billing:Legal Billing 6.0.5.4 简单爆破(图)来源: 发布时间:星期四, 2009年3月12日 浏览:0次 评论:0
【破文作者】 tigerisme
【破解工具】 PEiD,dede,OD 【破解平台】 windows sp2 【软件Software名称】 Legal Billing 6.0.5.4 【软件Software大小】 1820KB 【原版下载】 http://www.onlinedown.net/soft/33242.htm 【保护方式】注册码 【软件Software介绍】 ![]() ![]() ![]() ![]() ![]() ![]() ![]() 记录提供报告和客户基本介绍说明 ![]() 【破解过程】 因基础教程制作 ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() 言归正题 ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() 第 ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() 第 2步:找入口点 ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() 用 DEDE 加载 LegalBilling.exe ![]() ![]() ![]() ![]() ![]() 第 3步: 有了 006165B4 我们还等什么 ![]() ![]() ![]() ![]() 006165B4 55 push ebp 分析入口点 006165B5 8BEC mov ebp,esp 006165B7 6A 00 push 0 006165B9 6A 00 push 0 006165BB 6A 00 push 0 006165BD 53 push ebx 006165BE 8BD8 mov ebx,eax 006165C0 33C0 xor eax,eax 006165C2 55 push ebp 006165C3 68 AB666100 push 006166AB 006165C8 64:FF30 push dword ptr fs :[ eax ] 006165CB 64:8920 mov dword ptr fs :[ eax ],esp 006165CE 837B 0C 03 cmp dword ptr ds :[ ebx+C ],3 006165D2 7E 16 jle ![]() 006165D4 B8 C0666100 mov eax,006166C0 ; ASCII "Too many invalid attempts." 006165D9 E8 820EE7FF call 00487460 006165DE A1 1C396600 mov eax,dword ptr ds :[66391C] 006165E3 8B00 mov eax,dword ptr ds :[eax ] 006165E5 E8 D2F7E9FF call 004B5DBC 006165EA 8D45 F8 lea eax,dword ptr ss :[ebp-8] 006165ED 50 push eax 006165EE 68 E4666100 push 006166E4 ; ASCII "Please enter the password provided to you" 006165F3 A1 E0346600 mov eax,dword ptr ds :[6634E0] 006165F8 FF30 push dword ptr ds :[ eax ] 006165FA 68 18676100 push 00616718 ; ASCII "by Chaos Software that you received when" 006165FF A1 E0346600 mov eax,dword ptr ds :[6634E0] 00616604 FF30 push dword ptr ds :[ eax ] 00616606 68 4C676100 push 0061674C ; ASCII "you purchased this product" 0061660B 8D45 F4 lea eax,dword ptr ss :[ebp -C] 0061660E BA 05000000 mov edx,5 00616613 E8 B4F3DEFF call 004059CC 00616618 8B55 F4 mov edx,dword ptr ss :[ebp -C] 0061661B 33C9 xor ecx,ecx 0061661D B8 70676100 mov eax,00616770 ; ASCII "License Passcode " 00616622 E8 7911E7FF call 004877A0 到这里时就让你填注册码了:) 00616627 8B45 F8 mov eax,dword ptr ss :[ebp-8] 0061662A 8D55 FC lea edx,dword ptr ss :[ebp-4] ; 这里可以看到试练码 0061662D E8 AA3EDFFF call 0040A4DC 00616632 8B45 FC mov eax,dword ptr ss :[ebp-4] ; 试练码放 ebp-4 中 ![]() 00616635 BA 8C676100 mov edx,0061678C ; ASCII "law" 0061663A E8 19F4DEFF call 00405A58 ; 关键 call ![]() ![]() 0061663F 75 42 jnz ![]() ![]() ![]() ![]() ![]() ![]() ![]() 00616641 68 FF000000 push 0FF 00616646 B9 98676100 mov ecx,00616798 ; ASCII "License" 0061664B BA A8676100 mov edx,006167A8 ; ASCII "Software\Chaos Software Group\Legal Billing" 注册信息保存地址 00616650 B8 02000080 mov eax,80000002 00616655 E8 7289FEFF call 005FEFCC 0061665A BA DC676100 mov edx,006167DC ; ASCII "Licensed Version" 0061665F 8B83 74030000 mov eax,dword ptr ds :[ebx+374] 00616665 E8 4A11E8FF call 004977B4 0061666A 33D2 xor edx,edx 0061666C 8B83 78030000 mov eax,dword ptr ds :[ebx+378] 00616672 E8 2D10E8FF call 004976A4 00616677 B8 F8676100 mov eax,006167F8 ; ASCII "Thank you! We very much appreciate your support." 