繼續破解Screen logger manager v1.01,序號產生器如下: (11千字)
Screen logger manager v1.01和Fileprot基本一樣,不過沒有在vxd中的校驗部分,序號產生器演算法部分沒有按照他的計算過程重寫,二十在fileprot的基礎上少加改動,可能存在不"相容",不過我試了幾個,還好用,不知有沒有不能用的,不過我覺得因該都能用的,作者主頁上http://www.mikkotech.com/共有三個作品,除了被破掉的fileprot和Screen
logger manager, 還有一個keykey2000,也差不多,做人不能太絕!所以就不破他了,不過初學者可以用來練習寫序號產生器...
編譯好的序號產生器下載:
http://ia2k.myetang.com/hack/crkslm.exe
原始碼:
;********************hd.h
include c:\masm32\include\windows.inc
include c:\masm32\include\user32.inc
include c:\masm32\include\kernel32.inc
include c:\masm32\include\gdi32.inc
include c:\masm32\include\comctl32.inc
include c:\masm32\include\comdlg32.inc
include c:\masm32\include\shell32.inc
includelib c:\masm32\lib\user32.lib
includelib c:\masm32\lib\kernel32.lib
includelib c:\masm32\lib\gdi32.lib
includelib c:\masm32\lib\comctl32.lib
includelib c:\masm32\lib\comdlg32.lib
includelib c:\masm32\lib\shell32.lib
;****************crkslm.rc
#include <c:\masm32\include\resource.h>
#define ID_GEN 1003
#define ID_EXIT 1002
#define IDC_OUT 1001
#define DLG_MAIN 1000
DLG_MAIN DIALOG 37, 61, 282, 59
STYLE DS_MODALFRAME | WS_POPUP | WS_VISIBLE | WS_CAPTION | WS_SYSMENU
CAPTION "Screen Logger Manager V1.01 Keygen(in ASM), By Hume..."
FONT 8, "MS Sans Serif"
{
DEFPUSHBUTTON "Generate", ID_GEN, 209, 14, 50, 14
PUSHBUTTON "Exit", ID_EXIT, 209, 36, 50, 14
LTEXT "NAME:", -1, 15, 8, 36, 8
LTEXT "COMPANY:", -1, 15, 25, 39, 8
LTEXT "PRODUCT ID:", -1, 15, 43, 49, 10
CONTROL "Hume Wen", -1, "EDIT", ES_MULTILINE | WS_BORDER | WS_TABSTOP, 67, 6,
48, 13
CONTROL "BCG", -1, "EDIT", ES_MULTILINE | WS_BORDER | WS_TABSTOP, 67, 23, 71,
13
EDITTEXT IDC_OUT, 67, 42, 130, 12, ES_READONLY | WS_BORDER | WS_TABSTOP
}
;****************crkslm.asm
.386
.model flat,stdcall
option casemap:none
include hd.h
_ProcDlg proto :DWORD,:DWORD,:DWORD,:DWORD
rand proto :DWORD
;->>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>data seg
.data
esp_10 db 0 ;儲存ecx+5
esp_04 db 0 ;儲存高4位
esp_08 db 0 ;儲存低4位
flg db 0
rand_init db 0
rand_out db 0
Serial db 32 dup(0)
.data?
hInstance HANDLE ?
