|
|
|
【原创】破解Quick Screen Recorder5 v+ _1 w& ^# h
【破解作者】 yijun6 t$ D6 `5 f/ I
【作者邮箱】 [email protected]
) O: l' F/ f$ S L5 K3 c0 |9 w, }【使用工具】 OD,PEID
, \0 Y. I3 F! A【破解平台】 WinXP/ q& A3 v7 n9 _ X% i. U7 f
【软件名称】 Quick Screen Recorder
- w- L C$ K6 W$ R- A【下载地址】 天空
+ p% `% Q% J: M2 h& u9 [5 R【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on. . ^" q n7 O% I% F% V9 f- j: j' B2 c
【软件大小】 540K8 s) S9 f7 E! R' v2 @: h
【加壳方式】 无
' ~; C3 h8 m, @$ A7 [1 m【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)! f" o' l) X$ T7 L6 U1 v% Y0 ^+ m+ M
--------------------------------------------------------------------------------
5 H" _3 `" M: Q" J【破解内容】
) {- B5 T, a5 G3 O$ u PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
; M6 s% C" i n( V" T00404C69 55 push ebp //在此下断
+ f7 ?: \7 X% x/ V e00404C6A 56 push esi2 O. L, F5 C' `" h8 o* x7 S6 `
00404C6B 57 push edi
7 D" t2 E/ @( \* I s! \00404C6C 8BE9 mov ebp,ecx4 x3 o5 |# h. Q; w1 {
00404C6E 6A 01 push 1; c9 R" }- y4 k4 R% p* \1 H/ {# z# l
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名! s c# N: o, L$ {* ?; C- Y; p, N
00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]; s' C' Y) D O0 A' Y# K
00404C78 8BCF mov ecx,edi
2 D3 t4 d/ { H1 d00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码4 m# P2 d3 J, l# y1 s0 m
00404C7F 8BCF mov ecx,edi
/ H) j! o3 e* n5 j7 N2 x: i00404C81 E8 A73E0200 call qsr.00428B2D
5 s: q, x2 L, u+ q7 H( I00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
8 K1 U5 A4 P& a* e00404C89 8BCE mov ecx,esi
- w3 I; i9 c1 t3 K% t00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX
. t7 z4 T2 Q0 P00404C90 8BCE mov ecx,esi! s+ Z' R$ m% X2 H% ~
00404C92 E8 963E0200 call qsr.00428B2D, \' C1 v# \* s3 W* s, I2 J$ y
00404C97 8B06 mov eax,dword ptr ds:[esi]) R1 d$ n, E; z) `5 m( N4 s
00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],24 |0 V/ Y1 A! k4 w* w: b
00404C9D 7D 26 jge short qsr.00404CC5
3 {3 M" |8 _, B( W9 E8 Z# V& n G+ L# ]00404C9F 6A 40 push 40* Y" p% ]) a/ h% t6 H
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"* X& a6 U4 j& s+ C4 v
00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."
; J+ X5 i8 j& w; W$ u7 p& C" O00404CAB 8BCD mov ecx,ebp
7 Q% r+ F9 p# J& P5 B, p00404CAD E8 C3840200 call qsr.0042D175 `5 [' q9 ]; T$ x8 |5 P4 K
00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]0 `9 s. h+ m& M) f0 w6 t; u
00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx
& c* w; _% k% L3 ~00404CBD 5F pop edi( X; J- E5 @1 u5 j- L, B* p# m
00404CBE 5E pop esi
' l; v, }) v0 l7 I00404CBF 5D pop ebp
- L" Q4 u+ E: [00404CC0 5B pop ebx
) Z, {9 z6 \ ]; g00404CC1 83C4 18 add esp,18- n3 N) o+ f8 G& U" ~
00404CC4 C3 retn
- j+ G" i$ U- z$ d& g! z( L00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]! f* W6 E7 ^7 e' l
00404CC8 84C0 test al,al
5 I% Q& [$ c; u- u [1 B' I1 j( k; s00404CCA 0F85 1C010000 jnz qsr.00404DEC
2 X2 N! q/ A+ |4 N0 M7 M3 v, b2 A00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
4 h& y. X4 d ^& r% b2 ?00404CD4 E8 87E3FFFF call qsr.00403060
1 x$ y' b) {7 D) G- M k00404CD9 51 push ecx
) L1 c/ V2 P1 `2 P- R7 j0 [2 D00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
! s) n9 I6 Y5 M6 j/ t0 H00404CE2 8BCC mov ecx,esp
