|
|
|
【原创】破解Quick Screen Recorder3 v% L5 f' Y* ^
【破解作者】 yijun$ `4 i9 K6 m9 l B# D" p0 x
【作者邮箱】 [email protected]
8 o) C) B( e% I- K9 t2 A6 c' H【使用工具】 OD,PEID: G7 e. e$ G/ U' B+ [* d
【破解平台】 WinXP# E$ y; p6 Z8 I& E
【软件名称】 Quick Screen Recorder- Q: Y8 v$ H( x
【下载地址】 天空3 ^1 J' K$ B- z8 W* s4 q- A; O
【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
2 o+ ?; k% w! ^! V5 m# C【软件大小】 540K9 H. ^+ [, {, F8 f/ G+ K/ q
【加壳方式】 无
; O, Q6 D: |! B( z; M1 ~* G, ]【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)
" g9 B( @% V. v$ }--------------------------------------------------------------------------------: Y$ `6 k. n3 z; c2 `
【破解内容】1 E* f+ U1 a8 T$ g* @1 |
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:. g) c8 V, Z$ }8 X( \% U; L
00404C69 55 push ebp //在此下断, R/ i0 t+ B& a+ }
00404C6A 56 push esi
% @5 i0 p4 Z& U5 g00404C6B 57 push edi M2 a5 h5 P$ S
00404C6C 8BE9 mov ebp,ecx
+ F# Q' H' C/ s. \8 e6 j7 k00404C6E 6A 01 push 1
5 x' H2 ^3 ?* u4 S) S00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
' L9 ]5 n+ c9 I% R00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]9 w. t0 X0 | \3 Q8 z$ W
00404C78 8BCF mov ecx,edi" Y: f8 J, W* ^! A9 {
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码
( X0 t( N# `0 U* f00404C7F 8BCF mov ecx,edi) Y5 ^# `( {7 r; {& C- V+ {. |. M
00404C81 E8 A73E0200 call qsr.00428B2D
3 t2 c) b& ~. l& a0 f8 q" p1 L; Y, m00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]! x* L' @9 t' ], U! v! k# G
00404C89 8BCE mov ecx,esi* D( H. }/ [; P; u1 u% Y( E) L
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX4 P+ v! f" ^: Q) X+ s
00404C90 8BCE mov ecx,esi) R) B$ H2 W2 s8 [& ?7 U
00404C92 E8 963E0200 call qsr.00428B2D; K% s: \3 F% w0 A5 X2 F7 m' t2 ^
00404C97 8B06 mov eax,dword ptr ds:[esi]3 b( X) ?) a& {8 J
00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2) X8 C: } G( x
00404C9D 7D 26 jge short qsr.00404CC5& l- }5 X& S" C5 Z: N7 B0 M- w e0 j
00404C9F 6A 40 push 40
/ `9 g- m) @* s00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
' L+ `9 f ?$ n9 i00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."- M2 u$ Z4 a: F7 \6 @- u" A
00404CAB 8BCD mov ecx,ebp
* x: h$ ?9 c, M) B00404CAD E8 C3840200 call qsr.0042D175
/ d0 i4 E1 U( c8 ]6 T, M( B00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
5 k& L: u, l; c$ I t00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx
8 A. |% |: b9 G$ b) a/ ]00404CBD 5F pop edi
; p$ \- I6 C/ a00404CBE 5E pop esi
# A3 T" n7 H2 _$ V! J$ U1 F$ R00404CBF 5D pop ebp
; x" q; r( z' t E/ W5 T00404CC0 5B pop ebx
, b: L; r1 }1 ~00404CC1 83C4 18 add esp,18( L% L4 g4 V; B0 Q
00404CC4 C3 retn$ I. P' Y+ u6 X. R D: ]
00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
/ l+ }2 l' |" G; \& u' c00404CC8 84C0 test al,al$ g0 O' ?% q0 r0 X9 r7 P! H
00404CCA 0F85 1C010000 jnz qsr.00404DEC
/ _/ @; j+ a! f, j00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]. @% N: U" {1 f- R
00404CD4 E8 87E3FFFF call qsr.00403060
8 C K9 h+ j- p) Z% N! `, R( B00404CD9 51 push ecx; D m% y' @7 o; w' { q( {% C2 `
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0, y1 B2 o% E. D% v5 g
00404CE2 8BCC mov ecx,esp
) R) i" {& V% N# A4 {00404CE4 896424 14 mov dword ptr ss:[esp+14],esp5 p1 U; i1 V9 ~/ j8 e
00404CE8 56 push esi
m) |4 v. e. h7 \! ?00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0( {' N3 Q' p. G; L
00404CEE 51 push ecx
9 |6 r8 _. s, @, Y00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1
! K `) T* j- |00404CF4 8BCC mov ecx,esp
/ u' a( K, N4 E$ b00404CF6 896424 20 mov dword ptr ss:[esp+20],esp. e: ?* q( D' U( V: Q1 v; K4 |0 ~
00404CFA 57 push edi
( a& J( B; T4 Q! w2 _- G00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0
5 Z+ z9 H' Y/ i2 k3 h3 X3 B: L00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]. I/ U3 S$ V- z# t9 q
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],00 I7 X, d) j2 O& p+ U+ d) Q
00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~! _9 h8 T6 s: k8 U$ N; B
00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~
. `) q' Z- P! ]: z, g! L3 c00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
, r1 s! d3 b$ B7 r$ E0 W00404D12 6A 40 push 40% k% N4 Y, {; S R6 j' b
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
( E2 D, u# M; U00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."
