|
|
|
【原创】破解Quick Screen Recorder
O5 w- w2 k4 f. r6 [) s) _4 } R【破解作者】 yijun# { B% G4 g% R. l
【作者邮箱】 [email protected]: H$ \0 r! ?1 w$ k9 ~, ~# F8 ] Y
【使用工具】 OD,PEID
+ @- T1 j' m4 T9 i8 C" {【破解平台】 WinXP7 r4 ?' L% D- F E) o0 I. E
【软件名称】 Quick Screen Recorder
' J: @: ?6 u0 p4 G5 u: U5 b【下载地址】 天空
/ Y; a& h/ D/ C* D3 S _3 ~$ z" Q: Q【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
( R" q' ^" ~' a, l; T3 w【软件大小】 540K$ A' z1 g5 N- Z! {
【加壳方式】 无6 K1 {2 e+ J; i$ _/ A2 `% m
【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)
9 V) i( |3 Z d' g, G* ~1 K--------------------------------------------------------------------------------4 N! n5 Y+ B1 C
【破解内容】/ L4 V% O* S" o1 z3 e! H$ o9 i
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:3 V- R: G( p: {5 [' l
00404C69 55 push ebp //在此下断
) `6 i! g$ V9 a4 `7 w3 U9 y' z00404C6A 56 push esi
$ {4 T5 d) o8 c8 |" q' I) J00404C6B 57 push edi
: J+ s8 G% C, e00404C6C 8BE9 mov ebp,ecx! ]! v- b& ^5 U; R
00404C6E 6A 01 push 1" a% x: h- ~/ f& [2 X# j3 ?
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
, p4 N$ S# q9 ~. I; q/ E& q00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]4 T$ {4 I v- p5 i" q5 K, |4 F
00404C78 8BCF mov ecx,edi
) x6 i- @- _6 x$ `5 I1 H0 B- y2 z0 \00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码
2 I0 @8 Y7 p' D00404C7F 8BCF mov ecx,edi/ k% s, w! G6 o
00404C81 E8 A73E0200 call qsr.00428B2D
* m% b& r( t \3 k. ^" Z& i00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
2 F! `0 s- V. b00404C89 8BCE mov ecx,esi
0 d3 H! K' f5 h, _00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX
4 Z2 k! W) N4 G x3 _0 V- N, A00404C90 8BCE mov ecx,esi) c4 l2 D3 X% `! [. O# I0 u8 u& c
00404C92 E8 963E0200 call qsr.00428B2D
9 E1 u8 {0 g. @# E6 ?00404C97 8B06 mov eax,dword ptr ds:[esi]" j0 W# A8 ~0 P5 v) T# V
00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
9 e: B& c5 H0 j3 R# [: D+ |* j00404C9D 7D 26 jge short qsr.00404CC51 R$ [" [( L& x5 R, a+ t
00404C9F 6A 40 push 404 [! q; C4 w B
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"! U0 p8 {* c5 f+ V, p# c
00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."
