|
|
【原创】破解Quick Screen Recorder; x9 w, m9 N. C$ Z
【破解作者】 yijun, P1 e. f, x2 a% \8 d) {/ p- V
【作者邮箱】 [email protected]
5 V! e! s: W. K【使用工具】 OD,PEID% E& s: d' z- `1 r4 O. B; N5 N" O
【破解平台】 WinXP. P5 s. x5 F# U T+ n" a/ Z2 s. u
【软件名称】 Quick Screen Recorder
) ?6 H4 [" ]5 V% ?! v' Y3 h; @【下载地址】 天空; H: @) Y g6 J8 Q5 G" k4 K
【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on. , `8 B, s' ~4 a3 x+ z" I* R* @2 h
【软件大小】 540K
3 a/ o( f% T: u+ z* I; k* r【加壳方式】 无! L" _7 a g' e/ X! O m
【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)
# `& J! D4 `% _ H. @! z: K* C--------------------------------------------------------------------------------/ z p3 _- q7 R! T
【破解内容】: a# v) u4 L* [ S
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:. k* A8 z: H# l* K h
00404C69 55 push ebp //在此下断
" X A3 x0 t/ u G7 o, I00404C6A 56 push esi
& W' {* Z4 a+ D7 s8 Y* f00404C6B 57 push edi
( q$ n$ w# R* F1 q4 ]9 L9 e* W# c00404C6C 8BE9 mov ebp,ecx/ P/ t& y `, x0 q+ L3 U
00404C6E 6A 01 push 1' O5 d5 y( F% e( d
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名1 F; I' e$ C/ p$ J
00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]
" ^6 {% ?$ r! \. V3 G6 C+ ^6 `00404C78 8BCF mov ecx,edi
) _% G" M, `" u8 X2 u00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码' C* \8 \( w+ @
00404C7F 8BCF mov ecx,edi
0 \6 n0 j* W% {) O4 J00404C81 E8 A73E0200 call qsr.00428B2D
7 w( `0 ]& N' i# n; A$ o00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]% H+ J- b' N, f
00404C89 8BCE mov ecx,esi1 ~( W: `5 n& ~. i% T ~9 ?4 R
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX8 t; Q! R1 r; _' v5 L/ M
00404C90 8BCE mov ecx,esi0 ~9 V) d# T) \4 V# ]
00404C92 E8 963E0200 call qsr.00428B2D
- q$ e f. O% ?: q00404C97 8B06 mov eax,dword ptr ds:[esi]
. g# n! V, Z4 u. B& N00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
" N4 {+ @4 {4 P p- N$ c* }3 i00404C9D 7D 26 jge short qsr.00404CC5: N/ Q; n b0 S; E
00404C9F 6A 40 push 404 v; h! D0 l- j* w9 [9 X( B
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
! t1 y a$ m$ u( h7 [5 M4 M00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."8 |4 R# K6 d* R( {; V; _. b, W' t
00404CAB 8BCD mov ecx,ebp
6 F: Q, r' ^2 }7 I4 f8 u00404CAD E8 C3840200 call qsr.0042D175
7 p( T1 A: R7 G& l/ u0 f00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]5 h' E: V* H, v6 W$ g
00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx) f/ H& D; s0 x+ l$ r" f6 S/ I
00404CBD 5F pop edi; `- _' J, w6 f$ o1 k5 n# G9 ?0 K
00404CBE 5E pop esi6 _" \+ [6 ]- L9 I0 C( T7 D
00404CBF 5D pop ebp5 Y9 ]# f9 e3 R$ t& H
00404CC0 5B pop ebx
! A% q# ] t6 T w1 A- \00404CC1 83C4 18 add esp,18& t6 u0 q. m' A
00404CC4 C3 retn
3 ]# M# A4 ]# r' M i2 ]) P& n00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
) X% k# Z* S, T( g1 \00404CC8 84C0 test al,al* W+ ?# q. h+ O7 h. g% n
00404CCA 0F85 1C010000 jnz qsr.00404DEC N" z7 Q+ |* N
00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]/ R* {0 J" `% y# s* z! m% k, M
00404CD4 E8 87E3FFFF call qsr.00403060
+ T3 L1 U3 V, R00404CD9 51 push ecx% g9 Q+ R" m$ M
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
/ b: {5 ~( Y5 w) r( s00404CE2 8BCC mov ecx,esp
. }# ^, L+ n5 P6 E" h1 o: L00404CE4 896424 14 mov dword ptr ss:[esp+14],esp- R" g- E" N0 H' c
00404CE8 56 push esi! R, O% \# l& |! L: H7 Q3 H# A- G
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0& V6 K% y8 P1 \+ z3 H! ?" r
00404CEE 51 push ecx
' v$ I+ L9 a" j/ ]& V00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1' s* T0 @! F3 c( c5 \
00404CF4 8BCC mov ecx,esp, X& K B% U; Q: ?
