新手学第二季第六课的迷茫
本帖最后由 antony 于 2014-12-11 16:41 编辑00401290/.55 push ebp ;
00401291|.8BEC mov ebp,esp
00401293|.81EC 14000000 sub esp,0x14
00401299|.6A FF push -0x1
0040129B|.6A 08 push 0x8
0040129D|.68 03000116 push 0x16010003
004012A2|.68 01000152 push 0x52010001
004012A7|.E8 D3070000 call 深入注册.00401A7F
004012AC|.83C4 10 add esp,0x10
004012AF|.8945 FC mov ,eax
004012B2|.68 943E4700 push 深入注册.00473E94
004012B7|.FF75 FC push
004012BA|.E8 6DFEFFFF call 深入注册.0040112C
004012BF|.83C4 08 add esp,0x8
004012C2|.83F8 00 cmp eax,0x0
004012C5|.B8 00000000 mov eax,0x0
004012CA|.0F95C0 setne al
004012CD|.8945 F8 mov ,eax
004012D0|.8B5D FC mov ebx,
004012D3|.85DB test ebx,ebx
004012D5|.74 09 je X深入注册.004012E0
004012D7|.53 push ebx
004012D8|.E8 7E070000 call 深入注册.00401A5B
004012DD|.83C4 04 add esp,0x4
004012E0|>837D F8 00 cmp ,0x0
004012E4|.0F84 58000000 je 深入注册.00401342
004012EA|.6A FF push -0x1
004012EC|.6A 08 push 0x8
004012EE|.68 04000116 push 0x16010004
004012F3|.68 01000152 push 0x52010001
004012F8|.E8 82070000 call 深入注册.00401A7F
004012FD|.83C4 10 add esp,0x10
00401300|.8945 F4 mov ,eax
00401303|.68 943E4700 push 深入注册.00473E94
00401308|.FF75 F4 push
0040130B|.E8 1CFEFFFF call 深入注册.0040112C
00401310|.83C4 08 add esp,0x8
00401313|.83F8 00 cmp eax,0x0
00401316|.B8 00000000 mov eax,0x0
0040131B|.0F95C0 setne al
0040131E|.8945 F0 mov ,eax
00401321|.8B5D F4 mov ebx,
00401324|.85DB test ebx,ebx
00401326|.74 09 je X深入注册.00401331
00401328|.53 push ebx
00401329|.E8 2D070000 call 深入注册.00401A5B
0040132E|.83C4 04 add esp,0x4
00401331|>837D F0 00 cmp ,0x0
00401335|.0F84 07000000 je 深入注册.00401342
0040133B|.B8 01000000 mov eax,0x1
00401340|.EB 02 jmp X深入注册.00401344
00401342|>33C0 xor eax,eax
00401344|>85C0 test eax,eax
00401346|.0F84 7C030000 je 深入注册.004016C8 ;
0040134C|.6A FF push -0x1
0040134E|.6A 08 push 0x8
00401350|.68 04000116 push 0x16010004
00401355|.68 01000152 push 0x52010001
0040135A|.E8 20070000 call 深入注册.00401A7F
0040135F|.83C4 10 add esp,0x10
00401362|.8945 FC mov ,eax
00401365|.68 04000080 push 0x80000004
0040136A|.6A 00 push 0x0
0040136C|.8B45 FC mov eax,
0040136F|.85C0 test eax,eax
00401371|.75 05 jnz X深入注册.00401378
00401373|.B8 943E4700 mov eax,深入注册.00473E94
00401378|>50 push eax
00401379|.68 01000000 push 0x1
0040137E|.BB 401C4000 mov ebx,深入注册.00401C40
00401383|.E8 D9060000 call 深入注册.00401A61
00401388|.83C4 10 add esp,0x10
0040138B|.8945 F8 mov ,eax
0040138E|.8B5D FC mov ebx,
00401391|.85DB test ebx,ebx
00401393|.74 09 je X深入注册.0040139E
00401395|.53 push ebx
00401396|.E8 C0060000 call 深入注册.00401A5B
0040139B|.83C4 04 add esp,0x4
0040139E|>8D45 F8 lea eax,
004013A1|.50 push eax
004013A2|.E8 4C030000 call 深入注册.004016F3
004013A7|.8945 F4 mov ,eax
004013AA|.8B5D F8 mov ebx,
004013AD|.85DB test ebx,ebx
004013AF|.74 09 je X深入注册.004013BA
004013B1|.53 push ebx
004013B2|.E8 A4060000 call 深入注册.00401A5B
