|
|
|
【原创】破解Quick Screen Recorder
0 N2 e6 W# X$ H' X【破解作者】 yijun: \# G1 z3 B2 ?
【作者邮箱】 [email protected]2 o' g- E }5 w# ~) u
【使用工具】 OD,PEID
D" F: X6 J ~$ f+ x3 M【破解平台】 WinXP
4 h2 K1 B* v3 W2 o7 r【软件名称】 Quick Screen Recorder4 G+ F2 I2 k* D: l7 N1 P5 b4 t
【下载地址】 天空1 y) R& i9 n: l, `
【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on. E. m9 `* V/ S1 e2 O8 E$ O
【软件大小】 540K- O# G; N# F( ~- g
【加壳方式】 无
7 \ K u; I% Z【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)
, V8 G2 E, q$ J3 V6 T8 D--------------------------------------------------------------------------------
- {8 j7 V* Z) V5 `* l【破解内容】) p& k8 G! o- Y7 ^% v% O" j6 l
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
% C; _: ]. V& u4 X00404C69 55 push ebp //在此下断
7 {! i; L. {/ k$ n; t. I% ~00404C6A 56 push esi/ U' K' i0 T" X) r T- v: p: d
00404C6B 57 push edi
+ w. ]1 u8 j; p00404C6C 8BE9 mov ebp,ecx" p* x3 s: A! ?/ }
00404C6E 6A 01 push 1
# i% U* K6 m1 L0 ^/ n00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名8 U1 X$ ^* a* {# {. l1 M
00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]
q4 X' g9 T5 {- _$ q00404C78 8BCF mov ecx,edi
+ d6 _) x1 A2 J3 N1 p8 B; S2 s00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码5 f4 J) L5 |5 f3 F3 s0 v+ [$ z9 L
00404C7F 8BCF mov ecx,edi
. ~) w9 l6 y" s: j" k/ C00404C81 E8 A73E0200 call qsr.00428B2D
/ d1 K, g, l: w% @00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
% |1 w) Y+ o6 Q* d00404C89 8BCE mov ecx,esi
: ?- N7 f/ E$ F0 N8 H" R00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX
" m) J1 S; v p# ^00404C90 8BCE mov ecx,esi5 I( R3 S# n" q
00404C92 E8 963E0200 call qsr.00428B2D5 e/ V5 I2 M' D0 [5 }
00404C97 8B06 mov eax,dword ptr ds:[esi]
1 A& G1 C+ q7 k00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
* D0 i8 j0 f4 r; Y9 N% }* d8 ~7 p00404C9D 7D 26 jge short qsr.00404CC5
6 o2 C8 w/ D2 ^+ s x0 e; E00404C9F 6A 40 push 40
: b: L0 \7 Z, f9 {: B) q* v00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"6 {1 y. l, M! @6 o% K- e; C
00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."9 J& y/ y& r- D8 V' o
00404CAB 8BCD mov ecx,ebp4 R2 B, F# B) D/ b" w
00404CAD E8 C3840200 call qsr.0042D175
& T; y( T! d8 ]- E4 ^. U00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]# d F# L, M7 z( r
00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx$ Q7 Y1 ?. e1 ?. X
00404CBD 5F pop edi
$ ]' Q! I+ v1 I* |00404CBE 5E pop esi
, x( A* G3 v4 _- C* H$ k00404CBF 5D pop ebp
2 [8 H' m/ S( u7 C/ m00404CC0 5B pop ebx
( A% l7 `7 n% E00404CC1 83C4 18 add esp,18
: i" W% k% r, }3 h0 x0 E, z" O00404CC4 C3 retn
+ S7 Q: m. l2 S. [$ @ N00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]4 {4 P* Q+ W9 Q: J8 m3 I
00404CC8 84C0 test al,al. J, N/ V6 f% L* `, r; Y9 \9 B
00404CCA 0F85 1C010000 jnz qsr.00404DEC
! V( M! ~5 M" o* r2 ^1 g00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]) A/ j% \' v- D$ a, |
00404CD4 E8 87E3FFFF call qsr.00403060
: C: ]% c* w$ S2 \% \: I. F00404CD9 51 push ecx& W3 @; q' S. Z7 I
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
' z6 P4 K4 S. M* D% S- t00404CE2 8BCC mov ecx,esp
1 V+ q% v/ I, r6 e& ~0 M0 M* n5 s00404CE4 896424 14 mov dword ptr ss:[esp+14],esp. D: o: v% P: a5 g/ G- F
00404CE8 56 push esi9 y) U9 _, f9 W9 @- @
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
^) T9 V0 Z0 K) C$ v( T. m00404CEE 51 push ecx
$ u- {/ ^" b" v$ C00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1
, w/ ?9 \ X% z$ Z00404CF4 8BCC mov ecx,esp
9 Z8 W: ^$ i1 h- Z4 M% G00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
8 a5 k5 e1 ?4 i3 t4 s* [: j00404CFA 57 push edi
# ^& `8 d& H. k; l00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0
" H0 S, a+ x! i/ u" |0 c4 y00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C], a5 {0 Y! U+ h1 G; T ^+ Q
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],09 p+ ~$ N' T, v
