-----cut here------------------------------------------------------------------- How to crack ConfigSafe 3.06.04 - make big eyes - this is a SuperTool A crack for it in Borland Pascal 7.0 Target: ConfigSafe 3.06.04 WWW: http://www.configsafe.com Cracker: --..__J_o_h_n_n_y__A_U_M__..-- (TNT) Protections to be removed: 2 expiration nags & splash Tools: Hiew, W32Dasm & Windows Commander 4.03 --------Last News------- The mondial occult iudeo-masonic government collect right now all the quantity of gold from everywhere; the bells of a new fascist order are singing! See what's happening in Swissland! The price of gold "is going down". Who buy it? ------------------------ Ya, this is one of the crackers SuperTool, you must have it! Grab it now! Tomorrow maybe you will not have the chance! Let's crack this fast! First: install.exe of mine is already expired: I'll tell you - at install.exe adress (hiew) 949 - 7E -> EB. A gift to you! 1. 1st expiration nag (method A). Disassemble Cfgsafe.exe (32768 bites) in W32dasm. We look at this piece of code between 4011FC-40124F. At me Configsafe is expired and show me this nag: "Your evaluation period has...". If at you is unexpired, set year 2002. OK. So, the piece of code from 4011FC. Go with cursor at 401213 and press button CALL from w32dasm. Bingo! The words from 1st expiration nag are there. Return to principal code. Three lines above our call is 40120A is jne 401222. Make it EB & test if nag appears. Working like fire! 1st nag is gone forever! So you get my point: I found these adresses looking after the words from nag. But remember our piece of code. So, hiew 80A, 75 -> EB. But don't modify anything yet. Method B: We look a litle more around: if we search with word "time" we found in IMPORT MODULE DETAILS that the file cw3220.dll is responsible for the functions about time, strings, access, remove, etc. Nice, very nice. Let's see what is with cw3220 and access, this could be something about access if the time is correct, right? Search with word "cw3220" from start. Interesting, first we meet cw3220_time, cw3220_strchr, cw3220_lstrcatA, cw3220_access, cw3220_remove. So, the code do this: get the right time, compare time strings from a file with current time and gives you access or remove access and show you that uggly nag. Look now at w32dasm adress 401148 jne 40115B. If we jump function which remove the access, we can continue with no nag, ya? Let's try this: hiew 748 - - 75 -> EB. Works good! We have disabled the nag - more proffesional approach. 2. Splash of ConfigSafe, tralala, with a lot of words. Look again in our piece of code few lines down, at call 40124A, put cursor on it. Enter with the help of button CALL. We see there words like "splash.ini" and API functions that attest the construction and destruction of a window. OK. Let's test if this is the right place. Return to 40124A. A few lines above is 40123B with je 401252. Make it EB (jump for shore over our call). OK!!! The splash is gone also, and all it's so easy! So, hiew 83B, 74 -> EB. 3. Removing the 3rd nag, with the same words as the 1st one. Because I don't see here (in Cfgsafe.exe) any repetition for nag words and the adress 401164 is called only from one place, maybe the 3rd nag is in other dll file. Let's see. It's necessary first to make the both modifications explained above on a copy of Cfgsafe.exe, y.exe. Do it now. Execute y.exe, you see the words from 3rd nag. Quit and load y.exe with w32dasm. From w32dasm do Debug\Load Process\Load and after loading press Run, nag appear, now press F7 to see in what file is the caller: is cfgcheck.dll. Good, press Terminate, exit. Load a copy of this dll, cfgcheck.dlo in w32dasm. Once it's loaded, we see the same code history as in 1. - method B, with cw3220_access. Go at w32dasm adress 401212. You see now clearly. At 401228 is our jump over cw3220_remove, jne 40123B with hiew 828; change 75 with EB and ConfigSafe 3.06.04 is ready for scanning after hidden informations. Job done! Enjoy this fine tool! PS. Here is the pascal code for ConfigSafe 3.06.04 crack (just in case you need it - with minor adequated modifications works on any program who needs 2 files patched at a time): >>> Borland Pascal 7.0 <<< ---cut here--- Uses Crt, Dos; Const A: Array[1..2] of Record A:Longint; B:Byte; End= ((A:$748;B:$EB), (A:$83B;B:$EB)); Const C: Array[1..1] of Record C:longint; D:Byte; End= ((C:$828;D:$EB)); Var Ch:Char; I,J:Byte; F:File; Size:longint; Info:searchrec; Begin Writeln(' Johnny AUM Labs presents:'); Writeln(' Multicrack for ConfigSafe 3.06.04'); FindFirst('cfgsafe.exe',archive,info); if info.size <> 32768 then begin writeln(' þ The file cfgsafe.exe isn`t authentic or isn`t in this subdirectory!'); FindNext(info); halt(1); end; FindFirst('cfgcheck.dll',archive,info); if info.size <> 325664 then begin writeln(' þ The file cfgcheck.dll isn`t authentic or isn`t in this subdirectory!'); FindNext(info); halt(1); end; Assign(F,'cfgsafe.exe'); {$I-} Reset(F,1); {$I+} for I:=1 to 2 do begin Seek(F,A[I].A); Ch:=Char(A[I].B); Blockwrite(F,Ch,1); end; Assign(F,'cfgcheck.dll'); {$I-} Reset(F,1); {$I+} for J:=1 to 1 do begin Seek(F,C[J].C); Ch:=Char(C[J].D); Blockwrite(F,Ch,1); end; Writeln(' þ OK! The files were cracked succesfully!'); end. ---cut here--- ---------------- Greets: tKC, CIA, TNT (nice guys!), to all crackers, PRO or newbies, all cracker teams (keep going, we must eliberate from iudeo-masonic tirany, all must become free), we are great guys, and nice too. I love you all but be a good soul! Romanian Greets: Toate cele bune oamenilor inimosi din Romania! O sa vina si zile mai bune! Incercati sa evoluati spiritual daca vreti sa fiti fericiti! At last, but from all my heart: I love you Heavenly Father, I know you are with me all the time!!! God is pure love! Try this: www.geocities.com/john_aum Incredible infos for YOUR EYES ONLY!!! Critics, comments, anything at: johnny_aum@yahoo.com ---------------Sorry if my english is not perfect!------------------------------ -----cut here-------------------------------------------------------------------sp; test eax, eax