|
|
【原创】破解Quick Screen Recorder
5 w7 D2 F6 R$ H4 t. e8 F1 L: _) S8 b【破解作者】 yijun
! p$ i8 s' L, P3 }$ m9 ]【作者邮箱】 [email protected]
$ }, C+ }! ~/ d" `2 c9 e【使用工具】 OD,PEID
i4 u3 w, a0 h) L9 h6 c* |【破解平台】 WinXP% B4 C) C' ~( A9 n5 J; D
【软件名称】 Quick Screen Recorder
5 D" ~2 d- I8 h: L9 n6 q【下载地址】 天空, L! I% c! `+ ~+ c; \" e
【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on. ' m# b# R7 _( Z; y( p5 ]2 Q
【软件大小】 540K" D3 |% y) _7 ~8 P }
【加壳方式】 无
1 o6 E$ I, M; {4 _0 }1 A【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)) Z# x+ X$ G, X7 q5 k8 P# `
--------------------------------------------------------------------------------
1 P" r% \# P4 D. R r8 _【破解内容】( O+ \& L9 [+ j, i. ^" m8 L
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
4 N! s- V( u2 Q2 j: b( o# _2 v00404C69 55 push ebp //在此下断5 z9 J" _+ e/ B% H
00404C6A 56 push esi
, r7 {6 H+ }+ i0 x00404C6B 57 push edi2 ~( K7 }6 P9 m$ N D# Y0 R
00404C6C 8BE9 mov ebp,ecx/ ?- ~. X& q* n+ \
00404C6E 6A 01 push 1
7 c5 I3 t+ x$ B$ }0 ~2 s% t% P1 K00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
j+ K$ `% h5 I! `& q, M00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]
: [$ s9 v' c1 l6 z00404C78 8BCF mov ecx,edi2 x; B$ B X3 V9 }* [3 o- c. [+ v w
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码& c- q9 j# D+ i6 q2 l" s. o8 c
00404C7F 8BCF mov ecx,edi
! O. R& |9 X: {; B/ S( R& v1 b* I8 k8 s00404C81 E8 A73E0200 call qsr.00428B2D0 l8 C5 _ X, V4 c" o9 z& @. d% \3 \
00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]- l8 P6 p% R c ?
00404C89 8BCE mov ecx,esi
, Y" l! P1 u# q2 Q5 Q- C' d00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX8 I% A5 i; W4 X" t9 V' R# m8 b9 b
00404C90 8BCE mov ecx,esi
" d5 ?- T [' j* @# v00404C92 E8 963E0200 call qsr.00428B2D
1 Q$ g2 B/ U4 z8 m! N6 T; l3 z9 V00404C97 8B06 mov eax,dword ptr ds:[esi]
$ S9 D* m; v5 Z& E5 B00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
H7 X5 [) x5 N/ H R00404C9D 7D 26 jge short qsr.00404CC5
( W( G: G% j$ j: J# ^00404C9F 6A 40 push 408 z+ g2 @8 }# p0 C1 t
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
0 i+ ^% Z: _$ B" O4 {1 M. }2 M00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."1 R6 q \6 I: b z, w6 z' s
00404CAB 8BCD mov ecx,ebp6 i3 \& e9 _& y" F: ^9 s3 M
00404CAD E8 C3840200 call qsr.0042D175
% c$ n+ Z6 u" u. E9 V00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]# s/ j% W1 d+ ]% M) w
00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx6 i$ T7 H6 [$ y/ S3 y, d
00404CBD 5F pop edi1 f8 l6 G I9 O$ K# t* D. ?
