delphi写的程序要重启验证,看到的注册码为何不对
程序是UPX加壳,脱壳后显示是Borland Delphi 7.0,重启下注册表断点,出来的注册码好像是假的注册不了,请教高手怎样才能追出真注册码。
程序下载:
http://www.supercc.net/download/scc.exe
网盘下载绿色版,在绿色软件\scc200.rar
http://flyecg.ys168.com/
0012FD44|00579AC4 SuperCC.00579AC4
0012FD48|00C117C8
0012FD4C|00C16EE8
0012FD50|00000000
0012FD54|00000000
0012FD58|00C1E320 ASCII "SCC"
0012FD5C|00C1FEC4 ASCII "79963"
0012FD60|00C1FEB0 ASCII "561293"
0012FD64|00C11BB8 ASCII "SCC-123456789748748123456789"
0012FD68|00000000
0012FD6C|00000000
0012FD70|00000000
0012FD74|00C11BB8 ASCII "SCC-123456789748748123456789"
0012FD78]0012FDC4
0012FD7C|00586D9A 返回到 SuperCC.00586D9A 来自 SuperCC.0051B5B8
0012FD80|0012FD8C
0012FD84|00586DDB
0012FD88|0012FDC4
0012FD8C|0012FDCC
0012FD90|00586E08
0012FD94|0012FDC4
0012FD98|00579AC4 SuperCC.00579AC4
0012FD9C|00C117C8
0012FDA0|00C16EE8
0012FDA4|00000000
0012FDA8|00000000
0012FDAC|00000000
0012FDB0|00C11BB8 ASCII "SCC-123456789748748123456789"
0012FDB4|00C11EC8 ASCII "user"
0012FDB8|00C1FE90 ASCII "ea2c5435110b99a8" 楼主的软件好像加密了
我输入的是123-123
但是在注册表里确实 scc-ea2c5435110b99a8
是不是需要把你找到的注册码通过什么方法转换一下。我也不懂。只知道10进制的明码。 下断后,只看到输入的假码,不知何解?
不懂算法,希望哪位大虾帮忙看一下,谢谢。
注册部分:
0051B9BA E8 4D61F7FF call SuperCC.00491B0C
0051B9BF 8D45 FC lea eax,dword ptr ss:
0051B9C2 BA 1CBA5100 mov edx,SuperCC.0051BA1C
0051B9C7 E8 4C9CEEFF call SuperCC.00405618
0051B9CC 8B55 FC mov edx,dword ptr ss:
0051B9CF 8BC3 mov eax,ebx
0051B9D1 E8 4662F5FF call SuperCC.00471C1C
0051B9D6 8D45 F8 lea eax,dword ptr ss:
0051B9D9 E8 9EF80500 call SuperCC.0057B27C
0051B9DE 8B55 F8 mov edx,dword ptr ss:
0051B9E1 8B83 1C030000 mov eax,dword ptr ds:
0051B9E7 E8 3062F5FF call SuperCC.00471C1C
0051B9EC 33C0 xor eax,eax
0051B9EE 5A pop edx
0051B9EF 59 pop ecx
0051B9F0 59 pop ecx
0051B9F1 64:8910 mov dword ptr fs:,edx
0051B9F4 68 0EBA5100 push SuperCC.0051BA0E
0051B9F9 8D45 F8 lea eax,dword ptr ss:
0051B9FC BA 02000000 mov edx,2
0051BA01 E8 5E99EEFF call SuperCC.00405364
0051BA06 C3 retn
0051BA07^ E9 8C92EEFF jmp SuperCC.00404C98
0051BA0C^ EB EB jmp short SuperCC.0051B9F9
0051BA0E 5B pop ebx
0051BA0F 59 pop ecx
0051BA10 59 pop ecx
0051BA11 5D pop ebp
0051BA12 C3 retn
0051BA13 00FF add bh,bh
0051BA15 FFFF ??? ; 未知命令
0051BA17 FF0A dec dword ptr ds:
0051BA19 0000 add byte ptr ds:,al
0051BA1B 00A3 ADC8EDBC add byte ptr ds:,ah
0051BA21 FE ??? ; 未知命令
0051BA22 D7 xlat byte ptr ds:
0051BA23 A2 B2E10000 mov byte ptr ds:,al
