|
|
|
【原创】破解Quick Screen Recorder
% {: P$ E( M2 Y【破解作者】 yijun' k U% }2 u1 S Q
【作者邮箱】 [email protected]
: B2 y; T. Y9 D* A3 V% z【使用工具】 OD,PEID
8 O# ?/ o$ d! U( |【破解平台】 WinXP0 ^3 a; |) _1 a* g8 q: s0 j6 T
【软件名称】 Quick Screen Recorder
8 E/ @! a' w1 }4 H' |/ F【下载地址】 天空
( {9 h/ F8 Z* E2 V8 {【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
6 s* U: q& g y% ^【软件大小】 540K
6 e4 [: X6 M- N+ u0 }' @【加壳方式】 无
9 O% E0 Y( I9 D7 X5 U【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)
0 {* Q) |3 b3 ]' R: C! ~* ^--------------------------------------------------------------------------------* ^( C1 q( L. r+ P4 S* e# M
【破解内容】
+ P/ x6 W# ~) x+ G8 S" N4 _( y* { PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:+ E! o+ i9 t5 e( S5 g
00404C69 55 push ebp //在此下断. |( `, V2 t: r' U7 @7 X6 b
00404C6A 56 push esi
; g5 ~7 ^$ x. }# K00404C6B 57 push edi, f4 Z% x0 l( E* G, f/ G
00404C6C 8BE9 mov ebp,ecx
, h6 O" w1 u8 J: O6 G; W/ b00404C6E 6A 01 push 1# K) ?1 p# Y4 L, [+ s8 ~
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
$ E0 u+ M1 ~/ g0 Y00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]! r% ?/ L5 y3 k, C# Q7 M+ ]3 ?
00404C78 8BCF mov ecx,edi! u- s8 {9 Q8 R( x6 b
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码
+ T& _" Z' w: \- b% {% T3 ^% I00404C7F 8BCF mov ecx,edi6 S& s) ^* s0 K. ]( o
00404C81 E8 A73E0200 call qsr.00428B2D5 [ L5 |' W+ w* [9 R2 a% L
00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
2 o) V3 K0 ]: F3 G6 C: I00404C89 8BCE mov ecx,esi
0 _4 C" `5 y' z# Y A00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX+ u" b8 F# E8 z4 v" z( T: ^
00404C90 8BCE mov ecx,esi3 j" j/ y+ \+ I' o `/ r
00404C92 E8 963E0200 call qsr.00428B2D
- y$ v* B% U, t& ~/ \. X6 q00404C97 8B06 mov eax,dword ptr ds:[esi]6 {2 w' Z6 y: l. Y4 z) r
00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
7 H$ |- G# A( S- Q% K2 ?00404C9D 7D 26 jge short qsr.00404CC5
Q$ H7 t8 i9 j- E: |8 e# t% {00404C9F 6A 40 push 40( e% F) J/ i9 p
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
) T3 C8 N) \8 i4 Q( [00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."
7 F: {" Q+ [: C5 i00404CAB 8BCD mov ecx,ebp
. ^2 _# B/ w* o( ?7 K00404CAD E8 C3840200 call qsr.0042D175; D( S3 y& F4 v
00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
8 M% n; g! V& x. [. Z9 U1 R00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx
5 [3 e& W$ x8 w00404CBD 5F pop edi
* l5 j" m* n6 [: |! L4 A00404CBE 5E pop esi% G3 W% b. {3 R& u: L0 O
00404CBF 5D pop ebp
* V2 D# C6 r5 u* F' w1 @8 J, e6 O2 \) e00404CC0 5B pop ebx
$ ?8 p+ L) l9 G5 o8 J00404CC1 83C4 18 add esp,18
* ]/ y, o6 C" ^ r4 W) B00404CC4 C3 retn
1 _% C0 C- T( F( h( G00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]; e) z- R1 ^% ? q
00404CC8 84C0 test al,al: h" l- G& y: f$ g$ A1 A7 c
00404CCA 0F85 1C010000 jnz qsr.00404DEC
% r8 R1 }$ T* g3 b3 B7 n00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]. s9 A& s( [& |" Y# V
00404CD4 E8 87E3FFFF call qsr.00403060
0 L, G% [6 L4 n+ r% g00404CD9 51 push ecx
7 |) V Y2 l; f00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
- d7 B6 U; B/ G0 U- P5 Y00404CE2 8BCC mov ecx,esp
1 U9 ^% P, j0 b00404CE4 896424 14 mov dword ptr ss:[esp+14],esp3 L1 n' r, l8 ~# \( f" P
00404CE8 56 push esi
2 V2 d) r; k: o, p- C- q( v00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
3 H7 L8 C8 ^0 C+ p+ ]. Q00404CEE 51 push ecx# V x7 ^1 t& Z4 u
00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1' v8 ^ T- a0 q9 X4 Z9 `
00404CF4 8BCC mov ecx,esp3 ^) C7 d! m" s/ U' K' @
