|
|
【原创】破解Quick Screen Recorder
1 d7 H: w1 ^9 {$ [. [: `3 c【破解作者】 yijun
: ^5 I- c) W7 Z& k$ Z【作者邮箱】 [email protected]! S8 w. p. Z8 {0 O# `( T: p
【使用工具】 OD,PEID; l* |" W' _+ F, k8 ~* C, l" }
【破解平台】 WinXP' w/ H/ n; U* w0 O
【软件名称】 Quick Screen Recorder
* p" C: s% K/ b4 N" ]8 K5 h【下载地址】 天空/ z* Y2 j' a$ \ J4 k w2 q8 q
【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
9 q5 k& Q2 E4 a" S2 @$ X" b. {【软件大小】 540K
2 b& B% t& @6 D' y1 S/ @【加壳方式】 无
0 U; @6 T3 Q; {( A; r【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)
" I. Y6 D8 k3 @& P5 E--------------------------------------------------------------------------------
6 H3 z# ?% J0 H% v【破解内容】/ O. v3 a! ~+ h% `
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
( t6 N/ e. X; k. a. H0 R& T/ s, g00404C69 55 push ebp //在此下断6 l4 w' M& ?* x2 c6 g
00404C6A 56 push esi
$ ]: L6 D+ N. S( j( f' a0 r! v00404C6B 57 push edi, u$ k9 s7 Y) J6 x! c/ H) j9 ?
00404C6C 8BE9 mov ebp,ecx
# T* f6 D1 Q" ?% Y$ z, `00404C6E 6A 01 push 1
' W0 J: ?4 r0 I- }% f00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
) `/ t2 Q% T% s; x2 ^% T00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]
1 o3 V" ?$ P" y4 f/ x% _7 V00404C78 8BCF mov ecx,edi
4 L: H1 u: ^5 R1 \00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码5 E2 d5 O( X$ Q# H# M
00404C7F 8BCF mov ecx,edi
' d6 Q$ v' g* d+ H, e00404C81 E8 A73E0200 call qsr.00428B2D
6 i7 o; z0 h5 V/ y00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]8 d/ q* w% z! w7 a
00404C89 8BCE mov ecx,esi
{2 W. o% P+ X00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX
/ y% x) i) i3 T+ ?, u00404C90 8BCE mov ecx,esi
; p# u, ?7 y2 Z e2 Z00404C92 E8 963E0200 call qsr.00428B2D
) P6 W$ R6 S" R00404C97 8B06 mov eax,dword ptr ds:[esi]
- H' N+ h+ Z' N! ^00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
' H V4 @& ]0 a' K, p; f u$ J* i00404C9D 7D 26 jge short qsr.00404CC56 v8 w# z9 n* c5 G8 k9 P
00404C9F 6A 40 push 409 U( h! \4 x' e- f# y
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
# t% ~7 O# |: v) W" u, O% C+ S00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."5 r) Q% b; \( O- ^; n) l
00404CAB 8BCD mov ecx,ebp' a S* k, j3 B* P& v8 T+ u
00404CAD E8 C3840200 call qsr.0042D175# g2 W: [! S: M8 I% s
00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]6 K4 s3 n' [* {2 k7 H& i
00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx9 G+ I3 U, v) S
00404CBD 5F pop edi
& G5 B5 L1 d9 K' g00404CBE 5E pop esi
' c6 O& ^) v- l/ j- [( E1 ~00404CBF 5D pop ebp
" t8 n& J: z. W3 w00404CC0 5B pop ebx
- I8 o2 C9 i) S4 z: h00404CC1 83C4 18 add esp,18. j/ `+ R% B8 b4 f) A3 q+ S
00404CC4 C3 retn. ~& e7 |- E/ Y5 Q5 r
00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
; B2 ] o# ^+ c: K, @00404CC8 84C0 test al,al1 D) N/ B; X7 Q& E
00404CCA 0F85 1C010000 jnz qsr.00404DEC
; }. @! q% w4 H" s: A( k00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
' p4 w V/ o k: V1 B2 v00404CD4 E8 87E3FFFF call qsr.004030603 D; T7 q& L; g+ ?1 I! `
00404CD9 51 push ecx
3 `1 Y- Q( D& n( k* C% f- o00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
j F# g% j9 }$ G% Q# a00404CE2 8BCC mov ecx,esp. u; I% ]- w3 g8 _
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
% x6 Q- {- ~" F; ~ x00404CE8 56 push esi( a; L" O U, O, _
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是08 G2 @: C3 y# X7 x
00404CEE 51 push ecx
4 }! f; G; r) S; m00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1
! q4 R" ^8 I" p& Z, H- w00404CF4 8BCC mov ecx,esp- j8 t0 N& y& x y8 }$ L' l
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp0 N% |. O3 Z/ w* C5 [2 d
00404CFA 57 push edi Z1 ]% p0 z: ~* ?
