|
|
|
【原创】破解Quick Screen Recorder( s( D4 W7 q: R
【破解作者】 yijun
6 U, p& A2 t6 x& k$ N【作者邮箱】 [email protected]/ z; `9 z+ h- p8 @
【使用工具】 OD,PEID4 H3 c4 q, i6 Z) @) g0 O( N$ A# [
【破解平台】 WinXP
) d& L7 ~! |" n6 |. @; G% D6 X- a【软件名称】 Quick Screen Recorder* Y0 y* w' K4 m
【下载地址】 天空
9 z& {8 A c& p+ E/ @【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
: o7 G7 G e& v/ h$ W( F【软件大小】 540K. K" N( c' B) W9 U: X/ `
【加壳方式】 无 Y3 f y8 v* l
【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)
0 x* E8 P/ X. a: q9 l8 ^--------------------------------------------------------------------------------; q. X* x. Z* B: [4 f; Y5 O
【破解内容】/ D& g4 q! n' n: u' _; h6 U: n- m
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:& H( \7 Q7 M3 _
00404C69 55 push ebp //在此下断
9 M5 S- G8 o0 A+ D4 A2 R7 b00404C6A 56 push esi& O# i, A/ T9 Q; ]& x
00404C6B 57 push edi
3 V: O( C. [# Q7 }) E00404C6C 8BE9 mov ebp,ecx
9 D/ u$ t z& w' h% H* R00404C6E 6A 01 push 1
/ R% v K2 b2 n [1 Z3 [00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名! b. d7 s% e9 N' l! o
00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]; R' V* N8 L; B3 L$ k, h9 h: Z* c
00404C78 8BCF mov ecx,edi
9 e6 ?/ P# W0 L$ g% y+ ^00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码5 J1 h$ |3 A( \& e; z
00404C7F 8BCF mov ecx,edi
* ]# U+ }" _1 L& a( J00404C81 E8 A73E0200 call qsr.00428B2D# V6 K- a( W: E9 i7 R" e2 O) ~3 J
00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
9 O+ m8 c% N; e$ _0 ?00404C89 8BCE mov ecx,esi
5 h+ o3 b& C8 F# a00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX
! N1 ?5 C( w) E5 `. g" ^& r00404C90 8BCE mov ecx,esi6 c6 ^$ |/ G, `5 U0 Z
00404C92 E8 963E0200 call qsr.00428B2D
' S( E5 l6 l! H5 Y00404C97 8B06 mov eax,dword ptr ds:[esi]% v7 t/ g* h; R! V- w
00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2# b! E3 |2 h' z6 O0 k' ~3 E8 O
00404C9D 7D 26 jge short qsr.00404CC5
, i0 `4 _- |2 M7 F, O. {- n v00404C9F 6A 40 push 40
" q! c# n0 j; p! T' r1 Q! \0 T+ E* I00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"; z2 ]- y4 V- k
00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."
' e% `' R. ?* U; n1 P' w1 {, i0 E2 i00404CAB 8BCD mov ecx,ebp
; R' l& T6 t3 E I$ p4 M: I00404CAD E8 C3840200 call qsr.0042D175# f1 T& |( H3 _ r' O* X8 |% N
00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
' c/ X: `3 Y* m00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx
" r2 |! r6 P: L00404CBD 5F pop edi
. _6 X- L; L5 \! Y6 N: H00404CBE 5E pop esi0 W- k* t6 F, v% i& R9 H8 c
00404CBF 5D pop ebp! i* `) I& T; Z9 Y! f2 ?3 }
00404CC0 5B pop ebx
9 `2 T0 J2 Q& D) U00404CC1 83C4 18 add esp,18
% \" {9 L$ e: A0 s) X00404CC4 C3 retn+ J2 R( ^8 A3 Y) G1 f% F0 c
00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
* Z) X% I* R: v, P6 V y9 e00404CC8 84C0 test al,al
0 Z+ K. e2 x7 v6 \- F2 i00404CCA 0F85 1C010000 jnz qsr.00404DEC' C5 v' Q7 |9 a! \ _
00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
