name---ares galaxy turbo booster v5.8.9
Please login or register to download
or
Use alternative full direct download
when open it ask to put activation code. i kill this as below with oly...
00407E17 |. 50 PUSH EAX
00407E18 |. C78424 34010000 0000MOV DWORD PTR [ESP+134],0
00407E23 |. E8 E8D2FFFF CALL 00405110
00407E28 |. 83C0 10 ADD EAX,10
00407E2B |. 83C4 04 ADD ESP,4
00407E2E |. 8BCE MOV ECX,ESI ; |
00407E30 |. 8907 MOV [EDI],EAX ; |
00407E32 |. E8 29F8FFFF CALL 00407660 ; \Ares_Gal.00407660
00407E37 |. 84C0 TEST AL,AL
00407E39 |. 74 79 JE SHORT 00407EB4----------------(1)-- I NOP IT@@@@@@@@@@@@@@@@@@@@@
00407E3B |. 8D4C24 20 LEA ECX,[ESP+20]
00407E3F |. 68 34384600 PUSH 00463834 ; ASCII "Thank you!",LF,"Activation Code accepted!
00407E44 |. 51 PUSH ECX
00407E45 |. E8 1C160100 CALL 00419466
00407E4A |. 83C4 08 ADD ESP,8
00407E4D |. 6A 00 PUSH 0
00407E4F |. 6A 00 PUSH 0
00407E51 |. 8D5424 28 LEA EDX,[ESP+28]
00407E55 |. 52 PUSH EDX
00407E56 |. E8 BAB40300 CALL 00443315
00407E5B |. 8B4424 08 MOV EAX,[ESP+8]
00407E5F |. 51 PUSH ECX
00407E60 |. 83C0 F0 ADD EAX,-10
00407E63 |. 896424 10 MOV [ESP+10],ESP
00407E67 |. 8BFC MOV EDI,ESP
00407E69 |. 50 PUSH EAX
00407E6A |. E8 A1D2FFFF CALL 00405110
00407E6F |. 83C0 10 ADD EAX,10
00407E72 |. 83C4 04 ADD ESP,4
00407E75 |. 8BCE MOV ECX,ESI ; |
00407E77 |. 8907 MOV [EDI],EAX ; |
00407E79 |. E8 E2EFFFFF CALL 00406E60 ; \Ares_Gal.00406E60
00407E7E |. 8B46 1C MOV EAX,[ESI+1C]
00407E81 |. 6A 32 PUSH 32 ; /TimerID = 32 (50.)
i nop the jmp (1) and make it accept any code nos. save it and when reopend show
msgs like it is not install to your pc pl go to www.--------to install it.
then i do as below...
004084FD |. 53 PUSH EBX ; |Reserved = 0
004084FE |. 68 683C4600 PUSH 00463C68 ; |Subkey = "SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Ares"
00408503 |. 68 02000080 PUSH 80000002 ; |hKey = HKEY_LOCAL_MACHINE
00408508 |. 33F6 XOR ESI,ESI ; |
0040850A |. FFD7 CALL EDI ; \RegOpenKeyExA
0040850C |. 85C0 TEST EAX,EAX
0040850E |. 75 05 JNZ SHORT 00408515
00408510 |. BE 01000000 MOV ESI,1
00408515 | 8D4C24 14 LEA ECX,[ESP+14]
00408519 |. 51 PUSH ECX ; /pHandle
0040851A |. 68 19000200 PUSH 20019 ; |Access = KEY_READ
0040851F |. 6A 00 PUSH 0 ; |Reserved = 0
00408521 |. 68 203C4600 PUSH 00463C20 ; |Subkey = "SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Ares Galaxy Classic"
00408526 |. 68 02000080 PUSH 80000002 ; |hKey = HKEY_LOCAL_MACHINE
0040852B |. FFD7 CALL EDI ; \RegOpenKeyExA
0040852D |. 85C0 TEST EAX,EAX
0040852F |. 75 05 JNZ SHORT 00408536====================(2) I NOP THE JUMP@@@@@@@@@@@@@@@@@@@@@@@@@@@@@2
00408531 |. BB 01000000 MOV EBX,1
00408536 | 85F6 TEST ESI,ESI
00408538 |. 75 3C JNZ SHORT 00408576
0040853A |. 85DB TEST EBX,EBX
0040853C |. 75 38 JNZ SHORT 00408576
0040853E |. 8D9424 20010000 LEA EDX,[ESP+120]
00408545 |. 68 B83B4600 PUSH 00463BB8 ; ASCII "Ares Galaxy is not installed on your PC!",LF,"Please visit www.aresgalaxy.org to download and install it."
