|
|
|
【原创】破解Quick Screen Recorder+ R7 [$ r' v& Q8 V" K
【破解作者】 yijun
7 }+ D. \" s, q7 h【作者邮箱】 [email protected]
0 \3 A3 P* x, H( I2 @: l' _. f' T【使用工具】 OD,PEID
! v* z; g# z5 \2 |- L【破解平台】 WinXP) D/ _4 a2 I: Y D, c" `
【软件名称】 Quick Screen Recorder i1 [2 J( R( B. W! ~! s
【下载地址】 天空
2 ^; _0 z. R3 T0 B9 L9 g- P【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on. e% C( L y* ^3 R
【软件大小】 540K# |. j9 j- }, P/ x: R" \. t
【加壳方式】 无
* V% F6 Z* P( {/ {3 X: @1 e. Y【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)
5 ]! m- A/ P v- O" O3 h--------------------------------------------------------------------------------
4 T( T$ Q, ^% i. }7 z4 ^6 r【破解内容】
* o" U% Z* }) I! ]- |3 y; A. u$ Z; f PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
; E4 ~; T! n) f8 O00404C69 55 push ebp //在此下断8 x& L" I4 J( }. W/ L4 G
00404C6A 56 push esi
' [4 H# D, R [2 Y* u& U00404C6B 57 push edi& T2 r; H1 D e
00404C6C 8BE9 mov ebp,ecx
1 a5 Y& [5 J( `5 J* L00404C6E 6A 01 push 1
3 o1 H! q2 P, U; N+ }: D00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名$ r, g) U! p; r# x/ G/ M
00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]
# I: |3 E; K; Z# W- w6 `0 @00404C78 8BCF mov ecx,edi* c: h! [$ v6 `: k4 u' h" T0 j
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码
% s* {. k; s! ]: y4 {00404C7F 8BCF mov ecx,edi
/ o5 Z% f6 I6 K( p00404C81 E8 A73E0200 call qsr.00428B2D
! V# A3 @1 l, X' G* Z00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]4 E* n3 Q! T+ W' j J; r* j1 p
00404C89 8BCE mov ecx,esi/ O( w; a; k$ ]/ ]% r
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX% @ L- w Z! C5 D
00404C90 8BCE mov ecx,esi* u0 i2 a6 U1 }/ s' B
00404C92 E8 963E0200 call qsr.00428B2D
% g9 w( I `- N; x8 q00404C97 8B06 mov eax,dword ptr ds:[esi]
6 L3 w s. y4 n: U5 F2 Q" _) n5 l00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
8 y% N7 \9 N2 F% l) A% [- c00404C9D 7D 26 jge short qsr.00404CC5
9 G* z5 ^; I* \00404C9F 6A 40 push 40
! P9 y* U! e8 o# H6 o00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
7 H# T7 k# d: [& [( z& ?00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."
0 H/ N3 M: I+ }" k: ]9 B, y& g00404CAB 8BCD mov ecx,ebp1 Y% E/ Q$ L4 C, s% J/ H
00404CAD E8 C3840200 call qsr.0042D175
! v- _) s# U4 w) k$ n( p00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
8 D# I% C/ ?" Y3 U0 h7 L6 b00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx/ |( u l+ U! z8 i& ~2 c3 T
00404CBD 5F pop edi
5 k+ D3 |* B. Z3 ^6 V" Z" T00404CBE 5E pop esi
5 k/ n) R0 x$ u- ` |3 A" D00404CBF 5D pop ebp
$ P6 d& R: { M$ Y3 Z6 `2 C( k00404CC0 5B pop ebx
/ h% B) S% B' |; G. {* f/ A: P7 |00404CC1 83C4 18 add esp,18& Z9 H% D* m. O
00404CC4 C3 retn
, r0 ~4 r/ t/ R$ e2 W1 C00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C] P( W" p, N% d/ \/ D' J5 c$ R
00404CC8 84C0 test al,al9 T& Z0 E) g. t+ U& N* E
00404CCA 0F85 1C010000 jnz qsr.00404DEC8 G$ K, P5 v. u7 @- {' `
00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
+ t- v4 v9 R1 E; s, a00404CD4 E8 87E3FFFF call qsr.00403060
% m! `# v# `5 b" ]5 L$ E8 c7 n" d00404CD9 51 push ecx8 O" T9 G% V; Q! v+ ?! ~3 d
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
8 L0 Y/ p, \! c) i+ n00404CE2 8BCC mov ecx,esp
6 y* }$ e- |5 E* H$ z* M00404CE4 896424 14 mov dword ptr ss:[esp+14],esp; R% _5 d& {1 G3 k2 c
00404CE8 56 push esi
3 T: Y2 ?% o: O3 j# R J00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