5 P% C6 Y, f, O00404CD4 E8 87E3FFFF call qsr.004030604 e3 _' F0 l3 b& K! x
00404CD9 51 push ecx
" Y1 F7 U& H0 O4 q1 x# `5 D00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0+ D2 a, o* ^! T" T
00404CE2 8BCC mov ecx,esp( d7 P2 F9 P) t' p' o& `
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
! o8 f) A. o& }3 E: z00404CE8 56 push esi' r3 K: a+ L' I
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
# H& y4 u* |* P1 b6 j00404CEE 51 push ecx
! Q( y% u1 o6 _# k00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],12 B- |; C S3 b8 i
00404CF4 8BCC mov ecx,esp
! ~7 E2 x5 v% T6 S0 t, O5 L00404CF6 896424 20 mov dword ptr ss:[esp+20],esp, e+ ? T4 A, M# l
00404CFA 57 push edi$ I4 ]$ @% Q) p- o
00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0
{) |1 q1 u n00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
. u; O7 G. a) D00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0+ G2 i$ m% `! v' q
00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~
# v) y) i" i2 C2 J9 n- U00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~! g# j1 W- I4 n! |7 U
00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~9 m7 m) G. I$ V$ y. v
00404D12 6A 40 push 40; P2 i' a8 G& ]( E; C5 V
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
$ G: S' u, h) o) a. @, ^( \$ Y2 w+ O, z00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."9 l' y- g6 o& Y( K- E5 ~
00404D1E 8BCD mov ecx,ebp: G+ x; T3 z# ]7 {$ t3 W5 X
00404D20 E8 50840200 call qsr.0042D175
|9 b# t' ?4 s+ M5 a% R! V# t9 l00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]* U8 T# _% V7 T: B! {: [$ a0 n5 h* L
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1
5 Z: y; f$ [$ ?1 L3 o* A$ r00404D31 E8 5AE3FFFF call qsr.00403090
! [* A- `+ O8 ~- z: ~- |0 W00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
+ z, M! e( C1 M& J6 \00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx( G; r( D6 S( t: D( G J! L
00404D41 5F pop edi
6 x2 g! J/ c3 T5 e3 w, \5 a# k00404D42 5E pop esi
7 p7 M6 Z! ]3 f& S% a# w# m00404D43 5D pop ebp
& M7 Z! M; a6 r8 [+ B00404D44 5B pop ebx
' E% P, U: D5 d6 |0 g& T! V00404D45 83C4 18 add esp,18* `5 V5 a; s- Q$ L2 c' j Q3 ~
00404D48 C3 retn4 Y/ l/ P! D3 n( i: @: @. @
*********************************************************************************************************************************************************. r! V+ @3 _) G: M" h6 M
跟进00404D09处CALL来到:# Q* Z/ K- ] K9 j0 c7 j1 A
004030A0 6A FF push -1 //一路F8下去~~~~
) g$ Q; e! c- B, E( ?2 R004030A2 68 C88F4400 push qsr.00448FC8
% S' H% m) _! C/ K9 \8 W; L004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]! t* H* K( @5 p6 u' F: N: l- r
004030AD 50 push eax4 V; }9 g2 y4 E) y U+ w5 q3 p
004030AE 64:8925 0000000>mov dword ptr fs:[0],esp
) U6 X' U1 F7 C# F4 `9 P4 d004030B5 83EC 24 sub esp,24
& y/ z! ]5 W4 I& x) ]004030B8 53 push ebx$ ?/ m) x1 ?! e, I# A$ V
004030B9 55 push ebp# m) d8 u& a6 {
004030BA 56 push esi* @$ y& ~8 _2 C8 \1 b# ?
