|
|
|
【原创】破解Quick Screen Recorder
5 e$ ~9 {- |( W/ o; f4 r" _【破解作者】 yijun% u1 H6 \( D5 T+ Z0 K
【作者邮箱】 [email protected]
$ {# w. l% s" P1 _+ l8 {【使用工具】 OD,PEID
8 v$ T) {* ]2 R, K0 ?【破解平台】 WinXP2 Y$ Q& V/ N7 Y2 I& G
【软件名称】 Quick Screen Recorder' f6 ^8 S: } v2 e* T
【下载地址】 天空! g7 O4 b- d9 R; t
【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on. 0 | T% U# f: f' F1 U! V5 ^# l
【软件大小】 540K3 A& R6 {* {5 D2 _$ Z
【加壳方式】 无! _6 a# G5 g( W# o6 [
【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)3 _0 y& _3 r0 E$ Z3 ?0 l% x
--------------------------------------------------------------------------------; l6 g. |; D! R5 V
【破解内容】: d1 B+ b5 M$ a& _8 s4 u
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
4 `! \* W- V& s; L00404C69 55 push ebp //在此下断
0 p. L; l3 Z) o& u, \00404C6A 56 push esi
/ D3 y& G0 \. S; F( d6 f00404C6B 57 push edi& C+ w. {# Y$ |7 ^$ `1 j
00404C6C 8BE9 mov ebp,ecx
3 A) N, ^- W$ \* p$ ]2 B9 m7 z00404C6E 6A 01 push 1
' f. M/ i- ~- @9 [( Q* D4 V- q& {00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名: a9 D' F3 m1 F# C) M. ?/ V: O8 B: m
00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60], o; H. D, E; D* u2 j
00404C78 8BCF mov ecx,edi
' E; k( P) [- M3 J3 \. q00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码1 _( x6 G4 W2 v8 |% C
00404C7F 8BCF mov ecx,edi- {' d! g+ j! ]8 Y
00404C81 E8 A73E0200 call qsr.00428B2D- F& v1 Y6 T6 H. J2 L8 s
00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64], d V1 Z0 y; {) y8 k
00404C89 8BCE mov ecx,esi
: ~3 ]7 y3 K) f- E: w00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX2 K- k2 W# O A2 K" ?
00404C90 8BCE mov ecx,esi
" {, ~6 |- T- d00404C92 E8 963E0200 call qsr.00428B2D
+ B/ Q" F! Q* M5 ` K" I00404C97 8B06 mov eax,dword ptr ds:[esi]
* c1 e/ i& r* M1 R' L$ N00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],27 K2 P0 I: e5 q6 A+ P- X! M" P1 u
00404C9D 7D 26 jge short qsr.00404CC5( f3 {; J' h! l0 v
00404C9F 6A 40 push 40
5 K1 e- o- L' x( f00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"1 {7 Q+ K$ r/ w, n$ y
00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."
% p2 x. B8 A4 r. i5 E) ^! n. J00404CAB 8BCD mov ecx,ebp
6 h. l" E* q7 t& N; Q00404CAD E8 C3840200 call qsr.0042D175" D- K" j$ ]/ ]% |5 v4 N, ?6 f
00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
8 B% x" e5 X( t" w2 o0 o' ^- p* v00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx
* N2 C+ p& G& O00404CBD 5F pop edi( y; }2 t% K7 _/ Y
00404CBE 5E pop esi1 d6 B) b$ e! T8 }( C) C% {6 f' B
00404CBF 5D pop ebp
! A# O% y4 W I+ J8 Y4 }9 v! H00404CC0 5B pop ebx
" Q8 T9 o, r* i/ m1 n00404CC1 83C4 18 add esp,188 P- ^( E: t7 {6 }! E
00404CC4 C3 retn5 T$ M! m' O2 Z9 W
00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]7 z/ M* _$ q) ~
00404CC8 84C0 test al,al- C7 k% K5 d4 t
00404CCA 0F85 1C010000 jnz qsr.00404DEC
- Q# P1 |; H/ K- w00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]8 @" |9 R; e& h4 x
00404CD4 E8 87E3FFFF call qsr.00403060
" H$ E* x) r) G. W( P8 c+ m00404CD9 51 push ecx6 V3 i6 _ [$ B2 }
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
0 v" c& I3 @; D$ W" Q+ x00404CE2 8BCC mov ecx,esp
% H& t+ H Q& m5 K+ N" r00404CE4 896424 14 mov dword ptr ss:[esp+14],esp6 m' X0 S# y( n4 f2 e$ G% h
00404CE8 56 push esi
" S; [. a* n( T+ ^' J00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0/ _$ Z, P+ y0 W0 r7 ]! C }) a. U9 S