00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是06 J7 i7 z8 w$ M. e" c# B
00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]+ S, F* @/ ^& g: p4 Z4 h) {
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0+ {' o) {. a3 @5 B
00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~
3 f" ]2 _! D8 Q00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~; t! u# W( u6 W- E4 q
00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~1 w$ `0 s2 L. B! G1 m/ P6 J
00404D12 6A 40 push 40
. F. i, L- H- {' }4 K2 s h00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"# j3 J, b6 b% ~ Z* J5 ?
00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."1 s s' w. w8 X. W
00404D1E 8BCD mov ecx,ebp" ]4 N8 I6 T [3 T/ ]8 D( B4 Z
00404D20 E8 50840200 call qsr.0042D175, X/ E4 Y" G9 g l" Z p
00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
( E" Z6 V. W k. ?00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1
( K7 ^6 K2 t0 s3 Y/ U% D R00404D31 E8 5AE3FFFF call qsr.00403090' ^+ Z( o! Q, I9 K- z i+ }
00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]6 r$ H2 ^4 G' N& C
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
. N2 s- @2 E o" m" ~# q; z00404D41 5F pop edi
1 {1 J8 ?: H6 w- @8 m6 X00404D42 5E pop esi
+ A. z, p4 Y; @. R00404D43 5D pop ebp
' h" I$ g9 A5 q6 [. d00404D44 5B pop ebx
/ b5 ^4 h& t R00404D45 83C4 18 add esp,18
: e/ W8 x3 Z! @% `' u00404D48 C3 retn
' T( }3 B3 C2 n2 ?( Y*********************************************************************************************************************************************************
, A7 {8 D: Z( }4 M& }5 v: W' U+ t跟进00404D09处CALL来到:
D3 u: a" l5 |# p# h004030A0 6A FF push -1 //一路F8下去~~~~
2 L, ?. k! S5 ? `004030A2 68 C88F4400 push qsr.00448FC85 I" E, @' }3 m& n$ c. I0 I2 A
004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
* n4 b" _4 `; Q N: x9 M/ ^004030AD 50 push eax
, a9 w, J4 N& K" W004030AE 64:8925 0000000>mov dword ptr fs:[0],esp1 Z# X* U6 {0 \: x* F; r' o
004030B5 83EC 24 sub esp,24
7 m) H5 @9 g$ S5 M004030B8 53 push ebx: S" l9 N5 O, g$ G8 @
004030B9 55 push ebp0 l; F. O* S( |5 T2 u: Y
004030BA 56 push esi+ q5 P1 B6 ^2 R( U9 L1 J
004030BB 57 push edi- V5 r0 b4 f& D! \
004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"
: ?+ v8 w# q) M% p! }004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]8 L+ s7 p$ a; }. P5 y3 ~ Y' r
004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],12 g! s/ D9 B: V* s+ w
004030CD E8 27C40200 call qsr.0042F4F95 |" g# y4 X( K2 ]- G
004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]1 l1 [. {) j$ u& w: ]
004030D7 894424 2C mov dword ptr ss:[esp+2C],eax b/ O" B; q- V, `; {
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
8 p0 i9 @% ?* D W" c: W004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
! g8 i, k7 j7 K* _" N004030E4 E8 905A0200 call qsr.00428B79
. _' q$ r* z. {6 g1 p- C004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
0 C' @2 K# d$ X! k% Y004030ED E8 3B5A0200 call qsr.00428B2D
4 h% O V! i( D: i r+ f1 }: ?004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]% R! U9 t. i. w) Y9 r- M2 Q7 v
004030F6 E8 7E5A0200 call qsr.00428B79
; l0 G7 w9 e; c2 E7 S: W004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]+ A% Q7 k& f* B8 b
004030FF E8 295A0200 call qsr.00428B2D2 @- u) m C1 ^$ K" C0 t8 Z9 M
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]
- V5 |' U+ Q9 M00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]6 D) A8 c* p% D
