Indonesia Homesite - Tutorial FreshFTP v5.12

Tulisan Dasar Cracking

Selamat Datang................. Cracker..........

Tutorial Cracking :

FreshFTP v5.12

Target  : FreshFTP v5.12
Tool     : OllyDebug DeFixeD
              PEiD v0.95

FreshFTP is a FTP client software. With FreshFTP you can upload or download your internet web content into server. Features of this software multithreading for simultaneous transfer, file and directory upload, and ability to resume uploads (if the server support it). Unlike any other similar utilities, this software is 100% free, no charges, no banners/ads in the software (which slowdown your download), no spyware.

Sebetulnya program ini gratis dengan registrasi diwebsitenya, kita akan mendapatkan "Personal Lisence" khusus pendaftarnya. Di tutorial ini kita akan membuat program ini menjadi "Bussiness Lisence".

Buka FreshFTP, kita lihat apa saja yang muncul...!
Register di menu Help.
Isi registernya terserah kamu trus klik ok.
Nothing happen.....?
Ubah tanggal dikomputermu menjadi satu bulan dari sekarang.
Buka FreshFTP lagi.
Muncul "Attention!!....You have passed your 23 trial days", harap dicatat nih...!

Langkah pertama :

Scan freshftp.exe dengan PEiD untuk melihat programnya dipack dengan apa??
Gak pakai proteksi cuma "Borland Delphi 6.0 - 7.0".

Langkah kedua :

Buka file freshftp.exe dengan OllyDebug DeFixeD.
Di "CPU - main thread, module freshftp", klik kanan pilih "Search for" terus "All Referenced Text Strings".
Geser keatas terus klik kanan pilih "Search For Text".
Pada "Enter Text to Search For" masukkan kata "Attention!!", hilangkan tanda di case sensitive dan tandai entire scope.

kita berada dialamat

005146FC MOV EDX,0051486C ASCII "Attention!!.... Please re-register."
00514730 MOV EDX,00514898 ASCII "Attention!!.... You have passed your 23 trial days."

Klik dua kali dialamat diatas

005145AB |. 84C0 TEST AL,AL
005145AD 0F84 81000000 JE 00514634
005145B3 |. 8D4D FC LEA ECX,DWORD PTR SS:[EBP-4]
005145B6 |. BA C4475100 MOV EDX,005147C4 ; ASCII "RegCode"
.
.
.
005145DD |. 66:85F6 TEST SI,SI
005145E0 |. 7C 52 JL SHORT 00514634
005145E2 |. 46 INC ESI
.
.
.
00514634 |> 8BC3 MOV EAX,EBX
00514636 |. E8 ADF5EEFF CALL 00403BE8
0051463B |. 0FB605 69E351>MOVZX EAX,BYTE PTR DS:[51E369]
00514642 |. 0A05 6AE35100 OR AL,BYTE PTR DS:[51E36A]
00514648 0F84 C9000000 JE 00514717
0051464E |. A1 78BF5100 MOV EAX,DWORD PTR DS:[51BF78]
.
.
.
00514669 74 36 JE SHORT 005146A1
0051466B |. BA D4475100 MOV EDX,005147D4 ; ASCII "FreshFTP - [Bussines License]"
.
.
.
00514697 |. BA FC475100 MOV EDX,005147FC ; ASCII "About - [Bussines License]"
0051469C |. E8 FB2BF4FF CALL 0045729C
005146A1 |> 803D 69E35100>CMP BYTE PTR DS:[51E369],0
005146A8 |. 74 36 JE SHORT 005146E0
005146AA |. BA 20485100 MOV EDX,00514820 ; ASCII "FreshFTP - [Personal License]"
.
.
.
005146E0 |> 803D 69E35100>CMP BYTE PTR DS:[51E369],0
005146E7 |. 74 60 JE SHORT 00514749
005146E9 |. 813D 6CE35100>CMP DWORD PTR DS:[51E36C],190
005146F3 |. 7E 54 JLE SHORT 00514749
005146F5 |. A1 78BF5100 MOV EAX,DWORD PTR DS:[51BF78]
005146FA |. 8B00 MOV EAX,DWORD PTR DS:[EAX]
005146FC |. BA 6C485100 MOV EDX,0051486C ; ASCII "Attention!!.... Please re-register."
00514701 |. E8 962BF4FF CALL 0045729C
00514706 |. A1 78BF5100 MOV EAX,DWORD PTR DS:[51BF78]
0051470B |. 8B00 MOV EAX,DWORD PTR DS:[EAX]
0051470D |. 8B10 MOV EDX,DWORD PTR DS:[EAX]
0051470F |. FF92 F8000000 CALL DWORD PTR DS:[EDX+F8]
00514715 |. EB 32 JMP SHORT 00514749
00514717 |> 833D 6CE35100>CMP DWORD PTR DS:[51E36C],17
0051471E |. 7F 09 JG SHORT 00514729
00514720 |. 833D 6CE35100>CMP DWORD PTR DS:[51E36C],0
00514727 |. 7D 20 JGE SHORT 00514749
00514729 |> A1 78BF5100 MOV EAX,DWORD PTR DS:[51BF78]
0051472E |. 8B00 MOV EAX,DWORD PTR DS:[EAX]
00514730 |. BA 98485100 MOV EDX,00514898 ; ASCII "Attention!!.... You have passed your 23 trial days."

