程序是CC验证 一开始我也不知道 OD里面扔 发现是CC
易语言程序
这个是 程序的登陆窗口
可以在这里断下来 C2 04 00 55 8B EC 81 EC 1C 00 00 00 C7 45 FC 00 00 00 00 C7 45 F8 00 00 00 00 C7 45 F4 00 00 00
00 C7 45 F0 00 00 00 00 C7 45 EC 00 00 00 00 68 01 01 00 A0 6A 00
像这样 然后单步
、0040E1F5 3BC8 cmp ecx,eax
0040E1F7 0F8F 58090000 jg 霸主多开.0040EB55 单步到这里 这个跳会实现 我 nop掉 不会弹出失败窗口 但是停留在 服务器登陆中
0040E1FD 6A 00 push 0x0
0040E1FF 68 01000000 push 0x1
0040E204 6A FF push -0x1
0040E206 6A 06 push 0x6
0040E208 68 06240116 push 0x16012406
0040E20D 68 01000152 push 0x52010001
0040E212 E8 33410000 call 霸主多开.0041234A
0040E217 83C4 18 add esp,0x18
0040E21A 68 E1464E00 push 霸主多开.004E46E1 ; ASCII "]登陆服务器中..."
0040E21F FF35 74196200 push dword ptr ds:[0x621974]
0040E225 68 F2464E00 push 霸主多开.004E46F2
0040E22A B9 03000000 mov ecx,0x3
0040E22F E8 D82EFFFF call 霸主多开.0040110C
0040E234 83C4 0C add esp,0xC
0040E237 8945 E4 mov dword ptr ss:[ebp-0x1C],eax
0040E23A 68 04000080 push 0x80000004
0040E23F 6A 00 push 0x0
0040E241 8B45 E4 mov eax,dword ptr ss:[ebp-0x1C]
0040E244 85C0 test eax,eax
0040E246 75 05 jnz short 霸主多开.0040E24D
0040E248 B8 1CB34D00 mov eax,霸主多开.004DB31C
0040E24D 50 push eax
0040E24E 68 01030080 push 0x80000301
0040E253 6A 00 push 0x0
0040E255 68 01000000 push 0x1
0040E25A 68 02000700 push 0x70002
0040E25F 68 10240116 push 0x16012410
0040E264 68 01000152 push 0x52010001
0040E269 68 03000000 push 0x3
0040E26E B8 06000000 mov eax,0x6
0040E273 BB 402F4800 mov ebx,霸主多开.00482F40
0040E278 E8 D3400000 call 霸主多开.00412350
0040E27D 83C4 28 add esp,0x28
0040E280 8B5D E4 mov ebx,dword ptr ss:[ebp-0x1C]
0040E283 85DB test ebx,ebx
0040E285 74 09 je short 霸主多开.0040E290
0040E287 53 push ebx
0040E288 E8 AB400000 call 霸主多开.00412338
0040E28D 83C4 04 add esp,0x4
0040E290 6A FF push -0x1
0040E292 6A 08 push 0x8
0040E294 68 08240116 push 0x16012408
0040E299 68 01000152 push 0x52010001
0040E29E E8 B3400000 call 霸主多开.00412356
0040E2A3 83C4 10 add esp,0x10
0040E2A6 8945 E4 mov dword ptr ss:[ebp-0x1C],eax
0040E2A9 8B45 E4 mov eax,dword ptr ss:[ebp-0x1C]
0040E2AC 50 push eax
0040E2AD 8B1D 18196200 mov ebx,dword ptr ds:[0x621918]
0040E2B3 85DB test ebx,ebx
0040E2B5 74 09 je short 霸主多开.0040E2C0
0040E2B7 53 push ebx
0040E2B8 E8 7B400000 call 霸主多开.00412338
0040E2BD 83C4 04 add esp,0x4
0040E2C0 58 pop eax
0040E2C1 A3 18196200 mov dword ptr ds:[0x621918],eax
0040E2C6 B8 A5374E00 mov eax,霸主多开.004E37A5 ; ASCII "ercidenglu."