00404CBE 5E pop esi5 B0 R0 L# M; i3 w1 i
00404CBF 5D pop ebp
0 P7 K4 T% y, G" \% E00404CC0 5B pop ebx
4 R4 s3 s' U I00404CC1 83C4 18 add esp,18. E; T: X7 ~ [! a; M" F5 m
00404CC4 C3 retn
* z) V/ a) f+ S8 x00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
2 g# }' d0 M. _; ~3 Q( g00404CC8 84C0 test al,al
6 X1 U+ t( O/ _6 [6 Q00404CCA 0F85 1C010000 jnz qsr.00404DEC# L$ k% I1 d$ c& i2 t! _* [7 \
00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]0 w7 g% G& `' G$ {' Q1 _
00404CD4 E8 87E3FFFF call qsr.00403060
; }( M5 v- ]! |2 O9 Y* T00404CD9 51 push ecx
$ t2 m/ j4 a* i& y5 r( V00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
) V' [- A9 n1 V9 Z00404CE2 8BCC mov ecx,esp3 `) R% K# b' v1 f- ]
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp& M. l8 f" M, N* y0 D
00404CE8 56 push esi0 m! N- ~( h0 l5 E1 ^
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
3 `3 r' b; {; V00404CEE 51 push ecx6 j. L0 z/ h1 |' C) Z5 S
00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],12 Y& ?/ h' o! ?8 t
00404CF4 8BCC mov ecx,esp
b5 f V# L, l- D00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
, x. j. U+ q% b2 p" J00404CFA 57 push edi7 G7 T9 r( A6 J
00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0
& ^$ i) p. r% |) M4 x5 h( Q6 ^00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]. ]& p' ]) R! q. _+ \
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0' f9 O0 n' R2 M5 h- M9 @1 P @2 W" }
00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~& ^) Z t+ U; |1 Z
00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~
& H. ~5 T; a" Z/ y- n8 E Z00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~& }3 d+ i$ p0 `" S
00404D12 6A 40 push 40, u- N& Q z( z+ O/ Y
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder", h& t4 h7 W7 g% c
00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."* ?. Q6 }8 v& b
00404D1E 8BCD mov ecx,ebp
2 m: Z$ [4 D7 G00404D20 E8 50840200 call qsr.0042D175
; q+ k* Y7 t+ f* K' W00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
6 e+ X3 G2 @/ j8 ~) q5 t00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-18 C' G: L* C5 l( c) Y# C7 b& [
00404D31 E8 5AE3FFFF call qsr.00403090. B$ W3 o0 G h) ]9 i% C, `
00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]5 A3 s% O+ n8 W7 X2 ^. y
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
2 e+ P4 G0 `0 U! Y {00404D41 5F pop edi% n. P+ t q2 L8 Z
00404D42 5E pop esi
6 B; W6 o. ~0 o: S00404D43 5D pop ebp' Z( V7 n0 G) Q6 K4 a3 Q
00404D44 5B pop ebx: P' C% m v' j# H2 }
00404D45 83C4 18 add esp,18
( X5 H' F# R; H2 Q2 b* H% h! h00404D48 C3 retn
, G- n/ f+ i4 T' Y! _, M$ L*********************************************************************************************************************************************************" s: T/ r1 L" ]; {0 x% A
跟进00404D09处CALL来到:; O0 G% j; e, ]$ f( I9 v. ?
004030A0 6A FF push -1 //一路F8下去~~~~' r# d4 h, q! Q4 S6 ~: ?( @# g8 ]
004030A2 68 C88F4400 push qsr.00448FC8 u7 v; D8 T: |5 a$ ^9 x/ f; F
004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]) j. M6 }! G6 T; _
004030AD 50 push eax2 h2 G9 A g2 Z6 L2 I/ r" {1 V
004030AE 64:8925 0000000>mov dword ptr fs:[0],esp4 c- ^3 P6 ]/ Q* [' u
004030B5 83EC 24 sub esp,24( A" i$ w- \0 k3 h Y5 Z4 j: ^$ K5 S4 R3 ~
004030B8 53 push ebx
$ u( f6 y& c, _# ?004030B9 55 push ebp
: t/ q8 u2 V, g$ `$ j2 k8 l$ \004030BA 56 push esi: N: w. ]; l* o' B, A0 t
004030BB 57 push edi
+ T' d2 w& h% e' ^& ?004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"
2 u% e# ~- S9 l# N, g004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]3 O. R; i Q* N7 t1 Y) n5 q/ U1 T
004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1
