WHY PATCHING WHILE SERIAL NUMBER IS FISHY


AdWizard Version 1.1
A Cracking Tutorial
by ASTAGA [D4C/C4A]


DISCLAIMER

This reading material is not intended to violate Copyrights
and/or it is law, but educational purposes only. I hold no
responsibility ( by all means and in any shape whatsoever )
of the mis-used of this material.


ABOUT THE PROGRAM

AdWizard has been designed to help you manage a large number of
classified advertisement sites and remind you when you should
re-enter your ad. You can sort your entries into groups, and
even use the Type  function to automatically enter your informa
tion and your ad.




WHERE TO DOWNLOAD


Author   	: Paul P.M. Beuger
Homepage 	: http://www.wavget.com
URL		: http://www.wavget.com/adwizard32.exe
Size 		: 754 KB  as of October 30,2000


HOW TO GET VALID SERIAL NUMBER by using SoftIce



1.  Run ADWIZARD.EXE, right click mouse button at the URL link, in the
    registration dialog box type these below informations :

	Name	: Pirates Order
	Code   : 73881050

    Do not click OK button yet


2.  Fire up SoftIce by pressing [ CTRL + D ], set a breakpoint as follow :


	BPX hmemcpy     [enter]   and
   	F5  to return to the main program

3.  Now it's time to click OK button... you'll return back into SoftIce!
    In within SoftIce press F11, F5, F11, then F12 11 times until you
    see and break at :

	__________________________________________________________________

	015F:0044ECE8  8BC3                MOV       EAX,EBX
	015F:0044ECEA  E845EAFDFF          CALL      0042D734   <=== here
	015F:0044ECEF  8B55D8              MOV       EDX,[EBP-28]
	015F:0044ECF2  8B45F8              MOV       EAX,[EBP-08]
	015F:0044ECF5  E8D64DFBFF          CALL      00403AD0
	015F:0044ECFA  C645F701            MOV       BYTE PTR [EBP-09],01
	.........
	.........
	____________________ ADWIZARD!CODE+0004DCE8 ______________________

	Disable / clear previous breakpoint and create the new one :

	bd*  [enter]
	BPX 015F:0044ECEA  [enter]

	Press F10 then display EDX register :

	d edx  [enter]  ==> 	your fake S/N appear in the Data Window
				at virtual address 0167:0110F048 .

      In the Command Line type :

	BPM 0167:0110F048  [enter]
	Press X or F5 to let SoftIce break in this new location


4.  If nothing goes wrong you'll break again in SoftIce and see
    these below snippet codes :

	EAX=00000006   EBX=38383337   ECX=48464555   ESI=011121F8
	EDI=0110F048   EBP=006BFC08   ESP=006BFBCC   EIP=00403E35
	CS=015F   DS=0167   SS=0167   ES=0167   FS=2627   GS=0000
	__________________________________________________________________

	015F:00403E33  	8B1F		MOV	EBX,[EDI]
	015F:00403E35  	39D9		CMP	ECX,EBX <=== break here
	015F:00403E37  	7558		JNZ	00403E91
	015F:00403E39  	4A  		DEC	EDX
	015F:00403E3A  	7415 		JZ 	00403E51
	______________________  ADWIZARD!CODE+2E33 _______________________

	Break due to BPMB #0167:0110F048 RW DR3

	? ecx  [enter]
	48464555  1212564821  "HFEU"  ==> part of S/N in reverse order
	? ebx  [enter]
	38383337  0943207223  "8837"  ==> part of fake code
	d edi  [enter]   ===> your fake appear at 0167:0110F048
	d esi  [enter]   did you see UEFHVFVGXJUNJB   at virtual
			   address 0167:011121F8 ?


5.  Disable all breakpoints by typing

	BD *   [enter]
	Press F5 or X to return to the main program


8.  Repeat registration procedure and keyed-in UEFHVFVGXJUNJB as your S/N
    Click OK/REGISTER button .....
    Simply, YOU'RE REGISTERED now... as a matter of fact it's     ILLEGAL     REGISTRATION!!!!!




END NOTES

   This program is sold as shareware, so you can try before you buy.
   This is convenient for you, saves expenses by dispensing with all
   that packaging, and cuts out the middle person.  So it is cheap,
   but it is not free.
   If you like the program, and you will, be sure to register and pay.
   To keep shareware prices low,  users must do the right thing:
   Register, pay up, and smile/grin at yourself in the mirror.

   Do not distribute your crack release based on this tutorial, because
   you become a LAMER(s)!!!!!!!!
   ( tHATDUDE (PC97) defined LAMER(s) is the guy who sits in front of
   personal computer, using Hex Editor, ripping off other group(s)
   crack release, repacking (distro) them under his name.
   Adopted from newsgroup alt.cracks, alt.crackers - February 1997 )

    More about LAMER(s):
	lamer /n./ [prob. originated in skateboarder slang]
	Synonym for luser, not used much by hackers but common among warez
	d00dz, crackers, and phreakers. Oppose elite. Has the same connota
	tions of self-conscious elitism that use of luser does among
	hackers.
    < SOURCE: http://sagan.earthspace.net/jargon/jargon_27.html >


 _ Never attribute to malice that which is adequately explained by stupidity _


ASTAGA [D4C/C4A] tute-adwizard11.zip
[EOF] 10/31/00 5:18:12 AM