Visual Build
Hello,
Visual Build is a nice tool that allow to automate repetitive tasks (VSS operations, Visual Studio, Install Shield, etc...)
I would like to find a serial!
But, It seems to be well protected, so I will appreciate some help to crack
1) It detects debugging tools (find as attached file the pathed dll that remove the softice protection).
2) I tried to found a serial from the �Register?dlg code and I localized this sensible area from visbuildpro.exe after pressing OK from the register dlg:
.text:0041F965 mov [ebp-1Ch], eax
.text:0041F968 push dword ptr [ebp-18h] ; serial unicode string
.text:0041F96B push edi ; user unicode string
.text:0041F96C push eax
.text:0041F96D call dword ptr [ecx+80h] ; call to rpcrt4.dll
.text:0041F973 cmp eax, ebx
.text:0041F975 jge short loc_41F982
.text:0041F977 push eax
.text:0041F978 push dword ptr [ebp-1Ch]
.text:0041F97B call ThrowException
.text:0041F980 pop ecx
.text:0041F981 pop ecx
After pushing user and serial string parameter it call a rpcrt4.dll function (that is not an entry point of the dll !). And it falls in rpc and proxy functions (in rpcrt4.dll).
So I suppose (not sure) the sensible code is hidden in a server part of a dcom mechanism, and here we are in the client part.
Any suggestions? Someone knows how to handle this kind of protection ?
Thanks
|