闪电ASP V1.53
关注+2004-10-15作者:蓝点
【软件名称】闪电ASP V1.53
【下载地址
http://myis007.myetang.com/
【应用平台】Win9x/NT/2000/XP
【软件大小】1.28Mb
【软件限制】无限制
【破解声明】破解只是感兴趣,无其它目的。失误之处敬请诸位大侠赐教!
【破解工具】W32Dasm UltreEdit
【软件简介】一个编写ASP的工具,非常不错的!
========================================================================================
【分析过程】
先用PEiD看看有壳没有,没有,在用language看看是什么编译的,是用Delphi写的,本来想用DeDe的,但是水平不够到现在都不太会用,算了,还是用我最拿手的W32Dasm吧,分析ing.......
仔细找找,看到"注册码错误,请重新填写!" ,噢?有门了,往上看看,来到
* Referenced by a (U)nconditional or (C)onditional Jump at Address:|
004d9431(C)|:
004D94A0 8D45F8 lea eax, dword ptr [ebp-08]
004D94A3 E874FEF2FF call 0040931C
004D94A8 8B55F8 mov edx, dword ptr [ebp-08]
004D94AB 58 pop eax
004d94AC E867B7F2FF call 00404C18 //这个应该是计算注册码的call吧,功力不够,看不明白
004d94B1 754A jne 004D94FD //关键跳转!与注册码相等吗?相等则跳到注册成功
004d94B3 B201 mov dl, 01
004d94B5 A158904D00 mov eax, dword ptr [004D9058]
004d94BA E8FDA4F2FF call 004039BC
* Referenced by a (U)nconditional or (C)onditional Jump at Address:|004d945A(C)|
004d94BF 8BD8 mov ebx, eax
004d94C1 8D4304 lea eax, dword ptr [ebx+04]
* Possible StringData Ref from Code Obj ->"Software\Microsoft\Alworder\FTM"
|
004d94C4 BA48954D00 mov edx, 004D9548
004d94C9 E8A2B3F2FF call 00404870
004d94CE 8BC3 mov eax, ebx
004d94D0 E8EBFBFFFF call 004D90C0
004d94D5 8BC3 mov eax, ebx
004d94D7 E810A5F2FF call 004039EC
004d94DC 6A40 push 00000040
* Possible StringData Ref from Code Obj ->"注册" |
004d94DE B968954D00 mov ecx, 004D9568* Possible StringData Ref from Code Obj ->"注册成功,感谢您对"闪电 ASP "的支持!" |
004d94E3 BA70954D00 mov edx, 004D9570
004d94E8 A1FC434F00 mov eax, dword ptr [004F43FC]
004d94ED 8B00 mov eax, dword ptr [eax]
004d94EF E8DCEBF8FF call 004680D0
004d94F4 8BC6 mov eax, esi
004d94F6 E899B3F8FF call 00464894
004d94FB EB18 jmp 004D9515
* Referenced by a (U)nconditional or (C)onditional Jump at Address:|
004d94B1(C)|
004d94FD 6A10 push 00000010* Possible StringData Ref from Code Obj ->"注册" |
004d94FF B968954D00 mov ecx, 004D9568* Possible StringData Ref from Code Obj ->"注册码错误,请重新填写!" |
004d9504 BA98954D00 mov edx, 004D9598
004d9509 A1FC434F00 mov eax, dword ptr [004F43FC]
004d950E 8B00 mov eax, dword ptr [eax]
004d9510 E8BBEBF8FF call 004680D0
我想下面的应该是注册码的计算:
* Referenced by a CALL at Addresses:
:00404C18 53 push ebx
:00404C19 56 push esi
:00404C1A 57 push edi
:00404C1B 89C6 mov esi, eax
:00404C1D 89D7 mov edi, edx
:00404C1F 39D0 cmp eax, edx
:00404C21 0F848F000000 je 00404CB6
:00404C27 85F6 test esi, esi
:00404C29 7468 je 00404C93
:00404C2B 85FF test edi, edi
:00404C2D 746B je 00404C9A
:00404C2F 8B46FC mov eax, dword ptr [esi-04]
:00404C32 8B57FC mov edx, dword ptr [edi-04]
