|
|
|
【原创】破解Quick Screen Recorder
/ ?3 ]% Y! ~3 n3 t- a9 ^【破解作者】 yijun0 E7 q' l6 U( X' b) B
【作者邮箱】 [email protected]
_# g } ]2 j0 s$ |2 i7 R【使用工具】 OD,PEID
! Y. z6 o3 D* M/ |【破解平台】 WinXP
9 S) v. c X4 o3 _/ d【软件名称】 Quick Screen Recorder* s: C. ]+ @0 i7 D( l2 u7 N* n; a
【下载地址】 天空) E) m* `8 ~6 ^: q$ e
【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on. ! K, T% A# H2 e: G6 p
【软件大小】 540K% W$ V2 x! z" l! E+ @; |+ u, {7 F P
【加壳方式】 无! M$ T: p9 S7 C" A& M; |5 p
【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)
$ @$ o9 r1 v( c7 A--------------------------------------------------------------------------------, ^- u( I: u% j4 M- P
【破解内容】
c7 h+ Y' o+ d" ~5 @- R PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:% P; V5 l0 U* V( H" p/ q4 l$ H
00404C69 55 push ebp //在此下断
! q8 V7 l. P- d" q) \9 l00404C6A 56 push esi
# S' x2 F/ e8 Z; W00404C6B 57 push edi
2 P: D* m2 ]) v" r! W% @6 b& A00404C6C 8BE9 mov ebp,ecx
. [, w4 ~/ C1 z9 W00404C6E 6A 01 push 1$ j2 l4 N$ e4 B6 q
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名4 Q7 J% O# ?4 c8 l. P! m; z; v
00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]$ _$ ^! m4 f$ R
00404C78 8BCF mov ecx,edi7 o9 P, J8 P8 f' S% S
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码1 X! _" m1 a3 t* T
00404C7F 8BCF mov ecx,edi: Y1 a' h! R: r
00404C81 E8 A73E0200 call qsr.00428B2D2 e1 X# c! A/ X% B
00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
( i' M2 C ?7 ~8 C00404C89 8BCE mov ecx,esi2 C: C" [8 e; f( O K$ B* I5 A
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX* p# m" b1 } T1 \6 {0 \( z
00404C90 8BCE mov ecx,esi! I5 ]& K) n! A1 }7 u* y# a" y+ I
00404C92 E8 963E0200 call qsr.00428B2D6 M2 T! X' t+ W: P: e! O2 v$ `) U
00404C97 8B06 mov eax,dword ptr ds:[esi]
+ E; W$ Y) e9 i00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],22 A" h x+ J2 W
00404C9D 7D 26 jge short qsr.00404CC59 u" g2 s) O- K5 s
00404C9F 6A 40 push 40$ K. l. O4 m, `+ i: o* b: k. @4 q
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"( D8 n$ g9 u$ @8 e1 p$ a* z, m
00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."; Q! b( z4 T+ b4 q% x: c
00404CAB 8BCD mov ecx,ebp% g% c. U) X; L3 O2 q* p* u: h
00404CAD E8 C3840200 call qsr.0042D175
% R, p* a3 k d' ?4 ]0 `; X00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
# F5 M+ I* \0 s1 N c00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx2 |7 ?( i, @& Y
00404CBD 5F pop edi5 D0 w( l) ^1 ^. _- C5 {
00404CBE 5E pop esi. j+ m2 X( C3 z ]! w# \) J1 C9 j+ ~4 \
00404CBF 5D pop ebp$ f1 M; e% L. g9 F: Q
00404CC0 5B pop ebx
/ h$ S4 R8 H/ T! O" h& H00404CC1 83C4 18 add esp,186 f( D% B% _! F* w
00404CC4 C3 retn
" f& k1 n6 n' F, j, X4 S00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]5 P* u) j$ \# ~3 Q2 m& k. u5 S3 [
00404CC8 84C0 test al,al1 R, y# ^0 }6 P y4 z) O1 s
00404CCA 0F85 1C010000 jnz qsr.00404DEC* \, z( Q! k$ e* e" a
00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]4 J$ S, k: f% J8 l3 r {; S/ e0 X
00404CD4 E8 87E3FFFF call qsr.00403060
4 N+ A D4 p' S( S% v00404CD9 51 push ecx
m& c" k I7 n, C2 f% Y; j( W00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],00 H) X3 s2 e* _- V0 F' H
00404CE2 8BCC mov ecx,esp
( |8 G2 W4 v( n9 E6 ^1 }00404CE4 896424 14 mov dword ptr ss:[esp+14],esp9 J" L% F7 d! I5 ~- l