004013B7|.83C4 04 add esp,0x4
004013BA|>8B45 F4 mov eax,
004013BD|.50 push eax
004013BE|.8B1D D0514900 mov ebx,dword ptr ds:
004013C4|.85DB test ebx,ebx
004013C6|.74 09 je X深入注册.004013D1
004013C8|.53 push ebx
004013C9|.E8 8D060000 call 深入注册.00401A5B
004013CE|.83C4 04 add esp,0x4
004013D1|>58 pop eax
004013D2|.A3 D0514900 mov dword ptr ds:,eax
004013D7|.68 05000080 push 0x80000005
004013DC|.6A 00 push 0x0
004013DE|.A1 D0514900 mov eax,dword ptr ds:
004013E3|.85C0 test eax,eax
004013E5|.75 05 jnz X深入注册.004013EC
004013E7|.B8 CD3E4700 mov eax,深入注册.00473ECD
004013EC|>50 push eax
004013ED|.68 01000000 push 0x1
004013F2|.BB C01B4000 mov ebx,深入注册.00401BC0
004013F7|.E8 65060000 call 深入注册.00401A61
004013FC|.83C4 10 add esp,0x10
004013FF|.A3 D4514900 mov dword ptr ds:,eax
00401404|.E8 66040000 call 深入注册.0040186F
00401409|.8945 FC mov ,eax
0040140C|.68 01030080 push 0x80000301
00401411|.6A 00 push 0x0
00401413|.FF35 D4514900 push dword ptr ds:
00401419|.68 01000000 push 0x1
0040141E|.BB F01D4000 mov ebx,深入注册.00401DF0
00401423|.E8 39060000 call 深入注册.00401A61
00401428|.83C4 10 add esp,0x10
0040142B|.8945 F8 mov ,eax
0040142E|.FF75 F8 push
00401431|.FF75 FC push
00401434|.B9 02000000 mov ecx,0x2
00401439|.E8 F6FDFFFF call 深入注册.00401234
0040143E|.83C4 08 add esp,0x8
00401441|.8945 F4 mov ,eax
00401444|.8B5D FC mov ebx,
00401447|.85DB test ebx,ebx
00401449|.74 09 je X深入注册.00401454
0040144B|.53 push ebx
0040144C|.E8 0A060000 call 深入注册.00401A5B
00401451|.83C4 04 add esp,0x4
00401454|>8B5D F8 mov ebx,
00401457|.85DB test ebx,ebx
00401459|.74 09 je X深入注册.00401464
0040145B|.53 push ebx
0040145C|.E8 FA050000 call 深入注册.00401A5B
00401461|.83C4 04 add esp,0x4
00401464|>8B45 F4 mov eax,
00401467|.50 push eax
00401468|.8B1D D8514900 mov ebx,dword ptr ds:
0040146E|.85DB test ebx,ebx
00401470|.74 09 je X深入注册.0040147B
00401472|.53 push ebx
00401473|.E8 E3050000 call 深入注册.00401A5B
00401478|.83C4 04 add esp,0x4
0040147B|>58 pop eax
0040147C|.A3 D8514900 mov dword ptr ds:,eax
00401481|.6A FF push -0x1
00401483|.6A 08 push 0x8
00401485|.68 03000116 push 0x16010003
0040148A|.68 01000152 push 0x52010001
0040148F|.E8 EB050000 call 深入注册.00401A7F
00401494|.83C4 10 add esp,0x10
00401497|.8945 FC mov ,eax
0040149A|.A1 D8514900 mov eax,dword ptr ds:
0040149F|.50 push eax
004014A0|.FF75 FC push
004014A3|.E8 84FCFFFF call 深入注册.0040112C
004014A8|.83C4 08 add esp,0x8
004014AB|.83F8 00 cmp eax,0x0
004014AE|.B8 00000000 mov eax,0x0
004014B3|.0F94C0 sete al
004014B6|.8945 F8 mov ,eax
004014B9|.8B5D FC mov ebx,
004014BC|.85DB test ebx,ebx
004014BE|.74 09 je X深入注册.004014C9
004014C0|.53 push ebx
004014C1|.E8 95050000 call 深入注册.00401A5B
004014C6|.83C4 04 add esp,0x4
004014C9|>837D F8 00 cmp ,0x0
004014CD|.0F84 FD000000 je 深入注册.004015D0
004014D3|.68 010100A0 push 0xA0000101
004014D8|.6A 00 push 0x0
004014DA|.68 D53E4700 push 深入注册.00473ED5
