Posted by Peronospora on 1/16/2000, 4:13 pm
212.139.131.132
Task II.4 – the easy way. Open and run the program with NuMega Boundschecker (BC) -(see Sandman’s tutorial about cracking Boundschecker – TimeLock cracking). Enter in the registration information as normal – Unregistered, Unregistered, and any serial number – in my case “777777777”.
After the “The key does not match license owner” messagebox pops, ALT-TAB back into BC and stop running acoutica – click the stop sign icon on the toolbar.
Under the View menu select “Show all events”.
Boundschecker has three windows – remove the bottom window by dragging with your cursor. You should have two vertical windows. The second last line of the analysis flow in the left window reads:
lstrcmpA returns INT:1
The lstrcmp function compares two character strings. The comparison is case sensitive.
In the right window in the following information:
Signed char *lpString1 = 0073F5E4
Char [] = “AC200-54259”
Signed char *lpString2 = 0073F654
Char [] = “777777777”Now it doesn’t get any easier than that.
You can put a bpx lstrcmpA in Softice and fish around a bit to find the same. I’m sure someone else will post this method in detail.