.const
ID_GEN equ 1003
ID_EXIT equ 1002
IDC_OUT equ 1001
DLG_MAIN equ 1000
;-->>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>code seg
.code
start:
invoke GetModuleHandle,NULL
mov hInstance,eax
invoke DialogBoxParam,hInstance,DLG_MAIN,NULL,offset
_ProcDlg,0
invoke ExitProcess,NULL
_ProcDlg proc uses ebx edi esi, \
hWnd:DWORD,wMsg:DWORD,wParam:DWORD,lParam:DWORD
mov eax,wMsg
.if eax == WM_CLOSE
invoke EndDialog,hWnd,NULL
.elseif eax == WM_COMMAND
mov eax,wParam
.IF lParam!=0
.if ax==ID_GEN
invoke RtlZeroMemory,addr
Serial,32
call Cal
invoke SetDlgItemText,hWnd,IDC_OUT,addr
Serial
.elseif ax==ID_EXIT
invoke SendMessage,hWnd,WM_CLOSE,NULL,NULL
.endif
.ENDIF
.else
mov eax,FALSE
ret
.endif
mov eax,TRUE
ret
_ProcDlg ENDP
include cal.asm
end start
;********************cal.asm
Cal proc
PUSHAD
lea ecx, Serial
mov byte ptr [ecx],'S'
mov byte ptr [ecx+1],'L'
mov byte ptr [ecx+2],'1'
mov byte ptr [ecx+3],'0'
mov al, 2Dh
mov byte ptr [ecx+4],al
mov byte ptr [ecx+7],al
mov byte ptr [ecx+0bh],al
mov byte ptr [ecx+0Dh],al
mov byte ptr [ecx+1ch],al
GenerateAgain:
mov al,flg
.if al!=30h
mov al,30h
.else
mov al,31h
.endif
mov flg,al
mov byte ptr [ecx+0ch],al
.if al==0
mov eax,3930h ;ah=0,al=39
.endif
mov eax,4630h
call randomize
invoke rand,eax
mov bl,rand_out
mov byte ptr [ecx+0fh],bl
invoke rand,eax
mov bl,rand_out
mov byte ptr [ecx+10h],bl
invoke rand,eax
mov bl,rand_out
mov byte ptr [ecx+11h],bl
invoke rand,eax
mov bl,rand_out
mov byte ptr [ecx+12h],bl
invoke rand,eax
mov bl,rand_out
mov byte ptr [ecx+15h],bl
invoke rand,eax
mov bl,rand_out
mov byte ptr [ecx+16h],bl
invoke rand,eax
mov bl,rand_out
mov byte ptr [ecx+17h],bl
invoke rand,eax
mov bl,rand_out
mov byte ptr [ecx+19h],bl
mov eax,3930h
invoke rand,eax
mov bl,rand_out
mov byte ptr [ecx+5],bl
invoke rand,eax
mov bl,rand_out
mov byte ptr [ecx+6],bl
mov eax,3930h
invoke rand,eax
mov bl,rand_out
mov byte ptr [ecx+8],bl
invoke rand,eax
mov bl,rand_out
mov byte ptr [ecx+9],bl
invoke rand,eax
mov bl,rand_out
mov byte ptr [ecx+0Ah],bl
;*****************The following is the first verifying part:
mov dl, byte ptr [ecx+05] ;dl<-ecx+5
mov bl, byte ptr [ecx+08] ;bl<-ecx+8
mov byte ptr esp_10, dl ;save to esp_10
mov al, byte ptr [ecx+19h] ;//add the instruction to
complete the following
mov dl, byte ptr [ecx+17h] ;al=ecx+19 add 17,16,15,12,11,10,F
add al, dl
mov dl, byte ptr [ecx+16h]
add al, dl
mov dl, byte ptr [ecx+15h]
add al, dl
mov dl, byte ptr [ecx+12h]
add al, dl
mov dl, byte ptr [ecx+11h]