00404CEE 51 push ecx, v/ o! |. \, n- U) B2 V$ F
00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1
+ T1 t$ s+ F! ], c00404CF4 8BCC mov ecx,esp" |9 ?" ~# C: q* s4 Q1 \) N, Z
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
! H5 {8 W4 P4 d' |: G00404CFA 57 push edi
- g& y: x" p6 r7 k* g00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0
) u& X, Z$ a: K00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]. p# ]) z1 S* n; ~! K" T
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0
. R8 w$ |7 o$ j8 n00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~
0 S' z# n. N+ }. h: x# r00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~/ e: }/ e" I; ~3 S
00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~& d# h! Y/ s5 P9 C2 c
00404D12 6A 40 push 40
3 _3 O$ h% D4 M6 u) q. t00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
. c5 y# C9 I0 x5 R7 G00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."$ ^8 A: P& C, z" r8 y
00404D1E 8BCD mov ecx,ebp
' r" c7 g2 P4 f( ~; I00404D20 E8 50840200 call qsr.0042D175; y9 B) y( x- P t' T" P
00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]8 r) T. D F8 T ?
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-15 W# H6 P4 u7 F c* Q
00404D31 E8 5AE3FFFF call qsr.00403090
- O/ D6 I3 B; o2 t( D00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]% w$ g8 X4 r( D+ z0 Y
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
8 Z" X0 V8 B! f6 x00404D41 5F pop edi
* C$ H* b* J* j3 O& a00404D42 5E pop esi
. ^9 v; F. b5 A p00404D43 5D pop ebp
4 i" t6 l% B$ Z* ~00404D44 5B pop ebx% |9 M6 T6 L) Z; j+ h$ Y/ S
00404D45 83C4 18 add esp,188 ]# Q) _- P7 k# ?
00404D48 C3 retn; @ @, q$ J# {0 u+ b3 o. F
*********************************************************************************************************************************************************
! ^- T1 T0 v9 p! X5 m% w7 p跟进00404D09处CALL来到:( V% R) ]0 K3 @9 I, P8 T
004030A0 6A FF push -1 //一路F8下去~~~~
$ i4 q; H- S5 c8 q1 O1 r( F0 O004030A2 68 C88F4400 push qsr.00448FC8
" m: g" \+ i) n5 e004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
% u9 ~- P/ h" R( Q004030AD 50 push eax, t7 L0 `: T! b( R- j i# G; ^
004030AE 64:8925 0000000>mov dword ptr fs:[0],esp
6 k% N) k- u) L; r5 t1 }004030B5 83EC 24 sub esp,24/ l: I9 i0 }5 S2 S- T" L* A. u
004030B8 53 push ebx m, e/ o( G6 W8 \
004030B9 55 push ebp" u C+ h8 Y& y: O4 i
004030BA 56 push esi
! [& ~" L' S; v3 G2 M" w7 B004030BB 57 push edi
- W% ?" k5 D' {7 t7 Q! `004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"( e9 i5 ?7 r3 a
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]; i0 @: ^5 _5 c" I2 \7 y3 f- v4 R
004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1
: ]% _7 Z% Q1 W: c: ~004030CD E8 27C40200 call qsr.0042F4F90 I7 K8 t2 i' N L7 ^
004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]2 a9 c9 p% Q' n7 x" ]2 k/ j) r; y
004030D7 894424 2C mov dword ptr ss:[esp+2C],eax
7 b3 s8 o) g- b7 z3 D5 \004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
% L3 x A! ~1 {004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
! g- N- a4 |+ p3 k- |' d004030E4 E8 905A0200 call qsr.00428B79
2 B# L. c4 O8 j( ~004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]& f( o: f# Q3 E; _" u! k
004030ED E8 3B5A0200 call qsr.00428B2D
# i4 g# @; V! B" t {) j$ ~) Q004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]# x( m4 K2 O" ^3 |
004030F6 E8 7E5A0200 call qsr.00428B794 p, x( u0 O, ^8 X0 @; C m
