最初由 17521 发布
写个教程大家也用用
有人曾写过这个静态链接库的破解方法:
http://bbs.pediy.com/showthread.php?s=&threadid=7076&highlight=%BE%B2%CC%AC%BF%E2
不过他的方法好像有些地方有问题。我向来不喜欢写破解笔记,又是以前破的,没记什么笔记,翻了一下,有几句,可能别人看了不知所云(其实我现在也看大懂了
),也贴一下吧,是2.2.1版的,看了不许笑啊
:
笔记1:
原内容:
10006137 /75 41 JNZ SHORT SkinMagi.1000617A
10006139 |. |53 PUSH EBX
1000613A |. |E8 ABCC0000 CALL SkinMagi.10012DEA
1000613F |. |85C0 TEST EAX,EAX
10006141 |. |59 POP ECX ; SkinSpli.00400000
10006142 |75 36 JNZ SHORT SkinMagi.1000617A ; 需要改的地方1
10006144 |. |FF15 60020510 CALL DWORD PTR DS:[<&KERNEL32.GetCurrentThreadId>] ; [GetCurrentThreadId
1000614A |. |8365 E8 00 AND DWORD PTR SS:[EBP-18],0
1000614E |. |8945 E4 MOV DWORD PTR SS:[EBP-1C],EAX
10006151 |. |8D45 E4 LEA EAX,DWORD PTR SS:[EBP-1C]
10006154 |. |B9 B8F20510 MOV ECX,SkinMagi.1005F2B8
10006159 |. |50 PUSH EAX
1000615A |. |8D45 DC LEA EAX,DWORD PTR SS:[EBP-24]
1000615D |. |50 PUSH EAX
1000615E |. |E8 89200000 CALL SkinMagi.100081EC
10006163 |. |8B00 MOV EAX,DWORD PTR DS:[EAX]
10006165 |. |C740 10 11000000 MOV DWORD PTR DS:[EAX+10],11
1000616C |> |56 PUSH ESI ; /pCriticalSection
1000616D |. |FF15 E8010510 CALL DWORD PTR DS:[<&KERNEL32.LeaveCriticalSection>] ; \LeaveCriticalSection
10006173 |. |33C0 XOR EAX,EAX
10006175 |. |E9 51010000 JMP SkinMagi.100062CB
1000617A |> \6A 40 PUSH 40 ; /Style = MB_OK|MB_ICONASTERISK|MB_APPLMODAL
1000617C |. 68 38BD0510 PUSH SkinMagi.1005BD38 ; |Title = "Unregistered"
10006181 |. 68 78BC0510 PUSH SkinMagi.1005BC78 ; |Text = "This application uses trial version of SkinMagic Toolkit.
You can register at http://www.appspeed.com"
10006186 |. 6A 00 PUSH 0 ; |hOwner = NULL
10006188 |. C705 C8F20510 01000000 MOV DWORD PTR DS:[1005F2C8],1 ; |
10006192 FF15 0C040510 CALL DWORD PTR DS:[<&USER32.MessageBoxA>] ; 需要改的地方2
10006198 |. 56 PUSH ESI ; /pCriticalSection
10006199 |. FF15 E8010510 CALL DWORD PTR DS:[<&KERNEL32.LeaveCriticalSection>] ; \LeaveCriticalSection
1000619F |> 56 PUSH ESI
100061A0 |. 8975 E8 MOV DWORD PTR SS:[EBP-18],ESI
100061A3 |. FFD7 CALL EDI
100061A5 |. 8B3D 60020510 MOV EDI,DWORD PTR DS:[<&KERNEL32.GetCurrentThreadId>] ; kernel32.GetCurrentThreadId
改后内容:
10006137 /75 41 JNZ SHORT SkinMagi.1000617A
10006139 |. |53 PUSH EBX
1000613A |. |E8 ABCC0000 CALL SkinMagi.10012DEA
1000613F |. |85C0 TEST EAX,EAX
10006141 |. |59 POP ECX
10006142 |EB 44 JMP SHORT SkinMagi.10006188 ; 需要改的地方1
10006144 |. |FF15 60020510 CALL DWORD PTR DS:[<&KERNEL32.GetCurrentThreadId>] ; [GetCurrentThreadId
1000614A |. |8365 E8 00 AND DWORD PTR SS:[EBP-18],0
1000614E |. |8945 E4 MOV DWORD PTR SS:[EBP-1C],EAX
10006151 |. |8D45 E4 LEA EAX,DWORD PTR SS:[EBP-1C]
10006154 |. |B9 B8F20510 MOV ECX,SkinMagi.1005F2B8
10006159 |. |50 PUSH EAX
1000615A |. |8D45 DC LEA EAX,DWORD PTR SS:[EBP-24]
1000615D |. |50 PUSH EAX
1000615E |. |E8 89200000 CALL SkinMagi.100081EC
10006163 |. |8B00 MOV EAX,DWORD PTR DS:[EAX]
10006165 |. |C740 10 11000000 MOV DWORD PTR DS:[EAX+10],11
1000616C |> |56 PUSH ESI ; /pCriticalSection
1000616D |. |FF15 E8010510 CALL DWORD PTR DS:[<&KERNEL32.LeaveCriticalSection>] ; \LeaveCriticalSection
10006173 |. |33C0 XOR EAX,EAX
10006175 |. |E9 51010000 JMP SkinMagi.100062CB
1000617A |> \6A 40 PUSH 40 ; /Style = MB_OK|MB_ICONASTERISK|MB_APPLMODAL
1000617C |. 68 38BD0510 PUSH SkinMagi.1005BD38 ; |Title = "Unregistered"
10006181 |. 68 78BC0510 PUSH SkinMagi.1005BC78 ; |Text = "This application uses trial version of SkinMagic Toolkit.
