|
|
【原创】破解Quick Screen Recorder: t6 X+ [3 e, y$ P1 {: J: Y
【破解作者】 yijun* B k+ }+ |, R
【作者邮箱】 [email protected]9 o! E, B \1 k4 N+ { m8 B
【使用工具】 OD,PEID
6 {( G) r6 {* N6 _+ O【破解平台】 WinXP0 z) Q( _3 f" B* C! z
【软件名称】 Quick Screen Recorder) b) n- I& ~$ M& v( w2 G
【下载地址】 天空
9 J, e& J$ V/ V4 ] g$ e( }【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
' n, e. o6 l5 c【软件大小】 540K! u4 ]3 B# v( l9 m
【加壳方式】 无) ]! Q+ s' ] S) w
【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)# y4 n* i# n9 R# C" S: c
--------------------------------------------------------------------------------
" j" T: ^4 e9 t: Z【破解内容】
8 X2 h: _3 c/ M' [ PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
1 L. O7 Q/ J6 G) Y7 ?00404C69 55 push ebp //在此下断
1 O) a; Z! U1 p3 @9 Z; u2 H, Y, [9 c00404C6A 56 push esi
8 R5 ?+ W! |( ~00404C6B 57 push edi7 S9 v& s% ^% T, l
00404C6C 8BE9 mov ebp,ecx
, `, s7 j5 y, V8 R) T00404C6E 6A 01 push 1: X: M& h) L" `' O: U
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
7 Y' M" @: W( h+ b& D00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]
4 q! ]& e7 H. y& _% |2 i+ m6 q00404C78 8BCF mov ecx,edi
8 E y `; S, }0 E6 m00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码. P" e) I- h q4 [( [/ ]
00404C7F 8BCF mov ecx,edi: \: `: y7 ^' y
00404C81 E8 A73E0200 call qsr.00428B2D
/ D5 B! g* Y* d( |! F0 Q00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
8 [% d% ]! \0 A) _ l/ w8 R q3 z* {00404C89 8BCE mov ecx,esi D4 g) r6 j7 L+ P" l! W
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX0 s" `$ q. E4 C; T
00404C90 8BCE mov ecx,esi0 C- E# \7 E+ g$ W# l3 E
00404C92 E8 963E0200 call qsr.00428B2D4 B1 v4 E# _- u9 J: B# p
00404C97 8B06 mov eax,dword ptr ds:[esi]
$ z6 k, ^/ W" `, [5 z" f& E1 M00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
( {/ r5 I2 x, ^; W2 `4 R: P00404C9D 7D 26 jge short qsr.00404CC53 z5 j3 Q$ t( Z
00404C9F 6A 40 push 40+ V! G% b' u1 a+ S6 g9 f! ?2 c
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
; G- ^0 x7 X' j/ P8 q" O f00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."% H, h% `8 d2 X, v8 R) w
00404CAB 8BCD mov ecx,ebp) Q. ]8 e$ y) m& O) }
00404CAD E8 C3840200 call qsr.0042D1759 [* o6 c0 K9 P5 j3 K. v
00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]9 G P+ o, J7 Y1 j' B( ?
