|
|
|
【原创】破解Quick Screen Recorder
( W7 G$ @ S+ { X【破解作者】 yijun
0 F+ H( t( S. }) y6 }【作者邮箱】 [email protected]
( ~1 ^, d! P$ _4 Z【使用工具】 OD,PEID! k9 w* V' u( H- p$ p" t
【破解平台】 WinXP* v. B6 ~# N9 m2 U+ u# c1 l# |, I
【软件名称】 Quick Screen Recorder, h$ ~9 A3 i. f6 Y
【下载地址】 天空# ]3 V$ R1 Q( |) Q1 Y! V4 J5 ~- G
【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on. ; x! s; C. D: G! z
【软件大小】 540K1 A- E8 |6 q( s
【加壳方式】 无
' G, ]0 Z0 b1 s$ r【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)
_6 y1 l9 T; [1 ]& e4 g b--------------------------------------------------------------------------------
2 [ `: U& ~3 L【破解内容】& n& Y) `4 A) c/ D- W0 m. Z7 U
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
: _ P2 a7 p: z; [) {( W: n00404C69 55 push ebp //在此下断4 ^0 k) j3 s! q2 g
00404C6A 56 push esi$ o' g" N" Q# l" O3 y
00404C6B 57 push edi' H9 K& H. y# y5 s( r
00404C6C 8BE9 mov ebp,ecx
- Q! \6 R# B. K00404C6E 6A 01 push 1
/ x0 k% o l w. K$ E6 [00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
0 Q+ R2 R8 V) w7 K* J" h9 Z00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]
. Y; }% G7 o3 o$ f% i2 D00404C78 8BCF mov ecx,edi1 ~# F& |: D$ C+ L, W* c
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码
Q1 u# b ~- x4 _2 h00404C7F 8BCF mov ecx,edi4 j) _- j, l9 k* ~/ n
00404C81 E8 A73E0200 call qsr.00428B2D
; b t, z! Q2 V9 n$ U V4 `00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]; F2 S3 e/ t% [2 ]4 }- @
00404C89 8BCE mov ecx,esi4 ?0 q; s% P( }
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX
/ n& k: }% J; G$ U9 v1 s% c00404C90 8BCE mov ecx,esi
. ^0 z* w* \8 B1 y) V1 L" Q) P00404C92 E8 963E0200 call qsr.00428B2D& n8 c9 b7 T$ }3 c+ M8 z2 m
00404C97 8B06 mov eax,dword ptr ds:[esi]9 C7 o# m$ P- o3 K! Q& F, G3 _" @
00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
3 d/ v3 C) r# q6 h, t- C00404C9D 7D 26 jge short qsr.00404CC5$ C R+ b% R5 G- n
00404C9F 6A 40 push 400 u) h L, V$ z/ _+ w& u5 r. W
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
$ f& C/ I/ z- l. \00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."6 ~$ q7 s) P7 z$ I- m
00404CAB 8BCD mov ecx,ebp
! z( r" A# r% Z- o7 V- e00404CAD E8 C3840200 call qsr.0042D175* A' y! I+ P2 E% ?: M3 I& }% q( [
00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]) M5 G1 `3 ~1 F. s# g
00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx2 v6 n, G; T, z' l) S+ N1 Z; P
00404CBD 5F pop edi
/ A/ r: ~2 V/ U, @' G* R( S) [00404CBE 5E pop esi
8 J0 v, h' T7 [3 D2 p, c) S00404CBF 5D pop ebp
0 x' ?) t" ~6 m; e- L% l, i00404CC0 5B pop ebx
! N( ~* l+ e7 g1 |% o00404CC1 83C4 18 add esp,18$ z. E) j4 Y6 v7 X6 | g& _
00404CC4 C3 retn$ X' E0 l- I5 _( V
00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
# R* o3 b. ^' d8 j! J00404CC8 84C0 test al,al U6 A1 p6 K, O5 ]. y
00404CCA 0F85 1C010000 jnz qsr.00404DEC c$ |* T& J' Y* r) U0 { x
00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
8 I0 [: b- H3 c- |6 M# I: o+ b9 a00404CD4 E8 87E3FFFF call qsr.00403060
) J( q* C% I: f. ~7 \00404CD9 51 push ecx8 i B- [+ Q" j, w! i7 C1 M j. J2 Q
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
: d u/ C1 p2 r9 S' P: U6 n+ k00404CE2 8BCC mov ecx,esp4 G; u6 `* R: @9 W& U' k
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp1 h# O& J7 |; `# d( L
00404CE8 56 push esi
5 ^% G% ]9 ?/ n00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0- g" d7 e2 @% D0 ], C
00404CEE 51 push ecx) F2 w5 e; I* ^$ O
00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1, n9 U! \- A$ y0 o