0061667C E8 DF0DE7FF call 00487460 00616681 EB 0D jmp ![]() 00616683 B8 34686100 mov eax,00616834 ; ASCII "Invalid Password" 00616688 E8 D30DE7FF call 00487460 0061668D FF43 0C inc dword ptr ds :[ ebx+C ] 00616690 33C0 xor eax,eax 00616692 5A pop edx 00616693 59 pop ecx 00616694 59 pop ecx 00616695 64:8910 mov dword ptr fs :[ eax ],edx 00616698 68 B2666100 push 006166B2 0061669D 8D45 F4 lea eax,dword ptr ss :[ebp -C] 006166A0 BA 03000000 mov edx,3 006166A5 E8 A6EFDEFF call 00405650 006166AA C3 retn ![]() ![]() 【破解整理总结】 至此 ![]() ![]() ![]() 该软件Software注册信息保存在 HKEY_LOCAL_MACHINE\SOFTWARE\Chaos Software Group\Legal Billing 中 ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() 【版权声明】飘云阁 (http://bbs.chinapyg.com ) 版权所有 ![]() ![]() ![]() 006165B4 55 push ebp 分析入口点 006165B5 8BEC mov ebp,esp 006165B7 6A 00 push 0 006165B9 6A 00 push 0 006165BB 6A 00 push 0 006165BD 53 push ebx 006165BE 8BD8 mov ebx,eax 006165C0 33C0 xor eax,eax 006165C2 55 push ebp 006165C3 68 AB666100 push 006166AB 006165C8 64:FF30 push dword ptr fs :[ eax ] 006165CB 64:8920 mov dword ptr fs :[ eax ],esp 006165CE 837B 0C 03 cmp dword ptr ds :[ ebx+C ],3 006165D2 7E 16 jle ![]() 006165D4 B8 C0666100 mov eax,006166C0 ; ASCII "Too many invalid attempts." 006165D9 E8 820EE7FF call 00487460 006165DE A1 1C396600 mov eax,dword ptr ds :[66391C] 006165E3 8B00 mov eax,dword ptr ds :[eax ] 006165E5 E8 D2F7E9FF call 004B5DBC 006165EA 8D45 F8 lea eax,dword ptr ss :[ebp-8] 006165ED 50 push eax 006165EE 68 E4666100 push 006166E4 ; ASCII "Please enter the password provided to you" 006165F3 A1 E0346600 mov eax,dword ptr ds :[6634E0] 006165F8 FF30 push dword ptr ds :[ eax ] 006165FA 68 18676100 push 00616718 ; ASCII "by Chaos Software that you received when" 006165FF A1 E0346600 mov eax,dword ptr ds :[6634E0] 00616604 FF30 push dword ptr ds :[ eax ] 00616606 68 4C676100 push 0061674C ; ASCII "you purchased this product" 0061660B 8D45 F4 lea eax,dword ptr ss :[ebp -C] 0061660E BA 05000000 mov edx,5 00616613 E8 B4F3DEFF call 004059CC 00616618 8B55 F4 mov edx,dword ptr ss :[ebp -C] 0061661B 33C9 xor ecx,ecx 0061661D B8 70676100 mov eax,00616770 ; ASCII "License Passcode " 00616622 E8 7911E7FF call 004877A0 到这里时就让你填注册码了:) 00616627 8B45 F8 mov eax,dword ptr ss :[ebp-8] 0061662A 8D55 FC lea edx,dword ptr ss :[ebp-4] ; 这里可以看到试练码 0061662D E8 AA3EDFFF call 0040A4DC 00616632 8B45 FC mov eax,dword ptr ss :[ebp-4] ; 试练码放 ebp-4 中 ![]() 00616635 BA 8C676100 mov edx,0061678C ; ASCII "law" 0061663A E8 19F4DEFF call 00405A58 ; 关键 call ![]() ![]() 0061663F 75 42 jnz ![]() ![]() ![]() ![]() ![]() ![]() ![]() 00616641 68 FF000000 push 0FF 00616646 B9 98676100 mov ecx,00616798 ; ASCII "License" 0061664B BA A8676100 mov edx,006167A8 ; ASCII "Software\Chaos Software Group\Legal Billing" 注册信息保存地址 00616650 B8 02000080 mov eax,80000002 00616655 E8 7289FEFF call 005FEFCC 0061665A BA DC676100 mov edx,006167DC ; ASCII "Licensed Version" 0061665F 8B83 74030000 mov eax,dword ptr ds :[ebx+374] 00616665 E8 4A11E8FF call 004977B4 0061666A 33D2 xor edx,edx 0061666C 8B83 78030000 mov eax,dword ptr ds :[ebx+378] 00616672 E8 2D10E8FF call 004976A4 00616677 B8 F8676100 mov eax,006167F8 ; ASCII "Thank you! We very much appreciate your support." 0061667C E8 DF0DE7FF call 00487460 00616681 EB 0D jmp ![]() 00616683 B8 34686100 mov eax,00616834 ; ASCII "Invalid Password" 00616688 E8 D30DE7FF call 00487460 0061668D FF43 0C inc dword ptr ds :[ ebx+C ] 00616690 33C0 xor eax,eax 00616692 5A pop edx 00616693 59 pop ecx 00616694 59 pop ecx 00616695 64:8910 mov dword ptr fs :[ eax ],edx 00616698 68 B2666100 push 006166B2 0061669D 8D45 F4 lea eax,dword ptr ss :[ebp -C] 006166A0 BA 03000000 mov edx,3 006166A5 E8 A6EFDEFF call 00405650 006166AA C3 retn ![]() ![]() 【破解整理总结】 至此 ![]() ![]() ![]() 该软件Software注册信息保存在 HKEY_LOCAL_MACHINE\SOFTWARE\Chaos Software Group\Legal Billing 中 ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() 【版权声明】飘云阁 (http://bbs.chinapyg.com ) 版权所有 ![]() ![]() ![]() 0
相关文章读者评论发表评论 |
|