004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44] L1 Y, d: {6 @; L- r# C4 V
004030FF E8 295A0200 call qsr.00428B2D
- w9 m5 P# |( y9 O) G9 S8 V00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]/ V( ?, S; b: d
00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]: y1 d4 v+ k( e
0040310B 83F8 02 cmp eax,2
0 g7 B: {, M: t/ c* W9 M0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳: ]) o- R0 P" ^ u! Y* [& [) |
00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]" b" \$ R( r5 N6 b" |9 [, D
00403118 837A F8 18 cmp dword ptr ds:[edx-8],18
7 K3 X" _/ X5 b$ M9 e( A1 w5 p0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳
. \& S t/ l9 a* y9 ~0 C8 r00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]" M* ]. e/ o v9 B7 F7 n
00403126 6A 01 push 1
4 n. ? }& }* W00403128 50 push eax2 @1 B; V9 \, |& |4 ?, ]: N
00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
6 v6 b7 P1 _& I1 v; K( ~/ t: k) X0040312D E8 C4550200 call qsr.004286F68 R* g! U4 ^2 X! O8 f- \8 H0 _
00403132 8B00 mov eax,dword ptr ds:[eax]
- s/ b, F5 |5 d, g6 x00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]* n' N5 G Y' ~, p$ t& B& C
00403138 50 push eax
9 g8 }# D( M$ O( T00403139 C64424 40 04 mov byte ptr ss:[esp+40],4
; n- a3 o1 _0 C) x/ N' Y0040313E E8 4D560200 call qsr.00428790/ H# }' ]4 U5 x" D9 V
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]- B3 a2 a! ~, s* p/ Y( T6 x
00403147 8BF0 mov esi,eax8 t: A& l" p5 _1 D
00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3
: c: J/ X9 t7 Z9 j9 X/ |9 R, f, p0040314E E8 38C30200 call qsr.0042F48B
) L' Z" M! g6 D0 X00403153 8D46 0A lea eax,dword ptr ds:[esi+A], X7 [( t) w# W
00403156 B9 3E000000 mov ecx,3E
$ A* s# n& h: u0040315B 99 cdq, d, @' O4 A$ r: u5 }; }
0040315C F7F9 idiv ecx
/ {; {2 N7 u0 ?$ Z) u- X0040315E 6A 01 push 1. D, W0 z% ?" q5 U, q
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]1 E7 x9 W- Y# w8 ~3 g
00403164 8BF2 mov esi,edx8 a$ [! Y' b- b$ ^, a% s
00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
: I8 W% b: v5 ]- i( h0040316A 52 push edx |: ~/ F( e5 u$ q- Y4 `+ K
0040316B E8 0A550200 call qsr.0042867A
_9 k' K' e0 }) C! W: ?$ ]00403170 8B00 mov eax,dword ptr ds:[eax]# R' ^& h5 g7 [3 p) u* b" m
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]$ J+ A2 l8 m3 a
00403176 50 push eax: \) l" Y/ u1 T$ N: m$ [5 u# ]
00403177 C64424 40 05 mov byte ptr ss:[esp+40],5
1 `! q) H: @+ ?8 m: e0040317C E8 0F560200 call qsr.00428790
$ `2 h2 E! H1 n, A8 S1 z! A* D00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]4 Z& r0 E- z3 @6 N& N* ^
00403185 8BF8 mov edi,eax* s: K9 ]7 \+ B
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3+ h4 N( ]9 y" [' s* Q' K* v! K8 `
0040318C E8 FAC20200 call qsr.0042F48B
" `5 F) r, T2 z: I00403191 8D47 0A lea eax,dword ptr ds:[edi+A]5 _9 s. I7 F$ d* m2 T
00403194 B9 3E000000 mov ecx,3E
8 ^+ i* T; ^; c) I' Y z. j6 P! B/ F00403199 99 cdq
+ i9 S4 L; B" y& X$ U3 \" j4 w0040319A F7F9 idiv ecx. Q( O3 Q, [0 z0 d1 P. N7 i% x
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]* `$ U% d$ B; h5 p! r% E, p% B R
004031A1 894424 28 mov dword ptr ss:[esp+28],eax: p: M4 {! t& o9 @
004031A5 8BCA mov ecx,edx
5 F; U) B) `; x) x D004031A7 894424 24 mov dword ptr ss:[esp+24],eax) b" S& O8 M! z/ m5 X
004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
