|
|
|
【原创】破解Quick Screen Recorder# ]# X7 r# o* f5 c. V
【破解作者】 yijun
4 E8 b1 P* K9 {7 G【作者邮箱】 [email protected]
1 ?9 l! ]6 c1 D【使用工具】 OD,PEID
0 u8 [$ q2 E+ W& u; U! h W【破解平台】 WinXP4 I ?0 P' J0 [) O
【软件名称】 Quick Screen Recorder% \+ f7 p: E2 @* A
【下载地址】 天空! a5 N# q1 a& y- e( P; F
【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
1 P. C0 o9 \9 F$ A1 s% B! @% o【软件大小】 540K+ |0 u! _: a% _0 H7 ?3 A. t7 O; ^6 e
【加壳方式】 无7 ?$ Q: I/ ?4 j2 ]4 ~6 Y8 {
【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)
, `! l; Q1 k- w--------------------------------------------------------------------------------
5 d, e+ T1 S4 l5 T【破解内容】: e- n5 s$ q$ W' E0 `$ \
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
5 r' j! t1 \! U6 `00404C69 55 push ebp //在此下断
4 x6 h& v1 w0 J( c% z00404C6A 56 push esi) X& A! Q" Z8 h) X5 T `/ |! g
00404C6B 57 push edi
/ J! R6 A/ j6 w9 |4 T00404C6C 8BE9 mov ebp,ecx
B7 B( Q5 j2 W6 k5 B00404C6E 6A 01 push 11 z. p6 y/ A/ A7 d+ y4 M
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
! g3 C g' R6 z& m7 P* G00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]0 s& u% c C& j& v/ k; I
00404C78 8BCF mov ecx,edi- k# `+ K& A. F7 G3 f
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码" a& X1 O, u2 W8 a
00404C7F 8BCF mov ecx,edi, b% ^ |& F* e* o, ~
00404C81 E8 A73E0200 call qsr.00428B2D% O& I' W% y- l; t) C$ {
00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]/ Z; l& w) W, e |0 ~# x" a0 v
00404C89 8BCE mov ecx,esi/ |5 T, m4 X2 e2 p0 K+ a
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX6 N6 q; v. G! d9 y& z: G( ]6 \2 ?
00404C90 8BCE mov ecx,esi1 D) i' B- y v; J
00404C92 E8 963E0200 call qsr.00428B2D
, x' u! I& H. L; Q00404C97 8B06 mov eax,dword ptr ds:[esi] z& V/ _2 ], O; ~$ ~; G
00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
- a! ]" W# v3 l$ {2 L00404C9D 7D 26 jge short qsr.00404CC5
E* k' K; Z! f U0 U6 z; S. d: x00404C9F 6A 40 push 40, e [: ~* j6 Z5 F! s6 e( [
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
4 @: F8 R8 T' S2 P' Z- a00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."
9 e B& f% j8 I; B% i' G2 X: H00404CAB 8BCD mov ecx,ebp8 w' {7 \% N. G8 u* p
00404CAD E8 C3840200 call qsr.0042D175% H9 a; J1 O# W0 Q
00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
9 Q- ]2 \$ z8 C' I00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx: }. ?) F: j5 G0 K: J3 i; v+ Q, J' y8 W" d. V
00404CBD 5F pop edi
+ \3 z; M9 E- h. x1 m) H. I$ Y; @; Q% E00404CBE 5E pop esi0 O" B* t+ l4 X8 o: T
00404CBF 5D pop ebp
( F& A7 H# Y' j, `$ `+ @+ | o, ]00404CC0 5B pop ebx
" Q; M% ^. S# C \' z00404CC1 83C4 18 add esp,18" @1 R6 s8 u o" |4 b; j& m
00404CC4 C3 retn; |' t- P6 }, Q, G) X" {. Q8 f
00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
( @; w) F3 Y: r$ ? N00404CC8 84C0 test al,al1 ]. O: X3 G) n
00404CCA 0F85 1C010000 jnz qsr.00404DEC
" K+ J) @7 Q B9 g7 ?, j3 G- t00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]( s( q6 r6 Q; d+ ^( f
00404CD4 E8 87E3FFFF call qsr.00403060
8 e" D- d+ u h' o8 w00404CD9 51 push ecx7 ?8 g) E' T9 ?! p* o
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0. T) J$ G3 [7 J6 ^$ Y
00404CE2 8BCC mov ecx,esp
3 m9 L% i: Y7 q, y5 c! @. Q00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
5 E5 ]8 N+ f! D3 t. u00404CE8 56 push esi
- o) S8 w( S+ b0 g3 a! p' g00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
; U- W9 c% U9 v1 {00404CEE 51 push ecx$ S4 d5 v; G1 E
00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1
0 @. p. C, Z! T7 {! G8 E00404CF4 8BCC mov ecx,esp