0040310B 83F8 02 cmp eax,2% p( }$ i' [3 _
0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳& H' ^8 I6 A; A6 T( o
00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]
7 i) @( E" F7 a+ R00403118 837A F8 18 cmp dword ptr ds:[edx-8],18& e n+ ?5 `; e) G& r5 U5 B5 j- m1 I
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳3 ]- y+ h3 l' n6 x
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30] Y4 Y: X8 i/ }) |9 }( M( u" _
00403126 6A 01 push 1
) ?! q, b6 i+ U% L2 H00403128 50 push eax
3 l3 Q( M) U O6 p- ~4 u( `5 U00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
' H! j' K }. w+ V' C0040312D E8 C4550200 call qsr.004286F6! m" n1 p" D* y' W0 G
00403132 8B00 mov eax,dword ptr ds:[eax]
" N7 y) j, g1 i* }( u00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]" l: Z+ d! R2 ^* _2 k
00403138 50 push eax9 J+ `& | a0 w: G6 e8 Q* z
00403139 C64424 40 04 mov byte ptr ss:[esp+40],4
2 B& j( f" M- [% h0040313E E8 4D560200 call qsr.00428790% I% ]' h5 H3 s* a0 r$ l
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]. b/ h/ h7 A1 Z
00403147 8BF0 mov esi,eax$ H. ?4 M1 v! z
00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3* d" {4 O. G$ z; p
0040314E E8 38C30200 call qsr.0042F48B6 g" B7 k# h0 I* a
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]
5 R4 O% U9 Y% i' o C00403156 B9 3E000000 mov ecx,3E
5 a3 p/ ^& u$ J+ r( J f, C5 @0040315B 99 cdq
' F1 v9 `& L! S4 K, V0040315C F7F9 idiv ecx/ p0 D8 f! ? W; p
0040315E 6A 01 push 1, T) O/ h+ o) v9 c9 w2 K+ d
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]: u! j V) l5 K, ~2 S
00403164 8BF2 mov esi,edx
% i: p6 L' d3 W- w$ x! N00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
1 q, f8 z4 b2 ~& ]' Y. |0040316A 52 push edx
% i ^: w, i0 c9 F( d! D b0040316B E8 0A550200 call qsr.0042867A Q' b9 p8 C( p
00403170 8B00 mov eax,dword ptr ds:[eax]
. L# X5 u @5 \6 e6 }5 _00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]) {" G* e; v- j6 z* o+ w0 v
00403176 50 push eax# w, U5 v% r3 v! ]/ d* j' G
00403177 C64424 40 05 mov byte ptr ss:[esp+40],5) I9 z3 M7 R' H- b- o, J
0040317C E8 0F560200 call qsr.00428790
) ^, T. p }3 c00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
" X! e8 q% X1 J; W* ~8 s00403185 8BF8 mov edi,eax
- r! l- I- s0 g7 d* m00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3
* j2 l( f. n" D J% i0040318C E8 FAC20200 call qsr.0042F48B) V) ~ |8 {5 t: ^' x
00403191 8D47 0A lea eax,dword ptr ds:[edi+A]. l5 z; Y1 _8 s
00403194 B9 3E000000 mov ecx,3E0 Y% L! J2 @# V8 f( A' ~
00403199 99 cdq/ Q& q8 q& g2 \. B4 H# p" Z
0040319A F7F9 idiv ecx, `6 B* x$ n) L9 u6 L6 Z
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]
4 b3 f$ g9 }. @$ V004031A1 894424 28 mov dword ptr ss:[esp+28],eax
( w* } e9 m7 T004031A5 8BCA mov ecx,edx0 [: d6 O. e% R: R( n' B2 V
004031A7 894424 24 mov dword ptr ss:[esp+24],eax
! Y' R- h# p2 G4 o; L" K& Z! o004031AB 894424 1C mov dword ptr ss:[esp+1C],eax/ E# t! h0 s) @; S/ Y5 ^% X. `
004031AF 894424 18 mov dword ptr ss:[esp+18],eax
* _ M- I+ G3 |6 @004031B3 894424 14 mov dword ptr ss:[esp+14],eax- ?+ u& q5 w" N" h6 G
004031B7 894424 10 mov dword ptr ss:[esp+10],eax6 ~; K, `6 N* r0 C7 q/ D
004031BB 8BC1 mov eax,ecx
0 q/ M6 E% q' w004031BD BF 0A000000 mov edi,0A1 w& I; r( B( n7 b" x
004031C2 99 cdq
9 \6 l# ?# l8 |) B8 v0 n! |: T004031C3 F7FF idiv edi
& S( T7 `4 k% s5 ?# ]* }4 \" x: d004031C5 8BC1 mov eax,ecx3 Q4 ~8 n1 a: o& j
004031C7 B3 0B mov bl,0B