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp9 F/ l. B. b) w% p# N
00404CFA 57 push edi& ?" |4 a0 s+ V3 M3 I9 ~' j0 d: q* R
00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是00 f' y L2 B6 N
00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]2 T v! g2 `0 H1 C4 `
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],00 h: F! ^' W5 |! ? m
00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~4 o+ ^! O2 e( R8 @( m, g
00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~- K9 q* Q i1 s9 H, v% q, m
00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
5 A! q% P7 s* _. q) B9 n# N00404D12 6A 40 push 40) V$ y6 s( c( m, P; ]0 s( q$ Q0 I
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"4 x; E1 R* D1 n) _! {7 V
00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."/ k% w0 ~2 Z7 w. h5 P3 o2 o* h( O9 g
00404D1E 8BCD mov ecx,ebp" \! b' L, f" E) @# o% x% u0 B
00404D20 E8 50840200 call qsr.0042D175
. n K# s; m) b) |. Q& }- o00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
3 z3 c$ f6 d% t0 `* [00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1
, H1 J4 q- o+ p- O' G. n00404D31 E8 5AE3FFFF call qsr.00403090
2 Y: D6 C4 K3 l' s00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]* Z8 D0 z/ R7 }" s% R, A: k
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
( e! ~ F. R! l$ `( J00404D41 5F pop edi) g. C; J# x# n1 y' b( _- k
00404D42 5E pop esi$ u/ ?: z' ]0 L
00404D43 5D pop ebp7 i4 l. w% y2 i: J2 M; n; q" Y9 }/ @& l
00404D44 5B pop ebx
: b/ h) |# B# f00404D45 83C4 18 add esp,18; R6 ^3 z' O$ B* `
00404D48 C3 retn
+ ]% f; R1 [! b; U$ z7 r. e*********************************************************************************************************************************************************2 L7 {2 ^! x0 X6 ~- G
跟进00404D09处CALL来到:
% u8 C* l- `/ k% L004030A0 6A FF push -1 //一路F8下去~~~~
7 h4 N" R. i/ a4 \! k. Y' u004030A2 68 C88F4400 push qsr.00448FC8
: m' ?+ m5 D+ h' d004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
& l$ h) W9 C; ~, _8 [$ N$ V$ w( `004030AD 50 push eax
/ p+ a Q, d) ~- Q, Q/ `" Q' g004030AE 64:8925 0000000>mov dword ptr fs:[0],esp! w F+ f& N. Y$ X Q
004030B5 83EC 24 sub esp,24
- _: K, i S' x& g004030B8 53 push ebx3 U/ M( \+ O X" w
004030B9 55 push ebp9 d- j! N1 p3 W
004030BA 56 push esi! I# N2 ]& u' ` ^3 c
004030BB 57 push edi) A P: |3 x3 _. G
004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"6 Q' o4 }9 p0 N8 C' N
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
C4 R) s* V1 f& X004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],13 Q4 O3 g) N; g7 \. r
004030CD E8 27C40200 call qsr.0042F4F9* Y9 R: J) b% J4 M3 ^' R: S* Z) w* t
004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
n0 ]+ r% b; S) u004030D7 894424 2C mov dword ptr ss:[esp+2C],eax& R) o7 ]4 N- g0 {
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]3 k' x3 l) n3 K, [" i) X& ]$ W& E h
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
; ]4 ?) y. @5 Y6 L004030E4 E8 905A0200 call qsr.00428B791 v. N$ F9 z' s# [7 H
004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
: c; Z( M& R0 x+ a8 ]004030ED E8 3B5A0200 call qsr.00428B2D1 O: R2 _4 X- J- a: Q* ~0 V0 U6 f
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
* x! O+ L: p+ b+ L. ?: `& g004030F6 E8 7E5A0200 call qsr.00428B79: M7 \" W, r @, f3 `
004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]& @: a3 n0 v7 h( a. B
004030FF E8 295A0200 call qsr.00428B2D