004030BB 57 push edi
9 e! m8 C$ `% G7 e4 k! p6 O004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"
) [2 ^5 |* {8 ]# F: l5 h4 e004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
6 ~; O. `7 F. Z5 P8 T5 l004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1 k9 W# ~4 Z4 Z' \+ B9 W5 t& m
004030CD E8 27C40200 call qsr.0042F4F94 m+ n4 [+ b; M9 I
004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
5 c) Q4 |- K7 ?$ L1 v004030D7 894424 2C mov dword ptr ss:[esp+2C],eax
! I% y' m$ E+ s7 A4 J! j0 X004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
& W8 f9 y5 i+ c+ w004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
N7 C5 _/ ]8 x" K- F$ V, [004030E4 E8 905A0200 call qsr.00428B79
+ w- A; q* T8 k8 m* q004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
& Y) V m7 ^, E4 y/ u @5 t004030ED E8 3B5A0200 call qsr.00428B2D; y, K" D( K, [+ J
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
( ^9 {0 o: C w+ x0 F Y4 S004030F6 E8 7E5A0200 call qsr.00428B79
+ |' d9 y& L5 v/ s. F( `004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
) h' `2 ?$ |4 b9 V7 l004030FF E8 295A0200 call qsr.00428B2D/ u: I' x# d. [9 X5 R
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]
+ S/ w' C0 E# N3 e00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8], K: p! F) g# `! G5 ?* W6 Y X
0040310B 83F8 02 cmp eax,2% z' t3 F. d) x) {
0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳0 Z, |) n% ]! {. N
00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]1 j' N1 }9 C: ?. Y+ ~2 F
00403118 837A F8 18 cmp dword ptr ds:[edx-8],18- b U+ s# s1 x2 d! `; m8 ?5 F/ k4 i
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳$ B4 Y! R: v t( Z8 k& Q* M. `5 R
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
. }# S- r* S' t" t9 Q9 V: R00403126 6A 01 push 1
5 K7 U! C& D2 U; c00403128 50 push eax
( w9 |) v" a) D" [# e; f$ e3 F5 k00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]: p) I4 P2 ]) E6 X
0040312D E8 C4550200 call qsr.004286F6
5 f6 P" T! y C$ V00403132 8B00 mov eax,dword ptr ds:[eax]& Q! K# d' E& C! t' x- l
00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
' q) |4 I% e! b, c# X1 u00403138 50 push eax
+ H4 h4 D1 `2 C& f( ^00403139 C64424 40 04 mov byte ptr ss:[esp+40],4
! ~! }8 r1 _4 e3 [" m0040313E E8 4D560200 call qsr.004287900 f$ m" j7 X- ^) s6 I
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
2 `" K: B0 g; V( C00403147 8BF0 mov esi,eax
, P0 ]. l9 a8 o) {00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3
$ d9 U! L q$ ?- H( W0040314E E8 38C30200 call qsr.0042F48B
; B) f6 j3 K3 \8 ?, ?/ k. R3 p) V( q+ [00403153 8D46 0A lea eax,dword ptr ds:[esi+A]
- l& U$ H: u- R/ u) }+ {00403156 B9 3E000000 mov ecx,3E; a* s/ w" L9 L
0040315B 99 cdq
9 ^6 U0 ]% r9 Q1 P$ f0040315C F7F9 idiv ecx
/ B7 [; m4 H6 @6 P% v0040315E 6A 01 push 1
- Y, B; M. j7 O) | g2 g00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]4 a7 K8 T; z% j3 h+ r% x: q8 X: T
00403164 8BF2 mov esi,edx
3 N$ l& z3 [8 L7 {4 \0 l9 t2 p% H00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]( q: ~; p2 N# Y0 c/ W! c! V
0040316A 52 push edx" |+ D) P) v2 }
0040316B E8 0A550200 call qsr.0042867A
2 M$ Z* x4 X& R* q00403170 8B00 mov eax,dword ptr ds:[eax]
6 n2 t9 G( O$ G) Y7 E/ D: Q. u0 n00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20] k/ K: r5 d* a: e( }/ q( O
00403176 50 push eax
z: F0 h5 F+ j# n O5 h4 K7 q00403177 C64424 40 05 mov byte ptr ss:[esp+40],5# q% [4 \; b- M, O- q
0040317C E8 0F560200 call qsr.00428790
! r, R# b1 t1 C4 }00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]+ `, Q! S$ j4 E8 ~4 @
00403185 8BF8 mov edi,eax8 P% P( Z0 u1 K" G- X: f
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3
: c# K b4 S0 B! J* a0040318C E8 FAC20200 call qsr.0042F48B' Z# b3 A% j1 f0 a) A6 K4 l2 B) [
00403191 8D47 0A lea eax,dword ptr ds:[edi+A]- n: i/ O& `2 m- j, A& j