, m8 I7 B' M- k+ W# K004031AF 894424 18 mov dword ptr ss:[esp+18],eax
& l+ B) k- M: M N; f. Z1 @004031B3 894424 14 mov dword ptr ss:[esp+14],eax# U. g# d$ g8 F3 \# r
004031B7 894424 10 mov dword ptr ss:[esp+10],eax1 B$ y7 e8 A7 n8 O
004031BB 8BC1 mov eax,ecx5 @( Q" S" c/ h' f7 W2 G
004031BD BF 0A000000 mov edi,0A7 ~0 ?% R! S% N8 S+ P `
004031C2 99 cdq t/ ^% m" ]% m7 V0 l
004031C3 F7FF idiv edi
7 O4 R" n5 n) }004031C5 8BC1 mov eax,ecx
* D0 c& d, [% E) }004031C7 B3 0B mov bl,0B
2 z; V$ D! }9 B, f8 X004031C9 0FAFC1 imul eax,ecx
, M, V# o$ H* v' N8 \004031CC 8BCF mov ecx,edi
" G3 X1 A. g$ V+ C0 v7 Y004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
. r3 b9 Y& s! q$ I004031D2 52 push edx4 X4 ?/ B3 i4 n+ a
004031D3 99 cdq* P: e* g/ t3 @ e
004031D4 F7F9 idiv ecx
& m: U6 q6 E4 s" o1 r) f# ?004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]
( ? E W9 ~' x3 D, j004031DD 2BC6 sub eax,esi$ L& M# s r+ s9 K" s
004031DF 52 push edx, ^! o- C4 J2 i, t; L& Y9 q
004031E0 99 cdq
! J/ ]5 r3 n" c0 ]$ N& w* Z# y004031E1 F7F9 idiv ecx' Z* Y+ P; |# b6 m9 {( p
004031E3 8BC6 mov eax,esi
; P: }6 Y+ G' c1 J4 Y004031E5 52 push edx
' x* t! Z7 F# b6 _4 @# ]- a/ C004031E6 99 cdq; z' E) D6 F4 B1 ~ m
004031E7 F7F9 idiv ecx& x w2 o7 d, b6 M
004031E9 52 push edx3 j R$ l- ?0 I5 k- v
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
$ D/ ]& d' B$ y004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"8 i+ V2 D7 c2 s w8 O7 d" m6 y9 y4 R
004031F3 52 push edx
, ^7 { U+ m$ S7 X3 ]* R2 H004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893, f- L. B7 E9 j7 ~7 P
004031F9 83C4 18 add esp,18
1 c( M+ R \ k9 l5 d004031FC 6A 04 push 4
7 ]; D+ t$ u" U9 Q) [; o* `% x004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]
: ` H+ M+ p9 F4 ?00403202 6A 00 push 0
) N1 `- K' W4 P; ^ x00403204 50 push eax
- N4 ?% X$ v' J- m. k00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
' A' P5 u K" h. ]0 |% ~) S% k00403209 E8 D6530200 call qsr.004285E4
0 Q# A/ f0 ?& S; H L0040320E 50 push eax+ t) l' [" y/ y) y
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
, _, w* K' v# E7 P+ B2 R00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C/ [8 J; j' m. t. E% f% c2 C& i( C- j
00403218 E8 A7C30200 call qsr.0042F5C4
1 A$ t. n( z) b0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
5 a1 e* @' x k6 W00403221 885C24 3C mov byte ptr ss:[esp+3C],bl% ]0 T" `! f' S( ^& I# A
00403225 E8 61C20200 call qsr.0042F48B7 d2 {* h' C, |: I5 k( S
0040322A 6A 04 push 4
0 b! J% E( T1 L6 Y8 J" {6 H0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]) r$ B, _* {" V! |4 i+ S; ]+ c
00403230 6A 05 push 5. N$ a6 n' ^. C2 g6 \8 z( U$ {
00403232 51 push ecx
: p1 x0 V) Y( U( ]00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
( @) R9 k5 \' M$ P" l6 f00403237 E8 A8530200 call qsr.004285E4/ o4 Z5 N: ~0 v( j" k" X
0040323C 50 push eax9 x! I) N: U- C0 p. K
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]1 a A4 ~$ Q/ |, B; N
00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D) U4 D! n' J/ i3 k1 ~. f1 a5 n
00403246 E8 79C30200 call qsr.0042F5C4
) K, p9 f$ M6 ^2 f: L2 O0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
. _( W. _ p% P ^- a9 @6 Q' O$ B0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl2 n9 {5 \9 v) R& Z
00403253 E8 33C20200 call qsr.0042F48B
6 o' ~; b4 _6 p) ~00403258 6A 04 push 4! n: D) [8 F+ H6 e) f& Z1 \' N$ T, W
