![]() |
![]() |
![]() |
http://tntcrack.darpa.org | http://tntcrack.tsx.org | ||
[WinGest v3.5 Tutor by XASX] | ||
[Tutor Layout by XASX] |
![]() |
|
Date | 7 July/1999 |
Cracker | XASX |
Appz | WinGest v3.5 |
Description | Spanish/French administrative program. |
Type | Demo Version. |
Protection Scheme | Restrictions and UseLimit to September/99. |
Appz URL | http://www.sfy.com |
Crack URL | http://tntcrack.darpa.org |
Tools | SoftIce v3.25. |
![]() |
|
Introduction | ||||||||||||||||||||||||||||||||||||||||
Hi all, in this tutorial Im going to explain how to crack WinGest v3.5. The version I have cracked is a demo released in a Spanish Computers Magazine: PC Actual (Nº36 Julio/Agosto 99). In 'Soft for You' web, you can find the same demo download-> http://www.sfy.com/demo.htm. Sorry by my fucking english xD. Go on...
All this prices are in 'pesetas' | 1$ = 150 pts | Thess prices are very high, at
least for a small bussines. Ok, go to some fun... |
||||||||||||||||||||||||||||||||||||||||
Registering | ||
When you load the program, you'll get a window with two options: register and enter demo version. We select
register, that is we want xD. - Nombre = Name We enter boolean data and continue
(its indifferent... so we cant leave in blank this data). Serial number is indifferent... we can put boolean data, for example. '123xasx321'. I select Enterprise version, all the modules, and 900 net licenses xD. (max number is 999). Ok, now all is done, we push |siguiente|=|next| and we get a code like this:
Ok, we have the code. Ok, we are now in 'enter code2 window'. Now begin real cracking!!!.
We enter a random number, and the apps say: ¡Lo Siento!, el contracódigo introducido está mal. = Sorry, entered number is bad. Ok, we are goint to search the
code that call this window. We'll must use SoftIce... more fun!!!, xD. After test some typical breakpoints without success (getdlgitemtext(a), getwindowtext(a)... etc etc), i think that this app is coded in Visual Fox Pro 6.0, and will use some sucking dll like Visual Basic. Yes...its: VFP6R.DLL / Microsoft® Visual FoxPro® Runtime Library. We are goint to try apis from this dll (very unknow on typical cracking), but... why don't go first to easy cracking and take a look to ram, searching some 'forgotten' numbers?
Search command with SoftIce is: S = Search Search will be done before we have entered a code2 and pushed |siguiente| = |next|, because all comparations in ram will be done and we can find some number. Remember that our code was: 6921-59610/3*33311111-900 (first part change everytime). I think best string to search is: 3*33311111-900 : final code that only change with registry data. Enter softice (ctrl+d): After press <s>
aprox 15 times (can be less or more), we appear in a
place where we see that:: (to move in softice data window, you must push alt+up/down) hmmmmmmmm..... what are
making these numbers too close?... we write down the
unknow number of 5 characters and going again to Wingest. hmmmmmmmmmmm..... the
number has dissapear... and we can see
"enrerant" in his place. xDDDD... Felicidades, ya
tiene Wingest registrado, le deseamos un buen día. Ok, it has worked!... and we haven't entered to trace the black world of: VFP6R.DLL / Microsoft® Visual FoxPro® Runtime Library. Push |finalizar| = |End| and the
app load correctly, without the word 'demostration' in
begin window... We have made it!!!!!, Now we are going to search were registration data are saved: This can be made in some places: Ok, The app has been Cracked. See u in next tutorial... |