00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx* A* @* q$ z; F2 ^
00404CBD 5F pop edi: ~* K$ K: @$ J/ d7 ^7 Q
00404CBE 5E pop esi
# t' a V' e) S1 }00404CBF 5D pop ebp1 m$ m- Z! }- b7 Y
00404CC0 5B pop ebx* K; I7 \' J3 N! k& M- j
00404CC1 83C4 18 add esp,18
G( L3 i; h: X; M; @+ o* I00404CC4 C3 retn8 P. e+ b1 H6 h. H, f8 v. @$ w* X
00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]" z7 F9 B; R2 `5 A* q- C5 M
00404CC8 84C0 test al,al
( L: N- D) G7 z1 x00404CCA 0F85 1C010000 jnz qsr.00404DEC
* I' B; ^9 i1 o# x ^00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
* F# P; y& |/ Q0 _$ B/ }00404CD4 E8 87E3FFFF call qsr.00403060
: m# |% ?( `8 f& } W00404CD9 51 push ecx
. J* a3 h; ]4 e! c! G00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
/ q! [1 [# e: _2 {# K8 i/ U00404CE2 8BCC mov ecx,esp
$ d- L! w m7 @' w0 x+ @00404CE4 896424 14 mov dword ptr ss:[esp+14],esp; i0 A5 {# M" n) k3 e
00404CE8 56 push esi
0 X; w9 f4 s9 L. h( \00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
, B% Y( `, a( H* i& V2 K- u" W: @00404CEE 51 push ecx/ |$ {9 h0 c: |# `1 I: M! ]
00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],11 V; i8 B4 q! e" {, R
00404CF4 8BCC mov ecx,esp2 B* l3 F- n% R& C, H+ j+ m
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp5 U5 z9 U8 f; e
00404CFA 57 push edi
& O, A& u7 ` ~9 q5 z4 [00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0
; u8 n+ y" {% J# t00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
- R9 t( ? p3 x00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],09 c' \0 b- d( X6 E
00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~% M0 o+ S+ [% F1 }' I
00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~( l# E! e+ @2 q/ ]7 t; @5 F A, F
00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~/ A0 Y/ S {0 i1 ~ q" {. m" o" @
00404D12 6A 40 push 407 e/ F$ J: @! S1 P2 H
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
! I7 u" g; F+ v# i8 m00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."6 m+ v1 X0 {# {8 n6 _; V' Q
00404D1E 8BCD mov ecx,ebp8 m6 @" u, s9 t. O* y# X
00404D20 E8 50840200 call qsr.0042D175# F s9 b& Z' N$ `- j
00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]. Z- V' Y% L# A0 c. E( C$ B
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1
! s2 i8 D2 w. \( r, G4 B+ s6 M00404D31 E8 5AE3FFFF call qsr.00403090) {1 C+ B; [- R$ { g
00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
6 U! H) Z/ q" L0 i0 f) H$ k3 |00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
8 p) u e/ t+ b( n. \' Y2 e00404D41 5F pop edi
( L k0 F" Q1 k6 _00404D42 5E pop esi. B+ h* }9 L& v; g, m$ Y* P6 G6 C
00404D43 5D pop ebp: i* q/ s* [, l; m1 g I
00404D44 5B pop ebx0 I, z. Y8 \ N6 e5 J
00404D45 83C4 18 add esp,18% t4 a7 Q+ o& {
00404D48 C3 retn
4 h7 ^7 v9 R& N*********************************************************************************************************************************************************
- O0 b6 a2 ^/ e% X3 c跟进00404D09处CALL来到:( V+ ? m1 R6 i- D: v( s
004030A0 6A FF push -1 //一路F8下去~~~~5 `5 d P0 a5 ? a l
004030A2 68 C88F4400 push qsr.00448FC8
0 U6 `: G" ?7 X" t004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]8 Q% E- `6 P6 G+ W! x* V
004030AD 50 push eax6 F& W% @; d* J( P/ V3 J% V1 o7 ^
004030AE 64:8925 0000000>mov dword ptr fs:[0],esp
2 L. i: ? r/ b7 W9 `/ I* U004030B5 83EC 24 sub esp,240 r: S0 b) f% K7 D2 n
