|
|
【原创】破解Quick Screen Recorder& J% ]# {3 _0 v* ?; O8 z
【破解作者】 yijun
+ O& y# t. ~$ x! M【作者邮箱】 [email protected] r+ G6 i* V: @) Q. X
【使用工具】 OD,PEID' @- {% V# {, H) |. b
【破解平台】 WinXP& x! @; x# R M2 u! D7 ?
【软件名称】 Quick Screen Recorder; ]# e Y0 q/ S# M; B! _
【下载地址】 天空
% O8 T6 s o1 u& X【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
: k: b( C& o+ [& D t. _【软件大小】 540K! i" f" s3 x# e
【加壳方式】 无
8 x/ R. M# K! ]【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)
# W$ y7 q: @0 @ @- v. g--------------------------------------------------------------------------------
, S) }# X; G; D2 S【破解内容】+ O$ @" l- u5 ~" W& S) w
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:( H$ R+ C4 g- v
00404C69 55 push ebp //在此下断: T w' C$ F) S b/ i
00404C6A 56 push esi) K! u- y- r' e) q& {' A
00404C6B 57 push edi
2 m4 p* M+ Y1 b& b" H- _00404C6C 8BE9 mov ebp,ecx( V7 F$ B8 W% ^) a. ~! r- ~! j2 ~$ G
00404C6E 6A 01 push 1
: s: x$ V/ u! ]- m. m00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
# T5 y# D7 n/ Y' O0 o9 }00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]/ _) \# n! ], S( M# H
00404C78 8BCF mov ecx,edi& K0 j* y9 g# N) L! W4 d1 T
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码
d$ ?& \& H" V% c/ |- _5 b00404C7F 8BCF mov ecx,edi9 ~' j- M) A2 f
00404C81 E8 A73E0200 call qsr.00428B2D% N" a4 N1 V) c4 S4 d# v
00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
4 S6 }: ?8 n; h3 I [& o00404C89 8BCE mov ecx,esi
+ ]! Z$ r# {# _: |7 t6 S/ {00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX. _; O g. M+ h; ?
00404C90 8BCE mov ecx,esi
0 T$ x: ]- `3 ?: @$ w1 y00404C92 E8 963E0200 call qsr.00428B2D
; l" e/ Q5 v5 n$ t00404C97 8B06 mov eax,dword ptr ds:[esi]) X7 ]: o) u# }. i3 s" g# U) ]: f7 ~
00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],27 F( X. X6 L: p9 o3 ^" }7 m$ f) ]
00404C9D 7D 26 jge short qsr.00404CC5: \& @8 I9 ~! M7 S& n" N4 j
00404C9F 6A 40 push 40
$ `) V6 Z; h8 a6 g& H# s% C0 J00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"5 L! n( ?( z/ d' [, t; P& N* B+ C$ w
00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."
