this is about expired date... only 14 day, so i wanna change
mov eax, dword ptr epb[-0C] with something fix see address 1006397E.

can anyone tell me ??
so when eax compare with 00000001 the program will jump

i don't wanna change the other .. becouse that procedure call many time....

1005D60A E84D630000 call 1006395C
1005D60F 83F801 cmp eax, 00000001
1005D612 8945EC mov dword ptr [ebp-14], eax
1005D615 7D0F jge 1005D626 <<-- good jump
.
. << bad statment here>>>
.

-------------------------------------------------------------

1006395C 55 push ebp
.
.
.
1006397E 8B55F8 mov edx, dword ptr [ebp-08] <- here
1006397B 8B45F4 mov eax, dword ptr [ebp-0C] <- and here
10063981 C9 leave
10063982 C3 ret


Thank's for help...

So, what is the actual question, which opcodes to use?

How about:

xor eax, eax
inc eax

or

mov eax, 1

or only

inc eax
(i.e. if eax == 0 before that position in the code, else just nop the original mov)

Thank's .. it work..i change with Heiw 33C0 and 40
the nag always show "1 day more will expired"...even i change the current date..

but the new problem come.. the program show error message, the idtell.dll not loaded and program stop...

maybe idtell.dll do some check like this
if not expared date then
load.
else
not load
end.

i already try using win32dasm and softice, i do some bpx but failed, coz that statment too far before showing error message.
the question is :
1. can anyone tell how i reach that statment ???.
2. what the name of other debugger-program,so i can do live-debug and save the trace log. .. or can sofice do save the trace log, if can how i do that ???

Thank's and sorry about my english is bad..

hmm....why not searching for the check BEFORE your day-trial-check?

sometimes apps look like this:

if not registered
- { if no_days_left
---- { expired! show nag! close! }
- else
---- { show nag! run in demo mode}
- }
else
{run full!}

this may be a better approach? is there a serial check, a keyfile check..?

regards

i think not like that... coz i see this statment


procedure ShowNag
call time and get result in eax
if eax >= 1
string1 = xx + "day's more will expired"
else
string1 = "already expired"
endif

show then nag with string1...

return.

-------- and maybe up before that statment, have this statment
check the expired date
if the expride date > 1
load the dll
else
do not load dll
endif

call ShowNag procedure << see
runnig normal

(but if the dll not load, i will get that error message, coz the program searching the dll and not loaded.)

i don't know this is key check, or register check, i can use and read the result of Regmon and filemon.. can anyone teach me or where can i get tutorial for regmon and filemon ???..
but this is not serial number check..., but this dll is component for VB6, i already try wiht smartcheck but only give me my self program (project1.exe)..


thank's

>> if the expride date > 1

so maybe you need
MOV EAX, 2