004030B8 53 push ebx
/ `5 ]9 Z& {+ V6 v004030B9 55 push ebp
7 L# O' y2 o% O004030BA 56 push esi+ i1 [4 _0 ` X3 L" ]3 n
004030BB 57 push edi. k7 y/ n( l9 h% X% r* P, J1 r! y
004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"
# _" ^6 ~2 p* `# z+ f% O! Z5 `004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
: w8 U' h# N& B7 C004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1* C) F" p7 ?. }: K
004030CD E8 27C40200 call qsr.0042F4F9
! H3 K6 ?$ k8 D( O004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
& z4 |" Z* S4 T" g5 ]. x w) f) X004030D7 894424 2C mov dword ptr ss:[esp+2C],eax
& {' _* A& f% \$ `7 n1 k' f6 L004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
) J% D7 `0 f0 T) a004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3! G4 T: ]! a9 S
004030E4 E8 905A0200 call qsr.00428B79' J0 ?- a& O0 h8 d# C
004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]$ g; d( f1 y% c% n, B, {
004030ED E8 3B5A0200 call qsr.00428B2D
0 c$ _2 y1 `" B2 i8 J# K004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]8 d- D; e0 K* j5 N! s
004030F6 E8 7E5A0200 call qsr.00428B79; A$ o9 E2 ] C% O8 R
004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]" F! X. R* l2 X' B( I) P$ h3 N
004030FF E8 295A0200 call qsr.00428B2D
$ n U. z. b6 s00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]! \% Y, w9 }9 ~4 q A2 _6 }
00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
& g; T) m) j$ y! Y+ s. c0040310B 83F8 02 cmp eax,2
/ @9 Q7 |+ q: ?0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
1 Q; B- P. k9 K- ~' P9 i: I/ T6 ]" ^00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]
! z D" ?1 e, X! p7 C00403118 837A F8 18 cmp dword ptr ds:[edx-8],18
) }$ Y5 y# `: T% W' V' H# q$ m6 M0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳
! @% _, n1 X9 \$ l1 {( z# h00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
* {# H P; n( B% k5 t00403126 6A 01 push 1
$ x S; L8 w# G, J00403128 50 push eax
+ }) m, o, }. d! `( J; v00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
( b$ r6 E( f4 o( g8 n0040312D E8 C4550200 call qsr.004286F63 |) h1 Z7 w, t9 t# O0 W
00403132 8B00 mov eax,dword ptr ds:[eax]3 S. D6 P7 G$ h; C/ S. b% d
00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]$ K7 |) X0 q8 D4 W: B
00403138 50 push eax; k6 \* _4 @8 y4 D+ ?: [ y
00403139 C64424 40 04 mov byte ptr ss:[esp+40],44 z- g W! _& z+ _4 S, r6 ^
0040313E E8 4D560200 call qsr.00428790
8 q& A" @8 {+ m00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]) m6 U, R# m9 T! o4 j" Q+ Z
00403147 8BF0 mov esi,eax0 c3 j( e. K+ s. ~! u: Y5 L
00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3
! | B6 S2 V3 ~& [0040314E E8 38C30200 call qsr.0042F48B
/ U6 @2 n9 i4 K* l! k# m& Q00403153 8D46 0A lea eax,dword ptr ds:[esi+A]
8 r3 _2 {) d( a( W. x/ n; u00403156 B9 3E000000 mov ecx,3E
& M0 y6 ]& [( o% e0 f' V9 T3 T0040315B 99 cdq
4 C3 _) x! R Z. Q( d0040315C F7F9 idiv ecx& m# h1 O6 U. } f
0040315E 6A 01 push 1
& \ n8 J' d9 {, `! M2 e( m00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]
. H4 Z9 q# J: ~& `3 X00403164 8BF2 mov esi,edx4 }% p3 k3 t3 G* b9 T, R
00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]. P% n' {4 m6 K- U9 z6 W
0040316A 52 push edx; y! W( W, J# |" t+ w+ ?5 D
0040316B E8 0A550200 call qsr.0042867A
6 v3 |; l0 p6 [; L& T00403170 8B00 mov eax,dword ptr ds:[eax]. q+ E! T |% |4 h2 d
