|
|
|
【原创】破解Quick Screen Recorder x& W* V [2 a- l; w: E: k- u
【破解作者】 yijun
2 u% U8 B4 U" T0 w! ^! k5 S- [& y【作者邮箱】 [email protected]
4 m# @" E5 l6 ^4 W7 j【使用工具】 OD,PEID0 ]. u; k+ y6 @/ _. c7 T4 ?. N
【破解平台】 WinXP
0 B" I! Y% v$ g" @【软件名称】 Quick Screen Recorder1 ]# w4 ^: ]2 n
【下载地址】 天空0 s4 _6 [- f3 m0 [& Z! W
【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on. ) L0 \; h2 E3 e( p3 \; E
【软件大小】 540K9 E$ q4 o% H; i4 \" i7 `6 W5 C
【加壳方式】 无
- F# q% B* {) q$ J! F4 c0 j【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)
& o/ `. h8 J* J$ w: P--------------------------------------------------------------------------------' @2 X; E& n) H; l; X* ^; _
【破解内容】
& ?% _8 Z0 @$ P% f. l, X5 ~$ p PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:$ _9 X8 U- ^( p0 X
00404C69 55 push ebp //在此下断7 {1 W, d5 I& E7 v$ E" O7 R, H
00404C6A 56 push esi/ Y2 N+ j# B3 e+ `1 s
00404C6B 57 push edi
, M- F, K0 Y% x) L# Y9 H00404C6C 8BE9 mov ebp,ecx
7 M( p1 d' m! _( U2 s00404C6E 6A 01 push 1
! O6 E& |- A/ B1 D% b4 f00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
2 W) V5 r. m! T. Q00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]
* y4 i* z+ j# ~) f5 z00404C78 8BCF mov ecx,edi
4 ~& q- |; r: E9 n7 j( r, {00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码6 y) s* a7 r7 \3 l A) V% B
00404C7F 8BCF mov ecx,edi
+ ?9 ?9 Z& r% x% S00404C81 E8 A73E0200 call qsr.00428B2D
8 s6 I9 C9 {0 _3 f3 b0 R+ D7 x00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
. G' N& W; s# p; N! R) J7 I00404C89 8BCE mov ecx,esi7 D f3 |# E$ l5 X5 E3 m3 _
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX
s: o3 p, k4 E3 W" D, O00404C90 8BCE mov ecx,esi
# x( q: s: _2 D- K5 p! h00404C92 E8 963E0200 call qsr.00428B2D
' u5 i/ M- z+ E4 s' T00404C97 8B06 mov eax,dword ptr ds:[esi]
1 s/ v# Q/ p; i00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2' n) K7 z" k e0 R4 p! e& d
00404C9D 7D 26 jge short qsr.00404CC5; P* k5 `+ p4 R/ f+ ?) R
00404C9F 6A 40 push 40- L* q- s+ |# ~, p( c ]3 J) r% i
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
/ f U( Y+ u% }9 K) p0 z; G y00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name." X. @/ e5 ]) ?* N0 P3 e" J# B
00404CAB 8BCD mov ecx,ebp
! q: y8 s, i; G$ V) e00404CAD E8 C3840200 call qsr.0042D175
2 l# a, a/ a l, ?/ P8 t9 Q9 v00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C], R' q9 _" ~% D
00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx( w# l* d# G5 K4 D
00404CBD 5F pop edi. Z$ L" c) G o$ ~' B$ _. P6 |
00404CBE 5E pop esi4 Q( e# k7 Q" l b
00404CBF 5D pop ebp
& F$ U2 Z3 p, [( [5 F+ [* L00404CC0 5B pop ebx! {! b6 p p1 A( a, D7 O
00404CC1 83C4 18 add esp,18
% z& w& N1 r% [4 M+ X0 V00404CC4 C3 retn' T4 ?# h" }, V& L9 n0 |5 K6 H3 A
00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]9 J1 @# ?" c" D. M
00404CC8 84C0 test al,al5 F( f/ p) }) |" N% [8 K& _
00404CCA 0F85 1C010000 jnz qsr.00404DEC9 [, W. ]3 x- |4 J/ Y) I, n
00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
1 B c- l- q4 S+ v3 Q00404CD4 E8 87E3FFFF call qsr.004030600 C' {# a! u/ y$ w2 D% F0 `
00404CD9 51 push ecx+ h" x: D4 E1 k! O
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
5 p: X+ m( Y* n7 V o00404CE2 8BCC mov ecx,esp4 y$ ^/ ?0 e2 x* J
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp y; t8 [9 [ r6 X4 M: N
00404CE8 56 push esi
1 I, c4 b% d. X7 F% ]- W: g& w00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
8 M) F& Q) n- k8 I( L( p00404CEE 51 push ecx
( G" s1 n3 I. J! [00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1
