|
|
|
【原创】破解Quick Screen Recorder; r! C0 \% _+ U. M, |- V
【破解作者】 yijun
4 t" i7 x% \ E4 g1 l' C& W【作者邮箱】 [email protected]
4 e! b0 Z8 ?/ a' Z# \' k- u【使用工具】 OD,PEID
3 L8 G/ A/ J9 k【破解平台】 WinXP# `% @$ W) u4 }! T, K
【软件名称】 Quick Screen Recorder. m4 Z4 M: n: c/ w
【下载地址】 天空% t1 v9 Y, {! ]/ ?9 D
【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on. 6 H- \7 E7 I" n& b; v$ I! ~
【软件大小】 540K; G* x: F7 V3 Z* `5 W4 [6 b
【加壳方式】 无
5 t; F6 s# @. |: J& F【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)" G h" C. d( c: [
--------------------------------------------------------------------------------8 A0 y! L' u8 Z6 q& j5 s
【破解内容】1 s7 G; P) y$ ^! E
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
z6 ?- m* ~$ ]' `00404C69 55 push ebp //在此下断$ o: i- o4 H3 ?- X( |5 G* x, b
00404C6A 56 push esi
! e# z4 `' b1 u' v00404C6B 57 push edi
2 i2 O+ Z+ B! z' C4 ?00404C6C 8BE9 mov ebp,ecx7 b& ^5 Y& R: S
00404C6E 6A 01 push 16 r/ a& I0 x& A9 a4 w
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名! r0 z4 W) ~# k3 u2 L" |% v; k# P
00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]7 }8 K, I3 L: ~1 |* S+ X# ]5 T# r
00404C78 8BCF mov ecx,edi3 I7 b. l7 J4 ^/ f P9 w
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码8 H' r& _2 n9 |6 l _4 w$ c
00404C7F 8BCF mov ecx,edi
/ t3 C6 K# c! U% B$ N, N3 P00404C81 E8 A73E0200 call qsr.00428B2D
1 h, t0 S: m7 ?3 i }9 ~1 L00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]9 u$ M/ B, n, ?
00404C89 8BCE mov ecx,esi
5 q3 L2 u+ l0 [" y& h& W' X8 t00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX# F' E! {# w8 ^7 D9 X8 t) v8 h
00404C90 8BCE mov ecx,esi
9 k0 [. B5 l. V: r' u00404C92 E8 963E0200 call qsr.00428B2D! N; `& B& J6 \6 ~
00404C97 8B06 mov eax,dword ptr ds:[esi]
9 K" j! A$ ?3 q) d6 y2 }9 C' t0 b00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
; J0 E$ \" P$ i R0 w; F00404C9D 7D 26 jge short qsr.00404CC5
. l8 H( o* t1 k I1 m00404C9F 6A 40 push 409 Q" N |/ v, s& L0 |- Q
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
2 Z% F7 j1 `- D3 [- u00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."
& U3 z. X% }. b3 _3 s00404CAB 8BCD mov ecx,ebp
V( r# ]( ~( p1 c0 T6 ^/ [- j00404CAD E8 C3840200 call qsr.0042D175
: L; L4 F7 P! Q' W W: F3 D+ |00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
6 V7 s S# N9 U! f00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx
6 c% T- V! s& ?& L) \8 H00404CBD 5F pop edi
, Z0 i8 V& |2 g) R0 t7 |00404CBE 5E pop esi: i: \- o4 c; {& @9 P8 D4 @2 U& V
00404CBF 5D pop ebp1 r* |3 w- S7 C' u4 |$ f
00404CC0 5B pop ebx) A1 p5 E7 T. O9 s9 E
00404CC1 83C4 18 add esp,188 M# e; x- o% q" f' {/ t2 u
00404CC4 C3 retn
( f% @: B/ J4 v5 S% u8 q00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]) a3 Z1 ]2 H: Y. e
00404CC8 84C0 test al,al+ {) _2 I) [) \$ G; y
00404CCA 0F85 1C010000 jnz qsr.00404DEC
: l. P7 z$ \/ V00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
7 A+ b5 g G& \3 Z00404CD4 E8 87E3FFFF call qsr.00403060
: ^. M/ }$ S8 R% \00404CD9 51 push ecx" G4 `% R1 K" @# e1 ]2 T: t! {
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0, a4 h* r" y& s/ w2 ]7 \
00404CE2 8BCC mov ecx,esp0 G+ E% p7 k! A r7 a1 U
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
1 H. p8 M! a/ k" h00404CE8 56 push esi. G5 F9 [5 L3 l. X, C/ H" L
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是09 f$ D7 r3 ~: u' R: }+ \6 ^
00404CEE 51 push ecx
& a! g( x0 j' P! w00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1 s1 X, H7 @4 j' g9 ~
00404CF4 8BCC mov ecx,esp
( y+ N+ x, L. X( X0 H: p00404CF6 896424 20 mov dword ptr ss:[esp+20],esp2 w; J3 E# G9 \' e: V- K" V! I
00404CFA 57 push edi
! B& k: |$ A+ @* w. l8 d# s00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0