) q9 ^" D" V# A% o9 i00404CEE 51 push ecx
4 `7 a) X" ^/ ?# }( u7 Z00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1
2 g' L2 ~5 a: j0 _% J H! p00404CF4 8BCC mov ecx,esp
, m% t2 l9 e' i- l h00404CF6 896424 20 mov dword ptr ss:[esp+20],esp6 F1 S, e( n; i1 C2 W3 R
00404CFA 57 push edi/ ~! w" g. [7 ?4 E" r/ H
00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0$ [3 _% Q0 G5 K7 D+ Y6 l/ u' A3 s+ K
00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]4 ]9 @! L) B, d) ^4 T* B
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],01 P: ]6 b* Q/ @* l4 u9 p! G
00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~
: D8 H) i8 M8 F9 T5 u, B/ X% E00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~9 x* x! v5 [/ c) z) ]4 T9 w9 @
00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
' f: q, r' d& x6 b5 c# R00404D12 6A 40 push 40
9 D0 E! \# D( {9 r00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"2 J5 O8 W% _* h) F, J- ?
00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."5 i; b& O4 ~% T" \3 [
00404D1E 8BCD mov ecx,ebp) `9 K- b$ S. Q( w/ g; U
00404D20 E8 50840200 call qsr.0042D1757 U( R9 s! h+ r: S8 g7 j, J7 ^7 a
00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]$ k1 b. I* Q% \
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1
! R a: a$ {/ c$ x6 m) Z7 t: _5 _: c00404D31 E8 5AE3FFFF call qsr.00403090
* q7 x, T, E7 D$ T# s7 U" ^4 t. I00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]0 Q% v' I" w5 e8 w4 |/ p# z5 B
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
( E- o7 {6 C+ x! F- I2 D4 _' i* @& A8 j00404D41 5F pop edi
/ j. o4 h C) j1 t" m T5 v; ?# z00404D42 5E pop esi" \' L$ @; X( w$ p1 d: w
00404D43 5D pop ebp9 ^9 D0 B' T( a6 W; S
00404D44 5B pop ebx
$ w4 {7 N! M6 v; f/ T, l' W- q; a00404D45 83C4 18 add esp,185 ]7 D) @. u/ j0 k, v: {
00404D48 C3 retn
. U# I% C3 R" B8 X9 N9 w% T* j*********************************************************************************************************************************************************, j' s2 U2 z; U! D9 N) P. e
跟进00404D09处CALL来到:& X6 i- ?+ q5 h
004030A0 6A FF push -1 //一路F8下去~~~~5 V0 P" h2 H- e' o: u7 P. J0 R
004030A2 68 C88F4400 push qsr.00448FC8' L( D$ \2 }+ I' D F7 B" T
004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
0 F. n% }8 A' L5 W( u# h4 X9 ~004030AD 50 push eax
( h/ w2 ~0 j* J% a7 j. c. `/ \0 M004030AE 64:8925 0000000>mov dword ptr fs:[0],esp
3 ~6 K, j2 |$ ]; ]+ R! d004030B5 83EC 24 sub esp,24! K1 i; V1 S6 \5 ]; a; P7 F m
004030B8 53 push ebx
! P# y7 t3 {. E004030B9 55 push ebp
' ], s; d, y0 F6 O! G) P q" K, t; `004030BA 56 push esi8 v4 H9 b5 ? ?' e& }7 Z9 @( o7 p
004030BB 57 push edi' B6 {% J7 j; r) F( F0 z/ \( Z
004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"+ s6 K% r% h+ ] @+ b; G
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24], {, ^& S$ X* m; l- C8 O$ f
004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1
- a" j W% b. C* v3 X8 G8 z8 b9 D004030CD E8 27C40200 call qsr.0042F4F98 Y5 W& { x3 }2 c4 b9 A: h
004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
' A% H* u( R( @9 q6 b004030D7 894424 2C mov dword ptr ss:[esp+2C],eax' o0 T8 E9 p6 O
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]2 T1 W% C* _7 f4 ~( N! G' T: z2 o
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
. ?3 q; Y+ p- `; w004030E4 E8 905A0200 call qsr.00428B79