00404CF4 8BCC mov ecx,esp
5 A) ~" P% z3 n) j5 q$ Y% z8 C00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
1 w5 r" ?! J2 z/ Y% G- l00404CFA 57 push edi. y( {, l7 s' t9 O" r
00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0# D) S+ N: a6 ?5 X
00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]- P, ]3 Q& R' v/ {
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0
) R$ Z1 O; j Z- m: g4 y8 R1 z00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~4 `' u) q" f7 i
00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~) T Z6 W8 f7 X+ S2 G2 B, S/ @
00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
6 x4 F* R9 y% N5 g$ V) s' \( r: J00404D12 6A 40 push 40 Z5 H, B) D7 D* }
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder": `' h0 ^$ r- l- d0 E
00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."( R- j' n6 E5 B- S
00404D1E 8BCD mov ecx,ebp \8 }/ \7 t/ \5 X% a' Z l2 L
00404D20 E8 50840200 call qsr.0042D175* P0 p0 L$ {- `$ h; F% L# T: G
00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
) `4 D5 \5 |1 T# A00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-19 ^+ p- `& L! i9 G8 O
00404D31 E8 5AE3FFFF call qsr.00403090! V8 R4 H4 U5 O) j8 @4 G
00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]2 [) n2 j% O. Z. h% @
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
2 @6 Z' E( q. M( e9 B00404D41 5F pop edi
3 C {: ~: P% ^) ^& P% }4 X00404D42 5E pop esi ^- d4 {4 Y& }4 B3 T5 [6 z1 `( c3 x
00404D43 5D pop ebp
, k Z1 }( W6 f! q7 U% j00404D44 5B pop ebx
; p8 }* X% ^/ H( X- _00404D45 83C4 18 add esp,18
, t9 e A: K3 L8 ^* Q; L4 b00404D48 C3 retn
9 e2 |# }: T( K5 O$ P" Y*********************************************************************************************************************************************************
# n. r7 I! w: T4 x: w( q$ M跟进00404D09处CALL来到:
/ ]9 O2 U7 W4 T/ S; K$ h) Z+ m" }004030A0 6A FF push -1 //一路F8下去~~~~1 ]4 v- K! o! Q5 q
004030A2 68 C88F4400 push qsr.00448FC8) ?3 C, J, ^) v2 d R: H/ D- ~
004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]6 ~' a+ h1 b2 f' C4 Z8 R
004030AD 50 push eax- Y. D& R; Q/ L7 T1 q" {& X/ n
004030AE 64:8925 0000000>mov dword ptr fs:[0],esp: y9 o, A# Q! J" f$ r( N$ T
004030B5 83EC 24 sub esp,242 g7 O7 p8 ^8 U- Y9 p- ?' F
004030B8 53 push ebx0 l% e- G* g) J/ q0 Y
004030B9 55 push ebp
$ Q0 T7 W( l: M6 W( O004030BA 56 push esi
/ x# e- m' s1 N004030BB 57 push edi! P( P/ [, w: z
004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"
! b8 W. S, V: A( x004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
3 i7 a, Y3 A0 R8 O004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1
- R; H% V$ V3 K/ H" N; k1 ^004030CD E8 27C40200 call qsr.0042F4F9
2 m7 R# ]; _! K( O' n1 W004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
8 G: d' ?0 O5 |004030D7 894424 2C mov dword ptr ss:[esp+2C],eax$ H# \& f: x- S
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
+ E" i- j o. V: y* X8 r |004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
6 w( W6 n! [, [" K/ c* w6 k8 D004030E4 E8 905A0200 call qsr.00428B79' ~+ f |6 C1 u8 T3 B
004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
5 F( H0 s0 g% F* B! ]004030ED E8 3B5A0200 call qsr.00428B2D
, e1 |8 T" P e/ O1 B+ S004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]; d! b# v" E6 P& a; |" B
004030F6 E8 7E5A0200 call qsr.00428B79
! A# h; J& Q/ f- T004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]( {* [( N! x6 s, ~$ L