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
3 S! b$ p) d7 S1 E( d2 \5 V" e5 I00403176 50 push eax* m: n; j! p6 z$ e2 y
00403177 C64424 40 05 mov byte ptr ss:[esp+40],5: m( p7 h+ W; n8 P1 N
0040317C E8 0F560200 call qsr.00428790
3 l% s8 P: u, d/ r$ R00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
: K8 x C( I4 h* I00403185 8BF8 mov edi,eax
6 @$ o! L S3 e+ F& B% T00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3' ?) B. J q+ Q3 n+ M
0040318C E8 FAC20200 call qsr.0042F48B
5 U: V: V( Q: ^' l1 A# l1 T$ ~00403191 8D47 0A lea eax,dword ptr ds:[edi+A]5 y A' b7 K& c: d( p. M* K
00403194 B9 3E000000 mov ecx,3E
0 I+ M- v# U1 |3 X00403199 99 cdq& T3 @# T" W2 j/ K0 S+ j
0040319A F7F9 idiv ecx( h& a& T9 V& _6 V
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]" m: i& B' ^. c0 D* l, {1 Y/ H
004031A1 894424 28 mov dword ptr ss:[esp+28],eax5 K6 o7 l. d" o' b( S0 w3 L _* S
004031A5 8BCA mov ecx,edx2 B6 }: G, I8 v$ a8 R: O
004031A7 894424 24 mov dword ptr ss:[esp+24],eax, A" |- d6 R# B% z7 X
004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
- @3 j& ?8 c/ c: Z" ]) V% {004031AF 894424 18 mov dword ptr ss:[esp+18],eax
5 k6 G+ Y: u9 _5 A/ X, H. i1 s004031B3 894424 14 mov dword ptr ss:[esp+14],eax
: ^) Q. N! e3 Z/ z4 N! f3 K7 D004031B7 894424 10 mov dword ptr ss:[esp+10],eax
3 I6 \8 Q' I2 J6 b. M004031BB 8BC1 mov eax,ecx0 [9 M% W0 G7 P" |7 q1 m/ s q. |
004031BD BF 0A000000 mov edi,0A+ E1 H! V2 o B Y, n5 f
004031C2 99 cdq
9 H+ A2 u. p* B% r, Z; `004031C3 F7FF idiv edi
! F% {' [7 ~& z# N* s5 f004031C5 8BC1 mov eax,ecx2 p8 T5 v1 \) o( g% }
004031C7 B3 0B mov bl,0B
8 A5 J; G( G, P004031C9 0FAFC1 imul eax,ecx* K! v; Z' r( E' X h2 y& g
004031CC 8BCF mov ecx,edi
% S4 `* J) z: D2 i0 N/ r$ B004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl) s d8 A* \& V9 L5 u
004031D2 52 push edx
. G' P0 {2 c4 N& q$ ?1 L004031D3 99 cdq1 b! h T2 q+ [ z/ p& q
004031D4 F7F9 idiv ecx; o% a6 D- O7 v2 K
004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]8 P, @5 H. j3 B% Q
004031DD 2BC6 sub eax,esi @$ M {3 D; O
004031DF 52 push edx
! h, H) W, @7 A# q004031E0 99 cdq# T" m2 s+ ~, q
004031E1 F7F9 idiv ecx& V# ~7 ]9 y# w# P
004031E3 8BC6 mov eax,esi( z" l$ y( |4 H$ D! P6 v
004031E5 52 push edx
' W1 g, d. U6 j& S( \( G9 E7 g; C5 l004031E6 99 cdq7 h- X( X n6 Z& A+ V. o( G- u% \
004031E7 F7F9 idiv ecx
& t; G- B' j6 R5 J4 N8 J! W. ]004031E9 52 push edx9 k5 j# e7 o5 a' N* B8 l/ m6 {
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]' E) _1 G$ D: [' i( w' i( T
004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
* K0 ~: N/ ]- w3 ` P% n004031F3 52 push edx# f" S' o9 h8 r0 q0 }5 O
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893
1 Z8 s% S9 d/ e* w) ], \+ j004031F9 83C4 18 add esp,18, y* a! L4 h# Y) G4 @1 D
004031FC 6A 04 push 4
: a+ }& U+ }+ D004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]2 j# v5 V. T* z4 z% L
00403202 6A 00 push 0
+ Y3 p8 G+ t ^: I00403204 50 push eax
* d7 e# G; ~; w) _00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
* ~ x+ K7 I2 p. T0 v00403209 E8 D6530200 call qsr.004285E4! H, j# _6 v0 K
0040320E 50 push eax
$ x) x7 d8 w8 U; |. E! Z+ E& G0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
* I( b' G q0 k8 `. P4 ^00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C
% a! v# ?+ ?9 j3 G- Z1 _3 ]00403218 E8 A7C30200 call qsr.0042F5C4