5 a) s3 G- s2 C3 ?; A8 S00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
( Y0 |- x& E U- a Q" G" |00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0
$ m X6 G8 H6 c5 L00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~8 R% p- o6 t2 _3 a' R
00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~
& T7 A0 w( z- g$ P; O00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
4 \+ |' {5 P4 d, D3 z, O- N1 s00404D12 6A 40 push 40( t* J1 y3 @5 h. Q! {& i
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
( t0 P7 P$ K, b/ d! x00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."' t% Q. @& f. M7 q7 l
00404D1E 8BCD mov ecx,ebp
c. ~5 x0 B( R( p' o1 a) z$ c* ?00404D20 E8 50840200 call qsr.0042D175; v6 ^! m" F! o$ Z
00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
; b$ r* ^$ l& r00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1
5 c7 b5 L3 B. Y; B8 n/ A/ G00404D31 E8 5AE3FFFF call qsr.00403090
8 {/ Y9 f* w" F" J00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]- Z* y1 c+ h9 y) m! t
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx3 f' T1 w H _1 V/ m4 C
00404D41 5F pop edi
7 \0 }3 e% G( v _2 r00404D42 5E pop esi1 Z3 @. B4 e1 f' V- l
00404D43 5D pop ebp5 j' v) Z+ x. X4 F0 h! e
00404D44 5B pop ebx
+ H/ r: R5 l7 {; T- Q% ~00404D45 83C4 18 add esp,18/ p( @% g( X$ o% F- F
00404D48 C3 retn4 E1 i7 T* z7 R( |
*********************************************************************************************************************************************************6 g0 Q" P9 a. ?
跟进00404D09处CALL来到:/ {+ O+ f8 C U1 P" {
004030A0 6A FF push -1 //一路F8下去~~~~6 ?) G$ \* w; G0 K$ B0 M
004030A2 68 C88F4400 push qsr.00448FC86 }: K Z/ y1 x, D7 }
004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
- }% s+ l- E! [0 I004030AD 50 push eax
1 c# j/ C5 p' C2 k$ M9 P004030AE 64:8925 0000000>mov dword ptr fs:[0],esp- @. ]" S" Y( n7 g: K1 D
004030B5 83EC 24 sub esp,24
* i4 m* D3 b, w! f1 p# {004030B8 53 push ebx. A) O. T+ n2 P5 D) J
004030B9 55 push ebp ~+ X) Y5 i5 y; ]. h' G
004030BA 56 push esi# r4 u( e# ]3 B) U7 Y) v
004030BB 57 push edi! `1 g( {* |( i8 E& Z. b
004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890": L1 }* p) o k. Z3 Q
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
7 v+ h" w2 Y5 J" Z* ^! o8 U004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1# L5 f/ w) R. N }6 [- y9 X
004030CD E8 27C40200 call qsr.0042F4F9
( x5 N$ P7 I6 w& a004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
`* I5 D5 l3 e3 R7 I7 F, c2 n004030D7 894424 2C mov dword ptr ss:[esp+2C],eax
0 ]8 G# v2 C$ V1 a/ G004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]: G$ F( x/ `4 S) O, G
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3. J& X) l2 ~( o
004030E4 E8 905A0200 call qsr.00428B79
- `# J1 w: Y4 ]004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]- _6 h8 J2 j* J6 ]2 j j( E: [
004030ED E8 3B5A0200 call qsr.00428B2D
6 K& e9 h) ~- ~/ i3 U+ h8 o004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
# _% b# \5 ^2 j$ r- _004030F6 E8 7E5A0200 call qsr.00428B792 x- J: F" V; M+ R& L! @) i
004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
: l% ? _# t3 e: D h6 x5 l0 ~1 K004030FF E8 295A0200 call qsr.00428B2D$ W$ T F# e- M
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]
1 ?1 y& J1 V G# R00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
! V3 i8 h% o) M* a0040310B 83F8 02 cmp eax,2: x# k8 U3 F2 c% d! x* m
0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳) [. O# ?' r5 m7 m' k0 j
00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]. T8 u6 S- k, _1 Q: N' l6 D
00403118 837A F8 18 cmp dword ptr ds:[edx-8],18: b% o% m9 r3 v
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳8 ^( ` u0 _, E0 V) N* n( ?