add al, dl
mov dl, byte ptr [ecx+10h]
add al, dl
mov dl, byte ptr [ecx+0Fh]
add al, dl
mov dl, byte ptr esp_10 ;dl=saved ecx+5
(al xor dl)
xor al, dl
mov dl, byte ptr [ecx+0Ch] ;剛才的運算結果al與5,0C,8,5位依次xor,再與23h
xor
xor al, bl
;bl=ecx+8
xor al, dl
xor al, 23h
mov dl, al
;校驗結果存為al,dl
shr dl, 4
;去掉低4位,將其轉化為0~F的字元
add dl, 30h
cmp dl, 39h
mov byte ptr esp_04, dl ;存放去掉低4位的高四位結果
jbe RA_0E38C
add dl, 7
mov byte ptr esp_04, dl
RA_0E38C:
and al, 0Fh
add al, 30h
cmp al, 39h
mov byte ptr esp_08, al ;存放低四位轉化為0~F字元
jbe RA_0E39E
add al, 7
mov byte ptr esp_08, al
RA_0E39E:
mov byte ptr [ecx+14h],al ;取ecx+13 標誌1***********
mov al,esp_04
mov byte ptr [ecx+14],al ;ecx+14
標誌2************
;*********************process 1A,1B flag
mov al, byte ptr [ecx+0Ah] ;(ECX+0A) +'F',XOR ECX+9
XOR ECX+14 XOR ECX+13
add al, 46h
xor al, byte ptr [ecx+09]
xor al, dl
mov dl, byte ptr [ecx+13h]
xor al, dl
xor al, bl
;XOR BL=ECX+8 與41h 異或得到結果
xor al, 41h
mov dl, al
shr dl, 4
;高位轉化為0~f字元 ->esp_04
add dl, 30h
cmp dl, 39h
mov byte ptr esp_04, dl
jbe RA_0E3F9
add dl, 7
mov byte ptr esp_04, dl
RA_0E3F9:
and al, 0Fh
add al, 30h
cmp al, 39h
mov byte ptr esp_08, al ;低位化為0~f字元 ->esp_08
jbe RA_0E40B
add al, 7
mov byte ptr esp_08, al
RA_0E40B:
mov byte ptr [ecx+1Bh],al ;ecx+1Bh 標誌4*************
mov al, esp_04
mov byte ptr [ecx+1Ah],al ;ecx+1A 標誌3******************
;*********************the following are 0E and 18h offset processing
mov al, byte ptr [ecx+6] ;ecx+06 xor
ecx+14 xor 13 xor ecx+5
;與ABh數字異或得到結果
mov dl, byte ptr [ecx+14h]
xor al, dl
mov dl, byte ptr [ecx+13h]
xor al, dl
mov dl, byte ptr esp_10 ;esp_10=ecx+5
xor al, dl
xor al, 0ABh
mov dl, al
shr dl, 4
add dl, 30h
cmp dl, 39h
mov byte ptr esp_04, dl ;高4位
jbe RA_0E464
add dl, 7
mov byte ptr esp_04, dl
RA_0E464:
and al, 0Fh
add al, 30h
cmp al, 39h
mov byte ptr esp_08, al ;低4位
jbe RA_0E476
add al, 7
mov byte ptr esp_08, al
RA_0E476:
mov byte ptr [ecx+18h],al ;ecx+18 標誌5******************
mov al, esp_04
mov byte ptr [ecx+0Eh],al ;ecx+0E 標誌6********************
;*************************************************1D,1E flag
mov al, byte ptr [ecx+1Ah] ;1A,0c
mov dl, byte ptr [ecx+0Ch]
mov bl, byte ptr [ecx+8]
xor bl, al
;ecx+8 xor 1A xor 0C xor 數字63h最後結果
xor bl, dl
xor bl, 63h
mov dl, bl
mov al, dl
shr al, 4
;高四位
add al, 30h
cmp al, 39h
mov byte ptr esp_04, al
jbe RA_0E4BC
add al, 7
mov byte ptr esp_04, al
RA_0E4BC:
and dl, 0Fh
;低四位
add dl, 30h
cmp dl, 39h
mov byte ptr esp_08, dl
jbe RA_0E4D2
add dl, 7
mov byte ptr esp_08, dl