00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~
1 _+ p* \4 }- n% B0 u! M# j/ Y00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~- K s. s2 ]8 ?1 }( S
00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~6 H! @, w) L2 r( b/ i' g t
00404D12 6A 40 push 401 E# J# H/ M! |' c4 z/ o. h2 l5 X S
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
0 r) l- `5 x% a00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again.". I. b6 {: R2 v, v, v
00404D1E 8BCD mov ecx,ebp Z4 a- x _2 z
00404D20 E8 50840200 call qsr.0042D175; s7 T" c8 B, B
00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
' i* w& j- [5 T+ m& {00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1
! H `7 L1 t% g# I e, A00404D31 E8 5AE3FFFF call qsr.004030907 q; i* {' N# q" K% V! J
00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
8 n% {, R6 j* c0 s8 o00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
# D- x2 V% `1 G% w5 B1 o, ` q$ V00404D41 5F pop edi2 t* w/ K' A$ f$ V1 O; ^+ ]
00404D42 5E pop esi$ E: W" _% o& }8 [
00404D43 5D pop ebp
! Z. @) l. o( ~6 q) B# c00404D44 5B pop ebx) L5 U- M2 D. Y `- t; k
00404D45 83C4 18 add esp,18
X, y. a: L+ r6 f+ A a1 i$ x9 P00404D48 C3 retn! a% ]- x4 N3 D; B* m5 @
*********************************************************************************************************************************************************
* p) F$ ]/ r4 P% F跟进00404D09处CALL来到:
4 u+ g! O; I8 @/ S004030A0 6A FF push -1 //一路F8下去~~~~
& H& V# f9 ^6 z' L/ l( D004030A2 68 C88F4400 push qsr.00448FC8
/ ^' u$ E/ }/ k- R004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
% q) I4 q0 |" {% G8 f004030AD 50 push eax
2 a" u- Y7 c1 g0 V, B% o004030AE 64:8925 0000000>mov dword ptr fs:[0],esp
' z, m/ E3 l% `& y004030B5 83EC 24 sub esp,24: f% [+ Y+ [# T, e5 Z" A( S
004030B8 53 push ebx) i0 K) z* I( ^" u% x& u
004030B9 55 push ebp' s+ V/ y/ D' P# U! Z
004030BA 56 push esi
6 Q8 H, l& S& j7 Q004030BB 57 push edi
' W. W ^3 r& m4 u004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"* p+ E! I5 m* T
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
2 P& W! @- G: t5 q004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1
7 k; D8 ` x3 x3 M004030CD E8 27C40200 call qsr.0042F4F9
6 P- G. O: S. V3 M; i X4 B; o004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]$ a4 f+ X g6 Q
004030D7 894424 2C mov dword ptr ss:[esp+2C],eax: K0 b& j1 r% k6 A7 k2 k1 N- W7 ~
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]# R/ d( k/ b; \* e" v
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
/ I2 X" x" U) b004030E4 E8 905A0200 call qsr.00428B79; Q1 E* n0 d3 \ X: m$ N& j
004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
/ v2 d0 f( |" _004030ED E8 3B5A0200 call qsr.00428B2D O5 `( i6 R ~, S2 I2 F; D
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]. y3 F9 ]& B+ b7 K! M4 K) p7 w* v
004030F6 E8 7E5A0200 call qsr.00428B79) V* p7 a1 c! ]. |
004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
5 R3 K9 c x; ^/ t& T& n; l& Y3 j004030FF E8 295A0200 call qsr.00428B2D' a1 R) r6 `; k1 z, u# O% C; M
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]
, |, A4 g" i1 ~6 q# t00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]4 O5 A0 M \1 f
0040310B 83F8 02 cmp eax,2
: Y6 T2 S# X0 C/ ^0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳$ A9 y) D! f& l* `
00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]+ k5 b2 Q# d# s" W& G( n
00403118 837A F8 18 cmp dword ptr ds:[edx-8],18; l `: I$ W( ?* h1 G# B
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳6 s! L) B4 e* T' C
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
3 j$ ^# J1 R( ?+ v" d00403126 6A 01 push 1
1 Q4 Z* ^9 a: j; v00403128 50 push eax$ t% D S% A5 l6 _' a+ M4 Y
00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]. F1 z5 C4 v. ?
