|
|
|
【原创】破解Quick Screen Recorder
5 M1 |) u! l5 f/ F: S/ L7 {【破解作者】 yijun% O$ Q* k% }, ^0 R( @
【作者邮箱】 [email protected]
3 e$ M8 j* Q! Z* H( T% k: H【使用工具】 OD,PEID( ]- M4 }; i7 N0 \! s+ V5 b( r
【破解平台】 WinXP
: a7 a8 z1 C& j* N% M- j8 n【软件名称】 Quick Screen Recorder
" y7 a- z- w. j7 O! p) j/ a* r【下载地址】 天空$ q5 b) v u' `) B" r' B
【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
5 Y# ]/ f# b, ~【软件大小】 540K
" d, B: S9 u: I5 p) _0 L! O) {【加壳方式】 无
: p% m( n' \) k U( I【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)
# Q: ^9 r* W8 G4 b, t f--------------------------------------------------------------------------------
6 _3 t0 I9 \' ?( z$ g1 e I【破解内容】
9 ]2 B4 T% t7 [7 Y \* v" b" l PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
4 T3 V1 K% Y8 _00404C69 55 push ebp //在此下断: u; [! Z* p7 R1 k% d# L
00404C6A 56 push esi8 l8 ~( I, K% t
00404C6B 57 push edi _: \9 a/ Y4 D+ h. r+ Z. q, P
00404C6C 8BE9 mov ebp,ecx( o1 p2 ~+ @; @
00404C6E 6A 01 push 1
4 B( _ V6 |& q0 i* h00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
% r4 R' ]9 Q+ j. T$ n00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]; d5 v u. K% ^) c
00404C78 8BCF mov ecx,edi
/ s! o2 f/ S I" \00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码
9 q/ H; T, y4 r" a/ u, S, P00404C7F 8BCF mov ecx,edi
% f H$ L5 g% `9 o4 T7 P00404C81 E8 A73E0200 call qsr.00428B2D+ ^( \# q! ]( Z. y* z9 R
00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64], w/ B1 X4 f v. v, f e
00404C89 8BCE mov ecx,esi
/ I: R4 W1 Y/ ^4 O. G, w00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX
. w8 Z# _% U3 G7 z/ q00404C90 8BCE mov ecx,esi6 K0 d' a2 l2 O
00404C92 E8 963E0200 call qsr.00428B2D
4 g# M& D P& O) s00404C97 8B06 mov eax,dword ptr ds:[esi]
) E" ~( K- V m* G8 J0 n00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
) I: M; N% D2 m. W! ^00404C9D 7D 26 jge short qsr.00404CC5% n0 y7 p& {- v9 R. R v- F, y
00404C9F 6A 40 push 40
) @; W7 s" B! l3 G( L; ^1 i00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
, ?. W' I. W1 V" `3 [; o/ z00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."
. b7 U3 N p$ [+ v9 F00404CAB 8BCD mov ecx,ebp
7 c& w) m! \! K ]* A00404CAD E8 C3840200 call qsr.0042D175
1 \5 ] f% [7 @00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
- R$ j# N: p; ~6 M8 e0 L& b1 A( c2 N00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx+ x& V8 n; a# m- ^ Y) L9 R3 X/ z
00404CBD 5F pop edi
+ r; d% D3 K2 _) s, x& X00404CBE 5E pop esi' b0 ?* w( k) S/ w, j! ]( A
00404CBF 5D pop ebp
0 s. V! _. D% t# K7 {5 Y00404CC0 5B pop ebx. h4 d( b- o2 v) n
00404CC1 83C4 18 add esp,18
# m- H" h. V& y8 x1 {( b00404CC4 C3 retn+ o2 B- y% z# `7 l! X
00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
6 d* N) P- u( U1 T- q00404CC8 84C0 test al,al
Q" |! o8 ?* J) b4 A$ i5 |00404CCA 0F85 1C010000 jnz qsr.00404DEC7 k4 o& r$ b) @6 F' Z% S
00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]- q }+ K0 {5 G0 v# v
00404CD4 E8 87E3FFFF call qsr.00403060: H' m3 |0 D) d* D
00404CD9 51 push ecx
1 l. k5 m: G1 {00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],05 P; U: }- K% d# n
00404CE2 8BCC mov ecx,esp+ ], k" u: z% y5 v) Y* H! p
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
2 y/ ?2 ~" ~+ l; r6 S* R00404CE8 56 push esi8 i7 n M+ z. Q3 j1 R
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0% e; @8 ~- d, G! _
00404CEE 51 push ecx
* ~6 p" J* y( `8 [% H00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1
+ |7 h# _( ]% b/ P5 u. [: H' i00404CF4 8BCC mov ecx,esp) T* \: |2 g- i4 O% _( @
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp7 b7 M4 m- j3 Z+ F% N; T7 m3 `( D
00404CFA 57 push edi# c- l" ?; K% d& e+ D. m% E
00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0$ Q) x9 L9 f7 m( W4 f, N. b+ U E
00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]7 _6 t: L, W' b |0 {
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0
. I* L/ Q, o) U1 n! `0 s00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~
* R. ]5 c5 [- s K4 _5 h# Z- R, D1 r: l00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~& x6 [# X: I) j5 }, \
00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
! O( M# o+ @! X00404D12 6A 40 push 40
+ _& L0 g5 |8 e00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
+ J3 O* j S$ e: B% H00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."