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
9 t w5 ]; ]5 w' ^& B4 N00404CFA 57 push edi! o L( m2 q5 G t# W. Y- i
00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0
3 ]5 u* X, H4 f5 N q( A& o00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]- a/ ]8 P9 H) F* k
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0
$ b0 P, ~$ h, ]00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~
8 P) V( X, j1 U* ]8 S00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~; o: W" _' y1 p" U/ J* {
00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
$ }7 _5 \- F/ ^! N' \0 ~$ @1 W00404D12 6A 40 push 40* J+ z! f2 K+ g( l+ H! ]
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
4 b0 I$ V" n- S3 o6 z. m+ o00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."
8 ^' A4 @( d: H1 B- @00404D1E 8BCD mov ecx,ebp2 j- ~0 b" O; z! ?& G$ q) ]5 }
00404D20 E8 50840200 call qsr.0042D175 r7 A, p# Y0 |
00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
+ _1 _2 G4 m- B0 a00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1% o' f2 _; Y6 K( f+ P% ]
00404D31 E8 5AE3FFFF call qsr.00403090
, d' f6 R1 n3 ~0 a/ d" Z* Y00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]1 J6 R6 j8 g4 U/ W" U- B9 G
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
5 D5 n9 m9 A& x! N8 r00404D41 5F pop edi
; w3 t% `! E0 U- C00404D42 5E pop esi
5 q6 Y1 F) V6 P A8 @4 Y00404D43 5D pop ebp
' [5 t) |* T) l/ W5 n00404D44 5B pop ebx. l) G& i5 ?$ K; x
00404D45 83C4 18 add esp,18
% V( c. L$ l4 g$ q00404D48 C3 retn6 S; E+ g2 y% w" w" @- G
*********************************************************************************************************************************************************) ?* I& d! M) J* M0 ^. E7 w5 s
跟进00404D09处CALL来到:
5 [* h. W1 Z$ |' I6 g( @004030A0 6A FF push -1 //一路F8下去~~~~
9 v% m. C* j7 ?1 D7 _004030A2 68 C88F4400 push qsr.00448FC8
* z( W/ u. l+ @/ u) J& x004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]5 C, y% c$ W% q3 E( H4 `
004030AD 50 push eax
( I! |0 S D( o: ~5 B004030AE 64:8925 0000000>mov dword ptr fs:[0],esp
4 T$ l) k* l) M5 g004030B5 83EC 24 sub esp,24
8 Z1 K* \- x4 Y- r* A+ c004030B8 53 push ebx( e/ O: @- o h$ {6 @8 \
004030B9 55 push ebp! K" q6 M; U/ i3 r9 o
004030BA 56 push esi0 x% e( [3 G, P* K
004030BB 57 push edi
4 ~& Z) `$ _/ X004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"
) L: n* E: i* U; B+ Z: `" t004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
$ w# ]. l$ @: D4 L" e/ W004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1$ `/ z y: s% Z P
004030CD E8 27C40200 call qsr.0042F4F9: v; U: x0 x4 q) j" H1 n
004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]0 {+ S7 Z4 P, c, |* q/ i1 ]% m5 m3 V
004030D7 894424 2C mov dword ptr ss:[esp+2C],eax2 G# F/ o) h1 c
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]) s0 G8 B4 L" I8 T
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],36 \' m; p ~3 J
004030E4 E8 905A0200 call qsr.00428B79% c/ b- K/ d& [( G3 U
004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
- b; b. P# y T004030ED E8 3B5A0200 call qsr.00428B2D5 a1 L* q9 \$ H+ J; }! I
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
* ]5 W3 C3 N( t$ y M$ X004030F6 E8 7E5A0200 call qsr.00428B79
0 }% P% l: }, g3 E' V+ M7 _5 t- A004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]6 f) r. J- N4 r0 q
004030FF E8 295A0200 call qsr.00428B2D
' g4 p) M. q: q, B; l4 P2 F00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48], s& p/ `# Q" R* }8 D2 _2 R, K+ \! F
00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
+ W4 e5 n3 \5 n) D/ g0040310B 83F8 02 cmp eax,2
9 \; x: \ ~2 I. x4 N0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
* H8 G: R* s) H$ w9 T, x00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]* I0 `+ E' b J$ r8 B$ F1 i5 c. `