6 w; }6 D8 d, v' A" ~$ i00404CAB 8BCD mov ecx,ebp8 n$ `5 \) H" y0 s& u* L; r4 ~
00404CAD E8 C3840200 call qsr.0042D175
+ r( r% x8 N$ `3 z: ^; n00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]; r& f% d. @0 j0 W1 H( I l7 u0 i; r
00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx
! N0 I' x; H' L9 ]& O* f00404CBD 5F pop edi2 p- _5 a5 X6 b+ I; K# D+ M
00404CBE 5E pop esi
" n% v' c. L- B* `3 `3 u% D00404CBF 5D pop ebp8 i; Y( V% z j: ^6 W1 D. T
00404CC0 5B pop ebx' A& e' L% H+ J( \9 ?0 h
00404CC1 83C4 18 add esp,18
# P" [) h- c+ M' C6 i9 E9 q8 Z00404CC4 C3 retn
0 G5 M/ H+ r- K4 m00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
8 k4 _. ~. \: E00404CC8 84C0 test al,al% r4 B6 H5 z# ?3 w3 w k
00404CCA 0F85 1C010000 jnz qsr.00404DEC9 v2 L1 e! I: @( U; t- E
00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
2 A0 }: n0 E, Q8 [/ y1 H00404CD4 E8 87E3FFFF call qsr.00403060/ {$ c4 j8 n) E0 C5 J
00404CD9 51 push ecx: O, P Q J5 H R( [' }
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
% W6 T7 l4 `3 M8 {* x00404CE2 8BCC mov ecx,esp4 N) \8 L# k p( r/ ^+ I9 C' f
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
; m) m3 ^ p# h' @6 D1 O& `" C2 m3 T00404CE8 56 push esi/ v1 w( q, s5 u+ m2 C
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
+ O# @! [ i! Z* V. U00404CEE 51 push ecx
3 W& ?: q- |1 \& h# w8 r' S% `00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],18 d* ]5 I4 Q, I$ w3 E6 p/ y% O
00404CF4 8BCC mov ecx,esp
7 i, @' l7 F- y7 ~+ {4 o& g00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
2 M: P! y7 c* I! h1 j( ^00404CFA 57 push edi
9 C1 h# _; M8 _ k- v00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0
; @9 n% V/ b1 n& Q00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
6 ], A. {9 _9 L) P9 _/ d; \00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0
/ D7 U" A; `* ?* e) n3 E' M00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~6 i; E& ~0 U6 U- s/ m4 ~" v5 I, L7 h
00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~0 j. r i" s$ B
00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~9 n7 x* j2 i- a6 h) I+ m
00404D12 6A 40 push 40; O/ V2 Y% ]" k5 P! Z( H& r
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"$ I/ |1 K+ Q1 O1 d# ]3 C6 P. B
00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."
$ i3 Y1 y: h ]6 B# @" x00404D1E 8BCD mov ecx,ebp# F3 y/ [) W" r
00404D20 E8 50840200 call qsr.0042D175' u6 j7 [* A% G2 ? K
00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
+ M% C5 h+ h2 K# N( o# p8 D00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1
; L0 [* i2 }# x5 r) P/ y00404D31 E8 5AE3FFFF call qsr.00403090
* b4 ~, L7 i! P) s6 ^$ h1 Q t, H00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]0 z5 T1 x1 l. p$ B! d7 N
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
2 S) W4 X9 `$ o2 e, k4 q00404D41 5F pop edi
6 {6 I$ s( N1 s: F4 W1 L. V00404D42 5E pop esi. \& J- U+ o/ A# e1 J0 f* D! J' ?
00404D43 5D pop ebp
0 @5 q/ a" G* `" a' s00404D44 5B pop ebx
, @& \- n3 G4 H: q- i00404D45 83C4 18 add esp,184 N) _8 G5 A( q9 _* h
00404D48 C3 retn
: k( q, w. f) K, p& k% h1 o( }4 L*********************************************************************************************************************************************************( m c: M2 P" p: x
跟进00404D09处CALL来到:
; {, e) I3 F3 }; O4 l004030A0 6A FF push -1 //一路F8下去~~~~
: [: r0 C+ B. r; o3 Y8 K# F) B004030A2 68 C88F4400 push qsr.00448FC8! | H2 u g0 m( N$ ^$ u
004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]6 [9 ~7 L5 M: t5 |
004030AD 50 push eax
3 T3 C( d, z; X0 `# \( J0 f: Q) k004030AE 64:8925 0000000>mov dword ptr fs:[0],esp( W5 e9 h( F: e5 e" b
004030B5 83EC 24 sub esp,24% ?, t1 c* W E: Y! P* u2 ~; Z
004030B8 53 push ebx
0 o9 P$ ?& N* `2 k- f004030B9 55 push ebp
- s4 r) n. B+ K; k' G/ J7 w7 {8 \004030BA 56 push esi
, B# H, V0 F4 a004030BB 57 push edi# y$ A9 G* N; f P
004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"! T/ z# o; t* V1 }& g1 ?# h
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
. I* a5 ^% n$ j8 O004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],11 O r/ H8 Z' l3 _; H
004030CD E8 27C40200 call qsr.0042F4F9
{5 N8 q8 c! l0 n004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]% d( p: n, }3 {! F6 b" Y
004030D7 894424 2C mov dword ptr ss:[esp+2C],eax
- ~! C0 o5 w1 {8 h! q; e- v# C& M004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48], }, B* |4 O. a' r3 c5 A+ H
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3! ^, p. k1 F, [
004030E4 E8 905A0200 call qsr.00428B792 O, m. {, t2 a U0 I/ H& ^! w- X
004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
% Z B3 Z, W2 B* A V004030ED E8 3B5A0200 call qsr.00428B2D T+ I5 m2 f+ Y
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]' }# A8 J7 c7 I5 F' S; t1 | _
004030F6 E8 7E5A0200 call qsr.00428B79
' v x6 Z3 \, C4 @004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]4 l! r8 a# i) Z; v$ R9 R
004030FF E8 295A0200 call qsr.00428B2D3 I; L+ u* m; k9 _( c
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]4 p7 u _9 r9 ^
00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
+ _7 ^# K) I& i; T8 J0040310B 83F8 02 cmp eax,2
% y% |% P. Z( |& a2 C( b0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
- [" _1 z* ~- |7 S00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]9 y( h5 B1 ], J9 {1 Y; c
00403118 837A F8 18 cmp dword ptr ds:[edx-8],18 @6 z7 y9 `% g L
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳+ N8 I/ e" d5 ^! h
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
6 W3 ^& P2 U9 Y* r/ x, P! S' W0 T00403126 6A 01 push 1' k9 S: m" `' U" H7 Y8 J
00403128 50 push eax
7 b: C" q$ b$ \& l8 W00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
/ ^8 I% h5 N- H! V6 D0040312D E8 C4550200 call qsr.004286F6$ T, S$ T, v) f$ d* b8 m+ A3 d/ ?9 w
00403132 8B00 mov eax,dword ptr ds:[eax]
3 ?4 K, w8 x! J/ |3 M00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
8 i. M: e# Z/ A& q00403138 50 push eax
9 @3 Q y9 ] W0 C* ?$ }00403139 C64424 40 04 mov byte ptr ss:[esp+40],4' T) I5 b2 r# O2 }) W z, L8 N
0040313E E8 4D560200 call qsr.00428790" W" o& u, o- b# a& a+ c0 D, f( t
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]1 a# G) R7 U) m7 ?: R
00403147 8BF0 mov esi,eax
0 l1 O3 A, @- ~+ f; x00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3
( o& z2 [& ~5 p9 T0040314E E8 38C30200 call qsr.0042F48B. h u9 |4 a* T
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]0 w) ^4 x. h: h/ k
00403156 B9 3E000000 mov ecx,3E
, O8 k' d8 H9 N% O4 s4 O: r0040315B 99 cdq
& X* B$ K4 @8 [8 B: F( G4 z& O0040315C F7F9 idiv ecx- D5 L& C2 ]7 S- T' B4 V