Dialamat "005145AD" kode "JE" ganti dengan "NOP"
Dialamat "005145E0" kode "JL" ganti dengan "JMP"
Dialamat "00514648" kode "JE" ganti dengan "NOP"
Dialamat "00514669" kode "JE" ganti dengan "NOP"
Dialamat "005146A8" kode "JE" ganti dengan "JMP"

Di Referenced Text Strings.
Geser keatas terus klik kanan pilih "Search For Text".
Pada "Enter Text to Search For" masukkan kata "registered", hilangkan tanda di case sensitive dan tandai entire scope.

kita berada dialamat

00514253 MOV EDX,00514400 ASCII "Registered"

Klik dua kali dialamat diatas

00514253 . BA 00445100 MOV EDX,00514400 ; ASCII "Registered"
00514258 . 8B45 F8 MOV EAX,DWORD PTR SS:[EBP-8]
0051425B . E8 B41BF1FF CALL 00425E14
00514260 . 84C0 TEST AL,AL
00514262 . 74 60 JE SHORT 005142C4

Dialamat "00514262" kode "JE" ganti dengan "NOP"

Di Referenced Text Strings cari kata "registered" lagi.

kita berada dialamat

00514306 MOV EDX,00514400 ASCII "Registered"

Klik dua kali dialamat diatas

00514306 . BA 00445100 MOV EDX,00514400 ; ASCII "Registered"
0051430B . 8B45 F8 MOV EAX,DWORD PTR SS:[EBP-8]
0051430E . E8 011BF1FF CALL 00425E14
00514313 . 84C0 TEST AL,AL
00514315 . 74 60 JE SHORT 00514377

Dialamat "00514315" kode "JE" ganti dengan "NOP"

Di Referenced Text Strings cari kata "registered" lagi.

kita berada dialamat

005175EB MOV EAX,005178E4 ASCII "FreshFTP has been registered successfully."

Klik dua kali dialamat diatas

005175D7 |. /74 12 JE SHORT 005175EB
005175D9 |. |833D A4E35100>CMP DWORD PTR DS:[51E3A4],1
005175E0 |. |1BC0 SBB EAX,EAX
005175E2 |. |40 INC EAX
005175E3 |. |3C 01 CMP AL,1
005175E5 |. |0F85 A6010000 JNZ 00517791
005175EB |> \B8 E4785100 MOV EAX,005178E4 ; ASCII "FreshFTP has been registered successfully."

Dialamat "005175D7" kode "JE" ganti dengan "JMP"

Di Referenced Text Strings lagi.
Geser keatas terus klik kanan pilih "Search For Text".
Pada "Enter Text to Search For" masukkan kata "personal", hilangkan tanda di case sensitive dan tandai entire scope.

kita berada dialamat

004BEF37 MOV EDX,004BEFCC ASCII "Personal"

Klik dua kali dialamat diatas

004BEF35 |. /74 20 JE SHORT 004BEF57
004BEF37 |. |BA CCEF4B00 MOV EDX,004BEFCC ; ASCII "Personal"

Dialamat "004BEF35" kode "JE" ganti dengan "JMP"

Di Referenced Text Strings cari kata "personal" lagi.

kita berada dialamat

00516D7F MOV EDX,00516EF0 ASCII "About - [Personal License]"

Klik dua kali dialamat diatas

00516D67 |. /74 0C JE SHORT 00516D75
00516D69 |. |BA CC6E5100 MOV EDX,00516ECC ; ASCII "About - [Bussines License]"
00516D6E |. |8BC3 MOV EAX,EBX
00516D70 |. |E8 2705F4FF CALL 0045729C
00516D75 |> \A1 34BF5100 MOV EAX,DWORD PTR DS:[51BF34]
00516D7A |. 8038 00 CMP BYTE PTR DS:[EAX],0
00516D7D |. 74 0F JE SHORT 00516D8E
00516D7F |. BA F06E5100 MOV EDX,00516EF0 ; ASCII "About - [Personal License]"

Dialamat "00516D67" kode "JE" ganti dengan "NOP"
Dialamat "00516D7D" kode "JE" ganti dengan "JMP"

Di Referenced Text Strings cari kata "personal" lagi.

kita berada dialamat

00517748 MOV EDX,005179EC ASCII "About - [Personal License]"

Klik dua kali dialamat diatas

0051772C |. /74 13 JE SHORT 00517741
0051772E |. |A1 78BF5100 MOV EAX,DWORD PTR DS:[51BF78]
00517733 |. |8B00 MOV EAX,DWORD PTR DS:[EAX]
00517735 |. |BA C8795100 MOV EDX,005179C8 ; ASCII "About - [Bussines License]"
0051773A |. |E8 5DFBF3FF CALL 0045729C
0051773F |. |EB 11 JMP SHORT 00517752
00517741 |> \A1 78BF5100 MOV EAX,DWORD PTR DS:[51BF78]
00517746 |. 8B00 MOV EAX,DWORD PTR DS:[EAX]
00517748 |. BA EC795100 MOV EDX,005179EC ; ASCII "About - [Personal License]"
0051774D |. E8 4AFBF3FF CALL 0045729C
00517752 |> 833D A4E35100>CMP DWORD PTR DS:[51E3A4],0
00517759 |. 74 13 JE SHORT 0051776E
0051775B |. A1 38C15100 MOV EAX,DWORD PTR DS:[51C138]
00517760 |. 8B00 MOV EAX,DWORD PTR DS:[EAX]
00517762 |. BA 107A5100 MOV EDX,00517A10 ; ASCII "FreshFTP - [Bussines License]"

Dialamat "0051772C" kode "JE" ganti dengan "NOP"
Dialamat "00517759" kode "JE" ganti dengan "NOP"

Klik kanan "Copy to Executable" trus klik "All Modification" trus "Copy All".
Klik kanan lagi "Save File" dan overwrite dengan nama yang sama.
Keluar dari OllyDebug.

Jalankan FreshFTP.
Isi registernya semaumu.
Sukses.

01/06/09

WebMaster

Terus

Kembali

Komentar dan Mailing List

Crack One Software Every Day Make You The Real Cracker