00403194 B9 3E000000 mov ecx,3E
$ p/ H/ Y# V7 S6 _8 `00403199 99 cdq0 X2 T7 p1 _ s7 {( M
0040319A F7F9 idiv ecx* U1 g+ P1 U0 h9 R* ?. ?/ m3 k5 q
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]
# G. k5 V" Q; p& Z( j+ ` z004031A1 894424 28 mov dword ptr ss:[esp+28],eax( g: Q/ r! e, A1 ]9 `5 k X G; u
004031A5 8BCA mov ecx,edx$ Z: i; K+ A2 c5 [) h; K l" J) m5 U) Q5 N
004031A7 894424 24 mov dword ptr ss:[esp+24],eax5 |* R1 N) B* {
004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
5 v$ `3 b0 V0 u, Y" k3 Y004031AF 894424 18 mov dword ptr ss:[esp+18],eax
8 I; D+ Z4 a0 D004031B3 894424 14 mov dword ptr ss:[esp+14],eax
1 [; a; O, Y5 |004031B7 894424 10 mov dword ptr ss:[esp+10],eax
! U. o# ^$ S; ]6 h7 A7 `; A004031BB 8BC1 mov eax,ecx0 d h4 N6 I: D/ p0 g
004031BD BF 0A000000 mov edi,0A
$ R+ y/ I* Y3 U9 J( V: J004031C2 99 cdq, G) q* f' V* z+ X7 N
004031C3 F7FF idiv edi' r& Q! j1 J3 Q/ T1 T/ _
004031C5 8BC1 mov eax,ecx
/ N$ |! c9 B8 u) s8 g1 S004031C7 B3 0B mov bl,0B) L( `7 O5 [2 }% D
004031C9 0FAFC1 imul eax,ecx
* u+ g1 ^3 S" l `& U5 }# H3 {004031CC 8BCF mov ecx,edi7 G/ S% E2 Q1 z6 \' [- K
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl5 e) u& I$ g5 {8 H' K- @
004031D2 52 push edx6 U( H$ k9 ?; b# w3 l' t7 z
004031D3 99 cdq
5 M; N) u! a+ i+ b* y; y004031D4 F7F9 idiv ecx/ m+ T" L/ h9 v. n% @4 @% y
004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]0 X! O8 r0 P, a7 W" o- N* F' r4 i+ \, B
004031DD 2BC6 sub eax,esi% U7 C8 N6 H4 l) ?0 a, i0 P0 N
004031DF 52 push edx# u, O: W6 n) _6 W" z
004031E0 99 cdq; W H# ~' d4 f0 i8 }7 x
004031E1 F7F9 idiv ecx8 ]9 u) V" Y" h4 s
004031E3 8BC6 mov eax,esi
$ s# Z6 A5 k0 u004031E5 52 push edx
7 b3 E. }2 v& r# d- k004031E6 99 cdq% [! ]% K& u3 W' T1 F! H. \) @
004031E7 F7F9 idiv ecx
0 n% t3 g: R) Z5 D" D% H004031E9 52 push edx
! j: q+ {, x1 ~! O) Y004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
3 k. z- U4 k3 U2 W% R8 I004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
) \ o& @7 W% V* s004031F3 52 push edx
& A+ L" @! s* [; q- Q004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893$ R% J6 t3 k. e: E+ K: h
004031F9 83C4 18 add esp,18
" T' S6 Q, C# J5 y- S004031FC 6A 04 push 4
/ b) W5 x* v) N5 q' K004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]& R8 n/ b8 ]. [. `& ~. L' ^
00403202 6A 00 push 0
! J3 X! k7 m4 q8 e00403204 50 push eax x8 \) c4 H4 }1 l8 Z: i
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]9 E, m W) R3 `1 g8 O3 p% C) ~
00403209 E8 D6530200 call qsr.004285E4
$ Y0 y+ }, K$ r# ?0 n3 }" F0040320E 50 push eax
2 o: o# w ?, _6 k0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28], `: }# @0 |6 L$ T
00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C, o- y% |% ^0 {/ [( c' }0 ]! e
00403218 E8 A7C30200 call qsr.0042F5C45 z* L3 Y" u2 ]5 ~ ~$ U1 H
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
- j5 p. _3 j/ V3 b9 q00403221 885C24 3C mov byte ptr ss:[esp+3C],bl" m+ r6 A9 r5 d8 u3 x
00403225 E8 61C20200 call qsr.0042F48B
; B, x+ U8 R" U: y0040322A 6A 04 push 49 e3 W& |) d5 [; u, m
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
; d: ?6 ~4 P) m2 j; W2 B% [% H00403230 6A 05 push 5, B$ @0 s* o* I8 Y
00403232 51 push ecx* B. b% N# @9 u( |
00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]2 {/ }; e0 w/ p
00403237 E8 A8530200 call qsr.004285E45 m+ P; }' E0 Q* w
0040323C 50 push eax8 S2 u4 H: Q0 \0 ?5 s# p3 x/ h% A
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]; u( N f# q+ @5 `
00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D+ ~% |0 g' e% p9 q
00403246 E8 79C30200 call qsr.0042F5C4
b2 W- }3 d+ z# t R d' }9 V0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
( }; V5 j. Z# K8 V& g9 k5 J0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl: _% `5 d" _, B, ^
00403253 E8 33C20200 call qsr.0042F48B
$ I, o2 l- q" w, k00403258 6A 04 push 49 {6 W) }) m' h$ O7 ?
