📄 cline97.html
字号:
<HTML>
<HEAD>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1">
<META NAME="GENERATOR" CONTENT="Mozilla/4.04 [en] (Win95; I) [Netscape]">
<META NAME="Author" CONTENT="KLee8084">
<META NAME="Classification" CONTENT="Reverse Code Engineering">
<META NAME="Description" CONTENT="Step by step guide to cracking Cline97">
<META NAME="KeyWords" CONTENT="How to crack CLine97">
<TITLE>CLine 97</TITLE>
</HEAD>
<BODY TEXT="#001010" BGCOLOR="#C0C0C0" LINK="#FF0000" VLINK="#000099" ALINK="#FFFF00">
<TABLE BORDER CELLSPACING=2 WIDTH="100%" 22" >
<TR BGCOLOR="#FFFFFF">
<TD WIDTH="15%">
<CENTER><B><FONT FACE="Arial,Helvetica">August 1998</FONT></B></CENTER>
</TD>
<TD WIDTH="100%">
<CENTER><FONT FACE="Arial,Helvetica"><FONT SIZE=+3>"Cracking CLine97"</FONT></FONT></CENTER>
</TD>
<TD WIDTH="30%">
<CENTER><B><FONT FACE="Arial,Helvetica">Win '95 PROGRAM</FONT></B></CENTER>
<CENTER><FONT FACE="Arial,Helvetica"><FONT COLOR="#808080">Win Code Reversing</FONT></FONT></CENTER>
<CENTER><FONT FACE="Arial,Helvetica"><FONT COLOR="#808080"> </FONT></FONT></CENTER>
</TD>
</TR>
<TR BGCOLOR="#FFFF99">
<TD WIDTH="15%">
<CENTER><FONT FACE="Arial,Helvetica"><FONT COLOR="#890000"> </FONT></FONT></CENTER>
</TD>
<TD>
<CENTER><FONT FACE="Arial,Helvetica"><B><FONT SIZE=+1>by</FONT></B> <B><FONT SIZE=+3>KLee8084</FONT></B><FONT SIZE=+2> </FONT></FONT></CENTER>
</TD>
<TD VALIGN=CENTER WIDTH="30%"><FONT FACE="Arial,Helvetica"> </FONT></TD>
</TR>
<TR BGCOLOR="#999900">
<TD WIDTH="15%">
<CENTER><FONT FACE="Arial,Helvetica"> </FONT></CENTER>
</TD>
<TD>
<CENTER><FONT FACE="Arial,Helvetica">Code Reversing For Beginners </FONT></CENTER>
</TD>
<TD WIDTH="30%">
<CENTER><FONT FACE="Arial,Helvetica"> </FONT></CENTER>
<CENTER><FONT FACE="Arial,Helvetica"> </FONT></CENTER>
</TD>
</TR>
<TR BGCOLOR="#C0C0C0">
<TD WIDTH="15%"></TD>
<TD ALIGN=LEFT>
<CENTER><FONT FACE="Arial,Helvetica"> </FONT></CENTER>
<CENTER><B><FONT FACE="Arial,Helvetica">Program Details</FONT></B></CENTER>
<CENTER><FONT FACE="Arial,Helvetica"><B>Program Name:</B> CLine97.exe</FONT></CENTER>
<CENTER><FONT FACE="Arial,Helvetica"><B>Program Type:</B> 3D Graphic Program</FONT></CENTER>
<CENTER><FONT FACE="Arial,Helvetica"><B>Program Location: </B><A HREF="http://sunsite.doc.ic.ac.uk/public/packages//ibmpc/windows95/miscutil/cline97.zip">HERE</A> </FONT></CENTER>
<CENTER><FONT FACE="Arial,Helvetica"><B>Program Size: </B>25 K</FONT></CENTER>
<FONT FACE="Arial,Helvetica"> </FONT></TD>
<TD WIDTH="30%"></TD>
</TR>
<TR BGCOLOR="#C0C0C0">
<TD WIDTH="15%"></TD>
<TD><FONT FACE="Arial,Helvetica"><B> </B> </FONT>
<CENTER><B><FONT FACE="Arial,Helvetica">Tools Used:</FONT></B></CENTER>
<CENTER><FONT FACE="Arial,Helvetica">Softice V3.2 - Debugger</FONT></CENTER>
