|
|
|
【原创】破解Quick Screen Recorder
: T* T4 Y# y! {5 a: Y1 T【破解作者】 yijun4 p V6 ^) |$ U/ `* T
【作者邮箱】 [email protected]! |. J) ~( k; Z# p" a$ B X
【使用工具】 OD,PEID
3 T' w: X9 h( q( E& T9 _【破解平台】 WinXP
1 w1 U" B9 N$ O$ O9 {【软件名称】 Quick Screen Recorder
7 N, `7 n% g/ w" R' R9 x" g【下载地址】 天空
/ e& h9 V" I& x6 j7 ^' M【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on. 3 A# |8 v0 y6 }. e3 Y
【软件大小】 540K
% K+ M$ p( R5 \8 y# }7 J3 ~【加壳方式】 无
J ^/ q7 q! n+ ]( c【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)$ w3 M! V+ L+ i6 }% ]& E
--------------------------------------------------------------------------------
. }1 o3 n# C. T c1 P7 M7 X8 V【破解内容】8 }; \2 w3 I R B8 f B9 F
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
$ }% @7 ]6 U2 k: n2 |5 o% A( p00404C69 55 push ebp //在此下断
1 G, I- i4 N) |( r# t00404C6A 56 push esi
1 U3 s: v3 h4 o00404C6B 57 push edi8 K9 N r% s- }' D: X$ T
00404C6C 8BE9 mov ebp,ecx. H1 J4 Q. S& \9 n6 k
00404C6E 6A 01 push 12 e- p" w0 `; `& E ]# d
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
9 w" [, k1 S# d. N" q; N00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]; f8 n: q7 M, o7 I% R5 i+ q
00404C78 8BCF mov ecx,edi9 f$ _. r7 h/ n5 Y; B1 ^9 L
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码" K5 W% w: I9 I' g
00404C7F 8BCF mov ecx,edi/ A7 f2 Z5 W# Y
00404C81 E8 A73E0200 call qsr.00428B2D e0 ~+ K/ u! s
00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
7 a l3 z& ~9 L9 n00404C89 8BCE mov ecx,esi
8 E, Z6 X5 u3 G/ d00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX5 M9 g4 v p( j4 u$ t: {
00404C90 8BCE mov ecx,esi! @+ ]# F; B, U+ Z" T% r
00404C92 E8 963E0200 call qsr.00428B2D
8 B5 H) ~1 j6 U1 z00404C97 8B06 mov eax,dword ptr ds:[esi]" k, p) T+ q5 ]2 |) q8 {- f
00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
" ^ B. I" i. d5 m, I00404C9D 7D 26 jge short qsr.00404CC5+ y4 l) J- j- O1 k; o9 i
00404C9F 6A 40 push 40& G5 C A Z) T4 E6 r
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
" G3 [$ r0 L$ @& N' n2 t00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."
: q( B2 t u$ [8 J. @( I00404CAB 8BCD mov ecx,ebp
|& c0 b. k* k4 N00404CAD E8 C3840200 call qsr.0042D1756 h' w( L5 |4 Q0 I. Q! \$ B+ m
00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
# m4 M) h( p8 Z) e8 V) B: I- ?00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx
0 v2 }& I8 f3 g; X: {8 o+ T00404CBD 5F pop edi" k0 }9 v3 S' {# `' F0 q& A
00404CBE 5E pop esi M4 n7 I0 m7 K% W; c; |: @7 l
00404CBF 5D pop ebp
- J$ L G( T" @" A# i00404CC0 5B pop ebx0 U) x! T9 ]4 \ W. s9 x
00404CC1 83C4 18 add esp,18
5 t9 O. p1 } p00404CC4 C3 retn+ C2 \) ^0 E& A' ]& G
00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]+ u: u% m5 V# O+ Q! T% ]" i
00404CC8 84C0 test al,al
1 E. c" H9 T# {00404CCA 0F85 1C010000 jnz qsr.00404DEC
; N& z+ H/ L K; j9 Q00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]. z7 ]( ], q s) m) k+ X
00404CD4 E8 87E3FFFF call qsr.00403060
. \4 Y1 }% T5 v2 q f6 m00404CD9 51 push ecx
, ^1 M, J4 N6 \# n; o9 x00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
9 _6 o1 A, R! z Q0 I00404CE2 8BCC mov ecx,esp/ a8 ~+ @% ]2 z' p
