Digging Jim V1.00
http://www.persei.dk/
Single serialnumber

Problem: What is that cdq, idiv thing?
use: bpx hmemcpy


* Possible Reference to Dialog: DialogID_0065, CONTROL_ID:03E8, ""
                                  |
:00401101 68E8030000              push 000003E8
:00401106 56                      push esi
:00401107 FFD7                    call edi
:00401109 8BC8                    mov ecx, eax  <-- ecx=my incode
:0040110B BB05030000              mov ebx, 00000305   <-- ebx=0x0305
:00401110 41                      inc ecx    <-- My In_code+1
:00401111 8BC1                    mov eax, ecx
:00401113 99                      cdq
:00401114 F7FB                    idiv ebx   <-- some numbers are stored in eax and edx...
:00401116 85D2                    test edx, edx  <-- edx=edx  goto good.
:00401118 7505                    jne 0040111F  <-- if not goto Bad.
:0040111A 80F9BD                  cmp cl, BD   <-- what?.. BDh=189d
:0040111D 7422                    je 00401141  <-- goto GOOD.

* Referenced by a (U)nconditional or (C)onditional Jump at Address:
|:00401118(C)
|
:0040111F 6A00                    push 00000000    <-- BAD!..

* Possible StringData Ref from Data Obj ->"Failure"
                                  |
:00401121 6844534000              push 00405344

* Possible StringData Ref from Data Obj ->"Invalid registration code! Please "
                                        ->"check the code or press Get Code "
                                        ->"if you havn't registered and got "
                                        ->"a valid code yet."
                                  |
:00401126 68CC524000              push 004052CC
:0040112B 56                      push esi

* Reference To: USER32.MessageBoxA, Ord:0195h
                                  |
:0040112C FF15B8814000            Call dword ptr [004081B8]
:00401132 33C0                    xor eax, eax
:00401134 5F                      pop edi
:00401135 5E                      pop esi
:00401136 5D                      pop ebp
:00401137 5B                      pop ebx
:00401138 81C410020000            add esp, 00000210
:0040113E C21000                  ret 0010



* Referenced by a (U)nconditional or (C)onditional Jump at Address:
|:0040111D(C)
|

* Reference To: USER32.MessageBoxA, Ord:0195h
                                  |
:00401141 8B2DB8814000            mov ebp, dword ptr [004081B8]   <-- GOOD!
:00401147 6A04                    push 00000004

* Possible StringData Ref from Data Obj ->"Valid code"
                                  |
:00401149 68C0524000              push 004052C0

* Possible StringData Ref from Data Obj ->"This code is valid! If you have "
                                        ->"aquired this code by illegal means "
                                        ->"and press the YES button you could "
                                        ->"be subject to criminal lawsuit. "
                                        ->"If the code is not provided directly "
                                        ->"by Persei Entertainment or Kagi "
                                        ->"it is NOT legal! Do you want to "
                                        ->"continue?"
                                  |
:0040114E 68C8514000              push 004051C8
:00401153 56                      push esi
:00401154 FFD5                    call ebp
:00401156 83F806                  cmp eax, 00000006
:00401159 0F855A020000            jne 004013B9
:0040115F 8D4C241C                lea ecx, dword ptr [esp+1C]
:00401163 6A00                    push 00000000
:00401165 51                      push ecxlicense, that will unlock the crippled features.