) p" z/ d- Z s# x00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]) A# N6 e. ]% d% |; o" s
00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
2 o% e' b+ Y+ h& N% w! s# B! U# y0040310B 83F8 02 cmp eax,2
. W& g7 J, O: [, |0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
. E1 U& f# G. C i% |00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]
$ n) J6 }9 O1 Y! M* F4 u+ `00403118 837A F8 18 cmp dword ptr ds:[edx-8],18
0 f+ q/ C6 y8 h5 `' Z' G0 A0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳7 j# k9 [- Q3 I, z* a2 F" |& v1 |
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
$ [8 b2 ?! s6 `. I00403126 6A 01 push 1
% p- ?+ O0 d7 `& z00403128 50 push eax
) H: W% W! K0 U1 w0 m* \% J00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]6 J& p+ ]/ Z( \: M: H
0040312D E8 C4550200 call qsr.004286F6& k: S) V8 ~& X/ t: i, h% Y
00403132 8B00 mov eax,dword ptr ds:[eax]
, W9 J6 g) u$ g: |2 F* o00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
3 ]( e M" p( X, o+ d00403138 50 push eax
3 ~1 v9 q" [" D( S$ F e00403139 C64424 40 04 mov byte ptr ss:[esp+40],4
& E+ s; R" v8 x0 I; }* P$ |0040313E E8 4D560200 call qsr.00428790
; Y: M7 ^: t4 o& s00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
' {/ M* `4 W, a/ @8 H: ?- Y& x9 P; g00403147 8BF0 mov esi,eax, f! X2 s2 M) r- x
00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3! N, I( x( h& L, w
0040314E E8 38C30200 call qsr.0042F48B& U5 {1 H0 i2 x& i/ B J
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]
2 b3 L% H0 U9 J00403156 B9 3E000000 mov ecx,3E
0 d& x: m% e$ {# _5 a0040315B 99 cdq
& i! g$ B/ B7 ^6 c0040315C F7F9 idiv ecx' L) k: y: V3 l O0 w- I1 `
0040315E 6A 01 push 1
& V' t+ `# ]+ q5 E% v( V00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]
P6 u" Z+ h( j+ B00403164 8BF2 mov esi,edx' q3 G4 u$ C. I$ U' l
00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
' d5 ?5 g% ]+ x( E5 i0 v$ S5 A0040316A 52 push edx
; p- ^9 P0 @! I7 G/ e: A0040316B E8 0A550200 call qsr.0042867A
* C7 U1 S. {) `& J00403170 8B00 mov eax,dword ptr ds:[eax]
1 l3 b8 B- ^) w, D2 c% @9 t$ ^0 Q00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]5 |) `3 A9 v0 j- z2 K; {) F1 u/ |
00403176 50 push eax
! V6 O! e. c8 Z5 Y00403177 C64424 40 05 mov byte ptr ss:[esp+40],5
, @% ?/ Y M! a( P0040317C E8 0F560200 call qsr.004287906 B" T* G: L0 ]( z' T
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]6 d5 S# @6 ?3 `) f% L& L9 Z; X
00403185 8BF8 mov edi,eax2 `$ A4 y% N; Z/ z& W. V+ g
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3
7 N+ x9 N$ @# `2 Q" c7 p0040318C E8 FAC20200 call qsr.0042F48B
' }& U1 z1 \* [! ]5 D00403191 8D47 0A lea eax,dword ptr ds:[edi+A]
J$ P4 s$ {/ C) s2 v, z00403194 B9 3E000000 mov ecx,3E" }- Q( d; U0 Z- z: g
00403199 99 cdq; f( i0 U' x& n3 w# N
0040319A F7F9 idiv ecx
2 p j5 }+ o7 l6 \7 |6 _6 D0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]) S0 L2 T/ W4 ~8 m0 O6 U. V
004031A1 894424 28 mov dword ptr ss:[esp+28],eax1 m# F0 P, r0 D8 ]/ F1 l9 B y! f
004031A5 8BCA mov ecx,edx
' \2 N2 l7 u3 O; l" X) I' A+ V B004031A7 894424 24 mov dword ptr ss:[esp+24],eax
, \7 G) _ m* a9 s/ ~# z004031AB 894424 1C mov dword ptr ss:[esp+1C],eax% w+ I6 T) m6 t) f$ z, t
004031AF 894424 18 mov dword ptr ss:[esp+18],eax! T1 ~' q. s% W* z2 H1 s! e7 c
004031B3 894424 14 mov dword ptr ss:[esp+14],eax
8 }, O6 A5 b+ X; y004031B7 894424 10 mov dword ptr ss:[esp+10],eax
/ J* ?; }% U8 \0 b8 |5 S9 g+ Y' ^004031BB 8BC1 mov eax,ecx" H- R& |5 I& p% k) |% T# F
004031BD BF 0A000000 mov edi,0A2 U$ q! }/ F) M( g% a