0040312D E8 C4550200 call qsr.004286F6
: X3 B+ G. d9 h00403132 8B00 mov eax,dword ptr ds:[eax]- z$ }: r! `( d6 H
00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
$ p2 V$ G$ c# O/ |% s00403138 50 push eax6 I- p' P/ U+ X
00403139 C64424 40 04 mov byte ptr ss:[esp+40],4
7 @. c8 d6 C9 Q1 |0 F4 B9 a0040313E E8 4D560200 call qsr.00428790
. t' x0 ]% N! w00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30] l0 L7 { S8 `6 I8 h' L$ N
00403147 8BF0 mov esi,eax
# `3 y; @$ p1 R3 ~9 {6 q, T# R00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3% i+ v. g# l: @% o
0040314E E8 38C30200 call qsr.0042F48B
) Z( F" q' J0 a! j* v, y00403153 8D46 0A lea eax,dword ptr ds:[esi+A]
- T6 |, m5 u$ V3 `+ M00403156 B9 3E000000 mov ecx,3E
6 o# [* g2 r6 _/ x0040315B 99 cdq% p6 w, o4 ?4 o& N2 u( q
0040315C F7F9 idiv ecx: g( [, J. H' s" W
0040315E 6A 01 push 1
. n* r. l& P7 D1 O% r00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]0 U$ G' I! j& [- _
00403164 8BF2 mov esi,edx0 s! T7 k" l, V8 r/ h" F
00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
/ Q& R5 u' k+ Y0 g& ^0040316A 52 push edx$ R3 v0 ?1 }! n: Q
0040316B E8 0A550200 call qsr.0042867A
* c- |+ \9 v, ^* A$ ^# y00403170 8B00 mov eax,dword ptr ds:[eax]/ m1 M6 w5 G+ m. l3 v2 C3 }. D0 ^2 k
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]# A* C; @5 y; E: V5 W7 `1 f0 z
00403176 50 push eax
9 o1 S- |; e9 H* ]" A00403177 C64424 40 05 mov byte ptr ss:[esp+40],5$ a7 {9 O! W h+ F; a
0040317C E8 0F560200 call qsr.00428790
0 A) T/ i) _$ U: m00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]9 p6 L+ X2 n# A M( [0 l
00403185 8BF8 mov edi,eax
: A- s0 c& S) P* S/ p00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],39 n5 P+ C+ H8 D: `% k
0040318C E8 FAC20200 call qsr.0042F48B+ `, ~0 r& U/ O0 x
00403191 8D47 0A lea eax,dword ptr ds:[edi+A]
. F6 x5 s# a& q2 t00403194 B9 3E000000 mov ecx,3E/ s+ _& E% k: S2 y7 [
00403199 99 cdq4 |/ v1 D( ^* [- [
0040319A F7F9 idiv ecx
$ j" u- r W1 d N5 U0 J7 w0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]* M# `# s; y: U0 }) v- S
004031A1 894424 28 mov dword ptr ss:[esp+28],eax0 `/ x* P; r3 o0 O
004031A5 8BCA mov ecx,edx2 V- f/ |( [: A6 H$ f5 \, Y( T# _
004031A7 894424 24 mov dword ptr ss:[esp+24],eax
+ J/ K) s3 ^' c, H004031AB 894424 1C mov dword ptr ss:[esp+1C],eax5 y9 I2 P; ]) a3 j' _ c
004031AF 894424 18 mov dword ptr ss:[esp+18],eax
) f+ A" y& N' i$ w& M1 [004031B3 894424 14 mov dword ptr ss:[esp+14],eax
+ o _! a. I' A" G, I+ ~/ k004031B7 894424 10 mov dword ptr ss:[esp+10],eax
- \) l; h. p1 o: Q004031BB 8BC1 mov eax,ecx
% ]/ @6 r4 G3 B8 \004031BD BF 0A000000 mov edi,0A
1 p- {! ?1 u* q; x+ ~0 A004031C2 99 cdq$ C1 T# y8 a+ j# G$ d7 i2 i% |% a
004031C3 F7FF idiv edi1 J3 r* Q4 M2 A h5 h
004031C5 8BC1 mov eax,ecx
8 C( o, M+ C% @& M; ?004031C7 B3 0B mov bl,0B# L. _. T. o0 N+ j9 u& M
004031C9 0FAFC1 imul eax,ecx
% [2 b1 j. f9 ^004031CC 8BCF mov ecx,edi
% }7 M4 r% g5 c3 \004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
5 [2 v3 Q, s6 Q: F, f6 w004031D2 52 push edx S0 x8 F; [9 H N: ~- h# |3 V
004031D3 99 cdq
- ]( z* f8 v* F004031D4 F7F9 idiv ecx
" i5 j( a' g I( w' M3 x; G004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]/ h+ ?9 ~ ~3 ]$ V# M$ l
004031DD 2BC6 sub eax,esi3 o! D( [" ~6 D7 E& t+ ^
004031DF 52 push edx; M7 Z7 S# g- g/ P- {$ t! k
004031E0 99 cdq
! {; N1 R3 w) @7 J+ o7 l( E @% c004031E1 F7F9 idiv ecx: j: q8 M5 h" T' C3 |: w4 O
004031E3 8BC6 mov eax,esi
2 a9 z/ \% v/ `004031E5 52 push edx7 @* }8 s% k, B
004031E6 99 cdq
- t0 R% g% E) P& K9 p004031E7 F7F9 idiv ecx8 [8 f/ D& y# X. p- P) f9 @
004031E9 52 push edx, {% x' i9 t6 _' Z4 J7 y' S, N4 V
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
" F) F4 e0 _3 ?! K; Z- D, S# j004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
' H/ [* M' O6 O5 Z4 p- t004031F3 52 push edx4 ?! {# U; Q# t- X& X$ x& g5 F7 r
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893
# P& ~+ q) X! w* j6 E$ ?004031F9 83C4 18 add esp,18" t# v# H! x6 B* J
004031FC 6A 04 push 4
' b9 H, l* q* j0 S2 R004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]
" }& Z/ J) v x {+ W) }. I g00403202 6A 00 push 0% w: y1 y, B7 ^/ z* c
00403204 50 push eax
) }8 r0 s; M2 {& y4 i( {00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
& y1 V7 T" g6 G/ `- V. P1 _00403209 E8 D6530200 call qsr.004285E4
' J) M3 D4 u; r8 S# P( o* f4 }+ N; ~0040320E 50 push eax' D0 o- M$ ?% C5 d2 Z' b0 C
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
5 V- i, `, f$ F- ~9 E' A2 b3 f00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C
9 V6 I* u2 ~: k+ H00403218 E8 A7C30200 call qsr.0042F5C4
8 V& \; ]0 ?7 | @. \0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
5 z% O8 z2 t& |1 u D00403221 885C24 3C mov byte ptr ss:[esp+3C],bl0 |' t7 a" Q- j- M% Z* W
00403225 E8 61C20200 call qsr.0042F48B1 ]5 f2 {3 P1 R
0040322A 6A 04 push 4
7 k+ g6 l. j5 o0 P8 g0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]2 f" l+ R5 ~! m' i' r
00403230 6A 05 push 51 s4 i) S. R2 C8 f! S
00403232 51 push ecx$ E6 E7 e% \1 a; F
00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
/ L( D" z* S+ s6 e00403237 E8 A8530200 call qsr.004285E4% i$ R! u$ x( s0 M+ _; Q, z
0040323C 50 push eax* v7 G4 p9 n$ f
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]- B, b" L1 x( `; c( m. N
00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D
: B2 K2 r4 E4 x- c% D+ [, m00403246 E8 79C30200 call qsr.0042F5C41 @& G! A4 C& \8 g: }% x Q
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
3 ]7 q! C. a6 [# d0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl
! c& J. c5 X' G. S8 G( ^5 ]00403253 E8 33C20200 call qsr.0042F48B
0 ~; L" q5 x3 R! n9 {3 |00403258 6A 04 push 4
! L' J/ B* y6 v! y0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]& b0 q; _6 i( V. S. ?3 @! M" Q; N
0040325E 57 push edi
2 h$ u2 y" B! y! G0040325F 52 push edx
9 j- V0 X5 \$ |6 `9 t0 W6 ?- x00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]5 V/ M, V4 e2 H" d
00403264 E8 7B530200 call qsr.004285E4
; H. N, d& O6 H, b00403269 50 push eax2 x& w6 h$ k# ~/ {, L. u" M
0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]* J9 M" Z# \8 d- [+ m
0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
" r: D' K; j) s( ]0 L( u00403273 E8 4CC30200 call qsr.0042F5C48 z8 w5 C [) s- l4 V
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
( n$ d' V4 L* t& J2 T0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl! ~$ ^1 [7 s2 r, Z' R
00403280 E8 06C20200 call qsr.0042F48B1 b- j6 \' @& o# N
00403285 6A 04 push 4/ B: w9 Q$ P8 e9 t2 N$ e/ X
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]; k0 p- Q2 E, E% \* W$ k
0040328B 6A 0F push 0F5 d+ m1 o+ W. N" I% T% @+ T
0040328D 50 push eax& B: `9 x4 v; k* Z) g! O
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
4 W8 B9 j( O" C7 j00403292 E8 4D530200 call qsr.004285E4
2 M& e, c" L' R3 C0 Z00403297 50 push eax* o% x# T, z! t" J" n. s: ?8 C0 o
00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
V, C; ?& {3 ]( ^( \0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F) m* a$ i' o q w( [
004032A1 E8 1EC30200 call qsr.0042F5C49 s) E& y/ L+ I$ W0 P8 ]3 ]
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
; M5 I) M F9 K( P. b004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl P6 L2 K" ]. w( Z7 {3 t+ r
004032AE E8 D8C10200 call qsr.0042F48B5 y1 @* I E! |: E( _7 x: y; \
004032B3 6A 04 push 4
" G) e9 U4 }8 |5 x3 b- R004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]8 S2 W" Y0 Y, {, s9 D
004032B9 6A 14 push 149 J/ E; l) E& P1 e
004032BB 51 push ecx
5 f+ w+ W' h9 K004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
& G1 x. a$ K2 X7 p* { K004032C0 E8 1F530200 call qsr.004285E42 s- W* l8 j% a
004032C5 50 push eax% e" T* @/ T4 D! Q1 ^' c
004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]# c k5 ~9 I0 s0 w L$ r# [2 m
004032CA C64424 40 10 mov byte ptr ss:[esp+40],10) c1 w7 m: ]! n9 k) \0 P* ?% E3 R
004032CF E8 F0C20200 call qsr.0042F5C4# l" Z- S" k0 @3 n4 D! X) A/ j) L, U$ F
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]0 S/ h y- o2 s( b& U2 U
004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl
6 |+ m6 r+ v0 q! s* f* \% R( X004032DC E8 AAC10200 call qsr.0042F48B
9 l- u: J; o8 j) r004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI' K' f& s* b- b( c
004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
$ t$ ?0 \' j y% R004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
: s% x( a0 L9 L' b8 n, X004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL. n# e' r: k1 [5 D0 N+ ]
004032ED 8ACA mov cl,dl ; DL送CL
3 D+ r0 D: [3 k004032EF 3AD3 cmp dl,bl ; DL和BL比较
7 c( K' ?. K# T- t' E6 a4 w004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
5 E2 W3 t" A* ~- P' W; y7 G8 @004032F3 84C9 test cl,cl8 i- U1 `) d W2 V* ?6 U/ r1 |
004032F5 74 16 je short qsr.0040330D2 @& \6 P6 i! R) W0 F' ~6 ^) W
004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL
7 Z3 m r; c" F2 ^004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL" K$ ^5 g! n* q0 Y0 N
004032FD 8ACA mov cl,dl
& H7 k$ u8 T9 g/ \$ R004032FF 3AD3 cmp dl,bl ; DL和BL比较6 @" K4 V0 k# v: Z3 O5 w
00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
8 ^' t: }9 R [ Y: K2 C$ B00403303 83C0 02 add eax,2 ; EAX加2
7 i2 I6 Q& K: \, l00403306 83C6 02 add esi,2 ; ESI加2' k4 B/ [8 U! J
00403309 84C9 test cl,cl6 A0 e" A9 C' p3 ?5 a
0040330B ^ 75 DC jnz short qsr.004032E9
% K8 C* i, O* H7 w0040330D 33C0 xor eax,eax- M9 S( z6 [1 M- a7 [5 F
0040330F EB 05 jmp short qsr.00403316
' @5 u; ~0 n, E$ ^) w K7 t00403311 1BC0 sbb eax,eax
2 p3 B5 s$ l9 O6 E00403313 83D8 FF sbb eax,-1) M e: s: f( D' h, `+ S, j- g" X
00403316 85C0 test eax,eax
: I$ w5 R: Y5 N! ]- n( }5 v00403318 74 0E je short qsr.00403328, A' T' s* K& l2 o) X$ X% x/ V! ]3 r4 X1 F
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A' J0 U# T; j/ _8 W
0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
! j+ x( O( Z. l" z, n* t00403323 E9 F0000000 jmp qsr.004034181 q' Y; L: h4 M5 @6 ~; _; x: \
00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
; l9 N0 j' ?' e8 R) A9 M1 c3 v3 m4 V0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]' Y4 B; E2 c" I
00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]' j) G. y; L: L" Q, j
00403333 50 push eax
F3 z! X" D5 i1 x3 s00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX# `$ e+ Q1 t) S* M1 ~8 ^' R" N
00403339 50 push eax
( z- G9 |: {) }* i# K0 c0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX
5 e/ m! A2 I' f x0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX$ k% r9 Z! K5 V" ^; ]
00403343 83C4 04 add esp,47 l' Q4 J2 M1 m) f4 O d. Z
00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI. }& M5 r) ^7 B [) Y4 ]3 t \! ]$ w
00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]
- x% I( A |% @0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
Z# r' k2 D; @% \1 X* A& _0040334F 50 push eax
% h8 o9 J7 b, j00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX9 m. v6 u. h. \4 J9 W# [
00403355 50 push eax
- O/ h$ \6 r: @; d. x. x00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX3 t% \- ?8 _% b. y
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
, }# m+ s* s, G: Y) }; g( G& y6 m0040335F 83C4 04 add esp,44 G8 [( E/ I Z5 e
00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI9 `5 m' t2 X9 s$ N% P% P9 E( A' _; I
00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]5 @7 T. i/ Y7 ]& \& n8 c$ ?
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]
$ Y- {- [2 |5 z: q2 u( j0040336B 50 push eax% i. [6 Y' H: O/ | ?, b0 A' R* [
0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX/ z+ C& {5 [3 X% c
00403371 50 push eax3 B: a, T$ E2 ~, S4 ?# I# o2 M: ^
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX0 C7 x4 v9 f# H$ {9 a$ b0 t
00403377 8BD8 mov ebx,eax ; EAX送EBX7 `# f7 H, c7 h* H( [
00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX' r6 p7 l$ b6 S" @$ s& J4 o9 W
0040337D 83C4 04 add esp,4+ I+ h. E* t/ I; r8 y' u% ]
00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
2 G2 f |% }% Y; ?0 j+ p3 N6 f8 [00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]
( `, r- F7 R k' f! f& o00403387 50 push eax3 S' m9 i' Z8 {
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX
+ V% J, N$ M$ f( i0 @' y0040338D 50 push eax) e9 J/ p& z4 B4 O
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX Q" f. c$ \% F
00403393 83C4 04 add esp,48 ?3 B/ _, P+ m5 H3 \' d o
00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]6 d4 h. P8 I/ j2 O! p
0040339A 8BE8 mov ebp,eax ; EAX送EBP
9 `2 q/ t5 f9 Z$ m8 }2 M, }; \ X) ]0040339C 6A FF push -16 J5 c! W( N" e; i8 Q
0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX" N9 Y( x, O t4 U, k
004033A3 6A FF push -1
: e3 ~( k! b- I& D004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
( F5 ?& S' D, ?) r' }004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
# x V; o- n, J% @5 _5 c004033AE 6A FF push -1
2 u3 ~# |8 g* y% {3 h" U) D004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX
& r* M, ]6 R3 w- ^" d/ w5 T: D6 b004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX
5 \& c$ p8 r K. }004033B9 6A FF push -1( I" R0 v5 x2 R; o" d
004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX
0 Q- I0 v% I$ q# D7 ^) g) p004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX
3 \/ @$ c& M3 u9 E" W# a2 L4 M0 F004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
* L8 `0 S ^' v+ n8 X. a004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
' l8 b$ i) F# j) |6 O% n/ ~004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
4 u9 c6 P. @1 w! L004033D7 D1E0 shl eax,1 ; EAX左移1位
+ \6 p5 I! B7 q# b4 ]8 u2 c% p004033D9 99 cdq ; EAX扩展
6 v; }6 }# X7 g9 f' G& U+ G004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
/ [7 x; x: A) M004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较% T# l G# c% p* O5 b% K! O& k
004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)7 N! h) q* q: s5 p) J
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A
5 X, ^4 k+ `; a2 G2 _004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]' A5 R5 r5 ^8 c' Z5 Q% u
004033E9 EB 2D jmp short qsr.004034181 P2 f, p; H" `
004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX7 U3 r+ b" A" D/ m1 w# U. x
004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E26 `) m% w5 p0 f" c8 ]6 _
004033F7 99 cdq ; EBX扩展* \* B; K8 D9 l' n' Q
004033F8 33C2 xor eax,edx ; EAX和EDX取异或
& l, @( K1 P4 |004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX1 W/ z- u+ h! l- S, r; z
004033FF 2BC2 sub eax,edx ; EAX减去EDX
# W. ~" z8 F9 a# b- U00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]0 J1 f! O$ N. S
00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX& f, z/ B% z0 H1 N: v, u1 C
00403409 99 cdq
B& w$ A& q: j$ Y- A- e0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中) n2 G7 P0 d, J5 ^1 ~
0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX [' n ]3 ?! I8 a) s" y
00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较
- @% E$ f1 d. e00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)/ E1 ]) d+ o" t& T, Z
00403418 E8 6EC00200 call qsr.0042F48B ; 2 U9 @$ c c( `, P, @
0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]: N2 v( i$ |- f) V. k7 z+ W9 Y/ x
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9
/ m2 s1 h* P V3 s1 ^00403426 E8 60C00200 call qsr.0042F48B3 S3 [9 g( u+ |0 z
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]0 k& C3 b3 M- h* ^& Z6 c( f3 j
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8" _6 b' P/ P/ [/ b" R. j; [% Y
00403434 E8 52C00200 call qsr.0042F48B
. q2 P8 Z; t) k3 A00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
3 N8 X2 p6 q- l5 x0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7& h9 G$ J: Z7 r; Y( t) |
00403442 E8 44C00200 call qsr.0042F48B