00403118 837A F8 18 cmp dword ptr ds:[edx-8],18
3 M3 s& [- m- B, o& k! R+ W- o: _) W0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳' {& `% d3 O3 B8 B: Q. {2 ?
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]. l, w+ L( L$ _" o
00403126 6A 01 push 16 A' |, c6 T. A) [5 \
00403128 50 push eax
3 `5 o2 m# Q* {5 [4 l% k00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50] V ~: U! G: t- P* f4 M6 d
0040312D E8 C4550200 call qsr.004286F6
0 x! @* `( R2 y; P: L+ W00403132 8B00 mov eax,dword ptr ds:[eax]# ~; M- U% y, ]/ W
00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]# V8 T7 y3 a- w `, [: |
00403138 50 push eax" b7 @& O4 x" \1 U! F
00403139 C64424 40 04 mov byte ptr ss:[esp+40],4: v& v2 |( z5 j, `& T; T; m
0040313E E8 4D560200 call qsr.00428790) x/ y3 m2 ]) f& D. Q6 Y/ u
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
* m& ?% W; R% j, _+ s$ ~6 G00403147 8BF0 mov esi,eax
. }5 \5 ~/ B3 {! c0 a00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3" V3 }0 j: s* y0 @" G1 j
0040314E E8 38C30200 call qsr.0042F48B
# y! }8 z2 T/ u, v W00403153 8D46 0A lea eax,dword ptr ds:[esi+A]
' n$ y: L8 p1 e: b00403156 B9 3E000000 mov ecx,3E
- {' {# G3 G5 L$ w% r! l8 ] G0040315B 99 cdq3 n! a e* s( f! o7 d( ]
0040315C F7F9 idiv ecx! I0 S- G' ], A+ ~4 @
0040315E 6A 01 push 1# P/ p+ w$ i5 @- W \( P
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]
# H: y; J; V9 D$ {! [00403164 8BF2 mov esi,edx
. x: i' i% y- i00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
) e: @( q4 {& e: Z, K0040316A 52 push edx
, Y: }1 k, g. C. k$ M: c5 R0040316B E8 0A550200 call qsr.0042867A
- H6 i2 F- b8 V" \ K7 c* j00403170 8B00 mov eax,dword ptr ds:[eax]
$ M. E, B5 d, H8 A: ?- E( r# t9 A* g00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]8 f1 F; n) ?$ n7 M
00403176 50 push eax' z w# R6 m, i- |6 F+ h3 O2 e D
00403177 C64424 40 05 mov byte ptr ss:[esp+40],52 ~2 N Q5 [: E2 Q) Y' n+ q
0040317C E8 0F560200 call qsr.00428790
( l2 H- F% M* E" U% W00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
; i- U* [/ [# m; h00403185 8BF8 mov edi,eax. O! l5 r6 G+ x! I, b
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],35 G/ _& c1 v6 b* L' r$ h ]. s
0040318C E8 FAC20200 call qsr.0042F48B
: O6 \% y- a; J! b3 d/ R00403191 8D47 0A lea eax,dword ptr ds:[edi+A]