<CENTER><FONT FACE="Arial,Helvetica"> </FONT></CENTER>
</TD>
<TD WIDTH="30%"></TD>
</TR>
<TR>
<TD VALIGN=CENTER BGCOLOR="#C6E7C6">
<CENTER><B><FONT FACE="Arial,Helvetica"><FONT COLOR="#0000FF">Rating</FONT></FONT></B></CENTER>
</TD>
<TD VALIGN=CENTER BGCOLOR="#C6E7C6">
<CENTER><B><FONT FACE="Arial,Helvetica"><FONT SIZE=-1><FONT COLOR="#0000FF">Easy
( X ) Medium ( ) Hard ( ) Pro
( )</FONT> </FONT></FONT></B></CENTER>
</TD>
<TD WIDTH="30%" BGCOLOR="#999900"><B><FONT FACE="Arial,Helvetica"><FONT SIZE=-1>There
is a crack, a crack in everything. That's how the light gets in.</FONT></FONT></B></TD>
</TR>
</TABLE>
<CENTER><FONT FACE="Arial,Helvetica"><FONT SIZE=-1> </FONT></FONT></CENTER>
<CENTER><FONT FACE="Arial,Helvetica"> </FONT>
<HR></CENTER>
<CENTER><FONT FACE="Arial,Helvetica"> </FONT></CENTER>
<CENTER><FONT FACE="Arial,Helvetica"><FONT SIZE=+2>CLine97 Cracking</FONT></FONT></CENTER>
<CENTER><FONT FACE="Arial,Helvetica"><FONT COLOR="#0B7FC1">Written by KLee8084</FONT></FONT></CENTER>
<FONT FACE="Arial Black"> </FONT>
<BR>
<BR>
<TABLE BORDER CELLSPACING=2 WIDTH="100%" HEIGHT="22" >
<TR>
<TD BGCOLOR="#C6E7C6">
<CENTER><FONT COLOR="#0000FF"><FONT SIZE=+2>Introduction</FONT></FONT></CENTER>
</TD>
</TR>
</TABLE>
<FONT FACE="Arial,Helvetica"> </FONT>
<BR>CLine97 is a useful utility that allows you to use the DOS command
line from Windows 95.
<BR>
<TABLE BORDER CELLSPACING=2 WIDTH="100%" HEIGHT="22" >
<TR>
<TD BGCOLOR="#C6E7C6">
<CENTER><FONT COLOR="#3333FF"><FONT SIZE=+2>About this protection system</FONT></FONT></CENTER>
</TD>
</TR>
</TABLE>
<FONT FACE="Arial,Helvetica"> </FONT>
<BR>This program requires a registration number that is calculated from
the user name.
<BR><FONT FACE="Arial,Helvetica"> </FONT>
<TABLE BORDER CELLSPACING=2 WIDTH="100%" HEIGHT="22" >
<TR>
<TD BGCOLOR="#C6E7C6">
<CENTER><FONT SIZE=+2><FONT COLOR="#0000FF">The Essay</FONT> </FONT></CENTER>
</TD>
</TR>
</TABLE>
<FONT FACE="Arial,Helvetica"><FONT COLOR="#000000"> </FONT></FONT>
<BR>When you first start Cline97.exe a screen pops up with registration
information and allows you to either run the unregistered version, or to
register the program. We want to register it, of course.
<BR>
<BR>Click on <B><U>R</U>EGISTER</B>.
<P>In the Name textbox, put in your name. I put in KLee8084. Notice that
the program automatically capitalizes all of the letters that you enter.
In the Number textbox, put in a fake registration number. I put in 76543.
<BR>
<BR>Now we want to set a breakpoint in Softice.
<BR>
<BR>Press <B>CTRL-D</B> to go into Softice. Once there, type <B>BPX GetDlgItemTextA</B>
(I first used GetWindowTextA, but that was not the function that was called.).