0040854A |. 52 PUSH EDX
0040854B |. E8 160F0100 CALL 00419466
00408550 |. 83C4 08 ADD ESP,8
00408553 |. 53 PUSH EBX
00408554 |. 6A 10 PUSH 10
00408556 |. 8D8424 28010000 LEA EAX,[ESP+128]
0040855D |. 50 PUSH EAX
0040855E |. E8 B2AD0300 CALL 00443315
00408563 |. 8B8C24 1C070000 MOV ECX,[ESP+71C]
0040856A |. E8 FC0C0100 CALL 0041926B
0040856F |. 5F POP EDI
00408570 |. 5E POP ESI
00408571 |. 5B POP EBX
00408572 |. 8BE5 MOV ESP,EBP
00408574 |. 5D POP EBP
00408575 |. C3 RET
00408576 | 33C0 XOR EAX,EAX
00408578 |. B9 40000000 MOV ECX,40
i nop the jump (2) as above
this bad boy msg is now kill by me. but when strike
the button start ares it is not started.. and nag screen remain
as itis. may i req you kindly solve it
thanks in adv you to all.
Rating 0 Comments 0
Reply
Because the program in your 'link' is Ares Galaxy Turbo Booster 5.8.9
Edit:
I downloaded and took a look at the 5.8.9 version and if that is what you meat then check out the address
Please login or register to download
or
Direct Download at 100Mbit
I think you will like it.
But if you meant the version you put up I couldn't find it so I couldn't take a look at it sorry.
Hope it works out for you and if you have any questions feel free to ask.
004092E4 |. C645 FC 02 MOV BYTE PTR [EBP-4],2
004092E8 |. 8D8D CCFCFFFF LEA ECX,[EBP-334]
004092EE |. 51 PUSH ECX ; /Arg1
004092EF |. 8D8D D4FCFFFF LEA ECX,[EBP-32C] ; |
004092F5 |. E8 7688FFFF CALL 00401B70 ; \Ares_Gal.00401B70
004092FA |. 8985 C0FCFFFF MOV [EBP-340],EAX
00409300 |. 8B95 C0FCFFFF MOV EDX,[EBP-340]
00409306 |. 8995 BCFCFFFF MOV [EBP-344],EDX
0040930C |. C645 FC 03 MOV BYTE PTR [EBP-4],3
00409310 |. 8B85 BCFCFFFF MOV EAX,[EBP-344]
00409316 |. 50 PUSH EAX ; /Arg1
00409317 |. 8D4D F0 LEA ECX,[EBP-10] ; |
0040931A |. E8 E18CFFFF CALL 00402000 ; \Ares_Gal.00402000
0040931F |. C645 FC 02 MOV BYTE PTR [EBP-4],2
00409323 |. 8D8D CCFCFFFF LEA ECX,[EBP-334]
00409329 |. E8 B28CFFFF CALL 00401FE0
0040932E |. 68 640F4900 PUSH 00490F64 ; /Arg2 = 00490F64 ASCII "REG"
00409333 |. 8D4D F0 LEA ECX,[EBP-10] ; |
00409336 |. 51 PUSH ECX ; |Arg1
00409337 |. E8 448FFFFF CALL 00402280 ; \Ares_Gal.00402280
0040933C |. 83C4 08 ADD ESP,8
0040933F |. 0FB6D0 MOVZX EDX,AL
00409342 |. 85D2 TEST EDX,EDX
00409344 |. 90 NOP========================>> I HERE NOP YOUR CODE
00409345 |. 90 NOP
00409346 |. 6A 03 PUSH 3 ; /Arg1 = 00000003
00409348 |. 8B8D C4FCFFFF MOV ECX,[EBP-33C] ; |
0040934E |. E8 AD8BFFFF CALL 00401F00 ; \Ares_Gal.00401F00
00409353 \. EB 0B JMP SHORT 00409360
00409355 /. 8D8D D4FCFFFF LEA ECX,[EBP-32C]
0040935B |. E8 53930000 CALL 004126B3
00409360 |> 6A 00 PUSH 0 ; /Arg3 = 00000000
00409362 |. 68 E8030000 PUSH 3E8 ; |Arg2 = 000003E8
00409367 |. 6A 01 PUSH 1 ; |Arg1 = 00000001
00409369 |. 8B8D C4FCFFFF MOV ECX,[EBP-33C] ; |
0040936F |. E8 3CE9FFFF CALL 00407CB0 ; \Ares_Gal.00407CB0
00409374 |. E8 87270000 CALL 0040BB00
00409379 |. 50 PUSH EAX ; /Arg1
0040937A |. 8B8D C4FCFFFF MOV ECX,[EBP-33C] ; |
KEN THE FURRY
see above i change to nop and it is work. how did you do it.at that no any string or hint.i doing other places. if you can pl make video tut for it ?or can you explain more widly if you dont mind pl.
