        ~~~~~~~~~~~~~~~~~~~~~~~~~
             UNPE-SHiELD is a program, which decrypts 32-bit Windows
             EXE files "protected" by PE-Shield. The version supported
             is the 0.1á which is the only version available as far as
             I know.


        II.  Disclaimer
        ~~~~~~~~~~~~~~~
             I, the author, am *NOT* responsible for any damage caused
             by the use  of UNPE-SHiELD. It  was  tested  with success
             under Windows NT, Windows 95&98 and pure DOS ;).


        III. Usage
        ~~~~~~~~~~
             Using UNPE-SHiELD is very easy:  Just type UNPESH [file]
             and UNPE-SHiELD will try to remover  the encryption  from
             the file u specified. The progression of the work will be
             displayed on ur screen.

	     Please note that the relocs are uncrypted but not recomputed :
	     That means that in some special case, the uncrypted EXE may
	     not run.

        IV.  Technical Notes
        ~~~~~~~~~~~~~~~~~~~~
             UNPE-SHiELD was coded under  PURE 32 bits  assembler with
             the use of DOS32 v3.5 services,  which is  on my point of
             view the best DOS-Extender  available for ASM32 coding. I
             didn't do the job in PURE C  coz I think it is useless ;)
	     The work was  achieved  in 3 hours.


        V.    Future Stuff
        ~~~~~~~~~~~~~~~~~~
             þ Remover for any new features of PESHiELD ;)

        VI.        History
        ~~~~~~~~~~~~~~~~~~
         V 0.0001 : Lame version, only removed a specific "MTE" version :(
		    Thanx Hann0 to report me what he thought to be a joke.

	 V 0.1à   : Added MTE analyzer.
                    Now any pe-shielded file might be supported. Please
		    report if u got an exe that crash ur PC when uncrypting.

	 V 0.1    : Added universal MTE remover.

	 V 0.11   : Improved MTE detector.
		    Thanx Hann0 for giving me a non working EXE ;)

        VII.   The author
        ~~~~~~~~~~~~~~~~~
             G-RoM is a cracker for several groups and won't give you
             his real info. Don't ask ;)

             iRC: EFNET #CRACKING nick G-RoM.


        VIII.  Personal Greetinx
        ~~~~~~~~~~~~~~~~~~~~~~~~

        RaNDoM  þ Comparing PE-SHiELD to PECRYPT is unfair! This code
                  is still at his beginning and will never reach urs ;)

        ANAKiN  þ I think U will be sick for a while ;) Anyway, Improve ur
		  code... Add ADT in CPL0 if u wish I don't care for a such
		  loader. I wait for ur import crypting/packing ;) After that
		  u will be ready for ressource packing (Weird to do !!).
		  Good Luck !!

        Stonehead, Dàrk-Màn, Dark Stalker, KA0T, Marquis, Lord Byte, ACP,
        Misha, TiNoX, SeNSi, Lord Caligo, LGB, Stone, Regor, Hann0 (error
	reporter hehehe) and lots of others ;)

        PS: The documentation was written in a hurry...