004031C2 99 cdq% `2 H' T9 @7 m- X. s
004031C3 F7FF idiv edi
9 r- |5 i) r0 k' l004031C5 8BC1 mov eax,ecx
- u, X, i3 F2 [* X; F004031C7 B3 0B mov bl,0B
0 l* [+ X. c9 z( _5 [1 E" i004031C9 0FAFC1 imul eax,ecx
6 \4 I: c0 n4 i' w' R9 J+ K004031CC 8BCF mov ecx,edi* }$ \3 \+ W+ _) ]* A
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
; [/ s- ~/ @ H" p3 F004031D2 52 push edx
0 Q2 ^# N" c4 l) l3 J004031D3 99 cdq
6 `3 T- @, g O004031D4 F7F9 idiv ecx
+ t2 u' F2 D: W004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]/ X! ]; T# V" k$ {" M F
004031DD 2BC6 sub eax,esi" ]6 l/ r. @: B& m8 p8 @+ d) x
004031DF 52 push edx
1 n a8 T! u7 q) N004031E0 99 cdq
6 C/ T9 w2 X; X6 v% r' I4 _0 [! R004031E1 F7F9 idiv ecx
0 ^5 Z1 x+ S6 p7 j& M004031E3 8BC6 mov eax,esi% u3 u* I( q4 w7 e: I0 Q4 J
004031E5 52 push edx. Z" C- B( I- F2 w5 F2 k- `
004031E6 99 cdq) ~; l& h3 |) b1 z9 L* } c
004031E7 F7F9 idiv ecx
% y% d& @- v7 Y" u1 L004031E9 52 push edx
) F" j# J1 w- M) O' y. H004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
& i- ~8 t+ S) l004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
' K4 S8 ?( ~. ~+ T3 `- ^( m004031F3 52 push edx
0 n8 @0 Z# P1 P# }% w5 D d004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是48932 v# V% Q6 M' T$ ?. f9 N
004031F9 83C4 18 add esp,18
* ^$ Q# Q' Y _# f- d004031FC 6A 04 push 4
i7 `) s: Z9 m& L% Y" z004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]- X9 p6 J7 [: q( x9 t
00403202 6A 00 push 0# Q3 B. }- h4 Y
00403204 50 push eax8 j4 Q8 D2 R0 ~- f& a
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]9 X2 E0 Q+ Y! b. b) S a$ {) M0 U
00403209 E8 D6530200 call qsr.004285E48 h8 g0 {" x4 X
0040320E 50 push eax7 y* q ~; i0 x9 A; t( [7 M4 S
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
! S: ]9 h& |2 v% r00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C6 k ~& y* }9 B E8 H/ B
00403218 E8 A7C30200 call qsr.0042F5C4
2 }3 _. f- U! |% K, Z/ T0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
7 K1 N- U% {' `! h; V- [0 ~, [00403221 885C24 3C mov byte ptr ss:[esp+3C],bl
) R/ e ^/ v# A) s" v) s00403225 E8 61C20200 call qsr.0042F48B: A- {6 x3 W- M, |" T6 g
0040322A 6A 04 push 46 f; l! N, g' D# Z& ?5 K) N; S
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
( x+ ^( y# L3 |00403230 6A 05 push 5 ]9 \ B5 ^9 ~* L
00403232 51 push ecx
: @. N2 p+ k2 x8 x5 }0 U/ G00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
8 A& ]: \6 m; N1 C* H7 g4 h00403237 E8 A8530200 call qsr.004285E4/ P+ S3 z# {" I
0040323C 50 push eax
) a5 `: A- ?* E$ `0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]. |2 K: U; I. l
00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D V4 V& C# a) I, ]# m) y
00403246 E8 79C30200 call qsr.0042F5C4; P5 O, J: k1 H! t# c" q' n
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]! Q6 q! s7 Y+ k3 L7 x0 \9 k! K. j
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl
0 E' o( n, r9 a/ Y& i00403253 E8 33C20200 call qsr.0042F48B
8 M0 v) q6 \) d, `00403258 6A 04 push 45 Y G4 U2 Z) `
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]* C$ k% w \4 y% L4 x) z, L5 ^- M
0040325E 57 push edi
3 J+ ?% D8 u1 E0040325F 52 push edx
L# |+ g2 E; }, C6 H" d00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]" V& c0 f8 G, }2 A2 w
00403264 E8 7B530200 call qsr.004285E4' b3 Q. B* `( Y! w3 k5 }
00403269 50 push eax$ a! ?7 x* P: k: `# O0 w4 V8 ~
0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
( r5 l1 F, {' c) z. C* l0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E$ i7 D4 K+ y$ b* }! t