004030FF E8 295A0200 call qsr.00428B2D
/ C$ h: U% `4 f2 @+ w$ z8 n00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]1 p$ M- r/ v" l$ Q' G1 a
00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
) d9 j4 y3 a. E8 W0 Y0040310B 83F8 02 cmp eax,2
5 F: j( x' Y5 R( R, p8 J% a0 H& U0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
. W* [% e9 f/ i, _% H, \/ ]00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]
; n, C$ v! x' o3 U00403118 837A F8 18 cmp dword ptr ds:[edx-8],18$ j6 c7 k& c, D: i$ Y! d8 O
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳2 u# k4 l2 q, m, O9 J
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
9 B- h) S/ ]( O2 I/ R, i/ c$ c: {00403126 6A 01 push 1
/ ?9 q4 y: o1 ]$ ^# r! w00403128 50 push eax
, Z9 C$ ?, h0 n. B6 {7 E, T) ]! F2 W00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
8 T0 h3 l" \' x, u: s. ?" d0040312D E8 C4550200 call qsr.004286F6
1 X/ B" H- j+ j2 c3 ^/ `00403132 8B00 mov eax,dword ptr ds:[eax]
* E1 y/ l }! |3 k) j/ L00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
- G' X1 }+ x7 h! A9 X1 S00403138 50 push eax
# l" t' d3 `( ^. y00403139 C64424 40 04 mov byte ptr ss:[esp+40],4& q$ u* V6 b0 {5 g$ {
0040313E E8 4D560200 call qsr.00428790% Z. B/ K1 I$ K8 y7 v
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]- Y: h* U0 Y% X/ I
00403147 8BF0 mov esi,eax5 O r" T) ]$ M/ M4 N
00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3
8 w1 Q* Q M# E7 K0040314E E8 38C30200 call qsr.0042F48B& h* a& a* g: [- u) o
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]5 _/ I3 [7 i; d% C r O% }) T. i
00403156 B9 3E000000 mov ecx,3E2 b( J8 R0 K- y+ M: {" r
0040315B 99 cdq7 N5 X: Y P9 d$ M
0040315C F7F9 idiv ecx
9 q8 e. o7 K0 J1 Y# o) s0040315E 6A 01 push 1/ a5 S; a! q3 i$ `6 U2 X* C9 k
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]; B7 j- v s4 f$ W
00403164 8BF2 mov esi,edx# E% \- s- Z- s) Q
00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
- t( Y [( ?0 I9 `0040316A 52 push edx$ N$ H# F8 L; v' B* B% ^3 d8 ^
0040316B E8 0A550200 call qsr.0042867A/ O# a* I: K7 O) N4 F* K/ u
00403170 8B00 mov eax,dword ptr ds:[eax]
4 k/ I T" w7 M0 M: i' T0 o00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
; d" T! m# h8 E8 F00403176 50 push eax
( v, o* o. f, R- K4 r00403177 C64424 40 05 mov byte ptr ss:[esp+40],55 K8 y9 {2 e" i! @- c
0040317C E8 0F560200 call qsr.00428790
7 H# g& i9 [ w1 A9 `00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]0 [0 c, V& y8 z
00403185 8BF8 mov edi,eax
* E8 \+ S; |) R& t& f# X9 `00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],34 D0 M( {. ]2 I3 }7 i
0040318C E8 FAC20200 call qsr.0042F48B; m( l4 r$ |: _) I; a% i
00403191 8D47 0A lea eax,dword ptr ds:[edi+A]
3 F8 Y9 P* `! z1 Y& f' I* z1 d1 p00403194 B9 3E000000 mov ecx,3E
8 \% K$ X |. h& D00403199 99 cdq
/ W" d) {! d5 Q9 N0040319A F7F9 idiv ecx, z6 u+ t1 l2 g& z4 O3 I7 w7 i1 f1 A
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]
8 f: k: \! `6 ~$ a9 O( w004031A1 894424 28 mov dword ptr ss:[esp+28],eax g% k4 r& o V. n" t/ ?% I
004031A5 8BCA mov ecx,edx* _( N( V0 J: O( J& @
004031A7 894424 24 mov dword ptr ss:[esp+24],eax
( u& V1 f5 q+ A$ Y, V( {004031AB 894424 1C mov dword ptr ss:[esp+1C],eax7 e9 ~4 i- y+ |% e5 Y
004031AF 894424 18 mov dword ptr ss:[esp+18],eax
1 o# j8 S5 D l: E) t004031B3 894424 14 mov dword ptr ss:[esp+14],eax
- k/ `0 f) T/ u: O& f004031B7 894424 10 mov dword ptr ss:[esp+10],eax