RA_0E4D2:
mov byte ptr [ecx+1Eh],dl ;ecx+1D 標誌7*************
mov al,esp_04
mov byte ptr [ecx+1Dh],al ;ecx+1E 標誌8************
;**************************************************************
;****************************************************************partII,修正
lea ebx,Serial ;//add the
interface
mov al, byte ptr [ebx+0Fh]
add al, byte ptr [ebx+10h]
add al, byte ptr [ebx+11h]
add al, byte ptr [ebx+12h]
add al, byte ptr [ebx+15h]
add al, byte ptr [ebx+16h]
add al, byte ptr [ebx+17h]
add al, byte ptr [ebx+19h]
xor al, byte ptr [ebx]
;add them ->al與0x46,ebx+5,0C,8,5位依次xor,再與0x58,0x3D xor
xor al, byte ptr [ebx+5]
xor al, byte ptr [ebx+8]
xor al, byte ptr [ebx+0Ch]
xor al, 58h
xor al, 3Dh
mov ah, al
shr al, 4
add al, 30h
cmp al, 39h
jbe RA_01BF2 ;convert high and low part to ascII
add al, 7
RA_01BF2:
and ah, 0Fh
add ah, 30h
cmp ah, 39h
jbe RA_01C00
add ah, 7
RA_01C00:
mov byte ptr [ebx+13h], al ;ebx+13==high
mov byte ptr [ebx+14h], ah ;ebx+14==low
;+++++++++++++++++++++++++++++++++++++++++++++++++++++
mov al, byte ptr [ebx]
add al, byte ptr [ebx+0Ah] ;'F' xor ebx+01,2,3,8,9,13,14
xor 0x18->al
xor al, byte ptr [ebx+01h]
xor al, byte ptr [ebx+02h]
xor al, byte ptr [ebx+03h]
xor al, byte ptr [ebx+08h]
xor al, byte ptr [ebx+09h]
xor al, byte ptr [ebx+13h]
xor al, byte ptr [ebx+14h]
xor al, 18h
mov ah, al
shr al, 04h
add al, 30h
cmp al, 39h
jbe RA_01C2F
add al, 07h
RA_01C2F:
and ah, 0Fh
add ah, 30h
cmp ah, 39h
jbe RA_01C3D
add ah, 07h
RA_01C3D:
mov byte ptr [ebx+1Ah], al ;ebx+1A==high
mov byte ptr [ebx+1Bh], ah ;ebx+1B==low part
;+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
mov al, byte ptr [ebx+13h]
xor al, byte ptr [ebx+14h]
xor al, byte ptr [ebx+05h]
xor al, byte ptr [ebx+06h] ;ebx+13,14,5,6 xor 0xAB->al
xor al, 0ABh
mov ah, al
shr al, 04h
add al, 30h
cmp al, 39h
jbe RA_01C5E
add al, 07h
RA_01C5E:
and ah, 0Fh
add ah, 30h
cmp ah, 39h
jbe RA_01C6C
add ah, 07h
RA_01C6C:
mov byte ptr [ebx+0Eh], al ;ebx+0E==high
mov byte ptr [ebx+18h], ah ;ebx+18==Low
;++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
mov al, byte ptr [ebx+1Ah] ;ebx+1A,1B,0C xor 0x 63
xor al, byte ptr [ebx+1Bh]
xor al, byte ptr [ebx+0Ch]
xor al, 63h
mov ah, al
shr al, 04h
add al, 30h
cmp al, 39h
jbe RA_01C8A
add al,7
RA_01C8A:
and ah, 0Fh
add ah, 30h
cmp ah, 39h
jbe RA_01C98
add ah,7
RA_01C98:
mov byte ptr [ebx+1Dh], al ;ebx+1D==high
mov byte ptr [ebx+1Eh], ah ;ebx+1E==Low
;+++++++++++++++++++++++++++++++++++++++++++++++++++ over!!!!!!!!!!!!!!
