應妖二妖二的要求,貼上SHOWURL的破解過程。 (11千字)
今天上班回來睡了一覺,後來拿這個軟體來玩,發現裡面有較多的比較。時不時跳出一個註冊碼錯誤的對話方塊。在411c50,408a1a,和45a036附近的跳轉改為jmp,jmp,nopnop.隨便輸入註冊碼,不出錯,但還是沒用。前面檢測的地方還是沒改到,重新執行又為試用版。總之,沒搞定。:-(
這裡是破它驗證註冊碼和註冊型別的地方,註冊視窗的破解在上面所說的地方。
終於搞定!
OK!大功告成,打個Kiss!
* Possible StringData Ref from Code Obj ->"REGID"
|
:0045A218 B9E0A34500 MOV ECX,
0045A3E0
* Possible StringData Ref from Code Obj ->"APPINFO"
|
:0045A21D BAF0A34500 MOV EDX,
0045A3F0
:0045A222 8BC3
MOV EAX, EBX
:0045A224 8B38
MOV EDI, dword PTR [EAX]
:0045A226 FF17
CALL dword PTR [EDI]
:0045A228 6A00
PUSH 00000000
:0045A22A 8D45F0
LEA EAX, dword PTR [EBP-10]
:0045A22D 50
PUSH EAX
* Possible StringData Ref from Code Obj ->"REGNAME"
|
:0045A22E B900A44500 MOV ECX,
0045A400
* Possible StringData Ref from Code Obj ->"APPINFO"
|
:0045A233 BAF0A34500 MOV EDX,
0045A3F0
:0045A238 8BC3
MOV EAX, EBX
:0045A23A 8B38
MOV EDI, dword PTR [EAX]
:0045A23C FF17
CALL dword PTR [EDI]
:0045A23E 8B45F8
MOV EAX, dword PTR [EBP-08]
:0045A241 8B00
MOV EAX, dword PTR [EAX]
:0045A243 50
PUSH EAX
:0045A244 8D45E0
LEA EAX, dword PTR [EBP-20]
:0045A247 50
PUSH EAX
* Possible StringData Ref from Code Obj ->"INIPATH"
|
:0045A248 B910A44500 MOV ECX,
0045A410
* Possible StringData Ref from Code Obj ->"APPINFO"
|
:0045A24D BAF0A34500 MOV EDX,
0045A3F0
:0045A252 8BC3
MOV EAX, EBX
:0045A254 8B38
MOV EDI, dword PTR [EAX]
:0045A256 FF17
CALL dword PTR [EDI]
:0045A258 8B55E0
MOV EDX, dword PTR [EBP-20]
:0045A25B 8B45F8
MOV EAX, dword PTR [EBP-08]
:0045A25E E8ED99FAFF CALL 00403C50
:0045A263 8BC3
MOV EAX, EBX
:0045A265 E80A8DFAFF CALL 00402F74
:0045A26A 8D45E8
LEA EAX, dword PTR [EBP-18]
:0045A26D E88A99FAFF CALL 00403BFC
:0045A272 83CBFF
OR EBX, FFFFFFFF
:0045A275 8B45F4
MOV EAX, dword PTR [EBP-0C]
:0045A278 BA20A44500 MOV EDX,
0045A420
:0045A27D E80A9DFAFF CALL 00403F8C
:0045A282 761F
JBE 0045A2A3 ;----->讓它一定跳,改為“EB1F”
:0045A284 A11CF84A00 MOV EAX,
dword PTR [004AF81C]
:0045A289 8B00
MOV EAX, dword PTR [EAX]
:0045A28B 50