6 S0 u& W$ _( Z9 m004031BB 8BC1 mov eax,ecx
% }# s+ i) b) k9 @. f004031BD BF 0A000000 mov edi,0A
. j7 K' m& g: A: @& M# x- d004031C2 99 cdq* S1 }9 k4 h* K9 N
004031C3 F7FF idiv edi
/ g" a2 [+ n+ _ F' f- N7 [004031C5 8BC1 mov eax,ecx6 l" W1 [# g0 }7 _
004031C7 B3 0B mov bl,0B5 H7 k2 L# E7 u0 o0 q3 z: a
004031C9 0FAFC1 imul eax,ecx
; x9 ^+ T$ H6 Z" D; u. ]004031CC 8BCF mov ecx,edi: Q* r) P/ S( W( @$ m! F) a
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl. q; A* t& w' d# d
004031D2 52 push edx
4 l: w& L' q P: Z9 P+ }004031D3 99 cdq5 p+ |! ~- }+ d7 E
004031D4 F7F9 idiv ecx! }+ I/ K7 `+ p1 O
004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]4 n- T1 W& c) t- O
004031DD 2BC6 sub eax,esi
6 J: X- R4 r: a% Q! o9 f# k e% ~004031DF 52 push edx
3 C; E% j9 f* e& g9 i004031E0 99 cdq
c9 `$ G$ _% x$ K/ O+ q# [- u004031E1 F7F9 idiv ecx# d; n& ?. y" ]5 j/ X5 L8 z
004031E3 8BC6 mov eax,esi9 s J: A2 B! L: `' w* b, k
004031E5 52 push edx$ |3 m, F2 ]$ Y8 I* `7 C: b5 |
004031E6 99 cdq( D; U' p1 a1 @3 k2 t9 m
004031E7 F7F9 idiv ecx6 M$ j4 A+ R2 p3 P: `8 B+ [: g# x
004031E9 52 push edx
7 b* d- G1 C5 Q, V8 d# l004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
, V) z: ` G% `' n004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"+ y; n; Q! }- h0 a! S
004031F3 52 push edx$ g# |1 E, l, ]: D
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893% A" T, b7 w5 I. s7 k
004031F9 83C4 18 add esp,18
0 v: g& G; p5 Y. U; q* e" M1 H004031FC 6A 04 push 4
- h7 R$ z7 W! ^( B2 w" \004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34], ]$ a L: ], C8 Q3 F
00403202 6A 00 push 0
* J: z f# ?! z# N$ P j: S00403204 50 push eax
% Z [7 Z9 P! p: L% I00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
; l5 Y: I1 Y) f/ U$ Q8 O) F00403209 E8 D6530200 call qsr.004285E4
+ Q* a( j- x$ T% k0040320E 50 push eax' u/ d3 C* r/ }! ], Q% a
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]7 T& B" G* H/ J0 E% B
00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C, F3 L3 v/ M! e) }3 L5 g+ E( ]
00403218 E8 A7C30200 call qsr.0042F5C44 s$ o4 ~3 j& h3 Q S# t5 `3 }
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
/ m; [1 `8 s; S. r. p) N/ G00403221 885C24 3C mov byte ptr ss:[esp+3C],bl% R3 g, e, ]8 |( w6 R7 Y3 o- y
00403225 E8 61C20200 call qsr.0042F48B; t4 g/ q( J3 n) ]* ]! \6 s5 V% ]
0040322A 6A 04 push 4. F% z- m0 M' V
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]: b% r6 t$ a4 t/ b$ ~" f# x1 o0 U
00403230 6A 05 push 5) ?+ _5 F: N c* n( ~; y: A, Z
00403232 51 push ecx' f& l3 K% S7 D+ g
00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]3 N+ z& N0 e L v! p: Q
00403237 E8 A8530200 call qsr.004285E4% b; _1 E) G, ~: \
0040323C 50 push eax1 `+ @7 v/ A( M. I9 p
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
3 w; `. W* @+ B% }. U* r9 p00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D7 \! f6 \/ ~$ f/ d
00403246 E8 79C30200 call qsr.0042F5C42 l9 q- ~+ `) @3 c, ^: G5 `
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]; r- ~+ { L R% W$ B* [# J" C
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl
( Q& F6 T7 p5 ^$ Q5 N00403253 E8 33C20200 call qsr.0042F48B
) ?6 i' d# `$ Z+ |; v+ u- L9 I7 t3 t00403258 6A 04 push 4' }$ l6 S' a0 |+ v
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]; M* C8 I. J6 p/ o B9 z
0040325E 57 push edi5 [! Z0 Z V0 _/ g7 k
0040325F 52 push edx, I- A$ u4 I: _2 ~" K0 l
00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50], j: N8 f3 k6 a" `% H$ }2 ?
