标志位爆破Altdo Mp3 Record&Edit Audio Master 1.6

coolmy · 发表于 2007-4-15 21:34:02

【破文标题】Altdo Mp3 Record&Edit Audio Master 1.6
【破文作者】coolmy
【作者邮箱】coolmayu@gmail.com
【作者主页】无
【破解工具】od、peid
【破解平台】xp sp2
【软件名称】Altdo Mp3 Record&Edit Audio Master 1.6
【原版下载】http://www.newhua.com/soft/54536.htm
【软件大小】4109KB
【保护方式】注册码
【软件简介】一款强大的MP3记录和编辑工具，允许你可视化进行音频编辑。
------------------------------------------------------------------------------------------------
【破解声明】菜鸟之做，高手别笑话，学习交流共同进步！
------------------------------------------------------------------------------------------------
【破解过程】

PEID查壳:ASPack 2.12 -> Alexey Solodovnikov,手动脱壳后为:Borland Delphi 6.0 - 7.0

OD载入查找错误提示"the registration code is invalid.please check the code to make sure that entered correctly."双击来到这里!

00500A3C  /$  55          PUSH EBP
00500A3D  |.  8BEC       MOV EBP,ESP
00500A3F  |.  33C9       XOR ECX,ECX
00500A41  |.  51          PUSH ECX
00500A42  |.  51          PUSH ECX
00500A43  |.  51          PUSH ECX
00500A44  |.  51          PUSH ECX
00500A45  |.  51          PUSH ECX
00500A46  |.  53          PUSH EBX
00500A47  |.  56          PUSH ESI
00500A48  |.  8BD8       MOV EBX,EAX
00500A4A  |.  33C0       XOR EAX,EAX
00500A4C  |.  55          PUSH EBP
00500A4D  |.  68 870B5000 PUSH 12.00500B87
00500A52  |.  64:FF30    PUSH DWORD PTR FS:[EAX]
00500A55  |.  64:8920    MOV DWORD PTR FS:[EAX],ESP
00500A58  |.  8D55 FC    LEA EDX,DWORD PTR SS:[EBP-4]
00500A5B  |.  8B83 C4030000 MOV EAX,DWORD PTR DS:[EBX+3C4]
00500A61  |.  E8 467AF7FF CALL 12.004784AC
00500A66  |.  837D FC 00 CMP DWORD PTR SS:[EBP-4],0
00500A6A  |.  0F84 E7000000 JE 12.00500B57
00500A70  |.  8D55 F8    LEA EDX,DWORD PTR SS:[EBP-8]
00500A73  |.  8B83 C4030000 MOV EAX,DWORD PTR DS:[EBX+3C4]
00500A79  |.  E8 2E7AF7FF CALL 12.004784AC
00500A7E  |.  8B45 F8    MOV EAX,DWORD PTR SS:[EBP-8]
00500A81  |.  BA 9C0B5000 MOV EDX,12.00500B9C                   ;  registration code
00500A86  |.  E8 C942F0FF CALL 12.00404D54
00500A8B  |.  0F84 C6000000 JE 12.00500B57
00500A91  |.  A1 885D5000 MOV EAX,DWORD PTR DS:[505D88]
00500A96  |.  FF30       PUSH DWORD PTR DS:[EAX]
00500A98  |.  A1 A4605000 MOV EAX,DWORD PTR DS:[5060A4]
00500A9D  |.  FF30       PUSH DWORD PTR DS:[EAX]
00500A9F  |.  68 B80B5000 PUSH 12.00500BB8                      ;  _regeditcode.ini
00500AA4  |.  8D45 F4    LEA EAX,DWORD PTR SS:[EBP-C]
00500AA7  |.  BA 03000000 MOV EDX,3
00500AAC  |.  E8 1742F0FF CALL 12.00404CC8
00500AB1  |.  8B4D F4    MOV ECX,DWORD PTR SS:[EBP-C]
00500AB4  |.  B2 01       MOV DL,1
00500AB6  |.  A1 6CB94900 MOV EAX,DWORD PTR DS:[49B96C]
00500ABB  |.  E8 20AFF9FF CALL 12.0049B9E0
00500AC0  |.  8BF0       MOV ESI,EAX
00500AC2  |.  8D55 F0    LEA EDX,DWORD PTR SS:[EBP-10]
00500AC5  |.  8B83 B4030000 MOV EAX,DWORD PTR DS:[EBX+3B4]
00500ACB  |.  E8 DC79F7FF CALL 12.004784AC
00500AD0  |.  8B45 F0    MOV EAX,DWORD PTR SS:[EBP-10]