% ^$ |/ g O9 ~/ ~. }004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]/ N4 I; o& H! S) J5 K9 a
004030ED E8 3B5A0200 call qsr.00428B2D7 i) |! ^6 h, ^5 B' x/ p5 Y
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
* @( M6 i: N o$ s1 K* [004030F6 E8 7E5A0200 call qsr.00428B79' @( q& C" {) ?7 J. r
004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
( M/ B5 r5 Q) w' w' S! s2 R9 m% Q004030FF E8 295A0200 call qsr.00428B2D
* x% o; x9 S" ~2 ]! M00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]
$ N: ?+ z! g9 h8 u00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
7 M. T+ t1 V5 o6 L" r0040310B 83F8 02 cmp eax,2
1 ^$ |% L! L! h0 T. u0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
5 l4 e3 _$ }& c2 J; {00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]# x& {4 C" D0 Z5 G4 b" u- l% Q) ^
00403118 837A F8 18 cmp dword ptr ds:[edx-8],18
" K( F% A0 O6 `: Q! P6 K0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳
! w* a1 o9 j7 g7 z. ^7 X00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
! P4 w% U \2 x00403126 6A 01 push 10 b- X% A" F q% z5 K
00403128 50 push eax' r% \9 M' u& q' M8 Y" L
00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
& k7 C2 J5 m, A1 e5 S; C. q+ r0040312D E8 C4550200 call qsr.004286F62 o7 T& W5 R- ]+ C; @
00403132 8B00 mov eax,dword ptr ds:[eax]
4 }9 I6 e/ Y; q% L! S' I! [00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
8 F8 Z+ F7 [' }9 d( @" {00403138 50 push eax
0 [$ Q5 r( y! l. f0 b: \00403139 C64424 40 04 mov byte ptr ss:[esp+40],4
+ `$ N/ f5 ]- { R0040313E E8 4D560200 call qsr.004287903 V5 G# j/ R7 m8 c' j
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
6 R* x7 y5 x7 A! L# A00403147 8BF0 mov esi,eax* p* q' }' p6 X
00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3
! H8 m/ Q( h' d' g& V; F0040314E E8 38C30200 call qsr.0042F48B. }9 Y- `2 h. A( T
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]3 _6 G5 k$ l1 x+ V9 K* p
00403156 B9 3E000000 mov ecx,3E- F2 u+ C& Z4 W$ `- f q4 P9 {9 `
0040315B 99 cdq
4 Z! x) K* I9 }) ^0040315C F7F9 idiv ecx
$ a4 e6 G5 i7 g1 x0040315E 6A 01 push 1* v6 @7 q8 z3 G2 o9 r. O; Z
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]
: B' \" G x* z. M00403164 8BF2 mov esi,edx- J x9 ^) S* P
00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]: D- n+ v4 Z$ |: P3 H
0040316A 52 push edx. n" n# p( t; {& L# p+ ~$ H
0040316B E8 0A550200 call qsr.0042867A# k, L) s' r6 [, ~3 r B
00403170 8B00 mov eax,dword ptr ds:[eax]& }. S6 U6 r" P
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
% U1 h: n6 X5 {( v9 |% R+ n00403176 50 push eax
5 z+ T. K" v7 j8 V6 A. r! N! @0 ~0 k: g00403177 C64424 40 05 mov byte ptr ss:[esp+40],5; N3 ]1 [4 {7 y
0040317C E8 0F560200 call qsr.004287902 v# \8 p0 Q6 C7 f3 {# v
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
) i" W, s' [* o2 k# r+ y5 E/ i$ V00403185 8BF8 mov edi,eax
l0 S- X/ u4 H" N, q00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],38 o! C( O6 r1 V/ I
0040318C E8 FAC20200 call qsr.0042F48B
' B0 V" X- P! v/ D: L% y( E4 B1 L* u00403191 8D47 0A lea eax,dword ptr ds:[edi+A]* s8 q: L0 v! l. c6 ^0 _* X
00403194 B9 3E000000 mov ecx,3E
% T8 O, E4 w0 c8 p% [6 Y& d# m00403199 99 cdq
. N+ @2 J3 F: f3 j! i# H0040319A F7F9 idiv ecx( O+ f$ C/ [$ X% _2 g
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]! |, q& T* l& u1 d" u