Q7 w8 ~2 n% y( E00404CF4 8BCC mov ecx,esp
* @1 W/ b; d2 ] G00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
- L1 m4 w- `8 L4 t6 f4 i* R00404CFA 57 push edi
2 R1 ~5 P6 F. z& {7 F. Y& T# R r: ~9 |00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0- ?- Z) z8 [. C; Z! \5 b
00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
& B# f( Y$ A) R$ Q' Y7 Y00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0
2 T0 K2 O4 r% @00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~
y( o+ ]! J( u1 \% u6 w00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~4 h4 T7 @4 C: H) G7 u
00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~, T5 h+ U g9 j/ L. H7 v6 R: h
00404D12 6A 40 push 40# C' \$ X# \! k
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
3 Y! }: k: K9 ?/ V; T00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again.", x5 B; K# p: {
00404D1E 8BCD mov ecx,ebp
" q# _0 m0 ^4 X! I% e$ ?4 }& W00404D20 E8 50840200 call qsr.0042D175
- }1 M' Y' v1 {% e2 i7 e00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]2 ^9 f+ h1 a5 g% [( z% ]
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1
! N+ ~) v0 r6 V X$ O* }& I! L00404D31 E8 5AE3FFFF call qsr.00403090" F- p9 f& \/ r5 T; s k& ]3 w
00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
, d9 [" V- S. S) I; l00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx* e, z" i2 \: r; O6 ?6 O/ O6 S2 V3 t
00404D41 5F pop edi
5 p% F( G2 I2 t0 M& J- z00404D42 5E pop esi4 T# M1 v. ^( L1 M8 W/ ~
00404D43 5D pop ebp
. j, @9 O4 H3 c4 T9 M6 u5 y- X00404D44 5B pop ebx
+ }7 A& F$ _ g0 ?; l- x% a00404D45 83C4 18 add esp,18 H; _* ~0 ^" g& M" \
00404D48 C3 retn
! p7 o, l( U ~*********************************************************************************************************************************************************- p( D) y) J+ `6 c
跟进00404D09处CALL来到:/ ?, q3 r# u. g0 _: I
004030A0 6A FF push -1 //一路F8下去~~~~
4 |- y- J8 y7 `& `004030A2 68 C88F4400 push qsr.00448FC8
% o3 G/ l4 j Z/ [4 i" V+ u2 l004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
6 ~3 ?; `+ H8 E& [# H7 y5 z A004030AD 50 push eax5 O4 `- ^- t- ^" y# L& i
004030AE 64:8925 0000000>mov dword ptr fs:[0],esp
- N* j% _. F; Q/ k004030B5 83EC 24 sub esp,24
5 Z/ i) N+ R" h6 r( Y0 o# x004030B8 53 push ebx6 f% e" b. Y& V
004030B9 55 push ebp4 d" U; u( e" d) H5 i$ J4 d5 m, q
004030BA 56 push esi
8 C: T& X$ L: Q* y! q004030BB 57 push edi$ s1 X- q) a- E6 z. G. N: y
004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"
' p5 j/ G4 W ~/ G# M' d! z004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
) _6 Q$ c& ~/ W1 V+ m: `0 Y" g2 z004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],11 l4 E1 i& v z& M, o$ b2 Z
004030CD E8 27C40200 call qsr.0042F4F96 Y4 y" W" P/ W2 ~9 r3 E: i
004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]3 G) C% S( X; w
004030D7 894424 2C mov dword ptr ss:[esp+2C],eax- g* `0 T5 y5 R* W* l2 u9 o- r
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
$ t4 b# i: R% m1 ~' ^004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
t" Q% g7 m4 a0 A004030E4 E8 905A0200 call qsr.00428B79
9 R3 \: k( B+ O3 e- C5 j004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]. g# N$ K' a4 a- L# r5 I3 U( H
004030ED E8 3B5A0200 call qsr.00428B2D
3 ?3 n, @: I( E4 v: ]004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
- s8 P M+ i ]+ I' f$ J. Y004030F6 E8 7E5A0200 call qsr.00428B79
( w* K/ s7 Y0 T! P9 L) B9 [- u004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