00500AD3  |.  50          PUSH EAX
00500AD4  |.  B9 D40B5000 MOV ECX,12.00500BD4                   ;  regname
00500AD9  |.  BA E40B5000 MOV EDX,12.00500BE4                   ;  regcode
00500ADE  |.  8BC6       MOV EAX,ESI
00500AE0  |.  E8 17B4F9FF CALL 12.0049BEFC
00500AE5  |.  8D55 EC    LEA EDX,DWORD PTR SS:[EBP-14]
00500AE8  |.  8B83 C4030000 MOV EAX,DWORD PTR DS:[EBX+3C4]
00500AEE  |.  E8 B979F7FF CALL 12.004784AC
00500AF3  |.  8B45 EC    MOV EAX,DWORD PTR SS:[EBP-14]
00500AF6  |.  50          PUSH EAX
00500AF7  |.  B9 F40B5000 MOV ECX,12.00500BF4                   ;  code
00500AFC  |.  BA E40B5000 MOV EDX,12.00500BE4                   ;  regcode
00500B01  |.  8BC6       MOV EAX,ESI
00500B03  |.  E8 F4B3F9FF CALL 12.0049BEFC
00500B08  |.  E8 6BBCFEFF CALL 12.004EC778
00500B0D  |.  A1 785B5000 MOV EAX,DWORD PTR DS:[505B78]
00500B12  |.  8B00       MOV EAX,DWORD PTR DS:[EAX]
00500B14  |.  E8 D7C9FEFF CALL 12.004ED4F0                            标志位
00500B19  |.  84C0       TEST AL,AL
00500B1B  |.  74 24       JE SHORT 12.00500B41
00500B1D  |.  A1 905B5000 MOV EAX,DWORD PTR DS:[505B90]
00500B22  |.  8B00       MOV EAX,DWORD PTR DS:[EAX]
00500B24  |.  B9 01000000 MOV ECX,1
00500B29  |.  BA 040C5000 MOV EDX,12.00500C04                   ;  congratulations! your registration completes successfully. now you can enjoy the full functions provided by the software.
00500B2E  |.  E8 21C9FCFF CALL 12.004CD454
00500B33  |.  A1 A45F5000 MOV EAX,DWORD PTR DS:[505FA4]
00500B38  |.  8B00       MOV EAX,DWORD PTR DS:[EAX]
00500B3A  |.  E8 C999F9FF CALL 12.0049A508
00500B3F  |.  EB 16       JMP SHORT 12.00500B57
00500B41  |>  A1 905B5000 MOV EAX,DWORD PTR DS:[505B90]
00500B46  |.  8B00       MOV EAX,DWORD PTR DS:[EAX]
00500B48  |.  B9 01000000 MOV ECX,1
00500B4D  |.  BA 880C5000 MOV EDX,12.00500C88                   ;  the registration code is invalid.please check the code to make sure that entered correctly.
00500B52  |.  E8 FDC8FCFF CALL 12.004CD454
00500B57  |>  33C0       XOR EAX,EAX
00500B59  |.  5A          POP EDX
00500B5A  |.  59          POP ECX
00500B5B  |.  59          POP ECX
00500B5C  |.  64:8910    MOV DWORD PTR FS:[EAX],EDX
00500B5F  |.  68 8E0B5000 PUSH 12.00500B8E
00500B64  |>  8D45 EC    LEA EAX,DWORD PTR SS:[EBP-14]
00500B67  |.  BA 02000000 MOV EDX,2
00500B6C  |.  E8 FB3DF0FF CALL 12.0040496C
00500B71  |.  8D45 F4    LEA EAX,DWORD PTR SS:[EBP-C]
00500B74  |.  E8 CF3DF0FF CALL 12.00404948
00500B79  |.  8D45 F8    LEA EAX,DWORD PTR SS:[EBP-8]
00500B7C  |.  BA 02000000 MOV EDX,2
00500B81  |.  E8 E63DF0FF CALL 12.0040496C
00500B86  \.  C3          RETN
00500B87 .^ E9 A037F0FF JMP 12.0040432C
00500B8C .^ EB D6       JMP SHORT 12.00500B64
00500B8E .  5E          POP ESI
00500B8F .  5B          POP EBX
00500B90 .  8BE5       MOV ESP,EBP
00500B92 .  5D          POP EBP
00500B93 .  C3          RETN