<BR>
<BR>Type <B>X</B> to get out of SoftIce and back to the program.
Ready? Click on <B>OK</B>.
<BR>
<BR>Back in SoftIce, notice that we are at the start of USER32!GetDlgItemTextA.
Press <B>F11</B> to step out of the function.
<BR>
<BR>Here is what we have:
<BR>
<BR><FONT FACE="Courier New,Courier"><FONT SIZE=-1>:00402558 CALL [USER32!GetDlgItemTextA]</FONT></FONT>
<BR><FONT FACE="Courier New,Courier"><FONT SIZE=-1>:0040255E PUSH 00</FONT></FONT>
<BR><FONT FACE="Courier New,Courier"><FONT SIZE=-1>:00402560 MOV EDI, 00410B30
<B><FONT COLOR="#993366"><- the name that you entered</FONT></B></FONT></FONT>
<BR><FONT FACE="Courier New,Courier"><FONT SIZE=-1>:00402565 PUSH 00</FONT></FONT>
<BR><FONT FACE="Courier New,Courier"><FONT SIZE=-1>:00402567 PUSH 000003FC</FONT></FONT>
<BR><FONT FACE="Courier New,Courier"><FONT SIZE=-1>:0040256C PUSH ESI</FONT></FONT>
<BR><FONT FACE="Courier New,Courier"><FONT SIZE=-1>:0040256D CALL [USER32!GetDlgItemInt]
<B><FONT COLOR="#993366"><- get the reg # that you entered</FONT></B></FONT></FONT>
<BR><FONT FACE="Courier New,Courier"><FONT SIZE=-1>:00402573 MOV ECX, FFFFFFFF
<B><FONT COLOR="#993366"><- Set up for getting the length of user name</FONT></B></FONT></FONT>
<P>*NOTE: if you look at the value of EAX, you'll see that it already holds
the length of the name that you entered.
<P>:00402578 MOV [0040A554], EAX
<BR>
<BR>If you scroll down, you'll see the routine that calculates the registration
number based on the name that you entered.
<P><FONT FACE="Courier New,Courier"><FONT SIZE=-1>:00402584
MOVSX EAX, BYTE PTR [00410B30] <- <B><FONT COLOR="#993366">first letter
of name you</FONT></B></FONT></FONT>
<BR><FONT FACE="Courier New,Courier"><FONT SIZE=-1>
<- <B><FONT COLOR="#993366">entered</FONT></B></FONT></FONT>
<BR><FONT FACE="Courier New,Courier"><FONT SIZE=-1>:0040258B
IMUL ECX, EAX</FONT></FONT>
<BR><FONT FACE="Courier New,Courier"><FONT SIZE=-1>:0040258E
SHL ECX, 0A</FONT></FONT>
<BR><FONT FACE="Courier New,Courier"><FONT SIZE=-1>:00402591
ADD ECX, 002F8CC</FONT></FONT>
<BR><FONT FACE="Courier New,Courier"><FONT SIZE=-1>:00402597
MOV [0040A550], ECX
<- <B><FONT COLOR="#993366">Real registration number</FONT></B></FONT></FONT>
<BR><FONT FACE="Courier New,Courier"><FONT SIZE=-1>:0040259D
CMP [0040A554], ECX</FONT></FONT>
<BR><FONT FACE="Courier New,Courier"><FONT SIZE=-1>:004025A3
JZ 004025D6
<- <B><FONT COLOR="#993366">Same? Then jump to good code.</FONT></B></FONT></FONT>
<BR><FONT FACE="Courier New,Courier"><FONT SIZE=-1>:004025A5
CMP DWORD PTR [0040A554], 0361DECA <- <B><FONT COLOR="#993366">Well!!!
