|
|
|
【原创】破解Quick Screen Recorder
# s# O, L0 a. o) H【破解作者】 yijun" ]3 W8 y6 U2 [* a: H* g
【作者邮箱】 [email protected]
9 k2 o' U, {9 D4 k: D0 Z【使用工具】 OD,PEID& H" i; W' ]' D+ G6 \1 c; E# I3 u% m
【破解平台】 WinXP
a" M3 [: A$ J5 K* l【软件名称】 Quick Screen Recorder! a0 u' ]) U) r/ c, F& }% m
【下载地址】 天空
0 H( z& z# [" T8 X: D! R【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on. ! u, q/ [# q: V" q: \6 [; I
【软件大小】 540K
+ H7 I/ ~1 O: n9 _5 x; U【加壳方式】 无
+ M" C8 G0 w+ @8 B/ E【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)
( J3 B7 n, a+ O3 C! ~% |* `3 ?$ j; t$ m--------------------------------------------------------------------------------
, l5 D; S, B' n! y! v2 l* H; |【破解内容】
! @! C0 p8 g1 N# H' t# i PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
0 `0 j: O# h% T2 k0 ?00404C69 55 push ebp //在此下断
2 O) c* h0 u0 J( e: ?- p; B00404C6A 56 push esi6 }& H4 E2 B9 F0 J! E
00404C6B 57 push edi% u$ b0 r$ g" }. f/ }7 c2 g/ T
00404C6C 8BE9 mov ebp,ecx h( m# A4 H6 }, D) V1 ?
00404C6E 6A 01 push 1' I) |0 f6 S; I+ f8 \" W/ I. W$ f1 a
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名/ o$ y- u/ `$ J; g6 X
00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]; m+ J2 P) w" ]1 `7 m" _5 e
00404C78 8BCF mov ecx,edi5 j2 @; t- ]8 d ]" i1 X
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码
$ l* G; p; {. x' g; @, c8 F00404C7F 8BCF mov ecx,edi2 V: @, ]1 l" c8 J
00404C81 E8 A73E0200 call qsr.00428B2D
8 d: e6 H* n% ]6 T. e# p1 }00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64] T5 A% x; v7 a) N+ N
00404C89 8BCE mov ecx,esi
3 E: [ N1 l5 @1 K5 b8 L00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX
# |2 g% m4 z1 ?0 W& S00404C90 8BCE mov ecx,esi# c- i0 A6 g+ K9 U7 e. d
00404C92 E8 963E0200 call qsr.00428B2D
; q2 X- B. }! C00404C97 8B06 mov eax,dword ptr ds:[esi]
' O' g6 N3 J9 _6 e- P6 {* `7 l9 J00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
2 D1 L2 @" o4 E: N# a00404C9D 7D 26 jge short qsr.00404CC5- ]* f9 a9 c! O* x- b0 @
00404C9F 6A 40 push 40
, h4 y+ h# ]9 Q; X00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"9 e2 @7 T, h8 f2 y: B8 R0 a$ l
00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."