, o/ \0 c( i. w& H9 [8 H00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
8 y3 T2 J' x3 o6 m( i- y00404CE8 56 push esi' B. @. G2 g# W$ _
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
# G6 n5 q7 [3 ` I( l00404CEE 51 push ecx
6 N8 G/ y7 K# G# p00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1
+ c: s [% j( p7 c- W00404CF4 8BCC mov ecx,esp' ]4 j- ^# L: D9 L
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp* t& r3 `1 y4 f0 S, a
00404CFA 57 push edi
8 U) V% H1 F) a5 F2 U" N6 E00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是09 ^" _8 F# o# Y' O* T7 z" P$ z
00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
) p- c- z( [; F00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0* k1 s( _0 Z/ O
00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~& U" @; n/ `1 [8 X. {9 Q+ G2 v
00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~
+ _6 C8 ]3 [" D8 P9 Q00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~6 _! F# C2 ~1 v
00404D12 6A 40 push 40* D0 X" T4 b- D3 Y1 h
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
% m" `" |6 A" q7 B: u$ M0 v00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."# D/ K& }- j$ m. ~
00404D1E 8BCD mov ecx,ebp e i' N6 _3 y9 p+ K. k
00404D20 E8 50840200 call qsr.0042D175% b! Q0 X( g: M/ P
00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]8 R+ u* S) A0 S3 I% H, j& e
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1
, ?( M# X" z+ y/ a6 Y7 z7 c0 ~* G00404D31 E8 5AE3FFFF call qsr.00403090$ p7 x3 X o+ d) H
00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
1 C6 N2 }# P& F- i. j2 }6 }& b00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx0 e' v+ S( ?+ n$ [/ O) g) {
00404D41 5F pop edi
3 }3 F8 o& ~6 I; d; `00404D42 5E pop esi
. E U$ D( R% a1 j1 V2 q3 P00404D43 5D pop ebp G: \) l, m% @
00404D44 5B pop ebx6 C B8 H1 o. V
00404D45 83C4 18 add esp,18
5 E. J; ^+ Z, V2 U4 n* D5 q00404D48 C3 retn
7 r9 ]; L. _% @$ E8 F, g*********************************************************************************************************************************************************
) q4 D7 B! D a' D2 z跟进00404D09处CALL来到:0 D0 B- }, m. g% X
004030A0 6A FF push -1 //一路F8下去~~~~7 f" F9 }! [3 v* p; z
004030A2 68 C88F4400 push qsr.00448FC8
z3 T( W5 d; g004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
8 p- E; ?% I( g& U `! I004030AD 50 push eax
8 g0 ~2 c( u! D' ]004030AE 64:8925 0000000>mov dword ptr fs:[0],esp
K, {& y# I% t' R+ p0 K004030B5 83EC 24 sub esp,24
# D. i/ K0 u" k w5 H004030B8 53 push ebx
( L$ N+ A( U% z% |8 I4 D004030B9 55 push ebp
. S5 k% T! F* n/ a8 u/ b p" i5 F" V004030BA 56 push esi% o$ Z) y4 O- f. G) K
004030BB 57 push edi" N/ x4 Y" _, E) Q
004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890", Z( S. O- D8 v/ j. B" A M! K
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]! f( e5 S- B8 ^+ @
004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1
8 G6 w$ i+ S/ f* w3 m004030CD E8 27C40200 call qsr.0042F4F9
5 m- d6 P; c7 w1 F004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]% n8 ^. [7 H2 g f0 V. n& ?5 [ o2 w
004030D7 894424 2C mov dword ptr ss:[esp+2C],eax0 s% g; x& E- q8 }/ C( S8 Y# ?