00404CE8 56 push esi# M! W( p# m4 f* a+ E$ L0 z
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0; h2 C2 b* r/ D F: ]" F
00404CEE 51 push ecx
9 ] ?4 T5 c1 A# Q! A( e00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1, c1 `0 u, B% I# z4 C
00404CF4 8BCC mov ecx,esp, x+ b7 c5 S* h7 E+ h( x
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp: D4 ]6 L+ V) n) I( l. q$ f0 G
00404CFA 57 push edi
4 e% Q, L: v a3 c& j7 Y, V00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是00 ^4 `: }' G) Q- B1 ^ m" h
00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]1 R2 r$ x8 ^3 o" s( [
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0
/ q3 D% a9 \' m- O! W8 A; f( G00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~# q% I K4 t" D# Y" e
00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~
5 `, I% d$ r( j/ j00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~* V+ F/ p* ?: y* _
00404D12 6A 40 push 40
4 o" Q# |, n( u/ d, x6 V00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
6 _4 Q$ A9 @( u& O+ D2 `$ b3 |00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again.". m( r: {7 H/ F7 {. n& c5 q' I
00404D1E 8BCD mov ecx,ebp' x! s8 W- K8 K
00404D20 E8 50840200 call qsr.0042D175
" j" F* k& a0 W% o, ` X8 H00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
! ], a. }- |% s, A/ C) l00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1
! U& ?3 D9 N; C* S; l# v00404D31 E8 5AE3FFFF call qsr.00403090
$ u' ~, l; X) w9 \% N* ^& B! L00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
& F& g/ e: @; S. |7 A00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx1 m s) ^, H! Z- M8 Q3 D q
00404D41 5F pop edi
8 i! W6 q$ Z8 t/ c00404D42 5E pop esi
5 @' s+ A# z' A& w3 ^00404D43 5D pop ebp
; U3 W- p0 V+ V- o& d00404D44 5B pop ebx, |! Y9 Y2 T6 l3 N7 l7 \6 u. @: I
00404D45 83C4 18 add esp,18
- Q) l: b! B; E( L( v: F# ^( c6 @00404D48 C3 retn, R) z! V. \; O5 h
*********************************************************************************************************************************************************
% R7 u4 y7 [, b跟进00404D09处CALL来到:
: c+ ?- \/ j. u004030A0 6A FF push -1 //一路F8下去~~~~
2 x% h' T8 J- ? A! J4 O004030A2 68 C88F4400 push qsr.00448FC80 {1 D6 Y$ {+ S, w" U2 I& E
004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]3 L5 x; ~ r3 i+ y7 p
004030AD 50 push eax( U8 C1 h+ @" b0 k- R; ^9 Q
004030AE 64:8925 0000000>mov dword ptr fs:[0],esp$ H' c& i' M# E! r, L8 d
004030B5 83EC 24 sub esp,24
9 }) c! h4 \0 N004030B8 53 push ebx# N0 }6 p6 M# ^! g4 P" o0 s
004030B9 55 push ebp( R* `* ?- m x# _" M3 Y
004030BA 56 push esi4 [2 k9 n+ _3 o7 K+ J0 D& {$ }7 E
004030BB 57 push edi
! N0 S0 G* T, U8 F; ~004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"
$ d! ?6 p: {- `6 G- S: w& D$ ?" c9 a# I004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
3 b) O; n) ~$ ?% P) o' A004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1
% n: _) B2 d3 G' F! e6 H' u004030CD E8 27C40200 call qsr.0042F4F9 U* i/ `0 I4 s- _+ ] E6 Q4 H
004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]% O3 y/ Y- r! U- S4 Z1 v
004030D7 894424 2C mov dword ptr ss:[esp+2C],eax
/ @: \+ I1 j9 C+ W' T4 C004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]: v9 W7 r, d) A3 ~& g