0040E2CB 50 push eax
0040E2CC 8B1D 80196200 mov ebx,dword ptr ds:[0x621980]
0040E2D2 85DB test ebx,ebx
0040E2D4 74 09 je short 霸主多开.0040E2DF
0040E2D6 53 push ebx
0040E2D7 E8 5C400000 call 霸主多开.00412338
0040E2DC 83C4 04 add esp,0x4
0040E2DF 58 pop eax
0040E2E0 A3 80196200 mov dword ptr ds:[0x621980],eax
0040E2E5 B8 F4464E00 mov eax,霸主多开.004E46F4 ; ASCII "erci9jm"
0040E2EA 8945 E4 mov dword ptr ss:[ebp-0x1C],eax
0040E2ED 8D45 E4 lea eax,dword ptr ss:[ebp-0x1C]
0040E2F0 50 push eax
0040E2F1 E8 B745FFFF call 霸主多开.004028AD
0040E2F6 8945 E0 mov dword ptr ss:[ebp-0x20],eax
0040E2F9 8B5D E4 mov ebx,dword ptr ss:[ebp-0x1C]
0040E2FC 85DB test ebx,ebx
0040E2FE 74 09 je short 霸主多开.0040E309
0040E300 53 push ebx
0040E301 E8 32400000 call 霸主多开.00412338
0040E306 83C4 04 add esp,0x4
0040E309 6A FF push -0x1
0040E30B 6A 08 push 0x8
0040E30D 68 07240116 push 0x16012407
0040E312 68 01000152 push 0x52010001
0040E317 E8 3A400000 call 霸主多开.00412356
0040E31C 83C4 10 add esp,0x10
0040E31F 8945 DC mov dword ptr ss:[ebp-0x24],eax
0040E322 6A 01 push 0x1
0040E324 8D45 FC lea eax,dword ptr ss:[ebp-0x4]
0040E327 50 push eax
0040E328 8D45 DC lea eax,dword ptr ss:[ebp-0x24]
0040E32B 50 push eax
0040E32C E8 1B5BFFFF call 霸主多开.00403E4C
0040E331 8945 D8 mov dword ptr ss:[ebp-0x28],eax
0040E334 8B5D DC mov ebx,dword ptr ss:[ebp-0x24]
0040E337 85DB test ebx,ebx
0040E339 74 09 je short 霸主多开.0040E344
0040E33B 53 push ebx
0040E33C E8 F73F0000 call 霸主多开.00412338
0040E341 83C4 04 add esp,0x4
0040E344 6A 01 push 0x1
0040E346 8D45 FC lea eax,dword ptr ss:[ebp-0x4]
0040E349 50 push eax
0040E34A 68 0C196200 push 霸主多开.0062190C
0040E34F E8 F85AFFFF call 霸主多开.00403E4C
0040E354 8945 D4 mov dword ptr ss:[ebp-0x2C],eax
0040E357 6A FF push -0x1
0040E359 6A 08 push 0x8
0040E35B 68 08240116 push 0x16012408
0040E360 68 01000152 push 0x52010001
0040E365 E8 EC3F0000 call 霸主多开.00412356
0040E36D 8945 D0 mov dword ptr ss:[ebp-0x30],eax
0040E370 FF75 D4 push dword ptr ss:[ebp-0x2C]
0040E373 68 AF464E00 push 霸主多开.004E46AF ; ASCII "&key="
0040E378 FF75 D8 push dword ptr ss:[ebp-0x28]
0040E37B 68 0C324E00 push 霸主多开.004E320C ; ASCII "&p="
0040E380 FF75 D0 push dword ptr ss:[ebp-0x30]
0040E383 68 10324E00 push 霸主多开.004E3210 ; ASCII "&u="
0040E388 FF75 E0 push dword ptr ss:[ebp-0x20]
0040E38B 68 FC464E00 push 霸主多开.004E46FC ; ASCII "dengluer.asp?yanzheng="
0040E390 FF35 00196200 push dword ptr ds:[0x621900] ; 霸主多开.004E4215
0040E396 B9 09000000 mov ecx,0x9
0040E39B E8 6C2DFFFF call 霸主多开.0040110C
0040E3A0 83C4 24 add esp,0x24
0040E3A3 8945 CC mov dword ptr ss:[ebp-0x34],eax
0040E3A6 8B5D E0 mov ebx,dword ptr ss:[ebp-0x20]
0040E3A9 85DB test ebx,ebx
上面跳Nop 掉 单步到这- - 下面 有个跳 会跳过 功能 DLL
0040E7E9 3BC8 cmp ecx,eax
0040E7EB 0F8F BD020000 jg 霸主多开.0040EAAE 到这里会跳过功能DLL 我也Nop了但是 也没啥反应
0040E7F1 C705 84196200 0>mov dword ptr ds:[0x621984],0x1
0040E7FB 68 13474E00 push 霸主多开.004E4713 ; ASCII "\hxbz.dll"
0040E800 FF35 40196200 push dword ptr ds:[0x621940]
0040E806 B9 02000000 mov ecx,0x2
0040E80B E8 FC28FFFF call 霸主多开.0040110C
0040E810 83C4 08 add esp,0x8
0040E813 8945 E4 mov dword ptr ss:[ebp-0x1C],eax
0040E816 68 05000080 push 0x80000005
0040E81B 6A 00 push 0x0
0040E81D 68 1D474E00 push 霸主多开.004E471D
0040E822 68 04000080 push 0x80000004
0040E827 6A 00 push 0x0
0040E829 8B45 E4 mov eax,dword ptr ss:[ebp-0x1C]
0040E82C 85C0 test eax,eax
0040E82E 75 05 jnz short 霸主多开.0040E835
0040E830 B8 1CB34D00 mov eax,霸主多开.004DB31C
0040E835 50 push eax
0040E836 68 02000000 push 0x2
0040E83B BB 50414100 mov ebx,霸主多开.00414150
0040E840 E8 FF3A0000 call 霸主多开.00412344
0040E845 83C4 1C add esp,0x1C
0040E848 8B5D E4 mov ebx,dword ptr ss:[ebp-0x1C]
0040E84B 85DB test ebx,ebx
0040E84D 74 09 je short 霸主多开.0040E858
0040E84F 53 push ebx
0040E850 E8 E33A0000 call 霸主多开.00412338
0040E855 83C4 04 add esp,0x4
0040E858 68 01030080 push 0x80000301
0040E85D 6A 00 push 0x0
- - 有哪个大大能出个教程么 我不是要逆向的软件 我想看看是怎么破的 学习一下 我是小白 补上软件链接吧
链接:http://pan.baidu.com/s/1bnuODDd 密码:pi39 要是有大大能出个教程 非常感谢
|