How to find the real serial 

Protector Plus 2000  version7.0A11

a Cracking tutorial By Nemesis] TNT

DISCLAIMER

This reading material is not intended to violate Copyrights
and/or it is law, but educational purposes only. I hold no
responsibility ( by all means and in any shape whatsoever )
of the mis-used of this material.

About The Program

Anti-virus Software for Windows 95/98

WHERE TO DOWNLOAD

Homepage :http://www.protectorplus.com
Size : 2.05mb

Tool: numega Softice 4.5 [can be download at http://www.nemesis.2itb.com

HOW TO GET VALID SERIAL NUMBER for your name By Using [Softice]

lets get started run  Protector Plus 2000 now enter your name and  fake serial click register button message box say Invaild Key ! Blah Blah heheh ok now do this ctrl D bring softice , now we should put breakpoint like this bpx hmemcpy and enter press F5 to get out off softice, type your fake serial in the edit click register now you are back in softice, now lets search for real serial ;-) ok press F5 1 time F12 9 times until we land at this address below, now press F10 to go down .

* Reference To: USER32.GetDlgItemTextA, Ord:0104h

|

:00496ABA FF1588244B00 Call dword ptr [004B2488]

:00496AC0 EB10 jmp 00496AD2 <--- we land here this jump take you here 00496AD2

* Referenced by a (U)nconditional or (C)onditional Jump at Address:

|:00496AAC(C)

:00496AC2 FF7510 push [ebp+10]

:00496AC5 8B10 mov edx, dword ptr [eax]

:00496AC7 8BC8 mov ecx, eax

:00496AC9 FF750C push [ebp+0C]

:00496ACC FF7508 push [ebp+08]

:00496ACF FF5278 call [edx+78]

<--- this take you back to this address 00456CA7

:00456CA7 8D94249C000000 lea edx, dword ptr [esp+0000009C]

:00456CAE 8D442410 lea eax, dword ptr [esp+10]

:00456CB2 52 push edx

:00456CB3 8D4C2458 lea ecx, dword ptr [esp+58]

:00456CB7 50 push eax

:00456CB8 51 push ecx

:00456CB9 E8D2430200 call 0047B090

:00456CBE 83C40C add esp, 0000000C

:00456CC1 85C0 test eax, eax

:00456CC3 0F8459010000 je 00456E22

from here scroll down until you see the address below.

* Referenced by a (U)nconditional or (C)onditional Jump at Address:

|:00496AC0(U)

:00496AD2 5D pop ebp <------type d edx for real serial

:00496AD3 C20C00 ret 000C 


now remember the serial you have fond enter it and is registered !

easy or ??? the program is registered  ;-) hope you find it useful ?

END NOTES


Special Thanks go to All [TNT MEMBERS] Keep it Real guys.

 

Nemesis]