+ c( k w3 l, |% ?% i. v% ]# r00404CF6 896424 20 mov dword ptr ss:[esp+20],esp1 ~, f" O1 M) d9 B$ v
00404CFA 57 push edi
* @6 y9 L6 a6 B1 p& x00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0
; O9 L( F; _( ^1 M( D3 T/ @00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
8 J# S k& i6 B00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0
9 w3 B& y5 t) _- n00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~! M4 q8 g' ` ]0 e# d3 E
00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~: _. N+ X, h* j: k
00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~7 J4 v0 | A: J3 m3 N6 n/ j
00404D12 6A 40 push 40
4 L& o" \ Y% S3 k- g; d00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"/ W% ^6 B/ D# a* u* X. ^& v
00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."
2 P' n1 z3 g6 \9 U P8 v1 O00404D1E 8BCD mov ecx,ebp% x/ I. C# |% ~
00404D20 E8 50840200 call qsr.0042D1753 Q5 M8 b0 Y* K: ]( A
00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
& Y7 ^. \' u' e! I00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-15 o @! R+ v9 P: y% w4 v1 P8 I
00404D31 E8 5AE3FFFF call qsr.004030900 z/ C# R+ L; `7 ~ |
00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
, C: G$ e; B6 v00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
; }. p( o* {) k* i9 s9 J00404D41 5F pop edi
q. A3 m8 [+ C+ D& ^/ ?2 A00404D42 5E pop esi
! t+ ]4 w/ e, {) L* ~9 m9 E4 u00404D43 5D pop ebp. y: P R- j" n! _4 _
00404D44 5B pop ebx+ s% ^2 {2 E7 A* b% J3 p u2 d
00404D45 83C4 18 add esp,18
+ ^' d4 T9 I7 z6 E) Y' x6 R00404D48 C3 retn
" y F7 k& H0 G: D i) W*********************************************************************************************************************************************************
9 ~( C1 l5 ^ R3 T- p, M6 E$ y, L跟进00404D09处CALL来到:# f+ K I3 F4 j7 a
004030A0 6A FF push -1 //一路F8下去~~~~# u1 |4 o) c8 [. E, B* g' }0 T A
004030A2 68 C88F4400 push qsr.00448FC8
8 B" |8 d8 E1 U. a& X* R2 T# M5 b7 p004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
/ ^+ b4 T' P+ {3 m3 R. S- C+ m' l004030AD 50 push eax* C9 f6 e y7 P* \. N# Z0 ?# B
004030AE 64:8925 0000000>mov dword ptr fs:[0],esp
# ?2 r( ~$ v, Y0 Y- r004030B5 83EC 24 sub esp,248 \% L% n6 S6 H, ]% C
004030B8 53 push ebx
: A6 N5 @+ n' k( L004030B9 55 push ebp
6 _9 c2 I! ?4 c004030BA 56 push esi
, V& {9 D& L+ C+ o" c: j004030BB 57 push edi
, D5 V0 h+ E3 `! C* D1 ]% ?# h004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"' y. N; T' Z7 H- |3 S7 f) G
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]% R+ c! E$ p) o# l1 S+ M/ Y; _/ C
004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1. |8 [# q# [/ t8 D& J2 P
004030CD E8 27C40200 call qsr.0042F4F9
4 C9 s8 z$ O4 G, d" ~004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]+ \0 T8 F; y) w2 k$ n# V
004030D7 894424 2C mov dword ptr ss:[esp+2C],eax" {* u$ p' S8 o$ X- U: f. ]
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
2 _0 v6 {* M5 Y8 `: R* H004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3) P8 U& t$ s6 S2 ^
004030E4 E8 905A0200 call qsr.00428B79
I" \+ H5 C4 Q! N f004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]2 h1 @( j! u* I1 `8 D& x; Q* V
004030ED E8 3B5A0200 call qsr.00428B2D) `( [1 M- [# A0 c' l
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]8 h& ~/ g2 [% N+ y
004030F6 E8 7E5A0200 call qsr.00428B79
; r2 u; @7 j% X6 ~1 w& S& y% q004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
: a( o" k, h2 N% y; L1 g; P004030FF E8 295A0200 call qsr.00428B2D/ t& a$ O, P6 ?