g' P% V: p! h: F, a0 D2 |00404D1E 8BCD mov ecx,ebp6 M, y$ c* h; g( _3 z2 |
00404D20 E8 50840200 call qsr.0042D175
; q; k8 X. `: Y' h1 S00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
/ w: k) v; I! I4 V- {6 b' t# D00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1
A+ m6 q# _2 q+ ^8 I5 m8 ^00404D31 E8 5AE3FFFF call qsr.00403090
2 T0 g8 k3 r# m5 _$ V00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
0 Q5 N$ @; m2 k4 t3 v3 X" i; f/ Q, I00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
. F, @! C7 e7 Y5 O" i5 ]00404D41 5F pop edi, S* z" o9 O7 d( k0 p( \2 |: z
00404D42 5E pop esi9 D, R; D, ^% `2 U9 @ x7 @
00404D43 5D pop ebp& l, D, r. A6 w2 C: s- |
00404D44 5B pop ebx
2 f4 l L9 E' V# W2 F1 O. H00404D45 83C4 18 add esp,18
2 s5 `0 \9 R8 i! f9 i: @; @00404D48 C3 retn
; u. x" ^% Q; o; t" Q5 P*********************************************************************************************************************************************************
; B/ i, ^9 G5 G1 A跟进00404D09处CALL来到:/ D+ Q/ O) m* ?' h$ U9 u+ ?. l$ l
004030A0 6A FF push -1 //一路F8下去~~~~
& V# Y$ o+ h: b" R) D+ R004030A2 68 C88F4400 push qsr.00448FC82 m% ?' q" m7 D: [- f
004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
7 i& a0 m+ U# r' a0 A$ j004030AD 50 push eax
7 i9 i% F8 _5 G004030AE 64:8925 0000000>mov dword ptr fs:[0],esp6 I# Y9 {: Z8 o6 ]( ?$ R3 S5 U
004030B5 83EC 24 sub esp,24
- Z+ \8 Y0 h% f2 p3 ]! z004030B8 53 push ebx" W2 Z8 R5 ~% c7 T
004030B9 55 push ebp6 P& F! l& A* q
004030BA 56 push esi: T9 W; n( r |$ y
004030BB 57 push edi5 f% d n3 ^2 F1 _% y1 {
004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"
# O# }# T: P5 u% ^8 h: m004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
; u: s$ A; L; M! k5 y* l. w z8 ]( u4 o004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1
7 z! Z/ I, T) i% M3 M! ~004030CD E8 27C40200 call qsr.0042F4F9
2 n! S4 y3 O1 x: v% l$ F004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
. b0 z/ L* T |( H6 q004030D7 894424 2C mov dword ptr ss:[esp+2C],eax$ Q8 v0 f: K7 N, P+ _( ~0 l" r
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]: B d; ?2 f! O* X7 K) x M4 Y
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3( W( B7 D; ~9 @; H$ u* A% u+ S4 O
004030E4 E8 905A0200 call qsr.00428B79* c7 [& E; e- L7 S G
004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
% v! C0 \+ T2 E& Q004030ED E8 3B5A0200 call qsr.00428B2D, P5 z4 I5 a) v! ?- b4 m
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]& e1 z2 b3 I6 Y
004030F6 E8 7E5A0200 call qsr.00428B79
* ^9 D* k. p0 _+ a! L# R004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
0 u. G" X! d V% A0 N004030FF E8 295A0200 call qsr.00428B2D- F# o2 p0 l! L3 p
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]
, I' y: o7 W+ x% n00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]. e- \3 b. V: z- g, B
0040310B 83F8 02 cmp eax,2
8 f5 ]# [6 j* u; X+ w5 V0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
1 J4 _% L2 Y. N00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]1 G# |2 a, |4 l5 r4 b- A6 J6 x
00403118 837A F8 18 cmp dword ptr ds:[edx-8],18
1 _: x* L& {; R9 e5 I- l# k0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳. i8 R/ Z' r1 t: J$ j. y
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
8 {$ t; y; v6 g00403126 6A 01 push 1$ A Y8 S2 O. Z& k. u
00403128 50 push eax
