某CC验证FZ求助

殷小密 · 发表于 2015-10-18 00:08

程序是CC验证一开始我也不知道 OD里面扔发现是CC
易语言程序

这个是程序的登陆窗口
可以在这里断下来 C2 04 00 55 8B EC 81 EC 1C 00 00 00 C7 45 FC 00 00 00 00 C7 45 F8 00 00 00 00 C7 45 F4 00 00 00
00 C7 45 F0 00 00 00 00 C7 45 EC 00 00 00 00 68 01 01 00 A0 6A 00

像这样然后单步
、0040E1F5 3BC8          cmp ecx,eax
0040E1F7 0F8F 58090000 jg 霸主多开.0040EB55             单步到这里这个跳会实现  我 nop掉不会弹出失败窗口但是停留在服务器登陆中
0040E1FD 6A 00          push 0x0
0040E1FF 68 01000000    push 0x1
0040E204 6A FF          push -0x1
0040E206 6A 06          push 0x6
0040E208 68 06240116    push 0x16012406
0040E20D 68 01000152    push 0x52010001
0040E212 E8 33410000    call 霸主多开.0041234A
0040E217 83C4 18       add esp,0x18
0040E21A 68 E1464E00    push 霸主多开.004E46E1                      ; ASCII "]登陆服务器中..."
0040E21F FF35 74196200 push dword ptr ds:[0x621974]
0040E225 68 F2464E00    push 霸主多开.004E46F2
0040E22A B9 03000000    mov ecx,0x3
0040E22F E8 D82EFFFF    call 霸主多开.0040110C
0040E234 83C4 0C       add esp,0xC
0040E237 8945 E4       mov dword ptr ss:[ebp-0x1C],eax
0040E23A 68 04000080    push 0x80000004
0040E23F 6A 00          push 0x0
0040E241 8B45 E4       mov eax,dword ptr ss:[ebp-0x1C]
0040E244 85C0          test eax,eax
0040E246 75 05          jnz short 霸主多开.0040E24D
0040E248 B8 1CB34D00    mov eax,霸主多开.004DB31C
0040E24D 50             push eax
0040E24E 68 01030080    push 0x80000301
0040E253 6A 00          push 0x0
0040E255 68 01000000    push 0x1
0040E25A 68 02000700    push 0x70002
0040E25F 68 10240116    push 0x16012410
0040E264 68 01000152    push 0x52010001
0040E269 68 03000000    push 0x3
0040E26E B8 06000000    mov eax,0x6
0040E273 BB 402F4800    mov ebx,霸主多开.00482F40
0040E278 E8 D3400000    call 霸主多开.00412350
0040E27D 83C4 28       add esp,0x28
0040E280 8B5D E4       mov ebx,dword ptr ss:[ebp-0x1C]
0040E283 85DB          test ebx,ebx
0040E285 74 09          je short 霸主多开.0040E290
0040E287 53             push ebx
0040E288 E8 AB400000    call 霸主多开.00412338
0040E28D 83C4 04       add esp,0x4
0040E290 6A FF          push -0x1
0040E292 6A 08          push 0x8
0040E294 68 08240116    push 0x16012408
0040E299 68 01000152    push 0x52010001
0040E29E E8 B3400000    call 霸主多开.00412356
0040E2A3 83C4 10       add esp,0x10
0040E2A6 8945 E4       mov dword ptr ss:[ebp-0x1C],eax
0040E2A9 8B45 E4       mov eax,dword ptr ss:[ebp-0x1C]
0040E2AC 50             push eax
0040E2AD 8B1D 18196200 mov ebx,dword ptr ds:[0x621918]
0040E2B3 85DB          test ebx,ebx
0040E2B5 74 09          je short 霸主多开.0040E2C0
0040E2B7 53             push ebx
0040E2B8 E8 7B400000    call 霸主多开.00412338
0040E2BD 83C4 04       add esp,0x4
0040E2C0 58             pop eax
0040E2C1 A3 18196200    mov dword ptr ds:[0x621918],eax
0040E2C6 B8 A5374E00    mov eax,霸主多开.004E37A5                   ; ASCII "ercidenglu."
0040E2CB 50             push eax
0040E2CC 8B1D 80196200 mov ebx,dword ptr ds:[0x621980]
0040E2D2 85DB          test ebx,ebx
0040E2D4 74 09          je short 霸主多开.0040E2DF
0040E2D6 53             push ebx