5 E* i5 {9 u- W; s. l& o( `004031C9 0FAFC1 imul eax,ecx# t$ n! {) U J5 j* @
004031CC 8BCF mov ecx,edi; ?: C3 O9 J8 Q8 Q/ E& l' M, t
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
: J; N0 e* b9 R1 D9 Y( Z004031D2 52 push edx
* L. _, _0 z# |4 q6 G004031D3 99 cdq
8 }1 o- c6 S9 l) \004031D4 F7F9 idiv ecx8 a) l6 H6 Y9 G: N( c! ]
004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]6 S8 `% N$ ~4 k4 y& f+ M3 m4 W
004031DD 2BC6 sub eax,esi0 r& Q% n1 n& h5 W! c2 a
004031DF 52 push edx
6 o( H. N9 G- Y& G( W$ _( B( d004031E0 99 cdq
* u( G8 h1 Z/ j; t3 S004031E1 F7F9 idiv ecx4 n0 b* P" G" R6 v6 [8 t2 [" j4 o
004031E3 8BC6 mov eax,esi
4 K3 F- k H9 x& v8 P" M004031E5 52 push edx+ G1 `0 f2 ~* w- l6 D4 [. B' o/ B
004031E6 99 cdq+ h5 T9 a8 q2 w- S1 I; \& w9 L
004031E7 F7F9 idiv ecx
2 p* V4 v" a8 j8 e4 z004031E9 52 push edx6 d- p" |: J2 S* ^# k2 F
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
0 ^3 ^( c" k( W# J. d( n004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d") K- L/ O$ Q+ }2 G, A
004031F3 52 push edx
$ n9 d" A2 b& c; ~+ ?' F004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893
9 v `2 ~ e0 Q: _' R004031F9 83C4 18 add esp,18
4 o# v0 F6 V/ ?! ^. Q! T) @& f0 b0 j$ l004031FC 6A 04 push 4$ C$ l8 p- A& ?/ d9 q$ n1 G
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]# n7 e+ f" O% a- T/ Q$ t
00403202 6A 00 push 0$ N9 k' I; _* D' X
00403204 50 push eax
9 ^6 A+ Y% E1 t' w9 x( O5 f00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
6 {( I: E4 k o, }8 [, a00403209 E8 D6530200 call qsr.004285E4
$ e% d8 {0 w: G5 n! ]: h& m0040320E 50 push eax& q3 Q+ e; b$ k: r/ J" ?" [7 q
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]9 N8 z7 ?3 b1 G U: r
00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C, ?3 y3 o S' v- v1 [/ F3 J3 \9 Q
00403218 E8 A7C30200 call qsr.0042F5C48 H2 y5 ^% l+ ` y5 h' q
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
1 v0 _. d1 A: t c0 W00403221 885C24 3C mov byte ptr ss:[esp+3C],bl7 n' p8 q% }; i+ |
00403225 E8 61C20200 call qsr.0042F48B7 {* d4 |- r0 F S: |/ j+ s, X
0040322A 6A 04 push 4
( J3 a' G9 V, y8 \0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
}8 e1 s: m2 N4 |+ E( ^7 x00403230 6A 05 push 5# R$ M( L- i& C) h5 M
00403232 51 push ecx* g! X9 p) x- K; F/ b. T$ E
00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
2 C4 z! `- Q: ~( D00403237 E8 A8530200 call qsr.004285E4
: k5 C H' {6 r0 ~7 K2 P0040323C 50 push eax
3 C2 R2 x) X, V0 N+ g! a& i3 F+ i0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
3 Z3 D6 V/ ~7 i% C' G& f; y1 q. B00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D
1 ]+ d* l' `6 h7 U7 @, Y6 ~00403246 E8 79C30200 call qsr.0042F5C4- R( K1 c+ B5 A: u* G
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]" n, D* }8 e, i0 f
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl
3 d) W9 r! C7 K3 L" Z00403253 E8 33C20200 call qsr.0042F48B
: c3 H+ [2 y7 b" k: j0 Y00403258 6A 04 push 4
6 \( B: x% A4 E6 o0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]+ R) s( _, A, ]7 l+ `
0040325E 57 push edi
" W5 H1 y: S3 v0040325F 52 push edx
+ S4 W( s( e3 r0 J00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
8 p" D) ~+ m/ o( h! j0 X00403264 E8 7B530200 call qsr.004285E4
% K! f% a X: L7 | \& @6 k00403269 50 push eax
4 H1 n! O8 c1 X, X; g1 y4 ]0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]7 T* J! B4 ]/ N b: B
0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E( R9 h. B, o( ^