; [5 P! o; j! h% }# x8 a* m) w004030FF E8 295A0200 call qsr.00428B2D
, P8 z; q# e6 c" P8 t00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]. a1 N4 s4 V- @! |
00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
* x0 p5 S/ u6 }3 U0040310B 83F8 02 cmp eax,22 j3 t, e0 T. l3 L
0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
( k* V4 P% U0 |0 }0 u* f00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]0 D# U4 S$ f4 c- S
00403118 837A F8 18 cmp dword ptr ds:[edx-8],18! @9 [$ c* u! ^: g: Y7 l8 D
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳
$ k, T! d' k0 z8 l/ d00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
7 W6 Y5 |5 P9 b1 @+ t00403126 6A 01 push 1 h1 d) y2 H- Z9 e
00403128 50 push eax
. b8 D) b. S- r7 p: h: n00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]1 e0 A! _2 b% y# ^0 x
0040312D E8 C4550200 call qsr.004286F6+ h# b. m- Y1 E4 }, v* h; V
00403132 8B00 mov eax,dword ptr ds:[eax]
+ X1 e& y/ M* M7 Y00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
7 ^) e3 V& w; A, c# h5 M& `00403138 50 push eax. }3 ^; P9 y3 W0 _% E
00403139 C64424 40 04 mov byte ptr ss:[esp+40],4
z+ y) k8 ^3 W0040313E E8 4D560200 call qsr.00428790
% E. e- g! a7 I W/ R00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]: ^+ m; M: H% t4 _7 g: s
00403147 8BF0 mov esi,eax8 A$ J8 p5 P6 J7 H6 ^
00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],38 J7 F6 J- T% Y( g' h. r
0040314E E8 38C30200 call qsr.0042F48B+ h, L) p! e5 e: K' A U6 a
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]* _7 a+ ~. M" @4 e
00403156 B9 3E000000 mov ecx,3E+ b% k7 Y% H* ~8 C) G8 Y0 h- O
0040315B 99 cdq
7 f* M- C. y- z) r2 C' y0 O0040315C F7F9 idiv ecx: F+ | v+ r$ n! u6 A. R
0040315E 6A 01 push 1/ M0 b$ T) @; D6 ?, Q) C
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]: O" |0 F5 |4 W" ^
00403164 8BF2 mov esi,edx
) K, B9 e7 Q4 i00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
- S9 z$ I. n5 h0 \0040316A 52 push edx! p9 W3 ?( D; T( ~1 Y4 h! D/ a
0040316B E8 0A550200 call qsr.0042867A; q' a0 o/ h9 ~) L! i0 j/ v6 V
00403170 8B00 mov eax,dword ptr ds:[eax]) j7 v0 J( e/ o8 b' e
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]( s Y! X0 @3 K3 J/ H; ?0 x* O
00403176 50 push eax0 }$ q( i/ z* C
00403177 C64424 40 05 mov byte ptr ss:[esp+40],5+ k0 F6 K1 j: u7 V( v4 y. ~5 o; i
0040317C E8 0F560200 call qsr.00428790
& B& S3 n- P3 [8 Y U9 b: O00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]$ r& N, O; o; R, o; K. d
00403185 8BF8 mov edi,eax
! o: S' w( [5 K) D00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3
0 p1 X$ K" D7 Q+ b; T% ~0040318C E8 FAC20200 call qsr.0042F48B3 \0 m% c( M* f/ R; f) e
00403191 8D47 0A lea eax,dword ptr ds:[edi+A]
8 U$ [! ]$ O6 b7 k$ W+ H00403194 B9 3E000000 mov ecx,3E6 _" ~( T# x; k: P8 _/ k8 i6 x7 f
00403199 99 cdq
/ `2 ?6 Q; N# z% [+ L6 X0040319A F7F9 idiv ecx
% r7 f* X7 v: T3 `; ~+ w% g, M+ \0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]& B. j! F( J, Y& @6 J6 m9 j1 O% j
004031A1 894424 28 mov dword ptr ss:[esp+28],eax
- B& g* R8 A' |* a5 d3 ]1 r3 [004031A5 8BCA mov ecx,edx/ o/ H0 n' P Y( Q
004031A7 894424 24 mov dword ptr ss:[esp+24],eax
7 a" _- B/ l$ D4 ]. x9 G004031AB 894424 1C mov dword ptr ss:[esp+1C],eax6 j, m4 o* Z* \2 ~& y
004031AF 894424 18 mov dword ptr ss:[esp+18],eax
- X6 t" p! B, _. K7 S004031B3 894424 14 mov dword ptr ss:[esp+14],eax/ W' s% W- t* V. J- N( G z# d
004031B7 894424 10 mov dword ptr ss:[esp+10],eax/ M8 R1 w* |& B6 S6 w6 I% K
004031BB 8BC1 mov eax,ecx