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
( t8 l3 c' J& l2 O- m( u00404CE8 56 push esi
* N% _; p0 U( p6 N' ?9 b00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0 a9 k3 t+ z8 w; [
00404CEE 51 push ecx, d0 l' G4 G5 z6 T8 R
00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1+ M' I1 f0 u& n
00404CF4 8BCC mov ecx,esp
5 t9 v' D2 n d% k00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
4 s: |! Q3 T# e" }" \* w00404CFA 57 push edi& M" a( Q0 Q7 v j3 M% V5 c
00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是09 ^8 w! d5 r0 W1 p6 o
00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
& T) R1 w& n' D$ w& U% S00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0
5 B+ {& M) W* R2 T3 p+ f00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~* U4 k7 \: A8 D" d* l8 V1 q
00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~
2 A. O) [ m, \; C6 O+ {* P: x00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~! _) @/ [6 X6 @: H" ]" S# O3 T2 r
00404D12 6A 40 push 40 j1 j3 M5 Z( y p D
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
4 z1 [* \" b% C! m00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again.". w$ n# b# V A4 c. [9 x
00404D1E 8BCD mov ecx,ebp
- {# B# m; W5 e3 m3 B00404D20 E8 50840200 call qsr.0042D1757 A, A+ X) `$ {! J" ]8 ~6 m) |
00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]) p4 I0 E" ^( V1 ^
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-13 u) d5 @- W' r! `0 i% y& ^4 O# [0 p
00404D31 E8 5AE3FFFF call qsr.00403090
8 O$ n% _; G1 g; X" |8 N+ u00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
3 ?8 P( i+ U$ [8 j00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
, n' W x! @. T+ B$ v00404D41 5F pop edi0 y5 a3 S: r" c) Q
00404D42 5E pop esi
* q! N7 c' L+ }+ _7 k/ p" Q! G00404D43 5D pop ebp1 I# u% P/ d: d& n
00404D44 5B pop ebx8 M* V) o q1 `1 y0 A7 O( Q
00404D45 83C4 18 add esp,187 |- L1 z8 k) I7 W( X3 |
00404D48 C3 retn+ a( K1 C( E/ g, B9 }# G4 e
*********************************************************************************************************************************************************7 g1 r' d2 I1 o. {* X
跟进00404D09处CALL来到:
* i1 |( O; n; m004030A0 6A FF push -1 //一路F8下去~~~~
/ l* f8 d, m3 h( f004030A2 68 C88F4400 push qsr.00448FC8
: W8 A. z- e" M; `004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]8 O2 T( @2 w; I4 n* T
004030AD 50 push eax( [" [# h: K1 e$ L! l5 i: Y9 J, i
004030AE 64:8925 0000000>mov dword ptr fs:[0],esp
8 Z+ a3 S2 c" x H004030B5 83EC 24 sub esp,245 B, m: S1 X" A7 ]7 \
004030B8 53 push ebx
9 t% E2 f# f& `" x x8 E+ r004030B9 55 push ebp! t4 _, \" H% W" ^
004030BA 56 push esi# R. v3 G2 k4 H( Y& U
004030BB 57 push edi" h5 p2 s5 I* J) q" P
004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"
6 ]6 U/ u; I+ O$ m004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
& ~ H w f, O" R k/ t8 x+ s004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1; E* l% `8 O: t: F" h
004030CD E8 27C40200 call qsr.0042F4F9
+ U) m/ C) f g/ ?8 ^- m6 R: g004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
2 \+ z8 c0 c0 i004030D7 894424 2C mov dword ptr ss:[esp+2C],eax7 _5 y% l( b: d O/ _$ o# }- ?