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
" I8 G4 _' Y1 d# j @004030E4 E8 905A0200 call qsr.00428B79
& m2 ^- S/ @) `! T004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]/ B+ }+ x$ ]# s
004030ED E8 3B5A0200 call qsr.00428B2D. F* Y( M# P& P) R& O1 H; n- v
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
' |* b7 H( k+ ~- P2 v004030F6 E8 7E5A0200 call qsr.00428B79
% i; z% e: Q7 F7 M. K. k4 r004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]4 t7 t- J0 n2 q1 c' T2 m
004030FF E8 295A0200 call qsr.00428B2D; e) x# z, g( @8 b6 a4 o
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]
; i/ |& ~4 z/ w" A* u' y00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]7 B/ o }: L) V; d6 u+ I8 C
0040310B 83F8 02 cmp eax,27 \% s' V, k/ J9 v. h5 F) v
0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
8 {' f \; m. m' l0 k) y# S00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]# {6 f1 y1 V0 ]0 f& C
00403118 837A F8 18 cmp dword ptr ds:[edx-8],18
/ X( b' q- c+ P( W ^0 B0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳; o7 ^2 ]$ M- d* ^$ {
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]9 n0 }+ i8 i. k7 r \. w) h
00403126 6A 01 push 12 `; p- r5 \3 |0 v) n: c. f
00403128 50 push eax
# W" [! e' _5 s" U, h00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
8 |3 V; }/ o2 h! k D( D0040312D E8 C4550200 call qsr.004286F6/ E2 y$ `& j) a& h/ t [1 a
00403132 8B00 mov eax,dword ptr ds:[eax]
- O6 W2 d2 `& a00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
: J8 l8 S- U" k' p% \00403138 50 push eax+ T, [9 j% e9 J2 W% u
00403139 C64424 40 04 mov byte ptr ss:[esp+40],4- m& X4 W- l. [. T9 C8 n H1 g8 q) q
0040313E E8 4D560200 call qsr.00428790& m: J8 f, K: b: s# z
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
V; ^" T: u/ R* L7 M$ ~& u) n, [0 ^: b00403147 8BF0 mov esi,eax
8 ?2 W* q0 E9 E2 O+ @1 h* l00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3
- ~8 T; j# ]6 ?2 j1 d0040314E E8 38C30200 call qsr.0042F48B! ]) _9 O9 K1 Z; s* |1 r% x0 Y
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]" g- l, c1 ~2 }
00403156 B9 3E000000 mov ecx,3E
6 ^. e- q1 {( t8 R* ]* `4 L1 g0040315B 99 cdq" W% T$ O# t4 b9 O5 N5 C% q
0040315C F7F9 idiv ecx$ O" z ~5 F* K' s# {% Z4 E# d! b
0040315E 6A 01 push 1
1 n2 s9 J# c: O: Y9 p9 S/ T00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]
0 V J, n% I& V" @- T( Q00403164 8BF2 mov esi,edx/ Q$ W" P- T) v* r
00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]) t7 I$ N- x, g; j$ `
0040316A 52 push edx
5 ^9 ~# q/ D4 @8 Q+ s0040316B E8 0A550200 call qsr.0042867A
. ~% v9 H. b( B3 K& n" f0 H6 O00403170 8B00 mov eax,dword ptr ds:[eax]
& w! B. c/ u! @0 t00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
* p& Y$ r, I- E9 ~( g00403176 50 push eax
& ?4 S7 |& I/ ]/ q% F0 T* p; ~! r00403177 C64424 40 05 mov byte ptr ss:[esp+40],58 X9 ]* a6 d$ `% e: _
0040317C E8 0F560200 call qsr.00428790. V2 T* ~. t, ^
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
4 z, a, \7 ]3 W1 ]00403185 8BF8 mov edi,eax4 B9 m* J2 e% ~/ ?0 [' V9 k; H! K
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],30 d1 Z) Q, B0 D2 K- k& }+ I
0040318C E8 FAC20200 call qsr.0042F48B
