软件大小: 884 KB
软件语言: 简体中文
软件类别: 国产软件 / 共享版 / 趣味软件
应用平台: Win9x/NT/2000/XP
开 发 商: http://go3.163.com/pyedITor/
下载地址: http://www.skycn.com/soft/6605.html
软件介绍:
“浪漫情书”是一个专业级的情书编辑软件!该软件是用Delphi编写的纯32位软件,程序设计精
巧、功能强大、扩充方便,不需要任何数据库驱动程式支持。软件有下列功能和特点:1、界面简洁,
操作简单,你只需轻轻点击几下鼠标就可以写出让你感到满意的情书;2、可以由电脑自动书写情书,
并且电脑写出的情书也很通顺;3、支持发Email功能,可使用软件附带的各种精美的信纸,信纸中有
动听的音乐,现在情书也可以“有声有色”;4、支持各种文本处理功能,包括查找、替换、复制、
撤消、打印等;5、开放式的情话库管理,可以自动搜索新情话,可以自制情话库;6、除了有详尽的
帮助文件之外,还有“情书精灵”及时地提醒您使用的方法;7、更多精彩功能等待您去探索……
Cracked by eCool 2002.07.20
一:脱壳&除去文件大小判断
这个软件是用Aspack加壳的,用Caspr很容易搞定,不过脱壳后不能运行,提示文件大小改变了,
不过去除这个是Very Easy的,用w32dasm反汇编,自己找出错时的提示字符串,结果来到这:
-------------------------------------------------------------------------------
:004974C5 E8DAB2F6FF call 004027A4
:004974CA 3DD0050500 cmp eax, 000505D0
:004974CF 7F17 jg 004974E8 // 文件大小大于329168字节就Over
:004974D1 8D85B4FEFFFF lea eax, dword ptr [ebp+FFFFFEB4]
:004974D7 E860E0F6FF call 0040553C
:004974DC E8C3B2F6FF call 004027A4
:004974E1 3D18FA0400 cmp eax, 0004FA18 // 文件大小小于326168字节也Over
:004974E6 7D3D jge 00497525
* Referenced by a (U)nconditional or ?ondITional Jump at Address:
|:004974CF?
|
:004974E8 8D85B0FEFFFF lea eax, dword ptr [ebp+FFFFFEB0]
:004974EE 8B8E90060000 mov ecx, dword ptr [esi+00000690]
* Possible StringData Ref from Code Obj->"文件读写错误,由于某些原因(例如:被病毒感染)
"
->"改变了loveletter31.exe文件,为了保证您的电脑安"
->"
全,程式将会自动退出!
建议您访问下址重新下载"
->"“浪漫情书”软件:
"
-------------------------------------------------------------------------------
二:找注册算法
用DeDe来对付Delphi的程序吧,很容易来到这:
-------------------------------------------------------------------------------
* Reference to control Trrr.username : TFlatEdIT
|
00488F47 8B80E0020000 mov eax, [eax+$02E0] // 取得用户名
|
00488F4D E8DE5CFAFF call 0042EC30
00488F52 8B45F0 mov eax, [ebp-$10]
|
00488F55 E836ADF7FF call 00403C90
00488F5A 83F806 cmp eax, +$06 // 用户名长度小于6则Over
00488F5D 7D20 jnl 00488F7F
* Possible String Reference to: ’用户名的长度不能小于6个字符!’
|
00488F5F B8F4914800 mov eax, $004891F4
|
00488F64 E8E78AFCFF call 00451A50
00488F69 8B45FC mov eax, [ebp-$04]
* Reference to control Trrr.username : TFlatEdIT
|
00488F6C 8B80E0020000 mov eax, [eax+$02E0]
00488F72 8B10 mov edx, [eax]
* Possible reference to virtual method TFlatEdIT.OFFS_00B4
|
00488F74 FF92B4000000 call dword ptr [edx+$00B4]
00488F7A E92F020000 jmp 004891AE
00488F7F 8D55F0 lea edx, [ebp-$10]
00488F82 8B45FC mov eax, [ebp-$04]
* Reference to control Trrr.regcode : TFlatEdIT
|
00488F85 8B80D0020000 mov eax, [eax+$02D0] // 取注册码
|
00488F8B E8A05CFAFF call 0042EC30
00488F90 8B45F0 mov eax, [ebp-$10]
|
00488F93 E8F8ACF7FF call 00403C90 // 注册码为空则Over
00488F98 48 dec eax
00488F99 7D20 jnl 00488FBB
* Possible String Reference to: ’请输入注册码!’
|
00488F9B B81C924800 mov eax, $0048921C
|
00488FA0 E8AB8AFCFF call 00451A50
00488FA5 8B45FC mov eax, [ebp-$04]
* Reference to control Trrr.regcode : TFlatEdIT
|
00488FA8 8B80D0020000 mov eax, [eax+$02D0]
00488FAE 8B10 mov edx, [eax]
* Possible reference to virtual method TFlatEdIT.OFFS_00B4
|
00488FB0 FF92B4000000 call dword ptr [edx+$00B4]
00488FB6 E9F3010000 jmp 004891AE
00488FBB 8D45F8 lea eax, [ebp-$08]
|
00488FBE E851AAF7FF call 00403A14
00488FC3 8D55F4 lea edx, [ebp-$0C]
00488FC6 8B45FC mov eax, [ebp-$04]
* Reference to control Trrr.regcode : TFlatEdIT
|
00488FC9 8B80D0020000 mov eax, [eax+$02D0]
|
00488FCF E85C5CFAFF call 0042EC30
00488FD4 8B45F4 mov eax, [ebp-$0C] // 取注册码长度
|
00488FD7 E8B4ACF7FF call 00403C90
00488FDC 8BF0 mov esi, eax
00488FDE 85F6 test esi, esi
00488FE0 7C37 jl 00489019
00488FE2 46 inc esi
00488FE3 33DB xor ebx, ebx
00488FE5 8B45F4 mov eax, [ebp-$0C]
00488FE8 8A4418FF mov al, byte ptr [eax+ebx-$01]
00488FEC 3C30 cmp al, $30 // "0"
00488FEE 7225 jb 00489015
00488FF0 8B55F4 mov edx, [ebp-$0C]
00488FF3 3C39 cmp al, $39 // "9"
00488FF5 771E jnbe 00489015
00488FF7 8D45EC lea eax, [ebp-$14]
00488FFA 50 push eax
00488FFB B901000000 mov ecx, $00000001
00489000 8BD3 mov edx, ebx
00489002 8B45F4 mov eax, [ebp-$0C]
|
00489005 E88AAEF7FF call 00403E94
0048900A 8B55EC mov edx, [ebp-$14]
0048900D 8D45F8 lea eax, [ebp-$08]
|
00489010 E883ACF7FF call 00403C98
00489015 43 inc ebx
00489016 4E dec esi
00489017 75CC jnz 00488FE5
00489019 8D55F0 lea edx, [ebp-$10]
0048901C 8B45FC mov eax, [ebp-$04] [1] [2] 下一页 |