00403273 E8 4CC30200 call qsr.0042F5C47 i/ H1 G) k" j6 X( V# z/ {2 \
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
' k+ T, t8 N+ t5 c' l9 `/ Z, ^0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl) _# G! e O, H, N' U$ L
00403280 E8 06C20200 call qsr.0042F48B
. H7 U' R. y& ^9 s00403285 6A 04 push 43 N3 M/ [. `& ]/ M* y) v: t+ {9 W
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]( |$ K8 R( C* r# s6 x; g
0040328B 6A 0F push 0F7 n, z0 \6 W7 @! p3 U2 _
0040328D 50 push eax$ H8 I+ r& z7 H+ ~) N/ M
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]3 S; N) e0 [/ F, d9 g$ a! I" u
00403292 E8 4D530200 call qsr.004285E4
8 a+ a/ c4 K( K+ w; m! J00403297 50 push eax5 y' |+ u7 L. c, Y1 I: H& k p' q
00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]: Q( _/ W! i/ `, N. j: q) l
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F9 B4 I% i" T6 V" v! o4 {* H* A: |4 ~
004032A1 E8 1EC30200 call qsr.0042F5C4* W$ X4 {* x- P& F
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
- M& ~" j) l- R9 x0 g# ?3 t004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl. Q* w8 U1 ?9 g2 f' G
004032AE E8 D8C10200 call qsr.0042F48B5 I3 K9 t: H& [8 F% _2 H
004032B3 6A 04 push 4
$ I: m4 ?: L: P- v# z- i. A) b- Z004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
( i1 E7 a7 z7 C' r' \004032B9 6A 14 push 14
) X. o& u4 L+ s; V& q! f$ d9 L" I2 ?004032BB 51 push ecx
- V* p% U7 Y& k' m004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]( E( s9 v U+ l- m7 o. f, v1 H
004032C0 E8 1F530200 call qsr.004285E4
, F6 o3 O& Y8 O! b, Z- u004032C5 50 push eax
$ f0 [5 z- _& m5 Z3 W004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
/ m% A X' a. x/ y# c004032CA C64424 40 10 mov byte ptr ss:[esp+40],10
9 W5 V$ H1 q; J6 S004032CF E8 F0C20200 call qsr.0042F5C4
% |0 M8 T/ P5 q0 M" @ x) S D004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]& \7 w% M7 h& _7 R
004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl
+ }& G( E- n: C004032DC E8 AAC10200 call qsr.0042F48B1 \7 k o- l0 T. u0 o3 J4 T
004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
% _$ l' ]# A. _ f1 y004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
3 g+ b% G2 [- _4 g3 |6 \( ~& m3 g004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
0 p; e' X' P5 {: W |! t. v004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL+ e" f( J. G( w) w6 Q. Q9 e
004032ED 8ACA mov cl,dl ; DL送CL% M, X1 g- x! o" F% ]
004032EF 3AD3 cmp dl,bl ; DL和BL比较
# T; n* x( L; F ]004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
4 H9 \, ^# u5 F, C004032F3 84C9 test cl,cl
+ x* E' D( l2 E6 ~, A004032F5 74 16 je short qsr.0040330D
( V$ f% M; x! g t e4 a004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL2 N' H5 V Y# m0 N: l \
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL
8 u% C( F) {0 G; B5 t004032FD 8ACA mov cl,dl0 a2 W9 h3 a& s m! T+ D
004032FF 3AD3 cmp dl,bl ; DL和BL比较/ D, `4 U) f. u
00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
* K2 t j) Z1 z l' D H0 i00403303 83C0 02 add eax,2 ; EAX加2' f7 @& Z9 N. g, }$ y+ X6 |
00403306 83C6 02 add esi,2 ; ESI加2
d/ \8 ]9 z, e+ s00403309 84C9 test cl,cl5 Y# n) F% }% G, Q6 _: w: S, V
0040330B ^ 75 DC jnz short qsr.004032E9
, `, l7 ]) n5 i1 u# U: \2 g% x) R0040330D 33C0 xor eax,eax
* x; V1 o& v% C8 A5 i" n! s0040330F EB 05 jmp short qsr.00403316( `) U1 O' t) V- {' d; p& N
00403311 1BC0 sbb eax,eax% ^1 u- j# }1 ]2 s
00403313 83D8 FF sbb eax,-1
