""""""""""""""using the JIT-Freezer""""""""""""""""

THREADENTRY32 te{};
	auto Hd = CreateToolhelp32Snapshot(TH32CS_SNAPTHREAD, 19796);
	te.dwSize = sizeof(te);
	for(;;) {
if(te.th32OwnerProcessID != 19796) break;
		Thread32Next(Hd, te);
	} 
	Hd = OpenThread(PROCESS_ALL_ACCESS, FALSE, te.th32ThreadID);
	SuspendThread(Hd);

its not jitfreeze, its just suspend process ,

 

anyway if i can not run trial protected exe on other pc thn i think may be its useless 

Edited January 7, 20232 yr by Hadits follower
upgraded

@whoknows
when I use JIT-Freezer is just silence exist the protected program!
How you did even get corrupted assembly? I think if we have a corrupted assembly and the specific Dnguard version with which was protected we can recreate a valid .NET assembly.
 

hi CE,

PFA

the trial is not running by default... 

 

 

dump tried also with other apps, the result was the same.

post rejected

 

Edited January 21, 20232 yr by Hadits follower
removed

merged

 

 

Edited January 22, 20232 yr by Hadits follower

Let's move this discussion to a separate thread

updated post + Fixed mime type , now video should be open on other browser 

 

i have tested in two mode mode native + dotnet mode 

i dont know if anyone can answer my question if i can not run the trial exe on other pc then what purpose ?????????? of doing this. dont know if i made mistake ,

 

anyway anyone has tried my jitfreezer/suspend process that i posted ?

THREADENTRY32 te{}; auto Hd = CreateToolhelp32Snapshot(TH32CS_SNAPTHREAD, 19796); te.dwSize = sizeof(te); for(;;) { if(te.th32OwnerProcessID == 19796) break; Thread32Next(Hd, te); } Hd = OpenThread(PROCESS_ALL_ACCESS, FALSE, te.th32ThreadID); SuspendThread(Hd);

i do not know why need it for this this trial dng,

i also dump exe over trial message the result

if i dump jit over the trial message i see the result is => i just get dump that message only its in <module> rest all is encrypted what ever