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]7 \. o4 Z, n! r @$ J9 l& l
00403126 6A 01 push 1
7 M: W: _" C$ u00403128 50 push eax
7 o6 w! m8 x% ~' }( u00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
& I$ O5 n T3 R: c7 A( C1 D" s0040312D E8 C4550200 call qsr.004286F6
6 F+ F8 H) K, i' g: r* n% u1 W' Q00403132 8B00 mov eax,dword ptr ds:[eax]+ {/ }7 B t6 H& p7 E, P5 \
00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
7 s. H+ r( c$ J$ c0 M00403138 50 push eax
6 I+ I# S4 _) {- q; Z00403139 C64424 40 04 mov byte ptr ss:[esp+40],4* ^% |9 N- \- L" n
0040313E E8 4D560200 call qsr.00428790
1 K$ p& H* t2 v4 P( r* f( q00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]; {* w( A2 C4 t! [
00403147 8BF0 mov esi,eax
% l7 P) a0 E4 ]; J1 k- V/ b00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3% Y% h. o$ v: f6 z& U, I
0040314E E8 38C30200 call qsr.0042F48B* D5 L/ [& n9 r8 {' @1 y" Y
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]
( o9 Z! i+ L* {8 z00403156 B9 3E000000 mov ecx,3E
/ N8 C6 Z7 A0 U0040315B 99 cdq
0 x# C0 @* i3 d* E0040315C F7F9 idiv ecx
/ ?9 x) Y1 N( d" D, ?0040315E 6A 01 push 1$ K- j& j5 G+ x2 p! `. R: R
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]' h- u* W+ i- t% S
00403164 8BF2 mov esi,edx
7 u1 m/ R* d4 @- ]0 B7 W4 f K00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
( ~! G" i: {# K% {) D# a- m; }* {0040316A 52 push edx
8 x V- d) e# G0040316B E8 0A550200 call qsr.0042867A
& ~" b- V; c; z# }2 g0 v( ~9 f00403170 8B00 mov eax,dword ptr ds:[eax]( [6 V1 R& `5 Q3 x
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]; { W1 V5 Z$ m# k* Y
00403176 50 push eax
& a/ D# C7 q" f00403177 C64424 40 05 mov byte ptr ss:[esp+40],5) k; E3 y# y: @) ]1 h. T, R
0040317C E8 0F560200 call qsr.00428790" X; S+ G! X s) S. |0 y( K4 F
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30], U4 ^* I7 w$ N2 ]& L
00403185 8BF8 mov edi,eax+ @* u& w( M1 @8 S. t( c( f
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3
+ i2 B3 j% D! O0040318C E8 FAC20200 call qsr.0042F48B; l5 x8 J4 U& h
00403191 8D47 0A lea eax,dword ptr ds:[edi+A]) K' S) y( k2 k6 Q
00403194 B9 3E000000 mov ecx,3E! T. U# d# l& Z0 Y& k
00403199 99 cdq$ H, ]5 U/ P) m) J
0040319A F7F9 idiv ecx
6 K! A2 E6 V8 L- E, W) s/ C0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]
2 S- r9 Y+ u' x2 J" \4 d004031A1 894424 28 mov dword ptr ss:[esp+28],eax/ |& ~* }# N& T, h1 Z
004031A5 8BCA mov ecx,edx3 ~3 D, ^7 I- a6 B1 S
004031A7 894424 24 mov dword ptr ss:[esp+24],eax3 T5 Q- d c/ ^; m8 j: a
004031AB 894424 1C mov dword ptr ss:[esp+1C],eax/ ? c1 K# }; P4 b/ I) S q0 T: Y! @5 s
004031AF 894424 18 mov dword ptr ss:[esp+18],eax6 K" m, g' U5 V- w1 Y- _
004031B3 894424 14 mov dword ptr ss:[esp+14],eax/ d8 y1 R9 Y: b0 \- ?" i
004031B7 894424 10 mov dword ptr ss:[esp+10],eax" d1 t: M7 I; B8 \
004031BB 8BC1 mov eax,ecx9 ^: y; g3 x4 Z# o3 n+ j* @5 f
004031BD BF 0A000000 mov edi,0A" N: t8 X9 x/ ]9 B. I' z/ s
004031C2 99 cdq
. U7 }: l5 s% k0 i/ C004031C3 F7FF idiv edi
; [" J k+ ^4 w* t& m( C I004031C5 8BC1 mov eax,ecx
; u! w5 l5 q# N; Y004031C7 B3 0B mov bl,0B
7 W$ w2 |. r/ e: n4 s2 B004031C9 0FAFC1 imul eax,ecx: J. y% Z4 _1 [0 d" e, [