004014DF|.68 01000000 push 0x1
004014E4|.BB F01D4000 mov ebx,深入注册.00401DF0
004014E9|.E8 73050000 call 深入注册.00401A61
004014EE|.83C4 10 add esp,0x10
004014F1|.8945 FC mov ,eax
004014F4|.68 01030080 push 0x80000301
004014F9|.6A 00 push 0x0
004014FB|.68 01000000 push 0x1
00401500|.68 04000080 push 0x80000004
00401505|.6A 00 push 0x0
00401507|.8B45 FC mov eax,
0040150A|.85C0 test eax,eax
0040150C|.75 05 jnz X深入注册.00401513
0040150E|.B8 943E4700 mov eax,深入注册.00473E94
00401513|>50 push eax
00401514|.68 05000080 push 0x80000005
00401519|.6A 00 push 0x0
0040151B|.68 E33E4700 push 深入注册.00473EE3
00401520|.68 03000000 push 0x3
00401525|.B8 03000000 mov eax,0x3
0040152A|.BB A0EF4400 mov ebx,深入注册.0044EFA0
0040152F|.E8 45050000 call 深入注册.00401A79
00401534|.83C4 28 add esp,0x28
00401537|.8945 F8 mov ,eax
0040153A|.8B5D FC mov ebx,
0040153D|.85DB test ebx,ebx
0040153F|.74 09 je X深入注册.0040154A
00401541|.53 push ebx
00401542|.E8 14050000 call 深入注册.00401A5B
00401547|.83C4 04 add esp,0x4
0040154A|>68 05000080 push 0x80000005
0040154F|.6A 00 push 0x0
00401551|.8B45 F8 mov eax,
00401554|.85C0 test eax,eax
00401556|.75 05 jnz X深入注册.0040155D
00401558|.B8 CD3E4700 mov eax,深入注册.00473ECD
0040155D|>50 push eax
0040155E|.68 01000000 push 0x1
00401563|.BB F01D4000 mov ebx,深入注册.00401DF0
00401568|.E8 F4040000 call 深入注册.00401A61
0040156D|.83C4 10 add esp,0x10
00401570|.8945 F4 mov ,eax
00401573|.8B5D F8 mov ebx,
00401576|.85DB test ebx,ebx
00401578|.74 09 je X深入注册.00401583
0040157A|.53 push ebx
0040157B|.E8 DB040000 call 深入注册.00401A5B
00401580|.83C4 04 add esp,0x4
00401583|>6A 00 push 0x0
00401585|.6A 00 push 0x0
00401587|.6A 00 push 0x0
00401589|.68 01030080 push 0x80000301
0040158E|.6A 00 push 0x0
00401590|.68 00000000 push 0x0
00401595|.68 04000080 push 0x80000004
0040159A|.6A 00 push 0x0
0040159C|.8B45 F4 mov eax,
0040159F|.85C0 test eax,eax
004015A1|.75 05 jnz X深入注册.004015A8
004015A3|.B8 943E4700 mov eax,深入注册.00473E94
004015A8|>50 push eax
004015A9|.68 03000000 push 0x3
004015AE|.BB 201F4000 mov ebx,深入注册.00401F20
004015B3|.E8 A9040000 call 深入注册.00401A61
004015B8|.83C4 28 add esp,0x28
004015BB|.8B5D F4 mov ebx,
004015BE|.85DB test ebx,ebx
004015C0|.74 09 je X深入注册.004015CB
004015C2|.53 push ebx
004015C3|.E8 93040000 call 深入注册.00401A5B
004015C8|.83C4 04 add esp,0x4
004015CB|>E9 F8000000 jmp 深入注册.004016C8
004015D0|>68 010100A0 push 0xA0000101
004015D5|.6A 00 push 0x0
004015D7|.68 D53E4700 push 深入注册.00473ED5
004015DC|.68 01000000 push 0x1
004015E1|.BB F01D4000 mov ebx,深入注册.00401DF0
004015E6|.E8 76040000 call 深入注册.00401A61
004015EB|.83C4 10 add esp,0x10
004015EE|.8945 FC mov ,eax
004015F1|.68 01030080 push 0x80000301
004015F6|.6A 00 push 0x0
004015F8|.68 01000000 push 0x1
004015FD|.68 04000080 push 0x80000004
00401602|.6A 00 push 0x0
00401604|.8B45 FC mov eax,
00401607|.85C0 test eax,eax
00401609|.75 05 jnz X深入注册.00401610
