SERIAL NUMBER IS FISHY - DECLINE YOUR PATCH'ITCH'ING


QTam Bitmap to Icon v3.1
A Cracking Tutorial 
by ASTAGA [WTF/TTM]


DISCLAIMER 

This reading material is not intended to violate Copyrights 
and/or it is law, but educational purposes only. I hold no 
responsibility ( by all means and in any shape whatsoever ) 
of the mis-used of this material.
Read END NOTES section at the end of this file.



ABOUT THE PROGRAM 


 

QTam Bitmap to Icon is a small utility can convert picture in 
BMP, GIF or JPG format or picture in clipboard to icon file. 
Then you can use your icon to decorate program shortcuts or 
maybe program folder or you may use your icon as your 
homepage's logo. 


Features :

o  Wizard liked interface 
o  No limitation of picture resolution support 
o  Input can be BMP, GIF, JPG or picture in clipboard 
o  New output size 16x16 pixels 
o  Multiple file conversion allowed 
o  Able to auto-scale and auto-mask picture 
o  Install/Uninstall 
o  Black spot problem fixed
o  Auto-mask for multiple file converion is now optional
o  New "About" button - no difficulties as like in v3.0




WHERE TO DOWNLOAD


Author   	: Panya Thanyaprasertkul
Copyright	: QTam Computer
Homepage 	: http://www.qtam-computer.com/bmp2ico31.html
URL		: http://www.qtam-computer.com/download/bmp2ico31.zip
Size 		: 587  KB  as of 1/31/01
Rel Date	: Jan 07, 2001 




HOW TO GET VALID SERIAL NUMBER by using SoftIce



1.  Run BMP2ICO.EXE, in the registration dialog box type these 
    below informations :

	Name	 : Pirates Order
	Code    : 73881050

    Do not click OK button yet
    

2.  Load SoftIce by pressing [ CTRL + D ], set a breakpoint as 
    follow :
    

	BPX hmemcpy     [enter]   and
   	F5  to return to the main program


3.  Now, click OK button... you'll return back into SoftIce!
    In within SoftIce press F11, F5, F11, then F12 11 times 
    until you see and break at :

	_______________________________________________________________

	015F:0045DE3A  E8C1E9FBFF      CALL 0041C800 <== break here
	015F:0045DE3F  8D4DF4          LEA  ECX,[EBP-0C]
	015F:0045DE42  BAC0DF4500      MOV  EDX,0045DFC0
	015F:0045DE47  8B45FC          MOV  EAX,[EBP-04]
	015F:0045DE4A  E8BDE7FFFF      CALL 0045C60C ==> d eax
	015F:0045DE4F  8B45F4          MOV  EAX,[EBP-0C]
	015F:0045DE52  8B55F8          MOV  EDX,[EBP-08] ==> d eax
	015F:0045DE55  E8725DFAFF      CALL 00403BCC
	015F:0045DE5A  7426            JZ   0045DE82
	____________________ BMP2ICO!CODE+0005CE3A ____________________

	Break due to BPX #015F:0045DE3A

	: bd *  [enter] ==> HMEMCPY no longer needed
	: BPX #015F:0045DE3A  [enter]

	Press F10 3 times - stop at 015F:0045DE4A - dump EAX register

	: d eax  [enter]  	your name appear at virtual address 
				0167:00BFAF9C

	Press F10 once - stop at 015F:0045DE4F - did you feel screen 
	splashed and something intereseting is copied between 0167:
	00BFAF9C and 0167:00BFAFAC ??  It's 986213DQS ,  write down 
	this potential reg code.

	Press F10 2 times - stop at 015F:0045DE52 - dump EAX register

	: d eax  [enter]  	Did you see an interesting sequence number
				at 0167:00BFAFB8 ? It's 986213DQS ,  write
				down this potential reg code.

	Press F10 once - stop at 015F:0045DE55 - dump EDX register

	: d edx  [enter]  	Did you see your fake code 73881050 at
				virtual 0167:00BEA8D4


5.  Disable all breakpoints by typing 

	BD *   [enter]
	Press F5 or X to return to the main program
     


6.  Repeat registration procedure and keyed-in 986213DQS as 
    your S/N. 
    Click OK button .....  there you're registered.



7.	Where the hell is my registration code is stored ??

	The correct registration code is stored in the registry as
	follows : 
	REGEDIT4
	[HKEY_CURRENT_USER\Software\QTam\Bitmap to Icon\3]
	"RegisteredName"="Pirates Order"
	"RegisteredCode"="986213DQS"



8.  How can I practise with my own user name ?

	-  I strongly recommended you not to do this !




					E N D   N O T E S


		Distributing your serial number is illegal and is no 
			different than distributing illegal 
				copies of the registered 
				 software. Violation of
					this rule may 
					  result in 
			temporary or permanent revocation of this
			     license and cancellation of the 
			              serial number; 
				   the original licensee
			   will also be held responsible for 
			    damages, physical and estimated.


   Do not distribute your crack release based on this tutorial, because
   you become a LAMER(s)!!!!!!!!
   ( tHATDUDE (PC97) defined LAMER(s) is the guy who sits in front of
   personal computer, using Hex Editor, ripping off other group(s)
   crack release, repacking (distro) them under his name. 
   Adopted from newsgroup alt.cracks, alt.crackers - February 1997 ) 

    More about LAMER(s):
	lamer /n./ [prob. originated in skateboarder slang]
	Synonym for luser, not used much by hackers but common among warez 
	d00dz, crackers, and phreakers. Oppose elite. Has the same connota
	tions of self-conscious elitism that use of luser does among 
	hackers.
      < SOURCE: http://sagan.earthspace.net/jargon/jargon_27.html >


 		Never attribute to malice that which is adequately 
				explained by stupidity


ASTAGA [WTF/TTM/D4C/C4A] tute-QTambmp2ico31.zip
[EOF] 1/31/01 8:05:01 AM

00) * BPX KERNEL!HMEMCPY
01)   BPX #015F:0045DE3A