8 ^& ~8 m) G: E: y$ D$ E0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
: {3 ^% C* z7 e( R, g6 e* @00403221 885C24 3C mov byte ptr ss:[esp+3C],bl# a+ O% N. K. D! F1 p; K# l6 g# L d
00403225 E8 61C20200 call qsr.0042F48B
) Q; z( r. I$ |$ {9 s# h) v; Q0040322A 6A 04 push 4% J3 U1 f$ m0 Y7 |4 |& ]6 e. G
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
5 a8 y, r; g/ S4 y( Z9 v! d! i00403230 6A 05 push 5
% B4 W' @0 w: r& Q& N00403232 51 push ecx
, Z2 h& |$ Q- r/ b4 z5 d00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
( Q5 i5 w( N, V5 W00403237 E8 A8530200 call qsr.004285E4. A% Y1 h+ F% \( f" c! F
0040323C 50 push eax( |6 r; X" @+ v! t. ~- y$ F3 p
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]! r7 Z, B, F* D1 s. D9 P/ b
00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D
* g/ p6 e' q0 a, B. I00403246 E8 79C30200 call qsr.0042F5C4
* |) ]# [3 N+ r0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]3 M+ Z0 W4 ]: V' l9 H& @; h( A, X
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl
6 A# s+ K7 m& O/ N9 W+ I# V4 g00403253 E8 33C20200 call qsr.0042F48B
2 y$ T+ K% ^1 z# S00403258 6A 04 push 4- F+ {% F$ V3 q/ U
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]
6 ^0 o9 L9 M1 ]6 {) D4 p+ y: r0040325E 57 push edi b0 [( \5 Q2 V5 A
0040325F 52 push edx$ T e( K; u8 e1 \3 x
00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50] C3 c3 Q! c8 I5 s: a
00403264 E8 7B530200 call qsr.004285E4
; v. J+ M F) S% m4 c00403269 50 push eax# y2 e M6 [$ N6 h& U- R( R
0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
8 ~7 J) o- P6 P4 H1 e' f! B0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
- M% V7 `: g" V. q# B00403273 E8 4CC30200 call qsr.0042F5C4
. P, _! D1 \- D; Q# ~5 [00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30], G5 f2 n; s" o- H, d
0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl7 O: P& f8 V5 X7 _
00403280 E8 06C20200 call qsr.0042F48B
5 j( U c$ Y- a6 @/ J. G% j00403285 6A 04 push 4$ T: ?1 W: w4 [6 N
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]2 U8 l8 H& c& M- W6 e8 a
0040328B 6A 0F push 0F# M$ q1 u" L1 U, L2 O* W8 m. R4 Y
0040328D 50 push eax2 E0 O4 x4 F. ?
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]& G/ A/ f- [9 L0 W, g f3 u" q# B5 c
00403292 E8 4D530200 call qsr.004285E4
, M* L, i/ g8 i5 i8 C# |00403297 50 push eax
6 W Z5 I$ j, m00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]7 j) c) G5 N4 u6 q/ O1 j; `
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F' Y9 s" o- i9 ^" T3 p
004032A1 E8 1EC30200 call qsr.0042F5C4
7 j }5 d4 H) L! l E004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]8 E; r8 v+ H: M* d; E3 Y" c% G
004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl
8 @% o" O# t" A$ m. x004032AE E8 D8C10200 call qsr.0042F48B* b/ b. I1 ^# k" e: u2 B
004032B3 6A 04 push 4
$ r' S2 `, b% v004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]# O; {# B8 p4 E4 s
004032B9 6A 14 push 14
! A9 [# E6 D, E7 G1 w9 [004032BB 51 push ecx: T: A% W# u5 Q3 T% q7 h% P
004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
3 p7 T# B" V* _# j- X$ Z. ~' @004032C0 E8 1F530200 call qsr.004285E4
. r j) ?0 O6 D3 E004032C5 50 push eax- U5 ?1 Z, c0 |, I+ J
004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]- w4 g* _( D7 n1 Z
004032CA C64424 40 10 mov byte ptr ss:[esp+40],107 m% E5 g2 B: ^9 |! D' N, ^, ~0 ]. F# ?