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34], O. L m6 h8 z5 V9 _
0040325E 57 push edi0 \- z. s$ g" p2 [
0040325F 52 push edx( w+ S! \" z: a9 o4 U& ^* c: N' S
00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
( @% C) k9 i" A6 `! [$ H& c00403264 E8 7B530200 call qsr.004285E46 u* J, z* p! J5 x. L* s& t
00403269 50 push eax
5 E: ~. ^6 ?2 f' }# S7 e- S/ G3 `0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
7 c: K3 X8 I9 ~* m) _' z/ O0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E1 }% F# D6 b+ F: l+ ^
00403273 E8 4CC30200 call qsr.0042F5C47 H- `# p" U- g
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
! d0 z& f& w2 @" C+ i$ i% H0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl
; E' `+ ?, e# A; z" d' T00403280 E8 06C20200 call qsr.0042F48B1 ]6 _. b$ V7 L; B o6 m: P' ?8 n
00403285 6A 04 push 4, z% z& a1 y' l5 x
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
' t7 F1 k5 E2 J$ Y5 Q' F0040328B 6A 0F push 0F
0 T9 A' k4 T+ b( F, h0040328D 50 push eax6 I( V4 q: l* e
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
% d3 |: w# b1 |3 U: ?* a( l) ^00403292 E8 4D530200 call qsr.004285E43 t" I0 I$ U# ~4 x. m
00403297 50 push eax9 ^9 _1 \5 j8 P+ J7 w
00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]8 C4 t0 M0 H# i% q4 @
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F1 S( B Q* x7 ?" i. P4 A
004032A1 E8 1EC30200 call qsr.0042F5C41 O) y e+ ^7 S. w
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
/ U9 T& D$ {% a6 P* h004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl/ S0 I8 d9 U, u: b. T+ ^6 j4 O" k% @
004032AE E8 D8C10200 call qsr.0042F48B0 p# K1 z4 w; Q* v/ |) u
004032B3 6A 04 push 4
( n/ R6 D5 d2 d/ |: @004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]4 w. |' F+ w8 k( ^. i, A: v
004032B9 6A 14 push 14
$ e+ W- K: A7 P4 A- \004032BB 51 push ecx5 k/ ~. h" o: E7 T$ h* X1 m4 e
004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]! b; H7 }: T* \% J# Q
004032C0 E8 1F530200 call qsr.004285E4* u$ G6 Q$ R! m# p
004032C5 50 push eax& X. R. f7 ? i! W% z) ]% S8 c
004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
+ t# g4 D' c! b3 \004032CA C64424 40 10 mov byte ptr ss:[esp+40],10
+ n/ Y# ~7 q8 `! B004032CF E8 F0C20200 call qsr.0042F5C4
6 } r+ m8 u) j t! A# s, g9 m004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]: z/ ~5 K+ w" [7 i6 _8 F: m' Y
004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl L# P8 x7 K% q, }; }; L
004032DC E8 AAC10200 call qsr.0042F48B
8 d% u% Q L' J+ \( G3 |004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI1 N( `8 E4 C d1 K' e
004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX4 w% x0 w! j8 c( q7 |, `7 D
004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL; k% Z/ x3 f. V4 B, \' N' u
004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL; H7 h: A" f% s" H2 D8 p; ^2 p4 S& B
004032ED 8ACA mov cl,dl ; DL送CL
q1 T" j! _0 V004032EF 3AD3 cmp dl,bl ; DL和BL比较0 O- \/ `: j9 g5 }- l6 U5 T
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
% ]' H4 }% J$ G- t9 U6 ]3 ?; s004032F3 84C9 test cl,cl
% \% N2 D5 G( O/ B004032F5 74 16 je short qsr.0040330D
# s1 ? V" ?9 @+ v/ g7 ?- e. g( u8 h004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL
7 d4 s* K" S5 Q5 d) Z3 P) x. E004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL
+ B) M5 p2 r1 G6 y I004032FD 8ACA mov cl,dl
( d+ u. A" a) c. z004032FF 3AD3 cmp dl,bl ; DL和BL比较9 X5 d. V3 P- ]# S
00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)( ?- J" X! ^1 R! M" n/ w
00403303 83C0 02 add eax,2 ; EAX加2
/ w, o' s- y" E) I& F! ^00403306 83C6 02 add esi,2 ; ESI加2! |& l+ t+ b% E
