------------ HOW TO FIND REAL SERIAL NUMBER BY USING SOFTICE --------------- Program : HappyIcon 2.53 File Size : 922KB Web-site : http://www.logipole.com/indexe.html Cracked By : Ex3cutor Email : Ex3cutor@hotmail.com About the program : HappyIcon creates icons and/or cursors with your photos, your graphic files PCD, JPEG, GIF, BMP, PSD...) or your scannered documents. You can include several icon formats inside the same icon, with 2 to 16 millions colours. After the conversion make your icons explode or implode, swirl them, change colors, apply filters... ******************** START SEARCHING FOR THE REAL LICENCE KEY ***************************** 1) Start HappyIcon 2.53 Go to 'Help' --> 'Register' to show the registration box. Key in as follows : Name : First Name : Ex3cutor Key : 1234567890 2) Press 'OK' .... An error message will appear to say that your key is INVALID ! This is expected as our key is FAKE ! What we do now is to remember the error message : "Invalid Key Please enter your name and key as they have been delivered to you" 3) Now, disassemble the program and do a dead listing by W32Dasm ... Go to 'Refs' -> 'String Data References' and search for our error message "Invalid Key" It will lead you to the following codes : * Possible StringData Ref from Data Obj ->"Invalid key" | :00414F81 68CC684200 push 004268CC :00414F86 55 push ebp 4) Trace the codes a bit backward, and stop at * Referenced by a (U)nconditional or (C)onditional Jump at Address: |:00414F3B(C) | :00414F5C 8D9424BC000000 lea edx, dword ptr [esp+000000BC] :00414F63 52 push edx :00414F64 E893240000 call 004173FC :00414F69 8B4C2414 mov ecx, dword ptr [esp+14] :00414F6D 83C404 add esp, 00000004 :00414F70 81F1F0BD6824 xor ecx, 2468BDF0 :00414F76 3BC1 cmp eax, ecx :00414F78 742E je 00414FA8 :00414F7A 6A10 push 00000010 * Possible StringData Ref from Data Obj ->"Register" | :00414F7C 6874694200 push 00426974 * Possible StringData Ref from Data Obj ->"Invalid key" | :00414F81 68CC684200 push 004268CC :00414F86 55 push ebp See the code at 00414F76 ? It is a comparison !!! (cmp eax, ecx) This is a good place where we start ! We can assume this is where the FAKE key and the REAL key are compared ! If they are equal, it will jump directly to the code 00414FA8. Otherwise, just print out the error message ! So, remember this code address : 00414F5C 5) Ok ! Let's start to fnd the REAL key by SOftIce now ! Repeat step (1) However, do NOT press 'OK' this time ! Fire up SoftIce by pressing "Ctrl D" and set a breakpoint as follow : bpx getdlgitemtexta [Enter] then press F5 to return back to the program 6) Now, click "OK" to go back to SoftIce. Type bc * [Enter] to clear our breakpoint Then, press F12 ONCE to reach to the following codes : :00414DE1 85C0 test eax, eax :00414DE3 7538 jne 00414E1D :00414DE5 6A10 push 00000010 If nothing goes wrong, you'll be stopped at :00414DE1 85C0 test eax, eax 7) Set another break point by typing bpx 00414F5C [Enter] Press F5 ONCE ! If nothing goes wrong, you'll stop at the following codes : :00414F5C 8D9424BC000000 lea edx, dword ptr [esp+000000BC] :00414F63 52 push edx :00414F64 E893240000 call 004173FC :00414F69 8B4C2414 mov ecx, dword ptr [esp+14] :00414F6D 83C404 add esp, 00000004 :00414F70 81F1F0BD6824 xor ecx, 2468BDF0 :00414F76 3BC1 cmp eax, ecx :00414F78 742E je 00414FA8 :00414F7A 6A10 push 00000010 8) Press F10 once to reach :00414F63 52 push edx Type d edx [Enter] What did you see ?? it's our FAKE key ! (which is 1234567890 at this case) 9) Press F10 2 more times to reach :00414F69 8B4C2414 mov ecx, dword ptr [esp+14] Type ? eax [Enter] What did you see this time ??? It's our FAKE key again ! 10) Press F10 another 3 times to reach :00414F76 3BC1 cmp eax, ecx This is where our FAKE key is compared with the REAL one! In order to retrieve the REAL key, what we need to do is just to type ? eax [Enter] HeHeHe .... Here we go - the REAL key ! (which is 3684123209) 11) Exit SoftIce and register again with the REAL key ! Go to 'Help' -> 'About HappyIcon' Wow ! This software is now registered !!! Enjoy :) ******************************** END ***************************************