POPAD
Cal endp
randomize proc
pushad
mov ebx,[esp+10h]
mov rand_init,bl
popad
ret
randomize endp
rand proc range
LOCAL @stime:SYSTEMTIME
pushad
invoke GetSystemTime,addr @stime
mov eax,range
.if ah==al
mov bl,al
jmp rand_exit
.endif
mov bx,@stime.wMilliseconds
mov ecx,1000
randlop:dec ecx
jnz next
mov bl,38h
jmp rand_exit
next:
add bh,bl
add bl,rand_init
add bl,2
cmp bl,al
jb randlop
cmp bl,ah
ja randlop
rand_exit:
add rand_init,3
mov rand_out,bl
popad
ret
rand endp
相關文章
- 破解accoustica
2.21(帶序號產生器)----讓高手見笑了:) (11千字)2002-03-31
- 續未完成破解,寫出它的序號產生器,3k。。。 (8千字)2001-07-09
- winzip序號產生器 (1千字)2001-04-12
- 美萍安全衛士V8.45序號產生器制作分析過程,及序號產生器! (11千字)2001-10-28
- NetTalk破解與序號產生器(高手勿進) (10千字)2001-09-20
- 序號產生器制分析: (1千字)2001-11-19
- Resource
Builder 1.1.0 完全破解~~附彙編序號產生器 (10千字)2015-11-15UI
- 網頁加密器(HTMLEncryptor1.1)破解及序號產生器 (1千字)2001-04-22網頁加密HTML
- AlgoLab PtVector的破解及序號產生器的編寫 (17千字)2001-05-04Go
- 一個CrackMe的破解以及序號產生器的製作
(4千字)2001-08-16
- 文書處理大師 3.0 破解~~~附序號產生器 (17千字)2002-03-24
- 3DAxy貪吃蛇 AxySnake 破解與序號產生器 (21千字)2015-11-153D
- winzip的通用序號產生器 (2千字)2001-12-10
- Kalua Cocktails 1.1完全破解,內附彙編序號產生器(用序號產生器編寫器,並有它的使用教程)
(22千字)2002-02-27AI
- xplorer2之破解和序號產生器2004-12-05
- 010
Editorv1.3破解(序號產生器)2004-05-17
- 序號產生器合集2024-03-17
- SWF探索者XP 1.2(swfexplorer)破解+分析+序號產生器
(18千字)2002-04-14
- UltraEdit-32 8.10.1.0的破解及序號產生器的生成 (15千字)2001-05-15
- KEYGENNING4NEWBIES #7破解過程+序號產生器 (6千字)2001-08-21
- Gif2Swf Ver 2.1 TC20序號產生器 && MASM32序號產生器 (4千字)2001-12-10ASM
- 貼彩虹狗破解工具的序號產生器 (727字)2001-07-01
- Pexplorer 1.70 完全破解(KeyFile&Name+Code),附序號產生器~~~~~~~~~
(17千字)2002-04-03
- 《中華壓縮 6.01》註冊碼破解及序號產生器 (14千字)2001-08-19
- supercapture3.0的版序號產生器!
(4千字)2002-04-23APT
- IrfanView 序號產生器分析(初級版)
(13千字)2015-11-15View
- 製作mIRC6.02序號產生器(給別人寫的初學者序號產生器教材) (14千字)2015-11-15
- 音樂處理acoustica2.0註冊碼破解及序號產生器 (8千字)2002-04-06
- EmEditor V3.29和它的序號產生器 (12千字)2015-11-15
- Myeclipse 6.5 序號產生器2020-04-06Eclipse
- hellfire2000破解過程及序號產生器的編寫(上) (4千字)2001-01-19
- MP3 explorer 破解和序號產生器的製作2015-11-15
- 檔案密使2.0暴力破解及序號產生器的編寫―好久沒寫過東西了。 (11千字)2001-07-10
- HappyIcon序號產生器TC原始碼 (1千字)2001-04-08APP原始碼
- 橋牌軟體Deep Finesse的序號產生器 (1千字)2015-11-15
- 用KEYMAKE製作記憶體序號產生器特殊一例
(11千字)2015-11-15記憶體
- 分享一個navicat序號產生器2024-04-02
- win10如何執行序號產生器_win10怎麼執行序號產生器2020-08-28Win10