5 x0 h$ K) k) m* ]1 a2 j4 h00404D1E 8BCD mov ecx,ebp J/ v( F. y3 G% `/ c9 {
00404D20 E8 50840200 call qsr.0042D1756 M) O$ P B# |7 E7 T
00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]1 T6 D) K) U$ g/ s
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1
$ T; l, A4 V" `% l) K7 ^: c) L00404D31 E8 5AE3FFFF call qsr.00403090
5 l* ?- ]/ O# c9 [" M1 ^00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]4 g* c6 _/ L W/ |8 ]; o
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx; ?( B& e t$ W
00404D41 5F pop edi, M2 |" f; U3 `& _1 h6 i- \3 W- X) J
00404D42 5E pop esi
7 o0 X3 F B/ }9 _7 J* p00404D43 5D pop ebp1 ^/ c9 v1 q) p; |. b
00404D44 5B pop ebx3 i/ a2 ?7 T9 p7 J$ S
00404D45 83C4 18 add esp,18 I1 W' j( t" s6 ?0 x3 Q
00404D48 C3 retn
- b+ _- N: |, K$ v& r*********************************************************************************************************************************************************
( V5 a4 X* l6 X0 A0 [' U, B跟进00404D09处CALL来到:
{; M1 h7 E1 [2 ^. j+ u004030A0 6A FF push -1 //一路F8下去~~~~4 J5 T: F8 n& V6 W: S' w3 }( c
004030A2 68 C88F4400 push qsr.00448FC81 b' f: E2 j2 M9 f
004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
" }6 X; F) u# W9 [004030AD 50 push eax m- N% w1 `7 @- t8 W
004030AE 64:8925 0000000>mov dword ptr fs:[0],esp
9 Z( b' X, v. {2 {: }2 F004030B5 83EC 24 sub esp,24! P, d ^- ^- O3 d& U) N
004030B8 53 push ebx8 _/ K* Y$ \; D3 |/ Z$ _+ ], x
004030B9 55 push ebp- k; Y; k R2 J6 p$ {' R! o
004030BA 56 push esi
) e! i) n- g* x7 C" R; Q- C; K004030BB 57 push edi/ |9 N; |& P4 ?* y
004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"
9 E. k" M) P% [004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
* S, |5 R, D8 k004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1
8 m' J/ s. X" l' V1 T* i004030CD E8 27C40200 call qsr.0042F4F9( w. l& M0 Z" o9 E5 k7 b/ N
004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]1 ?7 N* t% J2 B; a6 M$ @. z: Q
004030D7 894424 2C mov dword ptr ss:[esp+2C],eax( k5 s; @% n! c- Z- u0 F3 ~
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]8 o) }& V7 i0 t4 w' W2 f1 q
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
% e* C) Z9 `+ s; f6 \; H/ x004030E4 E8 905A0200 call qsr.00428B79: y: y2 T; M, v a. `
004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
" k! ]: l6 C2 ^8 V2 M3 f& @* a004030ED E8 3B5A0200 call qsr.00428B2D- B9 |# G/ j, e) P, U
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
; @- C. K- T9 |9 H9 n6 d004030F6 E8 7E5A0200 call qsr.00428B79, D6 x2 P7 f" z9 i7 B) u0 U- S: U: v7 s
004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]% J1 v% _/ H- }5 t e, ~
004030FF E8 295A0200 call qsr.00428B2D. Y* ^9 C% @! @$ l) G* \
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]! G) O4 h( \ L/ B
00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
! ?- Q, w4 p6 T; r# M( X. f8 {0040310B 83F8 02 cmp eax,2% ^& C- v5 V g( B* p; m& m
0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳( R( L) h9 \4 i: g0 D, W
00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]5 n. f4 H* Q/ Q! E
00403118 837A F8 18 cmp dword ptr ds:[edx-8],18$ |$ R1 V7 k6 \; `! s5 w8 a# e
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳
; C5 ~& s: i! L4 R5 G& w, p/ p00403122 8D4424 30 lea eax,dword ptr ss:[esp+30] d7 w2 W- P* m, p
00403126 6A 01 push 14 }+ H0 R$ D+ J0 t) o2 H
00403128 50 push eax
0 h8 g3 O1 m5 Z4 K00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
) E$ M$ A- D8 g: Q# G8 ]0040312D E8 C4550200 call qsr.004286F65 l' g2 e9 u f( V/ `8 j
00403132 8B00 mov eax,dword ptr ds:[eax]
3 W) ~7 @4 |* {: |- R1 O. Z6 y) z00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
# M h' B" H' n0 P4 G8 V3 p& E' w00403138 50 push eax2 z+ k! `* B! s# B% k) s
00403139 C64424 40 04 mov byte ptr ss:[esp+40],48 O. i2 h% `7 T% H3 N2 _
0040313E E8 4D560200 call qsr.00428790% N7 g( Y$ p1 i0 C% v
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]* s& R1 T; b8 g5 n( }3 {
00403147 8BF0 mov esi,eax
) J7 Y: `# P4 x$ D' W% y00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],33 V9 n) d* W1 m+ d; h
0040314E E8 38C30200 call qsr.0042F48B
' A* K/ [- Z6 U# `9 Z6 ~& @00403153 8D46 0A lea eax,dword ptr ds:[esi+A]
4 A' A! O2 ^0 X8 k% l00403156 B9 3E000000 mov ecx,3E0 X# d, E0 n( g
0040315B 99 cdq) M6 S' G3 W+ H' i
0040315C F7F9 idiv ecx% p: \! U" V1 ~- n! Q& R" U
0040315E 6A 01 push 18 i5 d) ?+ ]5 T. z5 }( q+ m2 ~( m
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]
* V/ n" _7 F. l7 c! t# B00403164 8BF2 mov esi,edx
" [1 Z% T) d, X" p$ b: Z, K00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
2 d3 }* N4 i* C" y+ B0040316A 52 push edx
V2 b5 i+ f+ f& l* x6 {# z& a0040316B E8 0A550200 call qsr.0042867A
4 p+ }- D4 a5 n! Z( }9 K3 k/ t) a9 q00403170 8B00 mov eax,dword ptr ds:[eax]1 S i" D% V B% Q
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]1 R# m! f( F O# T) D% |5 W
00403176 50 push eax
* j# ^: N" i. k2 c+ L00403177 C64424 40 05 mov byte ptr ss:[esp+40],5( F' i9 t( t( B
0040317C E8 0F560200 call qsr.00428790
% q# n- \7 f7 x5 p0 o% n. V00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
, T) }8 @2 b( Y6 U) g2 s5 e3 l00403185 8BF8 mov edi,eax: a; v( F8 B& R4 A+ K B
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3: u* m) ?& L8 R( b- v. k
0040318C E8 FAC20200 call qsr.0042F48B! L- C, }' r `7 F- s2 P$ x m
00403191 8D47 0A lea eax,dword ptr ds:[edi+A]
2 t4 f( B7 p! |$ w, B( ?0 O00403194 B9 3E000000 mov ecx,3E) F; A6 q+ ~* n$ D7 `! S
00403199 99 cdq9 m$ D, {3 X; E3 R1 x5 E( I( y
0040319A F7F9 idiv ecx, P# H. m3 h! {6 D
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]6 z% x" M' h7 B
004031A1 894424 28 mov dword ptr ss:[esp+28],eax
- \1 L0 X( v3 b004031A5 8BCA mov ecx,edx% t& i, t* j$ c) B: n5 I
004031A7 894424 24 mov dword ptr ss:[esp+24],eax6 e9 l; u' J0 y$ A) E1 E" o
004031AB 894424 1C mov dword ptr ss:[esp+1C],eax U2 H) P% I# l0 t
004031AF 894424 18 mov dword ptr ss:[esp+18],eax! g K( Z9 g" V7 Y- f' z! T
004031B3 894424 14 mov dword ptr ss:[esp+14],eax, [1 }) i& a+ G/ ~) A
004031B7 894424 10 mov dword ptr ss:[esp+10],eax1 v+ |7 y% G" l+ p6 U9 J
004031BB 8BC1 mov eax,ecx6 w8 J5 I; ^1 k6 Z o5 U
004031BD BF 0A000000 mov edi,0A, N& m% H. O( A" T6 k
004031C2 99 cdq
: X ~ O( q- v* l T v004031C3 F7FF idiv edi
) m* K* E$ T3 ^5 H9 d. y' t004031C5 8BC1 mov eax,ecx3 [& p5 T( X# S+ r; O- v% `9 x. \
004031C7 B3 0B mov bl,0B
$ U% o! E! \+ i: _+ Q' x004031C9 0FAFC1 imul eax,ecx