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]8 R2 Y5 z2 X. m* z" A, r
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
% x/ J0 y- f& L N: ^004030E4 E8 905A0200 call qsr.00428B79
* W: T' S5 h2 z# y E+ c004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
" I6 x( T8 r4 h5 e+ B004030ED E8 3B5A0200 call qsr.00428B2D/ O' ?9 U# t% \/ L3 J$ t
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
8 g$ I- z0 s# P004030F6 E8 7E5A0200 call qsr.00428B792 g2 f$ f# J ^$ ^( I1 l8 z( @8 ~
004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]! _9 _% P4 ]1 b! @3 y; {) S
004030FF E8 295A0200 call qsr.00428B2D
& o$ f) A* A" [( K2 X0 ~+ L8 R00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]
1 s4 p! H2 w( m ~: I00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
7 c8 w& G1 j `0 I* i0040310B 83F8 02 cmp eax,2
, t8 k# H* ?$ M; a! x/ I8 K* t0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
" _' n: O" P3 X w" E00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]: A/ S# W- l e0 @' a- J
00403118 837A F8 18 cmp dword ptr ds:[edx-8],18( {- @$ B( d( Y- Y; L
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳
* n& X( A; T. a0 ?5 u# v00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
" _4 Q) E; E H9 l- `( [& b, Q# a00403126 6A 01 push 1
. i/ `5 y3 v) ?- [; }1 V00403128 50 push eax0 N% M; b+ y$ a% \
00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
$ G$ V+ N0 i# h# x0040312D E8 C4550200 call qsr.004286F6
: u: P+ i9 ?8 _00403132 8B00 mov eax,dword ptr ds:[eax]
5 j! }6 Q! g$ b00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
* o- U/ _, X. y* x00403138 50 push eax
T$ g( J! q7 N2 Q8 _) r00403139 C64424 40 04 mov byte ptr ss:[esp+40],43 R; x$ d" u1 e
0040313E E8 4D560200 call qsr.004287901 B, V4 h7 v4 Q
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]3 \ |1 n8 _$ m
00403147 8BF0 mov esi,eax
2 f" A& F0 S+ R1 T1 h# i* _+ M4 c00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3
6 F' I8 I4 S7 G6 x2 t& B0040314E E8 38C30200 call qsr.0042F48B5 S0 b. I8 [! }& L" d- W0 z5 W- ]) i: Y
00403153 8D46 0A lea eax,dword ptr ds:[esi+A] v/ L _ p& w2 h* [! c9 { A
00403156 B9 3E000000 mov ecx,3E
9 b5 Z8 [9 K: Z3 \1 z+ I$ ]( }0040315B 99 cdq
0 [0 W5 F( @8 A1 `% F1 E2 P0040315C F7F9 idiv ecx! T+ L7 U7 ]) z+ ], Y
0040315E 6A 01 push 1+ h4 m4 V# T; T, _
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]
\4 {9 y3 ]( s$ Z& V, N( U% |5 j: \00403164 8BF2 mov esi,edx& W, I3 U1 J/ |
00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
! x, [1 V/ C* x/ s L$ i$ z; m: Y4 ~0040316A 52 push edx6 i5 j" v* U/ l* j4 m
0040316B E8 0A550200 call qsr.0042867A
* m' v. L& I5 r _& ]* I. h00403170 8B00 mov eax,dword ptr ds:[eax] H3 k; G3 B8 ~6 f) p& D0 Q
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
. I0 L4 A R1 k d: d- q00403176 50 push eax& a6 ~9 Q' E- l& T9 `
00403177 C64424 40 05 mov byte ptr ss:[esp+40],5
% G t) m/ B/ ~$ S0040317C E8 0F560200 call qsr.00428790
8 D: \5 m3 \6 k1 N* t* ` X00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
; n# {) h8 ^, N1 s$ X00403185 8BF8 mov edi,eax
' x/ T0 y* Z% }* w00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],38 W0 Z( k2 [ Q
0040318C E8 FAC20200 call qsr.0042F48B
5 q! i' y1 _+ |9 Z, X00403191 8D47 0A lea eax,dword ptr ds:[edi+A]5 T; K1 P3 ^, ?# @+ q$ w4 ^2 l7 |