6 y' |2 k! T' Y3 t s00404CAB 8BCD mov ecx,ebp
/ H5 P& |: @5 |4 p# u% }00404CAD E8 C3840200 call qsr.0042D175+ M# q% I; L8 }, e4 c* V
00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
6 ^' Z, j7 o, f4 H4 e. V& S4 \00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx
- H. ^2 d+ d, x% A7 z& o* j00404CBD 5F pop edi
: ] J: U+ S3 V00404CBE 5E pop esi2 l$ ^/ h: o% c
00404CBF 5D pop ebp( i' { E3 }3 N# v8 B) u/ ^( X& @
00404CC0 5B pop ebx I: ` \. F% H- _; n
00404CC1 83C4 18 add esp,188 c4 C0 k+ q% I) c7 m) C
00404CC4 C3 retn
* L0 R; _. ]1 a6 ~( J! i P+ {00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]) B/ Q( L6 {( u- Q$ a$ Q9 y6 ?4 V
00404CC8 84C0 test al,al
; a0 V- b: _' v7 \- _% L00404CCA 0F85 1C010000 jnz qsr.00404DEC
2 j5 t" U j9 b4 V f% E00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
; _5 H: n4 P. a00404CD4 E8 87E3FFFF call qsr.00403060; k) \, V3 S3 ^
00404CD9 51 push ecx8 _. V4 z6 s0 @7 F# v' c! A( K
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],06 `' e6 z+ O$ @1 Y
00404CE2 8BCC mov ecx,esp7 U; ?6 d7 _: s& c
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp) H+ H. X5 X; _
00404CE8 56 push esi
2 r5 o7 }+ ^& ^' U00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
- Z4 C' a8 o& Z4 c3 y! {00404CEE 51 push ecx) r5 ?% z3 ]5 ^
00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1
( i% Z' m1 p2 y7 P' v# p [8 ~00404CF4 8BCC mov ecx,esp* X- X L5 B( S- p
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
( D; m# _3 N' f3 f9 l00404CFA 57 push edi7 P0 Q* m* i0 v/ B5 m) r
00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是00 m- n& k; K! X7 O* m7 E
00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]. M9 Q9 N @. R( p* b, X
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0' O' i; Q. Y( L8 F
00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~" Q. M/ j# S1 J
00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~
# r/ \) q2 k+ G8 A5 D2 R00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
) X' t% _5 H8 `6 V: o4 U f00404D12 6A 40 push 408 [( v0 W/ l8 e5 v- t' }: d5 G9 R! h
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder", M4 L+ z# C2 x7 I) r1 f( I+ l' J5 f
00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."
$ _$ Z$ u8 i$ \, O6 n00404D1E 8BCD mov ecx,ebp
) n( k5 P8 ^6 U6 l/ p00404D20 E8 50840200 call qsr.0042D175
; g8 c) |) {; t00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
: ^) F5 Y9 ]9 T* W$ G M00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-12 y$ H# J% q5 a! `
00404D31 E8 5AE3FFFF call qsr.00403090
9 {' ~ F9 R! Q) I" a2 K1 k0 P- `00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
' Z) E+ Y ]( ?$ Q7 c; W5 X00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx- B% M2 s1 P; Y% C9 g. a
00404D41 5F pop edi
" Q" y/ [$ N7 k7 Z/ d6 Y00404D42 5E pop esi
5 l. x3 C Z' ~( u00404D43 5D pop ebp3 I4 @" Q+ f0 C. _% o6 r7 X
00404D44 5B pop ebx- S3 x2 P1 Q0 p/ ]! g: k0 n
00404D45 83C4 18 add esp,18
V* w1 t& q0 l8 V/ `00404D48 C3 retn* X7 w" a3 `+ V0 ]; @
*********************************************************************************************************************************************************
* _: i2 ]6 z/ e: ]" i跟进00404D09处CALL来到:$ v7 I' E# }+ ?! |
004030A0 6A FF push -1 //一路F8下去~~~~
m, B, V/ a, u004030A2 68 C88F4400 push qsr.00448FC8
0 u, }, l1 }. l0 ~! u004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
