Hard cracking program

[Elsedai]

Hello. Recently i downloaded a bot for an online game. Its the only bot and perfect in every function. The bot needs a register key wich can be buyed for 30euros. I tried to make a keygen but cant make it. I have spent many days trying to do it and reading over and over again manuals and assemble modifications. I used Olly to make it. I am not an expert in this section. I have cracked some easy programs but even a novice like me can say that it is diffucult. I know many ppl that tried but noone could do it. Thats the reason that there is no keygen or crack on the internet and i am looking for some help. If anyone could give some advice or if someone could do it for me i would appreciate it. Thanks for your time.

[Kulverstukas]

How are we supposed to help if we don't know anything about what you want.
As far as it goes you might want to crack some industrial-level software...
Provide details dude.

[Elsedai]

program is called pgrind. all i need is a registration key. I know that is checked when i start it and there are not any string references. Also i try to find  GetserialdriveA API call to change the values but i cant find it. You can freely sk me for any details you need. Its first time i write about these things and my vocabulary is not very well.

[Elsedai]

I forgot to mention that the program is made in delphi but Olly shows it in assemby

[Tsar]

program is called pgrind. all i need is a registration key. I know that is checked when i start it and there are not any string references. Also i try to find  GetserialdriveA API call to change the values but i cant find it. You can freely sk me for any details you need. Its first time i write about these things and my vocabulary is not very well.

Does the key get registered or checked by some kind of server externally ever?

Also post the assembly code perhaps? People can only direct you based on how much information you give, so far you have given very little

[Elsedai]

The code is too much to copy it. if you like you can check it. The link to download the program is http://www.surrosoft.com/pGrind.html Its about 5mb. By seeing it everyone will understand much more than i can say because my english is bad and i cant write everything i want.

[Tsar]

People aren't going to go through the process of decompiling it because they are too lazy and don't care about cracking this. So if you want help you will have to meet us half way.

My suggestion is to decompile the main exe only, cause that is probably where you will have to crack. If you want us to see it I suggest posting the assembly here using a service like PasteBin.


Lastly this is how I would go about cracking it:

In order to crack this program, you are going to need to understand how its verification process is working
1. See if it connects to the internet when ran, if it does it is most likely because its being authenticated with a server somewhere
2. It says on the site it will work the first 24 hrs as a trial, look for a way to make it so this 24hrs never runs out, it may even store the time left on a file somewhere in your system.
3. If it is using a server to authenticate each time, try replacing this authentication/server connection and hardcoding in a way so it automatically lets you in or skips authentication.

[Elsedai]

I will give it a try hoping that i will make something.

EDIT:

I found Safe Engine Protector v2.1.3.0 There arer some info about it. Safengine Protector provides a powerful virtual machine to protect your applications against reverse engineering or unwanted modifications. During the virtualization process, your original code flow will be redirected with logical obfuscation, there will be no more than a NAND operation in the virtual machine to emulate logical operations such as AND, OR, NOT and XOR, while most arithmetical operations will be implemented via ADD so that it is very hard for a reverse engineer to tell how the original code works. Also, there will be no “conditional jump” instructions after virtualization, which makes crackers have no place to manipulate the execution flow.

EDIT 2.0:

First time i see this ****. At least its a good reason that i have a hard time.

[ande]

Edit your posts dude, don't post new ones every time if you are the last replier.

[Tsar]

I will give it a try hoping that i will make something.

EDIT:

I found Safe Engine Protector v2.1.3.0 There arer some info about it. Safengine Protector provides a powerful virtual machine to protect your applications against reverse engineering or unwanted modifications. During the virtualization process, your original code flow will be redirected with logical obfuscation, there will be no more than a NAND operation in the virtual machine to emulate logical operations such as AND, OR, NOT and XOR, while most arithmetical operations will be implemented via ADD so that it is very hard for a reverse engineer to tell how the original code works. Also, there will be no “conditional jump” instructions after virtualization, which makes crackers have no place to manipulate the execution flow.

EDIT 2.0:

First time i see this ****. At least its a good reason that i have a hard time.

Sounds like it will be pretty hard to do, but not impossible. Good research though. I would search more on how to crack Safengine Protector, I wasn't able to find much on it.

Here are some threads of people cracking similar products by the same company
http://forum.tuts4you.com/topic/21974-unpackmesafengine-licensor-v1720/
http://forum.tuts4you.com/topic/24677-a-very-cool-crackme-with-strong-anti-debugger/

The people on tuts4you might have better answers for us about reversing Safengine Protector.

[Elsedai]

Thanks. I will search it more and if i find anything interesting i will let you know.

[Stackprotector]

do not rely on text references all the time, try stepping (boring yes..) trough all code and see if you notice some od changes and string what maybe can be a process of generating a key at install,    and ofcourse see what happens if you put in an invalid key.

[Elsedai]

i am inexperienced and i cant recognize od changes so i must spend a lot of time and i dont have any friend to help me

[Live Wire]

Do you have any idea the format of the registration key?
Is it like
xxxxxxxxxx
xxx-xxx-xxxx
xxx xxx xxxx
Or what? If you know, might be able to make a piece of code that gens a list (Java can do it easy) in my experience, this is most important. And to find Internet connectivity, if using windows, enable the windows firewall, block all incoming and outgoing connections, and see what trys to get through when you try to authenticate. Usually works for me. Good luck.

[Kulverstukas]

if using windows, enable the windows firewall, block all incoming and outgoing connections, and see what trys to get through when you try to authenticate. Usually works for me. Good luck.

If using Windows screw their firewall. It's shit.
For sniffing traffic of a particular application get WPE PRO. Normally Wireshark does the trick, but you have to have a solid understanding how it works to see what you need.
I would recommend WPE PRO most of the time for that kind of task.