00403273 E8 4CC30200 call qsr.0042F5C4; m: W% r4 y' R0 ]6 r; O
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
( t4 w% o. }8 s4 |0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl h ]5 T" o: `7 y
00403280 E8 06C20200 call qsr.0042F48B( c+ n1 E$ X6 X6 [2 z( I+ t3 U
00403285 6A 04 push 4; z0 U; R( A/ i! {. [) m! j8 k0 M
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
( C# l5 Z7 w" \3 y! G- n8 T; H0040328B 6A 0F push 0F
1 U, m9 v0 Q( e1 I+ f7 C2 A: A0040328D 50 push eax
g/ K9 ^5 R+ x9 U) a- n) g5 O! x+ O0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]- j8 X1 H2 y9 ^+ e3 E
00403292 E8 4D530200 call qsr.004285E4
* |0 l% `2 O* l' @) o0 U00403297 50 push eax/ _# g1 c! v8 C$ C% e$ T' U) J4 l
00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
f0 D t4 ?; h: K% w0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
2 u/ F. @: m9 o, {4 t( M: B004032A1 E8 1EC30200 call qsr.0042F5C44 K- }; h7 \ l! u
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]- @ l6 \- X' y. B* A& [
004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl2 C7 v6 l4 b3 \$ {8 I
004032AE E8 D8C10200 call qsr.0042F48B! P7 \ X% |3 E( _
004032B3 6A 04 push 4
" |0 X h- P" B- I" I7 U004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
# p+ n' c! o' h9 d& a- O004032B9 6A 14 push 148 k( J, j: l% T( |
004032BB 51 push ecx
4 N8 ]/ s* x% H4 h6 t2 c; y004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
$ X* J9 d- w0 W. {004032C0 E8 1F530200 call qsr.004285E4
+ x0 T) c! Z |2 a5 m! T6 V004032C5 50 push eax
, B4 j9 }$ l3 N# @7 Y004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]) y2 j1 O/ m/ m6 c3 S
004032CA C64424 40 10 mov byte ptr ss:[esp+40],10
8 l' x6 l: u' ]# p004032CF E8 F0C20200 call qsr.0042F5C4
: k* s* B. D8 X0 J2 z8 w- k004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
9 V6 Y$ E) s! @/ h& O9 R004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl7 D. }6 E! H0 L* @' m! A$ r
004032DC E8 AAC10200 call qsr.0042F48B
9 i( w+ V, X: s7 r. B004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI) \" [3 \, ~+ o% d. m
004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
( T! ~7 f0 b' x004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
! X) J9 W P9 s" ?) R! g004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL
9 J% R3 S w/ ?( P; p1 Y$ H9 ?004032ED 8ACA mov cl,dl ; DL送CL0 ~) B; c) G( n$ t
004032EF 3AD3 cmp dl,bl ; DL和BL比较 @6 g( ?7 l! q) j& U# O
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)9 C3 _" v2 n/ S% |$ Z" N
004032F3 84C9 test cl,cl
3 k7 {8 }) u" j: }5 c004032F5 74 16 je short qsr.0040330D
& y7 d2 w- o6 A/ P1 U% u0 A" [004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL) U% s6 b J- ~: q- m3 v
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL4 e `& L3 v9 J
004032FD 8ACA mov cl,dl! p& e7 S6 {" ~9 e% L
004032FF 3AD3 cmp dl,bl ; DL和BL比较* ]8 t5 A: s: f- O; Z" n5 w
00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)8 ^6 }# `/ _) Y" [. @; H N
00403303 83C0 02 add eax,2 ; EAX加2- a# e* U$ y5 E' n9 e& u' W
00403306 83C6 02 add esi,2 ; ESI加2
+ t% h. \; ^6 a+ q5 o. q( s00403309 84C9 test cl,cl
+ R; |! k. B9 h% Q% {0040330B ^ 75 DC jnz short qsr.004032E9
7 N, W. ~+ _ [0040330D 33C0 xor eax,eax2 _' ^, C+ ^7 O" R5 }! j
0040330F EB 05 jmp short qsr.004033169 c: E' P$ ]) \1 Q% _1 t2 J
00403311 1BC0 sbb eax,eax& l w( U- W' w) ~
00403313 83D8 FF sbb eax,-1
+ r3 N* J4 g' \; e$ p6 o00403316 85C0 test eax,eax