00403194 B9 3E000000 mov ecx,3E
) n; b( W6 V; K7 y" j00403199 99 cdq# z' S1 B \2 f
0040319A F7F9 idiv ecx4 |8 h& S8 z* Z8 N8 A
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]' p; Q* W; m1 F7 k4 [$ Z! S- T
004031A1 894424 28 mov dword ptr ss:[esp+28],eax+ t3 u1 _0 \& ?4 d ?+ Z. x X7 {7 W! f6 b2 O
004031A5 8BCA mov ecx,edx
r8 f6 q2 {( {5 D$ N" s004031A7 894424 24 mov dword ptr ss:[esp+24],eax* U. O- O: d0 v. ^2 [1 j* @, ^
004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
* K. {. N& n5 w$ k T004031AF 894424 18 mov dword ptr ss:[esp+18],eax% g" ^4 x2 ] M5 x$ ^- F; V) [
004031B3 894424 14 mov dword ptr ss:[esp+14],eax/ g" k, }. Q3 I1 l5 T- D2 O
004031B7 894424 10 mov dword ptr ss:[esp+10],eax
0 G p& I7 N6 m1 G004031BB 8BC1 mov eax,ecx
8 H) {- i4 I8 y9 O' Y004031BD BF 0A000000 mov edi,0A7 s: }; X& @# _; X j" {' J$ B' e( o
004031C2 99 cdq
9 h4 |; _' R$ u d- Y* t004031C3 F7FF idiv edi
. C* U( K5 D0 Q004031C5 8BC1 mov eax,ecx
7 l/ l) C8 E+ @/ I! i" }004031C7 B3 0B mov bl,0B# Z3 b- f" p( J o3 g6 z
004031C9 0FAFC1 imul eax,ecx
, P% n" o& X" S- i% W004031CC 8BCF mov ecx,edi
* E3 C! u k, u7 `004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
6 x1 h9 _- Y5 W8 t3 l& I9 [004031D2 52 push edx
- |/ Q ~. J) s1 F004031D3 99 cdq
- o* M, u* v% `, `2 Y2 ^004031D4 F7F9 idiv ecx
$ V" G6 X+ s3 y2 z9 ~2 U; P004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]7 q! O7 v: V/ X0 C4 \( ?
004031DD 2BC6 sub eax,esi+ X, h2 }2 q/ p2 \
004031DF 52 push edx5 B p9 x6 T9 e% i" _9 e* S+ B1 X
004031E0 99 cdq9 u0 {6 z8 X# s; T* N& c7 u
004031E1 F7F9 idiv ecx' o1 ~) c2 Q9 H3 L* O) ~- Z
004031E3 8BC6 mov eax,esi
% `1 V. \: b- f2 m& q, K6 A004031E5 52 push edx# ^* L& j+ Q. K, Z* }- j" i
004031E6 99 cdq. ] J- q# m. u2 w
004031E7 F7F9 idiv ecx
% t6 }0 a+ g k1 E4 {" A4 B! }004031E9 52 push edx
8 b/ T5 t4 V* S6 q4 `004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]; l7 r z! n( `- c: p0 Z9 C
004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
. ]" r- j# Q7 J! p004031F3 52 push edx
! H5 z' [7 k7 j/ ^! I004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893
( s* C* z& i5 A& U/ K2 e2 c004031F9 83C4 18 add esp,18
3 z, J4 w: v3 D- F: X004031FC 6A 04 push 4/ Q0 K, }3 V! w$ q7 f
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]- T# j4 J1 v& _" a
00403202 6A 00 push 0
% i+ d8 f/ A9 }+ V4 g+ R7 o0 [- p00403204 50 push eax
4 ^' p) ~+ _0 B00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
* u1 n: P$ q6 f* v00403209 E8 D6530200 call qsr.004285E4
! g, m& n) e& e3 A; W: t, \3 z# O0040320E 50 push eax0 e" j, F) o' a/ o% w. p
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
) e( ]2 R i& N y$ ]00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C
* F) Y6 a) R j) q2 E% M00403218 E8 A7C30200 call qsr.0042F5C47 [1 `0 g" @7 `* C. }
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]; o, D0 i0 }: F' r. @9 H- a3 p8 r
00403221 885C24 3C mov byte ptr ss:[esp+3C],bl+ `/ l" c& {" ~5 Q
00403225 E8 61C20200 call qsr.0042F48B
* p, O; ]" d; O, A- S; O& ^7 l0040322A 6A 04 push 48 E" _% F4 W. h9 ?! t2 P
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
' m7 O/ s+ c( V, C/ q `3 e00403230 6A 05 push 5
) y$ }8 K' {# ~; V3 u+ Z00403232 51 push ecx
4 f+ R, G" F7 g; C00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]1 V! f* Q7 Z/ s: v' Q, E. n
00403237 E8 A8530200 call qsr.004285E4