% A8 L& [" T, Q# Q004030AD 50 push eax
- U% l. G" g+ r- a) j5 A) F004030AE 64:8925 0000000>mov dword ptr fs:[0],esp
2 N7 K6 y. Z6 x& I2 S& f! i004030B5 83EC 24 sub esp,24
+ `' |+ G+ L& y/ ^; y4 V5 g, B, c004030B8 53 push ebx! Q5 u7 Y- I' \" j! e
004030B9 55 push ebp
% o9 g7 s6 r' }( w/ B004030BA 56 push esi3 J: y8 ^* D! A/ \3 [* }: b5 I
004030BB 57 push edi
; |. S3 |2 X( w& ?004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"( [# H% p# P# N, U& m
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]! Q' O( H$ K1 A D8 E
004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1, B$ G" ^, O) Y$ n
004030CD E8 27C40200 call qsr.0042F4F9
, z) Y+ B7 s9 e2 A1 ~" O004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
1 N2 G% s2 ?5 X004030D7 894424 2C mov dword ptr ss:[esp+2C],eax6 e) y( k& K' }
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]8 V% l, B, m1 J: O0 A
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
! o; H) @5 u6 M& d004030E4 E8 905A0200 call qsr.00428B790 I9 J A) Y. y% h/ s. {) @
004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
) M2 b) z: p* k004030ED E8 3B5A0200 call qsr.00428B2D
2 P: ^4 ^8 `( ]6 \9 L" I004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]( X' F1 u3 ~3 W7 @) k" J% `- r% l
004030F6 E8 7E5A0200 call qsr.00428B798 B( |, _$ S1 l. k; y: T
004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]# c# [0 l. V4 c2 t: K( y) V7 {
004030FF E8 295A0200 call qsr.00428B2D/ K+ ]! b& G3 J% h
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]
# {) [# |: H* T9 E! Z- ]) v00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
7 }' ^2 Y+ K; R4 N/ l7 v0040310B 83F8 02 cmp eax,2
# u+ _5 H* G* l7 V/ ^: J8 {: ^! C( k0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳* o+ I( f! W/ f
00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]
7 Y! e. N" t8 N1 e6 n) A4 C/ ^00403118 837A F8 18 cmp dword ptr ds:[edx-8],185 p1 M1 o+ s8 y0 ? ~* f
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳4 l& m Y. v8 s M- j7 q; w" n
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
: R" N3 Q6 H3 T4 `3 K0 v- h00403126 6A 01 push 1
1 `9 B9 E* e y, ]& t, D00403128 50 push eax1 p, F1 q5 `% [4 e0 h# L z) s
00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]$ ^# f! N$ ?0 [# E9 o: P0 U
0040312D E8 C4550200 call qsr.004286F6
; \9 n7 G9 r( A9 T+ U, H00403132 8B00 mov eax,dword ptr ds:[eax]0 @* n- c2 q9 Q5 C, |. i9 x
00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]6 [9 E. O- [1 d0 E8 n0 C; ~
00403138 50 push eax
! v) S2 V, V7 S00403139 C64424 40 04 mov byte ptr ss:[esp+40],4
/ [" s: w! ]- Q! `0040313E E8 4D560200 call qsr.00428790
+ A+ W% u) b: A7 m00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]3 N, ~) O5 j0 D( u" ~6 A
00403147 8BF0 mov esi,eax. }# n) R# y6 {1 `: O0 K
00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3. S8 e5 n8 {4 m
0040314E E8 38C30200 call qsr.0042F48B6 e/ c; m1 y Y9 O8 ~# ~
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]
' k( g6 ]; w# j0 P% B6 O' a00403156 B9 3E000000 mov ecx,3E" i( h+ B2 o; R s
0040315B 99 cdq! t8 h+ b- e; O# ]. m. {* W) Z: u: Y
0040315C F7F9 idiv ecx( N+ P" B5 K8 x/ q r5 _- X
0040315E 6A 01 push 1
6 k. l# O8 z7 F) t00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]" N. o& I/ U" j1 s! u
00403164 8BF2 mov esi,edx" n: H. S0 S3 D. S2 `
00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
: C9 |4 v. Z! i0 N0 \9 e% y! ]$ [0040316A 52 push edx2 \' ~* g+ h: Z! C4 b