0 z/ E) U# y7 b% P4 r" N% {00403194 B9 3E000000 mov ecx,3E
4 E' \5 A9 a8 S% g, t00403199 99 cdq
4 e b# K+ k& k+ }0040319A F7F9 idiv ecx
& V k( y2 h6 m6 F: G0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]. I* z% c, v. S8 q
004031A1 894424 28 mov dword ptr ss:[esp+28],eax
2 F/ m- G& D# I6 f- c/ }2 W7 {004031A5 8BCA mov ecx,edx, ?# }, r4 L6 r
004031A7 894424 24 mov dword ptr ss:[esp+24],eax3 X D7 z! S8 l
004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
& ^7 V* o( u( _' V% Q004031AF 894424 18 mov dword ptr ss:[esp+18],eax+ J+ ^8 J5 t0 s9 Z4 R) g9 h+ `. J
004031B3 894424 14 mov dword ptr ss:[esp+14],eax
; b0 _9 G2 [9 i0 N004031B7 894424 10 mov dword ptr ss:[esp+10],eax
" \8 r5 ?; h; _1 x) o7 D6 x& ]004031BB 8BC1 mov eax,ecx
+ X% ?; I r8 A/ v5 B9 z0 a; ^004031BD BF 0A000000 mov edi,0A
; d2 o& w1 t3 t, U, j8 T% e* B* w004031C2 99 cdq& {' \4 V& W* k. X9 }5 g
004031C3 F7FF idiv edi
3 z5 y% \" i" E P004031C5 8BC1 mov eax,ecx
1 Y' K9 t( S! X2 h5 {8 e004031C7 B3 0B mov bl,0B7 x' [, B( {8 w; l {6 {* _
004031C9 0FAFC1 imul eax,ecx1 v+ \! k- @4 s q0 P3 d
004031CC 8BCF mov ecx,edi
, @, J, ]7 f% `; f+ H R004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
/ ]8 \4 v. |& R) `: O4 v) x004031D2 52 push edx
& X( r# b9 j/ W4 k5 O6 ~! i004031D3 99 cdq1 ?6 o$ N# m0 x& d8 {
004031D4 F7F9 idiv ecx
2 k( q" p: m+ c& |/ [004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]
5 F b: Z" H& F2 ^$ B$ i004031DD 2BC6 sub eax,esi6 @. _7 a6 u: v8 S( W
004031DF 52 push edx
; g/ p2 ^- [5 {6 i4 t! u. ^004031E0 99 cdq1 ~6 p8 U! q l {/ R
004031E1 F7F9 idiv ecx
8 D; b* K1 j0 t# {3 g' a/ h- Q+ g- E004031E3 8BC6 mov eax,esi
4 x1 X- J3 B& f004031E5 52 push edx
! q8 T9 k/ T2 B% c004031E6 99 cdq) K/ W# d: C6 a+ K0 a: n- ^# L0 V
004031E7 F7F9 idiv ecx2 {) W4 V1 X1 P
004031E9 52 push edx
2 g4 X2 n1 C) Y. \004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
( ]+ o) E' n# Y004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
! g# ^0 `, f+ n! r004031F3 52 push edx8 _4 ^* j [ [+ ]. G, p- a# D% i7 J
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893
7 _) j6 `* A) m3 ?004031F9 83C4 18 add esp,18
3 Q* E g& o2 u) G# a004031FC 6A 04 push 4
/ i/ o( g$ |' p/ d+ l! @( S0 [004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]