- m* N5 b. R3 M1 A; t, _$ @: A00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
$ b# {/ `5 i9 g0 \0040312D E8 C4550200 call qsr.004286F6
" m6 H0 Z, E& x; _. B2 S00403132 8B00 mov eax,dword ptr ds:[eax]
2 p' B7 \% b4 s5 [0 ^* I d' }00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
7 D/ J v7 }& N) F. T5 N; K0 h e00403138 50 push eax. }/ s2 t% Y7 V9 P, {% y' Q
00403139 C64424 40 04 mov byte ptr ss:[esp+40],4
. B x& R& w% P( K7 l7 x0040313E E8 4D560200 call qsr.004287907 _( @( P" v* E* }$ f
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]3 K8 R( y# M* |6 {3 b/ }
00403147 8BF0 mov esi,eax; I: f" G3 ^- z
00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],38 b$ H, L# h% o3 ^$ t1 N
0040314E E8 38C30200 call qsr.0042F48B1 ^( v1 V& M* y7 W
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]
! A- x) ^9 K4 X; Z00403156 B9 3E000000 mov ecx,3E" ^8 ^) w8 Y" h) C% E
0040315B 99 cdq2 s& Y: Y# r" X
0040315C F7F9 idiv ecx
$ w8 {) Z0 f$ i/ W0040315E 6A 01 push 1
5 i7 [ t0 `9 t& r' X00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]% F4 i3 ?' W" X [- S
00403164 8BF2 mov esi,edx
! Q: j, ]2 l% b0 J0 `: `00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
4 R. ?2 c! C0 J, q- J0040316A 52 push edx& x! ~+ M2 F0 d" R5 v
0040316B E8 0A550200 call qsr.0042867A
2 m6 V ]# g" I0 e; z. g% ~00403170 8B00 mov eax,dword ptr ds:[eax]
$ ], m2 O7 ?+ W" Y: I/ v7 k00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
. P" e N% v4 a3 i2 F8 u00403176 50 push eax, W7 s# U5 F" n4 k
00403177 C64424 40 05 mov byte ptr ss:[esp+40],5. l# `; n5 e. O# d
0040317C E8 0F560200 call qsr.00428790
9 a- Z! ~, h# K- i0 t4 j* O2 [00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
; ?9 A" e6 L1 y+ u: Q" Q' l7 h00403185 8BF8 mov edi,eax" S; I2 {% o/ e) t6 L( M
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3( i2 U7 [. l2 C# N
0040318C E8 FAC20200 call qsr.0042F48B
/ X6 g3 s. k# U$ k* f4 ?5 m00403191 8D47 0A lea eax,dword ptr ds:[edi+A]+ `5 P) m3 v% t
00403194 B9 3E000000 mov ecx,3E
3 S4 k- [+ g! a+ P+ J! D( [4 F% X00403199 99 cdq J& \, u/ }# }
0040319A F7F9 idiv ecx* j- ]: N* L% @ x, f1 W
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]
* q, i; X, K+ H# O, ]004031A1 894424 28 mov dword ptr ss:[esp+28],eax5 h4 V6 S6 J" w8 Z0 |0 a3 X
004031A5 8BCA mov ecx,edx; Q8 R9 k5 f. ?3 M) A; F* N& L% Q
004031A7 894424 24 mov dword ptr ss:[esp+24],eax
) u) }" e) |& ^& s4 x: H# T9 V004031AB 894424 1C mov dword ptr ss:[esp+1C],eax2 |) w5 s5 z$ ]# ~$ s* a& B5 S
004031AF 894424 18 mov dword ptr ss:[esp+18],eax0 _9 \( B% j1 w. P }# ~: z/ n
004031B3 894424 14 mov dword ptr ss:[esp+14],eax
# K. G- B f6 o) _9 ?0 l. _' u004031B7 894424 10 mov dword ptr ss:[esp+10],eax
8 `3 o: G8 T% J# r- v; J004031BB 8BC1 mov eax,ecx
$ [5 o2 m2 ]) P6 J004031BD BF 0A000000 mov edi,0A
1 D$ M9 C& w2 l1 Y. m- D004031C2 99 cdq' C$ q0 |! J1 s1 \
004031C3 F7FF idiv edi
6 A0 G8 P& p/ u$ L004031C5 8BC1 mov eax,ecx
( s. D, O; y9 g$ A2 x+ E004031C7 B3 0B mov bl,0B' Z4 K! W6 j. ~# m5 L
004031C9 0FAFC1 imul eax,ecx
2 s8 T; `) R+ L: E. G9 T004031CC 8BCF mov ecx,edi
; r; a4 C, N7 V/ I- y7 j( X004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
4 w5 r+ X2 S$ f1 V8 d004031D2 52 push edx
: S6 G1 w' k# j2 Y" \004031D3 99 cdq& k; e, ?6 u1 O9 q- A* W
004031D4 F7F9 idiv ecx
4 B+ q G! w) ^5 W u004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]6 d: Z" e0 O3 `; a L' ~! M0 H
004031DD 2BC6 sub eax,esi