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]" c2 R; }' M0 c! u3 ]4 `" ]. q2 v
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],31 O7 y7 u" y( _
004030E4 E8 905A0200 call qsr.00428B79. T f4 `- [, K. W @. C
004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]+ y7 Z; j" P3 f! U/ t( P
004030ED E8 3B5A0200 call qsr.00428B2D; L& _ ~- w( x5 P
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
- C. \, o! z& m. l) |004030F6 E8 7E5A0200 call qsr.00428B79 F9 u8 c8 c7 E( n% @2 [( T
004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
. g' d* p6 \( \* J }* E- r# b004030FF E8 295A0200 call qsr.00428B2D& i6 E' z2 J2 Z; J5 E. e
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]7 G) K% S# c7 F! t" Y- o
00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]7 m/ ]; i% { j# {1 f" N
0040310B 83F8 02 cmp eax,2
8 g9 B( v* E% I% Y0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
' X8 j9 Q. u, ^1 A2 [00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]) S/ t0 N3 w, p& C3 \8 ]5 `# p7 s8 r
00403118 837A F8 18 cmp dword ptr ds:[edx-8],18
- ^4 E: J' E! Q9 I+ ^$ l% F V0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳
. p% s" G5 X/ K3 k7 O" [00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
& L3 x l, z7 l7 l) ~00403126 6A 01 push 1
5 X& {7 l$ B2 ^+ ?/ R2 Y- p, q& r00403128 50 push eax5 [( u- W& d) l% r- n: X
00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]1 i0 H; h8 g) L
0040312D E8 C4550200 call qsr.004286F6. x3 B; B, E D( `5 a
00403132 8B00 mov eax,dword ptr ds:[eax]* I$ J; q! Z# `1 j
00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
' T5 b! c! S. b4 ?# R00403138 50 push eax' F; c& X8 V! N a: m% b
00403139 C64424 40 04 mov byte ptr ss:[esp+40],4" E W. Z" T+ Q" @( y! n( b9 R
0040313E E8 4D560200 call qsr.00428790
0 r7 O; { }" y) z3 [" S00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
: s. @& e2 _# w- a7 t9 u6 N$ v00403147 8BF0 mov esi,eax
( o/ g( t9 R2 F' B6 [4 h00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],37 g, v4 S1 N: h5 y" K& Y$ p. r2 X
0040314E E8 38C30200 call qsr.0042F48B5 E! S& r+ r) J" T1 D5 k$ l
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]
0 _# \* k3 V2 t00403156 B9 3E000000 mov ecx,3E
* r& n% F% { d! X8 _" C0040315B 99 cdq
' C# H0 Y1 y% Z, U3 @0040315C F7F9 idiv ecx: q6 J) O8 A. x+ D& J
0040315E 6A 01 push 17 m6 H/ x3 z* C
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]
+ X: ^7 {$ X/ r; o1 K: @00403164 8BF2 mov esi,edx
& {( I; o% j/ E00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
( D+ K& E3 v1 r$ k, q4 d0040316A 52 push edx2 N$ L, N" h1 M" u/ f# a
0040316B E8 0A550200 call qsr.0042867A
0 r7 p3 G, p- k00403170 8B00 mov eax,dword ptr ds:[eax]1 b }" m/ U2 t5 Z% V7 q1 R
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]7 j3 `1 ^8 R" X( n/ ], u) f
00403176 50 push eax d, L4 S Q& i' l" o( s
00403177 C64424 40 05 mov byte ptr ss:[esp+40],52 c* U9 O6 u S4 Y
0040317C E8 0F560200 call qsr.00428790+ ]% N3 ?* {3 ~
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
" `) n4 p3 W W00403185 8BF8 mov edi,eax. {/ k5 d/ E% b
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3
5 r/ N4 U9 v2 F; f( ]' [, m9 \, B0040318C E8 FAC20200 call qsr.0042F48B
/ u* u% ]2 n6 L; J$ g4 E0 W00403191 8D47 0A lea eax,dword ptr ds:[edi+A]
$ s" g" x' \6 Y j9 z, o00403194 B9 3E000000 mov ecx,3E
( Y' @) X- l" M( ^- K8 b, g2 N$ e00403199 99 cdq2 ^, ~: R5 U3 z1 R1 f% E6 w- r
0040319A F7F9 idiv ecx
- f% b" a* `: L0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]% X' a& J& y7 z& ~4 {
004031A1 894424 28 mov dword ptr ss:[esp+28],eax