" C* h, f, I4 P2 ?* Q0 t4 l& d004031BD BF 0A000000 mov edi,0A. k- Q, q# [ D) Q2 t
004031C2 99 cdq/ [. C2 X" P5 G; I4 @ }; W
004031C3 F7FF idiv edi
o1 y' ]6 B1 y: h" ^" w004031C5 8BC1 mov eax,ecx
' Y$ V" R( l+ @6 g. f004031C7 B3 0B mov bl,0B( G4 e; Z' M' z7 M0 ^) h, F
004031C9 0FAFC1 imul eax,ecx" b/ ?8 Z4 D, I9 g# a* Q" n" x. s' q( F
004031CC 8BCF mov ecx,edi
: A2 }0 r6 e2 o004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl; E4 s: K8 i5 T# h* G
004031D2 52 push edx" \, ]) K) X- j" B3 o
004031D3 99 cdq# p. z. j- D2 _% G! A
004031D4 F7F9 idiv ecx
! H( h2 m6 T- q+ l004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]
# B- K* [, y- E004031DD 2BC6 sub eax,esi+ {( J* v- \: r/ a3 ^; L
004031DF 52 push edx
" \8 H/ }# K/ g( W004031E0 99 cdq
9 a* |5 F2 H) o# l: {3 m( [" ?5 g, q% M004031E1 F7F9 idiv ecx
# U- a' h8 L& h( C004031E3 8BC6 mov eax,esi
' C @! h4 A5 e" i004031E5 52 push edx+ P) u9 F, W+ E% a: `
004031E6 99 cdq
- K8 m. Y9 b8 Q; A4 B; S' t, l004031E7 F7F9 idiv ecx
4 ]2 g2 \1 Q' Z8 n5 h5 Q: }004031E9 52 push edx" l7 |/ n' M+ d' r; Q; B
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
! q! @; F" C3 m7 W# B004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"7 A- @5 B' b# a% n
004031F3 52 push edx
4 l+ l1 _, K W( Y* k0 b$ {, `, Z2 M004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893
5 m6 @ b: S7 w004031F9 83C4 18 add esp,18. G& q3 t2 i. w& T
004031FC 6A 04 push 44 v2 u- G% \- V+ f1 L- k
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]5 j' a0 V8 m' Y- G5 \0 v8 v1 |
00403202 6A 00 push 0. C* c4 r8 N3 r
00403204 50 push eax% {3 r3 J9 g/ o, B& {
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
: V7 M# J+ y, ` V00403209 E8 D6530200 call qsr.004285E4" _) M U# o: l/ F* D1 }/ i
0040320E 50 push eax
4 R) |/ w0 D8 ^' ]/ e, s5 \0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]; M# o6 ^5 |: I. f9 n. Y' `4 R2 @9 E
00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C
" \, @5 m9 k0 {* n m7 P00403218 E8 A7C30200 call qsr.0042F5C4, }* F. T( g# I/ ]4 v5 N* s0 N
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30] M, N5 {" Z- ?# Z
00403221 885C24 3C mov byte ptr ss:[esp+3C],bl
7 o4 z6 d! | M5 x& k00403225 E8 61C20200 call qsr.0042F48B
1 [& J- A! P& Q; i+ q0040322A 6A 04 push 4
6 d6 ]" z1 d4 b; r0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
; M0 I3 U: ]0 }8 H# y8 G7 H! d00403230 6A 05 push 5& ~$ L! y, s2 f; e, D3 r
00403232 51 push ecx+ k1 x% }% f! ^( b" `8 h
00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
7 o8 h/ W8 x& k: R7 f00403237 E8 A8530200 call qsr.004285E4
- c: k5 i& U* J0040323C 50 push eax
3 W# A- H6 H4 S4 `: Z4 y, J0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
$ Z7 _8 w; z* A( k" N00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D' O3 {1 F0 N4 {9 O' F, Z
00403246 E8 79C30200 call qsr.0042F5C4# L+ |+ n" n3 j! k# H
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
3 a7 J; {4 L$ h8 C0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl
! ~6 R, Z) c$ c- |00403253 E8 33C20200 call qsr.0042F48B* k D, V( G0 ]+ \, d2 `
00403258 6A 04 push 4. G o! p9 G! H% z3 X
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]- U. F D- [. N
0040325E 57 push edi& s: N& ]' g& ]7 R2 o
0040325F 52 push edx
" q! D9 A! Q/ _* j* n& K00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
; {* S6 J! X9 `0 g0 i1 b! [$ N7 t* p) W00403264 E8 7B530200 call qsr.004285E4
$ @- I6 d, |5 B+ T1 x) _( T! Q00403269 50 push eax# o/ l9 F3 L* h; \+ D
0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
