|
|
|
【原创】破解Quick Screen Recorder2 j) J2 ? d8 ~9 b
【破解作者】 yijun
4 w4 Q- f0 C6 Z【作者邮箱】 [email protected]* M; l6 e2 x% G* K6 j: C
【使用工具】 OD,PEID
6 ^4 L+ A/ a2 b' A! }' [; }6 Q【破解平台】 WinXP6 `0 c% A4 s9 P; g D# x b
【软件名称】 Quick Screen Recorder
" v; E. A4 G1 H" c; R; Y& S% H【下载地址】 天空
3 Z7 z3 k1 ^- v \: I【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on. ' q) H1 f- l$ I; p6 k# ?+ _
【软件大小】 540K
! R% [2 ?1 A- [1 l" B& `【加壳方式】 无; X6 g. }, E/ N0 b3 ^6 }; p, r
【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)* E! z+ W3 O# b7 w, u B& T
--------------------------------------------------------------------------------$ w( c4 `- P: t( h" k K1 G
【破解内容】
9 ^" C" ?5 j& L PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
4 M3 c7 x6 r0 H6 I. i00404C69 55 push ebp //在此下断+ _' D" V2 m& v
00404C6A 56 push esi
# S8 B( j' U# d' g& z7 _00404C6B 57 push edi, t k( S$ x! S, D7 t5 J U
00404C6C 8BE9 mov ebp,ecx
/ _+ b& ^$ K: U00404C6E 6A 01 push 12 S: q( c4 X; G* E/ U
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
! n, ~/ F8 |1 n$ [/ Q' K* K6 }00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]
6 ]+ v) K% }+ C/ g( Q/ @0 x00404C78 8BCF mov ecx,edi0 Y& q: O6 p/ d( N& t, H: [
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码; N0 p v: p7 s6 X% J! b
00404C7F 8BCF mov ecx,edi
2 p5 @* K" a& ?9 V2 _$ q00404C81 E8 A73E0200 call qsr.00428B2D0 X( o2 C8 [/ x. X+ \& f
00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]: P; o2 b8 b! F( v7 _
00404C89 8BCE mov ecx,esi$ a7 Y. M, v" L! G; X2 T# O
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX* J# C/ a H4 |8 O0 k
00404C90 8BCE mov ecx,esi9 v% Y, L3 B: v9 G X1 D
00404C92 E8 963E0200 call qsr.00428B2D
6 d% W4 R- J: e. C: ~" g00404C97 8B06 mov eax,dword ptr ds:[esi]
9 D8 Z7 ]; g1 z2 {0 O00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
* [; [$ Q( Y/ R o00404C9D 7D 26 jge short qsr.00404CC5+ {# G# l3 Q7 N+ \0 A) M
00404C9F 6A 40 push 40
. _ j) R4 D1 G; c2 c00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
7 i: P9 W. r: m `# ?; D8 f/ e+ U+ H5 _00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."
4 G9 W3 O& H& A! i+ |00404CAB 8BCD mov ecx,ebp! Y) l! z: c) Q5 z
00404CAD E8 C3840200 call qsr.0042D175
9 O( J3 T/ e$ k% g; \$ p0 |5 j00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
8 Q% A# ]) e) E+ N- N0 t00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx" G6 ^7 B3 j+ R* Y
00404CBD 5F pop edi
# _/ f1 ]$ ^/ L00404CBE 5E pop esi
+ D) a2 d' S' ]( I3 q00404CBF 5D pop ebp* m4 l- N& m& }) F
00404CC0 5B pop ebx( \: E* C, ^: H3 E+ }9 s3 F
00404CC1 83C4 18 add esp,18
n7 m6 y0 _- y% g00404CC4 C3 retn
" S0 j4 M1 u0 `" Y+ l00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]) L; L( W3 ~9 Q l) a: l
00404CC8 84C0 test al,al
: C$ o" u! t- v( n: N00404CCA 0F85 1C010000 jnz qsr.00404DEC7 j! a: g; W, H# V' X' \
00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
3 K9 f( {) c& ^' h5 d1 Z3 E+ ^; O00404CD4 E8 87E3FFFF call qsr.00403060
2 D, h$ _! y, M6 U4 V& ~00404CD9 51 push ecx2 A0 M. i8 v$ G$ \
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],05 T6 r6 B3 c# f
00404CE2 8BCC mov ecx,esp
, H Q* x* d. c( T9 x( D00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
, U$ ]6 }0 H# S$ D- B9 o* L' k00404CE8 56 push esi
: o3 z+ Z. O: @7 u00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
( x0 R. @+ {( s6 n3 Q1 I1 b0 `" N00404CEE 51 push ecx
/ v4 H1 j! N5 n- Z00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1( h) [2 Z; k( c4 J7 H+ z5 \
00404CF4 8BCC mov ecx,esp
$ f' G/ t: n5 j00404CF6 896424 20 mov dword ptr ss:[esp+20],esp; D+ v/ Z% m# u: d
00404CFA 57 push edi
I) k3 G4 i) ?# K0 f* |00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0
. D! ^7 [' ? b+ I' [% J8 Z00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
/ u7 Z3 v% i) L% Z00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0( F$ O3 y. T* a( g, s
00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~. q# t0 P' P1 }; X9 `
00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~) D, G ^2 ]# ~# ?) Z, y, X. w
00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~: B- V6 i4 |0 N( C& u. d
00404D12 6A 40 push 40$ \ V- A k9 {3 e5 Q5 f8 ~
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"/ z3 D$ W+ I, S2 {* k7 u6 _* z, Y
00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."# H4 z4 m% ~ g) o& @5 i
00404D1E 8BCD mov ecx,ebp# ~ G4 p8 B% `% A- C* p/ }+ k
00404D20 E8 50840200 call qsr.0042D175
: N0 K$ y6 r! G) x; j$ m# F+ `7 J$ k00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]6 a! N# ]1 }8 g) C$ T6 B" c/ C
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1% ~4 q, K( X- n* z
00404D31 E8 5AE3FFFF call qsr.00403090
3 m8 u) x; f0 E Y: W; {00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
* O" g! A' }+ w7 ]0 q$ H. i$ _( `( ]00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
! n4 Y1 O( Z1 y+ w( n% q00404D41 5F pop edi1 L/ @* Q) }( C$ X/ U4 c
00404D42 5E pop esi
6 L) e' u, E( a2 A6 J. r00404D43 5D pop ebp9 F& f4 n5 T# v! T5 e+ ~9 Z
00404D44 5B pop ebx
2 F) E' f( `7 q; r A* q00404D45 83C4 18 add esp,18' | V; l" Y8 Q( b9 u
00404D48 C3 retn
. Y! b/ ?, E( d5 J6 @) o, m*********************************************************************************************************************************************************
# ]1 c2 B" ^& u: d: z/ v) {跟进00404D09处CALL来到:
8 |+ N1 d4 D% h. ]. y0 d8 O4 [004030A0 6A FF push -1 //一路F8下去~~~~* M+ |( R4 g# E. V7 N1 `
004030A2 68 C88F4400 push qsr.00448FC8
/ g, G. b2 o. k004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]0 s& C7 H. a/ x6 r, L+ W% F' ?
004030AD 50 push eax
, } f0 ^5 L! F9 _5 K& j+ R004030AE 64:8925 0000000>mov dword ptr fs:[0],esp. _: W! K# U6 G' F
004030B5 83EC 24 sub esp,24
0 f n' A7 m( A- O; E4 z. S. u% w/ O004030B8 53 push ebx& C |. t) N' k
004030B9 55 push ebp
( T4 A" u; A1 U004030BA 56 push esi* `9 x* ~6 k: K! X( U! J
004030BB 57 push edi/ a$ B- Y! d7 z4 H% @8 [' h
004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"+ V! V$ E0 g0 B: U' p. x/ u
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]/ ?1 |4 f2 S+ l
004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1" I: D" X3 A* r K# d3 e
004030CD E8 27C40200 call qsr.0042F4F9 {7 ?- Z# R+ e6 ]5 s, L; {
004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
2 I9 o3 l& K6 Q; ?1 ]9 q004030D7 894424 2C mov dword ptr ss:[esp+2C],eax# e' W" R" Y4 z8 |3 j/ j
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
$ r1 Z! @" y1 p' H1 W6 R% N" r& x004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3( f! \# o0 S3 `8 ^* r& {0 X
004030E4 E8 905A0200 call qsr.00428B79
1 s8 }* L2 P" i5 ^- C [! S004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
9 H& c$ Q% x! x( i3 s; j004030ED E8 3B5A0200 call qsr.00428B2D( l7 @* _3 X7 e6 z2 p
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]$ N6 ]5 B" T* ]' i( H
004030F6 E8 7E5A0200 call qsr.00428B79
3 ]$ Y w+ h3 R' \, |004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]3 q* ?. l$ u( ~" {! c, @# `/ `
004030FF E8 295A0200 call qsr.00428B2D
- E' w- ^1 M O+ I( @00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]7 O# B. R8 d& S6 c6 u8 \" O4 X
00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
$ M! q" a: `. p2 m; t! D) c0040310B 83F8 02 cmp eax,2
6 x# w3 }7 @' U$ L. v0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳* o/ B" b) F0 ~- C/ ^* s1 Y
00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]8 f9 A; E; _* ], x" \" x
00403118 837A F8 18 cmp dword ptr ds:[edx-8],18# `$ M9 B2 R$ e; m: d0 i$ r
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳" U9 p, m! O, }5 s1 P
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]# U- d* {$ I" [* I: C+ }; N3 Z/ O( B
00403126 6A 01 push 1
1 w6 C6 s: |* o# c8 y8 h00403128 50 push eax/ d4 P* i; @5 }" L$ O
00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]9 o# v) j) _! C4 \$ l1 q) B* O
0040312D E8 C4550200 call qsr.004286F6
. e+ r3 b* s2 ]( ?00403132 8B00 mov eax,dword ptr ds:[eax]% d9 E4 ]% N! d" s4 J/ [7 E
00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]7 P( @- |6 E' R5 \! {
00403138 50 push eax
0 P" _( X! G1 d: Q% @ `2 p00403139 C64424 40 04 mov byte ptr ss:[esp+40],4! r) R1 B3 D, z" b9 T! @8 q
0040313E E8 4D560200 call qsr.00428790 I8 s1 ~3 t- O' P+ K) e8 r, m
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
8 K- {* O7 Q, B8 l+ ~. q00403147 8BF0 mov esi,eax
2 E6 Q9 X3 O8 z ^$ S6 R- S7 p9 x2 [# w% S00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3" u' S) b1 D5 Y+ x0 U9 I2 p6 \
0040314E E8 38C30200 call qsr.0042F48B+ T e4 @: l3 j
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]
& }! ~. n- a2 u8 a6 L00403156 B9 3E000000 mov ecx,3E C$ \% s0 Y, j3 j& f4 r5 p8 D! {7 M
0040315B 99 cdq2 ]6 J+ D* ]2 P& A! m$ s8 X' l f
0040315C F7F9 idiv ecx' U4 @3 ? }8 h2 S1 y* j8 r
0040315E 6A 01 push 1' c# u! k/ v" H P" Y0 v* t
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]6 V8 s5 f+ s$ J
00403164 8BF2 mov esi,edx
O4 c3 O2 X1 J P' X00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
" X3 E% f* T8 l/ N" M+ S; Q0040316A 52 push edx
9 {% c$ [% i( o+ V% s3 |0040316B E8 0A550200 call qsr.0042867A2 S. }% H. a2 y d3 N4 v* a
00403170 8B00 mov eax,dword ptr ds:[eax] G( i. G! l0 y! A, R+ a
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
) s- I. |6 ^) ~00403176 50 push eax5 W% g( k# @# {1 l
00403177 C64424 40 05 mov byte ptr ss:[esp+40],5
' V- [" [( R8 o$ K! D5 C! ^! c0040317C E8 0F560200 call qsr.00428790
* V* B" N/ ^4 V2 _, v1 }00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]0 s- [: s+ Q0 n8 {! l
00403185 8BF8 mov edi,eax
; A% A! ^+ V( ]' R7 R. b5 H00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3
+ S+ I+ b* }+ i( O6 R0040318C E8 FAC20200 call qsr.0042F48B
5 w8 i: j( O2 A5 o- P4 d1 k00403191 8D47 0A lea eax,dword ptr ds:[edi+A]6 [3 Z; i& V; O( [0 M! C( m
00403194 B9 3E000000 mov ecx,3E: N/ k7 w4 K% K
00403199 99 cdq
% Z0 v2 o4 c) ^5 v5 w0040319A F7F9 idiv ecx
) ]3 b7 `6 G+ p5 K0 {0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]
& U3 [! l7 w9 v$ u- @" E004031A1 894424 28 mov dword ptr ss:[esp+28],eax) _, d" @2 \0 L- i- V
004031A5 8BCA mov ecx,edx& F) u9 a- p9 ]. C! f" i5 {
004031A7 894424 24 mov dword ptr ss:[esp+24],eax
( _& n8 K% M8 A& K: Z; }4 A004031AB 894424 1C mov dword ptr ss:[esp+1C],eax1 Q# u2 @4 B' p# \
004031AF 894424 18 mov dword ptr ss:[esp+18],eax
# c: x/ D: E, C3 i+ w004031B3 894424 14 mov dword ptr ss:[esp+14],eax! A& i8 V$ ] V' M' n" x
004031B7 894424 10 mov dword ptr ss:[esp+10],eax
8 ?7 t( G1 c! N$ w: h" j/ w004031BB 8BC1 mov eax,ecx
2 Y C c" ]1 |004031BD BF 0A000000 mov edi,0A
* p+ S- [4 u* n3 K5 ]7 O* h) X5 H! P004031C2 99 cdq
: C8 W# Z1 C3 R+ x004031C3 F7FF idiv edi
! Q/ R3 T! z+ ~* ^" k2 U9 C004031C5 8BC1 mov eax,ecx
2 W, V6 p" |- r% M" u6 P$ u004031C7 B3 0B mov bl,0B
" |/ G; J. P% c9 A% a& c004031C9 0FAFC1 imul eax,ecx- p- a4 P6 K& H% Q& G% V2 [; J) q! }
004031CC 8BCF mov ecx,edi
: L9 b1 e* a+ v9 Q004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl; W9 f& Y E6 ?" j5 i
004031D2 52 push edx
' l9 _) S9 z5 }004031D3 99 cdq* I" y+ f, R0 n' d
004031D4 F7F9 idiv ecx
9 H8 o6 t) Q2 p v004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]# K0 C0 f9 U2 o4 }; j% r
004031DD 2BC6 sub eax,esi# `5 h$ V$ U6 k x; T1 P
004031DF 52 push edx: U6 A$ c# R& H1 B
004031E0 99 cdq
* a) w2 K; O i1 g, |: d- o: F004031E1 F7F9 idiv ecx
5 U) s! e( R6 M9 h004031E3 8BC6 mov eax,esi
; S* R; {( W7 Z! K- m9 ^8 O: M, Y004031E5 52 push edx! Y: i& T, m/ ^; V ?' a5 O( M
004031E6 99 cdq
B+ c g' Q: H* @4 T3 h% O% S2 G8 o004031E7 F7F9 idiv ecx, Q" C0 N! b7 X
004031E9 52 push edx- E0 R s5 } E( w6 {( k
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
+ P: [ N9 f6 o" ]004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"& a5 {. k' V* R& V
004031F3 52 push edx' j& ~; v1 M l: V/ ], Z1 n0 a$ V
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893; G' O- i$ q. p4 q3 A, x
004031F9 83C4 18 add esp,18
! z' E% I" i# b" |* U004031FC 6A 04 push 44 W4 k5 N! o* a: m9 e0 ]' x
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34] {0 {' i* V1 p" [3 t9 E% K% `
00403202 6A 00 push 0- v. H8 V9 [* V; p) m# _: i
00403204 50 push eax5 h" H6 N- T! `/ s* Y
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]$ K3 Y& U6 v) b7 C3 |/ a1 j
00403209 E8 D6530200 call qsr.004285E4. S# W" r8 X. W/ o
0040320E 50 push eax! \1 \! ]) b9 r; h
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
^ u9 Y- l* A3 Q. `00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C
! L) E# P( u( Y6 y3 N% z. {00403218 E8 A7C30200 call qsr.0042F5C4: \1 o$ {5 U* Q a0 W; T% S# n
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]* Z4 f8 }. x* ?- o$ S. j' k
00403221 885C24 3C mov byte ptr ss:[esp+3C],bl
5 { A( O7 L M$ F& K00403225 E8 61C20200 call qsr.0042F48B
# t* p5 w& O2 s0040322A 6A 04 push 41 ^% V, _0 Z+ ]4 [ }
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]6 H( g- d9 F+ A5 Y9 y
00403230 6A 05 push 5, s: \/ d1 Y! Y2 A3 H
00403232 51 push ecx, R3 U/ U9 J6 m4 s2 }* v
00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]' C( N$ @8 r; Z1 v8 f! d! D
00403237 E8 A8530200 call qsr.004285E4
6 p: D* k! m. ]0 S9 g0040323C 50 push eax
. ?" l3 t r1 _* H [- Y0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]9 v: v, E: \6 Y
00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D
4 g, H2 L6 Z5 L) l1 a00403246 E8 79C30200 call qsr.0042F5C4& m0 p: ?: R) `/ Z7 F" t5 y; F
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
0 o- m+ Q3 I( H5 J' P4 b0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl
9 D. y" s o) f00403253 E8 33C20200 call qsr.0042F48B5 ^+ s7 ]5 E! }, |& S% V
00403258 6A 04 push 44 C' w$ {, a- S' H$ Q+ D
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]
* u4 X6 j3 e. L, S* ^0040325E 57 push edi
# p9 C" t% g( h: K4 L0040325F 52 push edx4 ?5 E4 a: Y* q; D
00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]; C' @ @( [! p$ Z% [+ R
00403264 E8 7B530200 call qsr.004285E4" B: v) \$ T: H n
00403269 50 push eax
( F! r3 E e# t0 }0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
0 ~# F6 E9 k& N5 j8 y0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
( y/ M' `& _/ o) r" _00403273 E8 4CC30200 call qsr.0042F5C4" q# W' j0 j5 {9 L% H b
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]: E; ^) z0 e& {% J/ c
0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl
& J4 p+ B$ }( \" Z00403280 E8 06C20200 call qsr.0042F48B) e9 R* }9 k, x7 ~
00403285 6A 04 push 4" o p, `) c1 m# B5 ?. T
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]4 ]8 R5 l" m; [5 R4 Z
0040328B 6A 0F push 0F
! B# D7 U& ~1 T* U# |1 c: \0040328D 50 push eax
; z, D ^1 o8 V2 l0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]9 C( W' X% q- S! Q5 Q3 _8 M' z K$ f
00403292 E8 4D530200 call qsr.004285E41 U2 H2 N$ [1 y+ P( i! {9 K+ p9 _( h
00403297 50 push eax8 B- h$ ^, p1 V m5 g8 @) Y# r$ Z
00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
9 l% I# w! D# i0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F* I* H/ K+ e4 V% B$ B8 r+ r
004032A1 E8 1EC30200 call qsr.0042F5C4 c. X4 V! p% \/ \+ I
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30], N- i5 F: U- T, s0 ^ Z( @4 H
004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl/ H! b0 H, Z, o% Y% L
004032AE E8 D8C10200 call qsr.0042F48B& |. ~6 t3 Q L: A% `: C, Z
004032B3 6A 04 push 47 w' @; ]% D5 R! Y9 v/ C$ v. ]
004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
/ q( a) z9 t' M; `) e( L004032B9 6A 14 push 140 `- m# S3 p1 d! ^2 A" C' `
004032BB 51 push ecx! U3 W* h+ {% D1 F, M) a% K( A
004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
/ r) \+ D. q& E' f( \3 w9 k004032C0 E8 1F530200 call qsr.004285E4
9 d# ?! k0 s6 t3 B004032C5 50 push eax+ ]- v. c7 H. V$ j
004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
* g2 F* r" |7 O" T5 t. S004032CA C64424 40 10 mov byte ptr ss:[esp+40],10; ]0 f! D1 G* \8 C: I( a
004032CF E8 F0C20200 call qsr.0042F5C4* @5 r% \4 P4 ?0 x4 p0 F3 y
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
7 R/ Q( ]- B+ h5 u0 G004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl$ D3 M0 O! O) U( U9 ]8 u9 f! W
004032DC E8 AAC10200 call qsr.0042F48B( d" s5 J3 p4 f& I
004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI! e0 U' N+ _8 n. _* P9 `8 [
004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
6 O% b. M! x6 Z004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL0 j" @8 [) e k% l) D
004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL
$ V3 U/ ^* v8 ~" p004032ED 8ACA mov cl,dl ; DL送CL
5 u; b* F! z8 G- F' K- e! c5 E004032EF 3AD3 cmp dl,bl ; DL和BL比较) ~5 A1 w* ]" p- }
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
/ P O P1 b$ N! V3 v j$ S004032F3 84C9 test cl,cl
0 E& L: k2 }+ |) r004032F5 74 16 je short qsr.0040330D
+ y) G) L) w3 h( D1 p1 w004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL9 ]( W' m% { x
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL6 J8 p) I* H) G% |; f
004032FD 8ACA mov cl,dl T. b6 E$ V6 x! F- d
004032FF 3AD3 cmp dl,bl ; DL和BL比较- G5 O8 g4 L$ F( s0 L
00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
5 ?. ~: _, n8 Z; b00403303 83C0 02 add eax,2 ; EAX加2
. m$ R8 z/ R% G; X4 k% Z00403306 83C6 02 add esi,2 ; ESI加2- r! H) f j) I
00403309 84C9 test cl,cl- E# H+ P) m' @% E4 q4 p
0040330B ^ 75 DC jnz short qsr.004032E97 ^7 q$ i) f( H6 |9 Q3 ]
0040330D 33C0 xor eax,eax2 z' f% M2 K* [3 i, Y
0040330F EB 05 jmp short qsr.004033166 l q) r5 f% F' }' M1 r2 i
00403311 1BC0 sbb eax,eax
( c2 g+ j6 v/ O. l4 z5 P' @% ?00403313 83D8 FF sbb eax,-1) ]9 r, N+ a' r' d
00403316 85C0 test eax,eax& r1 g" d* Y! l& K, I: F4 {" T
00403318 74 0E je short qsr.00403328
. u4 H# W5 l X( _3 x0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
9 Y2 X; c. A9 s5 H% B( M0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
7 r* _' n8 z% s% _00403323 E9 F0000000 jmp qsr.00403418
3 l2 D2 j7 Y Z, D" a$ _00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX, i2 m! R$ }' R7 P
0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]$ d0 o. i7 l& ?2 q. ~
00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]
: C0 F, z+ f' o( v- E3 r00403333 50 push eax
* F! Y K% F$ i, x00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX2 o. }" A+ s5 d7 v' e7 e4 R" m
00403339 50 push eax
3 `# r) ~3 E" N% I6 o+ {0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX; a. |2 C; u) x" _7 V1 f2 V
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
S4 {. U q; q( L5 ~/ }' {00403343 83C4 04 add esp,42 Y3 z. n3 W5 A5 i7 T" q
00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI0 t) u8 M! _- ?' F8 N6 V
00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]
+ }7 |& Q8 B7 I4 A0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
7 @5 u5 b5 [( i1 `7 m1 @0040334F 50 push eax# r8 x6 m8 P- `" m. O; [
00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX9 ]3 d4 j/ O3 k) i# l0 c
00403355 50 push eax
4 S1 D- |. i3 g- g8 z' k00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX0 X8 H' |% I) S2 q7 d0 K
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX6 H z' f, P2 G/ q4 Y( n: C
0040335F 83C4 04 add esp,4
: I5 P7 Q0 O/ X, T00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI
* m* |1 }) R+ y6 D2 {4 [00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]8 Q; _+ P3 \* t) P
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]
7 m# c: M8 g9 u9 T0040336B 50 push eax
D- h& J k1 r/ m0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX
4 L v G& g0 n# B5 u00403371 50 push eax
) J7 h+ M* b9 p3 T3 N; l00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX* L4 _+ t2 A0 Z' g5 E2 G5 ?
00403377 8BD8 mov ebx,eax ; EAX送EBX2 _" c0 w: S7 ?3 a& C
00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX1 A' L6 ~7 m9 H3 I+ G0 \! Y
0040337D 83C4 04 add esp,4$ t' J8 ~4 p, d7 l7 b' Y
00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
* l$ T$ T! ]3 {. y3 ]9 }! e* [$ V00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]; \! r" ]% s: B3 n2 t; @. I+ o: H
00403387 50 push eax1 D; s4 s9 Y. a# {
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX* m- V4 y: Y% K4 ?: {0 }( Y0 S
0040338D 50 push eax
( i3 b2 v& B$ _! t# j0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
Q4 v% W. s, s1 T6 m- @00403393 83C4 04 add esp,4# y) m$ t. p- H1 N" y
00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
# O: M# m1 a; J" I K0040339A 8BE8 mov ebp,eax ; EAX送EBP; _/ Z5 \2 q2 z+ q
0040339C 6A FF push -1
' ]' K' H# q1 Y# I0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX* P9 t- J @! `: d8 H
004033A3 6A FF push -1" F6 t* v( E8 y' Q
004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX6 ?6 Q! R! P& V1 K
004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
! L0 k& J) W; V! g: g* n% b* ^004033AE 6A FF push -1" ~+ k# Q. B+ X0 y( T) U6 r
004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX* s1 A- Y% \( y# u$ c; s0 W
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX
7 g! s7 z+ B) z+ I004033B9 6A FF push -1
! ]) x% F z L& f: t# ~) ~$ f004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX, `: j/ l& L( M
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX
/ n; c" h" r Q004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX. ?9 d& }' N* ?# E9 E% \# c- l
004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX( Z" U; {' T4 E1 h5 V0 A v) o
004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
8 C0 ~3 N8 |7 s# {/ ~004033D7 D1E0 shl eax,1 ; EAX左移1位4 z/ N: K: V* Y# |8 C
004033D9 99 cdq ; EAX扩展# X/ ^, M/ ?0 R |: b3 ^( y7 \
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中, J7 o# U9 l+ f
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较4 h, u; L4 I4 p% O
004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)& k0 Q l4 u( u
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A7 G( e" J5 h4 o1 V
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
( Z1 m2 b# ^$ }2 L# b4 e) E+ J004033E9 EB 2D jmp short qsr.00403418+ m# D3 j+ Z& A. T1 g8 G# o( N
004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX
# r5 L. y3 n' J) M$ M1 t004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2. ?6 S% b" q2 p3 p( K
004033F7 99 cdq ; EBX扩展" l9 ~) o( Y* T* h! |
004033F8 33C2 xor eax,edx ; EAX和EDX取异或
7 a( H0 P! b s( r004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX4 N1 r0 ?/ s: L" X; H! y
004033FF 2BC2 sub eax,edx ; EAX减去EDX1 y7 L8 H0 |: T. x7 q, r$ n$ n* ^
00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]
; f9 D# e4 f; E* X- K+ C00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX7 M, D2 |3 @; D" g" R
00403409 99 cdq
4 s* }2 D: ~7 S/ l0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
' o" s7 t0 K# L0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX
5 U2 ?$ H! U' P4 Z5 m# c F00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较3 n4 _3 q, y8 @
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳), N9 B: N, f* G; Q3 M) S0 D6 U
00403418 E8 6EC00200 call qsr.0042F48B ; # t6 m, T+ a' U1 C" ?# G( L8 T
0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
0 y! u* O8 T. Y8 X4 [+ b00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9
6 ]+ L8 k/ f; F9 ^. U00403426 E8 60C00200 call qsr.0042F48B# l. g' l4 A' n/ i& c
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]+ ]: [) Y" K2 Q
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8
2 p3 i# N" T1 Y; w00403434 E8 52C00200 call qsr.0042F48B2 u, N9 T2 h3 r5 f) V: n- }
00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]3 n, B- z( d2 \8 X( w& X& @1 F, k
0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7
+ X1 j1 b. ?; n! u2 b4 d$ G" F00403442 E8 44C00200 call qsr.0042F48B" l6 p5 I: s1 D4 c4 F G1 \
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
' r, U0 |0 i- @; D6 m4 q" h7 ~% A- k0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
5 B/ m& r: [6 ?& ?# k; j7 A0 a3 {00403450 E8 36C00200 call qsr.0042F48B
( S) M% c8 {+ s* K00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
' p) {% [5 N; T4 ?- G3 B00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3
2 ^9 G) \; k/ y8 C: n: u* d0040345E E8 28C00200 call qsr.0042F48B
3 t) `) `# K! C; x0 C00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]+ ^1 q3 J; Q+ x- ?9 N
00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
& b# h! W, W- [! g) H' _7 C0 T0040346C E8 1AC00200 call qsr.0042F48B
5 w0 t# P! l8 T# ^. y( h+ P00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
& g3 | H) Q9 W* s H% q- t00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1, a+ }5 E7 Y z, Q& a
0040347A E8 0CC00200 call qsr.0042F48B
8 x3 J1 j! G; D2 A5 O! v0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]/ j0 h; n. m% q5 A
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
8 K& i0 F# o) Z; ^00403488 E8 FEBF0200 call qsr.0042F48B
' a: h7 N! ]2 n/ M( C0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]. o# @( ]3 P4 @% B0 y
00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-16 `5 @# Z, i' C: M
00403499 E8 EDBF0200 call qsr.0042F48B+ I! A; T5 D, Z' w
0040349E 32C0 xor al,al ; AL清04 g' t I3 p4 } W1 j/ z0 ^% X- g
004034A0 E9 88000000 jmp qsr.0040352D; m. d$ D) L; S' t( O
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~
. P6 g+ a+ U: G- L1 x. u3 [: X004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]( {: D/ I& j( j/ _: [! ]
004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9
, K1 S# e7 z- L* |004034B3 E8 D3BF0200 call qsr.0042F48B
3 `3 r% G; T4 W3 A7 _% C( A004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
4 ^+ N0 b' e( s' |004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8, G; J6 H/ s' B% c! ^/ B* ~
004034C1 E8 C5BF0200 call qsr.0042F48B
$ ~( ] N- T4 X7 s004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]1 W4 ?; K, h5 o- b; u
004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
7 P, c: g$ V5 o004034CF E8 B7BF0200 call qsr.0042F48B! p6 Q. Q p+ D( x3 f
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]9 M6 z( Z* G2 p# z7 }, c# _
004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6
& K H5 M, A9 i' f* J# _) }004034DD E8 A9BF0200 call qsr.0042F48B
B/ I7 `, J/ C' N- n- m$ G004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]) t/ \7 \" m5 P' g8 C9 x m8 b1 A
004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
) p, ~! W! \9 E4 M, Q( B8 l004034EB E8 9BBF0200 call qsr.0042F48B; X& R, }8 i3 W0 K, y$ g7 o0 M
004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
; F% j/ O C/ @004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2
1 F. V" \2 t* Q004034F9 E8 8DBF0200 call qsr.0042F48B% Y' e" f" L8 p2 h
004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]. [' B! b# |! `! m& S0 |( p
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],18 |. @. o4 t+ a
00403507 E8 7FBF0200 call qsr.0042F48B9 L. B8 {( V# l1 H" r
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]- y8 h2 N9 z2 u
00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0) j' t6 X: `" M/ I6 w
00403515 E8 71BF0200 call qsr.0042F48B
9 L& H: c6 [1 t8 H9 e- ?, F$ H0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]9 ?( E' A" Q* S5 I# y* ~
0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1, ~ A1 d8 k9 K9 d J
00403526 E8 60BF0200 call qsr.0042F48B4 A7 K3 r. } m" _. X
0040352B B0 01 mov al,1
* H4 {( e$ B5 T7 X* M5 f0 g0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
( `. g- J6 o [" Y2 G% S00403531 5F pop edi
! n2 }( A9 p' z9 @1 M. I s00403532 5E pop esi" w0 l& O; ^9 Z; a
00403533 5D pop ebp
' j# J! u( t- x' N5 J+ i00403534 5B pop ebx1 ?& w( D! c, _
00403535 64:890D 0000000>mov dword ptr fs:[0],ecx6 ]- ^; ]6 ?8 v, k; S# f
0040353C 83C4 30 add esp,301 {, r7 ? Q& x/ o
0040353F C2 0800 retn 8
0 r$ F* p6 b0 g' i* T: w* `--------------------------------------------------------------------------------
( Q: {; h3 Q f1 C【破解总结】
1 [ X. ?* \- h" v 用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
( I/ ~4 @5 G5 b- ^! U9 ?1 x用户名:yijun% e9 l" b- d4 @% [, D) _; O5 Z
注册码:4893*7777*3726*7777*0529
9 F% n. L- @* Y! X' \--------------------------------------------------------------------------------
' s% S" k; e. F; r. T【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