004031A1 894424 28 mov dword ptr ss:[esp+28],eax
- l- Y* T" }+ J2 v004031A5 8BCA mov ecx,edx
, F7 }' H0 O* w' H4 b1 d4 f004031A7 894424 24 mov dword ptr ss:[esp+24],eax) E4 g& u6 b, D* `# u
004031AB 894424 1C mov dword ptr ss:[esp+1C],eax0 _2 T) A" S! I# m7 E& Y! u
004031AF 894424 18 mov dword ptr ss:[esp+18],eax
. _ j9 S! e$ h1 d004031B3 894424 14 mov dword ptr ss:[esp+14],eax J8 z5 k ~( m% ^1 X
004031B7 894424 10 mov dword ptr ss:[esp+10],eax
5 P, U" h4 C$ n' n; o8 W004031BB 8BC1 mov eax,ecx7 O0 E+ t; M0 H3 i* P( M
004031BD BF 0A000000 mov edi,0A- z+ @& @8 n! `
004031C2 99 cdq
8 g6 i8 O7 ?, C1 `7 t* Z9 D( |/ ^8 C004031C3 F7FF idiv edi
7 {( ~. l. O. E* |004031C5 8BC1 mov eax,ecx8 ~1 ~3 F& E, w6 o
004031C7 B3 0B mov bl,0B) R) Z$ B3 i: l& O
004031C9 0FAFC1 imul eax,ecx4 f' W7 Z4 c( V$ h5 d/ _; _# k
004031CC 8BCF mov ecx,edi9 j, R7 ~( W% y1 h* b9 D
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl+ |' J/ E2 O$ u) D* B
004031D2 52 push edx4 `- f+ W/ `0 [: e
004031D3 99 cdq# R2 M/ U7 o6 c/ j1 _
004031D4 F7F9 idiv ecx
4 k# Q! i, E* e6 x* {004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]
$ {6 F5 x* y4 \& {; |* K# p' S004031DD 2BC6 sub eax,esi7 g- f+ Z; H/ P4 o( B
004031DF 52 push edx; c+ d1 K4 E* E& B( T
004031E0 99 cdq
1 q2 @4 I0 j" `. m* R004031E1 F7F9 idiv ecx c2 O& v: U4 M8 E, a: Y+ }2 J0 d
004031E3 8BC6 mov eax,esi
5 ?: P/ x# @* Q1 Z004031E5 52 push edx
5 U3 }0 @' w2 ^6 }& D5 g004031E6 99 cdq; g8 W1 n' |+ V0 w
004031E7 F7F9 idiv ecx, W( {$ X/ P: k4 u. z# D
004031E9 52 push edx t" I* `, z# a) r. `
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
# p+ K* @0 m# y7 N& \004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"9 g" A, A+ s+ I4 |9 p+ H
004031F3 52 push edx
" z% U% C2 O/ e: H004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是48935 |. B, E7 a" z( v
004031F9 83C4 18 add esp,18) r: M# {4 y% ]2 C* U# g
004031FC 6A 04 push 4% g% `6 H7 |8 H: H" X& H7 P
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]
( `& w$ B V, h/ k" B3 m00403202 6A 00 push 0
5 c1 [( G. ?9 Z) F- F00403204 50 push eax2 J1 K& B$ ]) M
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
2 J2 c3 |- }# J8 [7 d0 O% J00403209 E8 D6530200 call qsr.004285E40 o2 n$ J% T* y& n2 ^3 G/ t9 H
0040320E 50 push eax
0 O9 l4 O- e4 U" F0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
5 }' H4 i; ?: f7 v" e00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C& g$ c# [- [) ~, @3 d9 d. a
00403218 E8 A7C30200 call qsr.0042F5C4- A8 A' F+ ^; O
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
6 ~! z# I: W6 n2 @& s$ M& ^00403221 885C24 3C mov byte ptr ss:[esp+3C],bl/ C% V! I/ }7 l' j) t: l! {
00403225 E8 61C20200 call qsr.0042F48B! N+ A+ a7 t2 V2 P; ?# P& `& _
0040322A 6A 04 push 44 x3 E" |* a/ S$ l8 J: W
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]& Z/ F( Q9 ~) q8 j& Q. d3 O) h
00403230 6A 05 push 5! L$ K# j4 @' o4 O7 _3 s" {
00403232 51 push ecx
0 B [0 A2 W4 W7 w00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
- r; [6 _4 C) `1 f' ]3 j5 S' l00403237 E8 A8530200 call qsr.004285E4+ e6 k, H: F+ Q8 ~7 B6 A* t
0040323C 50 push eax
. |1 F% J: J& m3 R* h) w5 B9 |0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
$ R. T o3 @# c6 u6 L. t00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D' i; u% N& A& R/ o: F" C/ d
00403246 E8 79C30200 call qsr.0042F5C4* h. ]/ T P1 m, j/ q- q% Z