00403309 84C9 test cl,cl6 z3 I* [! E1 K+ g& j9 ^. n
0040330B ^ 75 DC jnz short qsr.004032E9
% ]% A& y) V0 M$ J2 r0040330D 33C0 xor eax,eax
1 M& a/ t' n/ U2 P0040330F EB 05 jmp short qsr.00403316# ^5 V' \" X& F; Y. u9 U
00403311 1BC0 sbb eax,eax
) c8 ^2 N7 J: J; G/ ]00403313 83D8 FF sbb eax,-1
: J k5 h7 n/ j1 q" W' L00403316 85C0 test eax,eax' @$ n0 \( C2 f
00403318 74 0E je short qsr.00403328
. Z! t3 N# w, e6 c0 a; D0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A9 E8 x3 ~* w* P' F
0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
$ H0 r5 j* N5 ?% C6 @6 M00403323 E9 F0000000 jmp qsr.00403418
1 e+ D) N6 M; [1 l- p0 m4 J00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
# o1 u& D( c( J) _! ]- L0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
& Y$ N- x |& y3 X+ |9 \00403330 8B40 F8 mov eax,dword ptr ds:[eax-8] k3 B0 i. F$ L7 O2 T, H' ~ J# d
00403333 50 push eax5 b0 [8 t- D! q7 f
00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX) \ |" }: P7 t) Z0 K
00403339 50 push eax7 t: a0 m& u+ b( }! {3 C9 Y3 @8 Z
0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX! D- J6 D) l+ G9 a# B
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX ]; O2 L7 a: ]/ _; i
00403343 83C4 04 add esp,4* A H4 D1 N1 |
00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI: |0 h! U- x3 J# u
00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]
6 i0 r6 V( U0 l' Y0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]3 r4 H: Z; X I3 r/ l" _
0040334F 50 push eax
5 L( a6 r" A3 W$ w00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
& J& M& k* a1 A- f00403355 50 push eax
+ J3 K% J$ G4 v6 G% i% y, ~) N00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX5 q4 H; g: \$ F
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX8 J( ^, i) p' W- z F: v
0040335F 83C4 04 add esp,4
3 V% m% ~- Z" g1 Z, T7 c00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI
9 A4 C6 H/ A! h) I; n/ z00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
8 E2 H$ b( N! g00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]
3 z: f$ n* {0 T- E( s8 K0040336B 50 push eax6 o ?( ^) V& i7 L: w( J
0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX
) C8 k4 k. `0 Z4 }5 x9 ` {00403371 50 push eax6 ^, a* v% U9 P# k7 h: _
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX6 W p3 O. ~+ h, k: M6 T
00403377 8BD8 mov ebx,eax ; EAX送EBX. F+ t, n3 E( c
00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX
! I4 c4 T# [# R# i) Q& [0040337D 83C4 04 add esp,4# g' c5 G% U8 t4 z; M/ G
00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
$ u6 U! h9 |7 J5 T! t7 c2 L00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]
& q4 n4 u: ~9 E+ k00403387 50 push eax* ~" [5 w2 c( s3 U# v
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX
8 S5 w9 j) r2 o( }& A7 A, t0040338D 50 push eax
0 G G: F3 ?8 p0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
) ?& y5 x2 X% G4 p00403393 83C4 04 add esp,4
1 h$ B$ X: ^# d: z00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]+ p' a! C6 ~. ]- V* N
0040339A 8BE8 mov ebp,eax ; EAX送EBP1 R/ s$ \! c0 J3 I
0040339C 6A FF push -1
$ j3 t- `7 k2 P) t$ k, }) C8 K0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX
: T) P% H3 W# a- a" I004033A3 6A FF push -1
& _ {, s- ~" e7 B. K( z9 r! Z004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
+ O- i$ f4 K3 w$ J004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX6 a0 e* Z4 z& J+ s. T N% K# x x& b% ^
004033AE 6A FF push -11 S, E9 n; I6 _* z
004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX
" K& e! Q& ]# \8 [+ u004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX" E4 H$ ?2 ] ]8 P6 k2 Z. o
004033B9 6A FF push -1# {: H( t$ D5 c; u z2 m' v
004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX q. O5 P3 O, N% c3 L
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX2 |% c; _% U7 b, p6 I& C% J
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
' ]7 U: p1 S- w( l' u) Z1 f, K' `004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX* ~ h( P9 G4 Z6 w9 @" s' o8 ?$ ^
004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
; K5 x; z& a# H004033D7 D1E0 shl eax,1 ; EAX左移1位
0 z3 H9 r2 x: m. J% B( l004033D9 99 cdq ; EAX扩展7 Y5 Y* z/ l; l5 H3 V5 {) p1 s
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中 r) I( T! J2 h* x* i7 d
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
# _' f1 ^, l- a/ `004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)
- k8 W! x& ]" z+ {, J, Y004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A; x6 A9 X, R5 V( k
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
! ~/ ~/ f7 R3 R7 D% _' L) n1 G004033E9 EB 2D jmp short qsr.00403418
* e- ]* T H R- R! L004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX" J& _ F, L' a
004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E20 K" a: x# \; u8 f5 T
004033F7 99 cdq ; EBX扩展" g! J D& p' h/ n, ~2 @/ w
004033F8 33C2 xor eax,edx ; EAX和EDX取异或0 x2 z) [$ {5 h% H
004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX# b- P: K) B& Q/ x& u, |. L: U
004033FF 2BC2 sub eax,edx ; EAX减去EDX5 T* b. K9 P0 |+ N2 Q9 {/ M
00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]
: f9 ?$ k( d1 d; H6 b8 i) o% B# C00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
$ p* C6 }1 b' b l$ ^) U' P00403409 99 cdq
8 h7 B! e' f- l+ A- {" j# [( _; a0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中0 T2 t" \8 d( w- Y- m5 I" T
0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX0 ^8 A4 p5 U3 p6 [" C
00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较
; K" ^, }2 F- C/ T00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳), K% e+ n" ]( Z! y' B8 n% G
00403418 E8 6EC00200 call qsr.0042F48B ; 9 N! U2 U/ x1 z3 F
0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
( Q: v( O4 g- T$ G" I00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9" Y m' e( G7 Y
00403426 E8 60C00200 call qsr.0042F48B$ U- u* ~/ V `' @
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
, A4 N' f! K5 F8 D0 W& Y* o c0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8+ X- a3 Q$ R8 S8 W& a7 F+ q
00403434 E8 52C00200 call qsr.0042F48B" r9 _' R( M9 b2 v7 P
00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]% I7 h t! _0 L+ M/ d
0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7. y; I) S0 T+ G* w9 V; `( }/ `) C2 q
00403442 E8 44C00200 call qsr.0042F48B
- s+ s7 j& k' f a00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
8 o2 C+ O7 Z6 k( T% |0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],62 d6 x; l# z* P. Y8 h* y
00403450 E8 36C00200 call qsr.0042F48B
/ A v9 g8 B/ B% n% v- B00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
' W' \' o' [1 C2 h9 h# }00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],33 H( r( c* |& @" n
0040345E E8 28C00200 call qsr.0042F48B. l" t# R4 g1 h c
00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]) ]" O2 K h& R+ O2 @! B
00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
5 s7 i0 z" _! s- b+ z7 [0040346C E8 1AC00200 call qsr.0042F48B
% M8 O8 i4 ?" F: b00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
3 _2 t4 p( e3 [00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1
6 O1 z5 W5 }8 P0040347A E8 0CC00200 call qsr.0042F48B