$ e) v: @; c2 V0 x7 V00403191 8D47 0A lea eax,dword ptr ds:[edi+A]$ E% {. ~' A' z6 H! S8 T6 K2 p! L
00403194 B9 3E000000 mov ecx,3E
' y4 Y! X) i& p- M4 \8 U00403199 99 cdq3 e6 c/ ?, Q; R; S8 {( {% z$ U
0040319A F7F9 idiv ecx: }% }0 c5 _2 j3 t6 ^6 ^: z+ @
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]# t& W* h9 u" A; M `0 {7 t% V/ D
004031A1 894424 28 mov dword ptr ss:[esp+28],eax0 }& T1 B8 Q9 }5 L8 g1 a
004031A5 8BCA mov ecx,edx( b1 P1 m$ `; y0 t
004031A7 894424 24 mov dword ptr ss:[esp+24],eax+ i* |$ G3 W+ b5 a# Y1 Z1 R/ s
004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
' T3 l% P& Q$ I) p: C) |, H004031AF 894424 18 mov dword ptr ss:[esp+18],eax; G( p: z& {& P- J" p6 }
004031B3 894424 14 mov dword ptr ss:[esp+14],eax
! t# {% A' `% P. b004031B7 894424 10 mov dword ptr ss:[esp+10],eax' Q0 g, b9 o( H2 g" s
004031BB 8BC1 mov eax,ecx
7 ?8 c$ ]0 K8 O6 B004031BD BF 0A000000 mov edi,0A V( g j8 D$ _/ W; ]. s7 M
004031C2 99 cdq+ ~) R) ^" Q2 L6 b6 N8 |& X5 g- q
004031C3 F7FF idiv edi
! U7 E! Y. |3 B- q; R" F004031C5 8BC1 mov eax,ecx5 m; Q' \* w: b; P5 h2 c
004031C7 B3 0B mov bl,0B' Q1 ]2 s' k% C2 w6 e
004031C9 0FAFC1 imul eax,ecx3 x4 p3 N/ o1 k' c X: l2 h
004031CC 8BCF mov ecx,edi
; u ^8 j0 w% v% q, q0 t004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl+ V1 N) ?; {9 J X! o) A2 O
004031D2 52 push edx
8 ?- v5 J8 N9 G5 n6 J004031D3 99 cdq
# D; }$ O9 @" ^004031D4 F7F9 idiv ecx( z+ ]2 Z! A9 o) R d& ~/ ?
004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]6 c$ S4 j v6 S' B
004031DD 2BC6 sub eax,esi
6 @& u- [# \5 j& _" p3 m9 a8 U004031DF 52 push edx8 g* _+ w5 V, D# f4 Z% m
004031E0 99 cdq0 V+ u% U7 j( `: l3 t3 B2 l) B
004031E1 F7F9 idiv ecx
9 b4 w0 h `* w* D# b# ]/ a004031E3 8BC6 mov eax,esi3 }$ l' e. w l9 ^+ X! c2 S
004031E5 52 push edx
5 {0 @5 j9 m& f; f004031E6 99 cdq
1 K8 c% J" M3 { t004031E7 F7F9 idiv ecx
, n) v! f8 l& e004031E9 52 push edx! i8 X y8 Z" O8 T
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
* X, C) \, k5 V1 I004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"5 u. A9 V1 h, l% G E# O& j
004031F3 52 push edx
+ O, s i# J+ }0 N4 N004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是48933 X: E. @; B8 K5 m; y
004031F9 83C4 18 add esp,18
) L% T4 x# `1 u2 u004031FC 6A 04 push 4
7 |, p# E4 l8 c0 j& m6 M004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34], I3 ^( u( H4 x1 ~/ [
00403202 6A 00 push 0$ ?; r; n+ z, W! v+ h5 a
00403204 50 push eax. ^2 ~0 Y" A. F# ]6 m3 w$ e0 X' C: ^
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]- r' A& C: P" D! Q) ]4 U" n
00403209 E8 D6530200 call qsr.004285E4
. B3 p- h$ B/ U9 c+ r& f0040320E 50 push eax
, z$ f& R0 v7 m' G: y0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
- [! E" @; z2 Z* }5 |00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C6 H' @8 x8 c, w4 u4 w0 z1 ]) c
00403218 E8 A7C30200 call qsr.0042F5C4" z% `/ I7 j" x$ ]4 W
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]7 G" h6 ?% Y( ~' i
00403221 885C24 3C mov byte ptr ss:[esp+3C],bl- v4 o( Z, Q& a; m
00403225 E8 61C20200 call qsr.0042F48B* p9 N4 m' t6 P5 L+ Y
0040322A 6A 04 push 4
8 A* L) d7 ~. f$ M& f! Z0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]" \# b$ k8 g; X/ o+ s# L1 {) }
00403230 6A 05 push 5
