Re: Okay here is newly formed data(Works Well; EB!) Thanks
Sunday, 07-Mar-99 19:41:53
Hi Eb; your advice worked well; I tested it Sandmans so I can go in and delete it if it did not work! It did...Cool...here once again is the data I collected using BinText; (EB you can remove the other mess if this works here also....)
Because Dasm does not work so well in identifying specific strings and hexcode is often encripted beyound belief i have copy and pasted this below to help in identifyying certain areas...In identifying the text strings we can identify WHERE they are located...(?I think)just as we might in dasm...
File pos Mem pos ID Length Text ======== ======= == ===== ====
0000004D 0040004D 0 40 !This program cannot be run in DOS mode. 000001B0 004001B0 0 5 .text 000001D8 004001D8 0 5 .data 00000200 00400200 0 5 .rsrc 00000238 00400238 0 12 MSVBVM60.DLL 000010EC 004010EC 0 10 VBCrackMe6 00001164 00401164 0 5 Form1 0000116E 0040116E 0 31 VBCrackMe v6.0 by Eternal Bliss 0000119D 0040119D 0 5 Form1 000011C7 004011C7 0 8 Command1 000011D5 004011D5 0 5 About 000011F3 004011F3 0 15 Times New Roman 0000120B 0040120B 0 7 Serial1 00001217 00401217 0 6 Serial 00001239 00401239 0 15 Times New Roman 00001251 00401251 0 5 Name1 0000127B 0040127B 0 15 Times New Roman 000012BA 004012BA 0 15 Times New Roman 000012D2 004012D2 0 6 Timer1 000012F2 004012F2 0 5 Check 000012FD 004012FD 0 5 Check 0000131F 0040131F 0 15 Times New Roman 00001337 00401337 0 9 RegSerial 0000135C 0040135C 0 15 Times New Roman 00001374 00401374 0 7 RegName 00001397 00401397 0 15 Times New Roman 000013AF 004013AF 0 6 Serial 000013BA 004013BA 0 6 Serial 000013DA 004013DA 0 15 Times New Roman 00001419 00401419 0 15 Times New Roman 00001466 00401466 0 15 Times New Roman 000014AF 004014AF 0 15 Times New Roman 000014FC 004014FC 0 15 Times New Roman 000015EC 004015EC 0 10 vbcrackme6 000015F7 004015F7 0 12 VB CrackMe 6 00001605 00401605 0 10 VBCrackMe6 00001A4C 00401A4C 0 5 Form1 00001A54 00401A54 0 7 Module1 00001A5C 00401A5C 0 8 frmAbout 00001A68 00401A68 0 10 VBCrackMe6 00001ADF 00401ADF 0 13 Program Files 00001AED 00401AED 0 23 Microsoft Visual Studio 00001B0A 00401B0A 0 7 VB6.OLB 00001B40 00401B40 0 7 RegName 00001B58 00401B58 0 6 Timer1 00001B60 00401B60 0 6 Serial 00001B80 00401B80 0 8 Command1 00001B8C 00401B8C 0 5 Name1 00001B9C 00401B9C 0 7 Serial1 00001BB4 00401BB4 0 5 Check 00001BBC 00401BBC 0 9 RegSerial 00001BE4 00401BE4 0 6 user32 00001BF0 00401BF0 0 12 SetWindowPos 00001C34 00401C34 0 10 RegCodeGen 00001C40 00401C40 0 12 RegSerialGen 00001C50 00401C50 0 9 num1shift 00001C5C 00401C5C 0 9 num2shift 00001C68 00401C68 0 9 num3shift 00001D10 00401D10 0 8 VBA6.DLL 00001D9C 00401D9C 0 5 cmdOK
File pos Mem pos ID Length Text ======== ======= == ===== ====