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]
0 a% u* @, T: |$ _! t R6 z00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]* [* h- @; |8 o# z2 s' u" ]9 q `2 P
0040310B 83F8 02 cmp eax,2
, W4 }& M/ m% b* ^- K2 F3 Z* E0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
, Z3 U) {+ l4 q, K00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]
6 Z- w# H3 ]* ]7 U7 J00403118 837A F8 18 cmp dword ptr ds:[edx-8],18
4 k1 l( u G$ L5 o/ r0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳. [$ i) K0 D) p( \4 b; {
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
( H; O/ N6 ~2 R$ a00403126 6A 01 push 1
& |2 ~4 {) ]% O- b+ C00403128 50 push eax
% m: o6 |" `6 @2 L00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
* [7 L* P3 H- g Y/ k0040312D E8 C4550200 call qsr.004286F6
# M, [9 j) T/ p' T00403132 8B00 mov eax,dword ptr ds:[eax]* K% W1 P! b- \ A& I! R
00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
/ U9 Z1 ^- ]8 V+ y m; S6 I00403138 50 push eax3 l N8 J8 `! F [9 s$ g! J
00403139 C64424 40 04 mov byte ptr ss:[esp+40],4
1 P6 ~2 @) ]/ _) u' H S e% I- D0040313E E8 4D560200 call qsr.004287904 {# C9 t2 L1 v- H
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]: H+ \# Z8 o6 B* Q8 i
00403147 8BF0 mov esi,eax
3 l* U! \" m x p00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3* U+ F* X$ r# Z' `4 e' Y
0040314E E8 38C30200 call qsr.0042F48B
- E- l" x& l5 h00403153 8D46 0A lea eax,dword ptr ds:[esi+A]0 B$ ^: Z4 ^( M( A5 L% o
00403156 B9 3E000000 mov ecx,3E% ]+ \7 q) f4 r
0040315B 99 cdq$ [+ k( g0 ~, y" J, c" f* k* Q1 N$ n
0040315C F7F9 idiv ecx
) V, ` ^9 N8 A) o0040315E 6A 01 push 1 D; X% L1 X1 O, s6 P2 Q7 ?) C8 X5 m
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]
' C: k" N1 O. ]4 Z& O" a- {9 _9 _00403164 8BF2 mov esi,edx$ C. z1 Y* {- S& z( v
00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
, R+ U3 P, @. z! p; `0040316A 52 push edx1 s3 P f: Y: j0 v1 Z
0040316B E8 0A550200 call qsr.0042867A3 X# Q2 _7 A9 Z( t; W$ p* F% D3 f8 F
00403170 8B00 mov eax,dword ptr ds:[eax]5 z! r! O H/ d# a
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
9 Q- n9 g/ k5 S00403176 50 push eax
0 d$ Q% E7 Y* h$ x. V00403177 C64424 40 05 mov byte ptr ss:[esp+40],5% @+ z/ j: F8 n9 c* N3 g
0040317C E8 0F560200 call qsr.00428790
4 @2 k/ m" N/ n2 R& O- F# w3 P00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
9 Y. |. Z# p- c* n$ \$ A. v% c00403185 8BF8 mov edi,eax) w2 e8 {7 |* @' R* P" r5 ^3 l
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3