& k+ Q, m! T9 r+ x0040323C 50 push eax
7 c4 n/ h3 `8 v- j3 m$ A0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]) X% \5 I/ o. w
00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D
: i" f: u" k4 d P- T0 C/ D" G00403246 E8 79C30200 call qsr.0042F5C4
% v$ U( t' T! m; E0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
. W6 V% R; @: }0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl
8 c! b" h1 V% c3 K& O3 O00403253 E8 33C20200 call qsr.0042F48B+ t& @& n' k6 T) R8 H! C
00403258 6A 04 push 4
0 O8 {9 Z. g' R) m! c& E* F0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]: c3 j0 E) O" k3 r
0040325E 57 push edi
u+ B3 j+ |3 C1 h0040325F 52 push edx
8 W5 F: n) I5 f! w) O3 e00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]2 |/ f& e8 G6 {' i$ {
00403264 E8 7B530200 call qsr.004285E45 v# b$ V, D! v/ q
00403269 50 push eax
6 |4 `$ W5 {7 |$ P* m- }. G8 @0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
5 C! i+ Y8 g9 z0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
8 R. Q8 k" e6 }! u00403273 E8 4CC30200 call qsr.0042F5C4% j/ G. g! o- i9 }
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
# C U1 b8 x9 c9 I6 s0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl
9 f, B" [* @# @" W- P: w00403280 E8 06C20200 call qsr.0042F48B
: U% F. E7 O9 k, @- f' _00403285 6A 04 push 4
/ S# G* z6 k2 c0 d8 v. w, m: [00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
) J. X1 j9 o1 h3 t# m% ?0040328B 6A 0F push 0F
" Z, }: N) J2 z9 M, w0040328D 50 push eax; D2 h% x) a( N# E( j
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
5 l) ?- S- }6 J$ k0 G) d00403292 E8 4D530200 call qsr.004285E4
/ C" T5 a/ f u0 Q$ b00403297 50 push eax2 u, X# R8 n( z5 w
00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]) U, z1 W1 j# ?
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
3 O: J$ A. _1 P9 k* g6 t# Y" [004032A1 E8 1EC30200 call qsr.0042F5C4
: j3 [/ x4 p( M! I7 Z004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]& \5 Q. y, Y+ S6 X
004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl/ p: Z, [, ~7 X+ L
004032AE E8 D8C10200 call qsr.0042F48B
$ L2 i" k" B% _004032B3 6A 04 push 4, b+ e7 a0 l! N5 _
004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]0 E6 l4 X }# g- y$ F
004032B9 6A 14 push 14# O5 Y$ |6 I. W" I
004032BB 51 push ecx
: _% u( a4 L' u3 W8 h4 r! E004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
7 Z: c7 t5 L2 @6 [# Z, I004032C0 E8 1F530200 call qsr.004285E4
% A0 E; W$ \. b; Q5 X004032C5 50 push eax
( O6 t7 c! i8 k* x! U) F$ R004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
6 A% l& ^$ S# V/ `" \004032CA C64424 40 10 mov byte ptr ss:[esp+40],10
4 H4 y! Y H7 u% a004032CF E8 F0C20200 call qsr.0042F5C42 b! @, j: A- |/ p, U: h
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]3 C. W/ c; H6 H5 ?# G1 X. L
004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl
" _4 r4 a) C: Q! Y! ~) F004032DC E8 AAC10200 call qsr.0042F48B% v6 d+ G1 \) G; N* N; q. G
004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI0 r1 q7 W- W" Y' `- C, y; O
004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX3 R& P3 w7 n3 S! l
004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
" Y* z. b1 _3 ~4 n# c+ J# U004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL/ q% h3 _. m3 e- _& _ c6 E G