0051BA28 55 push ebp
0051BA29 8BEC mov ebp,esp
0051BA2B B9 05000000 mov ecx,5
0051BA30 6A 00 push 0
0051BA32 6A 00 push 0
0051BA34 49 dec ecx
0051BA35^ 75 F9 jnz short SuperCC.0051BA30
0051BA37 51 push ecx
0051BA38 53 push ebx
0051BA39 56 push esi
0051BA3A 8BD8 mov ebx,eax
0051BA3C 33C0 xor eax,eax
0051BA3E 55 push ebp
0051BA3F 68 BDBC5100 push SuperCC.0051BCBD
0051BA44 64:FF30 push dword ptr fs:
0051BA47 64:8920 mov dword ptr fs:,esp
0051BA4A 8D55 FC lea edx,dword ptr ss:
0051BA4D 8B83 18030000 mov eax,dword ptr ds:
0051BA53 E8 9461F5FF call SuperCC.00471BEC
0051BA58 837D FC 00 cmp dword ptr ss:,0
0051BA5C 75 4B jnz short SuperCC.0051BAA9
0051BA5E 68 D4BC5100 push SuperCC.0051BCD4
0051BA63 6A 00 push 0
0051BA65 6A 01 push 1
0051BA67 6A 00 push 0
0051BA69 6A 00 push 0
0051BA6B 8D55 F8 lea edx,dword ptr ss:
0051BA6E A1 0C4C5900 mov eax,dword ptr ds:
0051BA73 8B00 mov eax,dword ptr ds:
0051BA75 E8 9260F7FF call SuperCC.00491B0C
0051BA7A 8D45 F8 lea eax,dword ptr ss:
0051BA7D BA E4BC5100 mov edx,SuperCC.0051BCE4
0051BA82 E8 919BEEFF call SuperCC.00405618
0051BA87 8B55 F8 mov edx,dword ptr ss:
0051BA8A 33C9 xor ecx,ecx
0051BA8C B8 F8BC5100 mov eax,SuperCC.0051BCF8
0051BA91 E8 5664FEFF call SuperCC.00501EEC
0051BA96 8B83 18030000 mov eax,dword ptr ds:
0051BA9C 8B10 mov edx,dword ptr ds:
0051BA9E FF92 C4000000 call dword ptr ds:
0051BAA4 E9 B9010000 jmp SuperCC.0051BC62
0051BAA9 8D55 F4 lea edx,dword ptr ss:
0051BAAC 8B83 20030000 mov eax,dword ptr ds:
0051BAB2 E8 3561F5FF call SuperCC.00471BEC
0051BAB7 837D F4 00 cmp dword ptr ss:,0
0051BABB 75 4B jnz short SuperCC.0051BB08
0051BABD 68 D4BC5100 push SuperCC.0051BCD4
0051BAC2 6A 00 push 0
0051BAC4 6A 01 push 1
0051BAC6 6A 00 push 0
0051BAC8 6A 00 push 0
0051BACA 8D55 F0 lea edx,dword ptr ss:
0051BACD A1 0C4C5900 mov eax,dword ptr ds:
0051BAD2 8B00 mov eax,dword ptr ds:
0051BAD4 E8 3360F7FF call SuperCC.00491B0C
0051BAD9 8D45 F0 lea eax,dword ptr ss:
0051BADC BA E4BC5100 mov edx,SuperCC.0051BCE4
0051BAE1 E8 329BEEFF call SuperCC.00405618
0051BAE6 8B55 F0 mov edx,dword ptr ss:
0051BAE9 33C9 xor ecx,ecx
0051BAEB B8 24BD5100 mov eax,SuperCC.0051BD24
0051BAF0 E8 F763FEFF call SuperCC.00501EEC
0051BAF5 8B83 20030000 mov eax,dword ptr ds:
0051BAFB 8B10 mov edx,dword ptr ds:
0051BAFD FF92 C4000000 call dword ptr ds:
0051BB03 E9 5A010000 jmp SuperCC.0051BC62
0051BB08 8D55 EC lea edx,dword ptr ss:
0051BB0B 8B83 20030000 mov eax,dword ptr ds:
0051BB11 E8 D660F5FF call SuperCC.00471BEC
0051BB16 8B55 EC mov edx,dword ptr ss:
0051BB19 B8 50BD5100 mov eax,SuperCC.0051BD50
0051BB1E E8 319EEEFF call SuperCC.00405954
0051BB23 85C0 test eax,eax
0051BB25 75 4B jnz short SuperCC.0051BB72
0051BB27 68 D4BC5100 push SuperCC.0051BCD4
0051BB2C 6A 00 push 0
0051BB2E 6A 01 push 1
0051BB30 6A 00 push 0
0051BB32 6A 00 push 0
0051BB34 8D55 E8 lea edx,dword ptr ss:
0051BB37 A1 0C4C5900 mov eax,dword ptr ds:
0051BB3C 8B00 mov eax,dword ptr ds:
0051BB3E E8 C95FF7FF call SuperCC.00491B0C
0051BB43 8D45 E8 lea eax,dword ptr ss:
0051BB46 BA E4BC5100 mov edx,SuperCC.0051BCE4
0051BB4B E8 C89AEEFF call SuperCC.00405618
0051BB50 8B55 E8 mov edx,dword ptr ss:
0051BB53 33C9 xor ecx,ecx
0051BB55 B8 5CBD5100 mov eax,SuperCC.0051BD5C
0051BB5A E8 8D63FEFF call SuperCC.00501EEC
0051BB5F 8B83 20030000 mov eax,dword ptr ds:
0051BB65 8B10 mov edx,dword ptr ds:
0051BB67 FF92 C4000000 call dword ptr ds:
0051BB6D E9 F0000000 jmp SuperCC.0051BC62
0051BB72 8BC3 mov eax,ebx
0051BB74 E8 A32EF7FF call SuperCC.0048EA1C
0051BB79 68 D4BC5100 push SuperCC.0051BCD4
0051BB7E 6A 00 push 0
0051BB80 6A 01 push 1
0051BB82 6A 00 push 0
0051BB84 6A 00 push 0
0051BB86 8D55 E4 lea edx,dword ptr ss:
0051BB89 A1 0C4C5900 mov eax,dword ptr ds:
0051BB8E 8B00 mov eax,dword ptr ds:
0051BB90 E8 775FF7FF call SuperCC.00491B0C
0051BB95 8D45 E4 lea eax,dword ptr ss:
0051BB98 BA B8BD5100 mov edx,SuperCC.0051BDB8
0051BB9D E8 769AEEFF call SuperCC.00405618
0051BBA2 8B55 E4 mov edx,dword ptr ss:
0051BBA5 33C9 xor ecx,ecx
0051BBA7 B8 CCBD5100 mov eax,SuperCC.0051BDCC
0051BBAC E8 3B63FEFF call SuperCC.00501EEC
0051BBB1 A1 6C4A5900 mov eax,dword ptr ds:
0051BBB6 8B00 mov eax,dword ptr ds:
0051BBB8 8B80 70030000 mov eax,dword ptr ds:
0051BBBE C740 0C 0100000>mov dword ptr ds:,1
0051BBC5 B2 01 mov dl,1
0051BBC7 A1 C80B4400 mov eax,dword ptr ds:
0051BBCC E8 F750F2FF call SuperCC.00440CC8
0051BBD1 8BF0 mov esi,eax
0051BBD3 BA 02000080 mov edx,80000002
0051BBD8 8BC6 mov eax,esi
0051BBDA E8 8951F2FF call SuperCC.00440D68
0051BBDF B1 01 mov cl,1
保存注册码注册表
0051BBE1 BA 24BE5100 mov edx,SuperCC.0051BE24 ; ASCII "SOFTWARE\Super Computer Companion"
0051BBE6 8BC6 mov eax,esi
0051BBE8 E8 BF52F2FF call SuperCC.00440EAC
0051BBED 84C0 test al,al
0051BBEF 74 57 je short SuperCC.0051BC48
0051BBF1 8D55 DC lea edx,dword ptr ss:
0051BBF4 8B83 18030000 mov eax,dword ptr ds:
0051BBFA E8 ED5FF5FF call SuperCC.00471BEC
0051BBFF 8B45 DC mov eax,dword ptr ss:
0051BC02 8D55 E0 lea edx,dword ptr ss:
0051BC05 E8 56E2EEFF call SuperCC.00409E60
0051BC0A 8B4D E0 mov ecx,dword ptr ss:
0051BC0D BA 50BE5100 mov edx,SuperCC.0051BE50 ; ASCII "Register" <-用户名
0051BC12 8BC6 mov eax,esi
0051BC14 E8 BF57F2FF call SuperCC.004413D8
0051BC19 8D55 D4 lea edx,dword ptr ss:
0051BC1C 8B83 20030000 mov eax,dword ptr ds:
0051BC22 E8 C55FF5FF call SuperCC.00471BEC
0051BC27 8B45 D4 mov eax,dword ptr ss:
0051BC2A 8D55 D8 lea edx,dword ptr ss:
0051BC2D E8 2EE2EEFF call SuperCC.00409E60
0051BC32 8B4D D8 mov ecx,dword ptr ss:
0051BC35 BA 64BE5100 mov edx,SuperCC.0051BE64 ; ASCII "RegCode" <-注册码
0051BC3A 8BC6 mov eax,esi
0051BC3C E8 9757F2FF call SuperCC.004413D8
0051BC41 8BC6 mov eax,esi
0051BC43 E8 F050F2FF call SuperCC.00440D38
0051BC48 8BC6 mov eax,esi
0051BC4A E8 A188EEFF call SuperCC.004044F0
0051BC4F 8BC3 mov eax,ebx
0051BC51 E8 262CF7FF call SuperCC.0048E87C
0051BC56 A1 6C4A5900 mov eax,dword ptr ds:
0051BC5B 8B00 mov eax,dword ptr ds:
0051BC5D E8 1A2CF7FF call SuperCC.0048E87C
0051BC62 33C0 xor eax,eax
0051BC64 5A pop edx
0051BC65 59 pop ecx
0051BC66 59 pop ecx
0051BC67 64:8910 mov dword ptr fs:,edx
0051BC6A 68 C4BC5100 push SuperCC.0051BCC4
0051BC6F 8D45 D4 lea eax,dword ptr ss:
0051BC72 E8 C996EEFF call SuperCC.00405340
0051BC77 8D45 D8 lea eax,dword ptr ss:
0051BC7A E8 C196EEFF call SuperCC.00405340
0051BC7F 8D45 DC lea eax,dword ptr ss:
0051BC82 E8 B996EEFF call SuperCC.00405340
0051BC87 8D45 E0 lea eax,dword ptr ss:
0051BC8A BA 03000000 mov edx,3
0051BC8F E8 D096EEFF call SuperCC.00405364
0051BC94 8D45 EC lea eax,dword ptr ss:
0051BC97 E8 A496EEFF call SuperCC.00405340
0051BC9C 8D45 F0 lea eax,dword ptr ss:
0051BC9F E8 9C96EEFF call SuperCC.00405340
0051BCA4 8D45 F4 lea eax,dword ptr ss:
0051BCA7 E8 9496EEFF call SuperCC.00405340
0051BCAC 8D45 F8 lea eax,dword ptr ss:
0051BCAF E8 8C96EEFF call SuperCC.00405340
0051BCB4 8D45 FC lea eax,dword ptr ss:
0051BCB7 E8 8496EEFF call SuperCC.00405340
0051BCBC C3 retn
0051BCBD^ E9 D68FEEFF jmp SuperCC.00404C98
0051BCC2^ EB AB jmp short SuperCC.0051BC6F
0051BCC4 5E pop esi
0051BCC5 5B pop ebx
0051BCC6 8BE5 mov esp,ebp
0051BCC8 5D pop ebp
0051BCC9 C3 retn
[ 本帖最后由 flyecg 于 2008-4-21 03:34 编辑 ] /:011 应该不是明码跟的好昏
页:
[1]