1
00:00:00,870 --> 00:00:02,020
Welcome back.

2
00:00:02,100 --> 00:00:07,310
In today's lesson we are going to continue to the other objectives.

3
00:00:07,560 --> 00:00:09,240
So let's continue.

4
00:00:09,240 --> 00:00:11,300
Open the target patch on file

5
00:00:18,110 --> 00:00:20,400
and ask you to skip it.

6
00:00:20,720 --> 00:00:21,230
His

7
00:00:24,390 --> 00:00:26,490
now we're at the entry point.

8
00:00:26,490 --> 00:00:34,100
Click on Run and you'll see the next screen has not been shown.

9
00:00:34,120 --> 00:00:37,920
We already successfully bashed it in the earlier lesson.

10
00:00:38,080 --> 00:00:42,520
However the status still shows like not removed.

11
00:00:42,520 --> 00:00:51,130
So our objective in this lesson is to change the status and also the button when you click on the button

12
00:00:51,520 --> 00:00:59,860
issue recheck and change the status so in order to do that we can search for this string.

13
00:00:59,860 --> 00:01:07,660
Now normally when we search for strings we will right click and search for current module.

14
00:01:07,740 --> 00:01:15,660
Make sure you're using module before you do this and then go ahead click on the string references and

15
00:01:15,930 --> 00:01:20,360
he has found all the strings in this for you.

16
00:01:20,370 --> 00:01:24,330
Now let's look for the string in the not removed.

17
00:01:24,330 --> 00:01:29,030
It appears here and here twice.

18
00:01:29,130 --> 00:01:35,860
So let's put breakpoints on both of them and see which one hits when we click on the reset button.

19
00:01:35,910 --> 00:01:45,870
So we put a breakpoint here selecting this and press F two to set a breakpoint and then you display

20
00:01:46,410 --> 00:01:53,460
the other one which is this one and put breakpoint here too by pressing have to.

21
00:01:53,460 --> 00:01:56,090
So we have two big points here and here.

22
00:01:56,250 --> 00:02:00,440
And let's restart the program running.

23
00:02:01,490 --> 00:02:04,010
So the first breakpoint hits.

24
00:02:04,010 --> 00:02:07,140
This is the start of the program.

25
00:02:07,400 --> 00:02:09,110
Even before we click on the button.

26
00:02:09,110 --> 00:02:10,970
So this one is the wrong one.

27
00:02:10,970 --> 00:02:16,670
Just remove this double click to remove the separate point click run again.

28
00:02:16,820 --> 00:02:19,640
Now the main window shows.

29
00:02:19,850 --> 00:02:27,350
So we click on this button and we check and see if it hits the other breakpoint yes it does.

30
00:02:27,350 --> 00:02:30,950
So a book is a pass on this breakpoint.

31
00:02:30,950 --> 00:02:32,570
The second one.

32
00:02:32,570 --> 00:02:41,750
So if we analyze this code it is trying to send the text here to night not removed.

33
00:02:42,080 --> 00:02:44,770
And what brought it here.

34
00:02:44,770 --> 00:02:48,540
As you can see from the arrow it came from up here.

35
00:02:49,640 --> 00:02:57,330
So it is this junkies who came to this instruction to set this night.

36
00:02:57,620 --> 00:03:01,370
So we put a breakpoint here and remove this one.

37
00:03:02,450 --> 00:03:04,130
Yes we are going to analyze this gem.

38
00:03:04,940 --> 00:03:15,510
So now let's restarting hideous brick pine restart and run click on recheck.

39
00:03:15,510 --> 00:03:26,950
So now he has a pass on the new breakpoint which causes the jump to the back message string.

40
00:03:27,000 --> 00:03:28,230
So this is a string we don't.

41
00:03:28,230 --> 00:03:31,710
1 that means we should not be jumping here.

42
00:03:31,800 --> 00:03:35,510
So at the moment it is jump equal to zero.

43
00:03:35,520 --> 00:03:36,090
Right.

44
00:03:36,090 --> 00:03:39,850
That means if the Z flag is set to 1 he will jump.

45
00:03:40,320 --> 00:03:42,540
So at the moment the Zero flag is set to 1.

46
00:03:42,540 --> 00:03:44,250
That's why he is jumping.

47
00:03:44,310 --> 00:03:48,360
So in order not to jump toggle this by double clicking.

48
00:03:48,360 --> 00:03:49,860
So it always zero.

49
00:03:49,890 --> 00:03:56,780
And so the jump is not taken is from here as well and the Arrow has changed to agree.

50
00:03:56,790 --> 00:03:58,410
So it is not jumping.

51
00:03:58,410 --> 00:04:05,610
So now we can f it just to test our hypothesis press F it and it is on now.

52
00:04:05,690 --> 00:04:08,170
Press TV It again takes a comparison here.

53
00:04:08,240 --> 00:04:10,780
Me press F it.

54
00:04:10,920 --> 00:04:15,030
We are now here and another decision is to be made.

