Web
: http://kickme.to/mxbnet
Contact Me : dheeraj_xp@yahoo.com
Main | Index
Planet
Split 3.04
Type : Split util
Protection : Serial
Tech : Serial fishing
Crack : Here the name is derived from serial and name we entered.
It is compared with the name we entered .
Enter fake values and in SICE BPX HMEMCPY
MAIN CALL
0x4630A2 MOV EAX,[EBP-1C]
0x4630A5 POP EDX
0x4630A6 POP ECX
0x4630A7 CALL 462454
0x4630AC TEST AL,AL
0x4630AE JZ 46315B >> BAD BOY
INSIDE THIS CALL ...
0x462563 MOV EAX,[EBP-18] >> REAL NAME DERIVED FROM WHAT WE ENTERED
0x462566 MOV EDX,[EBP-14] >> OUR NAME
0x462569 CALL 403CA4
0x46256E JZ 46257D >> GOOD BOY
0x462570 XOR EAX,EAX
If we increase the length of our name it will become complex.So we will see
if it works for single char :)
Registration INfo :
Name = 1
Company = [Leave this blank]
Reg Key = 5
|
FSET = 0x336BFA
0x736BFC PUSH ESI | 56
0x736BFD NOP | 90
0x736BFE NOP | 90
Animation Shop 3.02 :
In SICE BPX CREATEFONTA
... after 2 pop ups we will reach main
check :)
0x5437AC CALL EBP | FF D5
0x5437AE ADD ESP,04 | 83 C4 04
0x5437B1 CMP ESI,EAX >> EAX = 0x1E = 30 DAYS | 3B F0
0x5437B3 PUSH ESI >> ESI = COUNT | 56
0x5437B4 JGE 0x5437C2 >> BAD BOY | 7D 0C
Crack : Clear count :)
0x5437B1 XOR ESI,ESI | 33 F6 OFFSET = 0x1437B1
0x5437B3 PUSH ESI | 56
0x5437B4 NOP | 90
0x5437B5 NOP | 90
Psp 7.02
Crack Update:
Above crack only
solved part of it ....after 60 days a nag box appeared ....which
can be cracked like ....
In SICE BPX GetSystemTime
and start PsP ....when we break trace ....
0x6A59F7 PUSH 96D6D8
---> "60" --- 60 DAYS !!!
0x6A59FC CALL EBP
0x6A59FE ADD ESP,04
0x6A5A01 CMP EDI,EAX =>3C --"60" ; EDI = NO: DAYS USED
0x6A5A03 JLE 6A5A67 = 7E 62 --> GOOD BOY OFFSET = 2A5A03
...........................................
NOW BPMB 96D6D8 X --- CONTINUE
...........................................
0x6A5F38 PUSH 96D6D8
0x6A5F3D CALL [872AF8]
0x6A5F43 ADD ESP,04
0x6A5F46 CMP EDI,EAX
0x6A5F48 JLE 6A5F6D = 7E 23 --> GOOD BOY OFFSET = 2A5F48
So all you want
to do is to convert :
JLE ---> JMP i.e 74 ===> EB
Anim Shop
3.02 Crack Update:
Above crack only
solved part of it ....after 60 days a nag box appeared ....which
can be cracked like ....
In SICE BPX GetSystemTime
and start PsP ....when we break trace ....
0x40A69D PUSH 5F5A78
---> "60" --- 60 DAYS !!!
0x40A6A2 CALL [005B42A8]
0x40A6A8 ADD ESP,04
0x40A6AB CMP EDI,EAX =>3C --"60" ; EDI = NO: DAYS USED
0x40A6AD JLE 40A70A = 7E 5B --> GOOD BOY OFFSET = A6AD
...........................................
NOW BPMB 5F5A78 RW --- CONTINUE
...........................................
0x40A942 PUSH 5F5A78
0x40A947 CALL [005B42A8]
0x40A94D ADD ESP,04
0x40A950 CMP EDI,EAX
0x40A952 JLE 40A973 = 7E 1F --> GOOD BOY OFFSET = A952
So all you want
to do is to convert :
JLE ---> JMP i.e 74 ===> EB
Suppose we just try to redirect this check to an original and virgin