8 W3 `# X; K4 {# y" w6 T0040318C E8 FAC20200 call qsr.0042F48B) q; d! U7 O" y6 T% P) ], y
00403191 8D47 0A lea eax,dword ptr ds:[edi+A]" c+ a+ d4 b4 ~! B6 a2 m
00403194 B9 3E000000 mov ecx,3E4 M1 h8 C* y% j" [! I/ |/ w, [
00403199 99 cdq
- x. ]2 g3 R2 w' \0 A0040319A F7F9 idiv ecx
6 [( y' ~6 k r0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]
" B2 L% T; l# i$ O# u7 q- D2 C' u004031A1 894424 28 mov dword ptr ss:[esp+28],eax
* `' E2 Z+ D% I$ _% p3 y5 u004031A5 8BCA mov ecx,edx
' e {% t$ F4 o004031A7 894424 24 mov dword ptr ss:[esp+24],eax" e4 I6 F+ v6 k" z( R! I
004031AB 894424 1C mov dword ptr ss:[esp+1C],eax8 e0 C' C. j5 d" X1 G- s
004031AF 894424 18 mov dword ptr ss:[esp+18],eax- W3 Q% ~$ i, e: D4 H0 x4 c7 C
004031B3 894424 14 mov dword ptr ss:[esp+14],eax! i- E: q3 ]+ y, L1 P: z% D
004031B7 894424 10 mov dword ptr ss:[esp+10],eax
* L% T9 T; i5 @8 G4 b004031BB 8BC1 mov eax,ecx# |( [2 Y" [* X- `9 S
004031BD BF 0A000000 mov edi,0A' h5 u6 c: q. K) c/ g0 L4 m
004031C2 99 cdq3 o1 f& b" W# G% Q d% V
004031C3 F7FF idiv edi
% o# _( s2 g/ x( L, Q004031C5 8BC1 mov eax,ecx% r+ d; x) L6 T& F" M: i
004031C7 B3 0B mov bl,0B. m* f. |- _! q3 w
004031C9 0FAFC1 imul eax,ecx& N4 l0 x& U- M/ T
004031CC 8BCF mov ecx,edi: s% k. C; V2 Q" U8 ^0 |0 r" q
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
' l$ D) M4 v" L* ~, F004031D2 52 push edx& c; @" v9 [ f# v
004031D3 99 cdq
- Y, D- M3 O5 W! K6 k2 y6 y004031D4 F7F9 idiv ecx
6 R! d; F+ q3 M, \004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]
* e2 w- t- k4 {) X0 Z# f5 N004031DD 2BC6 sub eax,esi
$ z9 | n) t$ i3 q. o; V! C004031DF 52 push edx& |0 J, \3 w: X$ B* i
004031E0 99 cdq; u! P! n& b2 Z& R" b7 O
004031E1 F7F9 idiv ecx0 O& _7 b z) r0 D0 f
004031E3 8BC6 mov eax,esi
3 H; e' U" [; i004031E5 52 push edx0 V7 l% {1 L" Q8 g
004031E6 99 cdq" C& _+ ?* K; N% e# A6 x* O, H8 {& [
004031E7 F7F9 idiv ecx
! ~) L5 Y0 L) A5 l. K; M, d004031E9 52 push edx
% ~2 j& j6 U6 s" o0 _. {004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]# T$ I# H# }' A( @5 x
004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
9 w& g+ f" F m% X4 {4 k0 U) m/ C004031F3 52 push edx
/ T/ n3 t# g' [) A- {% e004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893
4 J( Y( k) y) f+ J5 R004031F9 83C4 18 add esp,18, i* j" K @1 X, }8 t
004031FC 6A 04 push 4
+ h+ E5 `* Q4 s8 [* b( }004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]; t8 y1 ~$ i: f1 c; i! u0 j1 q
00403202 6A 00 push 09 t( d5 C6 p- ?