: [8 @3 y9 I" [0 L* V! [. u1 C, [00403202 6A 00 push 0$ M9 K! L" y* t3 i
00403204 50 push eax h$ W8 S; N( h9 n1 N
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]% |# T; n) w( w( v4 t
00403209 E8 D6530200 call qsr.004285E42 u( h% D9 V3 q& {3 ?
0040320E 50 push eax# @" a; o4 i: X( i) z1 g# W
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
1 e+ V# T+ m/ J; o0 g T- c3 s0 v00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C
: z# T. w, t6 m; v5 V s2 c00403218 E8 A7C30200 call qsr.0042F5C43 m- c7 y. V3 ^- Z4 T% o
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]. s9 \" R5 }" a( c9 p5 o0 W4 ~
00403221 885C24 3C mov byte ptr ss:[esp+3C],bl# t5 ^: d3 G$ m* T V ?1 f" S+ u
00403225 E8 61C20200 call qsr.0042F48B2 r0 b. V( J7 _5 R* S9 Z1 T' ~9 `: m
0040322A 6A 04 push 4: @2 D; ~: s8 ]1 D" B$ R& o6 \
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]3 p/ W9 B" I( N( W
00403230 6A 05 push 5
" @6 d1 l$ g0 ^00403232 51 push ecx
% e/ e. a3 @/ e; v00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50], D2 K9 {* z5 x
00403237 E8 A8530200 call qsr.004285E4
# @2 H- F5 B5 p6 I0040323C 50 push eax
e9 t% H$ D' H0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]) s1 ` h% _4 r4 S c }$ y; Y5 \
00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D
( Z- Z$ z0 p9 P, {/ J& Q Y00403246 E8 79C30200 call qsr.0042F5C4
. y/ Q, | j4 ^5 j0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
. O& X7 ^+ I& l# P7 l0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl$ B! x3 X) X) Y1 @
00403253 E8 33C20200 call qsr.0042F48B; c* D- `4 f6 I1 N4 S i
00403258 6A 04 push 4
# ~. ?$ Z# Q% s- {- r: ^5 T0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]$ y/ Q$ r& n6 }3 P9 o9 ~ E+ W$ H
0040325E 57 push edi1 Q y( q2 r7 z
0040325F 52 push edx
# I5 c8 \ a) K/ y8 V00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
2 e. a* h/ A& y* e00403264 E8 7B530200 call qsr.004285E4
$ D+ N; P, s0 m# F+ z* Y/ V) J' p00403269 50 push eax
+ [2 b- O" ]9 X. f! D0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]' u9 T/ Y: N$ ]0 @' I
0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E6 X/ }6 x9 Z y2 D! U: v
00403273 E8 4CC30200 call qsr.0042F5C4" w( y& b1 m5 m' G! M! l2 L$ T
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]6 ?0 |! n6 Y% y% d. |
0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl2 _5 M$ X) K$ T
00403280 E8 06C20200 call qsr.0042F48B
5 N( N0 ^6 x! N% U5 N* R( i00403285 6A 04 push 4. U' [2 |; `5 `/ ]8 l2 L* o: ?0 C
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
1 q0 z a- f6 F- Y0040328B 6A 0F push 0F
% O7 u5 a" W1 {; d0040328D 50 push eax2 g0 k* f3 s' }0 K$ w3 U8 X" i! V2 J
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]4 N: @7 a' C0 q' W6 Q
00403292 E8 4D530200 call qsr.004285E4
, J+ I J! j5 S00403297 50 push eax
/ A' u& s: `4 X$ _00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
5 Z9 H& ~. d8 n# d8 W$ K0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F" f% d% c, Q o7 R
004032A1 E8 1EC30200 call qsr.0042F5C4
0 w& ^3 T# M) F% U( L' J" ]$ x004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
' |1 ~) s! y/ d; m8 h0 w004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl5 r3 J3 j9 c* ^0 ~# a
004032AE E8 D8C10200 call qsr.0042F48B' D9 X9 r1 I# b: |+ ]$ \. [: E$ c
004032B3 6A 04 push 40 N" l9 D7 f) _$ ], {2 G
004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
" H# m2 p! U; s% z004032B9 6A 14 push 14+ Z t3 b: F9 w8 k
004032BB 51 push ecx
. e6 b: |& ~7 E* v+ z) s+ ]004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]. y* v _+ @: r7 {- e8 O7 L
004032C0 E8 1F530200 call qsr.004285E4 W. m9 s0 o1 X$ T
004032C5 50 push eax
* \% g0 N9 z. h7 I. o2 f& M5 N004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
( {0 m. A; ]( b6 j) b004032CA C64424 40 10 mov byte ptr ss:[esp+40],10
4 H# L% q0 s( F* |004032CF E8 F0C20200 call qsr.0042F5C4
" e& |! q+ j8 x9 _004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
$ J7 }5 u1 s( F/ W, @004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl6 e1 F9 q, X: }. u) X2 q