' ^/ |3 h2 B; {" v( N00403316 85C0 test eax,eax9 t+ a# P& U% r; [
00403318 74 0E je short qsr.00403328/ i- ^( q. ?+ W e- v) n7 ]
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
8 o. z1 J) J0 y$ Q X* q8 t# p0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
$ L6 s# Y T' N) c00403323 E9 F0000000 jmp qsr.00403418& I) @3 f3 q1 E4 i8 H5 b
00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
' F5 A1 y2 r3 J1 n9 O1 }7 }6 M0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]% X. G) ]' V5 @, j" ] t; _6 |: y
00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]
$ ` j3 q7 w% K' P0 t+ q4 I7 Z$ g00403333 50 push eax0 ~0 J/ E! [6 Q9 G. B4 ?
00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX
/ k U+ g8 j1 D$ E4 A00403339 50 push eax: M ?0 H" Q Y) v0 R7 G, e% u
0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX" J+ B/ S7 ], U0 J) `& c
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX( ], u( D3 p. ]6 N, @0 n- D1 V/ B
00403343 83C4 04 add esp,4; L9 |8 _3 i o! d+ W: _2 ?" O- |% ~
00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI
# P$ D( _. y) R! B$ W' n' B" P00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]1 R. N( |9 L7 n, A3 }
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
8 o8 i! B, ]& o& V0040334F 50 push eax; m0 ~1 V2 | K+ H) [! a
00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
2 _1 n/ s' @ ?: ]00403355 50 push eax
# N0 q- U" S9 h4 m$ B ~0 L00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX
! V6 p3 }3 I/ ]8 X$ i! @0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX. X9 @, u& m3 ~
0040335F 83C4 04 add esp,40 q: w3 b7 B- u% y1 o$ U) p
00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI! X/ ]3 o6 G5 b
00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
, w Y1 m# F6 k00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]3 [! Y" g- }1 U0 n9 G8 x
0040336B 50 push eax
# x% ~' v- H$ O7 ~/ k) H0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX
9 Z' i# [% h/ i5 {00403371 50 push eax
h) j0 D) h: o) Y6 u# c: i00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX
1 Z/ k, |. ]) p5 q9 J* T, e; M3 p00403377 8BD8 mov ebx,eax ; EAX送EBX8 {$ Z. M& \; u8 J% O
00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX$ t3 R& P( i$ A/ G
0040337D 83C4 04 add esp,48 o' ]5 a! ^" W" }7 P
00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]/ _+ ^0 t6 m6 U$ Q k# Q& f
00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]
4 G3 o. m8 q+ S. h8 a; N00403387 50 push eax$ y: f. f$ h% L6 z
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX# z& x2 G0 E. u j) t0 T8 ?" `
0040338D 50 push eax
7 A; ^: G2 b J% Y0 Z; `4 D0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
" ]* w0 i7 Y5 h9 l1 R( ]00403393 83C4 04 add esp,4
9 A8 N- u" d2 F& P" O* Y00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
6 t- O# u8 E8 P9 F* v" h' [0040339A 8BE8 mov ebp,eax ; EAX送EBP6 p1 i% _; |# `: u) \
0040339C 6A FF push -1! S3 p3 y. D, i' l% u
0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX$ O4 z3 {/ i1 T; C' }6 v4 p# y
004033A3 6A FF push -1
, n. j+ F% B5 P' ~# V6 T004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
A/ C6 i& J6 h; F6 u004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
( v8 Z( R, E5 b& t( t' A* K004033AE 6A FF push -13 s$ e7 d, M, B3 ~
004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX
8 l: z0 J9 }) g/ ^: B004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX6 g/ L; @* e8 e; @. l3 {0 ?
