Complete software registration cracking (beginner cracking)

Twisters (foxyfish # qq.com)

This is my first time writing this kind of stuff. Sorry for any disadvantages. The program to be cracked is included in the attachment.
Run the program first.
Registration machine image
= 800) window. open (http://www.bkjia.com/uploads/allimg/131120/000HW300-0.jpg); "src =" http://www.bkjia.com/uploads/allimg/131120/000HW300-0.jpg "onload =" if (this. width> 800) this. width = 800; if (this. height> 800) this. height = 800; "border = 0>
Enter it as needed. The result shows "invalid serial number. Please enter your user name and serial number correctly"
Well, we started the project and used w32dasm disassembly. Find the character "invalid serial number. Please enter your user name and serial number correctly"
Code.
As follows:

* Referenced by a (U) nconditional or (C) onditional Jump at Address:
|: 00406508 (C)
|
: 004065DA 56 push esi
: 004065DB 56 push esi

* Possible StringData Ref from Data Obj-> "invalid serial number. Please enter your user name and serial number correctly and"
-> "Make sure no extra space characters are entered! "
|
: 004065DC 6820174400 push 00441720
: 004065E1 EB07 jmp 004065EA

This code is used to display "invalid serial number. Please enter your user name and serial number correctly. Find the place to call it
As follows:

: 004064F1 8BCB mov ecx, ebx
: 004064F3 8BF8 mov edi, eax
: 004064F5 E8EC200200 call 004285E6
: 004064FA 8BD8 mov ebx, eax
: 004064FC 53 push ebx
: 004064FD 57 push edi
: 004064FE E8DDFEFFFF call 004063E0; comparison of serial numbers
: 00406503 83C408 add esp, 00000008
: 00406506 85C0 test eax, eax
: 00406508 0F84CC000000 je 004065DA; called here, the general serial number must be earlier
: 0040da-e 89742410 mov dword ptr [esp + 10], esi
: 00406512 8D442418 lea eax, dword ptr [esp + 18]
: 00406516 8D4C240C lea ecx, dword ptr [esp + 0C]



Call 004063E0 function; the following code is extracted from OD. However, it is the same as that in W32DASM.

004063E0/$ 83EC 14 sub esp, 14
004063E3 |. 83C9 FF or ecx, FFFFFFFF
004063E6 |. 33C0 xor eax, eax
004063E8 |. 33D2 xor edx, edx
004063EA |. 53 push ebx
004063EB |. 55 push ebp
004063EC |. 56 push esi
004063ED |. 8B7424 mov esi, dword ptr [esp + 24]
004063F1 |. 57 push edi
004063F2 |. 8BFE mov edi, esi
004063F4 |. 32DB xor bl, bl
004063F6 |. F2: AE repne scas byte ptr es: [edi ];
004063F8 |. F7D1 not ecx; number of characters
004063FA |. 49 dec ecx;
004063FB |. 74 16 je short 00406413
004063FD |> 8A0C32/mov cl, byte ptr [edx + esi ];
00406400 |. 8BFE | mov edi, esi; ASCLL code
00406402 |. 02D9 | add bl, cl; accumulate to BL
00406404 |. 83C9 FF | or ecx, FFFFFFFF;
00406407 |. 33C0 | xor eax, eax;
00406409 |. 42 | inc edx;
0040640A |. F2: AE | repne scas byte ptr es: [edi];
0040640C |. F7D1 | not ecx;
0040640E |. 49 | dec ecx;
0040640F |. 3BD1 | cmp edx, ecx;
00406411 |. ^ 72 EA jb short 004063FD;
00406413 |> A1 F0164400 mov eax, dword ptr [4416F0]
00406418 |. 8B0D F4164400 mov ecx, dword ptr [4416F4]
0040641E |. 8B15 F8164400 mov edx, dword ptr [4416F8]
00406424 |. 894424 10 mov dword ptr [esp + 10], eax
00406428 |. A1 FC164400 mov eax, dword ptr [4416FC]
0040642D |. 894C24 14 mov dword ptr [esp + 14], ecx
00406431 |. 8A0D 00174400 mov cl, byte ptr [441700]
00406437 |. 894424 1C mov dword ptr [esp + 1C], eax
0040643B |. 8B4424 2C mov eax, dword ptr [esp + 2C]
0040643F |. 884C24 20 mov byte ptr [esp + 20], cl
00406443 |. BF 01000000 mov edi, 1
00406448 |. 33C9 xor ecx, ecx
0040644A |. 895424 18 mov dword ptr [esp + 18], edx
0040644E |. 2BF8 sub edi, eax
00406450 |> 02D9 & n