5 H9 u) P! t. R004030CD E8 27C40200 call qsr.0042F4F9
* i% I4 l* a1 |2 u8 [004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]& }/ C+ j2 P3 I) t. ^3 A/ L9 F
004030D7 894424 2C mov dword ptr ss:[esp+2C],eax
0 ]) Z! W5 Q" x3 F, s, @1 t4 v0 K004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
T" u8 H( {) F004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3$ ?9 U ^ @/ l3 C, O
004030E4 E8 905A0200 call qsr.00428B79
7 T4 Q5 E3 W# C2 L7 B" @004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
, l. ?1 s6 R6 w004030ED E8 3B5A0200 call qsr.00428B2D* P8 f' C4 C4 U: a
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]& l8 |" |9 X; n7 F
004030F6 E8 7E5A0200 call qsr.00428B79
`2 O: }$ l8 V$ p' ]$ Q1 R7 R004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
- R1 }/ J" ~: |! ~+ A004030FF E8 295A0200 call qsr.00428B2D
/ Z- c1 L# K9 q0 U7 D/ C2 n/ K5 R00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]2 \, ?2 l/ q6 E& b' A0 a. T7 `5 M
00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]5 k2 S* u1 S; a. B5 L* K
0040310B 83F8 02 cmp eax,29 k) R- Z- |" x9 O8 m
0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
1 D* S& U. Y0 N/ t00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]5 v6 d7 l2 ]' b* F' s5 M; i
00403118 837A F8 18 cmp dword ptr ds:[edx-8],183 I2 n3 o0 q; I. A/ I
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳
& V; c% d v* Z& n5 d00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]* {4 {& u. H6 p- }+ y+ j- N- q
00403126 6A 01 push 15 d7 p7 n3 [1 X& T
00403128 50 push eax
) U! A9 Q$ J4 N00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
- h; B/ R: f& g5 J' ?* _2 C0040312D E8 C4550200 call qsr.004286F6/ O9 _+ V; v( a' I, U
00403132 8B00 mov eax,dword ptr ds:[eax]
8 h6 {/ @5 h& k6 ?3 U00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
0 B7 m; g ~7 L( k& v00403138 50 push eax3 s7 p, m/ u/ {6 l1 U
00403139 C64424 40 04 mov byte ptr ss:[esp+40],4
' V6 _. G' K' C( r& a/ S# ~+ C0040313E E8 4D560200 call qsr.00428790. z! _& w6 J& p x& M, j
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]: ^- n" U9 M4 V/ b
00403147 8BF0 mov esi,eax) a1 u/ H: F6 i+ D- K
00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3/ g _, J- W6 k1 Z& u ?4 l& K& _
0040314E E8 38C30200 call qsr.0042F48B
/ o9 x) [$ W% P00403153 8D46 0A lea eax,dword ptr ds:[esi+A]
$ P2 z$ e' J8 ? o00403156 B9 3E000000 mov ecx,3E
5 h1 Z6 g+ S; t& h6 U* z9 n& v8 V9 B- g0040315B 99 cdq
/ b: x! Y3 Y+ J% o' ^/ e5 G" w7 t0040315C F7F9 idiv ecx0 w3 ?7 e3 S1 ~6 e8 k8 Q# u) J
0040315E 6A 01 push 1* F5 v" K0 Y6 Q* e4 E
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]
6 J6 w0 w- u8 W00403164 8BF2 mov esi,edx- N) D& n, [7 M' v
00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]7 m2 O0 o, g2 w/ c, [
0040316A 52 push edx9 _; Y* G1 c2 s6 M7 q3 c
0040316B E8 0A550200 call qsr.0042867A
/ i' q1 I" e% C# _% Z- T$ a. k0 ?: b3 T00403170 8B00 mov eax,dword ptr ds:[eax]9 m) N% `6 [/ n4 V# H* X
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20] l% U7 a8 b" T0 ]" W- l8 [
00403176 50 push eax6 T0 {, ?1 V$ f( b) A4 {
00403177 C64424 40 05 mov byte ptr ss:[esp+40],51 X) Q/ M( f2 g* S3 n
0040317C E8 0F560200 call qsr.00428790
* G+ ^8 F/ u4 C! l, F2 a7 w6 T! L00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]8 T( v: O# p9 X) I
00403185 8BF8 mov edi,eax( E1 J* s8 }& n: P
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3
5 |" D/ `+ y7 U0 u6 ]2 H$ A0040318C E8 FAC20200 call qsr.0042F48B
$ Z$ Z9 M2 v- }1 r# x7 ^00403191 8D47 0A lea eax,dword ptr ds:[edi+A]7 Y- X/ U' ^% B# C' |
00403194 B9 3E000000 mov ecx,3E- {. F A. d/ b! u
00403199 99 cdq