004033B9 6A FF push -1
. }: k! X5 b7 V004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX& t2 U$ c2 X5 S
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX
/ W: ^$ Q1 D! m004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX0 P) e6 A- D7 }& r( H$ I1 A
004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX. m2 f" l' z) J( C# A
004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX; y- _3 a: W& R' F
004033D7 D1E0 shl eax,1 ; EAX左移1位: x5 H, j& U' L! p
004033D9 99 cdq ; EAX扩展
0 a8 {* v# N8 u E& W2 t/ U S# ~& x- x004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
6 F; k( V6 o* R2 q/ T2 J004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较' U! f9 P3 X% z" k7 Y7 ]
004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)+ J# s" G9 s$ s
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A; S' q: Q. a. X8 b/ w. [; O
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
* k# u1 ^ b* P8 [0 x `004033E9 EB 2D jmp short qsr.004034189 s9 t7 e% h k4 X8 r4 j- u# r L# m
004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX* m" e* N; I+ n* P+ P
004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2) z' E8 Z7 q5 H
004033F7 99 cdq ; EBX扩展) Q$ Y& w( Y; C8 Y2 W: x
004033F8 33C2 xor eax,edx ; EAX和EDX取异或, l7 r2 R3 y& E) N& ^
004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX" f& ~ A- @/ O, }6 A& t
004033FF 2BC2 sub eax,edx ; EAX减去EDX; [) Q" {) J: K4 [+ t# V
00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]
/ d$ b* c! n- O6 c- L8 O00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX* ^7 Q$ Y; M* e; j. q
00403409 99 cdq; }6 ]0 C3 D9 u+ d* C: E/ D. g
0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
+ u# v' n; h8 o0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX
2 l' ?( J C" w, c' p4 I00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较
' w9 d5 e. y+ L+ e4 g2 E# ?00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)/ @1 u% a! e3 S9 h( ~( C+ G5 L
00403418 E8 6EC00200 call qsr.0042F48B ; 9 c0 k- o d" \: u
0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
) `% _9 g R/ L7 r" ]' s, f00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9
( d' u) Q& J9 M! K0 ]* E00403426 E8 60C00200 call qsr.0042F48B
: P+ }; d2 }$ @2 ~' t5 E2 C; {9 Y0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
; v6 M1 z( U& S6 Y7 V0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8
2 h/ h: G, f& U: T4 i- k! f00403434 E8 52C00200 call qsr.0042F48B
4 ]7 J0 P7 w3 f" Z+ t00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
( f" r' Q! j% m/ B0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7
$ l8 R9 w0 N9 i4 p3 d0 Q6 \00403442 E8 44C00200 call qsr.0042F48B
$ W! W+ h, J; S/ U6 c5 D00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
5 p z" |2 t; k3 B0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6$ K/ M- [1 G2 ~7 K! T9 C' b
00403450 E8 36C00200 call qsr.0042F48B
4 A- s# z1 h) C0 N" [( a00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]; V1 i3 F# y9 C. L0 D" |" q+ o
00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3
* q1 ^9 ^: B; \ ^0040345E E8 28C00200 call qsr.0042F48B
2 j. r. X: j. Q. G" h00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]. e: r! r0 j" H% N. _, L# d3 c
00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2; Z! r; f7 u8 {" q! ?- F
0040346C E8 1AC00200 call qsr.0042F48B
7 V4 \7 J/ p$ H' A00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]! b) r$ s+ K9 [; b. R6 S$ a: f V# w" ~/ c
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1
, n. t4 C; b* a0040347A E8 0CC00200 call qsr.0042F48B