% z+ H" d) v4 ]+ e0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E& j( r8 G* v' }4 t7 T) x6 c
00403273 E8 4CC30200 call qsr.0042F5C4& o& u' H k" K) x) W; |
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
4 y8 m5 F: E: Z! q0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl
1 p$ p5 n$ y( }1 K3 s* Q! o00403280 E8 06C20200 call qsr.0042F48B* U, M& g4 e% U' a; q, j; \3 r3 b
00403285 6A 04 push 4$ B* u$ [7 Z! i; j( r
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]1 c- V- ^9 _0 S/ G& q/ }) ?1 f
0040328B 6A 0F push 0F) i; P. u$ ^' P# t2 T: d0 }! V8 Q
0040328D 50 push eax4 M' q% t) k! {: v9 h+ p% _
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
* K1 o- T% Y4 T( y& f) G* c) f00403292 E8 4D530200 call qsr.004285E4
& @' @6 `! r3 O00403297 50 push eax
* b6 n- h; W5 _3 L7 L2 S. A00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
! s: c# I& D4 A% F) A$ f0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
) p" B8 F- l5 ]9 l! O004032A1 E8 1EC30200 call qsr.0042F5C4
8 b7 P! k" O: @004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
) p9 \# g* d9 c, z% P004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl4 e* Q; k. p, n7 n5 w8 I
004032AE E8 D8C10200 call qsr.0042F48B! U) t6 J$ Q6 \7 x [
004032B3 6A 04 push 4+ x; ]+ V. B+ o C. [- y* z
004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
. B* f& I6 K6 L7 \; R004032B9 6A 14 push 144 |+ I% W& l6 N0 G9 h$ D
004032BB 51 push ecx
. x- j' ^( Z, g* X& E004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
+ n+ ?, n: ?6 u& B" m2 d; A; a1 k004032C0 E8 1F530200 call qsr.004285E4% l5 T m% h, K
004032C5 50 push eax
6 m. O. b2 c' g1 C7 }1 J004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]( ?1 @, R( V$ l$ a, }
004032CA C64424 40 10 mov byte ptr ss:[esp+40],10' u* M q! r2 Z% {& B3 E( o; H
004032CF E8 F0C20200 call qsr.0042F5C4
x" |' d4 y4 g1 y8 k1 b004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
( R3 E" T+ m/ \0 \ ]+ D# J2 [004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl
3 z/ z8 _# S7 o8 m' _004032DC E8 AAC10200 call qsr.0042F48B6 P+ \0 `2 ? h# s" A# O5 _5 v) X
004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
9 s- h' Q6 ~) x2 V. ?$ X004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX( |7 l. }* j* S! Q. J
004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
. |! S3 U; W) g' A004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL
, k& Z% T' i; k+ X004032ED 8ACA mov cl,dl ; DL送CL
4 ~; L+ F# [4 y; x" C5 D6 b004032EF 3AD3 cmp dl,bl ; DL和BL比较0 f2 ?6 N8 \& e i6 ?- A, a- j
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)* b5 z0 j+ }# h. U: H
004032F3 84C9 test cl,cl* T/ g* z4 s% f% s7 ?4 H5 _
004032F5 74 16 je short qsr.0040330D4 T* G7 A$ O# z e: B; U4 Y
004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL
" p5 T% v0 P" ], f004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL
3 {: O! I! ]# Z: Y% G9 M O004032FD 8ACA mov cl,dl% `( y9 y7 V# |6 u4 C4 ^; b
004032FF 3AD3 cmp dl,bl ; DL和BL比较
0 D2 Y. I( K; d0 b$ S1 }00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
, F+ f$ r& v6 S00403303 83C0 02 add eax,2 ; EAX加2
" ~: Z' F8 ?9 c3 J0 r% p- a" ~; e00403306 83C6 02 add esi,2 ; ESI加2+ d# ?. I: O% @% D; f
00403309 84C9 test cl,cl
9 o9 P) ^; l2 E1 O7 s- _0040330B ^ 75 DC jnz short qsr.004032E9* d. V: Y4 Z- H! f
0040330D 33C0 xor eax,eax
* }! x2 V' m# v4 w2 K0040330F EB 05 jmp short qsr.00403316/ s$ `3 U; S5 h( C
00403311 1BC0 sbb eax,eax8 N3 u: \/ E- g( N! D5 y