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]4 a3 q1 @" `( | r5 H" [8 ?. O
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl
$ A6 I* T2 @; K+ m+ P3 p00403253 E8 33C20200 call qsr.0042F48B3 w, {$ T6 m' a) S5 ^2 f
00403258 6A 04 push 4
: `1 F, F) Z& H! J7 l# z1 |0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]5 R* a: i. ^+ u
0040325E 57 push edi& P6 L& I9 ?6 f& F8 M `5 M2 ^ a D
0040325F 52 push edx
8 u% v& w4 N, D/ f e00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
0 C, Z* W" c, K) r* Q" z00403264 E8 7B530200 call qsr.004285E4
s8 j5 D) d" A( Y00403269 50 push eax
2 v! P2 D& A2 E" b0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]. a9 B5 w1 o4 I
0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
& R- @+ v, S4 C6 R2 A4 L% \00403273 E8 4CC30200 call qsr.0042F5C46 E9 B) F; m! |
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]* I2 z9 Y, I4 x8 e e( j! l
0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl
3 Y5 m/ W. V/ u1 B00403280 E8 06C20200 call qsr.0042F48B
( Z! u' F! f" j00403285 6A 04 push 47 }% ~6 D4 q( F/ y2 B9 h
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
% \# J, d |4 V8 \; |0040328B 6A 0F push 0F' s; J4 l$ C" P
0040328D 50 push eax/ N5 g9 ?% i/ E+ S
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
, z/ X0 r! X# r00403292 E8 4D530200 call qsr.004285E4" d. ^ i* N5 E% {1 u q
00403297 50 push eax
, A3 g4 G# U' D8 [" q7 f8 ]9 C6 x6 Q8 n% u00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]& H- r6 b. A0 q( {4 O3 G0 v6 v8 I g
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F& [* ]$ f- \& [1 r
004032A1 E8 1EC30200 call qsr.0042F5C4
! P/ S$ |# t/ s; j+ b! |004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]* }( D( |5 s3 O# S
004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl- q* n! ~/ { _" V. a% d
004032AE E8 D8C10200 call qsr.0042F48B
. M% c$ ~7 \, M6 i004032B3 6A 04 push 4
9 G& l; b% D& b/ D( K. X" F004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]& E' D) n2 c1 x* t
004032B9 6A 14 push 14# ^/ f7 B9 Z0 A3 h% W
004032BB 51 push ecx
0 t/ f% i7 d) M& x& {' v004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]' `7 D: E& T& R0 F4 A1 F* y6 x6 j
004032C0 E8 1F530200 call qsr.004285E4, O5 O1 V+ z; V5 N- j9 H
004032C5 50 push eax3 J$ p# a+ }# G3 g/ U
004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]% e, ^7 n3 \/ X$ o: o
004032CA C64424 40 10 mov byte ptr ss:[esp+40],10
) }, P* Z. t& r( b) d004032CF E8 F0C20200 call qsr.0042F5C4. T% w! q& _0 H0 T
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]& G7 ^! b+ {8 X$ S* M' P
004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl- [( a. P! `' m3 s) f8 q
004032DC E8 AAC10200 call qsr.0042F48B; c8 B" T# C+ A
004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
/ |! H! K2 b A4 b4 b) ^+ L+ i1 V004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX5 z) {& y: K* ^) O f7 }8 G3 H
004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL; j" V5 u" v. d' T0 A) q
004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL8 X0 _4 P8 J1 W$ b
004032ED 8ACA mov cl,dl ; DL送CL4 B. c+ ^7 f) E2 `" J" Q
004032EF 3AD3 cmp dl,bl ; DL和BL比较3 Y) ~3 \# a* u9 f+ Z, B' e# w& f
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
9 s& m9 [, w$ l6 ?, H) w) D9 J004032F3 84C9 test cl,cl' v) L! v3 B1 n' |$ o2 A- w Z
004032F5 74 16 je short qsr.0040330D0 O7 l9 H4 i$ S) v- Q: E( N
