Indonesia Homesite - Tutorial Winx DVD Ripper Platinum v5.9.4

Tulisan Dasar Cracking

Selamat Datang................. Cracker..........

Tutorial Cracking :

Winx DVD Ripper Platinum v5.9.4

Target  : Winx DVD Ripper Platinum v5.9.4
Tool     : OllyDebug DeFixeD
              Exe Info PE

WinX DVD Ripper Platinum can rip the content of DVDs to all popular video formats such as AVI, MOV, FLV, WMV, MPEG, MP4, 3GP, etc. What's more, it also owns the ability of ripping different DVDs (including encrypted DVDs) to Sony PSP, Apple iPhone, iPod, iTouch, Apple TV, Zune, Mobile phone, etc.

Scan WinX_DVD_Ripper_Platinum.exe dengan Exe Info PE untuk melihat programnya diproteksi apa??
Borland C++ Copyright 2002 Borland Corporation *ACM

Buka WinX_DVD_Ripper_Platinum.exe nya dengan OllyDebug DeFixeD.
Di "CPU - main thread, module WinX_DVD", klik kanan pilih "Search for" terus "All Referenced Text Strings".
Geser keatas terus cari kata "Incorrect License Code".

Ketemunya.

00403B04 MOV EDX,00544BE1 ASCII "Incorrect License Code!",LF,"Please Input VALIDATE License Code!"

Klik dua kali.

00403B02 6A 00 PUSH 0
00403B04 BA E14B5400 MOV EDX,00544BE1 ASCII "Incorrect License Code!",LF,"Please Input VALIDATE License Code!"

Trace kodenya keatas.

004039E0 E8 7B010000 CALL 00403B60 WinX_DVD.00403B60
004039E5 83C4 08 ADD ESP,8
004039E8 BA 02000000 MOV EDX,2
004039ED 50 PUSH EAX
004039EE 8D45 F8 LEA EAX,DWORD PTR SS:[EBP-8]
004039F1 FF4E 1C DEC DWORD PTR DS:[ESI+1C]
004039F4 E8 8FDF1300 CALL 00541988
004039F9 FF4E 1C DEC DWORD PTR DS:[ESI+1C]
004039FC 8D45 FC LEA EAX,DWORD PTR SS:[EBP-4]
004039FF BA 02000000 MOV EDX,2
00403A04 E8 7FDF1300 CALL 00541988 WinX_DVD.00541988
00403A09 59 POP ECX
00403A0A 84C9 TEST CL,CL
00403A0C 0F84 F0000000 JE 00403B02

Beri breakpoint dialamat "004039E0"

Trus jalankan Ollynya.
Isi registrationnya.
Olly akan break dialamat tersebut.

Masuk kedalam "CALL 00403B60" atau tekan "F7".

00403B60 55 PUSH EBP
00403B61 8BEC MOV EBP,ESP
00403B63 83C4 80 ADD ESP,-80
00403B66 53 PUSH EBX
00403B67 56 PUSH ESI
00403B68 57 PUSH EDI

Trace kodenya kebawah lagi "F8"

00403BC2 E8 F1DD1300 CALL 005419B8
00403BC7 FF4B 1C DEC DWORD PTR DS:[EBX+1C]
00403BCA 8D45 E8 LEA EAX,DWORD PTR SS:[EBP-18]
00403BCD BA 02000000 MOV EDX,2
00403BD2 E8 B1DD1300 CALL 00541988
00403BD7 66:C743 10 20 MOV WORD PTR DS:[EBX+10],20
00403BDD 8D96 D0010000 LEA EDX,DWORD PTR DS:[ESI+1D0]
00403BE3 8D45 E4 LEA EAX,DWORD PTR SS:[EBP-1C]
00403BE6 E8 3DDC1300 CALL 00541828

Dialamat "00403BDD" kode yang asli akan muncul

00403BDD 8D96 D0010000 LEA EDX,DWORD PTR DS:[ESI+1D0]
Address=00544CA0, (ASCII "WINXRP-6478-1421-2253")
EDX=01224854, (ASCII "1234-5678-9012")

"WINXRP-6478-1421-2253" adalah license kode asli..!!!

15/04/10

WebMaster

Terus Kembali

Komentar dan Mailing List

Crack One Software Every Day Make You The Real Cracker