004032CF E8 F0C20200 call qsr.0042F5C4
1 w* J7 O9 u( H& r1 S. t004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]* {! p. Z% A4 X, R. o) \
004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl
: j2 y+ N2 a3 h' f004032DC E8 AAC10200 call qsr.0042F48B) l* w1 X1 J, z4 p) G( z: S
004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI& R4 L" S" H, ]+ c$ O
004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
4 r( p7 j8 `6 T- m( `) U' G004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
' D) x, s K) K3 {# B; u, i004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL
: G& ^: Z6 l; {1 G) {/ p/ ]004032ED 8ACA mov cl,dl ; DL送CL3 A8 q9 @- W# W: |7 u
004032EF 3AD3 cmp dl,bl ; DL和BL比较- Z3 P1 h, l& n$ t7 c; l8 K' W
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)" _( y8 [* ?9 X* S/ x( @1 g
004032F3 84C9 test cl,cl- m+ e; x) n7 n( _2 f/ Y
004032F5 74 16 je short qsr.0040330D+ q4 h+ m3 h3 ]) B, V
004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL
7 r ^3 s( g( F" l004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL
5 \* g( G4 f, `! [004032FD 8ACA mov cl,dl
5 _0 \" c& C9 @! a9 {* y004032FF 3AD3 cmp dl,bl ; DL和BL比较! `+ Y" @ n+ k7 p I
00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
" z Z) z2 ]+ K/ W( k Z$ q5 H00403303 83C0 02 add eax,2 ; EAX加26 q4 |3 _. C; b
00403306 83C6 02 add esi,2 ; ESI加2
( @$ q' t' y& x4 e+ B2 I' ~' S00403309 84C9 test cl,cl$ e" _5 }( L, Z; L+ S( Z1 \
0040330B ^ 75 DC jnz short qsr.004032E9 d7 C n4 K! Q2 y$ q
0040330D 33C0 xor eax,eax
% x9 L4 v- s4 Q% E0 t# A0040330F EB 05 jmp short qsr.004033161 E* O( q9 }; V3 J- O5 g
00403311 1BC0 sbb eax,eax! B9 r8 Q0 E W4 _- T. V
00403313 83D8 FF sbb eax,-1
( |' V$ N7 F/ u. s9 A' l m2 H00403316 85C0 test eax,eax" G% }. z1 A2 `: p, C
00403318 74 0E je short qsr.00403328" h; D1 l6 Y' t. |, {
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
1 N0 i. U8 M* i) D8 R: p; t0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]- q1 h( D# R* ]
00403323 E9 F0000000 jmp qsr.00403418$ L/ G, M: T/ M3 {
00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
% p* q( g/ d6 h* b& O0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
4 K$ d" l6 y" ]; e; L# M- E00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]7 w% y9 ~- I. s0 [$ p
00403333 50 push eax
2 K+ B* s( t' M; T00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX2 i/ B1 B5 d+ N* }# N
00403339 50 push eax3 C o( W, l, s% u4 X: t) f7 |4 L% E
0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX1 S p6 w4 l* ~0 Q: M3 S& `* P( e
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX! x$ m: ?7 N! r
00403343 83C4 04 add esp,4) `1 c* r# Y5 e$ G7 F
00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI! ]% x! D; ?# Y, C1 H1 I
00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]
# s5 J/ }& [5 Y* P& P6 Q: c5 T0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
O% b/ P6 ~- k- H0040334F 50 push eax
% {$ q. d4 N! @2 q0 {0 ?00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
0 z. q2 J- h- T4 L, Z9 a00403355 50 push eax
& Q8 M* u5 h3 ? |: W00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX
- s6 a3 X0 z$ k; F. e0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
( f. K% i* w$ d9 {7 @0040335F 83C4 04 add esp,44 E& B7 `% a1 d, M1 e5 Z) \
00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI
7 A6 D3 ^- @2 B" e' v+ v00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]3 {) C0 e5 F& c
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]
0 q2 S% F* D$ r0040336B 50 push eax
; K! W* H1 q# U4 C0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX2 ?4 Z& t5 x3 r
00403371 50 push eax0 p! Z# e) W3 q; f7 A
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX- U2 w1 B4 r1 {7 ^
00403377 8BD8 mov ebx,eax ; EAX送EBX! R& n8 `9 X' |3 g1 f5 O* c/ M
00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX
4 j: J6 E9 B' i/ C! x' @) ~0040337D 83C4 04 add esp,4$ N$ Y+ N" O% s& R, n
00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
. [; ?. O9 F$ l2 U00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]& G& ^( ]3 F' a: A' s" l: C0 R2 f. Q