0040315E 6A 01 push 12 @- X6 o5 V5 d' T4 x
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C], T0 H) _, y( M \* i/ p; y
00403164 8BF2 mov esi,edx
3 X' g0 {& n: x5 M$ w& I00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
* V; H/ m) A* T$ p0040316A 52 push edx
) D" e% H& d+ e% `+ i$ A3 c0040316B E8 0A550200 call qsr.0042867A" X3 ]0 A: n& u$ Q8 r
00403170 8B00 mov eax,dword ptr ds:[eax]" b, X/ Z g* z9 m: J/ g
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]0 T5 v( |; S9 W* r) J0 }
00403176 50 push eax
4 H8 o% Q/ I5 y: l7 K: w, p00403177 C64424 40 05 mov byte ptr ss:[esp+40],5
. _7 C2 Q* z# x) N0040317C E8 0F560200 call qsr.00428790 S- X2 M% Y7 J9 p) r% Q
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
8 S) E6 z4 F' A9 i00403185 8BF8 mov edi,eax
2 T. ~: z( J# a- R" b7 E! D00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3
; h. N0 G, g; ] ^1 G& t& w0040318C E8 FAC20200 call qsr.0042F48B. z8 i% R5 [) }% Z: N( n
00403191 8D47 0A lea eax,dword ptr ds:[edi+A]: v' ^/ V/ D. C. [
00403194 B9 3E000000 mov ecx,3E% v3 |7 ?* A' d* c$ b% v1 q
00403199 99 cdq' p1 a, F- t6 w" E M/ [, T) t
0040319A F7F9 idiv ecx
4 A- ?( {' b6 P; [3 D' t) G4 v0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]
2 }! }! Y1 `. Z' }6 @004031A1 894424 28 mov dword ptr ss:[esp+28],eax8 R0 q$ Y, q: ]
004031A5 8BCA mov ecx,edx
/ Q/ d e2 S/ X' t004031A7 894424 24 mov dword ptr ss:[esp+24],eax& N. F. _% L P9 [
004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
, H( p+ Z+ v. U" g004031AF 894424 18 mov dword ptr ss:[esp+18],eax
1 _4 y& H; e$ x+ F004031B3 894424 14 mov dword ptr ss:[esp+14],eax
) j1 \" Z/ R& I) f004031B7 894424 10 mov dword ptr ss:[esp+10],eax
) m/ Z. X8 C. w$ M004031BB 8BC1 mov eax,ecx: A0 Q: O2 j0 w9 }( Z9 H
004031BD BF 0A000000 mov edi,0A1 @- S* Z# R* O+ M- B7 M
004031C2 99 cdq) m1 @8 U) p1 [8 |2 {
004031C3 F7FF idiv edi
( ]9 a& O" D- M/ K# t% ?004031C5 8BC1 mov eax,ecx
# B% n" R# C. n( j) y4 B1 s5 u004031C7 B3 0B mov bl,0B0 [3 h0 l8 Z7 ^2 u$ m. y7 y, y
004031C9 0FAFC1 imul eax,ecx
! i" l$ C' i6 T; ~) }% L. l004031CC 8BCF mov ecx,edi
& p. u) y( {% D4 g6 [004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl" c$ M# ]& g! L" m* u3 l' l
004031D2 52 push edx" C8 S2 w1 M8 q0 p% T& L
004031D3 99 cdq: r& |1 @" K3 i( _, H; P
004031D4 F7F9 idiv ecx
# w% c$ E% s9 j004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]7 n9 @, ~2 D- D( v& y9 e
004031DD 2BC6 sub eax,esi3 q3 ~; l; h& P# e M: V
004031DF 52 push edx
. t5 f8 S7 E8 M! [0 p7 B004031E0 99 cdq J) }+ C( t: e4 o
004031E1 F7F9 idiv ecx# S; q6 Z0 w9 {; _+ }
004031E3 8BC6 mov eax,esi
5 u* g2 K+ F6 R4 O% q1 N# H( n004031E5 52 push edx$ l" F, T. b& i. |8 z0 m; y
004031E6 99 cdq7 I' G* l1 d' v9 |3 G
004031E7 F7F9 idiv ecx
& V0 K% F& B0 B4 k; c$ d1 j3 m004031E9 52 push edx1 }# v6 K2 B5 P' }- V
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]* \) N8 w, C. P* z6 {
004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
$ {; }! B/ z! H: v" M7 o9 E W004031F3 52 push edx
5 z' z8 \4 V1 x/ L7 n6 \004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是48935 @0 q9 w* v) h" o5 g8 ~* v
004031F9 83C4 18 add esp,18 f4 {, C5 `! q4 N( b
004031FC 6A 04 push 4
7 ~" k c( N# ?004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]
\- I; T% `- F) c/ i8 @00403202 6A 00 push 09 y0 r5 `. R1 e: o* {8 ?