0040160B|.B8 943E4700 mov eax,深入注册.00473E94
00401610|>50 push eax
00401611|.68 05000080 push 0x80000005
00401616|.6A 00 push 0x0
00401618|.68 FB3E4700 push 深入注册.00473EFB
0040161D|.68 03000000 push 0x3
00401622|.B8 03000000 mov eax,0x3
00401627|.BB A0EF4400 mov ebx,深入注册.0044EFA0
0040162C|.E8 48040000 call 深入注册.00401A79
00401631|.83C4 28 add esp,0x28
00401634|.8945 F8 mov ,eax
00401637|.8B5D FC mov ebx,
0040163A|.85DB test ebx,ebx
0040163C|.74 09 je X深入注册.00401647
0040163E|.53 push ebx
0040163F|.E8 17040000 call 深入注册.00401A5B
00401644|.83C4 04 add esp,0x4
00401647|>68 05000080 push 0x80000005
0040164C|.6A 00 push 0x0
0040164E|.8B45 F8 mov eax,
00401651|.85C0 test eax,eax
00401653|.75 05 jnz X深入注册.0040165A
00401655|.B8 CD3E4700 mov eax,深入注册.00473ECD
0040165A|>50 push eax
0040165B|.68 01000000 push 0x1
00401660|.BB F01D4000 mov ebx,深入注册.00401DF0
00401665|.E8 F7030000 call 深入注册.00401A61
0040166A|.83C4 10 add esp,0x10
0040166D|.8945 F4 mov ,eax
00401670|.8B5D F8 mov ebx,
00401673|.85DB test ebx,ebx
00401675|.74 09 je X深入注册.00401680
00401677|.53 push ebx
00401678|.E8 DE030000 call 深入注册.00401A5B
0040167D|.83C4 04 add esp,0x4
00401680|>6A 00 push 0x0
00401682|.6A 00 push 0x0
00401684|.6A 00 push 0x0
00401686|.68 01030080 push 0x80000301
0040168B|.6A 00 push 0x0
0040168D|.68 00000000 push 0x0
00401692|.68 04000080 push 0x80000004
00401697|.6A 00 push 0x0
00401699|.8B45 F4 mov eax,
0040169C|.85C0 test eax,eax
0040169E|.75 05 jnz X深入注册.004016A5
004016A0|.B8 943E4700 mov eax,深入注册.00473E94
004016A5|>50 push eax
004016A6|.68 03000000 push 0x3
004016AB|.BB 201F4000 mov ebx,深入注册.00401F20
004016B0|.E8 AC030000 call 深入注册.00401A61 ;
004016B5|.83C4 28 add esp,0x28
004016B8|.8B5D F4 mov ebx,
004016BB|.85DB test ebx,ebx
004016BD|.74 09 je X深入注册.004016C8
004016BF|.53 push ebx
004016C0|.E8 96030000 call 深入注册.00401A5B
004016C5|.83C4 04 add esp,0x4
004016C8|>8BE5 mov esp,ebp
004016CA|.5D pop ebp
004016CB\.C3 retn我的问题是注册码找到了,但是具体是怎么分析注册码应该放到用户名上,看完教程不会分析,感觉还是一头雾水,另外,那个 右键发送到 是怎么搞的,搞了一个多小时都没搞定
本帖最后由 阿菜 于 2014-12-11 22:46 编辑
仔细观察一下堆栈出来的注册码的规律,生成“178BFBFF00600F20”这组字符串,后面还会加两个数字,测试了一下后面产生的2个数字在假注册码位数变化时,才会改变其数值(为注册码位数的2倍),所以输入注册码的编辑框里的内容才是被用来计算的吧。我是不会直接看出来{:5_191:}就是把输出的假码放到注册框里,发现不成功,堆栈又生成假码(因为注册框的内容改变了),所以就试着改变用户名输入框的内容(反正这个输入框的内容都不影响堆栈出来的注册码),就直接把他拉到用户名的编辑框试试就成功了。
什么都没说,怎么帮
打的字怎么不见了,我的问题是注册码找到了,但是具体是怎么分析注册码应该放到用户名上,看完教程不会分析,感觉还是一头雾水,另外,那个 右键发送到 是怎么搞的,搞了一个多小时都没搞定
打不死的小强强 发表于 2014-12-11 16:37
什么都没说,怎么帮
对不起,刚问题的字不知道怎么没显示,现在补到下面了,麻烦您帮看下
开始--运行--sendto,把快捷方式放里面即可
520Kelly 发表于 2014-12-11 16:46
开始--运行--sendto,把快捷方式放里面即可
谢谢,这招简单明了,比百度上的强多了,请问第二季第6课的代码是怎么分析的,怎么通过代码分析出来注册码放到用户名上就可以成功的,麻烦指点下
antony 发表于 2014-12-11 17:13
谢谢,这招简单明了,比百度上的强多了,请问第二季第6课的代码是怎么分析的,怎么通过代码分析出来注册 ...
我也忘记了、好像鲨鱼大叔特意搞的这么一个反心理课件、是特意的、
管理发送到:
开始菜单>>>运行>>>输入 shell:sendto >>>回车
然后就打开了发送到的文件夹, 把想发送到的快捷方式图标放进这个文件夹就可以发送到了!
太长了,看不懂。
页:
[1]
2