+ P9 b7 B4 D: c, X4 Y0 K* R& f004031DF 52 push edx6 f b6 y2 U+ m0 y; r7 r3 f
004031E0 99 cdq
. P. g! A4 H% V+ J: t004031E1 F7F9 idiv ecx# u: v; ^; c) Y. f
004031E3 8BC6 mov eax,esi' t# p3 S* t |9 l; O8 d- F
004031E5 52 push edx
# {- F: m1 f( Z8 H% V: \004031E6 99 cdq* G1 y U0 @: G7 l+ _! o
004031E7 F7F9 idiv ecx
; L8 _) ]7 R% h004031E9 52 push edx
: o% Y4 J5 K: J2 y- N ?1 g004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]0 C( ~* _7 i6 T5 t, |% C' Q; z0 t
004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"8 a0 S/ l5 u( e% z! F0 ]% M8 _' ?
004031F3 52 push edx( u; b2 ^9 C6 O5 ^3 m: w' U
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893
% \5 \0 G( H% l; b H0 a. ^; q004031F9 83C4 18 add esp,18
8 u/ ~3 Y2 B, o7 n0 ^004031FC 6A 04 push 4; M* ^* ~5 E1 C% U* b3 ^* Y# u
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]
6 w9 [6 l+ s5 v5 z! V9 X00403202 6A 00 push 0
3 p8 t- T" ]" H4 l/ ], f& G00403204 50 push eax
% h$ V4 }: |% J00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
+ p9 R4 i. k9 j00403209 E8 D6530200 call qsr.004285E40 Q# H5 s5 x2 D, N* n
0040320E 50 push eax$ V- E0 l- {: _3 K" p; H
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]# P& u, g& G" m
00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C: Q4 H0 \% B; }# D% y0 ]) q/ E0 S
00403218 E8 A7C30200 call qsr.0042F5C42 U4 s; r7 F+ P" I2 H+ B
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
0 L) B6 g9 Y2 v- e00403221 885C24 3C mov byte ptr ss:[esp+3C],bl: ^* q% y: h( _
00403225 E8 61C20200 call qsr.0042F48B
) j/ @0 E& B- ?8 G% w s9 _0040322A 6A 04 push 4' t. [$ C/ L5 q+ U4 }9 S
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
, n' f8 }& v% w2 F" V00403230 6A 05 push 5
3 Q+ Z" U/ _4 _* W9 i/ Y5 j P00403232 51 push ecx$ O, L4 j7 l( q, L$ f M
00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
+ n6 b9 Y- b( [# u5 X( x00403237 E8 A8530200 call qsr.004285E4
& T K3 p; S: p! M# {3 H: j7 b0040323C 50 push eax: B. D+ W: }* U+ p- F: W
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]* g6 j% ^2 ] q4 ^
00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D
( s$ x) }& K3 U! Q9 i9 {00403246 E8 79C30200 call qsr.0042F5C4$ ]/ Q+ R+ n$ _. \' u8 U
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
+ l" k4 G |2 }' U' O7 B' i0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl+ y3 N: j! o. @$ E* B6 S
00403253 E8 33C20200 call qsr.0042F48B$ x5 y, ?0 f1 h% A4 x' c
00403258 6A 04 push 4
4 S: E0 C! b) P9 |1 q+ y9 q" `- N, `0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]3 T! E9 i( v, X$ h+ e4 X5 ^7 y
0040325E 57 push edi/ J! i+ U" v! i, ~* x. N
0040325F 52 push edx
7 f6 g& b2 c+ Z+ v! z00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
/ `+ v6 U; N6 A& h" z( h00403264 E8 7B530200 call qsr.004285E4# x& R z* q. C' ?. C3 W
00403269 50 push eax
( b+ f- G" O5 Z% [- ? k0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C], T* R# U Q! X, w: o
0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E6 {! p" C: D0 W1 l, \
00403273 E8 4CC30200 call qsr.0042F5C4
8 C6 U: M+ j8 Q$ D& m$ v. B z00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
6 ^) {% o& d: g* M2 u% O0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl. O4 I7 ]. |1 _, S3 E5 a! U2 ]& _1 n
00403280 E8 06C20200 call qsr.0042F48B$ m+ N- G! t' V& a! |
00403285 6A 04 push 4
4 I, x/ E* q" f) @00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