0040316B E8 0A550200 call qsr.0042867A3 ~& D/ K1 t" m0 m
00403170 8B00 mov eax,dword ptr ds:[eax]! D/ X) x8 [# c% W
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]! N$ v+ Q* }+ z" |
00403176 50 push eax
! e: L. F7 k% [ m00403177 C64424 40 05 mov byte ptr ss:[esp+40],5
8 e* ^ [0 J9 m, c# h9 @1 @* r0040317C E8 0F560200 call qsr.00428790* ]; P, M, s/ V- ?, F
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
, m: W+ b1 ~- b% M# S& w5 j: w2 w00403185 8BF8 mov edi,eax4 K, _$ [4 b4 X! N( o
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],38 _/ y) J! g0 U7 ]
0040318C E8 FAC20200 call qsr.0042F48B
) e, x8 b+ w+ t) I& @" w00403191 8D47 0A lea eax,dword ptr ds:[edi+A]$ M; F/ R. Q q( e
00403194 B9 3E000000 mov ecx,3E3 _5 q! p: n# W8 t
00403199 99 cdq
( ~3 Q9 U% P) N# @0040319A F7F9 idiv ecx
/ D. r# L: m7 P; T0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]
/ i& ]% b q- U; q004031A1 894424 28 mov dword ptr ss:[esp+28],eax
: w+ s) t: e! k% v& N* }0 p004031A5 8BCA mov ecx,edx
0 D1 o( ^4 X3 e( n' z004031A7 894424 24 mov dword ptr ss:[esp+24],eax0 n* ]/ w; p% N( u& Q
004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
3 o3 Q- I {* N( \6 @004031AF 894424 18 mov dword ptr ss:[esp+18],eax4 j/ x4 i+ @$ w [! F1 m; |0 O' K0 M1 E# c: |
004031B3 894424 14 mov dword ptr ss:[esp+14],eax
. q" b1 o7 e! M% w1 L- h g004031B7 894424 10 mov dword ptr ss:[esp+10],eax& T* A$ z& p0 y- k! t
004031BB 8BC1 mov eax,ecx
" o3 m6 E7 Z/ T- z n. D' D% m+ d! ?004031BD BF 0A000000 mov edi,0A" d0 k' S& u+ I) K+ o# z2 S8 `8 C1 G
004031C2 99 cdq
" y# Q3 _$ ~0 T4 O004031C3 F7FF idiv edi
# O9 e3 I+ k5 l. j3 @004031C5 8BC1 mov eax,ecx' x4 ]; N8 M0 q4 c& ^% Y
004031C7 B3 0B mov bl,0B
7 E. R3 [7 m0 v3 M$ {# I3 r3 b004031C9 0FAFC1 imul eax,ecx: w" h" M; e9 J) v, k! _2 O
004031CC 8BCF mov ecx,edi. n. K8 x( C7 y3 M& v7 t' j0 b! k
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl. o8 V' f$ n! l2 G
004031D2 52 push edx0 K6 |8 y0 @9 o& S/ s0 b {
004031D3 99 cdq
3 e- O; v* A# V3 ^004031D4 F7F9 idiv ecx
2 N: Y. _: `$ f9 o004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]
) I. p, |+ s" m3 }5 d3 i004031DD 2BC6 sub eax,esi
& h m( N0 z7 t! P" t& j004031DF 52 push edx+ b+ k7 c( b7 X+ D9 a% Z4 b. A
004031E0 99 cdq
' s H& m- P0 R) D8 N5 \( b004031E1 F7F9 idiv ecx
& Y4 `* {( D$ y8 O* h* n004031E3 8BC6 mov eax,esi
l1 j7 R- a# p# ?004031E5 52 push edx
4 F. a1 N5 i- X4 ]2 @004031E6 99 cdq( \0 H; ?' D' i5 {6 v! r) A+ s( o
004031E7 F7F9 idiv ecx" i. d# y# f( u6 `5 A) Z
004031E9 52 push edx/ U- z2 q2 [& |+ j" n g: G$ _6 |
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
) w% X8 R! ]. Z) [# M3 q- _9 `3 e004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"7 G( }5 O( _) R# M. j$ c8 m
004031F3 52 push edx
( X! O, \# i- s/ w7 x9 G% ]004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是48930 s+ P$ H. N6 e+ c
004031F9 83C4 18 add esp,189 ?: [# w4 j4 ]# K
004031FC 6A 04 push 4/ X4 C# ] r @& s$ X( l
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]
" |1 J$ ?" |' J0 r' ~3 u% S F" A00403202 6A 00 push 0- G4 P: y4 [% o p
00403204 50 push eax$ A* a# ~) J- V- f
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
& U' u: N) T* @- _) s* b8 k: m00403209 E8 D6530200 call qsr.004285E4
Q% c% G, u& I$ I/ }0040320E 50 push eax: v1 b" b. U7 @
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