& L- y4 o$ [, T: X5 F! [$ o) G00404CAB 8BCD mov ecx,ebp
" ?6 c' {6 ]0 j00404CAD E8 C3840200 call qsr.0042D175# N/ a3 L8 h: R4 n: o
00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]4 S: ~1 H7 x- K% |* \7 l1 C
00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx
: o1 \% s& }; n( z' I7 l00404CBD 5F pop edi7 W- u6 r/ f! H2 L: d, |: j
00404CBE 5E pop esi7 U! k! w- @. Y' [
00404CBF 5D pop ebp2 h# B* M# L/ L9 t, c
00404CC0 5B pop ebx
5 A- }- L0 F* f6 T. j7 `0 o00404CC1 83C4 18 add esp,18! _5 k7 l6 E/ N# M
00404CC4 C3 retn
3 l3 V. c+ ^/ q9 B( j00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
; J) G- T7 k3 b( r6 x% \00404CC8 84C0 test al,al
6 M: @& H1 f0 @: i, f00404CCA 0F85 1C010000 jnz qsr.00404DEC7 f2 P# |! Q! _5 t& c( C K
00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
) A) c/ O, ~' R) G* ~9 \1 U00404CD4 E8 87E3FFFF call qsr.00403060* S# T' X K2 g( [" g! q$ B
00404CD9 51 push ecx' x! b, s Q, C' T2 p
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0/ y5 w/ `& r: i3 ]& I U S
00404CE2 8BCC mov ecx,esp0 q( `+ x6 H3 P! D. ]
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
) \- a) _- V6 |. `* b00404CE8 56 push esi
L5 j& L6 U+ A" I, B5 `8 m00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0" R5 _$ r. g6 G9 q; [
00404CEE 51 push ecx
3 Q3 b2 j7 L1 g, a00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],10 |( D9 N) @5 I2 h/ i
00404CF4 8BCC mov ecx,esp1 y4 b+ N6 N' o& L
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp7 ]( \! U2 F! ^) q! ^3 |; B8 ~& Q( F
00404CFA 57 push edi- r$ q9 x1 k5 @
00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0, i. f* X( e; k. H9 w
00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
& Y& t( X0 p6 V00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0
8 \# ]; C: B5 q5 C00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~
) `! {+ C# u# c/ S00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~2 Q6 V* j, j! D0 i& T; }
00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
8 w! C B" J' r* L0 K4 ]00404D12 6A 40 push 40
0 N. _7 H' z7 |00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
8 z/ d0 K' Y( Z h% T Y5 D+ z00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."- T: Y' P7 a/ A- U% s. y q- ?: J
00404D1E 8BCD mov ecx,ebp
* }0 U$ i# {% Z a" _+ {00404D20 E8 50840200 call qsr.0042D175+ a7 {: Y" z% O S5 S$ k
00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
9 K! G1 s! c+ Y+ D00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1
/ S0 T4 ]' v7 v( E8 N. J i5 U00404D31 E8 5AE3FFFF call qsr.00403090) G! Y: M6 b8 N0 E; T
00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]4 G! E, S, S5 J" B( S+ I, ~/ g2 g
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx% j, y) j( f/ ]! N r. g
00404D41 5F pop edi' ^! M; e5 F0 t |( F) o
00404D42 5E pop esi
+ b( G+ `& K0 S! a00404D43 5D pop ebp
+ C) v2 Q& y6 k0 H00404D44 5B pop ebx
# T( ?( A) F: G! [/ }, [9 A00404D45 83C4 18 add esp,18' {1 [/ \% b u& I# {+ D4 y) Y" d: J
00404D48 C3 retn" l3 x) T+ i, I
*********************************************************************************************************************************************************
7 }0 z' z" }& l5 y8 W/ {跟进00404D09处CALL来到:
5 P$ p1 p. j0 J& s004030A0 6A FF push -1 //一路F8下去~~~~3 i; F/ Q; N; _2 g& j( A
004030A2 68 C88F4400 push qsr.00448FC8
# @ G0 _( M, O+ B3 t004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]) M1 v' Z" N- N) D
004030AD 50 push eax
! ]$ A+ N7 P w" U! n' V004030AE 64:8925 0000000>mov dword ptr fs:[0],esp
* v4 [5 q% \9 E1 S. g- M004030B5 83EC 24 sub esp,24
+ _% S( ?" B4 w' ^0 d4 \- j004030B8 53 push ebx2 D3 S5 u d1 ?