00403264 E8 7B530200 call qsr.004285E46 w8 e$ @/ B9 y; p s
00403269 50 push eax+ J* ]7 I3 \/ T, D5 {0 c5 i
0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
: o) s B1 i) H0 \) }+ M0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E9 I3 F' w! Q0 }: c! c4 ]: E+ D! X
00403273 E8 4CC30200 call qsr.0042F5C49 D1 h3 J. [# k7 B# N. ~
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
6 P! i0 n/ }& p1 |0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl+ s0 X% e" }8 E1 H4 t. W
00403280 E8 06C20200 call qsr.0042F48B
4 H. O( {9 V& k6 W& o; \00403285 6A 04 push 4
p- N7 v3 Y7 G' S00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
2 v# o, b8 ~6 c6 Z. ]3 w2 M2 I0040328B 6A 0F push 0F
( @, w" w7 }. ^5 [' |0040328D 50 push eax
2 K' I9 R: v/ j/ E% Q0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]# P$ f2 w, f5 r" _, G4 K
00403292 E8 4D530200 call qsr.004285E4
$ A8 y6 U( l: a- d1 M; ^00403297 50 push eax
! l" W" p" J8 q00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
$ S$ y9 ?1 ?' }8 M) b: @0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F1 O- [& R( j+ [2 {5 ]: L
004032A1 E8 1EC30200 call qsr.0042F5C44 ~- n7 @- j0 ]% |8 [4 Y! O
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]) e; f5 R& ` N- b
004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl$ v r7 L" L- ^6 W
004032AE E8 D8C10200 call qsr.0042F48B
+ }2 G8 {* ?' G. r; f004032B3 6A 04 push 4
5 L) X. D$ F$ u1 P004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]. I4 \) v# _# R- d; f
004032B9 6A 14 push 14" K5 p5 |& m/ L5 ?% G
004032BB 51 push ecx
( ^0 Z+ \7 q/ V' E% n' o, _2 s004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]$ G' |. ]0 w$ L# I( W3 ?