00403387 50 push eax) A3 f, n6 |4 M3 L5 V
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX
. i( z3 r. [- @: }0040338D 50 push eax
: I. X* i9 V: w0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX# v. t$ T- y; l+ m8 E9 C
00403393 83C4 04 add esp,4
7 v' [* i3 m3 A' ~8 D00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
" \ E$ I. q% s5 k0040339A 8BE8 mov ebp,eax ; EAX送EBP+ b1 F) L8 G m/ T
0040339C 6A FF push -10 p8 g: `: D+ e+ b0 y
0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX( ~1 F/ m% Z! }
004033A3 6A FF push -1
- t9 j$ {/ o' \+ W4 V8 G! c0 k! I c004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
0 X: }' ], g7 M+ S004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX/ D1 }6 E; e- e: ?" T3 e
004033AE 6A FF push -1
1 s" J$ U% p2 }! D: P004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX
+ {7 U: }# h( x: Q( Z+ N004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX2 X" F( S+ Z& O$ B3 U% ]8 y
004033B9 6A FF push -1
1 v( a) U# J8 l004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX
! V1 U* e! E; e3 D# |$ C004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX
+ P; A0 |+ H# I004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
3 X9 Q9 s1 D3 f8 P004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX$ D4 i' c2 z1 H" u* T- k1 K, K
004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX9 z, r% w& F% p4 K
004033D7 D1E0 shl eax,1 ; EAX左移1位
# C4 f% s1 W) C2 O: K; T9 a. p004033D9 99 cdq ; EAX扩展1 u" R: q* S$ T' V6 N& Y6 c
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
- ^ O' \, }. l, z0 m004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较: Z3 { h/ x. b( [, y* {! p) E
004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)* m% P( ]; b9 [9 `
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A
1 Y' e6 h& x9 i1 P$ Z5 r0 F( L004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
* `/ K# p) }+ L* y0 x3 \# ^004033E9 EB 2D jmp short qsr.00403418
1 o& }( j* C0 j* i' C004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX
6 g$ V6 d) @5 d' l. S U6 I004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2
" K: m( s: D9 S( k3 ]* o004033F7 99 cdq ; EBX扩展
: T+ Z( E, [. p0 X& K2 E004033F8 33C2 xor eax,edx ; EAX和EDX取异或5 F: I8 A& g; k6 B# C/ F( P3 M
004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
7 r- O% d& C+ m. U) W004033FF 2BC2 sub eax,edx ; EAX减去EDX9 B* t# H4 e4 h+ O0 A8 `! W
00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]
' t2 Q% m( s- _# J) G3 d( c00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
3 P. z$ r) t* T& ?0 }00403409 99 cdq& i3 ]3 ~( P3 j- l, B) c
0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中( T ]3 d7 g$ L. O( V+ }% [
0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX) W: O+ y9 m- [ G
00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较2 e4 C1 E7 Y' i& E# r# B
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)
4 y. ^3 f2 l1 }& T00403418 E8 6EC00200 call qsr.0042F48B ; 4 q; {) w( h' H4 N$ j
0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
8 U, D8 T0 a2 H$ N00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9
. N. G ]- b7 j1 P00403426 E8 60C00200 call qsr.0042F48B
6 U3 v% Y" }% q4 f J4 r0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18], A' B$ u: n2 h9 P- r
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8( r4 W, b- u; M& l' g
00403434 E8 52C00200 call qsr.0042F48B" C0 g. I/ c Y3 d4 H( O9 b& M& G+ f
00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
5 \- t( P: I6 G. \8 ` X0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7
2 h# f; A* e0 ~3 T) u; b* l' i7 D% z4 ~00403442 E8 44C00200 call qsr.0042F48B9 o" Q8 @5 _: b
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]6 Q/ p8 v' C, i( r. d; b
0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
* C' I S8 h1 y+ ^7 `00403450 E8 36C00200 call qsr.0042F48B
) ]& _# E2 x9 A$ H" u' V00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28], \, l& |2 @# @) q+ l0 o
00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3) ~. F. C! J' b
0040345E E8 28C00200 call qsr.0042F48B3 ~4 Y" Y+ m+ y2 P6 U