2 W" S; d# S0 K00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C( ?" J# g; @8 s1 s' W" t p r) G
00403218 E8 A7C30200 call qsr.0042F5C4
. Z( V- ~2 y: K. I2 K1 N! G& H5 B' n5 z0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
+ R# b( O5 n+ [! G+ `00403221 885C24 3C mov byte ptr ss:[esp+3C],bl
4 f: A- P5 \6 B9 m00403225 E8 61C20200 call qsr.0042F48B5 e* _" V+ N7 o3 b6 [( u
0040322A 6A 04 push 4( l: r* d7 F( m p n! f& ~
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]) I: J7 g4 _# ~" ]* `
00403230 6A 05 push 51 g1 C% M/ R4 t7 z' m2 M
00403232 51 push ecx5 }/ i) X7 _: ^3 ^$ B6 I; x& \
00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]1 O1 E# y) F) V* \* }
00403237 E8 A8530200 call qsr.004285E4+ z$ x# A( X, a+ G; `
0040323C 50 push eax
3 C- C& {3 V$ [) _0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
- S0 v# ]' y7 I: ]00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D
4 Q2 O( S) A8 ?+ O$ ]! A00403246 E8 79C30200 call qsr.0042F5C4
y. u P$ R. O2 r2 d( O- S2 v0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]7 R% g! r* R0 T' v% v, A3 N; Y
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl4 W: c3 A; @' ^- p3 X7 G. P
00403253 E8 33C20200 call qsr.0042F48B
. d0 j4 z! s% x0 a. p00403258 6A 04 push 48 P- X% X& i; P+ x
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]# s' R) Z# ?6 J7 h% E6 s
0040325E 57 push edi
7 ~: k. ]0 R4 E" s! E* W& A0040325F 52 push edx; b' C4 H* n: o6 ~8 ~2 w. C
00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]2 k0 W0 j: a: k
00403264 E8 7B530200 call qsr.004285E4& y; }& e' D" B W7 p
00403269 50 push eax) a2 g, b9 c8 n
0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
. H. X, g0 d m3 g# Z5 ]" \" D, R5 p0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
" ]# K" i; H4 G+ I8 i00403273 E8 4CC30200 call qsr.0042F5C45 [8 R. b* w( M" z$ Y
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]8 J+ ^1 d5 \/ E6 n F( f
0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl: H: F( D1 ^4 x* ?# g4 Y
00403280 E8 06C20200 call qsr.0042F48B2 k) w D5 i( q% ^& Y, T0 T
00403285 6A 04 push 46 N T( p0 l$ w/ q1 r: n
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]8 ~( q3 }: f* x0 s: x$ v. `& t. H2 d, v7 c
0040328B 6A 0F push 0F
( L. c- e/ a" s. |0040328D 50 push eax
$ L8 q0 ?4 z5 v' v9 G# s }0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
, b6 W0 ]/ p$ I7 Z8 V) p5 V00403292 E8 4D530200 call qsr.004285E40 @4 L* U- n6 J7 j$ ?, r, }6 ^% v
00403297 50 push eax2 r' U9 K7 L; Q& ~9 b, _& ?
00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
; }* h0 W% V; D$ a! h. O0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
Z+ ^* y2 n" f1 l1 F3 y/ n004032A1 E8 1EC30200 call qsr.0042F5C4
0 l2 ^: L: V' I$ R: a& M004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
8 p9 V# t) w; X5 a004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl
2 I5 }9 M- ~; b004032AE E8 D8C10200 call qsr.0042F48B3 Y, D- F" M8 K
004032B3 6A 04 push 4
2 x r% k; a7 k! W+ E004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
\$ ^& W4 z c# w" Q" \9 ?004032B9 6A 14 push 14
& u8 i- v9 S$ p% o- L004032BB 51 push ecx6 U: y! N/ A1 L5 X; {) \! @6 |
004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]9 f2 X) u9 h1 ?) @$ e! C3 C- S
004032C0 E8 1F530200 call qsr.004285E41 R/ E' X& |, x: c8 {3 h7 h, Q
004032C5 50 push eax0 l; w. B/ a" D& L& G
004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]6 c8 M2 _2 M. } B: ~5 X- @5 A