0040E2D7 E8 5C400000    call 霸主多开.00412338
0040E2DC 83C4 04       add esp,0x4
0040E2DF 58             pop eax
0040E2E0 A3 80196200    mov dword ptr ds:[0x621980],eax
0040E2E5 B8 F4464E00    mov eax,霸主多开.004E46F4                   ; ASCII "erci9jm"
0040E2EA 8945 E4       mov dword ptr ss:[ebp-0x1C],eax
0040E2ED 8D45 E4       lea eax,dword ptr ss:[ebp-0x1C]
0040E2F0 50             push eax
0040E2F1 E8 B745FFFF    call 霸主多开.004028AD
0040E2F6 8945 E0       mov dword ptr ss:[ebp-0x20],eax
0040E2F9 8B5D E4       mov ebx,dword ptr ss:[ebp-0x1C]
0040E2FC 85DB          test ebx,ebx
0040E2FE 74 09          je short 霸主多开.0040E309
0040E300 53             push ebx
0040E301 E8 32400000    call 霸主多开.00412338
0040E306 83C4 04       add esp,0x4
0040E309 6A FF          push -0x1
0040E30B 6A 08          push 0x8
0040E30D 68 07240116    push 0x16012407
0040E312 68 01000152    push 0x52010001
0040E317 E8 3A400000    call 霸主多开.00412356
0040E31C 83C4 10       add esp,0x10
0040E31F 8945 DC       mov dword ptr ss:[ebp-0x24],eax
0040E322 6A 01          push 0x1
0040E324 8D45 FC       lea eax,dword ptr ss:[ebp-0x4]
0040E327 50             push eax
0040E328 8D45 DC       lea eax,dword ptr ss:[ebp-0x24]
0040E32B 50             push eax
0040E32C E8 1B5BFFFF    call 霸主多开.00403E4C
0040E331 8945 D8       mov dword ptr ss:[ebp-0x28],eax
0040E334 8B5D DC       mov ebx,dword ptr ss:[ebp-0x24]
0040E337 85DB          test ebx,ebx
0040E339 74 09          je short 霸主多开.0040E344
0040E33B 53             push ebx
0040E33C E8 F73F0000    call 霸主多开.00412338
0040E341 83C4 04       add esp,0x4
0040E344 6A 01          push 0x1
0040E346 8D45 FC       lea eax,dword ptr ss:[ebp-0x4]
0040E349 50             push eax
0040E34A 68 0C196200    push 霸主多开.0062190C
0040E34F E8 F85AFFFF    call 霸主多开.00403E4C
0040E354 8945 D4       mov dword ptr ss:[ebp-0x2C],eax
0040E357 6A FF          push -0x1
0040E359 6A 08          push 0x8
0040E35B 68 08240116    push 0x16012408
0040E360 68 01000152    push 0x52010001
0040E365 E8 EC3F0000    call 霸主多开.00412356
0040E36D 8945 D0       mov dword ptr ss:[ebp-0x30],eax
0040E370 FF75 D4       push dword ptr ss:[ebp-0x2C]
0040E373 68 AF464E00    push 霸主多开.004E46AF                      ; ASCII "&key="
0040E378 FF75 D8       push dword ptr ss:[ebp-0x28]
0040E37B 68 0C324E00    push 霸主多开.004E320C                      ; ASCII "&p="
0040E380 FF75 D0       push dword ptr ss:[ebp-0x30]
0040E383 68 10324E00    push 霸主多开.004E3210                      ; ASCII "&u="
0040E388 FF75 E0       push dword ptr ss:[ebp-0x20]
0040E38B 68 FC464E00    push 霸主多开.004E46FC                      ; ASCII "dengluer.asp?yanzheng="
0040E390 FF35 00196200 push dword ptr ds:[0x621900]          ; 霸主多开.004E4215
0040E396 B9 09000000    mov ecx,0x9
0040E39B E8 6C2DFFFF    call 霸主多开.0040110C
0040E3A0 83C4 24       add esp,0x24
0040E3A3 8945 CC       mov dword ptr ss:[ebp-0x34],eax
0040E3A6 8B5D E0       mov ebx,dword ptr ss:[ebp-0x20]
0040E3A9 85DB          test ebx,ebx