# l+ K- M1 [* Q- @0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]9 |9 l0 l/ H# O5 v6 X
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
; r8 f: ?) t: l- h/ A00403488 E8 FEBF0200 call qsr.0042F48B& j! X6 |" d3 Y9 ]7 e5 B
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
8 h! J8 G6 O2 G$ {, g00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1+ l( L5 T! C2 H% h) e
00403499 E8 EDBF0200 call qsr.0042F48B2 ?- W! g% e3 C+ M, B6 n
0040349E 32C0 xor al,al ; AL清0$ E1 Y' t3 S9 ~0 f0 Q
004034A0 E9 88000000 jmp qsr.0040352D, N2 E+ ]' x. z6 z
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~
5 D8 |2 c! o* X; u3 c3 K004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]9 I" n; @4 U2 l! W
004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9( G% A0 i& _' h6 P# ^, j! I
004034B3 E8 D3BF0200 call qsr.0042F48B
' A# Z8 n. D" T# S s8 k2 _; a004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]0 }% I3 u }( v4 E, A% R
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8/ G% R% v2 x$ ?6 J
004034C1 E8 C5BF0200 call qsr.0042F48B( ~5 w4 n9 ~. S0 v% p" l7 ~
004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]/ D# ]; q# @5 n- R6 `6 f
004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
% f# H+ B5 V7 e/ ~7 l4 u004034CF E8 B7BF0200 call qsr.0042F48B6 A( g( H; o. A1 M: O0 z
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
9 b9 g3 [4 p2 S, H K004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],60 N8 r1 W6 ~7 {! a/ s$ e$ _
004034DD E8 A9BF0200 call qsr.0042F48B
4 X2 o4 ^) A! o( V! @3 m004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
. S5 V; Q: @' K7 L4 H+ |; \004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
; k% o" s2 ~% W$ ?8 O004034EB E8 9BBF0200 call qsr.0042F48B
% S% r6 @$ D/ W004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]% b( k) m5 }9 m$ S. `: o
004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2% |3 s- l+ @/ p
004034F9 E8 8DBF0200 call qsr.0042F48B
; d' s {$ W# D* _- d& t5 O004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]( x, P- C. {( {1 G. Y
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1$ r& Y$ Q+ l: m9 e
00403507 E8 7FBF0200 call qsr.0042F48B
9 W. [$ B6 G6 @ d. l8 S: z0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
+ ]% }3 I. Q5 u8 M4 o00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0; k/ E! s# o1 O1 ?# w2 B
00403515 E8 71BF0200 call qsr.0042F48B/ {# O4 _1 u7 L! M1 u. A$ R
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]) H) m! o% j0 N4 `7 P
0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-17 G) ?; C- C/ H
00403526 E8 60BF0200 call qsr.0042F48B" {6 \; V4 d4 X, \* k* A; Z
0040352B B0 01 mov al,1
4 `+ d) d7 ~2 c) ]$ t" o( ~0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]- m% Q# _2 O, H
00403531 5F pop edi
1 S# V4 a" m/ n4 {% T00403532 5E pop esi% l! I6 O' m2 p+ r
00403533 5D pop ebp
! ~. E) _+ e# F g00403534 5B pop ebx- z5 N" a0 n! I3 E& B
00403535 64:890D 0000000>mov dword ptr fs:[0],ecx+ T$ w R+ [" K4 ]* J0 v1 r
0040353C 83C4 30 add esp,30
& C8 l% Y5 P& l7 ?/ S: v1 W1 V0040353F C2 0800 retn 8
4 D8 ~( _+ L: I2 B3 @0 C- ]: _8 T* J-------------------------------------------------------------------------------- F5 \3 o7 j {7 B8 L6 T
【破解总结】
. }+ d% n8 ?% ^: t) d( Y2 b 用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^( h4 k- q/ _5 R! g$ |' b# m
用户名:yijun& r. j" I, X' h/ [ ^" j; ~( T! l
注册码:4893*7777*3726*7777*0529$ j5 r/ B, w' g. h$ H/ ^ ^
--------------------------------------------------------------------------------% ?" y) m1 Q% G7 Y6 M
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