) K: _% e7 q7 o9 h/ `004031A5 8BCA mov ecx,edx
. e6 W F2 ` T! D5 ~7 J004031A7 894424 24 mov dword ptr ss:[esp+24],eax: ~( V& p4 Y4 V4 Z
004031AB 894424 1C mov dword ptr ss:[esp+1C],eax# D4 ~' {0 G- L- y9 e `3 {
004031AF 894424 18 mov dword ptr ss:[esp+18],eax+ q5 e% q0 v, q( r
004031B3 894424 14 mov dword ptr ss:[esp+14],eax" f3 h) @9 N( L m
004031B7 894424 10 mov dword ptr ss:[esp+10],eax$ ^% ?; C( O4 a# a
004031BB 8BC1 mov eax,ecx
$ W( h& h6 F5 r+ f) g004031BD BF 0A000000 mov edi,0A
' C9 v g+ V" P( V! I" @004031C2 99 cdq7 ^; d6 q% J4 G% ^6 F6 i
004031C3 F7FF idiv edi
- w7 D4 ~# j/ ~004031C5 8BC1 mov eax,ecx
3 g9 r1 c+ K3 L' j( f004031C7 B3 0B mov bl,0B, N/ \ h. Y7 M3 h) f0 Q
004031C9 0FAFC1 imul eax,ecx! N- x# v- ]) g; W* V. [0 u
004031CC 8BCF mov ecx,edi. l4 A/ R$ ^# p% ]+ @7 _
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
! e1 R5 ^$ c) B8 q8 k4 G004031D2 52 push edx
$ S3 t, `! x/ y5 P& p004031D3 99 cdq
: @3 s2 [4 W2 z% I5 ]( ^$ L2 Q2 ]004031D4 F7F9 idiv ecx
* n, t) T8 ^3 {$ n; O) h5 |004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]
# V& Y! }$ s5 V) D% t004031DD 2BC6 sub eax,esi1 N* }& g& x& f+ S9 r2 N! _: l1 E
004031DF 52 push edx
2 q4 [$ W9 q3 U+ N5 q, M004031E0 99 cdq+ s: b5 o6 \7 M4 w' S+ y
004031E1 F7F9 idiv ecx8 V, f4 P0 U# H* y
004031E3 8BC6 mov eax,esi
1 D ?& X) h1 R$ f& U004031E5 52 push edx
1 Q" y' Z. m z! Y2 l) k/ l004031E6 99 cdq9 C* K# b _1 H/ o+ A. g( c
004031E7 F7F9 idiv ecx- y5 Z1 W0 \# G, T; ]6 W, p
004031E9 52 push edx' z0 s+ o' o9 j- W2 e: J- ?
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
* C$ P3 V! ^9 {" J8 O004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
s% e0 x' `8 N5 h9 J004031F3 52 push edx
2 _3 @- t+ V) {) P+ P! W( I7 S; Q% R004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是48935 j4 I1 q r+ }
004031F9 83C4 18 add esp,186 K6 h9 l& f! i1 x5 d# B8 o# Z
004031FC 6A 04 push 4' Y, _3 H* ]) Q$ E
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]
- K* k, u5 @8 a! y0 ^* n00403202 6A 00 push 0' n8 N+ ?5 N* W
00403204 50 push eax
5 ^8 b0 i) [* J' [. H }& X% V00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
7 m) C; h1 R6 a00403209 E8 D6530200 call qsr.004285E4
: T" [9 ~/ e; ]# z0040320E 50 push eax: Q5 E6 e! ~6 Z& Z
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]+ n& N* d2 b3 V: W6 v
00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C
' M+ D3 {7 t: p2 E9 W0 K C00403218 E8 A7C30200 call qsr.0042F5C4
2 h. M' z8 N c/ k, r0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]: v6 P# }0 A, n. p$ v
00403221 885C24 3C mov byte ptr ss:[esp+3C],bl* t5 p* D6 j8 o9 ?5 g/ }+ {
00403225 E8 61C20200 call qsr.0042F48B
% p+ s" D2 O% k( Y" o* w( r0040322A 6A 04 push 4
+ x+ Q: j& w& l! n0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
( N. J0 h5 z0 Z) m9 k00403230 6A 05 push 5
8 y5 M; a+ A3 G. R00403232 51 push ecx1 U6 \ i$ K7 m. o/ ~4 o4 j( N4 `) W
00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
! O' N* o: A1 L- X; i00403237 E8 A8530200 call qsr.004285E4
$ W' h. Y4 Y0 Q" o0040323C 50 push eax2 Y4 q" x3 A0 W' h
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
! Q" C- G. l1 a2 I) f, D9 c00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D( |5 I, f( L* ], D" ^
00403246 E8 79C30200 call qsr.0042F5C4- ?; T9 i! o* o( y; z: e
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30] I0 j) c0 }0 c5 m$ K4 z2 v
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl" i2 V" N+ i( u% t
00403253 E8 33C20200 call qsr.0042F48B
: @9 j4 ?# d* g% }00403258 6A 04 push 4. |/ ?- |, r$ d. j: k. I- ?$ X, H' g
