- UID
- 26372
注册时间2006-12-3
阅读权限30
最后登录1970-1-1
龙战于野
该用户从未签到
|
【破文标题】PYG破文二
【破文作者】神猪
【作者邮箱】[email protected]
软件语言:英文
软件类别:国外软件/共享版/音频工具
运行环境:Win9x/Me/NT/2000/XP/2003
更新时间:2007-2-6 10:47:27
【破解工具】peid,od
【破解平台】xp
【软件名称】Wave Corrector PE Version 3.31
【软件大小】1.15M
【原版下载】http://www.newhua.com/soft/19853.htm
【保护方式】注册码+NAG窗口
【软件简介】可以将录音文件保存为WAV格式。然后,Wave Corrector会显示一张音频曲线图,里面会显
示原始声音曲线和经过修正后的声音曲线。你可以放大曲线图来添加或者删除修正。
【破解声明】旨在学习交流,无任何商业目的!为加入PYG,更好学习CRACK技术
------------------------------------------------------------------------
【破解过程】首先PEID查壳:无壳,程序由Microsoft Visual C++ 7.0编写。
程序运行有NAG窗口,输入假码shenzhu 有错误提示you user name or key is invalid. try again.
直接OD载入,查找错误提示,发现错误提示。找到此处,双击来到如下代码:
0041380C . E8 9FFAFFFF call 004132B0 ; 关键CALL
00413811 . 8B95 C0000000 mov edx, dword ptr [e>
00413817 . 8982 FC000000 mov dword ptr [edx+FC>
0041381D . 8B85 C0000000 mov eax, dword ptr [e>
00413823 . 8B88 FC000000 mov ecx, dword ptr [e>
00413829 . 85C9 test ecx, ecx
0041382B . 74 21 je short 0041384E 关键跳转 ,假码跳向出错
0041382D . 83FB 08 cmp ebx, 8
00413830 . 0F84 8A000000 je 004138C0 关键跳转 ,相等跳向注册
成功
00413836 . 85F6 test esi, esi
00413838 . 7C 7C jl short 004138B6 关键跳转 ,小于则跳向
注册成功
0041383A . 8B8424 900000>mov eax, dword ptr [e>
00413841 . 3B70 F4 cmp esi, dword ptr [e>
00413844 . 7F 70 jg short 004138B6 关键跳转 ,大于则跳向注册
成功
00413846 . 0FBE0C06 movsx ecx, byte ptr [es>
0041384A . 3BF9 cmp edi, ecx
0041384C . 74 72 je short 004138C0 关键跳转 ,相等跳向注
册成功
0041384E > 8B15 FC7A5B00 mov edx, dword ptr [5>
00413854 . 68 84384B00 push 004B3884 ; /Arg3 = 004B3884
00413859 . 68 A85F4B00 push 004B5FA8 ; |username
0041385E . 52 push edx ; |Arg1 => 00000000
0041385F . 8BCD mov ecx, ebp ; |
00413861 . E8 164C0800 call 0049847C ; \WaveCor.0049847C
00413866 . 6A 00 push 0
00413868 . 6A 00 push 0
0041386A . 68 B8624B00 push 004B62B8 ; you user name or key is invalid.
try again. 错误的注册码
0041386F . E8 024B0800 call 00498376
00413874 . 8B4424 10 mov eax, dword ptr [e>
00413878 . 83C0 F0 add eax, -10
0041387B . C68424 A00000>mov byte ptr [esp+A0]>
00413883 . 8D48 0C lea ecx, dword ptr [e>
00413886 . 83CA FF or edx, FFFFFFFF
00413889 . F0:0FC111 lock xadd dword ptr [ecx]>
0041388D . 4A dec edx
0041388E . 85D2 test edx, edx
00413890 . 7F 08 jg short 0041389A
00413892 . 8B08 mov ecx, dword ptr [e>
00413894 . 8B11 mov edx, dword ptr [e>
00413896 . 50 push eax
00413897 . FF52 04 call dword ptr [edx+4]
0041389A > 8D4C24 20 lea ecx, dword ptr [e>
0041389E . E8 89690700 call 0048A22C
004138A3 . 83F8 01 cmp eax, 1
004138A6 .^ 0F84 84FEFFFF je 00413730
004138AC . E9 68010000 jmp 00413A19
004138B1 >^ E9 6AD8FEFF jmp 00401120
004138B6 > 68 57000780 push 80070057
004138BB . E8 90D7FEFF call 00401050
004138C0 > 6A 00 push 0
004138C2 . 6A 40 push 40
004138C4 . 68 60624B00 push 004B6260 ; your copy of wave corrector is now
registered.\nthank you for registering this product.