00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]% k5 d8 o; ~8 Z& H! B# }9 R3 ~& c
00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2' k3 E1 e; t) h9 v: B
0040346C E8 1AC00200 call qsr.0042F48B! _) \1 C K! }& L
00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
. J I4 f$ X% i3 [/ H" @- N: g$ O00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1
$ E8 x1 b! O& k! m0040347A E8 0CC00200 call qsr.0042F48B6 e9 Y1 K( B$ m( F* V
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]" H; Z; l2 k/ `' K5 C! j2 g& J
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0# s+ P1 W L( R; t3 h* t
00403488 E8 FEBF0200 call qsr.0042F48B7 R z9 c8 ^, I1 S* ?. p* s( F
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]- p, [/ d( t7 z
00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1 O" ~4 d, q* v1 h8 }0 y4 {4 |* }
00403499 E8 EDBF0200 call qsr.0042F48B
" F2 u8 c2 k3 {/ i( o9 w6 e/ }7 r0040349E 32C0 xor al,al ; AL清0 J% U1 ]3 }3 W; N
004034A0 E9 88000000 jmp qsr.0040352D) ?& R7 j. |% U
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~
& g% m: D8 r/ r& _% j# f. z0 |004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
: J* |) I0 ~ }8 Y8 F t" t' }004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9$ y. x+ \2 ~+ Y+ J ]
004034B3 E8 D3BF0200 call qsr.0042F48B
0 w, I' y! R" X004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]) H% \% Z9 h3 ?3 x7 _: [0 k
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8$ @7 k& ]$ n6 Y" h# y% N
004034C1 E8 C5BF0200 call qsr.0042F48B
' o" M3 Z L' {& w3 Y004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]# [1 v, Y! W# X, m2 Q, j8 j
004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
, D$ b$ i1 D5 @% ~004034CF E8 B7BF0200 call qsr.0042F48B
* i3 j' C" ] y: `$ K0 \- w004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
3 c- ^9 M' i/ D+ Z+ n004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6
4 u1 S( H$ t$ q1 [7 N/ ]# G004034DD E8 A9BF0200 call qsr.0042F48B
9 x+ [1 o* K- I6 d8 k1 q004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
, E$ @ k: e' r& @, p% t- q1 j" P8 N004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
$ u- c6 J; L4 f; v004034EB E8 9BBF0200 call qsr.0042F48B
2 L8 Y8 \' @. Q5 s, C, z004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]( Z5 n2 V) c; N; {# X
004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],26 `- F$ X/ X( N7 H" ]6 X2 w: _& _
004034F9 E8 8DBF0200 call qsr.0042F48B1 S; x; b `/ s' L( [ ^. F
004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]5 z1 y/ N" c8 N( ~1 p: P% T
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],10 B3 J0 {7 q, q% B' u3 ^; {
00403507 E8 7FBF0200 call qsr.0042F48B
( |* h5 @$ v" D, c. u3 S/ @0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
: G, V5 M3 H( X; U$ X& P00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],07 {$ x, z% A! X$ t* H7 ?( S" p
00403515 E8 71BF0200 call qsr.0042F48B8 B, J) v" |3 _6 h: a
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]7 a3 V" _/ s0 i7 l E9 p
0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
$ E8 w' M/ ~ X3 t7 @7 L0 E00403526 E8 60BF0200 call qsr.0042F48B
, t; ]: A) I7 Y& U( j) A0040352B B0 01 mov al,1
1 A6 z: w: `; I0 O4 I4 Y0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]3 s0 v+ v* r( c
00403531 5F pop edi
g, j; l/ d" M/ P2 q9 c- L00403532 5E pop esi. c0 I/ Z* H2 m7 G5 E
00403533 5D pop ebp% G8 }6 Q6 P- f
00403534 5B pop ebx
' _5 r1 }' X- C' v2 |+ @0 s+ o00403535 64:890D 0000000>mov dword ptr fs:[0],ecx
- q5 t9 g J* n: I N& P& X0040353C 83C4 30 add esp,30+ ?+ e2 r- A6 l; h$ r5 e8 }
0040353F C2 0800 retn 8
' u0 Q: J9 R% |% {, \* R--------------------------------------------------------------------------------; |; M6 Z+ y+ D6 l5 L! r5 k
【破解总结】% |5 f4 k0 t2 Y- W1 p9 n( K
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
1 ~/ I. f# T; ~, Q2 a用户名:yijun& a7 g; ]' p) ?& C0 \* ]
注册码:4893*7777*3726*7777*05294 e( Z' i4 P1 I; Q# W$ d" `
--------------------------------------------------------------------------------( v; i/ V$ I, y3 S# q+ ?
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