# u7 k8 q$ B2 Y, S: L! i00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]& A6 Q" c0 `. P% P; h3 T1 ~
0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
; P W5 O7 M! N/ ]% w) p00403450 E8 36C00200 call qsr.0042F48B
( \4 `% }$ a- J; M00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
/ A& G, f( ^2 t1 P00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3
, {# K: h) _" |" `' l8 {" K* G2 }0040345E E8 28C00200 call qsr.0042F48B
7 }+ O$ h7 u3 Q00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
' b7 U4 M9 A* J+ C00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
2 O; @5 R. h# R2 x2 `) j4 n4 ^0040346C E8 1AC00200 call qsr.0042F48B
1 d" p' c1 b1 P% d/ F00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]9 o! W6 T1 i- j) o
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1, w4 D/ T/ o% G' o) `0 E3 \
0040347A E8 0CC00200 call qsr.0042F48B$ _$ J' I) b3 {- D; e- |# a
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]) ^ |. y6 \3 Q. w
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],07 \( j/ L2 n/ {, R, `5 O
00403488 E8 FEBF0200 call qsr.0042F48B
1 c5 M7 ]4 v1 O) z0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
; S: P! i: a( U+ ~ g00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1( c0 s2 k! G; ^8 o. M
00403499 E8 EDBF0200 call qsr.0042F48B! y4 l6 ~0 [; [9 r. Y$ C" B5 x$ I
0040349E 32C0 xor al,al ; AL清0' Z- M5 B4 n7 |$ ^' n
004034A0 E9 88000000 jmp qsr.0040352D0 O+ E7 \0 ], d4 `$ L
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~
' u, t' X( M9 o6 x2 Z4 U; T004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]4 Z3 S3 r. ~# M# R
004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9( V# S( {+ {0 N- @1 U8 P9 u
004034B3 E8 D3BF0200 call qsr.0042F48B# c0 l( {8 \9 Q
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]- U3 V8 x, ^9 c; l7 o" ~
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8, e8 |: t s' J: b4 S
004034C1 E8 C5BF0200 call qsr.0042F48B4 p/ o! e- M& x$ E9 E( s
004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]; O" z6 |1 ?6 |+ Y, x
004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7. h. q6 X# f8 x/ v5 d
004034CF E8 B7BF0200 call qsr.0042F48B9 R2 g1 e) p- u/ w" {7 g0 o! K+ Y; F
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
7 b* }# u# W% y; S- T/ y! B004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6
3 u8 f2 P, H9 F004034DD E8 A9BF0200 call qsr.0042F48B3 {8 ~4 v& D6 x
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]6 ~. T- w6 V+ e& W3 P
004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],33 K- P/ R7 ^2 t! v
004034EB E8 9BBF0200 call qsr.0042F48B
) E3 r3 Q; i6 g7 D( H$ a4 g, _004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
0 ~ a N4 p6 R- C5 ~004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2' G" O9 J& z; {1 [% M3 a
004034F9 E8 8DBF0200 call qsr.0042F48B* ~+ ?) d y/ @% e
004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]5 a( s* d+ F: k' ?/ j
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1
* o% @6 H$ B$ {* ~/ W& x6 T0 N4 C% c00403507 E8 7FBF0200 call qsr.0042F48B, ?8 m" { y! g2 x0 K8 `; j
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]. s7 m$ p, G6 y8 p) k6 f! M2 P
00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0' V) x& |8 x6 C8 @0 E5 v
00403515 E8 71BF0200 call qsr.0042F48B9 l- }8 S- ?) L
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
9 n" ?2 y; ]& ~: Y! Y! g/ V0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
$ A2 e; V+ P6 d2 o6 v" U/ j% p7 Y00403526 E8 60BF0200 call qsr.0042F48B- R# b; u& h! K
0040352B B0 01 mov al,1+ r, P4 m( {; K6 K; v
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
4 Q( I% W& l5 W1 |! P; {00403531 5F pop edi8 ]- K2 J( p; [% i; y3 |2 f. H
00403532 5E pop esi
' ~' |- m+ h8 N R) v9 @2 J$ c5 x00403533 5D pop ebp7 w0 G! B3 Y6 _7 R5 q( ?3 B
00403534 5B pop ebx
$ W3 _" B/ w9 }" u( k; ?+ n) k) a00403535 64:890D 0000000>mov dword ptr fs:[0],ecx+ A% c+ G; L, C8 u/ B2 A/ m1 P
0040353C 83C4 30 add esp,30
/ M7 k. [5 t9 |- a1 W2 [0040353F C2 0800 retn 8
! O+ w* ^6 D4 i( h) K--------------------------------------------------------------------------------+ ] Z1 L0 f. O6 @7 f
【破解总结】
M! i3 G& M1 ^$ I5 i 用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
* F1 H- b Q/ m用户名:yijun
) u4 [) O3 e7 j' x, u* ~. ?注册码:4893*7777*3726*7777*0529
/ ?# d! s) R5 @% q--------------------------------------------------------------------------------
/ o; e9 U! I4 x; R/ o【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