004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL
+ _- V9 V7 y0 ~7 q- k& o004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL( N5 b+ M% c, b0 V$ w
004032FD 8ACA mov cl,dl
% s+ G# H: Y! S: o7 u. T5 {8 V0 e004032FF 3AD3 cmp dl,bl ; DL和BL比较2 V' b, z. s6 d
00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
# H* V2 k+ l& x+ l00403303 83C0 02 add eax,2 ; EAX加2. @ r1 C2 k* C4 o$ v. }! m) E
00403306 83C6 02 add esi,2 ; ESI加2: n9 g2 g# M" [, k; z. K0 |
00403309 84C9 test cl,cl
! m* _9 Z+ |9 \' m0040330B ^ 75 DC jnz short qsr.004032E9
9 X0 B- `7 h$ h8 b7 U& f0040330D 33C0 xor eax,eax
$ q* C4 Z* A! a6 Y) r. W/ B9 M0040330F EB 05 jmp short qsr.00403316
& ]$ T5 n& ? b$ r- P* \, U00403311 1BC0 sbb eax,eax( o! Z. m. q* R
00403313 83D8 FF sbb eax,-1
* m! S- H/ u2 g$ I00403316 85C0 test eax,eax
+ x m6 M7 Z/ q, z' h8 L- c' I9 r00403318 74 0E je short qsr.00403328
+ g \) C* s! j6 r: e# {! S( A0 a0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
; e) y C7 Q3 [( Y M1 V0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]. q. t$ k8 ^" k% A, J4 f
00403323 E9 F0000000 jmp qsr.00403418
) O$ s Z) R4 Q$ s5 e00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX. K' H- s& ]( e: p3 f* k( A. q
0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]3 m5 p: \4 S& s L4 i! H
00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]' J$ X2 L& e& w) P5 S2 h
00403333 50 push eax$ ~# L0 x9 q+ Y8 B1 \5 v
00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX
& Y" c; j3 Q4 A$ P1 _( i. F, A; [00403339 50 push eax$ V# S% k/ S# F8 A+ F
0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX
; M9 P- P6 I8 j6 ]0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX7 s% i5 V6 \2 S. E2 y
00403343 83C4 04 add esp,49 O; @$ r: z! e; d. M
00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI
( E0 b b1 @, o1 z, B0 q: _$ J) l00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]: \% E, j! K& E# H
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
- D6 Y; z! v; @$ g1 D9 ^0040334F 50 push eax, N' E& d, S) r6 `5 }8 X0 i9 r
00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
4 M/ I" N9 n- o+ |3 n5 A' |00403355 50 push eax. j) N! A# _0 x
00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX7 v7 `# H" p1 [
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
/ M4 F' T3 a3 W3 L0 q6 |% J0040335F 83C4 04 add esp,4& h, C, J+ Z2 l: E
00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI
$ R8 {6 N( k0 s- h! T8 u2 B2 g00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]9 r. U: t1 J' k9 s5 _4 p
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8], i, q! W# c/ t3 M# a
0040336B 50 push eax
3 N: B. T: p) a0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX
& d) a/ S" b9 F+ A8 y/ g# N) A00403371 50 push eax7 ^, j! U2 y$ b7 U$ `9 Z
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX0 C/ u4 S7 C) x5 f; a( g
00403377 8BD8 mov ebx,eax ; EAX送EBX
1 [2 e* {% o) n( W2 E' w00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX
# N3 E. @8 Z- M; Y! e0040337D 83C4 04 add esp,4+ y1 N T* Z0 {+ ?- D3 p7 W6 h
00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
9 [3 B y# o4 @2 R00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]
- B7 H5 \3 d8 R' h00403387 50 push eax! W; J% M. D: s8 ]
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX$ u+ I! I; a5 p& }* l) z- F
0040338D 50 push eax