2 r c A+ {/ ~+ H( P0040319A F7F9 idiv ecx* \8 w, r2 N3 e, N
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]0 b- w3 \7 {8 j
004031A1 894424 28 mov dword ptr ss:[esp+28],eax
( R7 q1 a% n8 T" o0 o3 t004031A5 8BCA mov ecx,edx
7 P( }3 l) k! y$ f* V004031A7 894424 24 mov dword ptr ss:[esp+24],eax
2 } k+ X+ |/ n. h+ u004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
( x* F; U8 i+ K$ x* c% j t004031AF 894424 18 mov dword ptr ss:[esp+18],eax
$ L5 @4 s) F' ?! i; ~" B9 c004031B3 894424 14 mov dword ptr ss:[esp+14],eax
0 b( L$ s b4 M3 i004031B7 894424 10 mov dword ptr ss:[esp+10],eax
9 U) q4 O7 x. Y4 j2 o, b004031BB 8BC1 mov eax,ecx5 N* m( Z: ^! D4 k
004031BD BF 0A000000 mov edi,0A
0 t. P& f+ [9 V6 \004031C2 99 cdq0 _( G# k& Q/ g' x
004031C3 F7FF idiv edi
4 ?$ L$ g, \6 C3 n004031C5 8BC1 mov eax,ecx4 m+ F G, X/ s3 e m
004031C7 B3 0B mov bl,0B e7 B& ~0 M8 E3 {# _
004031C9 0FAFC1 imul eax,ecx0 M: o3 V' |5 i
004031CC 8BCF mov ecx,edi
( i/ y" A- z- e004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
9 l1 F/ W7 h& L! _/ O. [; M1 K7 J004031D2 52 push edx! ]. W' k6 |1 R m% K9 k5 y0 H
004031D3 99 cdq) H& ?- r! i# P& `% v+ S7 {
004031D4 F7F9 idiv ecx G# I5 D Q; p; Q- W" O, C
004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]9 R) V2 d: ]- L7 _) [, ?4 X
004031DD 2BC6 sub eax,esi. t$ ~6 x1 d3 r* U9 S9 P
004031DF 52 push edx
2 v/ p# K, w Q" Z& [, W* w004031E0 99 cdq
x8 E; i5 d ^. g: @& h9 O004031E1 F7F9 idiv ecx
, I' a y8 w& \/ e* X004031E3 8BC6 mov eax,esi _4 M4 r. t4 I, c! R
004031E5 52 push edx
* y. A1 x' y5 W* ~7 A8 b004031E6 99 cdq; P: w0 x" `$ f6 ^( [5 G
004031E7 F7F9 idiv ecx
. C, q- H- w. v* k, k) M E, D5 p004031E9 52 push edx
1 a1 y; v9 A4 w; W2 a& u4 L, X8 F004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]* _0 ~) \) `! L8 C, @0 G
004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
8 }9 Y3 O, s6 S9 s004031F3 52 push edx
6 v: T/ m7 m6 v8 {/ ]9 z$ ]004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893
1 j/ v2 t ?: K4 U3 p! [: s& D) D004031F9 83C4 18 add esp,18% l' \2 l9 O8 B
004031FC 6A 04 push 4
$ b( B4 i% ^; C4 P; {8 T004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]$ U; C" r( B* a$ t
00403202 6A 00 push 0, [& u# T: E0 L* H& x5 d
00403204 50 push eax
7 d0 Z. z$ B/ L. ]+ i* n' K00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
. D6 b: `$ p: A1 X" W& {, ~00403209 E8 D6530200 call qsr.004285E4
& y" ^% [6 T1 F' {- d2 ^" N1 j0040320E 50 push eax0 o9 r1 x$ a) t3 v
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
3 u5 p% L" {! u4 a- n00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C
- A R @6 b$ K8 C: E00403218 E8 A7C30200 call qsr.0042F5C4
( e( V/ }8 e' f1 w/ A0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
3 q2 E3 L7 f- l+ t0 a% G/ _% \2 P00403221 885C24 3C mov byte ptr ss:[esp+3C],bl) M$ n U* i& z3 N1 t8 m
00403225 E8 61C20200 call qsr.0042F48B6 }$ ~$ q" ]3 H, @ @; j! [
0040322A 6A 04 push 4
5 x/ N* i- k# a) {0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
! u0 c! e. M# l; q3 `- R J! ~00403230 6A 05 push 51 j4 R4 U Q5 r ]
00403232 51 push ecx
0 s5 i8 ^! i; ^+ a00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]% s* z4 t/ a5 p" n$ {
00403237 E8 A8530200 call qsr.004285E4
. C: K% L/ N1 ], I0040323C 50 push eax
- R- Q+ O" E* a7 o0 G* c9 Y0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]5 b, E5 X" ?7 l
00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D6 a& w3 ^8 ?/ X8 O. W9 X
00403246 E8 79C30200 call qsr.0042F5C4
/ S& z& X, T0 M9 F6 _0 l0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
- @* o, B8 W) ~9 S0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl
; ]6 [3 N+ V' w" ]0 z2 {9 x" i1 Q00403253 E8 33C20200 call qsr.0042F48B
! N. {( Z" A+ z00403258 6A 04 push 4; n- d0 R& h0 D$ K; O
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]
& }: F4 [! n W; x0040325E 57 push edi
3 h7 W: g, A& q2 f, F3 X0040325F 52 push edx3 @+ [# K; B) s, o) Y
00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]. e/ N6 Y/ w. o/ T- O
00403264 E8 7B530200 call qsr.004285E4$ q6 A7 ~9 O& z1 `+ e
00403269 50 push eax9 k6 |' P0 Q5 R% J7 |1 B F
0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
3 [# Y/ n( a0 P/ J' T( U0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
* T7 v0 P: _8 G% p00403273 E8 4CC30200 call qsr.0042F5C4
) s, Q* ?" y! v: V8 Q1 z4 l4 p' `00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
4 T" H* Z3 S! B6 r0 F, B) V) V0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl
+ {# Z. x8 o9 W) i" Z; X7 n00403280 E8 06C20200 call qsr.0042F48B
" k, o( C# k: _+ h/ q8 P% s9 O00403285 6A 04 push 4
- k, r; s& x- C4 i$ ]$ K1 `/ R+ O00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]* \! e [3 L2 b$ n$ z5 U
0040328B 6A 0F push 0F
) P& o A0 v2 I0040328D 50 push eax) `7 i! a+ s0 [7 E9 m" [! @. q" b4 e
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]( m3 v3 L( T* v( j3 P
00403292 E8 4D530200 call qsr.004285E4
9 s, z4 V8 m; J$ j8 H+ i" Y7 d4 H/ C00403297 50 push eax
: ~) ~8 d. I! L: E: J00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]- q4 W4 e- {% l
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F w! l& [ T* q4 F6 d! L; N- Q v
004032A1 E8 1EC30200 call qsr.0042F5C4
0 m r0 S" m1 U2 G5 m( |004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
* x- R' o9 c3 Z; {, r0 q004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl
! `8 G1 G# r# j( Y7 r# U' s004032AE E8 D8C10200 call qsr.0042F48B
, N5 {: T8 u: o& \004032B3 6A 04 push 4$ N: x9 @, O! a, b" o
004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]3 K& i; d* W- s# b {
004032B9 6A 14 push 14+ b4 w0 W6 v" ~9 g+ l
004032BB 51 push ecx
# P) c( S" X: P Z; x+ k. P2 A; r4 I" r004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]9 A& S+ _2 c- A; X* B
004032C0 E8 1F530200 call qsr.004285E4
" H& a- Q5 o9 i/ l' j5 j004032C5 50 push eax
( p! z! l* v* Z1 C+ z004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]. P, b: p% C5 W7 z
004032CA C64424 40 10 mov byte ptr ss:[esp+40],10 P/ W6 R$ V$ ^! K
004032CF E8 F0C20200 call qsr.0042F5C4$ \1 y3 Q+ c% a" V `* x* V
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
2 n7 `" c1 k- |. t, |004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl
5 [6 E; O) p$ l( O( k x+ [004032DC E8 AAC10200 call qsr.0042F48B
0 r; t$ _6 ^' d9 K004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
3 c# G/ P* a6 S0 Z: O: D; B004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
2 b4 v9 ~% ?/ l6 l! {% J& g7 w004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL! I b' |( F" G Z
004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL$ F: \2 z% q0 h# N5 R
004032ED 8ACA mov cl,dl ; DL送CL
$ A* ^- ]/ o+ M. r+ S) d004032EF 3AD3 cmp dl,bl ; DL和BL比较% ^) t& d0 b3 I& F8 m2 o. U
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)% t9 V* k/ M' A4 L0 _0 p+ @
004032F3 84C9 test cl,cl
% L; P( r# M' c004032F5 74 16 je short qsr.0040330D
8 o, y; H+ S* y5 O3 U004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL5 y, G5 F, _! V) p+ E* p
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL
8 v5 ~, D. X% [; Z8 [6 j+ ?& m004032FD 8ACA mov cl,dl/ P" ?! E% d/ _! Z3 Z4 w
004032FF 3AD3 cmp dl,bl ; DL和BL比较9 W1 y! U8 d0 Y
00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
6 J0 d1 U! z* ^00403303 83C0 02 add eax,2 ; EAX加2