5 |# s& j# K/ }; a, ?. @4 s8 W0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]$ b! V& z( t6 Z8 d2 r
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
! h7 W2 y. J, n9 B& c# [9 h00403488 E8 FEBF0200 call qsr.0042F48B5 ~# `5 }/ H( g9 e D( A% K) n
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
9 f% X% E9 U7 L( M00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
1 `& O3 @' n" F J" [8 d00403499 E8 EDBF0200 call qsr.0042F48B
! [0 ]9 h! J# w# r' b7 N' X4 {9 g0040349E 32C0 xor al,al ; AL清0; [( k4 U8 U& \2 o1 P
004034A0 E9 88000000 jmp qsr.0040352D
, L) D" f2 ]. _* `004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~! e" c5 H' |( l7 ]% q; z
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]; |' b8 T! O- B' D+ R% @
004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9% ^' H" y$ T0 [ l8 ]6 J
004034B3 E8 D3BF0200 call qsr.0042F48B. w2 \, C* ]9 f* Z: `3 ~# r$ O
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
! Y5 ]% L( d, ]004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],84 M( D* o" Z# h8 Z
004034C1 E8 C5BF0200 call qsr.0042F48B
7 [! O: X$ o, o2 I1 j# B3 D" z004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] `2 K' O. q1 G0 ^" G! @; H# x" a% W
004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7; s# L* q) P5 T
004034CF E8 B7BF0200 call qsr.0042F48B5 l2 t/ t0 m1 E9 U! r+ a
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
+ X8 b' ?2 p/ S2 f u( U8 ]+ x004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],67 B- W7 ?/ ^7 S
004034DD E8 A9BF0200 call qsr.0042F48B
: t2 k# X6 A3 M- x4 |+ _004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]/ q* E3 Q" P2 c* ]% D5 e7 w2 `
004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],32 s2 p u8 q& _, O
004034EB E8 9BBF0200 call qsr.0042F48B+ N' W3 P' X8 |( q
004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]4 H+ e5 \% A; \" a. y: Q
004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],21 E, l/ j3 p, ]- _
004034F9 E8 8DBF0200 call qsr.0042F48B- x& k4 j; m4 A, {
004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
+ }2 z* x3 f: G V1 S A& D00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1
( X+ F$ p. F2 U P7 G$ h+ [00403507 E8 7FBF0200 call qsr.0042F48B6 G m4 h/ y0 [
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]0 @- i: v- g4 r0 S4 r/ @" b
00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0
4 I# j$ S. C" R0 y! M00403515 E8 71BF0200 call qsr.0042F48B
0 \2 o b/ ^7 e7 W. Q0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
7 ^* }0 g5 g& m& N/ p0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
2 R6 {' O2 v7 i: ~00403526 E8 60BF0200 call qsr.0042F48B
/ x' `- j5 f X) c0040352B B0 01 mov al,1 L5 S" v, Y4 w- d @) |% q
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]0 O' X: e% h- d. r1 d
00403531 5F pop edi
: [3 ]5 P8 s8 s00403532 5E pop esi
& V0 q5 A9 S' f8 f4 o( N' j00403533 5D pop ebp* F/ H8 x8 }8 i! a! i
00403534 5B pop ebx
, o& b5 S' v0 y1 g2 Q00403535 64:890D 0000000>mov dword ptr fs:[0],ecx; w D/ m0 M* h6 q- x. v* _& I
0040353C 83C4 30 add esp,30
$ L6 p% [+ [& C+ a6 y' o- y0040353F C2 0800 retn 8
1 {% w0 \! w( L8 `% q--------------------------------------------------------------------------------
3 v. h! o9 p9 y% m0 L& H( \5 Z【破解总结】+ A3 L7 W, k' B9 s
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
& _5 g% b) g5 _3 a/ n0 E" y用户名:yijun9 [8 a7 T- W5 F, }! e# u0 y, y& A
注册码:4893*7777*3726*7777*05292 L4 L$ W9 u6 Z6 o: S
--------------------------------------------------------------------------------3 Q; A9 M2 _; J
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