00403204 50 push eax
+ R; B: ?( o, ^5 ~/ H$ p00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]6 b: J h) n c& |" b
00403209 E8 D6530200 call qsr.004285E4
/ @5 n0 w% F( a7 k$ _& R0040320E 50 push eax# Q( N- u, ~5 P! b
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
; E9 K2 Q0 G; s8 I& t00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C
! O3 I% E: h- _00403218 E8 A7C30200 call qsr.0042F5C4
% R( z" p- l7 U7 `& O0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
% Y! I3 ]; @6 B" ]* F3 ~4 a00403221 885C24 3C mov byte ptr ss:[esp+3C],bl
# ~; t* N- }( Y$ V( {/ h6 w5 B00403225 E8 61C20200 call qsr.0042F48B: L6 L4 h; ^& C$ A4 x3 C
0040322A 6A 04 push 4
8 X# h9 u; x9 ^0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]+ C' u$ s* l* u4 p
00403230 6A 05 push 50 K2 _( J& l: O, L4 H' }" ^
00403232 51 push ecx) ^: e+ T9 p# C! ]% J9 k
00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
% d1 p% ?5 O# I: C00403237 E8 A8530200 call qsr.004285E46 z# x* }% H7 N; I7 H; N" K* [0 D
0040323C 50 push eax8 D% h. ?7 t* ?. D% t& ]+ Z- [
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
$ `4 J: `. |: n8 W+ A( F00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D
% T& ~! T/ c& E00403246 E8 79C30200 call qsr.0042F5C49 b) a, | L! \! J) ~
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
8 a( d' D/ \+ C6 F" \2 r0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl* |4 F( E9 L! ?" X
00403253 E8 33C20200 call qsr.0042F48B) ^5 F0 C4 X3 P4 ]/ I* x: f
00403258 6A 04 push 4' ], J- O) Y( J( U, m( @- p, }1 U
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]9 ]7 S) c/ Y- C, [" M% f. l/ w
0040325E 57 push edi, \& t+ B6 ]6 O& S2 l! J8 U$ ?
0040325F 52 push edx6 I! q3 W7 \; I, i$ ]- J
00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
4 z6 A# A: {/ a9 {00403264 E8 7B530200 call qsr.004285E4
& i3 @: f" Z5 b& J00403269 50 push eax
9 n1 [1 X! q- M5 u' f0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
0 m* D* _; B6 [ \3 s0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
" z* r6 x) }0 f( }6 T00403273 E8 4CC30200 call qsr.0042F5C4
& G- s2 t4 T$ j; R0 M$ q00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]! J/ i9 u9 G4 Z' N) ^' U
0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl
6 a) @( h% _1 C0 J8 ?% b! W00403280 E8 06C20200 call qsr.0042F48B
) q" p# r! x4 v+ c00403285 6A 04 push 4
# b+ I& [" ]; n+ y8 X" V00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
* I% N0 v# v4 }* |8 v, G0040328B 6A 0F push 0F
/ ?' Y3 j/ k* O& e* a0040328D 50 push eax8 d6 b u5 I" p. C4 U. j r
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]5 H* H) l1 y8 K- b) d5 V9 H. c
00403292 E8 4D530200 call qsr.004285E4% L9 v$ U+ x5 x/ j
00403297 50 push eax/ D% X e, [' l, M* H, E
00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]# p3 t0 Z9 D- e1 y
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F2 O; f: Z- J: V- a2 P5 \. D" @
004032A1 E8 1EC30200 call qsr.0042F5C4
: k. E% j9 Q# e) y004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
( Q0 h$ M) @+ U; z004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl! s4 d/ n& K7 U: `/ U9 R( P6 Q1 F- Q0 B
004032AE E8 D8C10200 call qsr.0042F48B
3 h6 @* r" M+ w9 f9 I5 S9 s5 U+ m" I004032B3 6A 04 push 4
, ?4 T( J3 i9 A. C2 x004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34] g! U' g2 j% S5 I x. U
004032B9 6A 14 push 14
$ K1 O) k! |: r K004032BB 51 push ecx
) G$ d8 M6 W5 l004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
0 V& ^6 C4 P8 b& K- o004032C0 E8 1F530200 call qsr.004285E4! T2 ? m2 P0 W4 A2 d7 \
004032C5 50 push eax7 |* u$ W: l) m! z) T* p
004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]* n5 e$ ?4 b+ t# [
004032CA C64424 40 10 mov byte ptr ss:[esp+40],104 W' g' _' [: |3 Z0 Y9 [
004032CF E8 F0C20200 call qsr.0042F5C4$ i0 [6 `1 ]: K
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]5 K4 p$ K* t. X+ J7 _. Y
004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl
7 L" o+ y& S( P6 H# e4 C: u004032DC E8 AAC10200 call qsr.0042F48B