004032CA C64424 40 10 mov byte ptr ss:[esp+40],10
* O/ f+ j; m9 X4 t004032CF E8 F0C20200 call qsr.0042F5C4
2 g. h. h* g, Y+ Y% U2 H6 B004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
( Z6 \ _# p% {/ B4 |$ A0 f004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl% ~. ~$ z/ ?) h. [" f ?: o
004032DC E8 AAC10200 call qsr.0042F48B
, m! A. ~( ^# r4 n9 S+ X$ r004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI, \ a. S" L( V8 I+ I/ ]* t
004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX! p( ^% f- U4 d5 T a
004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL2 f! U9 K% b1 V4 t5 }
004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL, t6 V3 ^7 M6 H+ a
004032ED 8ACA mov cl,dl ; DL送CL3 Y& X$ c, i6 S& {
004032EF 3AD3 cmp dl,bl ; DL和BL比较
# K* R$ F0 @' [. S# M |! Z004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
Q. Q) s8 o) u004032F3 84C9 test cl,cl
, a! y9 {; S2 H9 V004032F5 74 16 je short qsr.0040330D
$ N# w* T+ T m3 M, Q; p; T004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL' ?8 F! a! W; q
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL% ?( a4 ]) m1 r$ z* e5 `* A( A4 y
004032FD 8ACA mov cl,dl/ d O: ^6 m: G% g; z
004032FF 3AD3 cmp dl,bl ; DL和BL比较
& x6 C: h5 j7 E/ i9 [8 ~00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)% {9 B0 p% n, H
00403303 83C0 02 add eax,2 ; EAX加2; e# [' j% w" g2 O' X+ x
00403306 83C6 02 add esi,2 ; ESI加2
# p9 S+ O0 M& o E2 _00403309 84C9 test cl,cl
2 X8 {. Y Y/ h+ V$ ~& x0040330B ^ 75 DC jnz short qsr.004032E9: e6 o4 u& O5 p; S- s3 m8 t
0040330D 33C0 xor eax,eax
& M2 k! F' n( d, u0 ^0040330F EB 05 jmp short qsr.00403316, O) r' L( s# R+ f4 T6 ]
00403311 1BC0 sbb eax,eax
3 d" N/ V C" J* J9 K00403313 83D8 FF sbb eax,-1
7 B! t0 {: Q6 g' M0 U( ]0 S00403316 85C0 test eax,eax
; ?1 `: d z1 A1 z& Y7 @- m/ R0 {+ a00403318 74 0E je short qsr.00403328
- a* k% B3 t$ F. t6 y: o0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
- x' v3 ^! {7 f/ K0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
+ O/ a) h& n8 ?# T$ O+ ]00403323 E9 F0000000 jmp qsr.00403418# N7 ~1 B4 }* @0 j
00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX9 K* }$ p! ?+ B" p
0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
6 y7 h5 i9 R1 E2 h# w2 ^' K. S8 _00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]. G& S h _! e
00403333 50 push eax$ E" w! e. _3 b7 [8 ?( h
00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX( M; |7 [+ e1 m' C& N
00403339 50 push eax
/ F& J9 o/ D* a4 d+ x- Q# P0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX
' Q0 ~, f3 h2 f/ j) a& d, {0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
5 T; S. G6 @# L( F Q. v) h6 U00403343 83C4 04 add esp,4/ ^; G5 a* s8 ?# s
00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI
) x$ f! u2 l5 z+ s% G( c7 M. f00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]
0 _: a8 w$ i" Q0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]9 R1 [' a& I B% @
0040334F 50 push eax
2 B; F& K! a* {7 N: g- G00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
! X s d7 @/ l00403355 50 push eax7 Y/ Q, H! q7 D: \2 E( H
00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX2 R* |& C" W" \2 }
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX5 ^* Y& H0 ^' U$ g
0040335F 83C4 04 add esp,4
2 [1 O9 [$ b. `. ~+ ~+ A/ @& T6 O2 s# L00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI* }2 g' p( c5 [! e' ?