  上面跳Nop 掉单步到这- - 下面有个跳会跳过功能 DLL
0040E7E9 3BC8          cmp ecx,eax
0040E7EB 0F8F BD020000 jg 霸主多开.0040EAAE    到这里会跳过功能DLL 我也Nop了但是也没啥反应
0040E7F1 C705 84196200 0>mov dword ptr ds:[0x621984],0x1
0040E7FB 68 13474E00    push 霸主多开.004E4713                      ; ASCII "\hxbz.dll"
0040E800 FF35 40196200 push dword ptr ds:[0x621940]
0040E806 B9 02000000    mov ecx,0x2
0040E80B E8 FC28FFFF    call 霸主多开.0040110C
0040E810 83C4 08       add esp,0x8
0040E813 8945 E4       mov dword ptr ss:[ebp-0x1C],eax
0040E816 68 05000080    push 0x80000005
0040E81B 6A 00          push 0x0
0040E81D 68 1D474E00    push 霸主多开.004E471D
0040E822 68 04000080    push 0x80000004
0040E827 6A 00          push 0x0
0040E829 8B45 E4       mov eax,dword ptr ss:[ebp-0x1C]
0040E82C 85C0          test eax,eax
0040E82E 75 05          jnz short 霸主多开.0040E835
0040E830 B8 1CB34D00    mov eax,霸主多开.004DB31C
0040E835 50             push eax
0040E836 68 02000000    push 0x2
0040E83B BB 50414100    mov ebx,霸主多开.00414150
0040E840 E8 FF3A0000    call 霸主多开.00412344
0040E845 83C4 1C       add esp,0x1C
0040E848 8B5D E4       mov ebx,dword ptr ss:[ebp-0x1C]
0040E84B 85DB          test ebx,ebx
0040E84D 74 09          je short 霸主多开.0040E858
0040E84F 53             push ebx
0040E850 E8 E33A0000    call 霸主多开.00412338
0040E855 83C4 04       add esp,0x4
0040E858 68 01030080    push 0x80000301
0040E85D 6A 00          push 0x0

- - 有哪个大大能出个教程么  我不是要逆向的软件我想看看是怎么破的学习一下我是小白补上软件链接吧
链接：http://pan.baidu.com/s/1bnuODDd 密码：pi39    要是有大大能出个教程非常感谢

殷小密 · 发表于 2015-10-18 08:34

没人么。。

Coralsea · 发表于 2015-10-18 14:08

华夏的FZ 期待大牛发教程

dean、zhttty · 发表于 2015-10-18 19:36

本帖最后由 dean、zhttty 于 2015-10-18 22:03 编辑

下面有个JMP又跳回去了。一直循环循环。是不是中间还有什么各种暗装啊。。。
我跟了一遍又一遍。要死要死。。。不玩了。菜B伤不起
我有种感觉。你把它TMD壳脱了一切就明了啦。。。
菜鸡飘过。。膜拜楼主。
脱完@下我。

		自动登录	找回密码
密码			立即注册

某CC验证FZ求助

评分