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]
' K% |5 z0 S, y0040325E 57 push edi
5 c- U: v/ e' g& z2 Z* a' k0040325F 52 push edx0 t8 b7 T$ o- H3 W; V7 ]
00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
+ |' u& U5 N2 H7 y5 a00403264 E8 7B530200 call qsr.004285E4' n. m x6 H! I4 h
00403269 50 push eax
/ Z) }# w& X+ o8 a- z% }* E1 F0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]7 r+ ~0 s6 g* A
0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
. L" a6 @9 k, \00403273 E8 4CC30200 call qsr.0042F5C4) @: G. V6 \( e5 u
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]& }; X2 K8 u x* E) F
0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl
. J9 g. I" Z" V% |% w00403280 E8 06C20200 call qsr.0042F48B+ O' z7 _! l) t- ?
00403285 6A 04 push 46 \ L$ y0 g9 |/ d6 }- H" Y
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]9 \, x. Q) u }: o, R
0040328B 6A 0F push 0F
}- O% }6 O- b+ c! Y Y5 a0040328D 50 push eax
6 D; {3 U6 h5 q0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]5 b) X( B9 ]1 Y# \& ~0 O R
00403292 E8 4D530200 call qsr.004285E4
5 |; i8 q! f% A; C00403297 50 push eax
( f$ s) ~- m, H- V7 x00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]4 ?* o3 k: G5 [& X4 R, |8 r
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
0 I. a2 I. n/ G% L004032A1 E8 1EC30200 call qsr.0042F5C4
" P& w" q% F6 K( L6 I: g004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
3 `/ q, v" ?& i$ o4 |004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl. {% `; M. G: s' P$ O+ U2 o+ c6 |+ O
004032AE E8 D8C10200 call qsr.0042F48B
1 ~+ m9 E/ y1 u4 S" U# _" {004032B3 6A 04 push 4/ s/ M2 Q \2 p9 a7 I* ]; B4 L& w7 O
004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
; g+ t) T9 y+ Z# p1 \004032B9 6A 14 push 149 _' m+ N* z( ~
004032BB 51 push ecx+ [- _' U# q& P
004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
! T+ Q* t8 K$ P. w004032C0 E8 1F530200 call qsr.004285E4( L2 A* ?. {5 A( n U$ I
004032C5 50 push eax) m. }; v* Q r! a
004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
% q4 D, b; I- h. k/ |, l004032CA C64424 40 10 mov byte ptr ss:[esp+40],10$ X# q8 G9 L6 F' J W- l
004032CF E8 F0C20200 call qsr.0042F5C4* K" E: a4 S8 K$ {" T/ p
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]) `5 B, x8 Q# k# @2 ?# P
004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl
$ w- D) C9 w% C& j# y004032DC E8 AAC10200 call qsr.0042F48B
$ ~/ q4 ~' a8 I4 I/ m4 l; U004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
1 k9 B% k8 V9 `: [ x: \0 h9 J004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX# S# B% D) i% B# ]/ {: h: O. ^
004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL# k& x9 U h4 Q5 }( ]' ^
004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL6 Q9 ?6 ^( }5 W8 W) k1 p
004032ED 8ACA mov cl,dl ; DL送CL4 j. G7 k N2 N, G
004032EF 3AD3 cmp dl,bl ; DL和BL比较
; \9 u, X# `0 K6 k. }$ L004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
8 `5 q' f3 }) V% T7 d) @$ v" ~1 z; b004032F3 84C9 test cl,cl8 T( v# o; \0 Y4 d
004032F5 74 16 je short qsr.0040330D
J: o ~- Q% I. m004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL6 R, Y' ?# [% J. O. {
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL4 ~. C% ~, Y }' X8 L) B$ ^ e0 e
004032FD 8ACA mov cl,dl1 m- H; F$ y K
004032FF 3AD3 cmp dl,bl ; DL和BL比较# m% R6 n2 d' V( ?