00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]) G( e* K! b$ Y+ D+ y3 D
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]+ Z1 C A1 a- q2 u) g* B, V4 V
0040336B 50 push eax
9 j3 ]. T5 }9 a2 V0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX
$ X8 h+ C1 c/ Z, F# F00403371 50 push eax
, ?: x3 s; Q j! X- W9 P00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX) c# u9 Q4 C9 t3 d6 D: q4 t
00403377 8BD8 mov ebx,eax ; EAX送EBX
! @ E: Z9 a; k% f4 ~8 `5 ^4 G00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX
3 N, N% R0 o; A- Q9 G% d J5 W0040337D 83C4 04 add esp,4
0 p# T' K9 W' T3 ~+ \( T00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
/ o( f$ a1 G" @1 Y/ x% F00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]2 a0 h0 e" t2 [- t0 M
00403387 50 push eax
! X* U1 l& ?3 m/ Y0 p00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX; ?+ J# p$ n7 \4 r5 Q. x( P3 T! b. ~
0040338D 50 push eax$ J! i: h8 D: C( B
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX8 f7 F* N! [" j' J- |1 Z
00403393 83C4 04 add esp,4
) @* M3 [+ p% W1 M2 o; D+ u00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
1 F$ ?. k, m* P u; `6 x' a0040339A 8BE8 mov ebp,eax ; EAX送EBP. t# W/ a7 u% t: f H8 J
0040339C 6A FF push -1
5 u. Q* I6 c% O7 N; m% S0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX% U& m$ T7 \. _- U
004033A3 6A FF push -1
5 q1 _( @& t/ M004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
- C. H t5 Q2 J# V004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
' X, `; @3 S' G9 [004033AE 6A FF push -1! D/ x# n" a6 h& n. l
004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX3 t: m7 Y# y7 y3 {, b: P- B0 n
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX5 T# b$ |8 h& z
004033B9 6A FF push -1
! k, I2 i" a A004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX" K |9 h* T3 Z) k3 m1 P$ M2 `
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX
$ ~' B* i7 l- J W( d* b5 y( r004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX( q2 S( v* |) g
004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX0 u: w* g% y$ V& c0 h! Y3 p
004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX' {2 h6 _) {1 A7 g6 H k
004033D7 D1E0 shl eax,1 ; EAX左移1位+ W! C3 g0 k ?6 G# E$ A! \
004033D9 99 cdq ; EAX扩展
M% _2 }; z( h# P6 v' n2 q004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中! O |$ w4 ~/ x X& h q
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较6 }5 A- z2 f3 F$ o$ }
004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)
# P( `+ C" q. y# d* I; B004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A
/ @ z0 z& y7 N3 L' p1 X& v2 Z004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
" Z% J4 t. a, ~( r: S+ q004033E9 EB 2D jmp short qsr.00403418
9 I) ^; y0 T6 b004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX: H; ^# |" H, ?$ c! X
004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2# y4 k/ U( o ?
004033F7 99 cdq ; EBX扩展" @" @7 Y" V2 x" ^2 m
004033F8 33C2 xor eax,edx ; EAX和EDX取异或) }7 M. B: V; l6 W) E7 X1 Y# Z
004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
, g3 N' K$ p& D( \) I004033FF 2BC2 sub eax,edx ; EAX减去EDX
9 Q* ~# a& k* \7 o( A) H7 t" k00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]* r& Z/ Y$ Q' S6 |
00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
. a% u( h5 _& I& M00403409 99 cdq
3 R8 I$ d! r/ |+ Z) E" e$ K0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中5 M- i4 i l% y0 L6 X2 b1 C
0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX
: J9 O3 _5 m. J- U/ l00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较3 u, T* r! G# e* K! r
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)3 q. Z. j' J% L
00403418 E8 6EC00200 call qsr.0042F48B ; 5 k: Y% p; `+ Q \! I3 Y
0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
- n) V& H1 G# R/ p% I9 E00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],95 P) Z7 I! c0 L4 g- f0 ?. `
00403426 E8 60C00200 call qsr.0042F48B
( s5 y' W% d% @' k) }0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]" b- {1 k$ {, f
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8
2 N$ g5 ^% m0 a5 ]) ^* M* Z00403434 E8 52C00200 call qsr.0042F48B' \. f: S* Z" r, L3 g& M8 @$ S
00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
4 ?0 P/ q& s% b1 K7 C4 M0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7
% q- i/ B4 p) F& p" K5 S0 w00403442 E8 44C00200 call qsr.0042F48B# Y' h/ [6 @$ C, Q
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