" J, ^9 P( r" J9 L7 p3 x; F00403232 51 push ecx
, ]* b. J$ ^( \# `# `00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
; f* ^0 v8 H9 m9 P1 Z8 G00403237 E8 A8530200 call qsr.004285E4
4 C8 N" R2 {# V& Z: a+ f4 W, r; Y0040323C 50 push eax+ H: b$ g/ H8 |
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]2 v1 j+ U$ J1 K7 U$ H
00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D0 E. ^# G5 Z( z# e$ q/ u K! ~
00403246 E8 79C30200 call qsr.0042F5C4
" [# j3 |% d' n4 F! k6 S3 m- S0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]+ t7 b. P6 y; s4 X0 f$ x
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl" Q7 m$ R; ?# U( G1 t
00403253 E8 33C20200 call qsr.0042F48B
. O7 G$ `$ D* b( B1 w8 ]4 o j00403258 6A 04 push 4
+ O0 f+ @4 I7 v6 ^/ @$ z Z, {0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]
4 z8 `8 g) w' D" c/ W$ P$ Z0040325E 57 push edi
% c7 K. J8 L' q) i0040325F 52 push edx
; }0 r8 S6 X. |' n' w7 Z; f7 Z00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
' K- a9 I- L$ {& x# _00403264 E8 7B530200 call qsr.004285E4
/ z) A3 u& m3 [( ~1 B; {) [4 R2 A00403269 50 push eax
4 n; D$ y2 r- o0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]2 |( U7 S7 r* c) c( Z4 p# F
0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E4 m- R& D, d8 V/ \
00403273 E8 4CC30200 call qsr.0042F5C4
( Z3 e$ L5 o% `1 m) f00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
. R6 O. Q$ \7 X, `: W H9 s7 w0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl
E% w# _; u4 |7 |$ g, L00403280 E8 06C20200 call qsr.0042F48B. P) J: `7 ~% N. a0 n
00403285 6A 04 push 4% R3 j2 i- `" W1 q m9 f
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]- f2 M. i* d7 g+ \9 H- Y8 |
0040328B 6A 0F push 0F
/ x: e1 U. E3 k# z0040328D 50 push eax& c2 t9 k+ p- j0 h9 ]
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
t" z: f. ^' ? t8 V9 M00403292 E8 4D530200 call qsr.004285E4
: U9 S Z$ y* I6 t5 P3 O1 T$ v" a00403297 50 push eax# `6 _: o; L! d7 d7 }3 H
00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]# {- i# z8 t$ v4 M, u' }9 |
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
. O/ {9 {# u& D0 i5 H004032A1 E8 1EC30200 call qsr.0042F5C42 O6 i' ^: F2 V) Z
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]9 v* I" b3 I$ M2 N" ^2 S
004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl; M# \! D" }# H x0 |
004032AE E8 D8C10200 call qsr.0042F48B! x& t# [! F( Y
004032B3 6A 04 push 4
+ X- M8 v& H# |: j004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
1 k$ e! G, e! W( W004032B9 6A 14 push 14
# f' G" w4 J) m: Y004032BB 51 push ecx
# [$ S, n* ~5 x004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]1 J( ~# D- I$ W2 Y- D3 U6 S/ k* {
004032C0 E8 1F530200 call qsr.004285E4
+ g. X3 {2 p; R. J004032C5 50 push eax
; Y$ W% B% m" v8 ]3 D004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]) W) a5 n9 C: Y+ V" }: D
004032CA C64424 40 10 mov byte ptr ss:[esp+40],10
1 O& p# j( Y3 _4 t2 `: C004032CF E8 F0C20200 call qsr.0042F5C4) l8 e0 v! _+ Q6 r2 U5 a
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
. S& M# `3 d# c: @* b004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl' S$ n, S3 Z: {3 @1 ^- n
004032DC E8 AAC10200 call qsr.0042F48B, [9 W/ C, A' H, ?) @8 @: `9 j; H9 ?