00001DA4 00401DA4 0 14 lblDescription 00001DB4 00401DB4 0 6 Label4 00001DBC 00401DBC 0 6 Label5 00001DC4 00401DC4 0 6 Label6 00001DCC 00401DCC 0 6 Label7 00001DD4 00401DD4 0 6 Label1 00001DDC 00401DDC 0 6 Label2 00001DE4 00401DE4 0 6 Label3 00001DEC 00401DEC 0 8 lblTitle 0000321C 0040321C 0 8 frmAbout 00003229 00403229 0 14 VBCrackMe v6.0 00003257 00403257 0 5 Form2 00003282 00403282 0 16 Times New RomanF 0000329C 0040329C 0 5 cmdOK 000032C9 004032C9 0 15 Times New Roman 000032E1 004032E1 0 6 Label7 000032F3 004032F3 0 7 surf.to 000032FB 004032FB 0 8 crackmes 00003478 00403478 0 15 Times New Roman 00003490 00403490 0 6 Label6 000034B8 004034B8 0 15 Times New Roman 000034D0 004034D0 0 6 Label5 000034DB 004034DB 0 5 Email 000034FA 004034FA 0 15 Times New Roman 00003512 00403512 0 6 Label4 00003524 00403524 0 16 crackmes.cjb.net 000036A9 004036A9 0 15 Times New Roman 000036C1 004036C1 0 6 Label3 000036CC 004036CC 0 7 Website 000036ED 004036ED 0 15 Times New Roman 00003705 00403705 0 6 Label2 00003710 00403710 0 13 Eternal_Bliss 0000371E 0040371E 0 11 hotmail.com 0000389E 0040389E 0 15 Times New Roman 000038B6 004038B6 0 6 Label1 000038C1 004038C1 0 13 Eternal Bliss 000038E7 004038E7 0 15 Times New Roman 000038FF 004038FF 0 14 lblDescription 00003956 00403956 0 27 s on Visual Basic programs. 0000398F 0040398F 0 15 Times New Roman 000039A7 004039A7 0 8 lblTitle 000039B4 004039B4 0 34 Visual Basic CrackMe v6.0 Coded by 000039F4 004039F4 0 15 Times New Roman 00004CE0 00404CE0 0 12 MSVBVM60.DLL 00004CF0 00404CF0 0 14 MethCallEngine 00004D02 00404D02 0 17 EVENT_SINK_AddRef 00004D28 00404D28 0 18 EVENT_SINK_Release 00004D3E 00404D3E 0 25 EVENT_SINK_QueryInterface 00004D5A 00404D5A 0 18 __vbaExceptHandler 00004D70 00404D70 0 14 ProcCallEngine 00001708 00401708 0 14 vbcrackme6.vbp 00001C90 00401C90 0 11 Good Work!! 00001CAC 00401CAC 0 36 Email me to tell me how you did it!! 00001CFC 00401CFC 0 9 Cracked!! 00001E98 00401E98 0 6 Error! 00001EEA 00401EEA 0 11 hotmail.com 00001F2A 00401F2A 0 16 crackmes.cjb.net 00001F82 00401F82 0 8 crackmes 00005156 00407156 0 15 VS_VERSION_INFO 000051B2 004071B2 0 11 VarFileInfo
File pos Mem pos ID Length Text ======== ======= == ===== ====
000051D2 004071D2 0 11 Translation 000051F6 004071F6 0 14 StringFileInfo 0000521A 0040721A 0 8 040904B0 00005232 00407232 0 8 Comments 00005244 00407244 0 18 CrackMe Practice 6 00005272 00407272 0 11 CompanyName 0000528C 0040728C 0 18 Eternal Bliss inc. 000052BA 004072BA 0 15 FileDescription 000052DC 004072DC 0 20 Visual Basic Program 0000530E 0040730E 0 14 LegalCopyright 0000537A 0040737A 0 15 LegalTrademarks 000053B0 004073B0 0 48 is a registered trademark of Eternal Bliss inc. 0000541A 0040741A 0 11 ProductName 00005434 00407434 0 14 VBCrackMe v6.0 0000545A 0040745A 0 11 FileVersion 00005486 00407486 0 14 ProductVersion 000054B6 004074B6 0 12 InternalName 000054D0 004074D0 0 10 vbcrackme6 000054EE 004074EE 0 16 OriginalFilename 00005510 00407510 0 14 vbcrackme6.exe
In case you'd like to check out this tool: The Url is at: http://members.home.net/rkeir/software.html
regards jeff
Jeff
|