00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
4 z7 f# \. B ?5 \- T+ L9 T00403303 83C0 02 add eax,2 ; EAX加2/ c1 a1 W1 Z2 g+ E" J
00403306 83C6 02 add esi,2 ; ESI加2: T* t! B$ [, I; ?- m! p
00403309 84C9 test cl,cl
; K# {% y$ S$ ^1 k7 M! {' ?0040330B ^ 75 DC jnz short qsr.004032E98 s' {: u7 W3 a% _3 z) o
0040330D 33C0 xor eax,eax
- ?' N; Y% a& g3 W; ^; Q" w* q0040330F EB 05 jmp short qsr.00403316
: v. r* h% p4 u6 l" h& m0 u8 ^00403311 1BC0 sbb eax,eax
" }) ]! w; V" S+ I: F00403313 83D8 FF sbb eax,-1- K& Y( G! s9 S9 X* f( D: C
00403316 85C0 test eax,eax
5 h- i1 F& d0 x2 Q C00403318 74 0E je short qsr.004033288 d( A( J6 u6 t* S
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
" n/ `% ~$ d$ O1 |$ B9 b0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]. v9 u6 T% n- @9 E
00403323 E9 F0000000 jmp qsr.00403418
$ h1 t7 K& R5 O' \; T$ _' V, ~& X00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX! P) M1 V8 C9 f* }: e
0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
/ b# L! n: |+ `6 h00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]: G" `+ }( ~$ Q- B0 \5 G/ V$ Y/ o
00403333 50 push eax
: K% i+ _ D! {* U00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX
0 H# Z$ ^2 E' S, t00403339 50 push eax
! `8 z$ {5 P+ I# A9 ^8 r0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX
9 w5 C# ^9 R$ ` r9 ?0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
. ^+ t1 S2 R4 C5 l3 F4 C& T( D00403343 83C4 04 add esp,4$ {! f y0 B* b
00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI
5 V- w! t+ C. p, H1 D" [00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]! C8 T, _# u5 Y$ Y2 c
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
9 Z$ Z+ _# T8 h `/ a( b5 d6 N5 W0040334F 50 push eax
8 Q6 c( f0 V3 R1 L9 Y2 y6 ^00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
" V& ^5 V9 I2 E9 P. C: r8 b7 a00403355 50 push eax
( s* s! r' h5 g, _( e. p7 y00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX
; ^# r- l6 u* M: }0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
5 \+ V( f2 t9 |3 G) @1 |. [+ k0040335F 83C4 04 add esp,46 p+ F5 l( F' g$ r& _4 d3 P
00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI4 r1 P5 z7 y o, T$ @
00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]# W% X1 f l0 p- C* v; ~2 U4 y
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]
( K9 c+ Z6 G+ _4 V0040336B 50 push eax
" n2 k; w# V, j+ a- W* U0 J4 T0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX! @8 R& r3 c; g3 q+ V5 G
00403371 50 push eax
& Y5 Q# n6 o$ q' A) e' `; a6 y00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX
3 r3 z4 ]8 h# k+ B2 {7 |00403377 8BD8 mov ebx,eax ; EAX送EBX1 F- _9 m) r6 w2 ?