$ H9 l+ w9 a$ y7 w: |" M ^4 H/ w1 P004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
# S4 X: m# `- z* O1 g9 C! L0 x004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
! V2 B$ N! f1 @: W: { F004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
2 A c1 J7 x( Y8 Z( d. S2 Z004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL
+ t* A; ?6 f+ G8 J4 F5 D004032ED 8ACA mov cl,dl ; DL送CL9 Y# x: d1 p5 J4 Q6 `7 o6 u
004032EF 3AD3 cmp dl,bl ; DL和BL比较
! y8 p* ^! g) X5 s8 k: e) \9 b6 ]004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
: L' a2 O4 H6 \+ y; f004032F3 84C9 test cl,cl5 k8 q- m# e# H- ^
004032F5 74 16 je short qsr.0040330D
' z$ k0 u4 ]% w; U7 Z- }8 e5 T5 D- w! W004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL( V" \) u2 o: D7 w
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL
- ]9 m' j1 u" p; z3 f3 a0 D/ d004032FD 8ACA mov cl,dl( A- _0 c* u0 [0 D& V5 k3 Z
004032FF 3AD3 cmp dl,bl ; DL和BL比较
& V' F. W( V4 `3 P+ |/ {. f, m00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)0 C6 I. F6 \8 T, u
00403303 83C0 02 add eax,2 ; EAX加2# T; K K, w' x2 t! A
00403306 83C6 02 add esi,2 ; ESI加2
+ B) H& V# O* r00403309 84C9 test cl,cl
& j8 i! f6 X) G7 B- W; E0040330B ^ 75 DC jnz short qsr.004032E99 _ x; v' r q: V# {
0040330D 33C0 xor eax,eax* H* w6 O+ R- }. [# |2 C/ b
0040330F EB 05 jmp short qsr.00403316
+ t0 u" U9 }/ R3 r+ A* [: I00403311 1BC0 sbb eax,eax$ o6 v; n0 y) L9 D/ [4 N; [1 h
00403313 83D8 FF sbb eax,-1) J8 i4 Q/ t, Q
00403316 85C0 test eax,eax
8 D5 M0 H5 I) [% n" s00403318 74 0E je short qsr.00403328 O" p% P7 S- X% e0 [
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A4 _+ ]/ c! T! V O
0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]2 j, [0 d; S+ A+ N: E. s7 F" x
00403323 E9 F0000000 jmp qsr.00403418
" D8 @- y+ k V$ p5 P1 X& l00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX9 e3 c2 G, x4 Q' x
0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]' C& m1 L" I9 l( ?; s3 d) D; _
00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]
* B1 v2 Z( n7 q- p8 q5 r) f" V00403333 50 push eax0 I, g" t8 j4 g! G5 M
00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX7 h" l( J3 j" B' ]- C
00403339 50 push eax
, b: B. u. b9 C* s. b" z0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX
# L5 L$ O1 l$ I! \; B/ o8 {2 ?. _0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX: f* o8 U3 l4 u) X A
00403343 83C4 04 add esp,4
" u% L, z( y" g9 |4 k00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI
/ b O9 [2 `0 P j% s00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]
7 |9 C2 w! U, H0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
( F& ]% A- ]3 Z# J9 s0040334F 50 push eax) |, _& n* M% F& y
00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
3 ~" ~" c+ F. _, V1 g00403355 50 push eax
# q- S' C4 s7 }; S1 \0 Q7 K00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX# X( L; H% j; {7 d% Z# }$ ?3 ]
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
* _- M9 k, A/ J" l# f+ X" _0 J0040335F 83C4 04 add esp,4
1 x) _' Q& v0 T& E00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI
9 X6 X3 A+ c) \$ D00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]: M3 y' w8 N" Q ]1 N
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]8 S* Z% A6 h* |; p T j
0040336B 50 push eax# S8 k6 r% a% J* b0 p8 e7 r
0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX
! Y" O, G( z0 x3 `00403371 50 push eax
) ~% A/ g% k7 v: N: a# K00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX: H( u* u8 g9 k, [* Y2 K# U
00403377 8BD8 mov ebx,eax ; EAX送EBX8 [8 O8 O5 |- V' y
00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX2 h n1 |* r7 o4 F$ v+ T" N
0040337D 83C4 04 add esp,4
5 c% p' ^2 K; o5 s00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]5 d, C( V. Z7 X. i- U
00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]
% C, S3 K8 z1 A1 Y00403387 50 push eax2 d0 X- ^" O! |. V
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX
. |4 M7 ^3 G' i1 Z% l# ]0040338D 50 push eax
! |3 i7 e4 c' h* |0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX4 r! x4 }8 G, s. K) E
00403393 83C4 04 add esp,4
2 y" N" X: a" Q' S3 Q% @00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]9 p* u* ?" w- I% U- S3 X
0040339A 8BE8 mov ebp,eax ; EAX送EBP
5 G. x# z, m+ f0 w! |/ @- R0040339C 6A FF push -1
: r8 L8 b6 x& x" x" O0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX% n, ]' o. L# v) ^+ d& u
004033A3 6A FF push -1( P9 x0 z! L% g
004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
7 f. W5 u( O" A4 \# r/ |004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
8 E' a1 M% o/ Z8 Q" }004033AE 6A FF push -1
( i y/ M! f3 h& R3 S( R( P004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX/ q3 {% g7 u( b. x
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX2 {& V8 X0 B7 Z
004033B9 6A FF push -1
. {8 \7 x3 r4 `004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX
3 S5 w% e+ R: {+ I; [% D: t9 V004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX
. C" m7 z3 T% d004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
& j3 i3 g6 y! @6 {004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX) W: F" Z5 l6 z/ {& f& |% u& a
004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX6 I1 S4 O- i% d. C1 Y' I2 V
004033D7 D1E0 shl eax,1 ; EAX左移1位" Y" B* I) }; O2 ^2 H$ c
004033D9 99 cdq ; EAX扩展
/ E4 p# L/ f q4 g) f004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中) V, Y1 F' h; j& Q
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较$ J o" P" H( P6 _, T
004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)$ f! G. l! I' g: ?, W
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A
7 ^5 U; N& {* {$ S- x004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]$ [+ }, T* v' ]* e, ?* ~/ V6 R
004033E9 EB 2D jmp short qsr.00403418
/ N9 ]6 s% K+ G& b: T1 v004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX- h( E; N$ H$ o; W0 n+ h6 P0 e& u6 f
004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2
7 ^9 i; R5 _" e9 s004033F7 99 cdq ; EBX扩展
" M' l% Z$ O1 N004033F8 33C2 xor eax,edx ; EAX和EDX取异或
- e2 T- m6 P& |2 X8 y3 S004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX1 B! B$ ~ I6 c2 i( V( D" t3 S) z
004033FF 2BC2 sub eax,edx ; EAX减去EDX
) e) h1 a$ Y' e& |00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]
# g. P& w! h3 ]7 |# [$ }: d00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
$ ?' ^$ d/ s, x/ m# _00403409 99 cdq- u9 P N. ]# ^6 h1 k4 W8 m
0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
" L: U( ?5 {0 ]0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX6 k2 I& d! v6 f
00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较
: T4 I, `8 W/ T4 C$ w# N00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)- W. R. @9 h: H/ d
00403418 E8 6EC00200 call qsr.0042F48B ;
, a5 {0 Z6 @1 ]4 d7 h0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
' o8 C, [* N6 P. K00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],92 g W' s4 z3 @2 a8 h, i2 O, [) a
00403426 E8 60C00200 call qsr.0042F48B
; |, w: N7 p! e- c0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
; q, q! Z: |/ b( u! x1 b, i5 X0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8
7 L* t, n n1 l& Z O2 O8 R0 C00403434 E8 52C00200 call qsr.0042F48B6 k( T* o: e( `) \" [; E; b
00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]( F2 R+ D5 k6 F$ K. e
0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7; \$ G4 }# N! `
00403442 E8 44C00200 call qsr.0042F48B$ q: Y2 \( D' Q* z _0 z! j! ]
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
' ? |/ C3 K' O! ]3 ^2 f( I0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],68 Y* r: L' X) p v) P0 h' R4 S4 m
00403450 E8 36C00200 call qsr.0042F48B8 S. D Y6 X+ \
00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]( D5 h: K/ w9 K$ o! C* T
00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3
( r! G0 X" B: }5 B* w0040345E E8 28C00200 call qsr.0042F48B' ]% X! l# F( T: v: u
00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