004031CC 8BCF mov ecx,edi$ I9 A$ h2 b n3 j; V3 O
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
% Q' B% y* ~% x, m004031D2 52 push edx
) v" O- I8 [0 o0 c' w& X004031D3 99 cdq* |& }5 l6 N9 e6 i1 z6 f+ n; g& m
004031D4 F7F9 idiv ecx
* M7 B- ~3 C8 I* C004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]% A. C7 s% Q4 [1 t* X1 `/ ?
004031DD 2BC6 sub eax,esi
6 P. H* [/ h7 C. T004031DF 52 push edx
* G6 ]5 f+ Z+ M1 ^0 K* F& Y004031E0 99 cdq
/ z+ N5 b l! O' W- ?$ M' S5 ^# `6 ?004031E1 F7F9 idiv ecx
$ [8 w9 p. B7 L004031E3 8BC6 mov eax,esi
& N6 j- o2 {, Z4 S0 n9 z004031E5 52 push edx* N1 c( Q3 ~' S; {% C
004031E6 99 cdq' Y* Z$ q3 `7 Z+ K1 h0 A
004031E7 F7F9 idiv ecx1 T' V8 I: F: U
004031E9 52 push edx1 j2 P$ N2 r- S6 L, z2 j
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
9 s7 H4 d9 w. z# W3 i" j004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
% u6 Y8 W: \7 I+ d8 s004031F3 52 push edx7 n6 j. N8 |) H6 U& B: ]) Z3 m$ Z% a
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893* U% l' ?1 z4 Q3 F2 k* z+ I1 W
004031F9 83C4 18 add esp,18. I. ?$ z0 t2 O! u0 f1 a3 N/ P7 }
004031FC 6A 04 push 4$ n: ?3 c9 o+ ^; \+ }7 n2 |
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]' l- r- M6 v2 T7 j# ]5 y9 H0 q
00403202 6A 00 push 0: E2 A; ? R3 v' o1 `1 D1 O
00403204 50 push eax5 r" D5 o( N. y. I8 Y. E
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]$ G. ?+ v9 k( P' N m; ]) t
00403209 E8 D6530200 call qsr.004285E4( E/ |+ |% w2 B6 u
0040320E 50 push eax
4 C7 h+ L. Y* W l8 Y0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]6 C2 @# t$ i* f$ `5 N! l
00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C7 }% W" \% s) Y0 o1 n+ ~! }% t
00403218 E8 A7C30200 call qsr.0042F5C43 o" f! p* u8 s. ~
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
: }" P4 t/ j, ^* w00403221 885C24 3C mov byte ptr ss:[esp+3C],bl. R' V! ^5 T* G# E0 M
00403225 E8 61C20200 call qsr.0042F48B) p+ T" j, e$ G( j# s
0040322A 6A 04 push 4
& j; R% ~( Q* b: _0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]- R8 i) u$ J5 k8 D- P- x
00403230 6A 05 push 5, z1 E! o% C/ B! [' [1 R: R
00403232 51 push ecx0 W; s. X$ K# A& Y. L8 _% e
00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]5 R# u, {' {8 g" H; G4 l
00403237 E8 A8530200 call qsr.004285E40 N/ v: e, b( B0 D9 u: T7 g
0040323C 50 push eax+ k/ H8 ?5 _4 _2 u% h9 t1 i% e6 J7 F# e
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
: G1 g5 W3 w7 C2 K, \1 X: C00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D
8 D' W2 m9 W( \! x/ k. |+ J N. e00403246 E8 79C30200 call qsr.0042F5C4$ ]+ c+ t0 |* u4 q
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]( h1 T* l7 `+ v- u+ X
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl
2 p1 F+ D; {2 `1 o00403253 E8 33C20200 call qsr.0042F48B, F. W4 y7 x5 ]! ^; u8 c
00403258 6A 04 push 4
s' g' N/ g; y0 l% k6 Q0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]
3 t8 ~1 ]9 B3 N, ` q0 \# p0040325E 57 push edi4 `# b1 t8 A; u& ]
0040325F 52 push edx8 ?! e" d/ G* Z, m% W
00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
9 G- |3 ?0 m/ j00403264 E8 7B530200 call qsr.004285E4& m. [% w$ M' d2 u1 ~( X
