Monthly Archives: May 2014

Case of the Full Screen App Hidden by The Taskbar

I’d been called in to assist support a 3rd party software vendor debug their own software, as several issues had been opened for weeks without hope of resolution. One issue was that when program was running on Windows 7 the … Continue reading

Posted in Debugging, Patching, WinDbg, Windows 7 | Tagged | Leave a comment

Case of the Invalid Base Key Error

Continuing my series on .NET patching – refer to https://chentiangemalc.wordpress.com/2014/05/19/case-of-the-net-service-hang-patching-webclient-operation-timed-out/ for the previous articles more of an overview of using some of the tools described. A “front end” application that was used to launch another application was failing to launch … Continue reading

Posted in .NET, 64-bit, Application Compatibility, Debugging, Hacking, Patching, Reflexil, WinDbg, Windows 7 | 2 Comments

Case of the .NET Service Hang – Patching WebClient Operation Timed Out

Continuing my series on .NET patching. The first two cases: https://chentiangemalc.wordpress.com/2014/03/20/case-of-the-unknown-error-app-crash-debugging-patching-someone-elses-net-race-condition/ https://chentiangemalc.wordpress.com/2014/05/09/injecting-debug-tracing-in-a-net-exe/ The article will assume knowledge of .NET Reflector and Reflexil, both covered in previous articles, along with knowledge of creating Visual Studio class library project. In this case … Continue reading

Posted in .NET, Patching, WinDbg | Tagged | Leave a comment

Case of the Office Hang on Launch

After a file server migration all Microsoft Office products started to hang on launch for over a minute. It was immediately observed that uninstalling Office File Validation fixed the launch, however it had been installed for over a year and … Continue reading

Posted in Debugging, Office, PacDbg, WinDbg | Tagged , , , | Leave a comment

Injecting Debug Tracing in a .NET EXE

Previously with .NET Reflector (http://www.red-gate.com/products/dotnet-development/reflector/guest-post) and Reflexil (http://reflexil.net/) we patched a .NET race condition https://chentiangemalc.wordpress.com/2014/03/20/case-of-the-unknown-error-app-crash-debugging-patching-someone-elses-net-race-condition/ This time I’d come across another app that only broke when a debugger was NOT attached. Using dmp files and analysis with WinDbg I had … Continue reading

Posted in .NET, Patching, Reflexil, Reverse Engineering | Tagged | Leave a comment