/ z% v/ i$ f* s8 s) t004031CC 8BCF mov ecx,edi% W* {/ ^! G o
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl& ~# E# V2 X; ?% e; y4 w7 X& |
004031D2 52 push edx0 w" D& S1 e+ g6 `
004031D3 99 cdq
. U! Y9 [+ W: O. d, U8 ~% Y004031D4 F7F9 idiv ecx* E# |8 s7 [8 T: e* K
004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]
; c1 |3 o6 v6 t/ I6 q004031DD 2BC6 sub eax,esi7 r; m7 z( d c$ C# | d8 M
004031DF 52 push edx
5 l; i+ o0 i5 k6 W* Y004031E0 99 cdq o6 E! K6 y% o8 ?6 b& b3 `
004031E1 F7F9 idiv ecx9 k2 O# N8 u3 T. O5 Y
004031E3 8BC6 mov eax,esi3 _! u4 i& K( f& |! W, i: H
004031E5 52 push edx! w+ [$ U- a, E$ @, S" s
004031E6 99 cdq
! E, h4 t% F( v# Q& Z7 ]- I004031E7 F7F9 idiv ecx' l, }# A3 r% G+ J
004031E9 52 push edx2 G( p. l9 R9 ?/ J/ F- x
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
' i8 F6 j; V, z4 ]. Q+ A004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
7 P+ g- p0 T9 ^004031F3 52 push edx
" T* @! g3 \- ?: Q3 q9 t) Y004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是48938 m1 Y; i! W) v; j; n6 h
004031F9 83C4 18 add esp,18+ o* B2 ^: z# a7 L4 t
004031FC 6A 04 push 4) @. M1 Q% C2 D- M5 y6 ]6 o
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]1 p: I1 [- ?7 e% B, `7 [( a
00403202 6A 00 push 05 k% M6 Z( P1 p9 I6 C9 [
00403204 50 push eax7 p) t' W% U- q% k
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]& t& P% O! A4 H* F' g' N
00403209 E8 D6530200 call qsr.004285E49 p) @5 R4 y: k% b9 d7 k
0040320E 50 push eax" i9 w I* v, {7 Q8 y
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]; p% [3 `/ G1 H: C( t: L6 E% Z
00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C
7 S3 z; t3 @' v2 \6 [0 c2 w% u00403218 E8 A7C30200 call qsr.0042F5C4: r/ Q) t2 e# x1 V" u1 Y8 s; i
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
6 ^6 L7 U) P4 Y% K2 T ^00403221 885C24 3C mov byte ptr ss:[esp+3C],bl" F: j3 d3 f: l
00403225 E8 61C20200 call qsr.0042F48B
4 t M$ A* R) W% l# Y+ l0040322A 6A 04 push 4& v$ K: P8 P, n( H; U* x) h
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]* Z9 u7 i% v& C' {+ |# p
00403230 6A 05 push 5
/ p5 J) m, S, f- [00403232 51 push ecx
/ C5 h$ Z0 u3 | ^+ k% M00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
1 g5 M' _4 ?! x$ t7 F00403237 E8 A8530200 call qsr.004285E4
" _" s; A+ z+ [6 g1 ~$ {" A5 l0040323C 50 push eax
+ F2 ^, M8 B: H' G; b( J0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
, d. m5 Q" w% M2 ?) t+ Y00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D
! J) Z8 H) w' n+ b" u9 U. |00403246 E8 79C30200 call qsr.0042F5C4
# @( T; S0 e$ R! c' v s0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]3 \5 G- j4 r+ a
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl- G% E% n/ |! M- f- b7 v
00403253 E8 33C20200 call qsr.0042F48B1 q. B, w; S5 @
00403258 6A 04 push 4
3 Z" o$ h, c# y3 c0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]& R: S& {% A( A* ~( t9 K1 n
0040325E 57 push edi
! ^8 Z" f* E8 \4 q* j0040325F 52 push edx
( W9 X9 `8 x Y0 J6 U) K g00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
( L/ f, F) E1 f( K1 ?0 o00403264 E8 7B530200 call qsr.004285E4& ?& D$ w7 a3 e3 u k; y% d
00403269 50 push eax