55
00:04:15,790 --> 00:04:16,170
John.

56
00:04:16,190 --> 00:04:17,830
Equal jump.

57
00:04:17,830 --> 00:04:20,830
Equally if the zero fly is one.

58
00:04:21,320 --> 00:04:25,840
So in this case the Zero flag is not one.

59
00:04:26,150 --> 00:04:28,240
So it is zero flag is not one.

60
00:04:28,250 --> 00:04:30,270
It is not going to become.

61
00:04:30,440 --> 00:04:32,460
So it is not going to jam.

62
00:04:32,570 --> 00:04:36,770
It is going to shows this that message.

63
00:04:37,070 --> 00:04:39,270
So we don't want to see this bad message.

64
00:04:39,320 --> 00:04:46,470
So we wanted to jam and if it jams we jump over this bad message and overly spread message and jump

65
00:04:46,490 --> 00:04:51,800
all the way to this instruction which is the good message.

66
00:04:51,800 --> 00:04:53,990
So this is this is supposed to jump.

67
00:04:54,500 --> 00:04:57,700
So we should toggle the zero fly double click on it.

68
00:04:58,340 --> 00:04:59,830
And so it will jam.

69
00:04:59,990 --> 00:05:02,300
So now we press on it.

70
00:05:02,630 --> 00:05:07,550
And indeed it jumps and here a chance to show the plane.

71
00:05:07,550 --> 00:05:08,210
Correct.

72
00:05:08,210 --> 00:05:08,750
Good job.

73
00:05:09,440 --> 00:05:18,060
So over here we can press F it and see what happens to the instruction as we keep on pressing f it.

74
00:05:18,290 --> 00:05:24,820
And you can see it continues to and finally shows us the good message here.

75
00:05:24,830 --> 00:05:27,230
Thank you for registering this software.

76
00:05:27,920 --> 00:05:30,350
So congratulations you have found the answer.

77
00:05:30,380 --> 00:05:31,400
The solution.

78
00:05:31,400 --> 00:05:34,940
So what remains now is to patch it.

79
00:05:34,940 --> 00:05:42,360
So let's go and try to patch this thing so over here we saw that we should.

80
00:05:42,710 --> 00:05:46,450
Well we should not jump if he jumps he will land over here net not removed.

81
00:05:46,970 --> 00:05:51,650
So in order to make sure it does not jam we have to know of this.

82
00:05:51,980 --> 00:05:58,910
So we double click this and we make sure we check on gif size and feel with no apps and we typing and

83
00:05:58,910 --> 00:06:10,970
will be now and click ok next when it comes to this location it is supposed to jump if he doesn't jump

84
00:06:11,000 --> 00:06:13,850
is going to show us to back that message.

85
00:06:13,850 --> 00:06:16,590
So it is supposed to jump to the good message.

86
00:06:16,610 --> 00:06:19,620
So we're here to ensure that he jumps.

87
00:06:19,790 --> 00:06:23,080
We should change this to an unconditional jump.

88
00:06:23,120 --> 00:06:31,280
So DoubleClick and just change is instruction from the jump equal to unconditional jump and make sure

89
00:06:31,280 --> 00:06:37,790
you check on this tick to see if the session is smaller they are the same size.

90
00:06:37,790 --> 00:06:40,940
Yes it is smaller than all the same size which is good.

91
00:06:41,430 --> 00:06:42,740
And he should not be larger.

92
00:06:42,740 --> 00:06:44,040
He is larger than you can do it.

93
00:06:44,450 --> 00:06:48,490
So Leslie OK to confirm this and we are done.

94
00:06:48,800 --> 00:06:50,160
So now let's patch it.

95
00:06:50,390 --> 00:07:02,470
So click on File patch that file and let's give it the new extension you call it patch 2 and click save.

96
00:07:04,970 --> 00:07:06,310
And that is done.

97
00:07:06,380 --> 00:07:07,500
Now we can test it.

98
00:07:08,210 --> 00:07:09,430
Let's open.

99
00:07:09,500 --> 00:07:15,530
Best to has Randy there is no next screen.

100
00:07:15,530 --> 00:07:16,580
Good.

101
00:07:16,580 --> 00:07:18,360
Now let's try this.

102
00:07:18,500 --> 00:07:21,310
Click on recheck to see what happens.

103
00:07:22,000 --> 00:07:22,810
Yes.

104
00:07:22,850 --> 00:07:23,590
Thank you.

105
00:07:23,600 --> 00:07:25,970
Thank you for registering this software.

106
00:07:27,020 --> 00:07:31,560
And you can see the status has also changed to clean crack.

107
00:07:31,570 --> 00:07:32,070
Good job.

108
00:07:32,690 --> 00:07:34,560
So congratulations.

109
00:07:34,580 --> 00:07:35,150
We have done it.

110
00:07:36,470 --> 00:07:37,820
Thank you for watching.

111
00:07:37,820 --> 00:07:39,430
I'll see you in the next challenge.