00403269 50 push eax) X$ _ u% }% j, l* [
0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
4 b9 \0 k, W* A) k0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
* y' V+ n6 o H* R00403273 E8 4CC30200 call qsr.0042F5C4! O0 H9 F: I2 R: M" H# o
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]+ |' z' ?$ T' E! F
0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl
, E' N$ p# R$ |; s00403280 E8 06C20200 call qsr.0042F48B
{8 @. O. J! c. Z# c, O00403285 6A 04 push 4
5 t5 q* H' B$ N# N0 l Z- C/ z00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]8 i$ E5 S I' w) q
0040328B 6A 0F push 0F
: _7 |8 m# E" t0040328D 50 push eax
+ G- t3 {. I p. s8 z7 @0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]7 s" m- j# @: Q m ^
00403292 E8 4D530200 call qsr.004285E4
. Y2 ~. n9 u, c6 J' D00403297 50 push eax/ [) R! a" W9 j- {$ L3 r
00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
8 L7 o9 a! e. A& C$ {* a* S8 N0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
% A7 o9 F4 c+ [ z004032A1 E8 1EC30200 call qsr.0042F5C47 B2 x; O1 l* _0 U4 P p% N
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]; s9 {+ `8 [" A' f: \) g5 Y& p5 D
004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl# b* x3 N1 v3 r8 \
004032AE E8 D8C10200 call qsr.0042F48B9 P" `% X2 A4 e6 B; h8 l ^% S P
004032B3 6A 04 push 4/ `, t/ w b* Y& E3 N3 Q
004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34] h% j5 L: V7 p4 B
004032B9 6A 14 push 14
9 ^ f+ o; h4 i9 \- Z7 n004032BB 51 push ecx
# t5 Q; A# ]3 E! S* V004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]1 h7 m. Y) X [. c
004032C0 E8 1F530200 call qsr.004285E4
# \( b8 W4 p) I1 _) e2 o004032C5 50 push eax0 ~: z* f- J- w3 F; J
004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
; o1 O, e7 W# s004032CA C64424 40 10 mov byte ptr ss:[esp+40],108 h% y1 C1 q P8 p
004032CF E8 F0C20200 call qsr.0042F5C4
* e. M; [" ^( y* i& h) {004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]) ^ R6 M* `' J5 a* c, [
004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl7 a, w, L' \- p5 ~
004032DC E8 AAC10200 call qsr.0042F48B5 |9 c# W( n! X& W! b: P- |
004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI& E: W ?. u* M/ M
004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
" A- m1 d" ^% w# x6 ~! n1 L004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL3 g$ K; j$ o% v3 z4 M5 O* D5 p# s- |8 Y
004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL
2 N, S& W" Z! ]004032ED 8ACA mov cl,dl ; DL送CL- T7 X* X# \6 ~$ I
004032EF 3AD3 cmp dl,bl ; DL和BL比较% Q, R" y5 T/ [6 z
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
7 J% @% Z8 z7 Y7 x# C0 k2 w004032F3 84C9 test cl,cl
1 R* ^; n8 W; L* F6 A004032F5 74 16 je short qsr.0040330D& l, L5 b' o m; f* D9 _
004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL
/ q1 i; w# B, `0 b004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL" p- Z4 S8 F8 ^5 Y3 p" d
004032FD 8ACA mov cl,dl
* Z) R7 `4 c9 C( J& \5 M004032FF 3AD3 cmp dl,bl ; DL和BL比较% `: m! x- D3 v7 D2 Q/ o% ^4 u8 m
00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)- D- @0 A- w- J2 h. r
00403303 83C0 02 add eax,2 ; EAX加29 K* }& z6 C5 s- u8 p3 ?