7 R J8 q1 \' t. o: j" ?0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
$ E; E0 u* A5 I6 K; j1 g6 _0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E1 O! j6 f$ ~3 x. _. l- I
00403273 E8 4CC30200 call qsr.0042F5C4
5 }% o* c! y& o00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
7 `& I, y6 A" x3 s0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl: {4 H9 c* Q1 y' i( M# o
00403280 E8 06C20200 call qsr.0042F48B' j# B. s) ?- p9 p- b* U6 t
00403285 6A 04 push 4$ |* x# c. a9 Z0 N% V
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
2 C' h* `, G! d0 v0040328B 6A 0F push 0F# U* g3 U/ i3 R! A& ?
0040328D 50 push eax( v7 ]. n/ z A' e& p
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
6 W0 v2 Q# x1 ~9 k& r; q00403292 E8 4D530200 call qsr.004285E4& t m( o3 N4 I9 _6 n4 W
00403297 50 push eax
7 C! }" e& W9 H6 c, G00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]+ T8 z3 ~2 X6 ?4 F+ k. ?' T* I
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F! p4 c7 H/ h( h- T. |
004032A1 E8 1EC30200 call qsr.0042F5C48 y- Q4 ^- X$ q5 F) Q5 z
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
' _3 t% l5 f3 _0 Z' [6 m9 T004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl! m2 j3 j, R9 J* k9 p
004032AE E8 D8C10200 call qsr.0042F48B
% C! r. V7 c: q004032B3 6A 04 push 4
/ v( g* P0 L: V004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
! J3 l+ k' z3 F2 p8 c* p004032B9 6A 14 push 148 Y* w$ l, |! I8 i0 j, G8 [9 B: p
004032BB 51 push ecx+ c0 S' F& U9 J$ e6 M
004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
, S4 U- t, G+ z0 @. E9 N! W004032C0 E8 1F530200 call qsr.004285E47 b1 Q8 z! E6 [ w; N$ u1 Y& W
004032C5 50 push eax
" }" X- A# w# J4 m2 v8 A5 a* _004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
* c. I+ @7 G! o; t9 M0 ^3 r004032CA C64424 40 10 mov byte ptr ss:[esp+40],10
* Z+ \* R, K x# l" ~004032CF E8 F0C20200 call qsr.0042F5C4
6 a4 \* Y8 I9 }' e3 P1 ^004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]* f" I K% M3 e! ?5 y. H0 j1 ]" [
004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl4 W! ^/ r) ~) O$ L' o4 F5 d
004032DC E8 AAC10200 call qsr.0042F48B7 P5 e% ?. n1 W( k3 h! x7 O
004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
7 K: K4 |) q$ a- Q- P4 p/ H004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX7 x/ i2 ~9 B4 t
004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
6 k, v: ]5 @7 j6 H/ P9 W5 w004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL
' f/ z; Y1 k9 O- O( l004032ED 8ACA mov cl,dl ; DL送CL
. [& Y6 ^6 m% S: G( F004032EF 3AD3 cmp dl,bl ; DL和BL比较
; V" e' `; U6 ]- J3 y9 K0 E/ A; v004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)- k9 T/ [) }# ^7 q
004032F3 84C9 test cl,cl
* S' N) q; h- w7 G8 k5 o004032F5 74 16 je short qsr.0040330D# y0 s/ O% p$ c) t W* I# x4 f$ f
004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL) D6 u3 Q- |9 [% s3 e# s& o
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL) O+ M) A* R2 X1 T( [5 ~
004032FD 8ACA mov cl,dl: h" @. L% ^! f# T
004032FF 3AD3 cmp dl,bl ; DL和BL比较
+ m( e; t/ O9 J3 t/ E( C00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)+ @: k3 V/ ~6 T7 ]0 j
00403303 83C0 02 add eax,2 ; EAX加2
+ Y# o3 j( T$ F00403306 83C6 02 add esi,2 ; ESI加2