00403204 50 push eax
9 I& C, U8 g+ b) ?3 d; [00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
4 |) ^$ U8 Q3 y00403209 E8 D6530200 call qsr.004285E41 Y+ i8 ?& a& ~& i
0040320E 50 push eax
7 U; h% y+ W' @0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]# Z \, ]1 H" K+ r
00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C
4 {% ]2 G( v* e5 R00403218 E8 A7C30200 call qsr.0042F5C4* c$ B* L( f# M& z$ O& e4 v0 d4 J
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
+ h( @5 \# G* Y, G00403221 885C24 3C mov byte ptr ss:[esp+3C],bl! I3 x s) j# a* K9 ~
00403225 E8 61C20200 call qsr.0042F48B
1 ]9 P6 g: Z% _( I, b0040322A 6A 04 push 4
! ?3 f4 Q) b+ |' b8 |5 O- r. F0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
* S: z" H" a/ x8 D* Y00403230 6A 05 push 5) E/ f% `" ^& ~/ `1 U8 R
00403232 51 push ecx
, ]0 d9 [2 S0 e; D00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
/ _5 U2 X+ l, c4 t/ M3 b; Y00403237 E8 A8530200 call qsr.004285E45 A6 r9 b: Z( s
0040323C 50 push eax3 T$ T' D4 W, ~/ s) H: P1 H* [ [2 P
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
! n: J+ {6 w" t! g6 b( j2 P" U" d00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D
: L( {- g' i' B( f00403246 E8 79C30200 call qsr.0042F5C4: l/ y7 A4 W2 K3 a" m# u# L
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
8 C( [" r' f; q2 N% ~0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl
; l1 ]* M: v0 o00403253 E8 33C20200 call qsr.0042F48B
B1 I1 Z3 x% e% t+ F00403258 6A 04 push 4# P0 @: | O: U; a! b, M1 S
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]2 t" s# H0 f) M( [% @+ |
0040325E 57 push edi* p5 n2 a R+ S- l9 t
0040325F 52 push edx* A* O$ d4 ]2 r w% u
00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
* I3 t& Q/ I6 d7 ]* r, \00403264 E8 7B530200 call qsr.004285E4- s" B" O1 _- x# |* ?! K9 X. ?7 O
00403269 50 push eax
. Y# P: B( O8 r; v. F; u7 f0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
1 G$ ^ c4 U y, Q% B4 U& _0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
7 T9 N& w! @6 ?9 |6 L& H' S1 Q00403273 E8 4CC30200 call qsr.0042F5C4' i* D! b. [$ g* f3 D
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
' T- q( \$ u# Z8 G0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl6 |% U, d# O6 M$ H$ O) [) l, [
00403280 E8 06C20200 call qsr.0042F48B4 [; V( S, X% W: y: a* i
00403285 6A 04 push 4' u) q* R1 F$ a
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]6 s6 {+ m2 Y% k* A$ m8 b
0040328B 6A 0F push 0F
0 ?5 d! D& g% u9 ?0040328D 50 push eax4 N' j+ h& H0 {* I E7 q# X
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
, [' W" Z* H) H. o) K! J# E00403292 E8 4D530200 call qsr.004285E4
3 ?, \5 J3 |' X1 c8 j00403297 50 push eax
8 Z% ~5 S5 y* s/ D2 W; ^$ z1 d! {00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]- @! X" E1 {( C- n: A/ g
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
5 u$ t. v+ e. p0 c7 e# ^004032A1 E8 1EC30200 call qsr.0042F5C4
2 b' G5 }: D2 s, ~# x- h' b004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
* O7 |5 v+ F9 u004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl" A9 z( F2 m% z2 e& ?1 P
004032AE E8 D8C10200 call qsr.0042F48B! N: n* d! z }( N% T: b
004032B3 6A 04 push 4
- L0 h/ X7 H' `: G- W004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]/ Q- P* ^+ B' B1 C& R0 W3 d/ n6 X, `
004032B9 6A 14 push 14
) ~& O8 y1 D4 Z! D2 X% k* C004032BB 51 push ecx! i; d1 p+ w) h( ]1 y0 h
004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]$ w c: X8 ]5 ^: J+ N
004032C0 E8 1F530200 call qsr.004285E4: n: v8 y9 Y1 T9 N
004032C5 50 push eax# R' ?: K* s- e+ ~+ z; w0 Y
004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]6 ~. M- @7 E# h; k9 m
004032CA C64424 40 10 mov byte ptr ss:[esp+40],10
$ J. t+ w3 \" D6 h3 `! l004032CF E8 F0C20200 call qsr.0042F5C45 J9 ^% f( Y* t( w) }
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]1 v d k6 L, t- n: L1 S
004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl
1 y0 j0 N# m9 {$ p7 X" z) I004032DC E8 AAC10200 call qsr.0042F48B: ~ P7 G P* o
004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI# b; Z m* o! X) m2 |
004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
W) f' v' B6 H, i: ]004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
o0 L" a/ Y" V" F004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL0 U/ S* e; H) Y- B
004032ED 8ACA mov cl,dl ; DL送CL q f* f; J5 o
004032EF 3AD3 cmp dl,bl ; DL和BL比较
; f% ]6 n! a( h: p; P# }004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)3 \* |5 a0 R8 C
004032F3 84C9 test cl,cl2 g. z2 ?! {# n
004032F5 74 16 je short qsr.0040330D
& \& ^# F) q) l/ n o! {004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL- @# Q2 x! D2 a- M8 P* c
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL
5 k1 m1 A! @; o004032FD 8ACA mov cl,dl
3 C# K/ I Q4 r! o! g004032FF 3AD3 cmp dl,bl ; DL和BL比较
1 h y; t0 x" x+ G00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)) u- N/ e" b$ K3 h$ E
00403303 83C0 02 add eax,2 ; EAX加2- ^) j6 _8 U" G
00403306 83C6 02 add esi,2 ; ESI加2
x. d0 i0 s% O# Q( x' q00403309 84C9 test cl,cl. s3 i5 N$ _( s
0040330B ^ 75 DC jnz short qsr.004032E9; h* {; ?# L+ U' t
0040330D 33C0 xor eax,eax
' n7 u" n: l5 k3 d$ d0040330F EB 05 jmp short qsr.004033167 r- ~/ F1 a+ I! @$ {. b; C3 K
00403311 1BC0 sbb eax,eax
3 T9 o& x1 f$ i) d" q# R4 X/ t) Q00403313 83D8 FF sbb eax,-1
& [9 z6 C$ W. x+ a. t7 c. M9 q) H00403316 85C0 test eax,eax! D" H" L. ]# s- M8 P
00403318 74 0E je short qsr.00403328( I0 m s! R; B8 d8 A2 v
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
9 d" Y& E' V9 F Y$ z5 r6 j0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
- c( s/ [3 `" [3 ~00403323 E9 F0000000 jmp qsr.00403418; I( v5 a$ i. c# T! ?7 f
00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
/ m: p& F& K$ m0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]8 @' i$ Z% [5 k: z. B
00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]
+ d2 n* r0 Z, t, x1 V00403333 50 push eax
7 ?( ^$ k8 }' ]/ |, A w8 v00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX, |* J+ t) }8 D7 _2 z7 x2 U
00403339 50 push eax( ^' s; K0 N W8 Y( ]+ Z, ~7 N5 @
0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX& l* r2 C8 H- G
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
, i( X- u& O4 B5 b" w00403343 83C4 04 add esp,4+ { u; o/ x+ N; Z& ]9 F
00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI$ f9 [1 _# V$ U
00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]
5 T2 O g, P5 Y2 s( y0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]6 O) f: x: g( T1 z' v& \4 q
0040334F 50 push eax }, P; o, p) T3 D B' j* e
00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
/ I( L J$ u9 K' s4 i00403355 50 push eax
& y2 ?6 D6 q; F: \. ~8 R00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX/ ` t# ?3 n$ @- I" K4 G( j
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX L6 u7 b7 n* @8 c9 {
0040335F 83C4 04 add esp,41 {0 m; T! T% }( D( C0 G. @
00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI
9 z+ \2 L$ v5 U. R3 w' w00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
( T L1 A! G- w( K00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]
$ L7 n/ U1 n) [% ~' T5 I6 G8 s0040336B 50 push eax% p! y/ M: ?6 n, o8 k
0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX' w1 }; h: \/ M3 I4 s
00403371 50 push eax; o/ |* e. K) U: ~+ I/ j0 ~& ^8 p
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX
2 U ^% M) P: a4 |# S00403377 8BD8 mov ebx,eax ; EAX送EBX- M2 r7 i2 a) y/ Z5 y8 ]
00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX7 s" F2 W, C! o
0040337D 83C4 04 add esp,4. c! |8 g' i. B5 t* D& Y; I
00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
7 F! v0 F% _& M00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]
' a* K4 b) D* R2 f00403387 50 push eax/ L# _ O* W D" Y, \* w% u, _
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX
, e! A7 C! M3 ~- \2 [9 @$ r. s0040338D 50 push eax