00403306 83C6 02 add esi,2 ; ESI加2
) B6 U* }0 S8 N* h7 m- z U00403309 84C9 test cl,cl
+ D- |" H- Z- c4 ^/ S0040330B ^ 75 DC jnz short qsr.004032E93 m# K( _6 ^ ?# {6 [) @
0040330D 33C0 xor eax,eax
* n) B: t1 _! A8 ~0040330F EB 05 jmp short qsr.00403316
. O0 x* F( R" g+ P. q0 [ F00403311 1BC0 sbb eax,eax6 e p0 F2 Y8 x9 |2 q
00403313 83D8 FF sbb eax,-1* R f# I7 R( N( f V0 V/ n
00403316 85C0 test eax,eax
9 c& D0 E4 f$ o" X( F4 |6 R/ o- i3 C00403318 74 0E je short qsr.004033282 t( t7 Z, Z! a5 }+ W$ C
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
$ ]: _" ]) ]4 s/ u/ k0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
" x$ U: n" u; V1 i00403323 E9 F0000000 jmp qsr.00403418( L8 _* S" {* J/ r( w: y
00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX4 k) H) m' y8 W. ?" M' g r
0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]) G, u2 R7 J& D
00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]) a! F9 L( M8 g+ ~( u" j- H" b
00403333 50 push eax
; f. w) b# U: R7 ]% c5 V00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX4 n+ }+ \( [5 ~7 Q* r
00403339 50 push eax2 Y9 W- f) C% j4 _- |
0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX! w; X9 m- A7 i& O$ v
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
; e) g5 d @+ g- Y& Q- p7 m00403343 83C4 04 add esp,4, S& K2 ]- A& W1 Z3 |
00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI
: l( s6 c% c0 `3 `$ C- {, W00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]
: l0 J6 o- k# N1 L* v6 i0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
5 {. d9 Y r9 h& e0040334F 50 push eax
! b; }: J) c! J% c$ N" y- G# i: E( H. _00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
7 D3 c( Z0 P( o6 C/ b7 Q8 @6 `00403355 50 push eax% \6 U8 M2 |* J7 s# ~6 a
00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX
! `3 Z1 x0 Z9 P% V! \5 r$ V" `0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
* H7 S% F6 C5 T' x0040335F 83C4 04 add esp,4# D/ b! l( `; x& j( W
00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI
3 K" }0 r; ]( z00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]& A3 o" ]5 G/ Y2 A
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]
2 c5 A1 j2 @4 n# [: R0040336B 50 push eax
& x" x w, {6 F4 F5 S, F' O0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX
4 `+ M. Q e/ Q2 S00403371 50 push eax. v9 E7 Q* R7 n* R4 G
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX# f# S- p, C4 g7 j
00403377 8BD8 mov ebx,eax ; EAX送EBX
* z, ]/ {( ?# s00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX
; b3 P3 M# W6 ]+ d% i& m B0040337D 83C4 04 add esp,4
' Q n& p+ j g0 l5 x; D& v9 y00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
$ e- K' ^- x, G v, @: V' ~00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]: [( |$ ?. E! D* T/ V
00403387 50 push eax
' o$ `4 R! h1 u% a: ^+ G' R% y00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX
/ O% `' w8 |' ]0040338D 50 push eax ]3 Z+ K# {: m+ r2 g
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX7 I; J2 @, i$ ?' ^
00403393 83C4 04 add esp,4
* S+ Y* p9 x, u/ { H9 w6 E00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]! ~ I- `$ O* A+ P3 `* _
0040339A 8BE8 mov ebp,eax ; EAX送EBP z5 W0 D/ u+ f9 n' b/ Y
0040339C 6A FF push -1
1 ~6 W) U0 z! T- Q+ Y. n( {0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX
3 a7 A! X( j% I004033A3 6A FF push -1
4 f4 r8 D4 k) L004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
3 m( g ^7 v- [' @004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
0 Q8 W2 z( d7 V* j004033AE 6A FF push -1
- O" P" k, Q1 H0 l004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX
& F8 {2 F6 I5 X004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX
4 t& N. U9 R9 m9 X! e" K004033B9 6A FF push -1
" L5 P8 n( Z `/ b8 M, o004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX: U$ }- n- W1 Z# z8 }9 F4 }9 l
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX* u" t$ V8 M2 @% x1 V
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
, J" L3 O3 u$ g. ~2 D4 Q004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX. q; R, G* [' b' F/ }8 f* Z& L
004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
$ n& g9 d& s5 v+ E Y0 [, {4 Z- g004033D7 D1E0 shl eax,1 ; EAX左移1位
! {) E) d7 S) M/ T2 c/ ?- j004033D9 99 cdq ; EAX扩展" f- Y+ L; Q" A- |. m' f
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中5 n9 g, Y( s" V: T- U
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
) N j p/ S8 K; u5 \; v- Q S0 ~$ w! u004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)
. q5 }' D2 }& G9 a004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A
4 E2 s: @ h# \7 p f9 ~004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
1 T# M2 i: f" C# X2 E004033E9 EB 2D jmp short qsr.00403418 Y& p& i9 Y- p9 G* G! o7 W
004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX) P+ X1 ]+ \, m, e$ P
004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2; t& ]4 G9 H# g7 W
004033F7 99 cdq ; EBX扩展
) e# `2 b b, k. k& |' L, l. M- R004033F8 33C2 xor eax,edx ; EAX和EDX取异或' o' h8 K7 X; I
004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
0 T+ y& z% N! i; f004033FF 2BC2 sub eax,edx ; EAX减去EDX
" M9 a- `! ], x# P. _; G+ @* F) P00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]
% `, G0 D7 S- w00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
( R/ f% U, @5 X7 g8 {00403409 99 cdq7 R0 A2 ~ s) x. `6 R
0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
5 e1 x: m9 m2 y# G" \6 s6 L0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX
1 P* o G* p/ V00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较
: M" X& d. z* B5 x0 V5 V$ ^9 e00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)
4 |: W: `% u) s) S4 n- z00403418 E8 6EC00200 call qsr.0042F48B ;
* E" W5 E; j7 L9 x9 ?# l0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
) h/ K! i7 s6 {00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9
# ?% [0 m' q* D; M00403426 E8 60C00200 call qsr.0042F48B
k7 E# N+ ?- z: H& I0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
5 c% A1 V9 N: ^) t, u- A3 ^, p5 ~' h# \7 {0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8
, f9 @* K: t9 D, m3 {* a2 _00403434 E8 52C00200 call qsr.0042F48B, C" D7 J8 V5 w: B1 r
00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]( I4 P1 ?8 s- k
0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7
& ?; \0 [) F$ y# T U00403442 E8 44C00200 call qsr.0042F48B1 v! W0 c2 V, I, y, V
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]2 R6 e" Y5 e& M3 Z" [
0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
9 z) Y+ T8 Y( k: q& l5 E$ c00403450 E8 36C00200 call qsr.0042F48B
& X, S$ H) ^! m9 F' d. n00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]) B' F& I, [( k7 T
00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3
, _' w% V( E4 J0040345E E8 28C00200 call qsr.0042F48B
' d! c6 b) e, L! _/ J00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]2 Z% ^' F8 X5 q: u
00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
% I% I/ c' ]& T) G0040346C E8 1AC00200 call qsr.0042F48B
9 e" h2 f# _" D+ z00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]5 z7 e$ z' p6 F v* n) Z `# G/ i" u/ s
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1
' L: U+ J# d% G6 x% y6 w: C0040347A E8 0CC00200 call qsr.0042F48B