PUSH EAX
:0045A28C 6A00
PUSH 00000000
:0045A28E 8B0DE4F74A00 MOV ECX, dword
PTR [004AF7E4]
:0045A294 8B09
MOV ECX, dword PTR [ECX]
:0045A296 8B55F4
MOV EDX, dword PTR [EBP-0C]
:0045A299 8B45F0
MOV EAX, dword PTR [EBP-10]
:0045A29C E873FAFFFF CALL 00459D14
:0045A2A1 8BD8
MOV EBX, EAX
* Referenced by a (U)nconditional OR (C)onditional Jump at Address:
|:0045A282(C)
|
:0045A2A3 85DB
TEST EBX, EBX
:0045A2A5 0F8CF8000000 JL 0045A3A3
;------>別跳了,改為“909090909090”
:0045A2AB 8D45DC
LEA EAX, dword PTR [EBP-24]
:0045A2AE 8B4DF0
MOV ECX, dword PTR [EBP-10]
* Possible StringData Ref from Code Obj ->"User Name "
|
:0045A2B1 BA2CA44500 MOV EDX,
0045A42C
:0045A2B6 E80D9CFAFF CALL 00403EC8
:0045A2BB 8B55DC
MOV EDX, dword PTR [EBP-24]
:0045A2BE 8BC6
MOV EAX, ESI
:0045A2C0 8B08
MOV ECX, dword PTR [EAX]
:0045A2C2 FF5134
CALL [ECX+34]
:0045A2C5 8D45D8
LEA EAX, dword PTR [EBP-28]
:0045A2C8 8B4DF4
MOV ECX, dword PTR [EBP-0C]
* Possible StringData Ref from Code Obj ->"Registration ID "
|
:0045A2CB BA40A44500 MOV EDX,
0045A440
:0045A2D0 E8F39BFAFF CALL 00403EC8
:0045A2D5 8B55D8
MOV EDX, dword PTR [EBP-28]
:0045A2D8 8BC6
MOV EAX, ESI
:0045A2DA 8B08
MOV ECX, dword PTR [EAX]
:0045A2DC FF5134
CALL [ECX+34]
:0045A2DF 83EB01
SUB EBX, 00000001
:0045A2E2 7207
JB 0045A2EB ;---->這裡,你跳則為Single User,想成為“Single
User”嗎?
; 想就改為“EB07”,不想就算了;
:0045A2E4 7421
JE 0045A307 ;---->想成為"Site user"嗎?想就改為“EB21”,不想就算了
:0045A2E6 4B
DEC EBX
:0045A2E7 743A
JE 0045A323 ;---->想成為“Royalty Free
user”嗎?不想就沒機會了,還是
; 改成“EB3A”吧,呵呵呵!
:0045A2E9 EB5F
JMP 0045A34A
* Referenced by a (U)nconditional OR (C)onditional Jump at Address:
|:0045A2E2(C)
|
:0045A2EB 8D45E4
LEA EAX, dword PTR [EBP-1C]
* Possible StringData Ref from Code Obj ->"Single User"
|
:0045A2EE BA5CA44500 MOV EDX,
0045A45C
:0045A2F3 E89C99FAFF CALL 00403C94
:0045A2F8 8D45EC
LEA EAX, dword PTR [EBP-14]
* Possible StringData Ref from Code Obj ->"This is a registered version of "
;--->這是單使用者的授權書吧?自己翻譯吧
->"ShowURL.