You can register at http://www.appspeed.com"
10006186 |. 6A 00 PUSH 0 ; |hOwner = NULL
10006188 |. C705 C8F20510 01000000 MOV DWORD PTR DS:[1005F2C8],1 ; |
10006192 90 NOP ; 需要改的地方2
10006193 90 NOP
10006194 90 NOP
10006195 90 NOP
10006196 90 NOP
10006197 90 NOP
10006198 |. 56 PUSH ESI ; /pCriticalSection
10006199 |. FF15 E8010510 CALL DWORD PTR DS:[<&KERNEL32.LeaveCriticalSection>] ; \LeaveCriticalSection
1000619F |> 56 PUSH ESI
100061A0 |. 8975 E8 MOV DWORD PTR SS:[EBP-18],ESI
100061A3 |. FFD7 CALL EDI
100061A5 |. 8B3D 60020510 MOV EDI,DWORD PTR DS:[<&KERNEL32.GetCurrentThreadId>] ; kernel32.GetCurrentThreadId
99CA3E2A03568463
笔记2:
修改记录:
SkinMagicLibMD6Trial.lib 修改:
文件1: SkinMagicMD6.lib ― 2324256(237720H)字节
文件2: SkinMagicLibMD6Trial.lib ― 2324256(237720H)字节
<偏移(文件1)> <文件1> <文件2> <偏移(文件2)>
16E0B1h 90h 75h 16E0B1h
16E0B2h 90h 41h 16E0B2h
16E0BCh EBh 75h 16E0BCh
16E0BDh 44h 36h 16E0BDh
16E10Ch EBh FFh 16E10Ch
16E10Dh 04h 15h 16E10Dh
文件: 从 0h 到 23771Fh, 0 字节被忽略.
SkinMagicLibMT6Trial.lib 修改:
文件1: SkinMagicMT6.lib ― 2614088(27E348H)字节
文件2: SkinMagicLibMT6Trial.lib ― 2614088(27E348H)字节
<偏移(文件1)> <文件1> <文件2> <偏移(文件2)>
18D997h 90h 75h 18D997h
18D998h 90h 41h 18D998h
18D9A2h EBh 75h 18D9A2h
18D9A3h 44h 36h 18D9A3h
18D9F2h EBh FFh 18D9F2h
18D9F3h 04h 15h 18D9F3h
文件: 从 0h 到 27E347h, 0 字节被忽略.
SkinMagicLibMD7Trial.lib 修改:
文件1: SkinMagicMD7.lib ― 8692508(84A31CH)字节
文件2: SkinMagicLibMD7Trial.lib ― 8692508(84A31CH)字节
<偏移(文件1)> <文件1> <文件2> <偏移(文件2)>
455111h 90h 75h 455111h
455112h 90h 2Ah 455112h
45511Ch EBh 75h 45511Ch
45511Dh 2Dh 1Fh 45511Dh
455155h EBh FFh 455155h
455156h 04h 15h 455156h
文件: 从 0h 到 84A31Bh, 0 字节被忽略.
SkinMagicLibMT7Trial.lib 修改:
文件1: SkinMagicMT7.lib ― 5844036(592C44H)字节
文件2: SkinMagicLibMT7Trial.lib ― 5844036(592C44H)字节
<偏移(文件1)> <文件1> <文件2> <偏移(文件2)>
339DD7h 90h 75h 339DD7h
339DD8h 90h 2Ah 339DD8h
339DE2h EBh 75h 339DE2h
339DE3h 2Dh 1Fh 339DE3h
339E1Bh EBh FFh 339E1Bh
339E1Ch 04h 15h 339E1Ch
文件: 从 0h 到 592C43h, 0 字节被忽略.
SkinMagicTrial.dll 修改:
文件1: SkinMagic.dll ― 417792(66000H)字节
文件1: SkinMagicTrial.dll ― 417792(66000H)字节
<偏移(文件1)> <文件1> <文件2> <偏移(文件2)>
6137h 90h 75h 6137h
6138h 90h 41h 6138h
6142h EBh 75h 6142h
6143h 44h 36h 6143h
6192h EBh FFh 6192h
6193h 04h 15h 6193h
6194h 90h 0Ch 6194h
6195h 90h 04h 6195h
6196h 90h 05h 6196h
6197h 90h 10h 6197h
文件2: 从 0h 到 65FFFh, 0 字节被忽略.