* C& q1 e% Z$ b5 {00403306 83C6 02 add esi,2 ; ESI加2
) y' N9 n9 t( g6 |00403309 84C9 test cl,cl. P5 Y# |1 M/ [6 k7 U
0040330B ^ 75 DC jnz short qsr.004032E9' z$ J1 U$ N- D# Q, a+ b7 B2 o* X; g
0040330D 33C0 xor eax,eax! Z0 D8 m2 h- N, o' e, I( m# K
0040330F EB 05 jmp short qsr.00403316* Y E" @1 D1 Z: h& U, P4 h% X. H
00403311 1BC0 sbb eax,eax# C* V+ o' T2 C W/ E, }7 B
00403313 83D8 FF sbb eax,-18 _2 S) g n6 x+ ^4 X6 K
00403316 85C0 test eax,eax1 e8 C' w+ O! @3 M$ t' Q2 z! X
00403318 74 0E je short qsr.00403328
+ ?- f6 c% b8 |0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
; Z5 `/ X* I7 Q# I- P8 U5 g- Q! H6 }1 a0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
* U7 ~" K* o, S: {+ z& y& {- p00403323 E9 F0000000 jmp qsr.004034186 C6 @2 N6 T0 M. J$ {2 f8 x: b
00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
9 [: z2 M( z) R2 Z0 @6 ]0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
1 I5 B+ @# w8 U! d% \3 z S00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]
: j- J1 }4 z6 c4 q+ Y00403333 50 push eax
& O! a1 @ Q; l: z00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX+ W5 R7 A0 g( A) j6 p/ f' f
00403339 50 push eax/ K' H* Y8 V/ w7 h2 p" X
0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX
, C) _8 ^5 l7 J: a' z0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
: q" n+ Z2 u% Q, \/ [00403343 83C4 04 add esp,4! D" I& \% W2 @/ p, e) G; Z: R% w
00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI2 I H6 K# m% T
00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8], H9 K$ \- q: i) z _) ^: j
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]4 O* R) K3 {0 n/ u& c# Z
0040334F 50 push eax
% W) w6 L- o( {00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX' Z7 m( ?9 B& n+ e9 V e
00403355 50 push eax
, ^" Y% s4 ^& }, F ], U00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX0 ]% m$ o: q0 d6 k
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
6 s( H1 q! ]+ y) w6 w0040335F 83C4 04 add esp,4, D8 W! i3 n/ M J# @! ]+ S
00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI$ M. P3 S5 Z3 @
00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
3 J8 X- {6 Q- v _7 ?8 ~* R4 h00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]
+ Q6 C n$ ?! h0040336B 50 push eax) K# x+ h+ \/ T# Y3 F* E
0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX8 s, Q( l- c, m
00403371 50 push eax
. x5 i% a# ~5 P, `; Y5 r00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX
+ N# B. e6 I- C: V( k' J00403377 8BD8 mov ebx,eax ; EAX送EBX7 a" I* R9 v4 C- U6 B4 A, x+ o
00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX% l7 M1 E! n2 I& q4 t8 T% ~2 r
0040337D 83C4 04 add esp,4
( C/ }0 q0 Q. D, |. ~00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
# y4 N2 l9 R5 c/ j7 l+ [' E00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]& T) O1 H+ |1 i; b t1 |
00403387 50 push eax
; J8 q% C. k1 o$ {00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX8 |( @. A- l" g( W( A, r' g' M# R
0040338D 50 push eax! e6 J# k$ L. V, E( W/ B- N
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX; J1 J+ ]- I0 Q$ t* p# p. Y
00403393 83C4 04 add esp,4
" n* n9 \" Q, F- e: U& C# {. ~6 e00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
, F" I2 z# O/ p3 g1 ^0040339A 8BE8 mov ebp,eax ; EAX送EBP- ?; H0 g* V8 g/ l
0040339C 6A FF push -1
' @; A8 z' H+ R/ R% G& L0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX
# @3 I% g2 P8 c2 C k004033A3 6A FF push -15 @) e7 w2 I$ t# d$ P' c
004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
1 L. y0 c9 K3 B$ l004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
- N W g6 W* f004033AE 6A FF push -1& E W5 B* X, K+ o