0 `6 A% _8 f) Q( S" l00403309 84C9 test cl,cl
& P9 Y) w; B' l" n0040330B ^ 75 DC jnz short qsr.004032E9% P! `; O/ @2 X
0040330D 33C0 xor eax,eax9 s/ Y0 p2 A4 o' a! |! S% ^' `
0040330F EB 05 jmp short qsr.00403316* r6 s; S1 `( \: P' t4 K! {9 ^9 d
00403311 1BC0 sbb eax,eax
3 E# @& b; r" q( ^# t- q00403313 83D8 FF sbb eax,-1
; p- ~+ S! L1 `( c; X& B# N& b6 h00403316 85C0 test eax,eax
. T3 Y( b7 W- W( X00403318 74 0E je short qsr.00403328" l8 w% L. r, k; J$ H0 n$ }
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A) C2 Q# | _6 \/ H( D9 n" O8 m# L
0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
) V' p2 n5 h, M) o0 i. E0 {00403323 E9 F0000000 jmp qsr.004034189 N- P+ T+ E1 i/ B
00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX8 A3 O7 ?) m; N7 ]$ r: T: q
0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]7 E, x" t$ x- s i, [ Z
00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]' v$ Q& a1 h, E+ H
00403333 50 push eax
" z0 ~9 e, L: h- f# n0 x% }00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX3 d9 X' A& S! p" W* G
00403339 50 push eax# }: f x8 }; O' s, N+ }
0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX9 j: Q, @; G" a2 p4 X
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX) x R. i& V: P2 ]* N, j
00403343 83C4 04 add esp,4
. u) W" z" {2 r5 H# Q+ }00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI0 }, M# D6 [5 l( J: [5 ~8 h9 e
00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]3 h- N) b8 m0 ?* \: D7 J. Y
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
P1 H) C' i! |9 T! t. }0040334F 50 push eax
( F# s9 ~9 [ a00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
6 V4 f- x7 A0 C# x- O/ Q00403355 50 push eax
: b' l3 h+ M3 I- U1 Z00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX- y' l0 v# }: }, I: Y
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
; y( X9 R: V+ O3 ^. _0040335F 83C4 04 add esp,4
: e9 v1 l/ }, w, j00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI
; P* z7 b$ m& ]/ Z00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
$ y4 G2 F; g6 b00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]) O: @5 Y3 j& s& {
0040336B 50 push eax3 u" _1 r. ]( i* A( N
0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX- B( R8 J# \, {- ^( B* ?- s @' @
00403371 50 push eax* _) R+ D0 u- {2 N( J& P
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX
% H+ z6 I( e( i( j00403377 8BD8 mov ebx,eax ; EAX送EBX0 O6 x. ~2 B4 |0 r7 n
00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX7 ~% j2 G. x& E8 z/ D" D# N
0040337D 83C4 04 add esp,4
+ M! |+ f6 C2 ^/ t7 a8 M$ G00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
( B. [* R8 o) ?! O( T. L- T# Q% d' s00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]$ r8 ]+ p) @9 y2 u
00403387 50 push eax
) u5 J+ e5 [- z8 [: U00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX* A7 j b, r4 \( M9 r4 j
0040338D 50 push eax d' L6 k/ v7 @* u5 N6 l
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX8 g0 d- e5 J) r& m7 c0 r$ \
00403393 83C4 04 add esp,4/ I- r1 q. q, {- w5 G V9 S' B8 H. U
00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]+ Y' a2 \ T; t0 j6 C$ i. ~
0040339A 8BE8 mov ebp,eax ; EAX送EBP' {9 Q5 f3 h( ?
