About this tutorial:
Tutorial:Cracking Snowman32 2.43-A contribution to kids!
Target:Snowman32 2.43(http://www.abc-ware.de/)
Author:ManKind
Tools:SoftIce 3.24(this is a good software, worth buying)
Date:26th of December 1999
Descriptions&Comments:This is a good spelling program like hangman designed specially for kids! You notice the title of this tutorial, aren't you? This program is designed for KIDS(do KIDS have money?), and since KIDS won't have money to buy this little shareware, its my job to contribute to the KIDS. By the way, who set the rule that to learn spelling, KIDS have to pay?
Copyright information:This tutorial is copyright © 1999 ManKind

Starting words:
Hello,welcome to my tutorial. I am ManKind, a newbie in cracking who want to share my cracking skills with other newbies. Contact me at mankind001@bigfoot.com


The process:
To follow this tutorial, your SoftIce MUST be well configured(mail me for help). This is another VB program, I am starting to love VB programs. Start the program, a nag comes out, hell, how can mentally weak KIDS ever stand this? We will fix that by registering. Press the Register button, a new window comes out, fill in the text fields like I do below:

Name:ManKind
City:Immortal Descendants
Code:23199981

Go into SoftIce, put a bpx on msvbvm60!__vbastrcopy(two underscore) so that SoftIce will break whenever the msvbvm60!.dll(this is VB6 programs, VB6 programs WILL use this dll file) calls the __vbastrcopy(copying strings) function like below:

bpx msvbvm60!__vbastrcopy

Press the OK button, SoftIce will pop up, at this point it is copying our name, so press F5 3 times to bypass the copying of both the entered City and Code, press F11 once to return to the caller(at this point the copying of the name, city and code are completed) and you will land on the following code of snowm32(the name of the .exe, you can know this by looking at the bottom of the code window):

:00485F14 MOV DWORD PTR [EBP-04], 00000009

Now do the following command to view your correct code in the data window:

d eax

Not that your real registration code will be as clear as crystal when you do the above command, you must be clever enough to know which one is the correct code. After doing d eax, I saw the following(of course, partly) in the data window:

..3.1.9.9.8.1...
.....333333$....
....9.F.1.0.A.B.

As stupid as I am, I know that 9.F.1.0.A.B(this is in wide char format) my real registration code, but, we have to convert it back to multibyte char. Not much problem here, just ignore all the .(dots) and you will get your correct registration code(9F10AB). Disable the breakpoint on msvbvm60!__vbastrcopy by doing the following command:

bc*
OR
bd*

You will be presented with a messagebox informing you a invalid code is entered. Never mind, let it go into the main window, click Help->About and you can register again. Enter all the same details except the code, click OK, nothing happen, no messagebox and the shareware notice in the main window is gone. We have succesfully cracked this program! Now that we have successfully cracked this little program, we have done a good deeds for KIDS. That's all for now. As usual, contact me if I make any mistake, give me your feedback, comments, suggestions and opinions about this tutorial and my way of presenting it.

Extra notes:
Well, the year 1999 is coming to an end now. I am not sure whether I can access internet next year, I am not sure whether my computer will work in the year 2000, I am not sure whether I can continue cracking next year and I am also not sure whether cracking will be the same anymore next year, so, I will like to grab the time available now to produce something useful. Once I have contributed those useful things, I will never regret at all even if I can't involve myself in the scene again next year. I do hope to see you guys and gals again, anyway, let the GOD decide for us.


Ending:
Thanks to:+ORC, Sandman, HarvestR, tKC, ytc_, Punisher, Kwai_Lo, TORN@DO, Crackz, cLUSTER, LaZaRuS, mrfanatic, yes123, WhizKiD, Volatility, Acid Burn, Eternal Bliss, R!SC, MisterE, Shadow, tCM and other crackers and individuals who provide me with their tutorials and tools.

Greetz to:HarvestR, tKC, ytc_, Kwai_Lo, Punisher, TORN@Do, cLUSTER, LaZaRuS, mrfanatic, Shadow, Eternal Bliss, R!SC, yes123, MisterE, WhizKiD, Volatility, Acid Burn, DSi, other cracking groups and all crackers.

Service for ManKind
ManKind
mankind001@bigfoot.com