004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX% `( C& D7 u) ?# \/ b$ j
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX9 w& F4 }/ d2 I' q* G2 x
004033B9 6A FF push -1
, b0 A' L2 P3 V$ ]5 A- P004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX
6 ^5 ~. \( K4 z% {. f004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX
( j' k1 ?- m% j4 |004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX3 u& }3 z8 [' t4 M' }; X
004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
8 m& u# f: X/ S) L- Q004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX2 y& r1 c) S* s, N J' A
004033D7 D1E0 shl eax,1 ; EAX左移1位: O; X8 Q& ^ k9 @) k% G/ G8 u6 y
004033D9 99 cdq ; EAX扩展* C, }/ m/ v2 v0 U
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中+ \& ~9 i' t/ C1 Y( \- j& t$ f
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
: J! B, ^, f5 v5 f5 T004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)
8 P# l, T3 y0 D9 _% s: `004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A3 [- v4 O; }! U* L+ q5 X
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]* r( @# ~* c, J& V6 q H( ~
004033E9 EB 2D jmp short qsr.00403418
; E" U5 H5 V9 b) y$ X7 e) M% z, D004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX7 O) ?. G! ^' [6 ?* u
004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E23 h! L1 Q& c: O1 j* ~, V
004033F7 99 cdq ; EBX扩展
& X* e- F: g* t `004033F8 33C2 xor eax,edx ; EAX和EDX取异或
+ p1 [# V% ^8 C7 d4 ?004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX2 k1 M5 W7 d6 w! I
004033FF 2BC2 sub eax,edx ; EAX减去EDX8 U* v8 y7 l3 k* `2 u, w
00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]
A3 f- j- k8 O, D$ _! W00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
3 {- N3 W) d8 A$ Q00403409 99 cdq
# y2 t) q9 T/ Z0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
1 h6 C/ r, J9 h' l8 e: J0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX
% m, G: p+ E0 Q. C00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较" h/ U$ {( N# G) E( B/ M M
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)
. A7 A1 ]9 \; N- f/ d00403418 E8 6EC00200 call qsr.0042F48B ;
% B7 m2 Y& n2 ?# o4 o7 T* w0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
0 Z! V. Z, b* @00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9
- m }! J O' W. B% s5 ]00403426 E8 60C00200 call qsr.0042F48B
* O# X, g$ Q( A+ E8 M# z0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
; z0 V0 t2 c. Y% r/ N" e; p# |0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8
9 V8 ~ c% n5 |00403434 E8 52C00200 call qsr.0042F48B( v/ @$ S2 w" N. ]8 b* Q
00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
! ? h' q9 x3 @0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7- ~) K8 C) h. X, u/ O
00403442 E8 44C00200 call qsr.0042F48B
! q% V1 F4 R: ]; o00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
, A& c6 X7 m) U3 F9 x7 W2 S0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],61 ?) a. k9 f( J2 E& \
00403450 E8 36C00200 call qsr.0042F48B
" f' h1 H4 A3 y% J00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]# i+ y; u; L2 i
00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3
! o! A! w8 |5 k* q b1 F/ i0040345E E8 28C00200 call qsr.0042F48B
* v/ |. e4 X7 W! B1 b7 Z" H; G6 a; [00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
0 R( G1 c" |# g: t- o) {; K7 k00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
) ]5 T8 }) W- j8 ^8 d" @0040346C E8 1AC00200 call qsr.0042F48B
( N0 t+ [/ d3 x( f0 X4 T00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
8 O% K5 u" i8 U2 G00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1