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]
8 u5 [! x/ ^4 y% E. O0040325E 57 push edi
& L, H: z+ z" K; \% V+ u0040325F 52 push edx
2 @# f1 D* a' O8 l n00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]# p" z7 Q, W# c
00403264 E8 7B530200 call qsr.004285E43 |- n5 D3 \1 h/ ^& M
00403269 50 push eax* c0 }8 T2 E( b" d1 s( `% X! r
0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]$ z' r6 r6 `1 @
0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E" l- T& L, z+ s9 g* t7 O/ _# D
00403273 E8 4CC30200 call qsr.0042F5C4
# O1 f& N8 Z& A" ?! B3 Z7 z6 v00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
$ m3 {& A1 b' n, m, _ {# ]6 x6 Q0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl
/ n) C! e* S; Z, O2 B( b00403280 E8 06C20200 call qsr.0042F48B
3 T6 U+ a5 r0 F00403285 6A 04 push 4% ?$ n5 ~; l5 W0 O
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
( Q! ]; `2 X) o9 s; y0 n0040328B 6A 0F push 0F
, s$ b2 D+ K$ u* N, m8 W) `0040328D 50 push eax
y# `3 d4 R7 b! D0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
* N5 I' k& t& W00403292 E8 4D530200 call qsr.004285E4. V+ D3 F6 ]* U3 n# K8 o
00403297 50 push eax0 s" m3 s6 {3 F8 O& V
00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]2 X! M; I5 y4 I& V
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F: Y; W) e; o) N4 l/ N
004032A1 E8 1EC30200 call qsr.0042F5C42 \) p5 V' _: n# c
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
7 X0 S; [% h: y- G( X004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl
6 s V$ M" D- A% a4 o* p) l- u004032AE E8 D8C10200 call qsr.0042F48B8 R/ N( _) V1 K% S* S4 }
004032B3 6A 04 push 4
* m; n5 X2 d1 a q# k( }004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
: W/ @5 ~# A- J+ ?0 a& V004032B9 6A 14 push 14
: X$ t% ?) v! a004032BB 51 push ecx' B8 }. b% m7 ? {7 \
004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
4 k9 n0 i5 I% ?/ K. C004032C0 E8 1F530200 call qsr.004285E4
9 f% T2 D/ W& R6 u004032C5 50 push eax+ x, M7 S# Z+ m3 f$ t: h
004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
9 j) u3 ]% `+ S$ h, d J, t004032CA C64424 40 10 mov byte ptr ss:[esp+40],10
! c! B! J% M1 c; e004032CF E8 F0C20200 call qsr.0042F5C4
. f6 e0 T$ I! Y' j$ d9 b. y004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
! |1 o6 l- q! m0 x/ c004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl1 R n2 ]/ g! P: d
004032DC E8 AAC10200 call qsr.0042F48B! I' L# t) T# U2 r5 e, H
004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI1 `8 a1 R' r* K
004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
( k; R/ B( U; X, t; N, Z5 a( O004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL; L6 C/ m) S; w/ ?) _+ d
004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL
# k' ^/ h0 P$ g004032ED 8ACA mov cl,dl ; DL送CL6 ~4 `, A$ r" s0 s
004032EF 3AD3 cmp dl,bl ; DL和BL比较
% M2 j; \5 L7 s' E5 M004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)& b5 Z8 F. |; ?3 ~ C
004032F3 84C9 test cl,cl
9 i# t" O) c& p+ B$ Q8 y$ J; v& o004032F5 74 16 je short qsr.0040330D
7 X& _$ T# Q7 _$ L004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL
2 v0 \/ g9 N3 T: E! x& ?8 Q0 i004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL& f: s$ V% h% _7 P O9 `' Z8 D% S
004032FD 8ACA mov cl,dl# v! ]0 _% G. C+ }9 U/ W4 m
004032FF 3AD3 cmp dl,bl ; DL和BL比较% }7 A$ f) E+ _
00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
$ L z0 H6 J- s8 }0 n3 ~00403303 83C0 02 add eax,2 ; EAX加2% f1 @0 D: G M* l
00403306 83C6 02 add esi,2 ; ESI加2: N! X( d, A1 e4 K7 e
00403309 84C9 test cl,cl6 E0 z% \* \1 y3 E# q2 O4 [( }" f0 O