00403313 83D8 FF sbb eax,-10 ? f: ^. F. z; E* d* q
00403316 85C0 test eax,eax
: O; K( ~" t# A% B1 u00403318 74 0E je short qsr.004033288 q' D- Y2 J& P$ Q) u
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A" T2 h" }, _9 b! N2 d6 q
0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]: \. B+ \& A# D3 y/ A7 I& t
00403323 E9 F0000000 jmp qsr.00403418+ f U9 C1 ~3 b- d# w; l# G
00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
8 P9 Y" _0 U1 }& q, O0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
* s, y& m6 A3 S; s! _00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]4 R+ ^/ K4 x* o
00403333 50 push eax
4 s8 D% \% s& B: X00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX1 E& ]6 j; W! n P" t# _
00403339 50 push eax+ \/ r, v( Z' A4 [5 j1 A8 K
0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX$ \2 t* ~+ |7 E" V/ [
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
1 s# [& A3 N; y* w2 A! i5 E. H00403343 83C4 04 add esp,4
1 J5 G/ Y g8 o0 M2 B00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI6 Y- y& E3 u+ e0 ^; E
00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]7 I Q) A8 v6 {5 L2 i2 h1 \$ @
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
1 ]- }0 w" Q$ s# Q0040334F 50 push eax5 I' a, V1 x* o% k( L* m
00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
* {% Z4 V% l7 L4 L' e00403355 50 push eax
! ?5 X0 l) g5 P* E. Z# s w00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX
. e# ?# S- K$ o3 C# z% H- o0 c0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX' }( m+ ]+ v, O
0040335F 83C4 04 add esp,4. o% Q2 g# p+ Q0 t% B+ u# B
00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI
! n, s5 L( }- H8 {( `00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
$ J1 `: V- U! K& N! I+ N7 a! P1 i00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]
' L0 y' f2 _- H0040336B 50 push eax! k# c {7 Y5 {
0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX7 W* X M" Z# G/ P$ X' R
00403371 50 push eax' ~5 }/ x/ M; ~ q6 }9 q
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX
$ r3 t% a: q. T00403377 8BD8 mov ebx,eax ; EAX送EBX
; S2 M9 ~) L2 G8 E; n. v5 [; h& H00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX
- T; y- L+ N! C1 h! x) Z. _0040337D 83C4 04 add esp,4
% @# i+ H1 A; e) s# ?2 j00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ?. x: e! F1 d: q* @
00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]1 K2 C. t, _$ V
00403387 50 push eax% m4 z6 U0 s7 `! N1 u
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX- M' m2 M1 a& s) O
0040338D 50 push eax q+ }. f4 d( o) L- B+ B4 _( B
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
W. Q }4 N- u00403393 83C4 04 add esp,48 d, B" r3 x) |7 ?# O4 n
00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
4 ~/ O/ y% I1 x M% H$ ^0040339A 8BE8 mov ebp,eax ; EAX送EBP
2 ]' X$ M6 M# Z Y- H9 ^0040339C 6A FF push -1& f7 `% s! n4 f/ {5 J* F4 v
0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX; s. F0 O% L _& k, K2 {1 z; {0 b
004033A3 6A FF push -1
5 A* r" l( j I, u, ~5 V004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX# F; K( B7 f; `, m+ ~3 j- j7 L
004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
- b! Z3 N6 T4 Q5 _. f. [3 `004033AE 6A FF push -1
+ Q' L e& e" I$ q" J004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX" ]2 F! F3 C: d5 e; r9 j; v9 d
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX
( \) z2 |; O6 H6 T5 _004033B9 6A FF push -1
( q3 V- j6 h8 n" ^9 h004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX) r4 w" C9 Z5 ]' G+ d3 b1 D
