[已解决]密码问题

sweet520t

这上了密码，我要怎样看他程式呢？

谢谢大神

急用

最佳答案

月排行榜 / 总排行榜

grf1973

2016-2-4 11:12

网上找有现成办法。附件已去除密码。
http://www.cnblogs.com/chinhr/archive/2009/03/13/1410564.html

跳转到最佳答案楼层

grf1973

网上找有现成办法。附件已去除密码。
http://www.cnblogs.com/chinhr/archive/2009/03/13/1410564.html

sweet520t

grf1973 发表于 2016-2-4 11:12
网上找有现成办法。附件已去除密码。
http://www.cnblogs.com/chinhr/archive/2009/03/13/1410564.html

大师,这个格式修改,资料正确,位置不同

求助http://www.excelpx.com/thread-385630-1-1.html
谢谢大师

laoau138

有更好的办法，搞定密码，有谁想知道

小新De和尚头

laoau138 发表于 2016-9-5 17:17
有更好的办法，搞定密码，有谁想知道

你所谓的更好的办法，就是绕过密码验证对吧~

1. Private Declare Sub MoveMemory Lib "kernel32" Alias "RtlMoveMemory" _
   
2.     (Destination As Long, Source As Long, ByVal Length As Long)
   
3. Private Declare Function VirtualProtect Lib "kernel32" (lpAddress As Long, _
   
4.     ByVal dwSize As Long, ByVal flNewProtect As Long, lpflOldProtect As Long) As Long
   
5. 
   
6. Private Declare Function GetModuleHandleA Lib "kernel32" (ByVal lpModuleName As String) As Long
   
7. 
   
8. Private Declare Function GetProcAddress Lib "kernel32" (ByVal hModule As Long, _
   
9.     ByVal lpProcName As String) As Long
   
10. 
    
11. Private Declare Function DialogBoxParam Lib "user32" Alias "DialogBoxParamA" _
    
12.     (ByVal hInstance As Long, ByVal pTemplateName As Long, ByVal hWndParent As Long, _
    
13.     ByVal lpDialogFunc As Long, ByVal dwInitParam As Long) As Integer
    
14. 
    
15. Dim HookBytes(0 To 5) As Byte
    
16. Dim OriginBytes(0 To 5) As Byte
    
17. Dim pFunc As Long
    
18. Dim Flag As Boolean
    
19. 
    
20. Private Function GetPtr(ByVal Value As Long) As Long
    
21.     GetPtr = Value
    
22. End Function
    
23. 
    
24. Public Sub RecoverBytes()
    
25.     If Flag Then MoveMemory ByVal pFunc, ByVal VarPtr(OriginBytes(0)), 6
    
26. End Sub
    
27. 
    
28. Public Function Hook() As Boolean
    
29.     Dim TmpBytes(0 To 5) As Byte
    
30.     Dim p As Long
    
31.     Dim OriginProtect As Long
    
32. 
    
33.     Hook = False
    
34. 
    
35.     pFunc = GetProcAddress(GetModuleHandleA("user32.dll"), "DialogBoxParamA")
    
36. 
    
37.     If VirtualProtect(ByVal pFunc, 6, &H40, OriginProtect) <> 0 Then
    
38.         MoveMemory ByVal VarPtr(TmpBytes(0)), ByVal pFunc, 6
    
39.         If TmpBytes(0) <> &H68 Then
    
40.             MoveMemory ByVal VarPtr(OriginBytes(0)), ByVal pFunc, 6
    
41.             p = GetPtr(AddressOf MyDialogBoxParam)
    
42.             HookBytes(0) = &H68
    
43.             MoveMemory ByVal VarPtr(HookBytes(1)), ByVal VarPtr(p), 4
    
44.             HookBytes(5) = &HC3
    
45. 
    
46.             MoveMemory ByVal pFunc, ByVal VarPtr(HookBytes(0)), 6
    
47.             Flag = True
    
48.             Hook = True
    
49.         End If
    
50.     End If
    
51. End Function
    
52. 
    
53. Private Function MyDialogBoxParam(ByVal hInstance As Long, _
    
54.                                   ByVal pTemplateName As Long, _
    
55.                                   ByVal hWndParent As Long, _
    
56.                                   ByVal lpDialogFunc As Long, _
    
57.                                   ByVal dwInitParam As Long) As Integer
    
58.     If pTemplateName = 4070 Then
    
59.         MyDialogBoxParam = 1
    
60.     Else
    
61.         RecoverBytes
    
62.         MyDialogBoxParam = DialogBoxParam(hInstance, pTemplateName, _
    
63.                            hWndParent, lpDialogFunc, dwInitParam)
    
64.         Hook
    
65.     End If
    
66. End Function

复制代码

laoau138

小新De和尚头 发表于 2016-9-7 09:05
你所谓的更好的办法，就是绕过密码验证对吧~

不知道你在说什么，更有用方法，就是硬改密码

小新De和尚头

laoau138 发表于 2016-9-7 09:15
不知道你在说什么，更有用方法，就是硬改密码

傻X