004032ED 8ACA mov cl,dl ; DL送CL# O# |8 q0 ^% x5 p F* X8 s
004032EF 3AD3 cmp dl,bl ; DL和BL比较
1 W7 W. ]# u- R/ B6 \2 J004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
1 Y# o. U* W2 ^! u/ F& W004032F3 84C9 test cl,cl7 [) v4 |: g. u: y( ?
004032F5 74 16 je short qsr.0040330D
# O9 ]) G9 v6 ?& v. g. `9 l004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL
$ H6 Q6 X- t9 [/ F004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL7 Z2 B5 m" K% ~6 p& N& W/ x8 n# v
004032FD 8ACA mov cl,dl1 b6 X; ~8 I- |/ | q' D/ ^
004032FF 3AD3 cmp dl,bl ; DL和BL比较3 u S( x8 L* \. p X3 ?3 }% \. w4 w
00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)+ _" @8 |1 ^8 f3 I9 b3 H- Y# Z7 N
00403303 83C0 02 add eax,2 ; EAX加2% t* m. k0 d; n7 m7 I
00403306 83C6 02 add esi,2 ; ESI加2
- B B! P; O: M1 x, x% `( a8 F00403309 84C9 test cl,cl
& o' D9 Z9 c- G0040330B ^ 75 DC jnz short qsr.004032E9
0 e1 L+ o4 j. s0040330D 33C0 xor eax,eax
f* b7 R5 b3 f0040330F EB 05 jmp short qsr.00403316
& y' p1 Q% k6 i0 l' L2 z3 s00403311 1BC0 sbb eax,eax) B8 t, w# \& y0 }. o$ v' l
00403313 83D8 FF sbb eax,-17 y- I5 ]* d, @$ i9 g, G4 d9 n- }
00403316 85C0 test eax,eax j1 l& g: Q+ }$ {: ~
00403318 74 0E je short qsr.00403328" q" X6 t- y: I2 k3 T& F
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A& L5 X, M6 M. H% M% e+ ?
0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
. g- {( Y: b. g. e( w3 }00403323 E9 F0000000 jmp qsr.00403418
/ ], C" ^; t9 L t00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
/ p* s8 s- o( q4 c0 w0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
. B" Z% G6 o( Y7 z6 t* L+ {, q00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]
6 E' g# J h7 p! @00403333 50 push eax
! W4 i% a0 ]9 @7 Z00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX9 W% D: ~5 p% {& Y- ^( E
00403339 50 push eax
P) D8 r/ c; C1 L0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX
4 ~. k! p7 t1 P( j, J6 J) H2 f5 K- {0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX; K& s1 v7 h9 {& c2 J
00403343 83C4 04 add esp,4
, R1 _/ X2 F, D4 y( r; `. [00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI
9 t1 n, X0 o( e00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]. \1 m/ o7 s7 b& `5 h3 d
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
; W, `! U8 @4 x+ b0040334F 50 push eax6 b7 ]% G5 ^1 ^' A# `
00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
: x3 ~/ ~ k. U8 n00403355 50 push eax" Y/ ^" j _& ]; M, d' J
00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX' t7 ~) `6 W+ e( k; C
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
' V/ `# P( t, Y# j' ?, j0040335F 83C4 04 add esp,4
7 W. I1 ]' g- b/ |4 Q. y; ~; v* C00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI; ^0 h& R: Z c2 z- s
00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]* G0 {0 H R8 M, y
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]
3 i$ n' @6 E4 ]/ l1 \- ^0040336B 50 push eax2 \) \' ]- J& B+ U, l b, A
0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX$ P7 L- ]" ?+ ~, N
00403371 50 push eax# G: ~) [; Q$ S" X2 @9 [
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX& [0 P- [4 W( w+ z' N
00403377 8BD8 mov ebx,eax ; EAX送EBX
* a+ z0 d- {% j" N: O00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX
/ Z/ O& [- q: L6 T! `0040337D 83C4 04 add esp,4
! Y7 I8 n5 K- f: x' [$ j, a% G00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]5 O! q, ^# [( n& y* L6 c
00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]6 j& v% D! p0 {5 O+ |0 o
00403387 50 push eax
/ l v' p. g; _6 l; }00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX* W$ Z9 Z1 K' q9 X
0040338D 50 push eax( w. a: v; l9 b0 @
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
2 C M( } d( A00403393 83C4 04 add esp,4
) E D2 u3 t1 d1 }; ^: E- F00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