004032DC E8 AAC10200 call qsr.0042F48B
4 o1 ~6 C/ t! J' ^004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI! d1 H! o$ k* v. i. e# z8 {) b
004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX# I' ~6 |# s" }2 U0 M
004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL$ q& q) O/ E; Y2 }% I, Q
004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL
0 I+ w4 A# T/ h* w004032ED 8ACA mov cl,dl ; DL送CL% E% w' {$ O, w
004032EF 3AD3 cmp dl,bl ; DL和BL比较
3 z3 M0 ]' k4 D5 D) i004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
t1 U3 f1 d: P+ J004032F3 84C9 test cl,cl
4 }2 @. [5 J8 h) [/ Q; F004032F5 74 16 je short qsr.0040330D' v8 y4 r1 F1 f' A& w- K
004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL! l+ {6 I/ c4 E2 d
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL
7 L) O$ ]$ e0 J4 d: u004032FD 8ACA mov cl,dl
( }% E( H6 N4 h# J004032FF 3AD3 cmp dl,bl ; DL和BL比较, {( h z6 J8 m6 r5 y j
00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)6 A8 j- O- M( T# @: N3 q
00403303 83C0 02 add eax,2 ; EAX加23 l y" ]' `! M1 @
00403306 83C6 02 add esi,2 ; ESI加23 V' e& k7 \6 C& O" ~; {( j# T* w( @
00403309 84C9 test cl,cl3 C; i ]+ a* J/ [! d- e, V
0040330B ^ 75 DC jnz short qsr.004032E9& |8 S& Z% s8 I& p; \' w3 j
0040330D 33C0 xor eax,eax- T, I1 }$ T; b7 y/ E P) Q
0040330F EB 05 jmp short qsr.00403316) {( r6 g5 q% [ k
00403311 1BC0 sbb eax,eax
, O. }. R5 @# F5 O9 Q7 ]00403313 83D8 FF sbb eax,-1/ X/ v: |9 i P6 f
00403316 85C0 test eax,eax
: ]' E% z5 @( [! M6 O+ e& U' x00403318 74 0E je short qsr.00403328
- P% C/ R; E: o; O+ k" @0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
K( i3 u) m. `3 E$ V0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
$ }' D" j R" v9 V# K. J& I$ [00403323 E9 F0000000 jmp qsr.00403418
. Q, t, }% e) p" Z. H& L00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX1 ?; [4 ?# x5 O+ y( B" M
0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
+ ^0 `9 O9 A# `2 ?' n00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]
1 E4 q: K2 ?" w8 n% ]00403333 50 push eax0 n$ B7 Z$ W. A+ u$ o
00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX8 Q8 I5 ~0 @2 Q+ i6 d2 @& W
00403339 50 push eax* E2 R! I" F; ]
0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX) C/ u0 t c @: [
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
4 a+ \7 n8 n1 ^1 f6 K5 G! A, w00403343 83C4 04 add esp,47 ?, S* J- y2 j* q1 j1 }& N
00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI
; [- J6 R9 L/ }- a; ~. ~00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]0 c3 Q" z. z$ k2 C* G( T. F
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]% |& i+ l& U0 y8 g: z2 `; R* V
0040334F 50 push eax
1 z9 \1 g" Q. t7 a% V- p7 [. B00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX6 I2 \5 C2 s: u+ V V
00403355 50 push eax
# K4 O1 R- d2 m; z00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX
+ x9 ~ m8 S9 X9 I% P0 Z+ J0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX# ], J3 x7 a8 y1 L- W5 s
0040335F 83C4 04 add esp,4! B+ n. e6 V4 u
00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI
& e( O4 B+ K: H8 i/ m7 g7 Q( m [0 R00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]7 ^& a# z( I9 F6 M9 w$ F+ `& c$ y
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]
7 Q2 k3 [, H6 E" }0040336B 50 push eax% t9 h7 Q8 @0 o5 G6 A/ K# {
0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX
: c, j% C, X+ W& H: I8 k: L8 W& ~6 ~00403371 50 push eax/ O6 u C$ P4 s$ P- d
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX6 w7 J# x3 y' }, Y
00403377 8BD8 mov ebx,eax ; EAX送EBX
! R! j8 d- s2 `$ Y8 c00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX
( L: E1 x4 g6 V" u( D) i+ K0 v0040337D 83C4 04 add esp,4
! f+ x! `$ Z5 D1 J00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]4 c$ H& e- t/ `/ _3 D
00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]
7 M' t0 w& J1 n4 u: c5 p" @( j% u( Q/ ]00403387 50 push eax
; B+ X) K+ d- u0 a6 M+ T' g) F00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX
' }8 F2 i) l( [/ ^0 R0 v7 N0040338D 50 push eax# ?* {* z1 s/ b, ?5 g8 }2 x
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX+ a9 Y1 m" L3 [& L
00403393 83C4 04 add esp,4
6 B/ _# o8 M6 W# O; j' [( Y00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
4 s7 F) p3 U8 x3 T' ^0040339A 8BE8 mov ebp,eax ; EAX送EBP9 \8 q: G) O& ]: B' }: Z
0040339C 6A FF push -1
0 p( F8 W% O" t* e; m+ v2 O0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX
) w7 L- `+ \& x: \6 {9 u004033A3 6A FF push -1$ L& e6 R# Y* H2 w( }) `
004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX- n0 m1 K0 z# s6 c% \
004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX- _. V( V1 h% L. }: x% B
004033AE 6A FF push -13 b' ?) ^! h9 z& D
004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX
$ c! Q# u- {# e2 j# S1 j6 o& O004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX9 ]4 q! R, G; I, H) h8 W; t% q
004033B9 6A FF push -1
+ h( R9 k f, g% N8 z004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX" s+ ` X% r5 b a0 d3 m6 I
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX5 @) M u! ?! B) X1 f3 d" j$ m
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
6 N0 d5 u% s! s+ Y/ r; ^# K004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
2 _2 b5 s( C4 I3 x1 L* d i) q) \004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX7 Y4 `) s. c$ K8 F& |
004033D7 D1E0 shl eax,1 ; EAX左移1位
6 ^. C4 ?3 E9 y3 \" Q* X0 W004033D9 99 cdq ; EAX扩展9 [3 a p; @7 N/ c. _0 g
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
3 z& M" g9 O/ W6 [- s- }" O; i q004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
' `: N; m$ O. z R0 ]3 T4 P004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳): W1 |# p( b' e$ R& Y# [6 ^
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A
( K2 B4 W1 n" F4 R2 d. C' Z& z004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
" b, D* u% l2 g- Z: k9 ?% I2 O004033E9 EB 2D jmp short qsr.00403418
, X/ e7 Q" ]% e2 t+ h' W2 l- h( q004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX6 F6 I; M, W5 l1 K2 |! _! u
004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2
( s$ ^$ _) R+ L z5 Q2 |' X004033F7 99 cdq ; EBX扩展
3 e7 ]6 y) H( y; n4 q" ]004033F8 33C2 xor eax,edx ; EAX和EDX取异或$ d& g& {" r8 s- p( q9 F
004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
) v' ~1 f* \' S" {004033FF 2BC2 sub eax,edx ; EAX减去EDX
2 _) z4 w i3 t& \' w. a" U00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]
/ \, Q9 f- x% ?- x00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX1 O' u0 U" O. [( i K8 Y
00403409 99 cdq+ E A! C/ a0 S7 W6 w6 ~3 d, C2 ~
0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中5 K$ v } C4 t# X, P4 G
0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX
- O) O) P3 N% Y8 X00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较; F' v: i( l" Z3 w* P4 j2 X& F" Z+ ^
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳); R, x1 o8 W) r/ @6 C3 A
00403418 E8 6EC00200 call qsr.0042F48B ; 7 o- X- w6 U# ^* J% W
0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]3 ^: p. ?: h0 z$ C/ M, \$ U
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9
7 ]( w7 R5 m2 F00403426 E8 60C00200 call qsr.0042F48B, @$ x/ }, N5 d/ t
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]2 _/ r/ e0 P0 j* s* U( i# l& k
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8: D- P- s6 g! P+ _: l# d3 F3 U
00403434 E8 52C00200 call qsr.0042F48B
2 ~' e( w) J% _00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
: O$ b7 U. r! g5 L/ v% B. Y- g- d1 `0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7
- a! f' O& B+ \+ T00403442 E8 44C00200 call qsr.0042F48B' ?3 U6 [* M# u
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]! d' P- |7 T1 O5 N2 X0 Q
0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],60 u" m3 p) l( i" i- m% j: X
00403450 E8 36C00200 call qsr.0042F48B
: |4 e( E! \) v8 N6 I" a# u% _7 j00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
; R: M$ ^, ^0 T% ~ o00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3& J/ o( Q4 y0 E7 S
0040345E E8 28C00200 call qsr.0042F48B0 {1 ?! Y6 o' v