7 S; o( ~4 g. V7 Q. v0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],67 F2 e$ H( c! u
00403450 E8 36C00200 call qsr.0042F48B
' V1 k0 U, O- M# Y7 W00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]+ V6 H5 R$ s8 A8 g$ j$ s) s* j
00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3
: A: A. [3 J$ y0040345E E8 28C00200 call qsr.0042F48B" n7 u, z; n( d2 @$ N, j
00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]( D, B- K* k! W8 q5 |
00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
. d+ ^, t1 T# L$ M+ p0040346C E8 1AC00200 call qsr.0042F48B
8 l8 ]9 @( i, B! ] B% ~0 x/ S( J00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
5 x' ]" ~) i8 Y) r1 t3 ?00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1
0 _" c4 K; s. g7 M0040347A E8 0CC00200 call qsr.0042F48B% f* G& P4 @7 w* r
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]" i) t3 ^5 T% U/ ?! u j. F K
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0$ z! Q" Q& b: f8 ]# H" {% ~' T G9 |
00403488 E8 FEBF0200 call qsr.0042F48B
( g1 K* P1 }$ z! ^7 O0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
6 b8 b7 w" C* [3 O( z" r00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1; O: a+ K; O' I u) g
00403499 E8 EDBF0200 call qsr.0042F48B& u6 T' Z1 [! N( N
0040349E 32C0 xor al,al ; AL清0
$ Y) p: J* q3 f6 Q: a& |004034A0 E9 88000000 jmp qsr.0040352D
- `' j5 q$ S9 X W004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~
1 d$ g. V0 }* k. C. J( u5 b2 R004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]9 G. m' G9 I) Y8 R- E- V
004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9$ A" `, J# }' p5 y6 j. V; f
004034B3 E8 D3BF0200 call qsr.0042F48B
& I, `9 _! J' _/ ?. s2 W004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]- D+ d$ G4 c) R) N% d* K- s! @$ d, P
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8; u8 W( U, d- l7 K# p" G
004034C1 E8 C5BF0200 call qsr.0042F48B1 }1 T; \* L( |5 j$ R: Z
004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]% g8 k) y) M) h" t4 i/ T
004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],70 @& }1 G' c" E( V: [! c
004034CF E8 B7BF0200 call qsr.0042F48B9 S( ~! v8 Q7 l
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
! D" g2 H* r. v( ] X004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6$ B S$ W* ]7 i! A7 {2 m# O
004034DD E8 A9BF0200 call qsr.0042F48B9 j! |% U- _& |6 [$ l
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
4 d6 C/ @& a/ ?# _8 ]0 I1 ?004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
: M( _9 j) M0 |6 G' A3 x004034EB E8 9BBF0200 call qsr.0042F48B
! X3 ^% p5 x% R004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
- s4 d3 L3 b7 w" |004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],21 [0 C. V- C, O! O# e
004034F9 E8 8DBF0200 call qsr.0042F48B
: k# V' H% H/ Y& [' d004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]7 L- o+ K, N- h2 M6 ^* H! Z4 r
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1% f. j# g( N0 p7 m
00403507 E8 7FBF0200 call qsr.0042F48B: X" s* }' u& q; }+ [; ]# ?/ y
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]1 b' M% J2 A; u3 D- j d. p9 A
00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0
0 A9 d0 v' V& S5 [( a: k J. G00403515 E8 71BF0200 call qsr.0042F48B: w. \3 k2 Y% k; L- h9 {3 z, ^ J
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48], o1 |) K, c$ Q1 ]* a6 M
0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1+ x- t* U3 U1 w
00403526 E8 60BF0200 call qsr.0042F48B
; Q2 t- h0 |6 [4 X0 ?" y0040352B B0 01 mov al,11 y$ G$ A! U# Q, j! V
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
4 q9 ]( q9 S1 r4 q$ T/ Q00403531 5F pop edi
+ W, ~) ?% U, m00403532 5E pop esi1 F+ B! a( M# U- f' E
00403533 5D pop ebp
, m' l* x+ Y4 f1 Y, |0 c2 f: |+ l00403534 5B pop ebx3 h8 t$ {* @1 w7 H% r
00403535 64:890D 0000000>mov dword ptr fs:[0],ecx; d% i( }7 n0 i9 J$ h
0040353C 83C4 30 add esp,309 W- |6 {$ @+ B# C3 S% W
0040353F C2 0800 retn 8
8 V5 ~( X& ?. `* J- \$ @--------------------------------------------------------------------------------9 _" k3 y: ~& b1 v D6 \8 e; }4 I6 e
【破解总结】3 X J: y! j* ^; X/ B" c; N& V' n* T
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
5 p6 {0 `3 S+ g8 E) i用户名:yijun( g( F2 m* `- X. n+ B& f
注册码:4893*7777*3726*7777*0529
7 S/ j) Z8 [% ]1 M* D: C7 r--------------------------------------------------------------------------------
1 B+ `. p0 e7 Q- F% I【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