+++++++++++++++++++++++++++++++++++++
00500B14  |.  E8 D7C9FEFF CALL 12.004ED4F0                            标志位
00500B19  |.  84C0       TEST AL,AL
00500B1B  |.  74 24       JE SHORT 12.00500B41                            关键跳转,等于则跳!(爆破点)
00500B1D  |.  A1 905B5000 MOV EAX,DWORD PTR DS:[505B90]
00500B22  |.  8B00       MOV EAX,DWORD PTR DS:[EAX]
00500B24  |.  B9 01000000 MOV ECX,1
00500B29  |.  BA 040C5000 MOV EDX,12.00500C04                   ;  congratulations! your registration completes successfully. now you can enjoy the full functions provided by the software.                (注册成功)
00500B2E  |.  E8 21C9FCFF CALL 12.004CD454
00500B33  |.  A1 A45F5000 MOV EAX,DWORD PTR DS:[505FA4]
00500B38  |.  8B00       MOV EAX,DWORD PTR DS:[EAX]
00500B3A  |.  E8 C999F9FF CALL 12.0049A508
00500B3F  |.  EB 16       JMP SHORT 12.00500B57
00500B41  |>  A1 905B5000 MOV EAX,DWORD PTR DS:[505B90]
00500B46  |.  8B00       MOV EAX,DWORD PTR DS:[EAX]
00500B48  |.  B9 01000000 MOV ECX,1
00500B4D  |.  BA 880C5000 MOV EDX,12.00500C88                   ;  the registration code is invalid.please check the code to make sure that entered correctly.                                                       (注册码错误,注册失败)
00500B52  |.  E8 FDC8FCFF CALL 12.004CD454
00500B57  |>  33C0       XOR EAX,EAX
00500B59  |.  5A          POP EDX
00500B5A  |.  59          POP ECX
00500B5B  |.  59          POP ECX
00500B5C  |.  64:8910    MOV DWORD PTR FS:[EAX],EDX
00500B5F  |.  68 8E0B5000 PUSH 12.00500B8E
00500B64  |>  8D45 EC    LEA EAX,DWORD PTR SS:[EBP-14]
00500B67  |.  BA 02000000 MOV EDX,2
00500B6C  |.  E8 FB3DF0FF CALL 12.0040496C
00500B71  |.  8D45 F4    LEA EAX,DWORD PTR SS:[EBP-C]
00500B74  |.  E8 CF3DF0FF CALL 12.00404948
00500B79  |.  8D45 F8    LEA EAX,DWORD PTR SS:[EBP-8]
00500B7C  |.  BA 02000000 MOV EDX,2
00500B81  |.  E8 E63DF0FF CALL 12.0040496C
00500B86  \.  C3          RETN
00500B87 .^ E9 A037F0FF JMP 12.0040432C
00500B8C .^ EB D6       JMP SHORT 12.00500B64
00500B8E .  5E          POP ESI
00500B8F .  5B          POP EBX
00500B90 .  8BE5       MOV ESP,EBP
00500B92 .  5D          POP EBP
00500B93 .  C3          RETN

00500B14  |.  E8 D7C9FEFF CALL 12.004ED4F0                            标志位

ENTER跟随!进来后空格键,第一次输入mov al,1然后再次输入RETN,复制到所有修改保存即可!

学习中,很多不足,高手们多多指教啊!:24ab:

pw2000 · 发表于 2007-5-21 15:19:10

向前辈学习。

gao2008ss · 发表于 2007-12-2 10:31:34

提示: 作者被禁止或删除内容自动屏蔽

		自动登录	找回密码
密码			加入我们

[原创] 标志位爆破Altdo Mp3 Record&Edit Audio Master 1.6

相关帖子