004F6238 /$ 55 push ebp
004F6239 |. 8BEC mov ebp, esp
004F623B |. 83C4 EC add esp, -14
004F623E |. 53 push ebx
004F623F |. 56 push esi
004F6240 |. 33DB xor ebx, ebx
004F6242 |. 895D EC mov dword ptr [ebp-14], ebx
004F6245 |. 894D F8 mov dword ptr [ebp-8], ecx
004F6248 |. 8955 FC mov dword ptr [ebp-4], edx
004F624B |. 8B45 FC mov eax, dword ptr [ebp-4]
004F624E |. E8 31ECF0FF call 00404E84
004F6253 |. 8B45 F8 mov eax, dword ptr [ebp-8]
004F6256 |. E8 29ECF0FF call 00404E84
004F625B |. 33C0 xor eax, eax
004F625D |. 55 push ebp
004F625E |. 68 22634F00 push 004F6322
004F6263 |. 64:FF30 push dword ptr fs:[eax]
004F6266 |. 64:8920 mov dword ptr fs:[eax], esp
004F6269 |. 33C9 xor ecx, ecx
004F626B |. B2 01 mov dl, 1
004F626D |. A1 A8AA4E00 mov eax, dword ptr [4EAAA8]
004F6272 |. E8 39B3F2FF call 004215B0
004F6277 |. 8945 F0 mov dword ptr [ebp-10], eax
004F627A |. 33C0 xor eax, eax
004F627C |. 55 push ebp
004F627D |. 68 F8624F00 push 004F62F8
004F6282 |. 64:FF30 push dword ptr fs:[eax]
004F6285 |. 64:8920 mov dword ptr fs:[eax], esp
004F6288 |. BA 3C634F00 mov edx, 004F633C ; ASCII "3Way"
004F628D |. 8B45 F0 mov eax, dword ptr [ebp-10]
004F6290 |. E8 D34DFFFF call 004EB068
004F6295 |. BE 01000000 mov esi, 1
004F629A |. 8B1D 1C815100 mov ebx, dword ptr [51811C] ; AVCServe.00517A48
004F62A0 |. 83C3 04 add ebx, 4
004F62A3 |> 8B13 /mov edx, dword ptr [ebx]
004F62A5 |. 33C9 |xor ecx, ecx
004F62A7 |. 8B45 F0 |mov eax, dword ptr [ebp-10]
004F62AA |. E8 1951FFFF |call 004EB3C8
004F62AF |. 8D4D EC |lea ecx, dword ptr [ebp-14]
004F62B2 |. 8B55 F8 |mov edx, dword ptr [ebp-8]
004F62B5 |. 8B45 F0 |mov eax, dword ptr [ebp-10]
004F62B8 |. E8 6751FFFF |call 004EB424
004F62BD |. 8B45 EC |mov eax, dword ptr [ebp-14]
004F62C0 |. 8B55 FC |mov edx, dword ptr [ebp-4]
004F62C3 |. E8 18EBF0FF |call 00404DE0
004F62C8 74 09 je short 004F62D3
004F62CA |. 46 |inc esi
004F62CB 83C3 04 add ebx, 4
004F62CE |. 83FE 10 |cmp esi, 10
004F62D1 |.^ 75 D0 \jnz short 004F62A3
004F62D3 |> 83FE 0F cmp esi, 0F
004F62D6 7E 07 jle short 004F62DF
004F62D8 |. 33C0 xor eax, eax
004F62DA |. 8945 F4 mov dword ptr [ebp-C], eax
004F62DD |. EB 03 jmp short 004F62E2
004F62DF |> 8975 F4 mov dword ptr [ebp-C], esi
004F62E2 |> 33C0 xor eax, eax
004F62E4 |. 5A pop edx
004F62E5 |. 59 pop ecx
004F62E6 |. 59 pop ecx
004F62E7 |. 64:8910 mov dword ptr fs:[eax], edx
004F62EA |. 68 FF624F00 push 004F62FF
004F62EF |> 8B45 F0 mov eax, dword ptr [ebp-10]
004F62F2 |. E8 FDD7F0FF call 00403AF4
004F62F7 \. C3 retn
这段代码是程序的注册验证部分的算法吗? 请教各位大大
我暴破了004F62D6 7E 07 jle short 004F62DF 这个地址
虽然成功了! 但是好象还有些小问题!
现在我知道 2个正确的注册码
有高人可以写出算法注册机吗
[课程]Linux pwn 探索篇!