00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
9 n) f1 j: Z/ k, a: G6 b00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
4 p) O( b9 V t0040346C E8 1AC00200 call qsr.0042F48B
5 @( o0 i1 `+ u00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
3 b; r" S5 ~+ `) i00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1
$ Q& P1 y9 ~) g0040347A E8 0CC00200 call qsr.0042F48B2 O% o& N# Z2 P7 Z* N
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
0 L8 [1 g/ z* ]. l: d% O6 u00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0" K, d2 @1 K [* \
00403488 E8 FEBF0200 call qsr.0042F48B) {3 r9 q6 U" a) X' r4 l7 h
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]% q( W3 |* t8 \! |$ A
00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1 y4 q$ z* U# Y2 ]0 G/ O1 f& m
00403499 E8 EDBF0200 call qsr.0042F48B
. c4 Z! c. s4 O( y y8 D$ ]0040349E 32C0 xor al,al ; AL清0" V: B8 Y; w) X$ w
004034A0 E9 88000000 jmp qsr.0040352D
$ y, \7 s. t. v+ c( h" D, ^7 l4 w004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~3 |, L: f, m% U# V
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
: {& ]% H0 D& \5 D6 K$ X3 c' e% i004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9 h6 P2 A, \3 S% y8 o. [5 ~ X( ]" l/ t7 e
004034B3 E8 D3BF0200 call qsr.0042F48B
( P+ t. H- a" O4 K004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
9 Z7 U# l* v3 V4 ~* }- M' z5 v004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
& [8 m: O, l, ?004034C1 E8 C5BF0200 call qsr.0042F48B3 [" ~, o2 v% ^! V3 P4 i8 W4 Y
004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]2 ]% ?! s7 |7 Z
004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
$ C9 t2 h1 J9 G! b004034CF E8 B7BF0200 call qsr.0042F48B
1 z' o# c) k4 h- |. Z004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]) }) v1 p/ E, J2 _* S
004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6- ]/ G6 V" U1 K& q9 E/ N9 n! r( }/ \/ |
004034DD E8 A9BF0200 call qsr.0042F48B
& O( \* j! g; c$ y: G+ A/ R$ h004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
" F/ Q8 [" w4 S/ Q# X% ~004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3: g: @: }. ?8 J- m7 B
004034EB E8 9BBF0200 call qsr.0042F48B
' ]: G9 ^9 v) j6 y2 E6 L4 v004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]5 T1 ]! U s3 D; T+ X; F/ M
004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2# L% K% V' C! [0 w- X/ U+ _; v. R
004034F9 E8 8DBF0200 call qsr.0042F48B8 Y+ ?2 _$ k2 ]0 F( E8 d& y
004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
3 F% ?& t" }# ^0 y5 k) g00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1; w! _0 q1 p, \
00403507 E8 7FBF0200 call qsr.0042F48B
% f. U, F0 C$ o* d+ A$ _0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]! e5 _1 ~8 A M; i. U) T& L. w
00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0 Z3 k/ h3 k1 k4 ]. N
00403515 E8 71BF0200 call qsr.0042F48B6 `1 j0 }4 w) v3 H2 V5 @; k! N
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]# a: \, e% H/ U' V( U
0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1" W1 b f& H g3 q9 i1 b
00403526 E8 60BF0200 call qsr.0042F48B
7 J2 P& _, M7 d; g7 r9 H4 E3 R9 [0040352B B0 01 mov al,1
4 }2 c4 O! {6 B& A0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]% e( |* C! C; \% ?4 X* I$ W
00403531 5F pop edi( @ I1 M0 ]+ L. d2 \" F
00403532 5E pop esi3 x b" |7 d A9 [) J
00403533 5D pop ebp
0 ^9 F1 O& E4 b) o00403534 5B pop ebx
8 w$ x$ [8 O1 {& P" G00403535 64:890D 0000000>mov dword ptr fs:[0],ecx4 ^. A) d$ m, l- H; S
0040353C 83C4 30 add esp,30& v; g# s! b f7 f g0 J' P
0040353F C2 0800 retn 8* M% H" y- e- p$ A; O
--------------------------------------------------------------------------------
% A9 I( w1 L3 ?4 X【破解总结】
1 {# V5 J8 S' N2 w* Y 用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
! ~$ Y. y2 A' J用户名:yijun
9 ]/ b7 F* x" i) a8 x6 s注册码:4893*7777*3726*7777*0529
: [( P+ |7 s6 u3 ]4 y2 ?$ n--------------------------------------------------------------------------------. G$ }! Y6 A( a8 d
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