; U5 n) U6 q: [5 X, `8 Z0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX) O% A" G" t6 v2 f$ Y# o6 e
00403393 83C4 04 add esp,4
* H4 a8 ~' O5 v7 D$ m, N00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]- L+ n" L* T/ _# W
0040339A 8BE8 mov ebp,eax ; EAX送EBP
& G3 t- z! m6 ~$ @5 _0040339C 6A FF push -1( R; Q2 p% R5 _. j \, [5 u# U
0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX g h& C5 N* T0 N3 M
004033A3 6A FF push -1
+ } `, e, I% C8 r* L5 y# k004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
& M9 U+ }. A ?" i004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
( Q5 _# K% i7 m* D8 ], v+ Z/ Y004033AE 6A FF push -1! C- @* h" H% u: m. u0 a
004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX
5 }/ X& Q7 J7 q6 R004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX
) h* M! A. m; }) \004033B9 6A FF push -13 Z6 M7 y0 @0 N. |; S# d7 V
004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX
# L6 G1 B3 r5 P) A004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX; x. i" _( t7 E% N( v
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX( q0 W; }( b8 ^6 B$ X H& m' ]( c
004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
) q- N7 W# N/ |: O1 ?$ s# J- m2 {004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
O# N' K/ s R0 K004033D7 D1E0 shl eax,1 ; EAX左移1位
/ Z+ k+ y; c: H0 J6 K004033D9 99 cdq ; EAX扩展
+ y* E' X3 B3 a004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中6 [) l/ N- M- T5 i7 A" }
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
+ H3 S1 \# ~8 S) @: q" S/ `004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)2 i% k8 V( g- g; Q2 C; h
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A
' R3 \& ~, L+ n004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]5 @( Q& `2 Y% k7 w7 N! p8 o0 f
004033E9 EB 2D jmp short qsr.00403418. N; r1 t, D1 S& |$ t
004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX
( x" s5 U# f: u004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E26 b, C M8 M" z9 J0 }4 D
004033F7 99 cdq ; EBX扩展
0 A( S& O }4 B& i S004033F8 33C2 xor eax,edx ; EAX和EDX取异或/ j' A! G- R+ j+ u
004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX# T/ t, {( N0 b: T3 y1 T
004033FF 2BC2 sub eax,edx ; EAX减去EDX
* L, g7 ~. O7 o/ P1 `! u* [4 c00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]5 c1 B. \: c% e4 |5 E& B# a4 N3 {: O. Z
00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX9 c- F8 e4 h: v/ W: t$ |3 G7 u( ~
00403409 99 cdq
; C# ` ]9 i, y, ?" v0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
; f+ L! X% Y. T" u2 N% F0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX
, _$ E' Y. U3 ~6 t& x6 z# m* Q00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较( \: ?2 g2 J9 G; y- s2 ~9 b5 U c
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳); z1 W" q1 ^( @
00403418 E8 6EC00200 call qsr.0042F48B ;
7 ^( \& e0 J. W% ^* K7 ^0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]. w- W' Z. S( y
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9
7 e9 E6 A4 M ^- x* J00403426 E8 60C00200 call qsr.0042F48B) W* q3 ^1 l' O0 C' ^4 c
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
# V% O B8 x) d }% A0 X3 O0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8
6 M' i& {' \3 i1 e00403434 E8 52C00200 call qsr.0042F48B4 _; v- h I4 e. J8 {' W* x
00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]2 j$ |; j+ d/ D" U* ~- _2 ?