. w* f6 B1 c$ D6 V% ^9 y0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]- [% R( D; a3 F, m
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
$ W0 m0 l4 O! |1 v$ O00403488 E8 FEBF0200 call qsr.0042F48B
* k% H" q; b4 d+ u! K0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]' h) Z! S! C& T2 D3 ]
00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
8 S: n0 P, H+ E, n6 S0 w00403499 E8 EDBF0200 call qsr.0042F48B
: O( [3 `* m% v4 p) U2 F% H J0040349E 32C0 xor al,al ; AL清0
, X* s2 r6 B7 V. l$ `- B p004034A0 E9 88000000 jmp qsr.0040352D
( _$ Y- [) o' t004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~
( J( {, o& w9 x5 |' A( G004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
$ _) i; A3 d N' i5 N& p* o004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],90 `! o' D' V0 T! \% v" b2 o
004034B3 E8 D3BF0200 call qsr.0042F48B
7 K0 K+ y% J) X004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
{/ i# w5 {. ]& k3 v004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
' v" f9 [, ?7 G. D004034C1 E8 C5BF0200 call qsr.0042F48B4 {+ S8 G4 V* w/ J/ a# _# c# t
004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
5 d/ d: ^0 i; A) S2 v( w( A8 r' i5 D: I- ]004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
5 U) B% s0 P) c4 f$ B& G4 r004034CF E8 B7BF0200 call qsr.0042F48B& ~0 N& S; |/ w V" j: X3 h& v
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]2 W, _3 @* A. c/ r# `' j/ x5 l
004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6
8 t: E( O# `/ [4 t4 N004034DD E8 A9BF0200 call qsr.0042F48B
8 a- X" d U8 I" Y8 j* k004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
3 O' y. k! G" J3 B% E' x5 a( R004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
& }4 V1 z8 J u, R5 M004034EB E8 9BBF0200 call qsr.0042F48B! Z/ e3 O# n. A. N6 j* B+ w
004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]/ s& e* W" T6 @" j
004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2
" H! {+ |4 e' [2 G+ E0 e/ O5 m6 H004034F9 E8 8DBF0200 call qsr.0042F48B
4 b* a A6 J- n! y% ^' m) f3 D004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
7 K* D x4 X- c8 M3 h, V- i00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1& U5 G5 M9 w3 d( M: A. Y8 k
00403507 E8 7FBF0200 call qsr.0042F48B. S9 j$ o5 [5 T; K5 J
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
, O0 v) E9 _' v4 A% R00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],08 t" N' J, X& b7 \
00403515 E8 71BF0200 call qsr.0042F48B
4 D6 v! O+ p4 @7 R4 V! J1 k8 W0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
3 O: o _5 |- h# _- {: @0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
( W3 p% R. y- j4 D00403526 E8 60BF0200 call qsr.0042F48B6 C9 k( C7 ?6 Q! X
0040352B B0 01 mov al,1
; s$ ]. I! j! `; L r" L* t0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
m8 \1 n U- {! y1 c' @6 E00403531 5F pop edi
( C* ~5 ^( r, B00403532 5E pop esi2 C; w, F; h$ `1 ~9 d
00403533 5D pop ebp5 l, k# X% c& A+ [" G& l/ G* O
00403534 5B pop ebx5 H5 z4 {9 [$ E0 c& t9 x
00403535 64:890D 0000000>mov dword ptr fs:[0],ecx
. n8 I$ z, Z/ Q0 P6 X; D% V0040353C 83C4 30 add esp,309 S- V1 H% W5 H, v/ {/ Y3 a( o
0040353F C2 0800 retn 8
0 K1 G: D/ @, L/ B3 V--------------------------------------------------------------------------------1 L1 F8 o0 R0 d+ g# ~! O
【破解总结】# `* I+ j9 {% {* n; ~0 A3 z
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
+ l3 ^1 p3 q, x用户名:yijun
; y" J8 [ x M注册码:4893*7777*3726*7777*0529
/ E8 m: ?( Y; S6 ?; D! }' ^; f--------------------------------------------------------------------------------/ |$ ~8 @* W* o2 K9 E* K. h" q. r+ }
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