* D* Y: k( ]4 V- e/ u0 F6 k# L0040347A E8 0CC00200 call qsr.0042F48B
+ K! u/ ~( @7 }1 N* I: L; l0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44], E% t) X0 h7 ~# k- b: A
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
& ~5 X! u _$ T+ S: L3 J" z00403488 E8 FEBF0200 call qsr.0042F48B
: J2 ~7 k) @5 Z- R A1 \- p) s0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]6 c8 Z ]+ j. n8 V- ~1 G S
00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
& Q( T, }, w* [- ^1 k00403499 E8 EDBF0200 call qsr.0042F48B% w# A" k- s+ Q7 q
0040349E 32C0 xor al,al ; AL清0* o( ?* c* f! d/ R% ]2 C9 o
004034A0 E9 88000000 jmp qsr.0040352D5 n7 w% X B( I- j& M5 J
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~) s9 e$ v/ }: ], Z" l2 Q
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]" _4 D" n* u9 D! {
004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9
3 t; k. i+ u% J$ |004034B3 E8 D3BF0200 call qsr.0042F48B& _3 c5 \; N/ p
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
6 X. w6 }! j0 R' E1 Q004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
) L8 d% ?, s/ p% [2 o7 F2 Z004034C1 E8 C5BF0200 call qsr.0042F48B0 j! ^" I! V0 S/ n1 t; h8 `
004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]8 V6 u# E! V' I0 V) r! _
004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
( a `8 m9 W$ P4 E% q0 B: M( @3 k004034CF E8 B7BF0200 call qsr.0042F48B1 l" Q9 ~ c7 B! M: K
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]0 ]- _6 y5 F0 L; E0 e
004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],66 n6 B1 S* `$ x! s
004034DD E8 A9BF0200 call qsr.0042F48B
5 ^2 \* v5 N! ]- ?# |) N# n004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]+ Z& n5 e/ s* _7 B. c: i7 S, U
004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3$ ^1 f$ O, u' y, H& i0 w
004034EB E8 9BBF0200 call qsr.0042F48B
6 ?5 X& W; k) F; w004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
3 y5 x' V6 {, ]$ N* b6 M004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],21 @+ t6 B6 W, y( w# v( C4 g
004034F9 E8 8DBF0200 call qsr.0042F48B3 G% s3 I1 Q$ d1 G
004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20], L) `' @; U7 ?* e+ o
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],12 R" A! T' \1 \' d! p- g2 _
00403507 E8 7FBF0200 call qsr.0042F48B* A9 n/ k+ K: n' L
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
( `+ C8 B( ]3 @00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0
- K7 c; f. x; C) P% y+ L! \ v00403515 E8 71BF0200 call qsr.0042F48B% F2 [" A9 _- n% k
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]) K# p2 r8 B% C! S, X0 ^* o- \$ F
0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1) D" a x5 S; j& G
00403526 E8 60BF0200 call qsr.0042F48B2 p; Z9 Q# l' r) _1 N: K! }
0040352B B0 01 mov al,1! \2 @! G+ q" z* y
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
( F3 a" s0 ]1 w, z" x0 t00403531 5F pop edi
$ C+ ~1 h4 X% q' }, u) S O00403532 5E pop esi$ z1 C& z1 |0 |% J
00403533 5D pop ebp2 T: C7 l3 u: ~: D+ D
00403534 5B pop ebx
" ^5 q+ y# q' M$ M9 @! u00403535 64:890D 0000000>mov dword ptr fs:[0],ecx4 Q4 E3 N. j. b3 ~2 H5 ?
0040353C 83C4 30 add esp,30% Z* I( X# f9 l# _! A
0040353F C2 0800 retn 85 U5 ?' Z0 D; @: a* G% D, W% H. v
--------------------------------------------------------------------------------
9 s( l; ?- z9 v【破解总结】; x8 A0 U" O [- N. L z
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^7 d3 ^8 G" o9 G" ]7 n
用户名:yijun" C# _' m& Z, F% h; \* S0 W
注册码:4893*7777*3726*7777*0529
( a3 }5 V, a2 v0 \$ c3 T--------------------------------------------------------------------------------6 T2 x5 u! J _+ ^" W
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