& H' A: n8 j7 o! O7 Y4 l5 W8 Y00403318 74 0E je short qsr.00403328$ }- N0 S4 ?' J. V2 N
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
@( `: G m/ A b! z3 g/ ?0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]( M! t% @% m4 }
00403323 E9 F0000000 jmp qsr.00403418
" {& `$ y/ R& S: f6 q00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX f6 v1 K# [8 K. U! _ m
0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]3 T% S! N6 g- h: _0 j7 o
00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]
0 r; O6 W- u* b2 f8 }00403333 50 push eax1 n2 f7 T6 m& a N0 n! R. M
00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX
( d% F% w# x2 K- ]9 E) E: k" N00403339 50 push eax, w4 h9 z) w9 V# C6 D
0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX8 V9 \+ D5 e6 \, q/ ~
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX; t. \ W5 X6 u* ?; |9 {5 J7 J
00403343 83C4 04 add esp,4
% X! q4 ]( H9 g+ C" Y$ n& m00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI* A6 p3 p( F: I, e) d& c
00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]
/ F- _1 d5 H1 y0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
/ G5 S( M b- _$ W" v0040334F 50 push eax
; w6 I( C/ g, d8 J0 q00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX, Y. X8 T W7 ? z& |7 j
00403355 50 push eax" R W% E/ W% e, E3 L
00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX
) d- P+ _ d7 n0 g0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
; J4 D) u. ]+ I1 ^) g/ v+ F y0040335F 83C4 04 add esp,4
/ W- T& O4 C! ^, A2 u+ ~+ s) w. E00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI
" S7 [" b6 k) N, Y1 |8 }6 d( p( ?00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
3 X0 K# o4 v* R: _3 k o: s$ o" H00403368 8B42 F8 mov eax,dword ptr ds:[edx-8] J) K$ T6 i# r- J! m, O
0040336B 50 push eax
1 H1 Y( x0 ~2 _1 D0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX7 W6 B+ C6 M4 L
00403371 50 push eax
4 i& H2 P( P$ o: ]. y00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX$ E( Q. L- U* \
00403377 8BD8 mov ebx,eax ; EAX送EBX
1 l+ Z$ \+ n) W( v2 U: N+ L00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX* z5 N+ w0 M- g. h! ^3 v: I
0040337D 83C4 04 add esp,4
; c. B9 u; t7 G9 L% {4 B& C" f# f00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]( r) f) I4 I$ L% x W* e
00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]1 b. `, z7 x" N% m
00403387 50 push eax
e. ]. N0 r* R7 Y N# K' ~00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX+ z- K. H) `. @. l" { v* z: Y
0040338D 50 push eax7 C6 o V: }1 Q& {7 W8 H3 Z+ F
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
% ^* y, P# H) X3 j- r4 X00403393 83C4 04 add esp,49 k* J- Z# W# a) ^! b: j
00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
8 n" \: K& W: P) [7 I4 Z2 ]0040339A 8BE8 mov ebp,eax ; EAX送EBP6 ^/ h# n3 z1 J3 V/ i* ]' a
0040339C 6A FF push -1" c5 b! E5 [8 q5 I1 B1 g0 v" a9 L
0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX
; o2 y& l/ S0 }- x# t004033A3 6A FF push -1
7 h, i5 p4 J- h$ l H$ N004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
% `' P, ^5 e5 V' d3 ]* u/ v004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
, D& D7 u. Y: \. J0 O! p2 w004033AE 6A FF push -1% ? Z% m3 D. F0 R" `6 K! K
004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX3 n, c# b& T: T7 K
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX
/ @+ i4 K6 a$ w, G1 I1 z004033B9 6A FF push -1 x; p: e0 t* j+ S) L
004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX4 G6 h9 e$ S% _( ?, _, I
