FlashSoft1.07破解方法
什么国产软件不许破解,我就破就破!!!
软件下载:http://www.doshare.net/hanyusoft/download/flashsoft.zip
用Trw2000载入DfBox.exe点注册,输入用户名,注册码
Ctrl+N下断点bpx hmemcpy,确定,被劫下,F12按18次,F10按1次,到下面
0167:004D87FA CALL 00458FF4
0167:004D87FF MOV EDX,[EBP-08]
0167:004D8802 MOV EAX,[EBP-04]
0167:004D8805 CALL 004CFF78 --\
这个call进去
0167:004D880A TEST AL,AL
--->常用组合
0167:004D880C JZ 004D884A
--/
0167:004D880E MOV EDX,[EBP-04]
0167:004D8811 MOV EAX,[004DEA7C]
0167:004D8816 CALL 004D0B14
0167:004D881B MOV EDX,[EBP-08]
0167:004D881E MOV EAX,[004DEA7C]
0167:004D8823 CALL 004D0AD4
0167:004D8828 LEA EAX,[EBP-14]
0167:004D882B PUSH EAX
0167:004D882C MOV ECX,004D8908
------------------------------------------------------------------------------------
------------------------------------------------------------------------------------
0167:004CFF78 PUSH EBP
0167:004CFF79 MOV EBP,ESP
0167:004CFF7B ADD ESP,BYTE -0C
0167:004CFF7E PUSH EBX
0167:004CFF7F XOR ECX,ECX
0167:004CFF81 MOV [EBP-0C],ECX
0167:004CFF84 MOV [EBP-08],EDX
0167:004CFF87 MOV [EBP-04],EAX
0167:004CFF8A MOV EAX,[EBP-04]
0167:004CFF8D CALL 00404284
0167:004CFF92 MOV EAX,[EBP-08]
0167:004CFF95 CALL 00404284
0167:004CFF9A XOR EAX,EAX
0167:004CFF9C PUSH EBP
0167:004CFF9D PUSH DWORD 004CFFE1
0167:004CFFA2 PUSH DWORD [FS:EAX]
0167:004CFFA5 MOV [FS:EAX],ESP
0167:004CFFA8 LEA EDX,[EBP-0C]
0167:004CFFAB MOV EAX,[EBP-04]
0167:004CFFAE CALL 004CFFF0
0167:004CFFB3 MOV EAX,[EBP-0C]
-->eax就是你的正确注册码
0167:004CFFB6 MOV EDX,[EBP-08]
-->edx就是你的错误注册码
0167:004CFFB9 CALL 004041E0
0167:004CFFBE JNZ 004CFFC4
0167:004CFFC0 MOV BL,01
0167:004CFFC2 JMP SHORT 004CFFC6
0167:004CFFC4 XOR EBX,EBX
0167:004CFFC6 XOR EAX,EAX
0167:004CFFC8 POP EDX
0167:004CFFC9 POP ECX
0167:004CFFCA POP ECX
0167:004CFFCB MOV [FS:EAX],EDX
0167:004CFFCE PUSH DWORD 004CFFE8
conanxu[BCG]
conanxu@eastday.com
- 标 题:什么国产软件不许破解,我就破就破!!!------FlashSoft1.07破解方法 (2千字)
- 作 者:conanxu[BCG]
- 时 间:2001-5-19 19:29:10
- 链 接:http://bbs.pediy.com