暴力破解WebMirror
=======================================================
軟體簡介:可以將網站快速下載到本地,以供離線瀏覽。它可以提
供頁面大小和時間的資訊。
作業系統:Win95/98/NT/2000
下載地址:http://www.maccasoft.com/webmirror/index.html
破解工具:反彙編工具、編輯器
級別:初級(大笨鳥)
本人初學,如有不正確之處,希望各位大俠給予指正.
本人信箱:langlirong@163.net
=======================================================
破解簡單過程:
WebMirror在註冊之後,顯示註冊資訊,沒有明顯的錯誤提示。
首先開啟w32dsm裝入WebMirror(好在沒有壓縮),查詢unregistered,
應該有三處還是四處記不準啦,在如下之處注意:
:00408261 89C6
mov esi, eax
:00408263 EB58
jmp 004082BD
* Referenced by a (U)nconditional or (C)onditional Jump at Address:
|:004081AB(C)
|^^^^^^^^^^^^
* Possible StringData Ref from Data Obj ->"Unregistered Evaluation"
|
:00408265 BEA9C14200 mov esi,
0042C1A9
:0040826A 8DBC249E000000 lea edi, dword
ptr [esp+0000009E]
:00408271 57
push edi
看到畫底線處,跳到004081AB:
* Reference To: wmwin.W?GetSerial$:CRegisterDlg$n(pnapna)$CString$$
|
:004081A4 E82BA90000 call
00412AD4
:004081A9 85C9
test ecx, ecx
:004081AB 0F84B4000000 je 00408265
//改nop
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
:004081B1 89F0
mov eax, esi
:004081B3 8DBC249E000000 lea edi, dword
ptr [esp+0000009E]
* Reference To: wmwin.W?$cv:CString$n()pna
|
:004081BA E865DB0000 call
00415D24
:004081BF 89C6
mov esi, eax
:004081C1 57
push edi
乾脆將004081AB 處的 0F84B4000000 改為 909090909090
儲存退出,啟動webmirror輸入使用者名稱和註冊碼,成功!
慢!為何顯示0個人使用?看著不舒服,別急!
找到下面之處:
* Referenced by a (U)nconditional or (C)onditional Jump at Address:
|:004081C8(C)
|
:004081DA 5F
pop edi
:004081DB 83F901
cmp ecx, 00000001
:004081DE 7528
jne 00408208 //改 je
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
* Possible StringData Ref from Data Obj ->"1Ue Proa)UlmtdUes% sr"
將 jne 改為 je
好啦,該收工啦!
歡迎光臨<阿郎據>
langlirong@163.net
http://alang.shangdu.net
10/1/2001