SV trace assembly code

[)ª(SLAYER)ª(]

i did it from the begining and it still shows me the "Returns to Game and press Key F11 or * to start the Partner!" and it doesnt do anything when i press F11 or * so can you pliz tell me wat to do to fix it?

can you tell me wat is "RET routine" thx.

[anantasia]

Quote:

Originally posted by JJJJ@Jan 5 2007, 19:59
o.O I was asking for more detailed instructions on how to "crack" it

I post all require program and guide.

you must need some more skill.

Programming skill for assembly code.

Try it now!!

[anantasia]

Quote:

Originally posted by )ª(SLAYER)ª(@Jan 5 2007, 20:25
i did it from the begining and it still shows me the "Returns to Game and press Key F11 or * to start the Partner!" and it doesnt do anything when i press F11 or * so can you pliz tell me wat to do to fix it?

can you tell me wat is "RET routine" thx.

Please tell me all when u go through that CALL 41C6B4 at address 40367C. What u go and where u jump and which u by pass.

Here is example trace address u must do,

00403685 CALL 00403CF6 <- this command to call routine at address 00403CF6 and when hit command RET. It's will return to next address 40368A
0040368A mov eax,[esi+1c]
.
.
00403CF6 JMP DWORD PTR[00429508] <- this command jump to long address. Almost use pointer to point long address to go. So PTR[00429508] = 10002860
.
.
10002860 SUB ESP, 000000C8 <- here is starting of countrymakeinus.dll
.
.
1000288B CALL 1001E804 <- this call check that it's right user/pass or not?
.
10002895 JNE 101zo1z21v01o12012z1vo101zo1z21v0+5d <- If wrong it's will jump to exit.. So this point we should by pass and go next command
10002897 CMP [esp+000000d4],fffd7fd0
100028A2 JNE 101zo1z21v01o12012z1vo101zo1z21v0+5d <- the another one , so just by pass to next command
100028A4 MOV eax,[esp+000000d8]
.
.
/* there amount 10-20 jump condition at here try by pass only JNE
.
.
10002AC0 CALL dword ptr[100303a0]
.
.
/* there amount 10-20 jump condition at here try by pass only JNE
.
.
10003110 RET <- finished sub routine and return to address 40368A


Hope u got it.

[D4MN3D]

thanks man.. nice way of helping the people of the community and cutting off the leachers who dont have a clue and just want bot

[ancientglory]

this thread is awesome...

but i am trying to run before i am learning to walk...

so its a bit hard to digest...

need idiot guide to setting traps and trace...etc..

[Xibungo]

ya ancient =/

[monkeyman6969]

Hey anantasia can you please define what all these terms mean? +k for the work you did (*:

[makotch]

what you want to say by bypass ?

[anantasia]

Quote:

Originally posted by monkeyman6969@Jan 5 2007, 22:02
Hey anantasia can you please define what all these terms mean? +k for the work you did (*:

I don't know this is what you need or not.

JMP:
The JMP instruction is the easiest it changes the Instruction Pointer (EIP) to the location the JMP instruction points at and continues from there.

There are also conditional jumps that will only change the instruction pointer if a special condition has met. (for example set using the compare instruncion (CMP))

JA=Jump if Above
JNA=Ju,p if not above
JB=Jump if below
JE=Jump if equal
JC=Jump if carry
and LOTS of other conditional jump

CALL:
Call is the same as JMP except it uses the stack to go back.

Explenation of the stack:
The stack is a location on memory pointed at by the ESP register.
You can put values in it using the PUSH command, and take out it using the POP command. If you use PUSH it will decrease the ESP register and place the value at the location of ESP. If you use POP it will place the value pointed at by pop into the location pointed at by the parameter of POP and increase the value of ESP. In short: The last thing you push in the stack will be the first thing you pop from the stack, the 2nd last item in will be the 2nd item out.

RET:
After CALL has pushed the location of the next instruction onto the stack it jumps to that location. (sets the instruction pointer to that location)

After a while it will encounter a RET instruction, and will then jump to the location that is stored in the stack. (Call pushed the location in the stack, ret pops it out again and jumps to that location)

And thats the tutorial on the basics of assembler, if you have questions about assembler and stuff just ask and I'll try to answer.

Nice file to check out if you want more info:


*credit* copy from HELP in cheat engine

[anantasia]

Quote:

Originally posted by makotch@Jan 5 2007, 22:14
what you want to say by bypass ?

By pass is mean ignore current command and go to next command. Do not edit any code to that command.



For example

Code:

10002895 JNE 101zo1z21v01o12012z1vo101zo1z21v0+5d <- If wrong it's will jump to exit.. So this point we should by pass and go next command
10002897 CMP [esp+000000d4],fffd7fd0

Just try ignore this command by set EIP (Execute Instruction Pointer) to next command. For above example just change EIP to 10002897 when program run till JNE command.

[monkeyman6969]

I think I cracked it thank you very much! i'll try to send some screens of cracked SV

[anantasia]

Quote:

Originally posted by monkeyman6969@Jan 5 2007, 22:26
I think I cracked it thank you very much! i'll try to send some screens of cracked SV

Cool! The first one!

You can Do It Yourself.

No virus , No trojan , No Keylogger but Own RISK

[ancientglory]

think I am going to cry...... Anastasia

you are teaching us how to fish...

think once i know what a fishing pole is, what is bait...and where to fish...

I maybe successful masterbaiter....

Thanks for you patients, however

[retlic]

Quote:

/* there amount 10-20 jump condition at here try by pass only JNE
.
.
10002AC0 CALL dword ptr[100303a0]
.
.
/* there amount 10-20 jump condition at here try by pass only JNE
.
.
10003110 RET <- finished sub routine and return to address 40368A

This is where i got lost. Could you tell me what u meant by the red text plz?

[Domates]

hehe could u just pm me i trust u