Name      : GIF Movie Gear

Version   : 2.63

Editor    : GamAni

Target    : movgear.exe

s/n saved : HKEY_CURRENT_USER\Software\gamani\GIFMovieGear\2.0

Tools     : W32Dasm
            Hiew
            Brain
            
Cracker   : LW2000

Tutorial  : No.42

http://www.gamani.com


---
DISCLAIMER
For educational purposes only!
I hold no responsibility of the mis-used of this material!
---


1.      Go to the registration dialog and enter the following details

        Name: LW2000

        Registration code: 1230099


        *BOOM* 'The information you have provided is invalid.'

        Shit, wrong code, think we found a bug... ;) 
        Let's note the msg and open the bitch in W32Dasm.
        Go in the SDR to our string:


* Referenced by a (U)nconditional or (C)onditional Jump at Address:
|:0042C353(C)  <<-- here we go!
|
:0042C3FF 6A30 push 00000030

* Possible Reference to String Resource ID=40213:
 "Invalid Registration Info"
|
:0042C401 68159D0000 push 00009D15

* Possible Reference to String Resource ID=40212:
"The information you have provided is invalid. Please be sure"
|
:0042C406 68149D0000 push 00009D14
:0042C40B 56 push esi
:0042C40C E8DF00FEFF call 0040C4F0
:0042C411 83C410 add esp, 00000010


2.      Ok, go to Offset 0042C353. You should now see this:

:0042C349 E872FDFFFF call 0042C0C0  <<-- check routine
:0042C34E 83C408 add esp, 00000008
:0042C351 85C0 test eax, eax
:0042C353 0F84A6000000 je 0042C3FF  <<-- check

        So, when you take a look inside the call 0042C0C0, you will
        notice, that if the entered serial number is correct, eax=1.
        Else eax=0 and the check failed. So why not set eax=1 ever,
        not only by the correct serial numbers? ;)

3.      Ok, I think this idea is quite good. Go into the call and
        note the offset. Open hiew and  go to the offset. Now press
        F3 for edit mode and F2 to enter asm commands.
        
        Now type:
        mov eax, 1 [Enter]
        ret        [Enter]
        [Esc]

        If you done so, you will see this:      

        :0042C0C0   B801000000   mov eax,1
        :0042C0C1   C3           ret 

        Ok, save your work and try again to register.



Congratulation! You are a registered user.


FINISH! Easy, or?

cu LW2000
Any comments? Mail me LW2000@gmx.net !!!
----
tKC, thx for your tutors!
I started with tutor 1 and i still read them... they are the best!