004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI( v; ]& J4 x( B
004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX/ W. J& V" k$ \9 v2 `
004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
. h; q& P2 D% R" g' k; D. X- A1 ~$ q004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL8 {$ l4 T* y& V2 r I1 D: W( o. M
004032ED 8ACA mov cl,dl ; DL送CL& S/ ^' y$ |; p7 g, V8 m! ~
004032EF 3AD3 cmp dl,bl ; DL和BL比较1 R% g+ l" S( b: d
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
K6 e+ l Y, o5 N; H004032F3 84C9 test cl,cl
! i. \; S6 E6 v& `/ _004032F5 74 16 je short qsr.0040330D* G- \7 A9 p/ U! `5 X* @) r( F
004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL
4 Q3 X. D. ]9 B004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL
6 t* c& P2 a$ S Z& l4 }004032FD 8ACA mov cl,dl/ b/ C& M& z) N
004032FF 3AD3 cmp dl,bl ; DL和BL比较, v. o6 d6 z+ G/ }' n$ G: c
00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
; E5 a- \/ Z7 ?6 g00403303 83C0 02 add eax,2 ; EAX加2
' p+ k+ ~( }; x00403306 83C6 02 add esi,2 ; ESI加2
, D& h8 X \ [: o' P2 A00403309 84C9 test cl,cl
) d9 e+ w+ Y9 I% h0 ^/ u0040330B ^ 75 DC jnz short qsr.004032E9
( N2 E, P9 M+ M: I+ E/ ^6 C0040330D 33C0 xor eax,eax) T# k, K3 @( L% E6 M5 \& T. L
0040330F EB 05 jmp short qsr.00403316- U" v) z1 _1 H5 t6 C9 I" @3 i
00403311 1BC0 sbb eax,eax
y) F0 r/ r3 J7 z4 z00403313 83D8 FF sbb eax,-1
. C/ K; Q6 O8 O( I% a ?00403316 85C0 test eax,eax. |; G! A0 V( J8 K2 j
00403318 74 0E je short qsr.00403328
6 ~5 t! Y0 o/ Q: u0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
7 k! b' T5 R" X' O, T0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
3 g) A3 Q" F& y$ d+ i3 q' K00403323 E9 F0000000 jmp qsr.00403418+ Q# {+ T! C1 E! f
00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
; x7 a% n T: t0 Z0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]1 V3 y) A7 |# B/ D( ]4 r8 _
00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]& G9 z# g9 L8 ]1 m. |0 ]
00403333 50 push eax$ y$ a3 v7 s9 M$ r" b2 ~
00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX8 P. f2 _6 G5 h. O4 ~/ s. Z
00403339 50 push eax
7 i3 ~% q' s+ W2 I* I+ h0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX7 E2 Z n3 X7 E; d5 M, L
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
( k9 \6 x. O& E" {00403343 83C4 04 add esp,4
' K" q$ `! y7 ?7 g. X V0 I; L2 Q00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI( F6 F4 V: U, X% u/ X* F
00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]
5 i$ s6 T# [/ A3 G* r$ E7 t0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]0 M7 n8 _. a/ g. x/ n. z% V
0040334F 50 push eax4 v! T4 }2 B9 c( z) ^
00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX& I1 ~ M2 O8 _3 N
00403355 50 push eax6 N" J9 x0 M. Q7 F
00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX
% Q C, i0 t9 P3 ^8 F! }0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX; d3 Y/ w( N. O8 }
0040335F 83C4 04 add esp,4( m( Y. f8 @7 Y- u* \/ h4 c
00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI1 r& Q z+ f) L
00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
' j( N$ H1 V" `& ~: Q00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]
# o$ B3 `5 k. E2 B; \1 q/ h5 l4 t) w1 M0040336B 50 push eax
+ v( E+ d1 v8 N. C) y0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX
+ p4 N2 P" v6 n5 _5 R& M$ P. C {00403371 50 push eax
4 H6 n T, f. p. J5 z$ v* x& j; a00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX
( @) e# G) L8 V3 h. [00403377 8BD8 mov ebx,eax ; EAX送EBX
/ Z0 k y2 d/ Q00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX
1 e$ v9 Z M& b6 H4 c$ _' M0040337D 83C4 04 add esp,4
) H2 c/ }3 i9 c; H' F2 x& u00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]; t* v) C6 p* y% a8 A7 f, t5 B# Q
00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]$ ?+ d; `+ D, [0 c$ r8 ~
00403387 50 push eax8 `( h6 w$ g$ r4 f( B* z& Z2 {$ L
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX' ~# }; Z2 Y3 M3 J% D
0040338D 50 push eax, t+ E2 O8 s' [' f/ U8 K