Open the program in olly and then let it run...
When the nag screen pops up quick pause olly then hit and that will open the call stack.
Then I just double click the newest addresses and if it lands me in a loop I put a breakpoint just out side of it otherwise I just put a breakpoint before where the call stack took me, then just re-run the program and ait for it to break then just look around there.
i try to quick pause after run but it is hanged.no doubt i able to see call stack also
but not clear to me.i want to learn clearly. can you make a video tut. or screenshot
as a new release in this forum or in here for me ?
But my tutorials always end up sucking.
Here it is.
Click Me
thank you so much for your valuable time lost for making this tut.
your tut is descriptive and through. you are not less than like
kani and leena. why not you release series of tuts like kanis,
leenas and mr x. you have vast knowledge and teaching capacity,
even hard things you make easy to all.i have seen you take response to
all members problems.you try to solve everybodies problem.
i think you are the best senior member of this forum.no doubt i will like to disturbe you to ask my query from time to time.
lastly to say knowledge is the power and unknown is darkness.
00411E91 |. |FF75 08 PUSH DWORD PTR [EBP+8] ; /Arg1
00411E94 |. |E8 EF3E0000 CALL 00415D88 ; \55555555.00415D88
00411E99 |. |50 PUSH EAX
00411E9A |. |68 C42A4900 PUSH 00492AC4
00411E9F |. |E8 638F0100 CALL 0042AE07
00411EA4 |. |59 POP ECX
00411EA5 |. |59 POP ECX
00411EA6 |. |85C0 TEST EAX,EAX
00411EA8 |. |74 0C JE SHORT 00411EB6======jmp x
00411EAA |. |8B10 MOV EDX,[EAX]
00411EAC |. |8BC8 MOV ECX,EAX
00411EAE |. |FF92 50010000 CALL [EDX+150]==========this is the call
00411EB4 |. |EB 07 JMP SHORT 00411EBD
00411EB6 |> |33C0 XOR EAX,EAX
00411EB8 |. |40 INC EAX
00411EB9 |. |EB 02 JMP SHORT 00411EBD
00411EBB |> \33C0 XOR EAX,EAX
00411EBD |> 5D POP EBP
00411EBE \. C2 1000 RET 10
00411EC1 8BFF MOV EDI,EDI
i want to know about above----
why you select the jmp(x) for nopping whther it is lead to xor eax eax ?
ie its throwout our nos?
after puting bp for calls from stacks and restart and run it will arrive
a break pt to see arround then remove bp again run and arrive another bp
bp---see around---remove bp--untill last bp ?
why you ignor other call and jumps ? reason?
pl help me to accuire 100%
But if you let it get too far it will be adding in the nag screen like if you have a code that is like this.
a:=0;
a:=a+1;
a:=a+1;
a:=a+1;
then a=3
but say you only want a to be 2 just jump over that third add.
and a means the regd code like 123456..? (fake)
a means what ? regd code?a:=0;
a:=a+1;
a:=a+1;
a:=a+1;
then a=3
pl tell a few line widely.
thanks.
You are jumping over a bit of code to stop it from being executed.
If that bit of code is executed then it shows the nag screen correct?
So then doesn't it make since to just jump over it to stop it?
see i try various cracking and first
going to try myself, if fail ask you
about this.so that myself and many
new learner will be benifited from it.
are you ready?or getting bore!
when i become a good cracker
i will help sombody like you.
but there is along long way.
in revers it i can teach you
guiter playing. because i am a guiterist!
how do you like my idea?
Would you like me to make you a crackme for you to try to crack?
Would you like me to make you a crackme for you to try to crack?
said-- ken the furry
yes why not. i shall try my best.
learning have no end, but i like it.
Please login or register to download
or
Direct Download at 100Mbit
i have done as you describe open inoly--run---alt+f9--agin f12
==alt+f9 but error msgs come out.download the above link
how it is happend and where is the wrong to me.
i think make a detail tut step by step do for me
either in video or text formte. can you pl?
Second - Do you have a MSN Messagner?
Third: You open the program in olly then in the program make sure the nag is up. Then do that trick, and you do not have to do that one you could try the other one.
Please login or register to download
or
Use full direct downloader
this is my msn link inthe name of soft.