0040330B ^ 75 DC jnz short qsr.004032E9
' |$ }6 i5 _" x$ \5 F0040330D 33C0 xor eax,eax" B$ o& `3 k. j: P8 u. `) |
0040330F EB 05 jmp short qsr.00403316: W: K' \3 Y1 U0 ^
00403311 1BC0 sbb eax,eax9 Y* {! L) T. ?: ?
00403313 83D8 FF sbb eax,-10 }& r0 x# z% N8 G1 B
00403316 85C0 test eax,eax# |0 L% k. O1 ~' d! S" f$ q
00403318 74 0E je short qsr.00403328
! x- g3 b n3 G0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
4 y8 w; i9 e4 [- D) [0 D( B0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
$ V- g+ U, E& \ A& L, N& m3 m00403323 E9 F0000000 jmp qsr.004034187 a2 B/ @; G' q9 ~
00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX* }, x' R2 Y3 w/ T
0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]* x+ _! O; A: \- v9 p6 q3 s( k
00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]- g0 _& @6 j+ S4 z- d
00403333 50 push eax# r) S' _% X. e+ e# c
00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX4 x) d7 a( r! R& W9 n4 p
00403339 50 push eax6 P6 \% g7 S1 I) G5 z
0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX6 I: r, [' q3 |0 x
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
* k( l: ^8 a; j# d: y) @/ n00403343 83C4 04 add esp,4) A5 G7 ?3 @# @8 }: P
00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI
- O- O6 e" b5 Y! P4 c; L& ]00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]& W* I3 y) \7 e% }+ d' m4 n8 m
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
% p7 Q! o) |& e4 e' `0040334F 50 push eax4 ]; X8 |$ F! ?% A' J
00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
* m) v" z8 A. L' \& W- q00403355 50 push eax
o4 L( L8 {* h' e7 R% d/ G; L% z00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX5 i; V. z, W7 u# }
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
' n$ q, W- r9 N7 h& U0040335F 83C4 04 add esp,4
. B3 P% P* K# W0 G) _2 ~1 R00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI
8 C& t6 Y: @0 {- a' L8 @0 ?9 K0 v( g/ Q00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]: e( [5 I1 @0 K* J0 n; U
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8], J7 O& W# q5 N0 S
0040336B 50 push eax
5 I; ~# C" y. x7 \0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX# R. E2 f( l2 I
00403371 50 push eax6 F' |- j: |% u. b
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX! h! Q c8 G' T) n8 w6 c
00403377 8BD8 mov ebx,eax ; EAX送EBX
- P) l9 U" P$ m. f00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX
2 ^8 |5 @5 ~9 {$ v0040337D 83C4 04 add esp,4
' j: m. g0 n/ |- {5 R7 s00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
# E) ^! n& `8 V) P3 x* o# O00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]- w# d' v% Q$ g) i m. a, `
00403387 50 push eax4 `2 h7 F- w6 Z1 G
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX3 y6 ^, \3 O" N3 H( _/ V1 f/ N
0040338D 50 push eax% Y7 t ~/ C* x( ?( H
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
2 {( a* L8 ]: n3 f, H00403393 83C4 04 add esp,4- Y E4 e( T; ]9 f a1 o
00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]1 J. U& t& d4 y$ n
0040339A 8BE8 mov ebp,eax ; EAX送EBP
% O- B; {( D8 k0040339C 6A FF push -18 R% d# l3 g; a0 l; E6 l. J+ p
0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX
. v: r1 V- d/ w6 d4 x& p# Q4 l; X004033A3 6A FF push -14 n" W W1 K: S% \: }/ |$ N( J
004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
7 D, T" t% V9 h) C- x004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX+ T4 z! N1 u) {( _# W
004033AE 6A FF push -1
' T/ p7 b' E% D1 ~2 [- Y+ _004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX' x& l; g: j) L+ M
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX
& d0 v4 h, K0 W/ o004033B9 6A FF push -1
; o7 u+ Z/ Q9 j; J! S. J004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX; i* [/ v( p: w0 I3 F8 Z" T9 x7 T# ~
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX) [# K+ i1 @1 e3 W
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
$ s+ h% B/ E+ }3 D' R. L004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
6 t* i$ S9 h. [" h+ Q2 c+ u, g; ^004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
5 r8 X# P% e6 W0 K, d( r# h004033D7 D1E0 shl eax,1 ; EAX左移1位* k+ k& ?! X) W# ?+ n1 `
004033D9 99 cdq ; EAX扩展0 j# t; `% C6 j. o6 W. B
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中9 |! W0 T$ c1 ~/ {+ s- C! B
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较$ U: N, R1 ?3 N& w
004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)
* J6 Y5 |; B) l& _004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A8 M$ O! b- k6 S
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
: R2 L" S: z* F" {5 T) s* q004033E9 EB 2D jmp short qsr.00403418. V$ t, ~+ C- {$ \; B# Q7 _
004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX$ v6 C3 f( q6 f0 |' n/ n
004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E24 \ {( `' ~$ ]2 V+ l/ }
004033F7 99 cdq ; EBX扩展6 S4 r \4 d8 U% g- c
004033F8 33C2 xor eax,edx ; EAX和EDX取异或3 R( p( W4 s) W/ @4 |: g- T
004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX8 y" ]2 O2 Q# z% @
004033FF 2BC2 sub eax,edx ; EAX减去EDX
% f4 T( \0 `8 ^3 B9 I- a00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]" H, y+ [ J3 h! J2 z
00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX3 k9 `* z4 k+ m' y% a0 u
00403409 99 cdq/ U6 I; \' z: n$ C
0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中$ g3 l; G) u+ {0 {$ x
0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX
. W4 O" i5 J6 C) f8 u00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较
. [ B* t+ b& E3 T% ~6 V/ \00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)
! V% U* N0 I% z4 l7 m00403418 E8 6EC00200 call qsr.0042F48B ; & \3 X2 {3 R& B
0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]5 v7 P: P6 _, c( B; e T
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9
/ v0 e; Z; j, L00403426 E8 60C00200 call qsr.0042F48B# ]5 H) }& V/ q9 @% e
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
. U, Y3 O" b- l2 ]# p( l0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8
; A6 Z+ N/ y# y1 s4 ?# H& F2 e' J00403434 E8 52C00200 call qsr.0042F48B1 a7 v. x* z* q! h; @
00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]1 V) X d" P5 [8 T; P: F
0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7
+ R! v( m9 P) O& c) ^- }# }, X7 s00403442 E8 44C00200 call qsr.0042F48B$ f/ D8 e) ?4 e: M6 d. F5 _, v
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
+ `7 X' N0 i1 J3 b3 A: z0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
' Z4 `% c- F/ a p' g) \: a00403450 E8 36C00200 call qsr.0042F48B
) r4 ^$ _$ i9 @; T. D5 W9 E00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
* V1 ?& t! \- B2 i00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3% @; O/ R7 y; m
0040345E E8 28C00200 call qsr.0042F48B- ?6 a2 ~6 s- c2 q' j: V; p5 ^
00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]+ y$ e9 ^: {" t# `+ f8 ^3 e5 P
00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
2 \' s0 |2 S! O0040346C E8 1AC00200 call qsr.0042F48B
% p1 N7 V/ K( [0 Q0 Z- i2 d; e" J00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
$ f# O6 t& y9 Q3 h. M! K00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1
: \$ w1 W0 a! T0040347A E8 0CC00200 call qsr.0042F48B