0040339C 6A FF push -19 _- o. x: r+ e7 K3 {
0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX
4 O9 N( x( B- B004033A3 6A FF push -12 S$ _1 x" Z* r- v; w
004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
2 O" a! X) ^; k: s) l004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
' b2 L% ]( I6 A+ L6 d( F9 W0 S004033AE 6A FF push -1
9 x! N4 r2 i3 F( j004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX
" V7 b: m) K6 Q G. l& [004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX, o: t' y$ t: }# G3 R S3 u$ B
004033B9 6A FF push -1+ T# B: ^" g8 J$ \, T* @, D
004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX
' ^5 L s9 ~4 u, ?004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX
0 r! Y! [+ ?' u `# c004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX9 W/ Y. X8 l" J/ _" w' ~9 u
004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
1 }4 `2 A, a+ V* S- k# p8 D004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
/ H4 `* D& b0 o; J% c4 P" v004033D7 D1E0 shl eax,1 ; EAX左移1位
) y: }' v4 w2 [8 m1 @# H- O# ~0 E004033D9 99 cdq ; EAX扩展
9 Q& f6 p+ O% a004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
+ f1 D% V2 A! U" F004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
$ P- E: w7 o5 W' U9 Q( h) \004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)( a0 F* N/ C& H$ S
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A. a9 f) V4 ]( a* A. d
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]( M1 A* ~8 ?% u5 U1 w- q
004033E9 EB 2D jmp short qsr.00403418 [& e y& w. ~5 R( X( T; z. K
004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX0 p- H1 i3 ]( y8 {2 M/ ~3 T
004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E21 k. `4 } J4 |
004033F7 99 cdq ; EBX扩展
) f* {7 u$ S, ?004033F8 33C2 xor eax,edx ; EAX和EDX取异或& `' I3 T! b7 W5 {3 p
004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX/ ]& o: R1 g" I# v' o* p
004033FF 2BC2 sub eax,edx ; EAX减去EDX
2 F$ i/ E/ N+ F* R0 d( z00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]3 A; C W; \ {7 X0 d8 l
00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX$ r+ {9 M3 f5 x+ U3 ^! {$ h$ l
00403409 99 cdq, `. a' y3 m; X3 E, H
0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
1 ?. W9 y% ~4 D0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX& G. q" E J3 I" ?9 J
00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较
/ S I+ Y) N* j. d00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)3 O. f# p9 Z! ^, E1 V
00403418 E8 6EC00200 call qsr.0042F48B ;
0 Z: h: V& v/ R+ L0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]2 @. W/ S$ n6 j
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9
! z# J3 ]% ?- }' p; y00403426 E8 60C00200 call qsr.0042F48B1 d3 t, q3 N& o. a% F
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]- n: }5 j- N# x8 M; [+ K" T, B
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8: S8 b1 P% ~; B. h% b# p
00403434 E8 52C00200 call qsr.0042F48B b1 P+ p( @6 v) ?0 ]0 L$ D
00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]9 G3 O$ J: z; S; i! V: G0 P& n
0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],79 C4 h* Q( C0 B4 y5 s3 I% }
00403442 E8 44C00200 call qsr.0042F48B
2 g) n: z7 A, H+ v00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
( l. ^" v4 t. l0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],68 {2 s! L3 V! Y3 K! s
00403450 E8 36C00200 call qsr.0042F48B+ r* s5 g$ ~0 i( A& a: Y% S
00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
0 ]* J9 b- K2 Y5 O4 I+ a2 L8 e00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3
( ?9 \/ e, ], \; Z! d; L; x; M0040345E E8 28C00200 call qsr.0042F48B
* M9 p4 y- H. g3 T$ S00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
+ t+ ~0 j) U( g5 B0 E) s00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
. v( D; I1 ]4 j2 t. R0040346C E8 1AC00200 call qsr.0042F48B4 W; }/ o0 Q$ U; E7 L) A9 g0 D