You may use the software "
->"on any single
computer, or use "
->"the software
on a network, provided "
->"that each
person accessing the "
->"Software through
the network must "
->"have a registered
version of ShowURL"
|
:0045A2FB BA70A44500 MOV EDX,
0045A470
:0045A300 E88F99FAFF CALL 00403C94
:0045A305 EB43
JMP 0045A34A
* Referenced by a (U)nconditional OR (C)onditional Jump at Address:
|:0045A2E4(C)
|
:0045A307 8D45E4
LEA EAX, dword PTR [EBP-1C]
* Possible StringData Ref from Code Obj ->"Site"
|
:0045A30A BA64A54500 MOV EDX,
0045A564
:0045A30F E88099FAFF CALL 00403C94
:0045A314 8D45EC
LEA EAX, dword PTR [EBP-14]
* Possible StringData Ref from Code Obj ->"Using of this software on any "
;----->這是站點的授權書吧?自己翻譯吧
->"number of
computers and networks "
->"is hereby
granted. Provided that "
->"all computers
must be within a "
->"same building,
and is owned by "
->"%s"
|
:0045A317 BA74A54500 MOV EDX,
0045A574
:0045A31C E87399FAFF CALL 00403C94
:0045A321 EB27
JMP 0045A34A
* Referenced by a (U)nconditional OR (C)onditional Jump at Address:
|:0045A2E7(C)
|
:0045A323 8D45E4
LEA EAX, dword PTR [EBP-1C]
* Possible StringData Ref from Code Obj ->"Royalty Free"
;---->這是“皇室免費”的授權書吧?自己翻譯吧
|
:0045A326 BA20A64500 MOV EDX,
0045A620
:0045A32B E86499FAFF CALL 00403C94
:0045A330 8D45EC
LEA EAX, dword PTR [EBP-14]
* Possible StringData Ref from Code Obj ->"The right to distribute ShowURL "
->"on a royalty
free basis is hereby "
->"granted to
%s. "
|
:0045A333 BA38A64500 MOV EDX,
0045A638
:0045A338 E85799FAFF CALL 00403C94
:0045A33D 8D45E8
LEA EAX, dword PTR [EBP-18]
* Possible StringData Ref from Code Obj ->"ShowURL may not be resold as an "
->"application.
The right to distribute "
->"ShowURL does
not pass to users "
->"other than
registerd users shown "
->"above."
|
:0045A340 BA94A64500 MOV EDX,
0045A694
:0045A345 E84A99FAFF CALL 00403C94
* Referenced by a (U)nconditional OR (C)onditional Jump at Addresses:
|:0045A2E9(U), :0045A305(U), :0045A321(U)
|
:0045A34A 8D45D4
LEA EAX, dword PTR [EBP-2C]
:0045A34D 8B4DE4
MOV ECX, dword PTR [EBP-1C]
* Possible StringData Ref from Code Obj ->"License Type "
;---->這是你的執照型別,你是選的哪種?我選的是“站點”
|
;
你呢?
:0045A350 BA2CA74500 MOV EDX,
0045A72C
:0045A355 E86E9BFAFF CALL 00403EC8
:0045A35A 8B55D4
MOV EDX, dword PTR [EBP-2C]
:0045A35D 8BC6
MOV EAX, ESI
:0045A35F 8B08
MOV ECX, dword PTR [EAX]
:0045A361 FF5134
CALL [ECX+34]
:0045A364 BA20A44500 MOV EDX,
0045A420
:0045A369 8BC6
MOV EAX, ESI
:0045A36B 8B08
MOV ECX, dword PTR [EAX]