004138C9 . E8 A84A0800 call 00498376
004138CE . A1 FC7A5B00 mov eax, dword ptr [5>
004138D3 . 6A 00 push 0
004138D5 . 68 A85F4B00 push 004B5FA8 ; username
004138DA . 50 push eax
004138DB . 8D4C24 24 lea ecx, dword ptr [e>
004138DF . 51 push ecx
004138E0 . 8BCD mov ecx, ebp
004138E2 . E8 601C0900 call 004A5547
004138E7 . 50 push eax
004138E8 . 8D5424 18 lea edx, dword ptr [e>
004138EC . 68 50624B00 push 004B6250 ; registered to
004138F1 . 52 push edx
004138F2 . C68424 AC0000>mov byte ptr [esp+AC]>
004138FA . E8 41F4FEFF call 00402D40
关键CALL
00413370 > /85C9 test ecx, ecx
00413372 . |0F8C D7020000 jl 0041364F
00413378 . |3BCB cmp ecx, ebx
0041337A . |0F8F CF020000 jg 0041364F
00413380 . |0FBE0429 movsx eax, byte ptr [ecx+ebp]
00413384 . |99 cdq
00413385 . |F7FF idiv edi
00413387 . |8BC6 mov eax, esi
00413389 . |0FAFC6 imul eax, esi
0041338C . |0FAFD7 imul edx, edi
0041338F . |03D0 add edx, eax
00413391 . |41 inc ecx
00413392 . |83C7 02 add edi, 2
00413395 . |3BCB cmp ecx, ebx
00413397 . |8BF2 mov esi, edx
00413399 .^\7C D5 jl short 00413370
004133B6 > /8B4C24 10 mov ecx, dword ptr [esp+10]
004133BA . |8B41 FC mov eax, dword ptr [ecx-4]
004133BD . |8B69 F4 mov ebp, dword ptr [ecx-C]
004133C0 . |BA 01000000 mov edx, 1
004133C5 . |2BD0 sub edx, eax
004133C7 . |8B41 F8 mov eax, dword ptr [ecx-8]
004133CA . |8D7D 01 lea edi, dword ptr [ebp+1]
004133CD . |2BC7 sub eax, edi
004133CF . |0BC2 or eax, edx
004133D1 . |7D 0E jge short 004133E1
004133D3 . |57 push edi
004133D4 . |8D4C24 14 lea ecx, dword ptr [esp+14]
004133D8 . |E8 53DFFEFF call 00401330
004133DD . |8B4C24 10 mov ecx, dword ptr [esp+10]
004133E1 > |33D2 xor edx, edx
004133E3 . |8BC6 mov eax, esi
004133E5 . |BB 1A000000 mov ebx, 1A
004133EA . |F7F3 div ebx
004133EC . |80C2 41 add dl, 41
004133EF . |85FF test edi, edi
004133F1 . |881429 mov byte ptr [ecx+ebp], dl
004133F4 . |0F8C 55020000 jl 0041364F
004133FA . |8B4424 10 mov eax, dword ptr [esp+10]
004133FE . |3B78 F8 cmp edi, dword ptr [eax-8]
00413401 . |0F8F 48020000 jg 0041364F
00413407 . |8978 F4 mov dword ptr [eax-C], edi
0041340A . |8B4C24 10 mov ecx, dword ptr [esp+10]
0041340E . |B8 25499224 mov eax, 24924925
00413413 . |F7E6 mul esi
00413415 . |8B4424 1C mov eax, dword ptr [esp+1C]
00413419 . |2BF2 sub esi, edx
0041341B . |D1EE shr esi, 1
0041341D . |03F2 add esi, edx
0041341F . |C1EE 03 shr esi, 3
00413422 . |40 inc eax
00413423 . |83F8 08 cmp eax, 8
00413426 . |C6040F 00 mov byte ptr [edi+ecx], 0
0041342A . |894424 1C mov dword ptr [esp+1C], eax
0041342E .^\7C 86 jl short 004133B6
EAX 00000008
ECX 00D78EF8 ASCII "SDYSVUXJ"
------------------------------------------------------------------------
内存注册机:
中断地址:0041380C .
中断次数:1
第一字节:E8
长度:5
------------------------------------------------------------------------
【版权声明】本程序由神猪为加入PYG成员而发表,未经允许,不得转贴。
[ 本帖最后由 wyh1983 于 2007-2-6 22:33 编辑 ] |
本帖子中包含更多资源
您需要 登录 才可以下载或查看,没有账号?加入我们
x
|
IP卡
发表于 2007-2-6 21:19:47
提升卡
置顶卡
变色卡
千斤顶
显身卡
发表于 2007-2-6 22:03:13
楼主