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX
8 D y( m/ F/ E: w6 |004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX i* M a7 [( u
004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
6 v8 ?/ y/ K% I) V004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
: c' a; j4 i4 a% e004033D7 D1E0 shl eax,1 ; EAX左移1位" j* r" p8 l8 i n& X
004033D9 99 cdq ; EAX扩展& y! O- f: C% d0 {2 @. x% ?
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中+ w; _! P+ ?- ]- J
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较" x0 G* I) I% q; _' {
004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳). ]2 c4 A% d7 V) t" M8 o; B
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A
# m) U% [( M- ]9 k: [( t004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
- O0 d7 Q5 k9 G0 S8 ]004033E9 EB 2D jmp short qsr.00403418
) F- [% ~0 h/ [: B3 B004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX. T9 w9 k- b5 u, Q) k& g
004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E22 f1 W$ z" P, J, w4 J- S' q
004033F7 99 cdq ; EBX扩展. y) j. e0 N; v$ y
004033F8 33C2 xor eax,edx ; EAX和EDX取异或
& m5 S. \: T$ E @004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
) o9 [* Y) V: B004033FF 2BC2 sub eax,edx ; EAX减去EDX
! l9 T* k# Q' C2 {5 ]( t00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]8 Z" Y% V# K- x
00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX. d/ }( E% ]( t- }
00403409 99 cdq# f' ]9 _, a( E) l5 }0 ]
0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中( Z. `, r. e+ e7 o0 y. e
0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX( D {( M/ _+ Z, ~
00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较6 g( p" F, W- B# Y
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)7 ^2 i' `8 `# y0 K! O% o
00403418 E8 6EC00200 call qsr.0042F48B ;
2 A' X8 s0 }, i, {( Y0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]# h0 r3 D3 W+ K+ U
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9
! E0 D$ u! T$ y3 `# ?) F00403426 E8 60C00200 call qsr.0042F48B4 v3 E$ W0 [ W; i9 H2 d
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
0 o- N. c- F. c9 v: I v0 w0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],83 x9 o7 O7 D/ B8 j
00403434 E8 52C00200 call qsr.0042F48B
) N" u$ C5 m& M% Q' p5 G" V00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
+ \7 e3 W. [% G. G! [0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],70 l8 f& C; \' Q( v3 W
00403442 E8 44C00200 call qsr.0042F48B- i* \9 t/ p4 q" ]5 v
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]5 O4 U( @$ w" E# `' V
0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
9 f1 e- ?2 D* |$ ~% [ Y0 t00403450 E8 36C00200 call qsr.0042F48B
9 u2 {7 {8 ~4 r: E/ t00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]+ l7 A! g' k4 l t& X% y
00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3
4 h& q$ o3 m1 S* ?& T% K0040345E E8 28C00200 call qsr.0042F48B
1 z' X$ X/ {! w' \" B00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]* H: X& p7 ~5 M, s& [" t' ^% D7 x
00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2, `- {6 L w$ c% ~' q' s- z9 b
0040346C E8 1AC00200 call qsr.0042F48B- m V" k5 X0 d0 V- w
00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]& [) r% B2 l0 d( z) K
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1; r" Q+ n' K& a) Z2 n8 L1 [
0040347A E8 0CC00200 call qsr.0042F48B
/ O7 t! e; N; z5 Z9 B0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]( K1 X+ M+ Y& d: ~ J
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