& l1 A r5 w( T0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
/ E% c( o, X7 O5 c3 b/ Q. @00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0& F1 [! E, m8 a! v9 ~
00403488 E8 FEBF0200 call qsr.0042F48B( L( w' V2 L1 N
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
/ q9 g1 K! `! v00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
; F! n9 M1 n4 r: J y4 F, A00403499 E8 EDBF0200 call qsr.0042F48B
3 Z# P5 ]3 L! g+ ]' M0040349E 32C0 xor al,al ; AL清0
, R# D8 m6 n1 }1 F, B/ P6 q004034A0 E9 88000000 jmp qsr.0040352D
, Y3 e/ O5 q" C' Z004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~
* T# ^1 Q$ l8 r; j004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]5 k. A, z3 p6 e$ ?6 S6 a
004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9( M+ ]% P, ?' V
004034B3 E8 D3BF0200 call qsr.0042F48B- b+ X9 X" I$ n/ F- a1 d/ U
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]2 b* } E( n5 R8 B' N( B# G9 ?5 O
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
# o: q4 @6 j" O3 j) Y& z* O5 [004034C1 E8 C5BF0200 call qsr.0042F48B; T1 u) d$ J8 r2 h, i" C
004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]0 B5 y* @. q6 [5 {- k
004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],72 e1 I: A: i s$ `) K- H
004034CF E8 B7BF0200 call qsr.0042F48B
& ?. f( F- k/ H" E3 u1 z004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
4 u# z7 ^1 G6 I; j+ y004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6
8 i" h8 R3 M5 ?6 y( V3 A004034DD E8 A9BF0200 call qsr.0042F48B2 C4 o! v6 `! @
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]" Y: f$ ~% P0 h0 Y. y" l; z
004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
: e0 V0 c+ q" {" k3 U, S$ [004034EB E8 9BBF0200 call qsr.0042F48B, A* C1 f* Z% F+ w/ i
004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
' N; |$ Q% }3 c+ W1 E1 Y7 e004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2
# O8 }" g/ Q' d004034F9 E8 8DBF0200 call qsr.0042F48B0 W: [: g3 N" j! N
004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
8 Y3 Z" Z% T v, o9 Y00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1
% E/ K% l% P+ M: k, [; D3 D00403507 E8 7FBF0200 call qsr.0042F48B" ~; B2 @% E8 `' v+ J) U- u
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
, q8 u: T8 H! a5 s00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0* F! t6 `6 \8 B5 Q8 a9 X4 L c5 R
00403515 E8 71BF0200 call qsr.0042F48B
$ X5 y. V; X; V0 q. B0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
( G: x6 m$ i# D2 s Q0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
) D3 ]" E3 V4 O5 z8 \* p00403526 E8 60BF0200 call qsr.0042F48B
& r# `( I( a, `" B! O* S0040352B B0 01 mov al,15 s# ]! w2 v& U* [( m
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]1 Z1 T' ~. T4 `/ C8 G" x
00403531 5F pop edi% M3 E3 K' d. k" _8 `4 Z! r
00403532 5E pop esi
9 \4 e L- w: y! k5 ~/ [00403533 5D pop ebp" w7 a8 l2 K& L8 @$ m5 w
00403534 5B pop ebx/ j) |6 x9 @6 I6 G) [
00403535 64:890D 0000000>mov dword ptr fs:[0],ecx
; X8 b8 C5 v: b& |- z& l& r+ m0040353C 83C4 30 add esp,303 A: V7 o) G8 F5 Y3 T- P, P
0040353F C2 0800 retn 8" X1 U3 U/ G2 d
--------------------------------------------------------------------------------
# y( p i; x$ A' j, N6 T! G【破解总结】0 w: L) @9 e2 u6 Z* B
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^* _9 `# i3 u- A% G9 O0 t4 I+ ^
用户名:yijun
, T8 t; g5 Z. o/ s8 d$ n注册码:4893*7777*3726*7777*0529' F; r6 T8 l4 e
--------------------------------------------------------------------------------
/ Q( [2 e& M' }. n【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