* X7 [4 T8 ]; ]* J# z8 [1 l0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
4 o2 s: y6 D1 p% s; `00403393 83C4 04 add esp,44 e; G* i/ K& t
00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
" f- B& |( i8 G# A4 {0 L6 J0040339A 8BE8 mov ebp,eax ; EAX送EBP& z: j3 C* j% w) w( Z, E
0040339C 6A FF push -1
; a7 x- w; ^ h4 `0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX
0 d! g% {* J$ y2 |4 Z. m004033A3 6A FF push -1
: U8 O' k$ t& r" _7 J7 A% J$ t004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
7 i" Q. V/ W3 T5 i004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX4 F3 z- O& l+ K7 C" |6 v
004033AE 6A FF push -1) H3 y7 j: u" k# H# o9 y
004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX0 f# H. q' R$ r7 a$ I! x- K
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX
; R7 j, ?! Y9 M/ `+ w& Y0 Y004033B9 6A FF push -1" d9 D9 J6 o& A( T
004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX2 c- b: S" j. R5 u5 ~7 P
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX. c2 c& l5 v9 v7 G8 L, _
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
' C) r% v6 @ T4 R7 d9 w' ~; x7 G004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX6 I o7 Z8 o( m3 M( Y
004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
5 {2 f) A. }" d* M0 q' t' l2 R004033D7 D1E0 shl eax,1 ; EAX左移1位
) D) Y2 k2 P# d, d! M8 ?004033D9 99 cdq ; EAX扩展
& `0 D% r M6 h! ~004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中! u4 u) O$ U) I, a
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
2 u3 g. G" @! |7 y004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)
2 g( ?% z, n. Z4 n% Q004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A9 u: t0 y- Y0 l2 Y3 G, I: m
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]% `; Y- Q% I- ^) R1 I- w
004033E9 EB 2D jmp short qsr.00403418
9 L' s) n. V5 ]' B% P004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX
- E9 `/ N' y5 j4 l) j7 S1 ?004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2 y! D! ]' q9 f- _$ k. h
004033F7 99 cdq ; EBX扩展9 n: }, n+ D9 U& I
004033F8 33C2 xor eax,edx ; EAX和EDX取异或
- \* ^6 P k8 g: Z5 b4 M% o004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX8 U6 Y- |$ `9 ?& O6 c
004033FF 2BC2 sub eax,edx ; EAX减去EDX
2 r/ n8 W9 L; L00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]* j* D/ L5 J$ m3 ?
00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
* b4 d" S g( D0 s00403409 99 cdq# ?0 F0 H% Y( V1 E1 a0 \
0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
1 O( ^0 M! F' t0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX, ?# h4 x. l1 p( l
00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较) g! x' S* ]% I! ]4 z' S
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)
4 R7 n. z+ ?" ?6 ]) Y8 Z# i# r00403418 E8 6EC00200 call qsr.0042F48B ; . Y. @7 k. s! s$ F' @" y$ M
0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]2 n$ _+ V) E# H
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9
. o+ Z8 D) k+ K1 y* i2 X! B- N9 K00403426 E8 60C00200 call qsr.0042F48B& m# Q; [# `) Q
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
$ L. f0 g" c$ ~6 c0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8
; x) u& t9 Z& v* c; k0 W00403434 E8 52C00200 call qsr.0042F48B3 A( z9 q, C2 d4 o ?0 d
00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]9 }3 y6 E' o+ m8 @, _' u$ H% j O
0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7+ c. W5 b2 Q# g' \( L
00403442 E8 44C00200 call qsr.0042F48B4 ^3 t/ K$ Q: q9 D; h
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
9 b9 u$ v) x' K0 c/ Z0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
. W+ Y# |' J+ s00403450 E8 36C00200 call qsr.0042F48B
- v# S5 I3 p2 \# W0 k00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]4 k2 {6 o( t) m. e5 m" a# G
00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3
' k6 s" W: y4 P1 k. U0 H0040345E E8 28C00200 call qsr.0042F48B
1 P3 I( v2 E* ]6 [00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]8 @! D' B7 Z z4 l, M# ]