004032C0 E8 1F530200 call qsr.004285E40 B; l" C- R, u( s4 ^) W
004032C5 50 push eax s* o5 s( v" h7 G- G
004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]/ V9 J' E* D* p
004032CA C64424 40 10 mov byte ptr ss:[esp+40],10
7 S, e& D& I' r; ^% a# G004032CF E8 F0C20200 call qsr.0042F5C4# Q. c5 q3 P, D8 b; I8 Z$ I
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
" b8 J1 z. u0 u& g7 b" F. }: }004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl, W; ?# v( y+ j' U% v) A* F8 r
004032DC E8 AAC10200 call qsr.0042F48B- m9 U% @1 }: f d* R, E
004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI2 G# C" `- R9 g$ h
004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
- n8 B e. }& O7 t# F& y, ]8 `: h004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL/ l% m, ?' L% h
004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL1 Z) |5 L& C1 @; H& j% V4 o, T
004032ED 8ACA mov cl,dl ; DL送CL, k! H7 ], O$ n% u$ y
004032EF 3AD3 cmp dl,bl ; DL和BL比较5 {5 `) E. |: s5 J/ F) i' p" M4 b
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)+ P( K* S7 q, ]% C6 `- `8 ~
004032F3 84C9 test cl,cl" F* |, @6 k. v$ C% P/ c9 G
004032F5 74 16 je short qsr.0040330D
9 r3 @; l9 P( w, Q004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL
' h4 x. U+ J0 d. }( y; N7 s" W004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL
6 J! y+ b! `; Q) A2 k- E7 k004032FD 8ACA mov cl,dl9 w6 H# r6 M) F6 s: f) Q6 X
004032FF 3AD3 cmp dl,bl ; DL和BL比较+ y) Y' t! B" I" j
00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
1 P8 B5 r' g" x1 W* B2 N00403303 83C0 02 add eax,2 ; EAX加2. M/ Y8 K. X9 U; \
00403306 83C6 02 add esi,2 ; ESI加2
& _4 Y6 N* ?( b00403309 84C9 test cl,cl
" I2 u, w# g# w; r3 @, L8 R0040330B ^ 75 DC jnz short qsr.004032E9
8 z5 D1 N) G. e1 s O0040330D 33C0 xor eax,eax
% J& v, _+ ~3 Z' f0040330F EB 05 jmp short qsr.00403316
3 P) K: \: R* v, _00403311 1BC0 sbb eax,eax. L8 R: ^1 B# R' K. Z4 D4 X
00403313 83D8 FF sbb eax,-1
) ]3 N* T- B. C4 [' D' Z00403316 85C0 test eax,eax5 q: ?8 [/ l- h9 s3 p" M2 o
00403318 74 0E je short qsr.00403328
7 s& m& x( G) h S! M- ]0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A4 e3 i1 l0 D; g! u( x. Q
0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]. ^$ i2 R8 m& r/ T4 `* p, |
00403323 E9 F0000000 jmp qsr.00403418# j, L- A+ _" v8 B+ ]3 M
00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX. P4 w7 f- `3 c% F: \! \) j6 K
0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
* k* @5 D% N2 b& B, E9 T! d+ }00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]2 g4 u9 T8 }- L) q; ~7 }, J
00403333 50 push eax
& Z- r, x, i1 Q* p! [00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX9 {2 \! B7 _+ N3 j9 l) {2 t7 m
00403339 50 push eax1 m9 r1 K' V c' Q$ J
0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX* @! t' c$ g3 Q6 V6 ^
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX! C% A4 K4 p1 p8 a, U8 K ]
00403343 83C4 04 add esp,4+ R, | O1 [* G; h
00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI
" J) X a6 v# P+ X" q/ N00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]; G3 d: y4 Z4 ~* e' T6 _) Q
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
, i6 f6 t1 s. ^( g0040334F 50 push eax- m; z# ?6 l8 M9 `: c' `; K
00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
- T/ l4 N/ y' ]00403355 50 push eax8 k1 _; ^4 {1 ?# p; |" h
00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX
" A E- B) | V5 `2 C0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX: ]1 i! S5 U" |0 e1 a# y9 _
0040335F 83C4 04 add esp,40 \8 o6 ^0 _# ^# j. V2 j/ ~! x! P
00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI& E" N# F1 G$ m, P% v. a3 \) Q
00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]- p5 ~6 `. S; y9 A) n
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]
- N" H3 h, H( O& s( B- {0040336B 50 push eax
4 j' M' U8 p. \: ~# F0 B0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX
5 b6 G+ O( u! d+ x* t5 [2 ]6 c00403371 50 push eax. }) _; l, K/ W% S
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX
8 J3 t/ f5 k& P& p- ?' ?: m, c# R00403377 8BD8 mov ebx,eax ; EAX送EBX
9 D. d. G, A& }6 @% p00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX
' J$ x# x/ ?7 `3 c) o* s1 H0040337D 83C4 04 add esp,4
+ J: I7 J, A6 I( A9 ^1 n4 W; E00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
+ V8 c u5 v7 G" V, A' E' V. M00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]
5 S6 }3 n* i6 R) x& P! P8 x. y* B+ C+ q00403387 50 push eax6 _4 ^: }, _2 Z" n) T) {/ ]1 u
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX% d# H, }! w/ b3 @' o- t4 B. K. _
0040338D 50 push eax( X/ [1 T b4 S
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
! a+ ~, f7 |; {00403393 83C4 04 add esp,40 a* D; s7 B; P5 O8 o. M7 t
00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
& a5 U7 O: y( @$ v: k! i0040339A 8BE8 mov ebp,eax ; EAX送EBP
. |2 ] W3 E' ^5 i0040339C 6A FF push -1$ j; n6 h5 l& h. E
0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX5 T! k, Z% S' V4 a2 e+ p4 x
004033A3 6A FF push -1
" c# a8 [& q. l$ S4 y: v: j, C004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX0 ]. L3 S3 f. _/ b% U u
004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX% z. P% \1 p; \& \, B
004033AE 6A FF push -1" i) \- ]: k7 c
004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX
3 L( t. r& T) ~4 I: }$ F+ y004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX
( Y' H7 n- ~: _' x- @0 @004033B9 6A FF push -1, P+ \ H" k( U, k6 d, _
004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX& }$ Q1 O9 f4 H: {$ K1 m& E# c
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX
! d$ \* u9 p5 G3 z) h a; _; K C004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
( ~# Y* p o$ a' D: G! v004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX; q2 Q0 J- ?0 } r
004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
% }: Z7 j+ j. ~7 l' ]004033D7 D1E0 shl eax,1 ; EAX左移1位* l, O: ]$ @' X7 J, C* w0 R( i
004033D9 99 cdq ; EAX扩展3 I+ K$ M. g- r2 l: M Y
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中$ n% J+ q& t; V3 k
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
: T1 o; L0 n* `% A$ N: X( g004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳): j3 U1 Y5 }4 K* O& X+ y
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A8 W5 T( E R; W: B7 U3 C
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
/ @3 j: q$ W' s! R% o' t004033E9 EB 2D jmp short qsr.00403418% x" ~- X, _5 H+ p1 F/ R: z
004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX) d9 n1 W5 p d, s7 n- ]# n
004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2: i# C* g2 v% _ Y( d, C
004033F7 99 cdq ; EBX扩展: z+ A, S, G' r+ O& T- |/ N1 B
004033F8 33C2 xor eax,edx ; EAX和EDX取异或0 _. [# g% q) N5 |4 ~
004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
0 f' Y" @: D- N% q- \" B004033FF 2BC2 sub eax,edx ; EAX减去EDX
& E- w! | j/ k( d00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]+ H" ]0 L3 s# Y8 K/ B
00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX/ r% m2 q2 |2 x2 l" @: L: T
00403409 99 cdq% o: }& N- q& ^! o" y! L
0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中+ j, X6 D9 o }0 v1 ~5 A9 C
0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX
1 p. F; G, B' m) u1 q; s00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较/ ?1 ]0 @2 J" ]
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)
0 z8 w- Z9 ~/ w% B: F" ~00403418 E8 6EC00200 call qsr.0042F48B ;
* b# v0 _. Q9 q0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
# Z$ {( h& D) X1 n' r00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9
0 _* @1 \- ~8 k0 J3 ^00403426 E8 60C00200 call qsr.0042F48B
: y. W8 Q. \+ Q5 r5 Z' L+ G5 v0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
$ }" L" @9 w1 `) f' Q6 l: r( Y0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],87 C& B, G3 I, u8 E7 ]/ Y
00403434 E8 52C00200 call qsr.0042F48B7 } ]" U: `% b; A+ x
00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]1 r5 _2 w* l$ `8 U. Z5 @2 K
0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7
+ G3 h( [9 ^1 D D% t9 z) |5 G00403442 E8 44C00200 call qsr.0042F48B
1 Y, g' x, V ^8 s8 l1 l8 Z00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
4 G) ?# K5 U6 Q$ u$ [& g0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
$ V; L! f) D8 M6 M) x00403450 E8 36C00200 call qsr.0042F48B& b- y3 s! i( R& ]( l E
00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