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX7 D/ W+ o* |8 A/ D
00403393 83C4 04 add esp,4, ]) r- ?: Z; c: M* E0 D
00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
9 G3 X# d2 W% ~0040339A 8BE8 mov ebp,eax ; EAX送EBP
! e- L) {$ k/ N3 w5 q3 b3 `$ H0040339C 6A FF push -1
4 H1 z- L6 [& a* u6 S0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX
1 ?7 o i# V# d+ @) z004033A3 6A FF push -1/ y5 S- d) Q" m% D( j: T
004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
+ n/ M' I. K. b. R& Z9 {6 b; {5 R004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX" }3 S. n8 @2 u5 z( F* R# {
004033AE 6A FF push -1
, w/ T- Q+ g: {+ u5 n1 {; J004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX
9 O3 t+ V" A+ h0 F" ^" e004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX- `4 ]+ Y1 j' h, \2 O; M
004033B9 6A FF push -1
+ T0 ~0 k. W1 g y004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX
+ `& i& R6 I8 v' C! c004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX# L, W$ \, u0 I6 H4 J8 m
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX1 k. D1 U7 a, O" j+ U2 p h
004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
- K1 p- Y6 _8 E3 H% w7 q' q; r004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
% D f' B, U( ]8 d004033D7 D1E0 shl eax,1 ; EAX左移1位
/ |" ?) z! H5 d( A004033D9 99 cdq ; EAX扩展
! b1 i) M# a: [+ s# k3 t& s; b8 ]004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中. j9 j" G7 x# x8 V$ h
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
1 `( E' j6 K% g6 R: o004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)
1 U1 [+ i/ I% z9 ^004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A* N" O$ s' x2 H( n L
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]+ e' u( \$ f. R4 j
004033E9 EB 2D jmp short qsr.00403418; a% C6 K/ i+ m# B, M1 E2 t& F
004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX
* u6 j! f" I/ B7 B004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2) W# g6 l4 u) b
004033F7 99 cdq ; EBX扩展! P3 u& H# G- g1 I7 q/ D5 w0 e
004033F8 33C2 xor eax,edx ; EAX和EDX取异或
7 }( Y5 d: m5 A6 y004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
0 q1 z4 \* C) R: `& e004033FF 2BC2 sub eax,edx ; EAX减去EDX
! r0 p8 g+ c+ W, S00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]
& X* H8 k3 H, B0 u( m00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX- Z% P1 c) d' ~! y1 R/ n
00403409 99 cdq
8 V; Y+ W3 Z6 j- C' F3 t0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中& b& A; ]+ J# {* t q' c
0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX
: `! r- v5 g/ G. z" i* ]5 H0 h00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较 a( N& m( O5 P# g0 v1 s i
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)! d3 l) b+ t9 H4 n" E2 S
00403418 E8 6EC00200 call qsr.0042F48B ;
/ `5 Y/ a/ n6 C0 t3 Q, d! L) ~0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]3 K2 B2 |3 ^7 l+ P& {
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9
" U% o+ I3 d- |0 i" w2 Y00403426 E8 60C00200 call qsr.0042F48B. j- [* O, t7 F* A" v. Q
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
3 H3 V/ k2 a) h6 ~% ]8 Z0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],87 I: c6 `' ?) ?( Z7 K$ N& [: }
00403434 E8 52C00200 call qsr.0042F48B# ` z( C9 F3 L
00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
) h% _5 ^2 I0 E6 e% Q$ I2 D Y0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7$ U6 W8 ?" F$ @9 x
00403442 E8 44C00200 call qsr.0042F48B
$ }; b7 |. J$ g+ s" f" a00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]' t1 \+ y4 ]$ C! } d0 s5 ^1 g
0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6; k5 I/ _+ N. j |5 O
00403450 E8 36C00200 call qsr.0042F48B! x# H& Q: Y0 K1 F% _( o
00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
[8 G0 h& D& F5 a0 g( X6 |00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3: G5 K6 C' X/ I
0040345E E8 28C00200 call qsr.0042F48B
+ K- z h3 W. A" j! f' w3 `00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