:0045A36D FF5134
CALL [ECX+34]
:0045A370 8D45D0
LEA EAX, dword PTR [EBP-30]
:0045A373 50
PUSH EAX
:0045A374 8B45F0
MOV EAX, dword PTR [EBP-10]
:0045A377 8945C8
MOV dword PTR [EBP-38], EAX
:0045A37A C645CC0B MOV
[EBP-34], 0B
:0045A37E 8D55C8
LEA EDX, dword PTR [EBP-38]
:0045A381 33C9
XOR ECX, ECX
:0045A383 8B45EC
MOV EAX, dword PTR [EBP-14]
:0045A386 E8C1F3FAFF CALL 0040974C
:0045A38B 8B55D0
MOV EDX, dword PTR [EBP-30]
:0045A38E 8BC6
MOV EAX, ESI
:0045A390 8B08
MOV ECX, dword PTR [EAX]
:0045A392 FF5134
CALL [ECX+34]
:0045A395 8B55E8
MOV EDX, dword PTR [EBP-18]
:0045A398 8BC6
MOV EAX, ESI
:0045A39A 8B08
MOV ECX, dword PTR [EAX]
:0045A39C FF5134
CALL [ECX+34]
:0045A39F B301
MOV BL, 01
:0045A3A1 EB02
JMP 0045A3A5
* Referenced by a (U)nconditional OR (C)onditional Jump at Address:
|:0045A2A5(C)
|
:0045A3A3 33DB
XOR EBX, EBX
* Referenced by a (U)nconditional OR (C)onditional Jump at Address:
|:0045A3A1(U)
|
:0045A3A5 33C0
XOR EAX, EAX
相關文章
- PassWD2000破解過程~~~轉貼~~~~~~ (11千字)2001-10-10
- 轉貼:破解時間限制的老文章(二) (2千字)2000-10-23
- 3D妖異志世界?《晴明傳》今日開啟二測2021-03-093D
- 國產家園生存遊戲《妖師》上線steam2019-12-20遊戲
- SuperCleaner2.30破解過程 (11千字)2002-02-04
- 妖幻TRW and videofixer的脫殼方法之我之拙見 (13千字)2015-11-15IDE
- 第二個CrackMe的破解 (6千字)2001-08-17
- Swift仿寫有妖氣漫畫2018-08-13Swift
- webeasymail的簡單破解過程 (2千字)2001-08-04WebAI
- 年年出妖事,一例由JSON解析導致的"薛定諤BUG"排查過程記錄2022-05-07JSON
- 貼一個朋友問的關於《學生評語系統》的破解過程14千字)2002-02-07
- 具體的破解過程來也! (10千字)2001-04-21
- 對VCDCUT 4.03的分析破解過程 (18千字)2001-08-08
- 貼個程式的smc破解。 (1千字)2001-09-24
- JVM(二)——物件的建立過程2017-04-06JVM物件
- 貼一篇破解過程,本想作為加入BCG的第三篇.但: (2千字)2001-08-09
- Samza在YARN上的啟動過程 =》 之二 submitApplication2014-05-10YarnMITAPP
- OICQ HACK 1.0 破解過程 (9千字)2001-04-23
- Nullz CrackMe 1.1破解過程 (13千字)2001-09-18Null
- WebTimeSync 5.2.0 破解過程 (14千字)2001-10-05Web
- 申請加入BCG的破解文章之二 (3千字)2001-05-06
- 用ollydbg破解就是爽,貼出超級屏捕的破解過程和演算法分析,請大家多多指教!! (15千字)2001-12-20演算法
- 完整的一次 HTTP 請求響應過程(二)2019-03-02HTTP
- PacWorld v 1.3 詳細破解過程(對不起,上一篇貼錯了,更正一下!!!)
(7千字)2015-11-15
- 通達信與妖共舞附體指標公式2024-03-10指標公式
- 《西遊2伏妖篇》主題VR遊戲上線,帶你邂逅紫霞仙子2018-03-02VR遊戲
- 我終於破解了魔裝網神了,破解過程!!,不過是用2.70破解的。 (1千字)2001-10-15
- dfx V4.0破解過程 (10千字)2000-09-24
- 破解過程-----請多多指教 (2千字)2000-12-31
- 電腦字型秀破解過程 (1千字)2001-03-18
- Kryptel 3.8 暴力破解過程 (18千字)2001-09-18
- PUZZLER1.20破解過程 (4千字)2002-01-26
- 幽默:妖股GameStop背後的人工智慧與散戶的博弈2021-01-29GAM人工智慧
- 。先在這裡貼上俺的破解方法。各位請扔磚頭。 (2千字)2015-11-15
- supercleaner 2.0 超酷的系統清潔工具破解過程!
(3千字)2001-03-23
- Don't Panic 3.2的破解過程(俺是新手) (3千字)2001-05-15
- PE-explorer 1.4 的簡要破解過程(1千字)2001-08-08
- 掉電引起的ORA-1172錯誤解決過程(二)2017-07-17