00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX, J5 U2 G6 I9 c7 X$ j9 ]( B7 l
0040337D 83C4 04 add esp,4
' k# `1 f: R5 ~) k- _00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]. y* H; y l, |" _3 m9 l6 C
00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]: C* i [2 ~! k. x* |# J* f2 j
00403387 50 push eax
) X5 \- t1 A9 e6 F3 h7 R+ i00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX1 ]& { ]. t: N1 t% ~
0040338D 50 push eax
% O! X# ?& I$ W9 V) |& Z0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX. }9 L3 v) ~6 f, B0 _7 h- L: s
00403393 83C4 04 add esp,4
* u* o$ r# _0 l% s& G00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]8 k4 P6 c7 a# q1 v S& ]
0040339A 8BE8 mov ebp,eax ; EAX送EBP& C" e$ E) I& S; \4 W( C
0040339C 6A FF push -1
: H+ x' W5 x0 P% L/ v0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX! G8 Q! _; ^& _1 r3 E& i1 v
004033A3 6A FF push -1
# t8 l: ?1 j6 U% U4 D! @004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
* t. b+ } P3 x9 Y3 w004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX: f4 P7 F o( ]# _6 k b: R
004033AE 6A FF push -1
7 g/ K3 ?) T: R- s1 d- h004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX
1 n& ?, |; J6 N7 {004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX
, l9 Q9 Z7 S1 X! M004033B9 6A FF push -1) `% z) u- k9 }& t% V
004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX
, v- A& b2 y1 P) L. b. J: J: ~: f004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX9 l# W3 \! @) ~. j9 n6 C
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
$ J' Z* }, Z/ O# ?3 L004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
! q5 ^) ^6 O7 V( n8 K0 {" Q004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
$ n+ F' J: Q- c# x$ Y; T004033D7 D1E0 shl eax,1 ; EAX左移1位/ p2 f9 N, ], t! ?$ A
004033D9 99 cdq ; EAX扩展+ s* x9 T0 `2 a8 E2 f) E4 b- g
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中8 f2 k0 n1 |! |
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
! M5 B' p$ w. H004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)
9 F5 E, R' V7 [8 t6 x004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A
6 j1 T/ \: {! X' [" D$ P004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
' R5 F7 a/ e0 d( F1 p6 H004033E9 EB 2D jmp short qsr.00403418
# ^0 K% \0 G1 W" D2 f. ?& N004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX
$ q. V8 I6 V2 q/ S# i# U004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2, g- R7 Z3 v/ T7 ]2 G
004033F7 99 cdq ; EBX扩展
. M, s5 R2 e0 ^1 l004033F8 33C2 xor eax,edx ; EAX和EDX取异或5 m0 f3 K; [& r/ e
004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
2 x- e9 l! j3 I004033FF 2BC2 sub eax,edx ; EAX减去EDX7 F& V# y" U' }! H7 W( O. L$ {) o
00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]
. }' f5 J& w( M& G, ~' d: ^00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX$ Z- D# ]2 |/ M# P2 R
00403409 99 cdq9 [8 P' h& ]% W# {
0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中$ l7 g% b6 U* }& d5 D
0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX
) C/ W* B2 t: W1 y0 ]00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较6 s1 ^+ E0 k1 F& R' j, L: A6 w4 a
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳) M: C' d+ `. ?
00403418 E8 6EC00200 call qsr.0042F48B ; C# }+ }/ L p3 b3 J
0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ?, c% z1 r0 b# u( C2 |8 m: O4 e
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9! c7 D9 ]4 p: Y g$ Q/ X
00403426 E8 60C00200 call qsr.0042F48B# I7 H/ |% {/ }0 V/ @3 {
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]4 c+ w2 u: D& u/ n
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8+ E1 D+ D6 g+ {+ G- b
00403434 E8 52C00200 call qsr.0042F48B
) j) o! M5 S& z$ u% a: } q" A' M00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
& r- P5 M4 i% ]2 v) j4 O' _0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],77 H5 u6 t% a4 s9 D
00403442 E8 44C00200 call qsr.0042F48B
' |: f* X: r, L00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
6 \1 ~( L: S! E0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6# Y! X7 y0 `( f, @
00403450 E8 36C00200 call qsr.0042F48B
; Z7 u" q- q2 F2 C+ a. }7 P' U/ B0 A/ d00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
) F" B2 `/ ~3 F+ B; ~00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3) f1 }* i8 j7 c0 ]/ c
0040345E E8 28C00200 call qsr.0042F48B
- r! Z+ h) \5 m% r3 h00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]3 {' M! \$ s" o' _8 x3 D
00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
4 V: R- q0 i+ E" r0040346C E8 1AC00200 call qsr.0042F48B
8 E) F% \8 l! z' m ?4 ]00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]$ J( D/ f+ i3 q5 {6 A. P
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1
" d) p' P/ w/ k& O! y7 n0040347A E8 0CC00200 call qsr.0042F48B
/ }) m4 O4 h# P9 g2 ~% }( h B4 R$ k* a0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]2 O9 x" F, h/ @ a& i4 k
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],02 j0 L" @. P0 Y* {7 l* |
00403488 E8 FEBF0200 call qsr.0042F48B
8 W% V. R: Y2 S0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]% P8 i% N) r- p- k; z
00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
1 _3 [0 A- T/ C9 Q! o00403499 E8 EDBF0200 call qsr.0042F48B% L9 b6 s/ x A) z- K4 E' z
0040349E 32C0 xor al,al ; AL清01 [8 e7 G- U/ [0 ?