- n# Y [( N& U6 l# S* B( f$ v$ T0 A0040328B 6A 0F push 0F- u: n3 w9 w5 K: l$ Q
0040328D 50 push eax
4 ?+ f& d. F& c/ A0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
0 R9 [6 F. @. m- x$ ^- g00403292 E8 4D530200 call qsr.004285E4
- X3 o# ?5 y3 a% B4 w3 v00403297 50 push eax2 z0 p% k) H& a$ F8 F; P+ A1 l0 k
00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]( G! W; I y! v0 G
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
* u! b% t6 B2 e' E8 J$ S+ e004032A1 E8 1EC30200 call qsr.0042F5C4& J$ L* v- s. N5 A* f
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]# ]) I& f! p, r8 K
004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl
- V# H* r- ]7 M004032AE E8 D8C10200 call qsr.0042F48B
6 j, O" }* j- q P004032B3 6A 04 push 4
4 }) ]) w! w9 \ ~0 ~# p004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]0 u: S: Q1 j# f) B3 p+ p1 a" K
004032B9 6A 14 push 14
3 \ }. R, [& c' w004032BB 51 push ecx
; G- ]) E9 p5 j5 C& w7 x9 Z004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
6 Z7 i4 Y& b/ i8 J, `. S004032C0 E8 1F530200 call qsr.004285E4% X9 @0 Y5 n7 u' l9 s5 I+ a+ p& F
004032C5 50 push eax1 H8 D& s3 R6 p& Z: V
004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]) Z% u) x! w1 W. m+ K
004032CA C64424 40 10 mov byte ptr ss:[esp+40],10
# p5 z* Z. g- ]% f004032CF E8 F0C20200 call qsr.0042F5C4
; h$ k$ |5 R9 a6 J- }4 N* K004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
8 _" x- Q) M' T, ~% T004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl! W& I) x* y$ U7 o6 o9 m
004032DC E8 AAC10200 call qsr.0042F48B; p% w: d0 U0 A' l- y" g* e
004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI3 R) p- [( f2 y- q
004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX! q' K. k6 Z7 {; I& F
004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
2 ]" F/ i$ a" `. E004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL/ \$ K& r/ H( t" U! h0 \
004032ED 8ACA mov cl,dl ; DL送CL
* Y1 W5 Z# z( d004032EF 3AD3 cmp dl,bl ; DL和BL比较
- }6 b' D0 @$ \004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
2 Z0 W% g" b0 K2 {9 f004032F3 84C9 test cl,cl
4 Q2 X0 n& x# c1 Y8 b004032F5 74 16 je short qsr.0040330D+ v* y! z% d2 {! o0 d
004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL
( x9 o/ a7 v7 k/ ~# L2 K004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL) z& x% a& }2 w
004032FD 8ACA mov cl,dl
4 m; }: @2 y# C# _+ m) W. x/ M004032FF 3AD3 cmp dl,bl ; DL和BL比较1 t6 \8 Z" S& x" {- }/ B1 P$ W
00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳): s3 J; L3 j+ N+ O
00403303 83C0 02 add eax,2 ; EAX加2
0 d1 x" W+ @8 b+ I00403306 83C6 02 add esi,2 ; ESI加2
; |: H$ `( Q7 u2 r% c00403309 84C9 test cl,cl
# d# H1 Z( i0 Z1 P- B0040330B ^ 75 DC jnz short qsr.004032E9
; \1 O2 [* y' w l9 V0040330D 33C0 xor eax,eax) v) G6 j, G3 j$ p1 O
0040330F EB 05 jmp short qsr.00403316
8 f' m4 T Y* e ^/ p00403311 1BC0 sbb eax,eax
$ T1 L X+ X$ ~00403313 83D8 FF sbb eax,-1% a/ r; d. Z# ]& j! @8 z
00403316 85C0 test eax,eax6 j' u/ |7 V0 S! W' l5 Y0 v
00403318 74 0E je short qsr.00403328
Y9 z% _* d {0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A0 e2 S- |* X+ t5 b
0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
2 @7 A' q% y$ {; O9 k00403323 E9 F0000000 jmp qsr.00403418
/ ` y+ V. p: b ^00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
. ~. G" G2 } y8 _1 H5 N+ n0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