A MASTER REG</FONT></B></FONT></FONT>
<BR><FONT FACE="Courier New,Courier"><FONT SIZE=-1>
<- <B><FONT COLOR="#993366">NUMBER</FONT></B></FONT></FONT>
<BR><FONT FACE="Courier New,Courier"><FONT SIZE=-1>:004025AF
JZ 004025D6
<- <B><FONT COLOR="#993366">Same? Then jump to good code.</FONT></B></FONT></FONT>
<BR><FONT FACE="Courier New,Courier"><FONT SIZE=-1>:004025B1
PUSH 30
<- <B><FONT COLOR="#993366">Start of REGISTRATION ERROR routine.</FONT></B></FONT></FONT>
<P>Press <B>F10</B> <U>until</U> you reach :0040259D.
<P>If you type <B>? ECX</B> in Softice, you'll see the hex, decimal, and
ascii values of ECX. The decimal value is the registration number.
<BR>
<BR>If you type <B>? 0361DECA</B> in Softice (from the CMP instruction
in :004025A5), you'll see that the decimal value is <B>56745674</B>. This
is the Master Registration Number. No matter what name you put in, <B>56745674</B>
will register the program.
<P>Program cracked.
<TABLE BORDER CELLSPACING=2 WIDTH="100%" HEIGHT="22" >
<TR>
<TD BGCOLOR="#C6E7C6">
<CENTER><FONT SIZE=+2><FONT COLOR="#0000FF">The 'Crack'</FONT> </FONT></CENTER>
</TD>
</TR>
</TABLE>
<FONT FACE="Arial,Helvetica"> </FONT>
<BR>There is no crack, per se. We have found, though, that if we put in
56745674 in the Number textbox, we can put in any name that we choose and
the program will become registered.
<BR>
<TABLE BORDER CELLSPACING=2 WIDTH="100%" HEIGHT="22" >
<TR>
<TD BGCOLOR="#C6E7C6">
<CENTER><FONT SIZE=+2><FONT COLOR="#0000FF">Final Notes</FONT> </FONT></CENTER>
</TD>
</TR>
</TABLE>
<FONT FACE="Arial,Helvetica"><FONT COLOR="#333333"> </FONT></FONT>
<BR>CLine97 is a small program that had me scratching my head for a time,
trying to reverse the calculations, until I thought to look at the decimal
values of EAX and ECX. *grin*
<P><FONT FACE="Arial,Helvetica">My thanks and gratitude goes to:-</FONT>
<BR><FONT FACE="Arial,Helvetica"> </FONT>
<BR><FONT FACE="Arial,Helvetica">Fravia+ for providing possibly the greatest
source of Reverse Engineering</FONT>
<BR><FONT FACE="Arial,Helvetica">knowledge on the Web.</FONT>
<BR><FONT FACE="Arial,Helvetica"> </FONT>
<BR><FONT FACE="Arial,Helvetica">+ORC for showing me the light at the end
of the tunnel.</FONT>
<BR>
<TABLE BORDER CELLSPACING=2 WIDTH="100%" HEIGHT="22" >
<TR>
<TD BGCOLOR="#C6E7C6">
<CENTER><FONT COLOR="#0000FF"><FONT SIZE=+2>Ob Duh</FONT></FONT> </CENTER>
</TD>
</TR>
</TABLE>
<I><FONT FACE="Arial,Helvetica"> </FONT></I>
<BR><FONT FACE="Arial,Helvetica"> </FONT>
<BR><I><FONT FACE="Arial,Helvetica">Do I really have to remind you all
that by buying and NOT stealing the software you use will ensure that these
software houses will continue to produce even *better* software for
us to use and more importantly, to continue offering even more challenges
to breaking their often weak protection systems.</FONT></I>
<BR><FONT FACE="Arial,Helvetica"> </FONT>
<BR><I><FONT FACE="Arial,Helvetica">If your looking for cracks or serial
numbers from these pages then your wasting your time, try searching elsewhere
on the Web under Warze, Cracks etc.</FONT></I>
<BR><FONT FACE="Arial,Helvetica"> </FONT>
<BR><FONT FACE="Arial,Helvetica"><FONT SIZE=-2>Essay by: <A HREF="mailto:KLee8084@snet.net">KLee8084</A></FONT></FONT>
<BR><FONT FACE="Arial,Helvetica"><FONT SIZE=-2>Page Created: 8th August
1998</FONT></FONT>
</BODY>
</HTML>
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -