|
|
|
【原创】破解Quick Screen Recorder+ i6 q8 D9 L. Z7 Y
【破解作者】 yijun
% l P- s3 y2 p, x% }' E, ?【作者邮箱】 [email protected]4 O6 r5 Z4 d/ u" a- x* Y
【使用工具】 OD,PEID. H9 i0 M0 h9 A1 t, f5 A7 k
【破解平台】 WinXP
, x5 O% Z0 G+ o! [9 x- Q# F' h【软件名称】 Quick Screen Recorder/ Z0 b/ b5 e( P5 ^
【下载地址】 天空 _; |) U- g/ Q- Z* W( }6 G+ }3 |
【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
; z1 b6 a" S) j7 Q& [ N6 ^ M【软件大小】 540K8 {9 m# n" b( V0 \6 h
【加壳方式】 无
5 N0 h2 E" H: l6 e, B! ?+ y7 s【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)# ~0 T3 T' @, l, i1 F9 p% ]/ e
--------------------------------------------------------------------------------8 e: [( i" {4 o; A4 b3 M8 B% f k
【破解内容】
% N8 ^' B( ~) q' q PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
0 d& P+ t6 z" P00404C69 55 push ebp //在此下断
]2 a" ?# Z, P7 X6 r- ?00404C6A 56 push esi9 L& l4 U- [" u8 E
00404C6B 57 push edi
4 A* l% W( J- N; \0 E00404C6C 8BE9 mov ebp,ecx
0 A, K) R: ^4 r A6 h) g00404C6E 6A 01 push 1 e5 M5 K+ J5 b$ t* }/ E) s
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名- s& h% {/ u/ \; e
00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]
% ^5 |! e! ]2 g, f00404C78 8BCF mov ecx,edi
. H8 j9 I" v9 f) J. q00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码
+ N2 S( M. W O$ x00404C7F 8BCF mov ecx,edi' J! F* a0 z; q% Y- u. f: b' e: O
00404C81 E8 A73E0200 call qsr.00428B2D
2 l- E5 R# } ^% [: V; U2 W00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
2 J9 b% V% z4 k: W: D3 H) K00404C89 8BCE mov ecx,esi
; j4 `, `6 `1 |( N+ j3 N00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX$ ~3 K& S' g% D" I; K
00404C90 8BCE mov ecx,esi
/ s1 {" Y2 Y8 m1 K+ n4 x00404C92 E8 963E0200 call qsr.00428B2D: u( S" ]' O% {9 }4 M) [% Q% H
00404C97 8B06 mov eax,dword ptr ds:[esi]; i2 l$ g6 p6 G/ d( a# r
00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],22 n4 f0 D, e5 x. S1 s! U
00404C9D 7D 26 jge short qsr.00404CC5
$ d, o! r3 B/ P" I00404C9F 6A 40 push 40
+ w* D( O: U" ]5 v. l0 d" O3 M00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
0 m( q) V! G! h. b9 Q00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."
. V$ S, M" z' q! \/ C2 Z" d00404CAB 8BCD mov ecx,ebp% ^$ B+ {& d6 Q( q$ z/ H
00404CAD E8 C3840200 call qsr.0042D175
! C I$ [' }, v; @! G% t! T00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
9 Z2 O2 v- ]0 \2 d4 g7 k$ \00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx
5 H5 R6 W0 U5 n2 F00404CBD 5F pop edi! R9 B* M/ Q J# ]/ m
00404CBE 5E pop esi4 P6 ~9 {$ [+ K) ?2 i4 U, s
00404CBF 5D pop ebp4 k; l: G+ ~* R/ H/ z3 u; v+ n; a
00404CC0 5B pop ebx) V6 m. }) s+ b( u5 j& H
00404CC1 83C4 18 add esp,18/ I% I2 V) `4 I& _
00404CC4 C3 retn3 h3 U" G5 Q- |1 _0 A a$ D
00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]1 E- B: [2 d) ?/ u8 k, _
00404CC8 84C0 test al,al
( K1 {2 f" {& `" b0 ]- o00404CCA 0F85 1C010000 jnz qsr.00404DEC. O& L& e! \ w, @9 n
00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]- z! z1 C2 a- L3 y( X, r$ ], k1 J. t
00404CD4 E8 87E3FFFF call qsr.00403060
7 U3 \% e3 ]4 u! I7 ?% O$ y00404CD9 51 push ecx
/ H+ n7 k) o2 [! K1 o00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0, {6 F2 @/ P4 s2 U8 H& r" ~
00404CE2 8BCC mov ecx,esp
; w) A8 o9 P# M0 \/ i+ y; o00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
& i x* r# Q& A0 a- Q00404CE8 56 push esi- i4 [ i/ |5 p) `) e
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0# G( I/ K5 e! A9 x- `& y
00404CEE 51 push ecx, ]! X& {7 C* Z- A8 u% W
00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1
* H% P x7 H, b+ ?/ A p: ?0 G' N00404CF4 8BCC mov ecx,esp
# m2 h$ ]9 a9 X. R& C3 r& f6 f00404CF6 896424 20 mov dword ptr ss:[esp+20],esp/ m5 i6 z6 k" [9 J4 i& F
00404CFA 57 push edi
- b# a6 R9 a! M9 g" H00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0
# P+ K) Y1 O$ l5 Y00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]! N3 n5 T/ \) G: P% k0 {
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0
( t* u) X% O" j5 t! m# Q% M00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~; q8 Z% b& V% H6 I
00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~
7 Q4 c2 u2 ~* d8 r00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
, I, F) \: D! U4 B- H00404D12 6A 40 push 40$ k7 k/ {9 Z: ~* W; k' t: a" ]
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"& \+ }8 {! b) \
00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."
& l: j, C* M" g' m6 s( E2 y I00404D1E 8BCD mov ecx,ebp
4 F- d/ q3 c2 ]) r( ?( E00404D20 E8 50840200 call qsr.0042D175
6 a& j& I' Z+ A0 f: T) k: L00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
# k; a7 c5 J! ?( f" J& \00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-12 W q5 x: X1 \2 \) W0 A/ w
00404D31 E8 5AE3FFFF call qsr.00403090
* C9 |; w' F+ O; V, J% M00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]9 _+ t( l8 w7 q
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx4 w2 ~' F1 `2 T% s- x
00404D41 5F pop edi- s9 j* \: s* Z: i2 }2 T
00404D42 5E pop esi
4 s5 } E# J3 a( A00404D43 5D pop ebp
/ |# S1 ?- K2 } w, i' L' q% V5 w" R00404D44 5B pop ebx3 u8 M& A& _7 u2 ]
00404D45 83C4 18 add esp,189 ?& g9 }2 O9 b$ n/ D
00404D48 C3 retn
5 K; |3 [6 F W*********************************************************************************************************************************************************
* n \# X' j& X; B跟进00404D09处CALL来到:
6 e" c# [) h- {* k3 Q$ Q$ k004030A0 6A FF push -1 //一路F8下去~~~~
7 \/ }$ `: r8 R& [- t& s' h004030A2 68 C88F4400 push qsr.00448FC80 j7 l# u3 j4 [. `$ U& Z* H
004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]1 E! n4 X6 ?; K8 T; B
004030AD 50 push eax
# D! o7 a/ n2 U: |% a* T; c004030AE 64:8925 0000000>mov dword ptr fs:[0],esp
" U0 F9 I1 y% K% Q1 s004030B5 83EC 24 sub esp,24
$ N; G% C# m+ k. U. W2 h004030B8 53 push ebx
( w) C, o3 d6 e5 |9 L9 ?6 {004030B9 55 push ebp+ B' T0 t' L4 D/ g3 Z$ u
004030BA 56 push esi, T+ ~% k/ z8 j6 Y! {3 `* u
004030BB 57 push edi
2 M4 e( s# G4 `/ h( e$ X0 V: U, H004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"
& S7 f; V% M) t; i" C& I: `! [3 ^004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]7 K' ~$ j; ^+ B1 _
004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],11 y3 [3 `6 a+ c; g
004030CD E8 27C40200 call qsr.0042F4F9
5 W3 ~9 O' `; U' Z1 n: U004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]$ t& T+ V. S r# k
004030D7 894424 2C mov dword ptr ss:[esp+2C],eax% t& h7 R8 a0 N
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
3 A+ j6 K6 a' F' b4 s/ D6 S/ }004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
; E2 `: [: E( H, G2 h& q004030E4 E8 905A0200 call qsr.00428B79
" M3 q" ?' |# U/ b1 @004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
" o" R( a) o9 @/ H" B004030ED E8 3B5A0200 call qsr.00428B2D; ]% c0 E! U; H/ q8 E! {9 U& @
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
8 o! I' n7 ] W& O! s004030F6 E8 7E5A0200 call qsr.00428B79) x) ^( q9 [8 |8 O* j" B) G
004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
, Y5 j" n% r9 P+ B004030FF E8 295A0200 call qsr.00428B2D
$ C3 q! ?8 q; Y" y- ^1 V% Y+ B00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]
! U, z3 b! L7 M( b& m5 v9 V" Q00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
) T/ f! E4 z+ R9 V2 q, X) J0040310B 83F8 02 cmp eax,24 e. z) [2 A a ]1 R+ S4 H
0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
( e( ~* ^6 G) H6 O" A00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]
- _& j' x3 }, ~7 l00403118 837A F8 18 cmp dword ptr ds:[edx-8],18
* H# n$ D1 @) K+ w) p9 U0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳0 {5 N0 K# K# \+ j" N8 r
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30] C6 \' H3 h- `
00403126 6A 01 push 1# X$ Z3 E% }9 p) F2 ~- ^
00403128 50 push eax1 J! C. v2 c" U D
00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
( e, m6 n3 T8 c0040312D E8 C4550200 call qsr.004286F6
) B, s( C) m# D. @) {% M0 ?00403132 8B00 mov eax,dword ptr ds:[eax]! f0 k- ^/ e" y2 u
00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]3 x4 Q1 |! Y y9 Q2 }+ g, r( H
00403138 50 push eax& B! q* S1 P( r6 ]
00403139 C64424 40 04 mov byte ptr ss:[esp+40],41 |# y, D& L3 i# H
0040313E E8 4D560200 call qsr.00428790
K) n& n: f9 z# K; U- X8 W2 u, [00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
( \+ h% m9 B |2 q$ P- D00403147 8BF0 mov esi,eax5 ]" Q1 q5 f- Y H/ |4 [7 P
00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],31 F2 j: W' l4 o' E/ ?
0040314E E8 38C30200 call qsr.0042F48B
) I' V2 u, I+ A: |0 b* V& i$ Q0 h00403153 8D46 0A lea eax,dword ptr ds:[esi+A]9 C5 {) Q) q3 N n T& a0 k
00403156 B9 3E000000 mov ecx,3E, L5 }/ S( }7 z* e7 w. A; \
0040315B 99 cdq' Z' u4 p; ^6 u; R7 F% |
0040315C F7F9 idiv ecx
. p8 q$ w8 F" b7 n$ _0040315E 6A 01 push 14 |& Q" q' k3 Y0 F3 b2 m6 W
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]
! t* a2 M, p, ]* g- j( s7 X$ X9 s00403164 8BF2 mov esi,edx
1 s( {. P9 P$ o00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]3 n K% u. g! \4 Z# [
0040316A 52 push edx- v& p( |2 {8 U: ^% `$ N3 q
0040316B E8 0A550200 call qsr.0042867A/ j0 s H8 D/ O, m v' j
00403170 8B00 mov eax,dword ptr ds:[eax]: b+ n: X3 b7 p# K# W. i
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]2 |5 _& p9 |$ o4 b
00403176 50 push eax
/ u0 i8 v% K, y& {* b; B00403177 C64424 40 05 mov byte ptr ss:[esp+40],5
/ D7 c/ q# i: O c0040317C E8 0F560200 call qsr.00428790
0 X1 e' t4 D5 ~: X B R9 U! w8 h00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30], n* Z% Z* K, J% s
00403185 8BF8 mov edi,eax; r7 j& @% B2 C$ _$ j/ p
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3% b8 N, F8 [' \, N" D8 M
0040318C E8 FAC20200 call qsr.0042F48B; ?9 p9 q* N# Z1 b, Q% T
00403191 8D47 0A lea eax,dword ptr ds:[edi+A]
0 F/ u1 {% G; w8 y# [" ^00403194 B9 3E000000 mov ecx,3E
; a {' k* B4 N" n5 \- l7 s00403199 99 cdq- L7 G# x' a; l4 E) `0 `
0040319A F7F9 idiv ecx
' J' m- l3 K' l$ U0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]
4 L7 C6 `7 {: G1 }4 d/ h004031A1 894424 28 mov dword ptr ss:[esp+28],eax' F/ x# S6 @$ s# I
004031A5 8BCA mov ecx,edx1 a1 D9 M" C0 D# V" Z7 \5 d1 s+ o
004031A7 894424 24 mov dword ptr ss:[esp+24],eax0 s9 Z$ q- b9 V6 k! x" F+ ~
004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
8 E9 u& }6 u2 O7 W5 K$ M004031AF 894424 18 mov dword ptr ss:[esp+18],eax
3 F- @' Z9 `# q0 b4 ~ R) [2 r004031B3 894424 14 mov dword ptr ss:[esp+14],eax
! V0 R9 L. ~0 V9 L5 u' F, M; a004031B7 894424 10 mov dword ptr ss:[esp+10],eax
; x9 A, K2 U& B/ Q# p( [ A004031BB 8BC1 mov eax,ecx
( q( a! ~# G( ?8 Z6 o004031BD BF 0A000000 mov edi,0A2 z0 @4 {# S p# M
004031C2 99 cdq
, `# L( R ~7 P, b# ?: P% }004031C3 F7FF idiv edi
( |6 e. }* K# q* p$ i004031C5 8BC1 mov eax,ecx2 e) u$ m s/ e' _, c* ~' e+ I4 l; a& z
004031C7 B3 0B mov bl,0B
! X. f6 o" j# i# _4 I- ]004031C9 0FAFC1 imul eax,ecx: w2 f& e# n0 R# I; }3 Q- r
004031CC 8BCF mov ecx,edi# ]! O- e, M7 X( c' C) z) Q" i4 e
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl- k$ r3 i" g) b1 l# W
004031D2 52 push edx
3 t1 k* S$ R+ y) C, h& x6 q% A& k004031D3 99 cdq1 W! k7 G% `4 c1 p9 j
004031D4 F7F9 idiv ecx
. r6 V3 X! I( }* l/ W: C% k8 I7 L004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]
) e; v# s" x8 k004031DD 2BC6 sub eax,esi
0 v- c7 s& M- c/ z" T# q6 J; s/ k004031DF 52 push edx- A3 Z0 ~' A; u! \7 C
004031E0 99 cdq$ [5 ~8 M3 }' v
004031E1 F7F9 idiv ecx
. a6 V9 N o% m% L004031E3 8BC6 mov eax,esi. E/ A5 ]6 r ~) x, d
004031E5 52 push edx* v" g9 a+ J6 l2 F6 Q3 ?% W
004031E6 99 cdq
9 F) e9 z% e0 Z, t" H3 d6 p004031E7 F7F9 idiv ecx5 B0 L9 J C2 v2 A+ X. j
004031E9 52 push edx6 q B. V9 S* b+ M* F) _ j
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]7 w$ c- p/ Z4 P7 P" s
004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"- `% J0 B* e! K4 q" V/ ~ o" l4 X8 ]
004031F3 52 push edx) E4 @5 B, @0 u, F4 y5 D- y0 r
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893
8 r- h3 {7 H- B004031F9 83C4 18 add esp,18
. I: a. @" Q' F0 W3 p6 q2 y; R004031FC 6A 04 push 44 o- w' C( L& s* X
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]
" @' K7 y# s( j8 t) c00403202 6A 00 push 0
- d2 K1 W" E! J1 E& n00403204 50 push eax) r* g7 g9 |, k+ F1 [, P6 d! w
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
' d+ j$ k) M. L, H6 s" |' N00403209 E8 D6530200 call qsr.004285E4
8 N S$ O* N- p0040320E 50 push eax
: T, o" P1 w; g* r4 @) a. f3 y" C0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]4 O/ H& \# b- P+ C+ v
00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C1 J2 ]9 F( f. S+ i
00403218 E8 A7C30200 call qsr.0042F5C4% j$ \% s# _% Z' ]. R7 ?
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
/ V* C& j0 ] ~; h/ t00403221 885C24 3C mov byte ptr ss:[esp+3C],bl, N0 }6 Z$ E2 D) P2 O4 j
00403225 E8 61C20200 call qsr.0042F48B% v# m2 J! ?, N5 R: Q
0040322A 6A 04 push 45 c, ^7 i9 [' y) l% R
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]8 r# d# i9 f6 ^, e
00403230 6A 05 push 5& g& |0 [5 g6 E }2 S$ s
00403232 51 push ecx+ L, Y, H* N3 A4 t) K
00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
+ u( T4 N. ?; p( N5 C: J$ }00403237 E8 A8530200 call qsr.004285E4
" v* P* X" a: t# j0040323C 50 push eax
`) w+ ]! L0 K0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]) R0 { m" e6 p# F' M# m0 E
00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D: I% f9 w# Q. l& U7 M
00403246 E8 79C30200 call qsr.0042F5C4
_+ A# `0 _2 Y) ^: `0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
' w9 ]' \7 c/ M b4 l6 C0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl
6 C1 `1 \% t7 e% F1 z6 P) c00403253 E8 33C20200 call qsr.0042F48B
- H% z6 N8 ] |% F* \00403258 6A 04 push 4: y" O) N# K' U% N7 g$ F: O8 b# @
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]! @& S" y/ Z, e7 ?
0040325E 57 push edi% k9 c4 G3 U" x3 M+ ^
0040325F 52 push edx
) V; C3 u6 t" B- n! W00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]6 Y% [7 d' b* W& ?; [; M
00403264 E8 7B530200 call qsr.004285E4, j5 G5 m- u6 c0 x5 x
00403269 50 push eax
& g4 |, G0 o4 m" r, Y$ ]0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
3 g" e4 W7 K& v2 c! h0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
- b- K* | Q1 j0 R00403273 E8 4CC30200 call qsr.0042F5C4
$ {" z/ B/ h, N# T! N: _' ?, M00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
) p! t% n8 C- P% @4 x2 l' q" M$ a0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl. Y! h& E$ k+ S1 i5 v: M
00403280 E8 06C20200 call qsr.0042F48B3 _4 W. ?+ X; g( H
00403285 6A 04 push 47 S0 ^3 H* W0 @3 o5 P3 T5 I
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34] x' H+ D6 J6 g# j, l
0040328B 6A 0F push 0F
* `2 v8 G: U- l/ k2 T' j+ J0040328D 50 push eax8 @" f! T# @, o" }- o- d
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
9 |' H) p1 K1 ~' v6 T: I9 x* ?! b00403292 E8 4D530200 call qsr.004285E4- t: W% R5 w# a6 A; H6 k
00403297 50 push eax' i7 _1 T ^# I& ]# u; |, H
00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]5 g( b) ], I c
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
r$ `& n! F) F7 S! l) r. r X0 y004032A1 E8 1EC30200 call qsr.0042F5C48 ]6 m7 \+ W6 G1 B+ j! i
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
$ f- r2 Z8 z: A+ b& h004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl
9 L' n. v' i" u004032AE E8 D8C10200 call qsr.0042F48B
! ~/ ?- w+ U0 R& }9 |004032B3 6A 04 push 4
7 @0 o9 | G7 j' [( M) @004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
) Z7 {- B, w% S) A0 K004032B9 6A 14 push 14
6 E7 b7 t( c8 |) z. e% h) o$ f004032BB 51 push ecx& t+ i5 w' V4 @% m8 n0 V7 c
004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
) S2 q! l- K$ Q2 H' Y4 @1 L004032C0 E8 1F530200 call qsr.004285E40 D) P; \" u6 _* v
004032C5 50 push eax
5 f) d |& h" I' {004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
4 P! t* j& Z* c+ G004032CA C64424 40 10 mov byte ptr ss:[esp+40],104 F+ l* t; i8 t9 |$ o
004032CF E8 F0C20200 call qsr.0042F5C4' `1 N0 |0 z' }6 J
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
% O8 k9 C4 j1 y* E004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl
- ]% w- T A4 N7 c: n004032DC E8 AAC10200 call qsr.0042F48B; R* ]" A& \. H6 \% {' p
004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
7 B5 z" B/ d2 m. s7 o2 E: @004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX6 n6 R1 L; i+ p \
004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL! T1 r8 d7 w. a- l
004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL
9 d) y- v$ }2 U# @3 t o. W! e004032ED 8ACA mov cl,dl ; DL送CL
% H5 @+ t& c# U+ i004032EF 3AD3 cmp dl,bl ; DL和BL比较% L2 |2 H2 A ^' z& k4 I* U
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
9 w2 t0 {( ~3 g) U( \! J004032F3 84C9 test cl,cl
# r$ s9 I: i* ^: C1 f: g004032F5 74 16 je short qsr.0040330D
4 f# y0 K3 [, D0 f E5 U g& m004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL
! s4 p/ g; ?# \5 o$ L6 H6 H# I) u004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL
' E J1 E3 U) d# {* S004032FD 8ACA mov cl,dl$ ]% Y( t# N* A3 W2 G2 k
004032FF 3AD3 cmp dl,bl ; DL和BL比较! O! x7 B8 O' B9 t* e
00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)/ X) _' ~4 a' r7 @, ~
00403303 83C0 02 add eax,2 ; EAX加2
4 X( d1 L1 m4 z ]. h, g7 {' W00403306 83C6 02 add esi,2 ; ESI加2
! n8 B7 l$ A5 u00403309 84C9 test cl,cl( v1 d$ ?6 _9 {/ u% a5 v; ]
0040330B ^ 75 DC jnz short qsr.004032E9
4 z" C7 r6 K- T1 j" J0040330D 33C0 xor eax,eax
0 l7 Q; S" f: K) F' `3 g0040330F EB 05 jmp short qsr.004033168 R! I" Z& D$ v2 z; r* V: K" E
00403311 1BC0 sbb eax,eax& Q9 i+ P" s0 M
00403313 83D8 FF sbb eax,-12 E9 P6 X7 V( c" s8 V+ c) H
00403316 85C0 test eax,eax
; T) c. O0 k, K. }00403318 74 0E je short qsr.004033287 o' Y, P1 T& q4 a7 \2 ~
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
+ X! ^- O0 s9 u) X6 G7 b0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
1 l3 V% o4 V+ w# S, y00403323 E9 F0000000 jmp qsr.00403418
, f/ S! ]) P" ~% z00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
5 T% m- h5 x0 M! [4 X; k0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
. I# `5 M8 L* K/ K; L9 _00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]
5 j1 c1 A, x# H" \; w) f4 q$ T00403333 50 push eax, i6 p7 A" E/ r4 i+ I
00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX
* n8 t5 K# O/ M. A% J00403339 50 push eax
4 {# K4 ~' j/ V$ ]4 T9 l: b0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX
0 Y) o: Z* g, i# X3 b0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
D! ?8 X. z9 R+ t" a00403343 83C4 04 add esp,4; k7 b6 I$ F% s2 e: i2 r! U9 h
00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI
1 R M6 l- |0 n. m8 @$ p00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]
& c0 Z0 K J# @( s- b, [2 l0 W0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]( Y! w' ], ?$ Y& d% w w
0040334F 50 push eax
, u9 I, G0 z: h) Z00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX$ L; x& K% Q, `3 y5 k, L6 _5 G
00403355 50 push eax
2 Q$ L; i4 t& m" g% x00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX& H; b7 h+ o, x; K2 U; C# }" A
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
, n& A0 A; C# |$ r6 X- X; N& L) ?0040335F 83C4 04 add esp,4
2 t U& i" e/ `: x J, S" W2 N00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI, V- J* O0 e" ~/ }
00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14], P6 j* P1 G+ R7 y$ S
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]5 J, U" {, S3 i
0040336B 50 push eax
5 n; c8 m1 s# z* Y" i, b+ B0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX8 z! l* q0 A; Y" l
00403371 50 push eax
3 Z$ g' g6 A" D6 |# n00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX/ x# E5 X4 F, v* h% ?9 O
00403377 8BD8 mov ebx,eax ; EAX送EBX
# s$ J5 f5 C" K. T0 G00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX
' m5 O2 Q% E) [9 Y+ P G0040337D 83C4 04 add esp,4( P+ C8 a& G$ P# I8 O) z# k
00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
5 }: U3 C' ?! L% `00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]
0 L0 P I7 W F# b8 Q00403387 50 push eax
' _0 `4 Q, n8 P& v00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX
7 h" ~! M7 k* H# B W8 y; ~- ^6 K4 a6 Q0040338D 50 push eax' C5 j0 \1 `% ]2 V4 H7 P
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
% f; @9 [( K* P% s+ S! g00403393 83C4 04 add esp,4 X8 K/ i+ ?% a5 z
00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] F0 G/ B, b9 K- A9 V' {; R$ B, |6 x
0040339A 8BE8 mov ebp,eax ; EAX送EBP
% y* m3 x8 R0 y5 D, ^0040339C 6A FF push -1) a2 I8 r; ?8 A+ _5 p& E
0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX
$ `' r: m H7 A004033A3 6A FF push -1
7 @* u$ D& o' o# A$ c8 g004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX. U" T: m4 w9 V' r) u4 s
004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX8 t8 {3 S2 m( a" j5 b
004033AE 6A FF push -10 ]4 J( K6 G% r C# [7 o7 f
004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX9 F7 [/ W+ m2 c( X+ Y& u5 U0 A
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX
# I2 e- J' v8 M. {004033B9 6A FF push -1 z; m, R; C- h6 I$ }
004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX7 G& P/ ~) F8 p7 Z
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX
' w- C9 n/ z6 Y6 p$ q, o004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
2 K. x2 {2 d$ }! ^/ _' k0 O n. B004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX2 X+ P6 @" s1 j( X3 ]
004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
0 [/ t; q% d$ C! j+ B: V5 s; \004033D7 D1E0 shl eax,1 ; EAX左移1位! [$ a+ V# V5 e. @# w
004033D9 99 cdq ; EAX扩展
0 R9 A& o9 n, t7 w! r) r004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中" e* n/ U5 \" u* k- Q
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
, u* t0 L; p8 }- K004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)" U r3 M% ]+ u9 m+ C) p% {
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A4 j( e: x, r* w% o) d! p+ {
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]3 B6 E& H+ O) \5 N: }0 x0 O3 X
004033E9 EB 2D jmp short qsr.00403418) D2 ~% ~4 q6 U# n$ w
004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX
& I; E, T& B. s* m004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2+ i5 m* v# M/ v9 h1 n
004033F7 99 cdq ; EBX扩展) a e% D9 k; [! Z6 N8 @# `. O5 W
004033F8 33C2 xor eax,edx ; EAX和EDX取异或
8 b) t3 N- }3 X2 A: y# P004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
# e( j0 U) }) H6 B; i! s2 V" Z004033FF 2BC2 sub eax,edx ; EAX减去EDX
+ N& U' K# _2 B/ D8 J. Z* ?00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]7 P! W: T1 o9 M* l, r: M
00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX% H- P8 w8 ]7 z+ p" T2 z
00403409 99 cdq
6 O* I8 H9 X' c/ v3 w A0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中7 T; \* D; O5 [$ x8 j8 a& n a( k
0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX' Z& W6 B( T$ A9 g
00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较
% d- _, \2 ~/ o& |00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)
+ H- R+ l3 ?, ~00403418 E8 6EC00200 call qsr.0042F48B ;
' P) K0 V/ q7 `( t! S& _ w; b. }0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
. N; A: F. E& j9 A00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9
; B' f9 @4 C& u. }6 z3 z- Y7 S00403426 E8 60C00200 call qsr.0042F48B
6 S$ U" H7 |" {0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]3 d2 \: n3 j8 d, W" y
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8/ V3 f: W" q3 e
00403434 E8 52C00200 call qsr.0042F48B
* a, q# W8 A- \* |; ?00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
# o: L5 u4 o) k# z0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7
7 A) ^# Y& ~6 E00403442 E8 44C00200 call qsr.0042F48B! O( x- G0 \/ o O* O
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]4 q, ?' l. E3 M9 g7 @. s( u' d6 r) S
0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
1 x* m, b: D K4 [1 Q00403450 E8 36C00200 call qsr.0042F48B7 ^& T6 `+ P, a C( c1 O) X
00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
5 R8 I& A7 e! U U$ m% P00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3% g+ c! v1 o8 e+ V$ V
0040345E E8 28C00200 call qsr.0042F48B
( K: e) P# ^' w8 H x1 k3 N00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]- U: q& P7 N2 C! H
00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2: Z4 D Y. q. s0 [: S! u7 O0 D
0040346C E8 1AC00200 call qsr.0042F48B) a1 G3 J' w% `0 F: S
00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]+ [2 b( u; W4 Y& v: r+ c- |
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1
3 ?: J4 D6 {0 `3 ?. l! d) _0040347A E8 0CC00200 call qsr.0042F48B' i" y- c+ W0 h8 U
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
% @/ _5 m4 o: ~# [$ b# Y00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
6 B4 [9 t2 q6 {9 y ?' R5 u1 T00403488 E8 FEBF0200 call qsr.0042F48B! B# C4 S2 v4 r8 L! i$ r
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]( Q) s% K1 T& R; u7 X- ]2 {9 y
00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1$ M& z* d6 e4 X! h
00403499 E8 EDBF0200 call qsr.0042F48B
8 I6 j9 a- b, i# p. a0040349E 32C0 xor al,al ; AL清0
4 ]( r* f9 g ]. }7 b5 F004034A0 E9 88000000 jmp qsr.0040352D, H$ [5 p7 T2 s' [- _ a& p
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~" L) c0 C' P- C2 t" T! L l
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
" w! z# W- f) _ r3 W004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9
8 B1 H( a& Y* J$ U' G004034B3 E8 D3BF0200 call qsr.0042F48B6 m; v. A1 G) y0 d
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
; W) \+ i* H* r- _2 \( }004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],84 a6 I# w- }, n4 |* G
004034C1 E8 C5BF0200 call qsr.0042F48B
$ G% a* V2 o% [# R" O- X, _8 r004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]4 Z% |' H' G3 Q: K9 u* ?' L- b
004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],75 v5 V1 H$ } C* t! J# Y# Y0 i
004034CF E8 B7BF0200 call qsr.0042F48B
. |. o7 |- J* v004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]4 _: i l, z( b9 T
004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6
# Y$ U+ I8 W8 R' Z9 q3 `6 ^5 e004034DD E8 A9BF0200 call qsr.0042F48B
0 k! M+ i. n* s004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
2 ?% w3 }, F0 G7 p" K$ T004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
& g! D$ L4 w# k004034EB E8 9BBF0200 call qsr.0042F48B
; y) n; ]6 v& U# y- L! S; o- ~004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]6 E1 a+ S; \5 A8 g6 M7 J. N, {
004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2' W& a6 F5 o) Q- c$ l9 B6 r, w
004034F9 E8 8DBF0200 call qsr.0042F48B+ m4 j% n: y+ K. A
004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20], S( q4 L+ c5 V d3 ^$ y j8 [9 N
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1
* L& p# `5 Z' l+ n, H/ f. i1 M00403507 E8 7FBF0200 call qsr.0042F48B
* c8 u/ B& x( g' q! L2 v1 @' t: w0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
, T* h* a3 G! j# N, i00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],03 r5 t$ ?& m# T+ |
00403515 E8 71BF0200 call qsr.0042F48B
1 x: N9 r3 l3 x" Y0 ?/ e, I' M0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
& S$ L9 r1 ~; ~, r. N0 \0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1% i5 P; y" h+ ~" M$ {0 I$ M; @3 V
00403526 E8 60BF0200 call qsr.0042F48B) J$ O/ S/ a6 q9 r. x" K2 j
0040352B B0 01 mov al,1
: R1 M9 M) v, d2 [0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]6 F7 `- a* }: t$ W5 o1 \9 ?
00403531 5F pop edi' o3 z! k: R( [5 A8 c$ T3 n' m
00403532 5E pop esi) c. O+ N% l! q) |
00403533 5D pop ebp% g' k7 E" l- w: t0 @5 L+ y' ~- W
00403534 5B pop ebx
6 p/ m @( ~0 b% a00403535 64:890D 0000000>mov dword ptr fs:[0],ecx ~: C3 ?- h+ A) y% ~. L
0040353C 83C4 30 add esp,301 E3 @6 s7 t8 \' ?
0040353F C2 0800 retn 8
. a' g4 N1 H8 L3 G--------------------------------------------------------------------------------# L# {& v6 \$ R, d( I
【破解总结】5 T! i3 R; |% `
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
0 d" z$ x J4 U" p6 d6 A用户名:yijun
4 ^; Q2 X/ G, Y, K8 ], h4 X注册码:4893*7777*3726*7777*05296 R: f) ]% d7 b+ A
--------------------------------------------------------------------------------7 A- V3 y: I3 F) Y/ l v
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