+ _3 ~) M8 C2 Z9 t00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]
: A* L& l) C+ b9 `% G: J* r/ m00403333 50 push eax3 H5 T' T/ ^2 g! u1 ~' ]% c5 U) G
00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX
: s/ i$ g" P) x* u: X# F00403339 50 push eax
( T& @! y# m: P1 h* j# i' N! l0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX+ ~& E0 g$ r" K
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX% o& e6 R0 `& a4 h9 x
00403343 83C4 04 add esp,4( K, [7 h8 ?/ c; \/ p
00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI7 q U* n' C$ }6 N. d% u8 e
00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]. [9 t+ m D1 D, z$ L, A
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
, O3 \9 ^1 B. d' U$ e4 F0040334F 50 push eax
7 q- c7 x7 P6 j00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX, r* o6 H. G4 M; K, y
00403355 50 push eax, U- T' y* Y0 U5 ?- y
00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX9 S, Z$ ~8 n1 K
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX) R# e2 j* h1 H3 m/ ~$ T8 b
0040335F 83C4 04 add esp,4) @) c g; x: K9 w% c
00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI9 J& b6 {- B* n" W- ?% H# ~
00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
) _. q5 r8 j0 j$ m9 X+ @" a00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]
h9 _ N0 M8 P; ?- l0040336B 50 push eax
: H# d; i( L; Y0 _1 P f# h$ s7 T0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX8 m: u) U( [4 t
00403371 50 push eax1 s7 a( B' X. A7 `
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX/ g( q# z# K4 G
00403377 8BD8 mov ebx,eax ; EAX送EBX8 m$ H' R- m; i# i
00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX
. E1 w$ n' O( x5 [# A0040337D 83C4 04 add esp,4/ r5 h4 h! M/ ?/ s
00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10] s0 g+ q3 s8 T' u' r- r" O
00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]
8 }6 n1 c, M8 _! Q6 b1 B4 A00403387 50 push eax
8 s2 ~7 u0 Z& U7 d& F00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX G% Q. ~$ d8 k E* q+ z4 I7 l
0040338D 50 push eax/ \3 m! p3 @. W6 }7 a+ w4 g
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX$ K' d7 N$ g- e: h4 B+ h
00403393 83C4 04 add esp,49 S7 F, j* S' y% M
00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]* t x( G( p9 f( o4 O6 Z
0040339A 8BE8 mov ebp,eax ; EAX送EBP
" M! r8 A. o: Y" o; S; k5 o0040339C 6A FF push -1
! Z5 C, ]$ H) \) ?3 D! |0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX
+ R6 g# K2 R7 p% ~004033A3 6A FF push -1
2 Y% r) Q+ {+ \( U- h4 q004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
" l0 R% q9 }) K% S# K004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX) [) R4 r4 g! L" p8 k; |, P/ |
004033AE 6A FF push -15 n$ {: {0 f& R9 U6 q% U/ E
004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX$ z2 Q( T: I6 Z5 v( x: ]) ~9 G+ S
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX
; E, g* }0 a6 |- L* ?" _+ g8 p004033B9 6A FF push -1$ q$ F$ ~2 \3 V S7 R) V1 i, l
004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX0 @/ y- g: n, \
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX! o. z5 [" w4 G) A$ D$ E9 b5 d; T
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX6 q* F( D( y6 ~
004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
: S! _# e$ i, K) M) y004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX! h- L; U* n& O" g" B0 E
004033D7 D1E0 shl eax,1 ; EAX左移1位
, B9 n/ A% w" E$ V0 q/ D3 h; D004033D9 99 cdq ; EAX扩展7 K) B7 s) {# _& Z3 r
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中2 @0 Y. B: N0 s) g9 T
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较# w3 x A) p6 ]& C: R
004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)
$ \( \5 } a. X# |; f; Y004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A$ ~8 h, H$ J2 k) ^# F
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
3 ~4 o, i" ]/ _/ X004033E9 EB 2D jmp short qsr.00403418
( ?( e1 K6 d: A3 M% c6 t8 J004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX6 ^2 L- F1 n. t+ v
004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2
) X2 o( E# \9 t$ ?8 U' I, B6 U004033F7 99 cdq ; EBX扩展
8 z0 X3 U' y* z* x004033F8 33C2 xor eax,edx ; EAX和EDX取异或
9 c% d3 d6 @. M! s/ n+ H) ?4 g004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX- P3 B' l# j& y2 [
004033FF 2BC2 sub eax,edx ; EAX减去EDX+ J: ]! {/ C- O+ X( \
00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]# ~: C, Z$ O6 g4 Z _
00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
u' Y7 J. v! b00403409 99 cdq6 ?9 Z6 M9 i" u, u
0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中( f# S8 T0 L0 S# f3 {, |( y
0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX. @" M1 ?& F$ v5 n. P
00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较1 }! ~4 O: Q0 i3 o' j; |
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳) L8 G& _3 Z2 x1 M) Q( W
00403418 E8 6EC00200 call qsr.0042F48B ;
5 ]! J' C/ i' d8 S6 O& H0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]/ s2 k' f( \6 D G+ E! P! P
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9( T) d* t! h9 _" j/ K! R0 k+ E y
00403426 E8 60C00200 call qsr.0042F48B# [3 T; x& Z( U) `$ V
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18] \. { T: \3 X0 [( w( Y+ F
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],80 e4 f7 @" g, `( C$ p8 I6 K, z
00403434 E8 52C00200 call qsr.0042F48B
) Q6 }) E7 r2 [" D4 Y00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
) D: B: u: [' a4 M$ V$ n0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7
, b6 f4 m' A- p00403442 E8 44C00200 call qsr.0042F48B
& i3 l/ [$ O/ U3 \* p+ F& A00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]! O& ?; f( s7 f3 I; b
0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
8 C0 k7 ~" r, r5 o00403450 E8 36C00200 call qsr.0042F48B6 U/ y7 K. O1 j$ c. G$ A2 q. K
00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]- D: d7 H1 W! P4 _: e7 i7 g) |- z
00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3$ y5 B2 U3 z8 M0 [7 V4 Q0 ~
0040345E E8 28C00200 call qsr.0042F48B% q/ v. x+ O) ?& u1 I
00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
" _: y+ J" k; _9 E/ a. q. J) e00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
4 h6 g" A6 n4 ^ H& X: t! x& m0040346C E8 1AC00200 call qsr.0042F48B
, A' F9 T9 M k2 u; y1 N% X00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
, F- Z6 p) t' u j o00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1( t! o) k' ~9 b% l J* r" M
0040347A E8 0CC00200 call qsr.0042F48B, i0 d8 R% d2 W& g/ {# l2 z9 [
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]3 m& c$ x5 ]$ b' l+ k
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],01 \7 [2 B! }4 m4 S" L1 r/ K
00403488 E8 FEBF0200 call qsr.0042F48B