004034A0 E9 88000000 jmp qsr.0040352D
- S7 z7 v3 s Z. d! @* v9 I+ x: y004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~* z1 N2 l j. ]) K
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
; c! J: c$ `% M8 I" N( D! b004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9
# G* T# K+ X) R0 E+ h% C004034B3 E8 D3BF0200 call qsr.0042F48B
0 G& S, v+ s) h$ z3 h004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
. [" z, D! J4 Z7 x004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
1 y: Z) D) T4 |004034C1 E8 C5BF0200 call qsr.0042F48B) u% t n* }9 _8 S7 N5 G- m
004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
- [+ e2 m- |/ h2 \5 x* L004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
5 b" h6 O6 Z# y) J5 S* s004034CF E8 B7BF0200 call qsr.0042F48B3 L \. E" O. s m: C; p7 P
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]7 Q1 Z% T) r5 s( j- i& B0 y3 N
004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6$ W, i/ K; F4 ~( O: u
004034DD E8 A9BF0200 call qsr.0042F48B
$ _ |* L. ~0 U" f004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]( x( ^4 P2 }) m) r$ c
004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3( I3 M2 X7 N8 A/ I; r* s
004034EB E8 9BBF0200 call qsr.0042F48B
5 s3 r9 R3 K; N. \- r004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
; N% E0 m" \& q1 X004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2 K) ], h- z: z$ \2 l
004034F9 E8 8DBF0200 call qsr.0042F48B
# m7 x: M6 h K; u6 b0 E& V004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]1 \( ]9 u. Y; X. K* q
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1) F. M3 ]. |/ D) D* z6 \4 }
00403507 E8 7FBF0200 call qsr.0042F48B% s4 _9 }9 Z- g m( M o4 ]( v
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
1 _3 r8 [0 x/ j. U6 i0 J& P- P00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0% o. `/ `; D: ^) ]* G( m5 K
00403515 E8 71BF0200 call qsr.0042F48B
3 \7 }- P0 P7 R; w0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]& g6 d3 k6 V8 l5 w& n& F
0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
9 s3 P! K+ r6 w6 y00403526 E8 60BF0200 call qsr.0042F48B
: X, a0 ^+ d3 J3 g- X2 `/ q, O- ^( Y0040352B B0 01 mov al,1* \4 T3 @! o& y( e% G% q
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]8 ]) [$ B# m, v9 N @* L
00403531 5F pop edi R3 L5 j( b3 W) V
00403532 5E pop esi2 H8 D2 j$ C6 e
00403533 5D pop ebp
6 H! N2 |8 I( {6 e- m00403534 5B pop ebx$ y: s1 y! q7 D* B/ h9 r
00403535 64:890D 0000000>mov dword ptr fs:[0],ecx
! J0 Z( N* `& {/ v+ W0040353C 83C4 30 add esp,30
% P; [. q3 _7 f7 C0040353F C2 0800 retn 8$ u( O+ V# v! o! x) h8 @0 ~$ Y+ L: G
--------------------------------------------------------------------------------9 J4 N5 b2 Z' |( c0 J
【破解总结】
8 ?) U0 k6 N& X& `% J# S# k 用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
3 H- A6 p b7 ?6 @用户名:yijun- a0 t) v( j0 o- k, l3 ?) [% e
注册码:4893*7777*3726*7777*05293 B6 E7 M/ e T2 r- S
--------------------------------------------------------------------------------2 f( u' f/ p+ N/ h$ F1 E
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