0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7! A. l, O1 S2 Y: c* f" ~+ E
00403442 E8 44C00200 call qsr.0042F48B9 ?5 b: [' V* L, X
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
) E- J5 e4 U# n0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6" u6 h( B0 j) u% r5 _ r
00403450 E8 36C00200 call qsr.0042F48B2 `, Y. y5 w) f6 l- Y2 d
00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]& D& _2 s* Y) |; z1 ^" z: d
00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],33 c* Q% A& o0 i" G( W: t
0040345E E8 28C00200 call qsr.0042F48B
7 q: n2 u h; S f* t! t00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
* p# i- F6 o7 K. R* d' T% ^00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2/ ]9 d9 k3 C( ~$ K
0040346C E8 1AC00200 call qsr.0042F48B& ^0 X& ~: s8 o' m3 |
00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
+ w1 G2 E% P6 h, c; I: n' q00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1
$ M* `; K; M" y/ _( p$ ?* D9 |6 N0040347A E8 0CC00200 call qsr.0042F48B
& d+ f! b- t3 P& B9 f$ y2 i0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
3 X2 }0 v s, Y7 X& O00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],05 K5 g' A- f i+ r @
00403488 E8 FEBF0200 call qsr.0042F48B) s! U' D. n2 N
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
+ C* E' Q* \% `7 S00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-18 V2 }0 [& Z0 F4 t- Q
00403499 E8 EDBF0200 call qsr.0042F48B
' |* V2 j0 H, C# c0 P0040349E 32C0 xor al,al ; AL清02 g& a( L( {" }! f5 u: w
004034A0 E9 88000000 jmp qsr.0040352D
% j ^) r% h. A! k4 x# y! ]6 Q004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~1 E( g8 U- |. ^. \) A2 K8 h
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
, s' L0 x/ b' o. G4 P8 k; z004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9
" ~& h2 H1 E* h004034B3 E8 D3BF0200 call qsr.0042F48B
0 }' W4 R4 m9 ~; I* A& D v7 \004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18], Y3 {5 F1 P' q, K$ v
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],80 E; q1 w& ?. H7 M" |
004034C1 E8 C5BF0200 call qsr.0042F48B
' M# N. z4 u9 x' v004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]' [" N8 G1 e( i( u1 N0 f: P$ s
004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7' `$ Y5 w; Y9 m1 q- a
004034CF E8 B7BF0200 call qsr.0042F48B5 h6 n2 ~/ F/ v, q
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
$ I! _% s, {6 h( t6 l1 r004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6" I+ t6 G; ?: r! o0 ~9 V ~
004034DD E8 A9BF0200 call qsr.0042F48B
7 K$ f9 o! ~; P7 v# N w& B004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
, o+ Q' w7 z o4 y7 N004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
" s8 p- R! \% T$ L5 l004034EB E8 9BBF0200 call qsr.0042F48B# B, R( S. \3 q1 i$ z0 k! X. K3 \
004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
# [4 r7 f! S- F/ L: V1 _- V5 A004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2" k0 J& _/ s( O: x7 T' E
004034F9 E8 8DBF0200 call qsr.0042F48B
}$ s9 A8 Z% y8 a5 v! I004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
* E0 A: W' o; N2 m, t: ~00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1: Z4 h1 }4 a5 g1 o! }( o4 ]
00403507 E8 7FBF0200 call qsr.0042F48B
/ F2 A! {$ b! P0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
+ o" M" q/ [% v5 g8 B% ]00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0
2 d' o6 y- @! L+ r0 r00403515 E8 71BF0200 call qsr.0042F48B; \9 f! n; d7 @/ E/ @
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]" y0 n$ q: F4 }1 X$ P, v5 n4 H
0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1* ?8 p; r) N' W; l( P
00403526 E8 60BF0200 call qsr.0042F48B
& ^2 N( K2 B# i0040352B B0 01 mov al,1
, H" M: K- U" _8 ?* O+ P0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
, Q( O+ l8 E1 l9 x00403531 5F pop edi5 r0 i3 o- K+ o, ^5 [
00403532 5E pop esi0 ~7 y E/ E L0 t+ c% }
00403533 5D pop ebp- r$ v5 u2 x0 {" \/ E
00403534 5B pop ebx4 [8 N' l; z+ h+ g$ y7 M
00403535 64:890D 0000000>mov dword ptr fs:[0],ecx
8 p, n7 s# d% g- U5 f) z0040353C 83C4 30 add esp,30* A: a4 K$ ^2 Y( }& M
0040353F C2 0800 retn 8( R- h" J! ~/ W
--------------------------------------------------------------------------------5 K- ~9 V& j0 N4 e& S
【破解总结】) [& ]/ Z7 j! z0 c3 q3 B. P
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^- H' m5 A$ Q4 l& H. m. w
用户名:yijun% K; {. D) |& Z4 V ^- t
注册码:4893*7777*3726*7777*05292 f: f1 U% {8 v. q/ Y0 ?
--------------------------------------------------------------------------------
" F S; g; v* ^7 {# F【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