9 f! U5 O. h2 i% x& b00403488 E8 FEBF0200 call qsr.0042F48B: `6 n6 g O/ ^. N
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
8 ^# q. }' ]* ]1 Q/ g, N g+ Y. a+ ]8 ^00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
: {, _1 O2 F' P) Z* ~% X2 \$ |% x# b00403499 E8 EDBF0200 call qsr.0042F48B& a0 C6 o1 M, {
0040349E 32C0 xor al,al ; AL清06 A. O; L: I4 ]! r) ^/ Z' W
004034A0 E9 88000000 jmp qsr.0040352D! Y1 v9 N* B$ `2 h
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~. H, _( n/ D' w$ f i
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]% N2 j6 I" T( B" u! J" v* b% U5 e
004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9
" o/ o4 e+ N# W004034B3 E8 D3BF0200 call qsr.0042F48B
4 w- C n4 E3 X( r004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18], b0 |! h2 Q& W7 `. m* s) X
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8: H: M7 c% ]! S, y' a M- r: D
004034C1 E8 C5BF0200 call qsr.0042F48B" J# d" b/ w! `
004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
: _: l( ?+ a, }9 M" U' W: a5 \: _. g6 |004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
% k+ I% X: v* m4 u+ G# P8 j+ e0 o004034CF E8 B7BF0200 call qsr.0042F48B4 R3 O& u1 e$ e0 Z" K7 k' v3 `" K
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
/ m: D: v7 w, D+ H$ g; m5 \004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6
( a5 F/ m6 u4 \/ B004034DD E8 A9BF0200 call qsr.0042F48B
5 h. i$ J% T& A# H004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]9 y5 [2 k* R# N4 g L, t0 X0 l( |
004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3. k( R+ t. I6 W! C7 I. [
004034EB E8 9BBF0200 call qsr.0042F48B
! W& j$ _) |, {1 Z: ^1 x0 F004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
* e( M- h* x; Z" h. B' b8 {004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],26 g: U' L) w9 w. u3 p/ p: ^; o
004034F9 E8 8DBF0200 call qsr.0042F48B
3 c" E& L* h) h! t, f: Z. \% R1 l004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
- ]- y J/ Z! D" f1 t% ]00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1
! G( |/ B/ p) r+ R' a7 b00403507 E8 7FBF0200 call qsr.0042F48B) Y( v" c& I) Q5 O9 i2 y
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]' z0 t$ B r+ X3 n4 G+ g' n
00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0
* L9 ?8 U- N0 y0 i3 y7 p# ~00403515 E8 71BF0200 call qsr.0042F48B% M0 \* K* z# l0 E; W4 c4 c9 Y
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]" H8 I% G9 Q/ `3 I9 m1 w
0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
, h1 V# ?- ~: Q6 d. p( f, e- g00403526 E8 60BF0200 call qsr.0042F48B9 W1 |$ C( h2 E
0040352B B0 01 mov al,1
- K# ]9 a8 H6 U+ s0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
! h. Z2 h8 \3 q# m00403531 5F pop edi
8 D0 t+ q+ C4 H; U+ W00403532 5E pop esi/ f4 c- W N, t3 C ~2 K
00403533 5D pop ebp
" W! z4 ?4 o. `' D00403534 5B pop ebx/ v1 f+ ?+ A5 @9 Q/ I
00403535 64:890D 0000000>mov dword ptr fs:[0],ecx+ w4 T+ {& i# u
0040353C 83C4 30 add esp,30% N$ p }8 Z" a- O# _; z
0040353F C2 0800 retn 8
/ L: n% t7 Q% k* M: c) I--------------------------------------------------------------------------------
: v& H5 A& ^0 h; t8 b【破解总结】& D) a: l7 z, E+ u3 @" W
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^: u' v; Z7 S. r
用户名:yijun
- F1 h( d! r9 w: S. I, Z- e! }注册码:4893*7777*3726*7777*0529
7 @* w' ] Q; }/ o6 h# I6 }--------------------------------------------------------------------------------
9 v- j3 p) c5 q5 p* q- l【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