|
|
|
【原创】破解Quick Screen Recorder, T: v2 h, J. j, p( z% `' x0 C' U
【破解作者】 yijun$ `* p B6 O8 L! C, I5 n
【作者邮箱】 [email protected]: z; ?2 i0 k, Q4 C4 z6 [
【使用工具】 OD,PEID) T$ K+ H" W0 ]; n. L+ a
【破解平台】 WinXP; ^* q# b5 n+ c4 Q1 P0 G
【软件名称】 Quick Screen Recorder
$ |% J& I/ I2 B; X H( J【下载地址】 天空9 L6 f. f$ @, U0 _0 ^2 ^
【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
& `! b4 [- K, P0 t1 o. b1 a【软件大小】 540K
. I4 H! @1 R" x: u' l) r D* K【加壳方式】 无1 e) w9 z* g P$ I( A/ ~- q
【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:), U, {3 w; z$ X ]! I
--------------------------------------------------------------------------------
) S0 W! e1 H: q6 J6 c: s3 r8 _% N" U【破解内容】1 l8 H" _. z. b! R) f0 e" ]- }) }6 e
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:0 \# F) Y8 F' c6 R; C0 {% l
00404C69 55 push ebp //在此下断
& I, F/ x$ S" W! F00404C6A 56 push esi8 w- J- u3 ^4 x' O' Y4 d6 C! e
00404C6B 57 push edi0 q5 Z- k. D: x* }
00404C6C 8BE9 mov ebp,ecx0 {. u7 V% G, K# v
00404C6E 6A 01 push 1: c6 c# l* w5 A2 w, C6 K% | j" _
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名+ b; V2 B Z3 u/ D2 T0 D
00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]
( v1 ^% Q: i, f9 {. ?5 z0 }00404C78 8BCF mov ecx,edi8 D3 f2 V9 Q, S- o, Q
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码
7 Y1 U3 l8 k/ I" }00404C7F 8BCF mov ecx,edi
: V% G* c+ B' M S8 x00404C81 E8 A73E0200 call qsr.00428B2D
: V3 y# [. {( Z1 |00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
( m4 n0 `6 m- p: [- v& p% ?00404C89 8BCE mov ecx,esi$ r* _5 R" G+ O% m
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX+ e [8 D2 s+ X/ Q
00404C90 8BCE mov ecx,esi
$ Y" ]: d6 [1 l! x0 R& h$ L00404C92 E8 963E0200 call qsr.00428B2D
, Y6 d6 I" ?& Y5 s00404C97 8B06 mov eax,dword ptr ds:[esi]+ L5 l. U% R) j! L Z) [# Y
00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],22 X" x$ v T, h9 u0 j
00404C9D 7D 26 jge short qsr.00404CC5
; a2 g: G! ]3 o% y. z00404C9F 6A 40 push 408 R/ t% w6 Z3 ^
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"9 | Y6 N' K; U/ f7 e
00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."0 u7 t0 `6 \) W# h1 ~6 h; @
00404CAB 8BCD mov ecx,ebp
/ I: h4 {' K' t5 p* y, n( J00404CAD E8 C3840200 call qsr.0042D175, K( e, c2 _' l/ @- X& \. `
00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
. \$ B3 h, b w00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx3 X) Y1 J: x( a5 b0 F
00404CBD 5F pop edi
$ n3 \& t/ D; E9 @0 s00404CBE 5E pop esi6 F3 ?9 k/ F9 q3 K( F- Q
00404CBF 5D pop ebp
$ U9 ^5 T. l3 A- l00404CC0 5B pop ebx0 v" @$ ~' X. \. H
00404CC1 83C4 18 add esp,18' t; Q% y9 u0 w. |9 ?
00404CC4 C3 retn. f% ^# f" X2 m% E3 z
00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
" [% A8 v/ `9 U4 X9 ]6 B3 f j1 I00404CC8 84C0 test al,al5 x* N7 f3 {6 v7 k0 I1 Z
00404CCA 0F85 1C010000 jnz qsr.00404DEC6 A! N. A2 X! _; T
00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
! A6 l3 u7 X7 w9 z# S; l00404CD4 E8 87E3FFFF call qsr.004030607 ]: F, J: b9 l+ V% v; d
00404CD9 51 push ecx
; Y1 G& R0 C# S00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0 t4 K2 r. h& V! e
00404CE2 8BCC mov ecx,esp% P6 ^ q' t# o. B
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
" U8 l$ E$ [5 h! F; @00404CE8 56 push esi
, w$ O2 \# v- h: Q& O0 V2 p9 Y00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0+ ?+ J& t2 A3 ?" W, C3 z% P$ X
00404CEE 51 push ecx
) q+ a4 Y! r) x$ e5 L3 }; x00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1
& w% J! U. X/ k7 c' U00404CF4 8BCC mov ecx,esp
4 c3 e8 U: C# t00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
0 ^ i& S4 e- ~( o00404CFA 57 push edi
l9 F* A% H6 F; @* U00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0( F: ?3 c1 w2 S: N
00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]1 Q+ i+ ^- |& t1 B) N
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],04 Q3 L/ o( l8 B: ]( b7 |7 @0 _
00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~2 V F) u1 c0 D1 m4 B
00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~
! E/ w/ O/ Y% [" Z7 z5 \) O" J00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~- L7 `4 c. w2 i+ {: S5 w* i
00404D12 6A 40 push 40: }6 {2 e0 X( E: N U* g$ y& f
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
3 i& T1 B9 H6 q# i. c1 E" s! s0 D0 n00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."* T3 I9 n/ d9 d
00404D1E 8BCD mov ecx,ebp9 i0 @& ^! Y4 f J4 B: m3 S
00404D20 E8 50840200 call qsr.0042D175
9 C2 G- R" V8 x; @00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
; O0 u' _) @: ~6 O2 j" W00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1. D ?$ {: `8 ]
00404D31 E8 5AE3FFFF call qsr.00403090
; n- U! G1 Y, n, _1 o5 m00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]. F' v* b6 |# X
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
: C2 w( x3 H& x00404D41 5F pop edi9 G, g: v' r6 L" r% j3 p
00404D42 5E pop esi; Q4 D( M; B# y$ l0 l" l- J6 p
00404D43 5D pop ebp
0 X* V; d2 g s Y, S# L00404D44 5B pop ebx
. ^) T a" g4 [! L5 K00404D45 83C4 18 add esp,180 C3 _5 S( L" u) G% Z y
00404D48 C3 retn
8 F4 q. j/ y7 e8 E* q*********************************************************************************************************************************************************
d5 q) O" Z% g5 U& _跟进00404D09处CALL来到:' L6 Y/ O- O. v
004030A0 6A FF push -1 //一路F8下去~~~~4 d7 v, O. }9 V3 J4 m) b
004030A2 68 C88F4400 push qsr.00448FC85 o5 R: N! T& r1 f- d
004030A7 64:A1 00000000 mov eax,dword ptr fs:[0] g3 t7 u+ P' m& E; @
004030AD 50 push eax
2 ]/ ~1 {% \5 U004030AE 64:8925 0000000>mov dword ptr fs:[0],esp! m. y2 [3 a( Z' V0 @6 k: N" d' N
004030B5 83EC 24 sub esp,24. n% _8 l. O' z
004030B8 53 push ebx, o; r* X! D o' p9 J
004030B9 55 push ebp
2 n8 D" _/ _& n8 P004030BA 56 push esi
8 C6 N& T X' C8 G004030BB 57 push edi
. n( T* Z! G) r004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"& u# c6 a- v! c0 J% F
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
3 |' [( K' x& \7 c9 q. W004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1
- l8 O. k( _; A: f( \. A4 Q004030CD E8 27C40200 call qsr.0042F4F9
5 s' M% a0 N& m% k" c& @004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]/ n5 J' O3 i. ]' Y# g, ] L
004030D7 894424 2C mov dword ptr ss:[esp+2C],eax# B8 A1 E' K6 D% x! p
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
+ L5 F2 v% r. o2 i8 w# g# W7 u; d) B004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],37 I5 g! A$ ]# z! ~
004030E4 E8 905A0200 call qsr.00428B79
9 f* ?* y A g' C004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
' w, P( g1 v1 ~& a9 T004030ED E8 3B5A0200 call qsr.00428B2D
0 w# ], r* ]) f H004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]( ^6 T9 B, `1 X
004030F6 E8 7E5A0200 call qsr.00428B79
( R0 c# t) H5 Z( ]004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
* N( f0 b3 o' ~/ d6 G004030FF E8 295A0200 call qsr.00428B2D
9 A" q3 m, N s00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]
" D& k. G( \2 B( k, v+ d4 {00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
9 N8 Q4 C- w1 c; r9 g0040310B 83F8 02 cmp eax,2
* Y/ N- V+ E7 {5 I0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳* {& y9 V P2 [" u
00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]/ Z; t& M( U+ m3 ]1 U9 p( p- Z& C
00403118 837A F8 18 cmp dword ptr ds:[edx-8],182 o/ i/ o8 k) ^+ d# N0 H) n
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳
. Z0 f1 y+ _+ ?4 s00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
5 J% N! M4 N7 O9 u00403126 6A 01 push 12 a& q; ?, D8 E
00403128 50 push eax! Z" J; x, J2 F+ g6 X
00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]! }* D! S2 z$ e. f3 U0 W
0040312D E8 C4550200 call qsr.004286F6& f' n" ?" j0 Y
00403132 8B00 mov eax,dword ptr ds:[eax]6 @1 o) H4 n; C2 l# w2 p1 o1 G5 H7 E
00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
( V- U0 w6 ~" z4 t5 ]5 Z9 F: s% U( o00403138 50 push eax% T7 D0 d: {$ A' h. T
00403139 C64424 40 04 mov byte ptr ss:[esp+40],4* p3 Q5 T4 D& h9 \1 w- o6 Q
0040313E E8 4D560200 call qsr.004287905 ~( i, A. o- B9 A
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
% Q& Q2 H* j, ?* x! Y i00403147 8BF0 mov esi,eax; t o9 ~7 I1 b5 D
00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3
( }/ `( `# E* f" h! _0040314E E8 38C30200 call qsr.0042F48B8 o$ q1 m0 B3 |0 [2 m Z) r
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]9 X- [) d# f, G
00403156 B9 3E000000 mov ecx,3E
$ v- ~1 _( w, y+ q% _+ N0040315B 99 cdq7 j' A6 G3 c2 J$ _: c
0040315C F7F9 idiv ecx
+ |: i, L; N+ H1 M r/ Q4 F0040315E 6A 01 push 1
* l8 M* p4 X) [00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]3 W3 N; N$ z; A$ t( v# D
00403164 8BF2 mov esi,edx. P1 e' h9 Q3 ]2 r5 D2 C
00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]! R+ |* a) j Y6 ?6 p
0040316A 52 push edx. m% ]; r/ {" F5 _) T6 ]
0040316B E8 0A550200 call qsr.0042867A# P! H8 k1 C! r2 F; }% i
00403170 8B00 mov eax,dword ptr ds:[eax]" {" ?# j9 y" t- a/ ^" _, c9 J
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
% q8 {1 k# f! u% b3 f% ^) \" H00403176 50 push eax& k8 x3 f' X* O& w j# k' a$ W+ \2 H/ F
00403177 C64424 40 05 mov byte ptr ss:[esp+40],55 k) U& B, D ?7 K! Y. x
0040317C E8 0F560200 call qsr.00428790
- O& _; P" s* f j3 c9 n+ J& r00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]. c4 z# k1 t8 w( C1 c
00403185 8BF8 mov edi,eax
( I. ]8 p3 N9 d# N, Y' v% \00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3/ i0 R6 Y+ `% T# p
0040318C E8 FAC20200 call qsr.0042F48B
1 F6 r4 x T8 R4 W. @00403191 8D47 0A lea eax,dword ptr ds:[edi+A]' m+ K6 O: b1 O
00403194 B9 3E000000 mov ecx,3E
2 A H, e& t1 ?7 ? b00403199 99 cdq
) i" A. g* u5 } }2 X" f0040319A F7F9 idiv ecx' B8 L; X& A( {0 u
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]3 J" K7 \: r/ i# l7 f. v
004031A1 894424 28 mov dword ptr ss:[esp+28],eax
0 S; `8 `+ F- ~6 e/ y" ^004031A5 8BCA mov ecx,edx7 ^' P% Z. m1 q2 f' U& O
004031A7 894424 24 mov dword ptr ss:[esp+24],eax( I& f( F5 r) e8 Z- i$ Y1 O5 R
004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
" u" H9 S, m; ]9 i004031AF 894424 18 mov dword ptr ss:[esp+18],eax
! r1 D4 |, [& j' Z% z* ?6 X% [: L5 t5 U9 X004031B3 894424 14 mov dword ptr ss:[esp+14],eax
/ N& F( J( C1 [! I9 r004031B7 894424 10 mov dword ptr ss:[esp+10],eax5 i7 ?7 r% A0 O/ N& y
004031BB 8BC1 mov eax,ecx
! F8 \( A, E" R004031BD BF 0A000000 mov edi,0A
- g' q! L8 P' C' O5 S0 a004031C2 99 cdq* q) a( b8 `+ @: q7 o
004031C3 F7FF idiv edi
- D [& `+ {$ `9 U- Z004031C5 8BC1 mov eax,ecx9 A4 O" b$ G% S3 j" X) \
004031C7 B3 0B mov bl,0B
$ I8 s# i1 l4 `, X+ E! s' |004031C9 0FAFC1 imul eax,ecx
4 h n3 W8 Y9 z# H$ i1 h/ _004031CC 8BCF mov ecx,edi) B* k$ e0 U! h' w
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
: g/ U+ H8 n& B) B004031D2 52 push edx
! O$ V4 C6 g2 p4 C004031D3 99 cdq
1 a5 V' D8 J- l% b* T' \004031D4 F7F9 idiv ecx6 H e9 [; }/ n. _# ^
004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]5 X$ P& R4 k9 k0 C3 s
004031DD 2BC6 sub eax,esi
" J& r6 p) _+ w+ e. w! }004031DF 52 push edx/ k' t( R# p2 r! N4 j2 Q
004031E0 99 cdq/ l/ B% x) e; P4 q% l: i
004031E1 F7F9 idiv ecx+ o; U/ O9 s; i
004031E3 8BC6 mov eax,esi1 a9 a/ ?: H8 Q
004031E5 52 push edx
. q2 U, j/ C5 N* l& a& H004031E6 99 cdq5 l: |9 k9 l' N9 Y( h9 F6 a( t
004031E7 F7F9 idiv ecx
' }/ L4 [% p) f3 y! d004031E9 52 push edx
3 P4 v( |* T( J4 O$ A004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
3 U m1 N3 ?* F" f004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"' W9 \" b% Z( h2 h! c" ~; U2 h
004031F3 52 push edx
& t( t3 Z- d3 c; \ U004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893. o+ R) f( r, a* f
004031F9 83C4 18 add esp,18
# T" _( c, G$ I/ c) N' V004031FC 6A 04 push 4! ~# i4 X2 s0 T
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]8 j$ F) |3 Y$ `; [
00403202 6A 00 push 0
. K" Z% @4 i4 A00403204 50 push eax
9 t1 d: q) A3 c7 D, C8 [7 S+ z00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
1 n! u$ i, W( k; j' g9 |4 v4 P00403209 E8 D6530200 call qsr.004285E4
- H% T+ c- y8 _" V' d/ Z8 z$ _0040320E 50 push eax8 y6 H4 Q8 B3 R4 D
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]/ t, D5 }+ `9 p) `1 a7 H! _
00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C
/ d9 {: A' t Y9 l9 p# O2 V00403218 E8 A7C30200 call qsr.0042F5C43 D- q1 S4 o! d& l5 h
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
* k/ {" Z% h4 | U4 ^4 U8 g00403221 885C24 3C mov byte ptr ss:[esp+3C],bl
# k. D6 p! d2 m% Y% C00403225 E8 61C20200 call qsr.0042F48B
! i) V" P/ `6 a+ M z* y0040322A 6A 04 push 4$ U/ Y) w8 X' d; R) V7 K+ {0 x0 o- D
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]4 t+ d/ N( f" G
00403230 6A 05 push 5
Y3 j/ ?* Y! J! {& `2 x+ {# @00403232 51 push ecx& y- o' x; R. {4 a( X3 k
00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]# w9 }0 R2 L& L
00403237 E8 A8530200 call qsr.004285E4, ?; V) }/ \/ r! W3 P- m/ z
0040323C 50 push eax) P; x, f: y9 N* s
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
4 G/ v5 |; s# k0 n0 J) ]2 }00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D0 L2 J; H( V6 f/ m" z1 a
00403246 E8 79C30200 call qsr.0042F5C4+ B( ?% w9 @0 k" K5 n$ q6 V
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
+ b8 h' Y8 _5 x: T0 M1 R2 v! T0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl2 Q6 `1 v r$ Q
00403253 E8 33C20200 call qsr.0042F48B) f" w3 S5 }8 ^' h/ @; V
00403258 6A 04 push 47 U/ V3 {7 h; p. [8 C8 a
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]/ B/ l8 J" S; {- o* z3 s: y) L. ~
0040325E 57 push edi0 O6 g6 x* k7 M7 `
0040325F 52 push edx
% S ]; d, f3 S% r, U, ]" U00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]" p8 x; x, q8 ^% b* G4 Z/ R& _4 @
00403264 E8 7B530200 call qsr.004285E4
( Z0 D+ u& k! l# p00403269 50 push eax
3 P1 W8 F# ^: Q/ K0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
4 @7 b( x5 q! `' [: s V+ H) P# {0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
, F8 d6 A6 i& E& P00403273 E8 4CC30200 call qsr.0042F5C4
6 o$ `+ i" f# t0 {0 k2 Q+ d00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
0 v# @4 b% q4 s& m0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl
+ z4 r8 W; \1 c+ p3 ^" H00403280 E8 06C20200 call qsr.0042F48B
! A" X) g' }/ K& a00403285 6A 04 push 4
, v2 c/ v4 O/ \( ]00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
8 [7 n9 ~$ J$ V1 v! {" ?! a0040328B 6A 0F push 0F* |9 y: F3 B3 u, `: e
0040328D 50 push eax
! ?7 u: i% K" r4 Z9 n) l' X3 R( R" @0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
, o2 n8 m: @* \% S/ r' j& l$ R7 K00403292 E8 4D530200 call qsr.004285E4/ a' B9 l* Y5 S* [; N5 i! Z5 @+ o
00403297 50 push eax& h1 D& k D8 K V+ o8 Q
00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]* X! c( K: k# @$ v* k/ q4 p5 {
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F) a6 _+ q7 y! R0 o
004032A1 E8 1EC30200 call qsr.0042F5C4
# A, A+ O1 E. u004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
3 Y" `3 b$ E" a$ Z$ @# L004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl
Q6 k' |4 v8 u4 s" {. _004032AE E8 D8C10200 call qsr.0042F48B; i8 s: q* o% H- M
004032B3 6A 04 push 4- U9 b% _- x3 C( ~# k Z$ W6 S
004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]2 r; ^5 h/ E4 u1 L
004032B9 6A 14 push 14* q; { v7 |+ K+ ~, W
004032BB 51 push ecx' Z9 `* F& }( {5 P. C6 j' ^1 z
004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]0 J( r# ~- k% c# p2 g" G
004032C0 E8 1F530200 call qsr.004285E4+ {* c' _# d3 r! ]6 K9 F: ?2 |9 X9 A
004032C5 50 push eax
; f% `) w( b& K( B004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
2 n. I. F9 }% ^, X004032CA C64424 40 10 mov byte ptr ss:[esp+40],10 j& N i4 ^* n' n/ L& N# C
004032CF E8 F0C20200 call qsr.0042F5C4, q4 V' k3 f( a* ?3 e
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
S& m+ x& p( @004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl
4 K) q- e5 q$ |2 {$ R004032DC E8 AAC10200 call qsr.0042F48B
* d2 \2 I' S& z9 M' g, g* n004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI7 e; _& u7 p5 [: o; E' t0 S& S
004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX0 b" {# U, _3 Z( \/ g6 b
004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL; }+ [3 [+ f7 c9 h, r2 c
004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL
/ [1 f1 L+ q$ |' I" f; @5 j. E004032ED 8ACA mov cl,dl ; DL送CL& r% `! U( T% s3 B8 h$ f) q& v
004032EF 3AD3 cmp dl,bl ; DL和BL比较. q& D% Z# b, C3 e$ D2 k
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
9 Y* I5 R& o* t1 G) u7 v2 v7 E004032F3 84C9 test cl,cl. t$ x i# [# w- I* R. K6 |& [/ _& j8 _
004032F5 74 16 je short qsr.0040330D- X) s& v7 }9 o3 s' I, g' f
004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL2 W5 c3 H5 T! p
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL
) H/ J! r9 J5 u) G, d004032FD 8ACA mov cl,dl
# Z/ z# N8 q, }7 P/ Y004032FF 3AD3 cmp dl,bl ; DL和BL比较
2 t0 R8 R; L) b& j5 T00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)! Z5 h" P" ^1 [
00403303 83C0 02 add eax,2 ; EAX加2
: d8 v2 C% F5 s7 x00403306 83C6 02 add esi,2 ; ESI加25 I7 ~2 u2 u5 t$ P
00403309 84C9 test cl,cl3 m) V$ L; m& `- `' ^: f e% p8 K% y
0040330B ^ 75 DC jnz short qsr.004032E9
$ d/ B& Z5 B% a* ]$ j& q) Q+ k' |0040330D 33C0 xor eax,eax
" z" _2 u1 Q' q- o1 b0040330F EB 05 jmp short qsr.00403316) O# ]+ [& U. u& T0 B
00403311 1BC0 sbb eax,eax; H+ T! [) X1 K- c5 h5 ?* u+ ^0 v
00403313 83D8 FF sbb eax,-1
) ?( x7 o- H. c v) r2 q00403316 85C0 test eax,eax; C, i( S9 E5 j' d, {! ? Z
00403318 74 0E je short qsr.004033281 [+ z" a" W7 `9 S
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
' E3 F' w# ~/ w7 D7 y/ q0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]4 }: p0 r! S% e$ J
00403323 E9 F0000000 jmp qsr.00403418& \8 V1 ?/ `' ^2 p: o5 S0 y |
00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
& r9 o4 {' S$ h- E! i* J6 C0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]) ?% l5 B. I" I2 y; Y' D
00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]( U7 S) J, \/ G- F! X4 W5 t
00403333 50 push eax o( y% t& _' J. c8 x4 j6 T
00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX
& o8 H; \ _0 k" I- Q6 g) ]00403339 50 push eax4 X5 M! I3 P5 q; J& u. Z/ R
0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX2 A. \3 k7 K- j3 k) f+ k6 l' D
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
9 ^# [. y8 Y" {9 x# o- c; Y' ?0 W( z5 z00403343 83C4 04 add esp,4
7 n& [( l+ P5 S5 t: b% {- w2 g00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI: M6 m! {4 j: W) g3 i
00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]$ ]8 n6 Y- L- L
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]5 T, Z: J) F! r5 {9 O
0040334F 50 push eax
' O3 A6 X, I5 O; _' W00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
4 q. m7 Q/ _$ m% y! ?9 U* M6 ~; B00403355 50 push eax/ n7 z& c# w7 A1 L
00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX
6 _/ i! \3 E- e7 Z# D0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
. u* J/ U- t% ^7 {2 F# p. ^1 ^0040335F 83C4 04 add esp,4" q0 ^. I0 S( `' V
00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI
! L) X0 Z! T+ d4 f9 G5 Q00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
: J: {/ M, F; M4 C00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]
4 B/ o3 N2 ~' u" J# A0 h- K; W/ p( d- r0040336B 50 push eax
u9 v2 `/ U8 r0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX
* h0 p- B: z5 o- o1 r: ]1 Z, n00403371 50 push eax, ?& ?* ]6 a* v* z5 e/ w
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX" B$ ]7 R8 ]/ X4 ` Y
00403377 8BD8 mov ebx,eax ; EAX送EBX$ V3 S1 r# |4 p5 d( s# N
00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX
3 z- ]6 h8 F. b; c0040337D 83C4 04 add esp,43 \( T6 x6 j1 c/ U7 H
00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
" u4 L; K8 j! b. q00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]! y! \1 ~( g% }" t3 {$ ]1 n
00403387 50 push eax) k' p7 `2 b' a# t. j8 {
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX' Z7 U3 d8 K! F1 l1 j
0040338D 50 push eax7 o6 Z* J2 Q' W4 q' b
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
9 x3 j' ?( t- S00403393 83C4 04 add esp,4
% T7 g" o# f# h0 x00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
# v0 ?0 c/ G. p; L" d. [0040339A 8BE8 mov ebp,eax ; EAX送EBP
0 f* ?$ o' ]/ n1 a3 Z$ a0040339C 6A FF push -1
7 l0 f( y6 h) p! D+ \. J% t! [0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX
. U5 f& E0 N0 W4 @004033A3 6A FF push -1; t5 o- W) a1 f3 X6 L0 y
004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
" [2 u: b& R& U7 p7 L# w( h8 v004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
* b" ^1 m% ^& Z004033AE 6A FF push -1
( _0 Y6 L6 g3 s" D004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX
& l& p& _7 P* `& e8 r- W5 c7 L004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX4 ?6 l+ ]& s. |% t
004033B9 6A FF push -1
m$ T% n& B& j2 S! H# H/ J Z004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX! ]1 {2 O# u& Y3 i! r
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX" s6 N/ m8 q. ~) \: Q
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
; W5 a2 k/ g* i/ h004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX2 |) S: q) ]0 E6 h
004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
. U6 X, N! }* x- l# W004033D7 D1E0 shl eax,1 ; EAX左移1位
) [: q" W' S" e6 |004033D9 99 cdq ; EAX扩展2 ]% Y7 q% |( y( U; x: V5 T
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中5 Z7 w( Q- f: s3 c
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
- ]9 X B4 w. N! ^7 U; F- v4 J004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)
. N6 i; P9 o! K" j# ]004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A
$ Q2 r o- H5 A& N0 t" {004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
( d! {3 k; f( _4 d/ x( t004033E9 EB 2D jmp short qsr.00403418
4 k- ]2 m% W% r5 [004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX
0 P6 n( e P) \1 b004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2( i: f% w, Q- O3 q* k
004033F7 99 cdq ; EBX扩展4 D1 k$ B# E! w* _. f
004033F8 33C2 xor eax,edx ; EAX和EDX取异或
) D7 r6 n2 _' @; K j9 t004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
) T2 j% x+ E! X1 P; [004033FF 2BC2 sub eax,edx ; EAX减去EDX
( {* S! _: \- H1 m+ Y00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]1 w! b( ], X5 X4 d2 u& i' v0 ]* y
00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
$ _6 X1 Q3 {1 u# V* Q00403409 99 cdq
7 m, T5 ^ g' w( o- j0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中; C+ @/ v" S% W6 b2 n& j
0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX& m! w. w8 X7 |8 l( f
00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较
% Y: |$ v2 J# s& B! J7 m/ |3 U00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)! v/ v3 O. k- S$ S2 |8 Y. k2 n. q
00403418 E8 6EC00200 call qsr.0042F48B ; 8 d4 S$ q C X: _4 [4 |
0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
% I# O5 P) o0 S, f- p00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9
& O0 E3 A3 z7 B5 U; L. ~0 z D/ {$ A00403426 E8 60C00200 call qsr.0042F48B3 a' Z ?; Q) r, ~2 U
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
& X x- q( T& k6 a" W9 E0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8- g/ E W3 w5 q* o
00403434 E8 52C00200 call qsr.0042F48B$ }; p6 ]5 n2 {1 \$ d! s1 a x
00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
( k, K" m: d) L: k5 L3 N0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7
# }2 w D; ` e00403442 E8 44C00200 call qsr.0042F48B. s4 u% l: h0 \& t B; \
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
7 r$ [9 ~# b" g0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
7 ]# D; g# d) H! K8 `00403450 E8 36C00200 call qsr.0042F48B
T1 M$ @; W5 p00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
8 U7 ^9 H2 Q( H' h) ]. u00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3* H& f$ F+ }& w
0040345E E8 28C00200 call qsr.0042F48B
. ^1 `' C1 z+ I$ O1 c+ D5 C1 \00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]9 J2 q& u1 l5 l! U
00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
. ^0 s2 Y& i* ~( K2 T0040346C E8 1AC00200 call qsr.0042F48B
$ P9 O$ z4 e& {# Q5 E00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
% l ~7 h# x- h7 B00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1
: U L" P6 k8 o+ L b/ |$ Y7 @# q0040347A E8 0CC00200 call qsr.0042F48B
1 M7 w/ K9 [8 ^! d/ N0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]; z" D% U& r/ \2 }2 n# l- ]* \
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],08 v0 ?+ J# H; G' t8 n+ |
00403488 E8 FEBF0200 call qsr.0042F48B
) ~, i: M, K, K0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]5 _, m5 b: @) P7 J
00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1" ^% @6 N( b/ D4 G- m2 }, j& y* R
00403499 E8 EDBF0200 call qsr.0042F48B
: b5 S! d2 a) |) S+ n1 }4 w+ z( N [0040349E 32C0 xor al,al ; AL清0
: y% z# P% C" P1 a0 @. m5 U/ Q+ [004034A0 E9 88000000 jmp qsr.0040352D3 D3 v, m7 t! X
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~
# G+ ?) {; T4 R E004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]# ]* n+ E7 Z1 Y7 V8 S* J
004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],92 O) k" c6 e2 h2 Y! s: \6 u7 I# f* P4 a
004034B3 E8 D3BF0200 call qsr.0042F48B
: u1 E& \4 [* N& r; u2 S4 `, s" u004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]" ]# A' X% A' y( W4 m
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
5 X2 y2 t" Y; c& @6 W. K004034C1 E8 C5BF0200 call qsr.0042F48B
' X; }# J" ], ~- D004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]0 {& Y+ g) ~0 O: D
004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
/ N4 s/ z; @( n2 j, u5 M! o( u004034CF E8 B7BF0200 call qsr.0042F48B6 u- H1 j, o7 L( x# [3 h6 c: V* w/ d
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
: Q; P, B% {" C6 ]3 L$ o004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],66 c( ?5 Q6 O4 X$ T1 C
004034DD E8 A9BF0200 call qsr.0042F48B- J: ]3 B6 x# ~) R% k$ t0 `& a
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
. G$ d1 x& c: @% N5 x: l004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3/ {8 B" t0 _* S
004034EB E8 9BBF0200 call qsr.0042F48B3 p; ^- m, @. A8 M; W" \& U% x
004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]2 D I5 @" e9 I) |
004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2
- B! V8 ^- [# P. I( U' {004034F9 E8 8DBF0200 call qsr.0042F48B
Q, e1 Y5 H' J5 Z F! `004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]/ W/ d" ]2 c' s! a
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1+ c& X, k" U p1 m8 I$ r$ S- r
00403507 E8 7FBF0200 call qsr.0042F48B7 |7 g9 I, a+ k7 {
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
. A2 D }9 i& K) B& \6 O" q- A00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0
8 q4 O: M& X0 k# q) N+ U0 \00403515 E8 71BF0200 call qsr.0042F48B
2 R, H! x' P% ?; i% e3 ~/ w0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]6 ]5 _: t+ s; [; S/ M W
0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1' @7 S3 T: h# h: Y0 q
00403526 E8 60BF0200 call qsr.0042F48B/ I$ m( T6 y% n* r
0040352B B0 01 mov al,1
9 z* }* X5 E+ {7 N$ H# z0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
. G$ s: d; N# o& }- B+ ~0 x00403531 5F pop edi
6 M- n9 w# R2 ]6 \+ G5 Y$ S00403532 5E pop esi+ j% a5 I7 J) k# F) a# c$ G2 [3 t
00403533 5D pop ebp3 X; e4 m2 C/ L
00403534 5B pop ebx
: i1 j) _* t) n: s, `00403535 64:890D 0000000>mov dword ptr fs:[0],ecx
4 e7 l9 u" g: Q. w* }0040353C 83C4 30 add esp,30
' b( t: G- f9 x' y% M# P+ M A" n& J0040353F C2 0800 retn 8
/ `3 p9 ` l5 E! w1 E--------------------------------------------------------------------------------; u) I" C% n% M% w' ]1 r+ j
【破解总结】
' u4 L0 T9 i. l- a* o3 G$ m 用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
1 p! w; S: ^- N7 ?6 q用户名:yijun D" j! L9 u* a' Y& |! X
注册码:4893*7777*3726*7777*0529
# f% ^' q1 G: V ^) s--------------------------------------------------------------------------------
7 P" H h1 T/ Y【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