8 m1 \" M6 [8 z [- X x! s0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]/ |6 R* k( B1 X: k, k5 Y1 f3 P
00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
8 `0 ?6 B8 r: z6 `7 W* x+ Y00403499 E8 EDBF0200 call qsr.0042F48B3 u3 b9 E; [/ D; j
0040349E 32C0 xor al,al ; AL清0% Z' j- b9 H' T s; v
004034A0 E9 88000000 jmp qsr.0040352D3 J8 ]/ ]9 c4 X' t( C
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~2 `2 ]4 }" K) B+ n# k/ g
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]6 ]* s+ T% z' u( Q4 U! r4 a
004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],98 t C0 u3 X' U. k& [9 |6 |
004034B3 E8 D3BF0200 call qsr.0042F48B1 U& Q% @: V: [) [" y
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]7 W( `- j3 g0 e* V- B! t; n# T
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
' @" a* R0 c. g' n# A004034C1 E8 C5BF0200 call qsr.0042F48B
8 f$ a% }, E' b4 B5 M( I004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]) r" I Q4 O7 R1 f6 s
004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],70 g: B+ [) l. W# i2 |6 g) \
004034CF E8 B7BF0200 call qsr.0042F48B
/ i( L9 i, ]+ c$ U6 X004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]' b% @1 I$ t& F/ t6 D5 Q
004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6/ S& n* x" X9 {2 b3 G8 E
004034DD E8 A9BF0200 call qsr.0042F48B/ p/ B% L3 C. e' m2 L% `6 g
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
- p1 C( t' ^$ t% r( V: E) h/ k004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
2 x0 U, e9 Z6 c6 K F( H8 _004034EB E8 9BBF0200 call qsr.0042F48B! o8 i; B+ m+ N5 s
004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
2 X. P# s- H9 ^004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2
8 ~6 b% o1 [& m8 Q; d- Z004034F9 E8 8DBF0200 call qsr.0042F48B
6 P5 ]. p: A. T1 Q% Z5 D# K# f. Y004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]! v+ x+ Q: ~" f- J
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1- R2 \+ K5 P9 @$ P
00403507 E8 7FBF0200 call qsr.0042F48B' W% c: i8 I. p+ s; E
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
8 J4 d+ F, [$ V, P* R# M, ?00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],01 a5 j6 y8 h3 D4 V2 M+ s
00403515 E8 71BF0200 call qsr.0042F48B/ @7 \9 v: P! S3 f/ C" I3 W5 P# l
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
: H$ B# p0 o; G2 A7 [3 b0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
, M( J9 R5 I$ ^1 J0 @5 d4 K00403526 E8 60BF0200 call qsr.0042F48B
' |' d* L, s! E4 v2 A) r. F0040352B B0 01 mov al,1
: C' M. {1 l4 P. T/ M( u9 |' X0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]" H) ]" u; b5 D; h& k
00403531 5F pop edi% [ `3 W& p4 f% G! a2 o
00403532 5E pop esi1 ^% h& y/ M, K9 s8 Q; r
00403533 5D pop ebp
4 s' W0 b6 f$ L* P6 K$ P00403534 5B pop ebx
: m: Z2 V+ J3 l( g" z( e( G' ]/ t00403535 64:890D 0000000>mov dword ptr fs:[0],ecx
3 r8 e4 A" a" P0040353C 83C4 30 add esp,30$ U8 U1 A0 I/ g6 |: w4 s5 M+ s
0040353F C2 0800 retn 8
; c- {* g7 R s3 G; ?$ F--------------------------------------------------------------------------------1 i6 N0 m4 k; V& o( n5 I
【破解总结】- p$ R, a- }& \2 J* `% j' ] C
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
, x) Q3 E- d2 r$ r用户名:yijun
9 b& _; C4 ^! J4 [7 @注册码:4893*7777*3726*7777*0529: ?& P1 U3 Y; v, t: v
--------------------------------------------------------------------------------; F! F; l* m* q2 K
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