4 ?+ Q; E' J1 W5 w' |% n1 m/ [00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],25 W0 |; X. g6 v' O1 d5 r( c
0040346C E8 1AC00200 call qsr.0042F48B9 g) N J4 \& _# |9 g
00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]. i' u( e9 M" j9 }0 @" R. C
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],11 {3 Q4 r. i% ]0 ?; Z- |7 V
0040347A E8 0CC00200 call qsr.0042F48B
/ p- y* y9 J6 Y* ]- p# {0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]: O* s5 J2 I8 S, k" i
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0* Q; \$ M% m+ [! Z" t- k
00403488 E8 FEBF0200 call qsr.0042F48B
1 `' h( q% G8 D0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]3 A" K& j0 \$ C' S& J
00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-19 k2 a! }- b0 @' I( `
00403499 E8 EDBF0200 call qsr.0042F48B. L* t1 H" D1 S! v/ Z
0040349E 32C0 xor al,al ; AL清05 a6 l' V+ a. | y2 j; ?' e
004034A0 E9 88000000 jmp qsr.0040352D
7 @/ }6 \( z) P4 S* F$ l004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~5 `1 j2 J: Z+ v" J
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
' U& W' `' M8 |4 f# l1 R) `004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9) K, b+ G* Y( A; p8 a
004034B3 E8 D3BF0200 call qsr.0042F48B
4 C7 a! E( t! S004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18], Z' W6 I% ~. o6 `$ ~. y
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
& F8 \" D$ U$ k004034C1 E8 C5BF0200 call qsr.0042F48B& F i' Q4 @) ]2 L3 \# q
004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]# \3 b2 e* c0 d$ N
004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7 c( p( Z$ |3 E5 Q
004034CF E8 B7BF0200 call qsr.0042F48B& B& [0 h5 p( |; t2 J! a
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
% C; v5 [( A, }7 M/ ^( t004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6" K3 D: E% ^. n2 _6 O5 f- x
004034DD E8 A9BF0200 call qsr.0042F48B) R5 w: e2 c; A
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]4 N! f+ s6 R' s! h1 I, J
004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
% r0 p+ y, U! i& c0 H l004034EB E8 9BBF0200 call qsr.0042F48B0 d" w/ T; p3 w- F4 _
004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]+ ^! @( T+ u9 G+ Q. \: k
004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],26 F a+ r. U) O: f2 Y
004034F9 E8 8DBF0200 call qsr.0042F48B6 H; O9 W% l# Q( k0 q
004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
. W. L+ } m9 S I( g00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1
+ z3 L7 Y9 _' j' I# f& x6 U00403507 E8 7FBF0200 call qsr.0042F48B% p. ?7 c z- J+ Y: t, V L, \
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]9 {) o2 x- P+ R/ _& e: L. t
00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0
- ^. \7 s6 h( W% J3 a0 ?00403515 E8 71BF0200 call qsr.0042F48B) k9 f$ {7 V9 ]
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]5 d- j' u, J, f- x
0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-14 W6 j+ t( [- O1 Y9 R% z
00403526 E8 60BF0200 call qsr.0042F48B
& d% n- y( ?/ ~. c9 @4 t0040352B B0 01 mov al,1+ y8 d2 x; L1 e+ P% |5 R" v
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]$ _: }! S' h3 X q7 |! U0 Y: B+ K' B8 F
00403531 5F pop edi
4 j F, ^* j2 v00403532 5E pop esi
; s& q$ x. y. |8 i6 b) f& T7 W00403533 5D pop ebp0 ^" |5 O+ n* R
00403534 5B pop ebx0 Z) w- b8 E0 ?* A. Q8 s1 D
00403535 64:890D 0000000>mov dword ptr fs:[0],ecx
0 U `3 Q. I- b! _2 o* ]0040353C 83C4 30 add esp,30- g1 d6 C; ^6 q, r" w1 c( h. O4 O7 I5 z
0040353F C2 0800 retn 8& x- X t, {9 {8 E6 e
--------------------------------------------------------------------------------1 l( S4 j. x3 t2 O
【破解总结】
, t) J; t" u; i" Q n( o, L6 [ 用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^% w% K& }& V* c) N# b- Q, M
用户名:yijun9 [8 H2 c# M+ l9 E: d% R5 P& d
注册码:4893*7777*3726*7777*0529
3 m u2 k3 U8 X! K# E--------------------------------------------------------------------------------+ ?4 G0 e4 p+ B' \, I. h3 K
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