6 ?& e0 l, G a; T/ X00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3$ G5 C4 h5 t* ?/ ? I0 W) {: Q
0040345E E8 28C00200 call qsr.0042F48B
& T9 x% M: c) R1 X/ ?/ m9 P00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
; G/ c) v" Q9 W0 s00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
2 i# B$ a/ s! k) Q- B" ~0040346C E8 1AC00200 call qsr.0042F48B5 }3 Q7 V O/ I, O
00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]$ A/ Q5 N% q& W& E: x' \6 \
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],16 w! |4 n* M- I$ c8 [: \
0040347A E8 0CC00200 call qsr.0042F48B
5 r9 N9 D, l9 X0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]6 i! x9 R, z* J4 H' |. X4 J4 D
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0% c6 k( q! C( z6 y4 v) C
00403488 E8 FEBF0200 call qsr.0042F48B' J# O N6 Z( e% h1 w# D
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]8 `2 O& B3 g- P! P/ y! ~; M+ L6 t
00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1" m% m0 r3 _3 B* G0 A7 d
00403499 E8 EDBF0200 call qsr.0042F48B. [7 S9 Y% ~/ K) ~/ ]
0040349E 32C0 xor al,al ; AL清0: P! ?6 n7 `) ^. M4 ~5 k* n* Y ?0 n
004034A0 E9 88000000 jmp qsr.0040352D2 p2 u. j5 i$ X& Y5 T
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~
& i* D; W+ y/ [3 ^& u" I004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]( U; M& C& N0 }/ J
004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9
/ c" p- T( N# ]7 v004034B3 E8 D3BF0200 call qsr.0042F48B6 A2 Q! A1 i' m- Z3 b5 G0 C5 S
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]/ k8 x/ S [( t. }; p# u+ f: D; p
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],87 C0 s5 T* c5 R- P1 K
004034C1 E8 C5BF0200 call qsr.0042F48B
% X& i5 a C& Z" Q5 }! F5 I- l004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]0 S2 k/ E7 D# ^6 b
004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
) M, K7 e% V: u; N# H: I004034CF E8 B7BF0200 call qsr.0042F48B
. h# Z* a+ M" B3 H3 ], `004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
& G( u' q- W C/ H: W/ w7 m5 i5 h004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6) P$ s( [' g$ ~0 {! c# h! }; o
004034DD E8 A9BF0200 call qsr.0042F48B
7 d F1 B: W3 o7 s' R004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]9 Z5 b6 R5 `! z5 b
004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
' E' B% ^- p$ T3 ~, K1 m004034EB E8 9BBF0200 call qsr.0042F48B* \: z$ K2 g# n3 }" B/ g. ~
004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
- y+ E& V" N( E$ F# \ d004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],29 y% j* e/ t }9 B, s/ Z- _* j4 s
004034F9 E8 8DBF0200 call qsr.0042F48B
9 G: k: n9 @2 x: _7 E# Z/ d7 A004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20], Q# R8 C/ v& H8 A! b
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1
D8 u& t; r: F4 }' @00403507 E8 7FBF0200 call qsr.0042F48B
) \$ R, K" t: G+ g$ z! ?: Q7 z0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
w+ \* V5 @3 m) J# U+ ]0 f00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0# p1 p- ?8 |3 {3 p% P) \
00403515 E8 71BF0200 call qsr.0042F48B' H5 n+ B) _$ b/ s" [5 r/ B
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
& x# @% {1 \0 Z" @0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-18 i5 }6 W$ \% k5 d- M; \
00403526 E8 60BF0200 call qsr.0042F48B
$ G+ R- X, Q9 s* Z; G0040352B B0 01 mov al,1
1 y R* l% ?" j4 F- w0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]: a$ E" l! G7 X, p$ Y1 m" N
00403531 5F pop edi
p; d4 S6 ]/ f, W00403532 5E pop esi
; i% ]( o9 q. w00403533 5D pop ebp2 b! H P2 E9 z" |5 g
00403534 5B pop ebx
4 |9 O& V) W2 g. [* X" y* B8 t00403535 64:890D 0000000>mov dword ptr fs:[0],ecx/ [# r. [9 x' Q& {
0040353C 83C4 30 add esp,30
# G7 S4 z/ G: m+ Q- c9 e0040353F C2 0800 retn 8
^, K0 E: _+ s! L1 o' P7 X--------------------------------------------------------------------------------
9 s; u2 T& Y: I2 n/ C6 `/ B【破解总结】
" N i+ b1 \1 D1 Q+ q5 @ 用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^! T9 O& M: g# o9 u
用户名:yijun' o- o2 B6 C, ]* N6 J
注册码:4893*7777*3726*7777*05297 m/ h5 A7 Q9 }& ]( T0 P: U
--------------------------------------------------------------------------------! w) x3 B: b8 C
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