: w K) G0 r* @: v) j; B00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],28 z& b: Z- J6 R' s% Z6 D% h, c4 }% R, A
0040346C E8 1AC00200 call qsr.0042F48B
' \ }" w# Y/ t4 J( i$ _: [" Z00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
7 _3 j+ o4 v. V00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1* \; Q1 t A0 h5 @( c
0040347A E8 0CC00200 call qsr.0042F48B
; G3 ]# a H* k- B9 C0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
! F7 `+ M7 F( T- s D8 O* i00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
2 { d! Q, h q3 z+ h l6 e00403488 E8 FEBF0200 call qsr.0042F48B" S% e$ N; M& P# Z O. A( j. _0 J, c
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]: o/ d; f% b; A8 h! ~8 D
00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
, @( Z# x9 e5 F; h1 i. m00403499 E8 EDBF0200 call qsr.0042F48B. i2 ]( q; ?8 s
0040349E 32C0 xor al,al ; AL清01 B" E4 S A6 s% A" O# }* v
004034A0 E9 88000000 jmp qsr.0040352D, T5 h7 o, Y! I- l7 B
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~
9 t+ C9 @2 b9 C2 ~. f/ R( u% N004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
7 k: e) N3 F) I& s) p$ b) [, \+ ]004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9" K& I! {6 J F+ i5 u/ e* j/ E0 F. d
004034B3 E8 D3BF0200 call qsr.0042F48B
( }; J0 c l! K0 J$ h2 A004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]. q! k5 T3 K" ~) ]6 F
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
& J0 x1 z& I# ~! E004034C1 E8 C5BF0200 call qsr.0042F48B' F" F; V, b' j# t, k$ e t4 {
004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]1 X8 j/ F& f& v7 r: `
004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
" r! i1 B" b/ x- _( `004034CF E8 B7BF0200 call qsr.0042F48B- u+ `) s. H" p: t) N5 h
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]1 X0 Y8 K$ { _+ P c
004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6- N. V, Z( O; O+ d* C
004034DD E8 A9BF0200 call qsr.0042F48B7 y" v; M$ E7 S/ A v
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]* U2 t6 W! W$ p6 K9 i3 o
004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
7 @/ z4 _; h& p$ \004034EB E8 9BBF0200 call qsr.0042F48B( m$ U1 w7 _1 j: }6 s, N
004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
- J% C0 X" o; ?8 ?" L; b004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2
3 H- {. y/ i- w8 o' x0 a004034F9 E8 8DBF0200 call qsr.0042F48B
' ^, N4 ^7 q# V s6 M- }+ Y004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
. q! `* O2 i7 u( K, W& P% I00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1 P o) S, g& E# j1 L7 i" M
00403507 E8 7FBF0200 call qsr.0042F48B
$ T7 N: d- w9 a( b/ i5 j0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
l5 }7 A: u" k: `00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0+ y- P r* j# V
00403515 E8 71BF0200 call qsr.0042F48B- L- x8 X6 l* k B4 |" x( q
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
% F& M& Y/ z( h0 q0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1* F% g4 H8 e3 L( |# h& E
00403526 E8 60BF0200 call qsr.0042F48B
( ^' f, j6 \& x4 c) A0040352B B0 01 mov al,12 l1 ]( x0 R" k S/ H
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
( ]! ?7 j! I( Q00403531 5F pop edi
P/ O6 m- ]& w& G. s; M1 P( J00403532 5E pop esi, ~) h! d; v8 f& K7 }6 w0 i+ h
00403533 5D pop ebp
3 k d% t2 A, E, }0 N00403534 5B pop ebx
/ Z: H( { }1 i) ^8 r# y, X00403535 64:890D 0000000>mov dword ptr fs:[0],ecx
5 `* x3 z2 c5 w; C) W0040353C 83C4 30 add esp,306 d" S/ w: ~5 s3 a
0040353F C2 0800 retn 8 `% K8 g9 v0 U5 t. _8 p( h$ ]
-------------------------------------------------------------------------------- D. u1 _# Q3 H, [
【破解总结】 T" l$ D5 x4 C ]- c
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^- W0 D2 t4 ~! E3 E+ v
用户名:yijun
6 ^1 f$ w) f) L1 I, K3 a1 w$ c+ `注册码:4893*7777*3726*7777*0529$ |6 w9 f* M, u4 N& S- E& T
--------------------------------------------------------------------------------5 n3 V' i9 z6 l
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