00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2* |8 I" R0 w. S1 x$ E) ]3 K& A
0040346C E8 1AC00200 call qsr.0042F48B1 ~/ `4 d+ Y5 A7 L ?6 L% |* O0 M
00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]8 c: P$ x J, t6 A0 u
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1
. K4 ]/ q3 ~7 r6 _+ Z$ {/ d0040347A E8 0CC00200 call qsr.0042F48B
2 }1 r0 M& O1 C/ q8 \) |$ y0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]7 g0 U5 D0 T$ l* j, k' f6 }
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0: v2 b! N3 h2 A
00403488 E8 FEBF0200 call qsr.0042F48B1 g! F' h6 g' q
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
, G" e" K# O: |00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1. y" W* k: W( y
00403499 E8 EDBF0200 call qsr.0042F48B
( p7 {- N V3 z0 v, ]0040349E 32C0 xor al,al ; AL清0# r) N c5 B( @# C( b/ @* f" ?* {2 L i
004034A0 E9 88000000 jmp qsr.0040352D# O' | b4 v! Y4 H
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~- v# e, D7 }; k0 P; i
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]+ F" p2 }& u9 [
004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9
V8 l+ u* s: k6 Y: }8 ?. }004034B3 E8 D3BF0200 call qsr.0042F48B- o# Z, ?- o7 X( i, ]* U
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]- Q3 r, }' H# t6 V6 w# b
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
y% }" |# \! x& J1 `: R4 x6 |0 |004034C1 E8 C5BF0200 call qsr.0042F48B/ d9 j: a5 s# @! K8 F% e& v
004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]+ h& e# P9 J/ j& y4 i
004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
: i( v/ w3 k9 l7 N0 [004034CF E8 B7BF0200 call qsr.0042F48B
- p5 v+ E3 x1 m3 i004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]* b5 l; ~' i' L% d6 p1 Y
004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],60 T g) {( S" [/ @& M& m
004034DD E8 A9BF0200 call qsr.0042F48B
/ f H2 J$ @8 a# r004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
; l3 c+ K7 L7 z004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3: q' U/ S# `+ o9 p; S2 ?
004034EB E8 9BBF0200 call qsr.0042F48B: G; O: T2 M/ c, z" |; d
004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
' c, G; F! O6 i+ x/ \6 g$ O9 y9 a004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2
2 o8 m' R( Q( N, B004034F9 E8 8DBF0200 call qsr.0042F48B
. q+ i& n" C7 }0 A7 G8 [004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
- o: G) O* X* K p00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1" y) I' J0 X, p% q; g
00403507 E8 7FBF0200 call qsr.0042F48B
5 {* q; C" M, T. J }0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
$ }, h2 E- ~ t- ~( ^9 J* a00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0
. X: N9 U. K; L) g' }00403515 E8 71BF0200 call qsr.0042F48B
7 h1 m- E1 H- ?3 W# N* e& t# |5 |0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]9 Y0 U9 P! c" M3 w& |; L9 a
0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
0 z. o+ j D/ S$ ~9 g1 I, H; k00403526 E8 60BF0200 call qsr.0042F48B
! ?1 b# B6 `3 q/ ]% ]" k. ~ O, M. V0040352B B0 01 mov al,1; {7 e; T2 |/ Z) c, J/ X$ K1 b! B, ^- ^
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]" E C% ?) [/ x1 E# o
00403531 5F pop edi5 D9 }9 o; g2 D4 W/ ?& I, t
00403532 5E pop esi, T7 V h: r) G# G, g5 I0 x
00403533 5D pop ebp/ A: w7 r" I! C0 ] R* n% ^1 o
00403534 5B pop ebx
8 ^5 q$ w: r$ y/ t9 m" e$ e) v6 M00403535 64:890D 0000000>mov dword ptr fs:[0],ecx
. K& V) x- f. J: n; `- c- H0040353C 83C4 30 add esp,30
0 U; P) w3 L/ _0 k+ G0040353F C2 0800 retn 8$ r' }. o0 x, I$ T: R! q, }' D
--------------------------------------------------------------------------------
! T4 {; [! E# f3 s P$ _5 h【破解总结】! N9 `9 ~3 p& D3 {' B5 T) X7 D
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^% ]% C1 ]' C; R8 x% ~: Z% g2 W0 u
用户名:yijun4 V1 k+ q, Z7 ]4 i- G; K3 m; ~
注册码:4893*7777*3726*7777*05293 R- A7 e& i6 h
--------------------------------------------------------------------------------# O* L! d0 A+ R; D
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