:00404C35 29D0 sub eax, edx
:00404C37 7702 ja 00404C3B
:00404C39 01C2 add edx, eax
* Referenced by a (U)nconditional or (C)onditional Jump at Addresses:
|:00404C21(C), :00404C73(C), :00404C7A(C), :00404C8D(C), :00404C91(U)
|:00404C98(U), :00404C9F(U), :00404CA4(C), :00404CA8(C), :00404CB2(C)
|
:00404CB6 5F pop edi
:00404CB7 5E pop esi
:00404CB8 5B pop ebx
:00404CB9 C3 ret
* Referenced by a (U)nconditional or (C)onditional Jump at Address:
|:00404C29(C)
|
:00404C93 8B57FC mov edx, dword ptr [edi-04]
:00404C96 29D0 sub eax, edx
:00404C98 EB1C jmp 00404CB6
* Referenced by a (U)nconditional or (C)onditional Jump at Address:
|:00404C2D(C)
|
:00404C9A 8B46FC mov eax, dword ptr [esi-04]
:00404C9D 29D0 sub eax, edx
:00404C9F EB15 jmp 00404CB6
* Referenced by a (U)nconditional or (C)onditional Jump at Address:
|:00404C37(C)
|
:00404C3B 52 push edx
:00404C3C C1EA02 shr edx, 02
:00404C3F 7426 je 00404C67
哪位大哥帮我看看,应该怎么写注册机?TKS
========================================================================================
【分析总结】
找:E867B7F2FF754AB201A158904D00E8FDA4F2FF8B
改:E867B7F2FF744AB201A158904D00E8FDA4F2FF8B
使用暴力破解后,软件会在HKCU\Softwre\Microsoft\Alworder\FTM生成正确的注册码
========================================================================================
【版权信息】
鄙人写的第一篇破文 写的不好 多多原谅
By sbdx
2003-06-01
排行榜
我要评论...
【下载地址
http://myis007.myetang.com/ 【应用平台】Win9x/NT/2000/XP
【软件大小】1.28Mb
【软件限制】无限制
【破解声明】破解只是感兴趣,无其它目的。失误之处敬请诸位大侠赐教!
【破解工具】W32Dasm UltreEdit
【软件简介】一个编写ASP的工具,非常不错的!
========================================================================================
【分析过程】
先用PEiD看看有壳没有,没有,在用language看看是什么编译的,是用Delphi写的,本来想用DeDe的,但是水平不够到现在都不太会用,算了,还是用我最拿手的W32Dasm吧,分析ing.......
仔细找找,看到"注册码错误,请重新填写!" ,噢?有门了,往上看看,来到
* Referenced by a (U)nconditional or (C)onditional Jump at Address:|
004d9431(C)|:
004D94A0 8D45F8 lea eax, dword ptr [ebp-08]
004D94A3 E874FEF2FF call 0040931C
004D94A8 8B55F8 mov edx, dword ptr [ebp-08]
004D94AB 58 pop eax
004d94AC E867B7F2FF call 00404C18 //这个应该是计算注册码的call吧,功力不够,看不明白
004d94B1 754A jne 004D94FD //关键跳转!与注册码相等吗?相等则跳到注册成功
004d94B3 B201 mov dl, 01
004d94B5 A158904D00 mov eax, dword ptr [004D9058]
004d94BA E8FDA4F2FF call 004039BC
* Referenced by a (U)nconditional or (C)onditional Jump at Address:|004d945A(C)|
004d94BF 8BD8 mov ebx, eax
004d94C1 8D4304 lea eax, dword ptr [ebx+04]
* Possible StringData Ref from Code Obj ->"Software\Microsoft\Alworder\FTM"
|
004d94C4 BA48954D00 mov edx, 004D9548
004d94C9 E8A2B3F2FF call 00404870
004d94CE 8BC3 mov eax, ebx
004d94D0 E8EBFBFFFF call 004D90C0
004d94D5 8BC3 mov eax, ebx
004d94D7 E810A5F2FF call 004039EC
004d94DC 6A40 push 00000040