* q& [1 v8 g# X* X7 X0040339A 8BE8 mov ebp,eax ; EAX送EBP0 i9 y8 ^* u0 @* t' {. M
0040339C 6A FF push -1% ]' p! l8 H' C1 G3 e' o* O8 Q
0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX
) U+ y+ b& M% Y5 \% B' Y# o004033A3 6A FF push -1. m' D) t q- b# P, c( q- y4 P# l: q
004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX5 S6 h6 D( q9 S1 b+ C3 C$ N n \
004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
" ]3 q2 j% u; i004033AE 6A FF push -1, M* p ?) x/ B2 H5 S
004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX
' Q) c/ I5 _8 P& k8 g% q004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX
1 |4 n8 O6 b2 t! `- w004033B9 6A FF push -1
+ b" S- `. l: s3 S0 J% d* a) S004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX u8 }1 D& D8 \5 y; C& ]$ I3 o6 Q
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX! F! j7 K8 @$ d6 _
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
! E c" \0 y0 X% i004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX' V' i3 F8 U: c4 q8 T0 t
004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
# d( G( o% F4 A6 Q5 B004033D7 D1E0 shl eax,1 ; EAX左移1位% C2 v. n. `) i3 _2 F9 y+ H/ e
004033D9 99 cdq ; EAX扩展8 f) A8 i; K# [/ H9 _& ?
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
; z2 s. t! G, k2 C, y, H# Z004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
) V7 s$ h% W t) b004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)' y+ `: ~0 o8 @( D7 k
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A8 n/ J( |. D) U7 ]) T
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
, X/ i0 A, j! H) T004033E9 EB 2D jmp short qsr.00403418
3 |# i: ?/ B/ R4 C+ w004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX; T5 [% D+ F7 H% ~
004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2# _8 w ~+ ]; p, Y/ g p/ G' x
004033F7 99 cdq ; EBX扩展
, ?. ]4 N/ I2 I o! E004033F8 33C2 xor eax,edx ; EAX和EDX取异或
9 q7 W! z e( i' n004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX' k$ X+ h8 A& t5 Y. J
004033FF 2BC2 sub eax,edx ; EAX减去EDX
" [- r( Y) C' @* _3 Q, F" G4 F00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]# L" t! S4 V$ _6 _" |* U
00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
7 d* [0 x6 k) W; Z/ o0 C7 m00403409 99 cdq: O. l6 }; j9 l: }
0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中2 Z3 W1 |2 b, g9 w
0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX* M% s+ e$ o' H
00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较
7 \$ F6 G1 ]1 I, H00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)8 ?8 d1 o( S8 x) \
00403418 E8 6EC00200 call qsr.0042F48B ; 2 C6 O. d* M0 U' u$ ]& m/ [
0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]: \% r: e6 ?& \' ~
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9
7 c6 ^" \4 [5 |7 J00403426 E8 60C00200 call qsr.0042F48B
. b9 E! t+ ], @1 `0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]+ ~) B, n; v& w$ d6 r- V% z& {6 @
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8# X6 }+ I t+ Z% R" Q
00403434 E8 52C00200 call qsr.0042F48B& V7 s; p7 Z! g8 u! _
00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
$ k- o! b' O/ O/ U. o0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],71 ~# K5 H6 [9 p; ~
00403442 E8 44C00200 call qsr.0042F48B
/ A5 }% k& J" Y00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
$ H* q4 e' Z: v! I, R5 a9 N8 |1 {+ z0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
( L$ H6 R6 h6 D1 E" z: Q$ A- i8 a00403450 E8 36C00200 call qsr.0042F48B
- Y+ h; _! P) @00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
Z" D+ O& e" o: m. k1 U( k" K00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3
) i4 S, U7 t0 S' N7 \# i( M0040345E E8 28C00200 call qsr.0042F48B" Y* z1 w0 J0 }; \" c
00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]3 m9 Y$ R2 ?* L' H6 K7 _
00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2% i3 ^" M# S \
