þ¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿þ 00000 00000000 0000 0000 377O 00000 J77t 30000000 O7J t7W 000Q 0000 H0000 d00000000 00000 00000000 0000; 0000000000 000 J000 0000 0003 0000 00000 W0000 0000 0000 W0000 00000 000W000 0000 ,0 0000O 0000 c0000 0000000d 0000 0000 c000000 0ZZ 0000 000000 00000 0000000000 0000000 0000 0000U 200000 0000000000 W00000 0000Q 0000 00000 0000 0000 U0000 00000 0000 W 0000 00000 0000d 0000 :0000 00000 0000Q 0000; 00000 0000t 000; 0000St0 0000 3000 00000 0d 0000 0000 t0000 0000Q 0000 000000000 00000000 00000000, 00000000 S000000000 00000 c0000 00000 HZZH 00ZZZZ0 HZWZ 00ZZZZZH 0000 QQ, :0QW0 U0000000000 t077H H0000U Cracking Tutorial #15: CrAcKiNG Applet Headline Factory Version 4.0 [cracked bY:] sLeEpY¿[FWA/NWA/FTPR8Z] iN 03/2002 [difficulty:] beginner [where:] http://www.coffeecup.com þ¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿þ [TOOLZ:] w32dasm 8.93 & HIEW 5 or 6 or whatever. ÝàáâãäåàáâãäåàáâãäåàáâãäåàáâãäåàáâãäåàáâãäåàáâãäåàáâãäåàáâãäåàáâãäåàáâãäåàáâãäåàáâãäåàÝ Applet Headline Factory Version 4.0 I downloaded this from coffeecup.com and it looks like it is supposed to be unregged no matter what, the installation screen even says unregistered version and the only place to register is online. Make 3 copies of Applet Headline Factory.exe (exe, w32, bak) Disassemble Applet Headline Factory.w32... When I downloaded this program I could not find any possible way to register it, no place to enter a name or regcode. But there was a place to go online and get a regged copy, so I figured what the hell, lets disassemble it anyway and check it out. The first thing I noticed was the title bar so lets check it out: We look for "Applet Headline Factory-UNREGISTERED" in the SDR in w32dasm and it drops us at :004A112A ---------------------------------------- * Possible StringData Ref from Code Obj ->"true" | :004A10F9 BA9C124A00 mov edx, 004A129C :004A10FE E8A92EF6FF call 00403FAC :004A1103 750A jne 004A110F <-jmp if not registered :004A1105 A1C8384A00 mov eax, dword ptr [004A38C8] :004A110A C60001 mov byte ptr [eax], 01 :004A110D EB39 jmp 004A1148 <-if registered continue on to 004A1148 * Referenced by a (U)nconditional or (C)onditional Jump at Address: |:004A1103(C) | :004A110F A1983B4A00 mov eax, dword ptr [004A3B98] :004A1114 8B00 mov eax, dword ptr [eax] :004A1116 8B8048030000 mov eax, dword ptr [eax+00000348] :004A111C B201 mov dl, 01 :004A111E E8ED05F9FF call 00431710 :004A1123 A1983B4A00 mov eax, dword ptr [004A3B98] :004A1128 8B00 mov eax, dword ptr [eax] * Possible StringData Ref from Code Obj ->"Applet Headline Factory- UNREGISTERED" | :004A112A BAAC124A00 mov edx, 004A12AC <-WE START HERE!!!!!!!!!!!!!!!!!!!!!! ---------------------------------------- So is this really going to be that easy? We scroll up a little bit and see two jumps above and one goes to our craphole unregged and the other? This program isnt supposed to be able to be registered, but hell lets try it. ---------------------------------------- find this: :004A1103 750A jne 004A110F (offset in HIEW is: A0503) change to: :004A1103 9090 nop nop ---------------------------------------- Start the program and everything is working without nags or any registration buttons! Looks like this one is cracked. I don't know if its perfect because I havn't had a chance to learn the program and upload an applet yet, the only way to find out is to upload an applet. LATERZ ¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿ email me if you are bored: sleepy@linuxwaves.com ._Tutorialz_. [--------------------------------------------------------------------] [ 1. Cracking Cosmi's Generic Installshield Protection ] [ 2. CRACKING(?) MATH WORKSHOP 2.0 ] [ 3. CrAcKiNG DLSuperCBT Resynchronizing Byte Compare Program ] [ 4. CrAcKiNG the nag on DLSuperCBF - Dir Binary File Compare Program] [ 5. CrAcKiNG n)0(va crackme v3 (crazy approach) ] [ 6. CrAcKiNG mIRC(R) v5.91 Internet Relay Chat Client ] [ 7. CrAcKiNG Actionizer 1.4 ] [ 8. CrAcKiNG Tag Wizard 4.3.0 ] [ 9. CrAcKiNG Freecell for Win2k and WinXP ] [10. CrAcKiNG Netrace 1.0a ] [11. CrAcKiNG Winrar 3 Beta 2 THROUGHLY ] [12. CrAcKiNG Aditor Pro 3.05 build 1 ] [13. CrAcKiNG EasyType 1.0 ] [14. CrAcKiNG The Psychedelic Screen Saver v2002.0215 ] [15. CrAcKiNG Applet Headline Factory Version 4.0 ] ¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿ gReEtz: MiNioN, GreycZ, KlutCh, KiNgEr, MidNight, FWA, NWA, FTPiRatEz! HAR! BEASTFXP! ¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿ CopyLeft: __ ______ __ __ _ _____/ / ___ / ____/__\ \/ /(_) / ___/ / / _ \/ __/ / __ \ // / (__ ) /__/ __/ /___/ /_/ / / _/_ /____/_____|___/_____/ .___/_/\___/ /_/ [all rights reversed] Boredom causes crackers and babies. ¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