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX
8 |! N5 W+ D& H: r3 j004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX0 s5 V9 d9 ? b$ U% q+ g
004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX/ c6 [ D- U, e! @* X6 K) o
004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
# N1 |# ~! I4 k! I004033D7 D1E0 shl eax,1 ; EAX左移1位
0 ~/ _# b9 {+ r0 q% [, h: C' \" l004033D9 99 cdq ; EAX扩展
+ o) U; P" z1 s( p4 H004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中( Q8 c. K; F+ Q
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
9 N! Y, O( [! L004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)# J# t B. h& N! B, [
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A7 m8 {0 d' |1 i& {/ [
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
& ?" L2 A/ q9 k: k* d( u' S' V1 T. k004033E9 EB 2D jmp short qsr.00403418' a9 S1 ?6 y* @' s( q/ m; W
004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX
# t& ?8 ^9 M6 L5 |6 a004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E24 ^4 B8 T9 X: K; p+ N% C
004033F7 99 cdq ; EBX扩展( N1 ?9 x6 h8 m8 N# {5 N8 A2 ~: f t
004033F8 33C2 xor eax,edx ; EAX和EDX取异或) [9 q5 g+ m9 P, i
004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX0 l/ m* L6 y6 J2 y' y- x
004033FF 2BC2 sub eax,edx ; EAX减去EDX3 C/ a5 K* E+ M. F5 \. O& M; Y
00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]
/ H4 G2 y6 i- Q4 q4 v, d# B1 G00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
( p/ F. ?+ U: h4 a00403409 99 cdq
) O, Y4 F: A6 d0 e0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中* f; {& I0 D s, W$ v$ B# }
0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX
( }9 T2 R3 A+ e00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较
7 B1 p1 C8 ^ g/ N f" `/ j% ?00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)% |& `0 I8 M. ^/ b
00403418 E8 6EC00200 call qsr.0042F48B ; 4 W: F& Z3 A( z4 w. u1 p$ N
0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
4 a( ~7 p$ Q! ]00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9; p& D; x; Z$ M% @# {2 b4 n/ t
00403426 E8 60C00200 call qsr.0042F48B
% U9 k- u0 c* V U8 U# R. F0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
: S/ r, u- A7 r/ f9 b& X/ b0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],85 X1 w+ r+ Y. g/ G7 x% H
00403434 E8 52C00200 call qsr.0042F48B
# x. t. V! S3 j00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
/ [+ Q" _; ^! X1 m0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],70 |7 ]2 Y. ^1 X
00403442 E8 44C00200 call qsr.0042F48B
, F! C+ W: m2 E2 J' |" c7 V2 k1 A00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
: N2 ~1 L% z- K V. B0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
# i6 y5 X# v k00403450 E8 36C00200 call qsr.0042F48B6 L: o. z" O3 X0 B8 U
00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
% Y, g/ N# h1 E3 a5 c% l4 e00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3- `0 `6 u' v/ \% C6 _
0040345E E8 28C00200 call qsr.0042F48B
) o* n5 _) y$ \1 g6 m00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
G. _ J9 w, \2 F5 q K. `+ W00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
7 F) e! A$ m/ V# L7 f0040346C E8 1AC00200 call qsr.0042F48B
6 _" F" [) E, [- c' ^3 D* F00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]/ f4 f0 t) G0 W& k, _
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1: G. d* J0 f9 Z3 H& h9 _
0040347A E8 0CC00200 call qsr.0042F48B
1 h% H6 B9 l9 \1 f0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
