I have tried to patch the program with ollydbg for over one month with slight success. There is a "poor crack" for this program but its "incomplete". The guy who cracked it has unpacked it, and made it into professional version (20 users), but the 10 records limit was not removed.
It is packed with Armadillo 3.70 (I don't know about CopyMem/Nanomites), you can use dilloDIE to unpack it and add armaccess.dll (from the 2nd file)
This is a VB6 program, but I can't open it with SmartCheck (its native code) even after decryption.
You can press ESC at the (OK/Buy Now) screen to get to the key enter menu, but I don't think anyone can make a keygen with Armadillo without an existing key.
Anyways if you run the dilloDIE version, it will default in " Edition". I can patch it to have unlimited users instead of 20 (in the 2nd file) (this is not important)
There is also another one for the "workout planner", but that was fine after patch.
However... I can't add more than 10 records for each log. it would write an error message "The demo limit for the log has been reached", I tried to patch through that error message, it then adds the entries over 10, but doesn't show it again when I logoff or restart the program. (it does save it to the database, you can open with MS access with password PSW-174-RTZ-820 (see the sections "Sets", Listviews, workouts)
To add a workout, start a new user, fill in whatever the "*", then login, then press "Add workout", then pull down the "workout", select a random one, and press enter (Don't worry about the weights, just press enter), then select another date, add again, do this ten times.
So do the error message patch (after dilloDIE), go to 005772DA and make it to 74->EB (JMP).
You should be able to add the 11th, 12..etc, then logoff, and login again, check the different dates you added and you will notice the last ones you added doesn't show, it would just be "Add workout".
(Thats the difficult part..)
Thanks
no progress log...
I removed the armaccess.dll part by using the bp on MSVBVM60.DllFunctionCall
the problem with smartcheck is that it errors with "boundschecker"? There is a boundschecker 7.2 ro 7.0 but I have yet to try it d/t ISP throttling
It also uses a vbguard (error catching for vb) by Andera Maldini. I could disable that too but I don't think it is useful. in 763390 area
The problem with this app is even in the decrypted parts there is some encrypted data? (I forgot where, but I can find it again by hex viewing again) and this crashes the vb debugging programs.
anyway I will look for cmp, jl commands, is there a easy way to set a breakpoint on them with ollydbg?
(what about test eax,eax? etc)
the app seems to use getmemevent, event_sink_invoke, __chkstk when I browse around the database (calendar) I will have to try the cmp, jl here. but vb calls are so strange on olly, it has a bunch of PUSH DTR SS, JMP,PUSH DTR SS, JMP.. can't tell where it was called form in olly.
699438 nop - shows the registration screen (should be activated by armadillo), but I don't know the length of the serial required. I have uncompress the armaccess.dll with upx (hex edit the headers back to regular ones, try compress a notepad.exe then replace the jpx0 etc (2 edits)) the key is invalid. (I don't think you can keygen armdillo without an existing key)
How to remove item limit in Native Code (ncode) VB6 with ollydbg?
I have an app that is registered but it still complains if I add (ie: over 10 items) the 11th one can't be added. So I patch that with ollydbg, but then it doesn't save it into the database when I quit the program. Where can I get help about this? the program is in 2004 and is written in N code.. I can decompile the forms and stuff but not he BAS, and the result is in disassembly. Can anyone take a look at it for me? thanks
-reply form another board
I don't know anything about the program that you're talking about. However, chances are that it compares the value in the number box to 10. In the ASM dump find where the value is entered then look for any CMP instructions nearby and possibly JL ones as well. You can probably just NOP them without problem unless this program runs checks to prevent specific types of cracking.
