The Crack:
Try entering your name and any number
to see what happens. You get a warning telling you to enter the number
correctly. VB5 programs don't use the standard getdlgitemtexta functions
etc. So for this one we have breakpoint on 'hmemcpy' (eg bpx hmemcpy)
this will trap the function of copying the data we have entered before
a calculation is made on it. Load the custom98.exe into the loader32 and
run it. OK, now your name and any old reg number. STOP THERE, press CTRL-D
to get into softice, type bpx hmemcpy to set the breakpoint, CTRL-D to
get back out.
Now click on register and you will be flung back into softice. Notice
the location on the lower line of the screen, it says 'user'. We want
to be in 'custom98' so press F12 until you get there (should be about
16 times)
Now you're back into the main program at 4B3876, correct?, now press F8
until you get to 4B38AF and stop there. Move the cursor up to this line
and press F9 to set a breakpoint there. If you look at all the registers
to see where they are pointing you will see the EAX points to the real
reg code. Type d eax to see the real code. It will have spaces in between
each digit (that's how VB program store text data). Now write down this
very long number, clear the 'hmemcpy' breakpoint by typing bc 0, press
CTRL-D to get out and you will have the error message again. Enter the
regcode you wrote down and click on register again. You should be stopped
at 43B8AF, do CTRL-D to continue. You should be looking at a thank you
message. If not then you haven't written the code down correctly. You
can also get other regcodes for other names by simply entering the name
and doing 'd eax' when you stop at 4B38AF.
Hope you learned something...........
|