0040346C E8 1AC00200 call qsr.0042F48B# }, a: L. R1 V3 z# _9 V7 C
00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]* v# d9 E( s Q! [+ h7 I8 E7 M' l+ A
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1
, v- P) Y& s7 x7 {8 c4 f+ t& Y0040347A E8 0CC00200 call qsr.0042F48B, j* q/ X, N+ E7 f2 Q; M3 r
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]( I! h: k1 C0 E- b! `$ N' ~
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
+ f, J: B3 ]6 L00403488 E8 FEBF0200 call qsr.0042F48B8 n/ H+ ^% L, q+ r7 O
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
3 Z3 w+ [* m. `. c00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-16 ~. r* _) x: f# @
00403499 E8 EDBF0200 call qsr.0042F48B
, _2 R0 v+ u! v0040349E 32C0 xor al,al ; AL清0
% C, J7 r/ F) j1 q004034A0 E9 88000000 jmp qsr.0040352D! a" _. I" [- ]) H- ^4 U
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~0 x$ c4 z, T6 [4 T/ x0 m! D
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
3 B$ {$ B% ]7 H# M. v' |/ R. N( b004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9 \& ]7 X, n- t, _
004034B3 E8 D3BF0200 call qsr.0042F48B2 C; M5 S# z- Q1 Q2 {
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]8 I1 p7 W) u: H O2 E, j
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
9 X6 y; j, l/ f% r004034C1 E8 C5BF0200 call qsr.0042F48B# {" b1 _! D' c3 s& y+ e0 x
004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
+ U+ ^1 ?: \1 }, e! V7 q004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
8 M. ~. i* ]( v* U/ Q% K2 V* \$ P004034CF E8 B7BF0200 call qsr.0042F48B
$ K% G i; b& O5 I004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
' h( ]" j V! M; |7 Z1 I' y004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],61 v: z4 O( T+ @" c/ I0 L
004034DD E8 A9BF0200 call qsr.0042F48B
6 b* \- Q, u n004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
8 c! U. T+ m9 m* ^: e: i% q004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],35 u3 r9 c8 c; @
004034EB E8 9BBF0200 call qsr.0042F48B- Q3 `. E4 P }- g! x0 \- y5 E
004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]+ L3 g. r; `6 s* Q' `+ v3 Y' h
004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],27 O/ w: h# d8 B, F
004034F9 E8 8DBF0200 call qsr.0042F48B
8 D" m L7 q, ?004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]1 V" s" z7 s+ [( n# g7 e
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1
' r! U' ^# H3 i j! K00403507 E8 7FBF0200 call qsr.0042F48B( `) v e s7 w( P6 T
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]: W) p" |. t. Q. f
00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0
$ {, U% K( @! w0 V# Q00403515 E8 71BF0200 call qsr.0042F48B. D( {* `8 M* W; d0 A. o! S
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
1 M3 l( ^9 @; p$ m+ [- X6 e) H0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-14 S7 a* j/ [1 L! W3 l
00403526 E8 60BF0200 call qsr.0042F48B' P3 ?0 z) C D6 \
0040352B B0 01 mov al,1
+ f, `2 ~6 ?: |! z! A5 Z0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
3 ]+ M) A, o+ j00403531 5F pop edi
! E9 F& n8 q% @7 f% G& l4 S {" U. C00403532 5E pop esi
+ d- D) w" b, m3 f00403533 5D pop ebp
% w. G9 _( s: s2 P" d! s, y00403534 5B pop ebx
6 r0 F- D) e! ~' g00403535 64:890D 0000000>mov dword ptr fs:[0],ecx
% p3 O, o( E& K! |) h0040353C 83C4 30 add esp,308 N) O( ~% P" T5 l; p) H c A
0040353F C2 0800 retn 8
" R, V. F! A9 l5 i& s--------------------------------------------------------------------------------
: w P* m2 O `% V2 s【破解总结】( R" q* c9 z) P1 m7 R) _3 V
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
, v, V( Y! a- l& i; u" c用户名:yijun# w/ o; y/ J+ `3 Z2 o4 y
注册码:4893*7777*3726*7777*0529$ n1 v! @2 Q) W- _. }) m# u
--------------------------------------------------------------------------------
/ B, N# l: t- C! Y% N【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