00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]6 ~/ b/ @3 ^0 g- [# G- `! X
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1
* S5 a- Z; S( g3 s; ?0 {; ^: l0040347A E8 0CC00200 call qsr.0042F48B
7 T8 n: i9 z! ~& U0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
* U% ^' w( `, z5 \# p00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
8 y4 U; w3 q* S( R00403488 E8 FEBF0200 call qsr.0042F48B8 _1 ~2 o9 m/ u2 m, R
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]9 d* ~# a+ Q1 Z, c/ I/ `* P# v
00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1" E5 g$ `5 f% i) I/ D. p
00403499 E8 EDBF0200 call qsr.0042F48B9 B1 h3 ?" p( c- |3 z( V: V9 s
0040349E 32C0 xor al,al ; AL清0
4 D. z& H, x: D; x/ x004034A0 E9 88000000 jmp qsr.0040352D4 n3 P* u* C4 p, Q+ H
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~
% q1 M. e5 D4 S' I0 {; K004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
/ w7 c. x$ ]& L( \$ e004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9' o% Z U0 J) U
004034B3 E8 D3BF0200 call qsr.0042F48B9 B" J: E) R1 }6 X: v' l/ S9 c8 x
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
( n4 S6 U p' t8 J5 u9 \004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
, z. |! h6 l6 O004034C1 E8 C5BF0200 call qsr.0042F48B
" b) n# ?. [2 j, p8 l5 W004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
6 J# E) `7 v6 M* V004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7' n& |+ u# }7 V4 `1 e
004034CF E8 B7BF0200 call qsr.0042F48B
2 r2 U* C0 _8 Z, S/ S) b2 m004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
0 e! L( g1 X, y7 d( A& C004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],68 s/ T S" B) ^/ F- Y
004034DD E8 A9BF0200 call qsr.0042F48B% G* J+ | R; m
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28], ~: c8 V& b; N( s/ E0 u
004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3$ Y; b" l: i! R7 s+ f+ e
004034EB E8 9BBF0200 call qsr.0042F48B
; ^5 c+ Q2 j2 ]# }0 r* S7 Q004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
6 ?. |5 O. D" j0 e004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2
$ l4 o8 Q5 o7 n" e3 B8 i0 H: ^004034F9 E8 8DBF0200 call qsr.0042F48B/ ^1 q& q G3 [, ^5 C. y5 F
004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]- c+ a( a) ?* J* V; _; Q
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],10 H! s; w; T4 s% `/ E& N; g1 ^& k
00403507 E8 7FBF0200 call qsr.0042F48B4 {; b$ A5 O% g9 q$ ~ G4 s$ J
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
# k& Z8 |% s' f! O6 o' b00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0
; W* x' s# b, U0 T& g9 L00403515 E8 71BF0200 call qsr.0042F48B9 }4 j% ^+ H2 u6 k* w( @
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
) K) u2 V- o K4 j. B& {/ ~0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1* W( H/ r. @; O& W' R$ ?6 o8 O
00403526 E8 60BF0200 call qsr.0042F48B
! q& n6 u8 ?3 A+ N0040352B B0 01 mov al,1* r \. [( A0 f9 h: ` q6 u& y8 {3 P
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
2 U0 W7 K# V" h: [6 D4 S/ n3 E00403531 5F pop edi
0 _/ V5 i* N& \# |00403532 5E pop esi" h; a" k9 v! o) w. A
00403533 5D pop ebp
# ~9 m4 \! X; M0 W# e) n9 ]8 B00403534 5B pop ebx, O2 ]" [5 `2 L+ \& N
00403535 64:890D 0000000>mov dword ptr fs:[0],ecx/ N% J; u# h0 `, q8 C* E$ y
0040353C 83C4 30 add esp,30
$ ?) T6 P k. W7 J9 K' Z9 C8 W/ i0040353F C2 0800 retn 8# {5 Y3 _- d2 m* W1 ]) J
--------------------------------------------------------------------------------& J5 M2 N. C9 x7 L9 Z R
【破解总结】" @/ p% M7 o1 r( H0 O. p9 l' v
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^: X* g2 X3 {, g7 J3 W
用户名:yijun4 G/ W8 T# V& j: u" S. b8 o
注册码:4893*7777*3726*7777*0529
/ P& ?7 H; l0 r6 O+ s' E1 `--------------------------------------------------------------------------------* o, B/ U# U) U p
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