* Possible StringData Ref from Code Obj ->"注册" |
004d94DE B968954D00 mov ecx, 004D9568* Possible StringData Ref from Code Obj ->"注册成功,感谢您对"闪电 ASP "的支持!" |
004d94E3 BA70954D00 mov edx, 004D9570
004d94E8 A1FC434F00 mov eax, dword ptr [004F43FC]
004d94ED 8B00 mov eax, dword ptr [eax]
004d94EF E8DCEBF8FF call 004680D0
004d94F4 8BC6 mov eax, esi
004d94F6 E899B3F8FF call 00464894
004d94FB EB18 jmp 004D9515
* Referenced by a (U)nconditional or (C)onditional Jump at Address:|
004d94B1(C)|
004d94FD 6A10 push 00000010* Possible StringData Ref from Code Obj ->"注册" |
004d94FF B968954D00 mov ecx, 004D9568* Possible StringData Ref from Code Obj ->"注册码错误,请重新填写!" |
004d9504 BA98954D00 mov edx, 004D9598
004d9509 A1FC434F00 mov eax, dword ptr [004F43FC]
004d950E 8B00 mov eax, dword ptr [eax]
004d9510 E8BBEBF8FF call 004680D0
我想下面的应该是注册码的计算:
* Referenced by a CALL at Addresses:
:00404C18 53 push ebx
:00404C19 56 push esi
:00404C1A 57 push edi
:00404C1B 89C6 mov esi, eax
:00404C1D 89D7 mov edi, edx
:00404C1F 39D0 cmp eax, edx
:00404C21 0F848F000000 je 00404CB6
:00404C27 85F6 test esi, esi
:00404C29 7468 je 00404C93
:00404C2B 85FF test edi, edi
:00404C2D 746B je 00404C9A
:00404C2F 8B46FC mov eax, dword ptr [esi-04]
:00404C32 8B57FC mov edx, dword ptr [edi-04]
:00404C35 29D0 sub eax, edx
:00404C37 7702 ja 00404C3B
:00404C39 01C2 add edx, eax
* Referenced by a (U)nconditional or (C)onditional Jump at Addresses:
|:00404C21(C), :00404C73(C), :00404C7A(C), :00404C8D(C), :00404C91(U)
|:00404C98(U), :00404C9F(U), :00404CA4(C), :00404CA8(C), :00404CB2(C)
|
:00404CB6 5F pop edi
:00404CB7 5E pop esi
:00404CB8 5B pop ebx
:00404CB9 C3 ret
* Referenced by a (U)nconditional or (C)onditional Jump at Address:
|:00404C29(C)
|
:00404C93 8B57FC mov edx, dword ptr [edi-04]
:00404C96 29D0 sub eax, edx
:00404C98 EB1C jmp 00404CB6
* Referenced by a (U)nconditional or (C)onditional Jump at Address:
|:00404C2D(C)
|
:00404C9A 8B46FC mov eax, dword ptr [esi-04]
:00404C9D 29D0 sub eax, edx
:00404C9F EB15 jmp 00404CB6
* Referenced by a (U)nconditional or (C)onditional Jump at Address:
|:00404C37(C)
|
:00404C3B 52 push edx
:00404C3C C1EA02 shr edx, 02
:00404C3F 7426 je 00404C67
哪位大哥帮我看看,应该怎么写注册机?TKS
========================================================================================
【分析总结】
找:E867B7F2FF754AB201A158904D00E8FDA4F2FF8B
改:E867B7F2FF744AB201A158904D00E8FDA4F2FF8B
使用暴力破解后,软件会在HKCU\Softwre\Microsoft\Alworder\FTM生成正确的注册码
========================================================================================
【版权信息】
鄙人写的第一篇破文 写的不好 多多原谅
By sbdx
2003-06-01
展开全部
相关文章
更多+相同厂商
热门推荐
- 最新排行
- 最热排行
- 评分最高
点击查看更多
点击查看更多
点击查看更多
说两句网友评论