4 i8 O3 O5 T2 x; f- D8 I& Q! {00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0: |$ s' ^8 L! |2 ] j
00403488 E8 FEBF0200 call qsr.0042F48B
0 G8 M# ^, R7 U0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
5 H. U* W5 e3 v A, Z0 M- b00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
- b" {8 |4 ~: B00403499 E8 EDBF0200 call qsr.0042F48B* _- K9 N& K) R5 g8 k0 b2 H. [5 C
0040349E 32C0 xor al,al ; AL清0
8 C& F+ ~, }; S9 O6 A4 m004034A0 E9 88000000 jmp qsr.0040352D, ], O. I8 }, z
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~2 x9 f& R% ~9 S7 n& U
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]0 i5 m9 H) W5 R1 x$ j" M- M
004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9$ |3 u2 u2 K! a- P! a; H8 B
004034B3 E8 D3BF0200 call qsr.0042F48B
0 v8 x0 s$ ~1 t* g; r004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
& e% F( G5 l# Y6 k' k004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
+ d% M# o* w& O1 h( T& Q004034C1 E8 C5BF0200 call qsr.0042F48B
$ b9 y* l. Q% ^6 A1 U004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
: t0 u) M3 u" n" x$ |3 [004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
% c9 N. n. w2 i5 X4 e- Y; |* W004034CF E8 B7BF0200 call qsr.0042F48B- S( p( ?/ E. h
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
3 {" o- i5 z5 J. d" W004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6, A" |$ a3 K- a
004034DD E8 A9BF0200 call qsr.0042F48B
: w! R6 G7 o L* D004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
) S f& {3 ?/ {& u$ p* g004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
! r9 x% W* E, }9 W) }- x004034EB E8 9BBF0200 call qsr.0042F48B
3 F8 `; p7 B6 |; b; Z4 v( b004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
9 R0 }5 r- Y0 W+ }: p5 m" P' m004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2
* j U) Z1 B& h, I. J004034F9 E8 8DBF0200 call qsr.0042F48B
! Z9 Z3 F/ q# k004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]' [1 l; Y% ~: y7 Y8 Q0 w0 T- O
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1
8 F( E D4 ^' Q2 Y/ a! z' T00403507 E8 7FBF0200 call qsr.0042F48B
1 S2 p; [" X S% r& Z0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]" k1 R( T. i/ _" A; V8 l
00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],03 g; G3 v- @5 n/ q( _9 i
00403515 E8 71BF0200 call qsr.0042F48B* U p2 Z# b/ b: G8 e
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
0 a$ j, a/ f& X4 p( s7 k7 z* }0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
$ s" H: z8 G& Z' C7 z00403526 E8 60BF0200 call qsr.0042F48B9 e' M1 t6 u! O8 H2 \* P/ G
0040352B B0 01 mov al,1( t5 a- Q( l0 O: u1 l
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]8 s5 s$ P$ K- y7 N' r
00403531 5F pop edi' Y" w* N- x& P' `) j# Y t
00403532 5E pop esi
, `/ X) `2 E4 J5 v8 |00403533 5D pop ebp' p J5 _! c' Z6 C
00403534 5B pop ebx8 d+ w8 f/ r3 S# ^$ Y% \, @
00403535 64:890D 0000000>mov dword ptr fs:[0],ecx
0 @9 I. h7 i6 s4 [& W! t# J0040353C 83C4 30 add esp,309 E* e. w. N9 Z9 U i5 w
0040353F C2 0800 retn 8
: i* F8 m W2 G+ B) X--------------------------------------------------------------------------------6 L& d7 v# r6 l9 A# a& E
【破解总结】
/ m8 K! Y3 H! L) @4 q 用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
; L# B2 |" n$ {- j. }5 i用户名:yijun
4 S9 k+ h% F5 w注册码:4893*7777*3726*7777*0529
r' X0 {- [5 @0 R( e p--------------------------------------------------------------------------------
& u9 z$ U+ a9 b! \" e+ e【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