004030B9 55 push ebp' M n9 p( t+ o+ j" _. n
004030BA 56 push esi: E! M3 K9 o! X2 J8 e. {
004030BB 57 push edi
% ?7 `# k1 D3 X( u" Y% U004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"2 z% c, J8 e5 y, J
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
) k' a5 k7 f) I) t F+ {- N9 G' b004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1" Q* R( f8 G! x7 {) a
004030CD E8 27C40200 call qsr.0042F4F9
) ^# i. P" x. G# M9 l" w$ M; G004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
* x m$ r/ u( }+ c ~2 o) g004030D7 894424 2C mov dword ptr ss:[esp+2C],eax' Y) J+ n2 r8 W) w6 R: @: n
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
; U4 m+ i" s# j; k7 r7 Y004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],39 z0 a% a- M% o: r# s) I h
004030E4 E8 905A0200 call qsr.00428B79
{+ o2 k. P# b004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
7 J" {( X6 L s8 k7 N& x& |004030ED E8 3B5A0200 call qsr.00428B2D1 }" W* M2 P. P+ }7 l8 l
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
( T& [& q: r2 M3 o* u1 j004030F6 E8 7E5A0200 call qsr.00428B79
; [, d% p8 `9 f: P2 A004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
" k2 s2 _* S9 M# N9 u. R004030FF E8 295A0200 call qsr.00428B2D* ], c6 b, c! q
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]# a1 ^: O3 ?; j- |# B3 n+ V2 S
00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]: f2 r0 N4 u9 ~6 v
0040310B 83F8 02 cmp eax,2: p& [- M; s9 G! V
0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
, \, N& v' ^! X+ g; E1 ^00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]
2 y+ z! R, M$ g; L00403118 837A F8 18 cmp dword ptr ds:[edx-8],181 P2 H& N* ~6 C& f
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳
9 ^) c1 p( k. _ `9 h3 l00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
1 B& j4 Z; W, K! h O00403126 6A 01 push 15 u- b# U1 @- n3 e5 W
00403128 50 push eax
' d+ C1 a ^' n& A" A2 o5 B3 f00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
2 E4 h' k' G( q, ~) p0040312D E8 C4550200 call qsr.004286F6
7 y2 e- A8 k7 M9 X9 @2 R+ h00403132 8B00 mov eax,dword ptr ds:[eax]: [6 q; K* C5 u
00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]8 d* V' T0 y9 b3 I
00403138 50 push eax
; x, l9 ^7 Y4 m00403139 C64424 40 04 mov byte ptr ss:[esp+40],44 x7 s) u* v; |2 i/ K/ i9 X& L
0040313E E8 4D560200 call qsr.00428790% o& M. [4 P+ {3 S R
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
( I+ L, F* C' p- i2 ] F; `00403147 8BF0 mov esi,eax
) y+ A/ ~: X7 a1 Y8 f00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3( ?4 t) t2 ?( g* S! l0 U
0040314E E8 38C30200 call qsr.0042F48B
) f, L5 T' T% ?00403153 8D46 0A lea eax,dword ptr ds:[esi+A]
5 A5 K( w w, f$ o5 s00403156 B9 3E000000 mov ecx,3E
$ C9 l' u' E0 K2 R0 P4 q# N0040315B 99 cdq
b+ R9 c8 D* `( J1 |0040315C F7F9 idiv ecx- f5 r/ h* ?" j2 l
0040315E 6A 01 push 1
; Y+ V" t0 c" ?3 a+ Z \% b$ L) @00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]
' O8 _' E. ^0 R9 P00403164 8BF2 mov esi,edx% j! _* W2 c* k- r
00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]1 v9 L% e( n# k! M: t# H
0040316A 52 push edx
; M7 ^4 L9 _+ v0 Z4 \/ n7 ?0040316B E8 0A550200 call qsr.0042867A
; L( M: W3 A7 y( V# a+ P00403170 8B00 mov eax,dword ptr ds:[eax]
+ I: V: m) u+ B+ ~00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]& k3 P$ i5 ~% z! a9 b9 m6 M- l, m
00403176 50 push eax
9 Z5 d2 S& B5 `3 D b* G00403177 C64424 40 05 mov byte ptr ss:[esp+40],5
8 T2 D! @0 T, E" I5 u0040317C E8 0F560200 call qsr.00428790! U% t4 u/ H. q7 A
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]7 @$ ^+ t2 u& p, V4 }" k
00403185 8BF8 mov edi,eax: x' H' [! s! ^7 }& _: \0 _
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3
2 J2 v$ X7 l" Z: Q; w0040318C E8 FAC20200 call qsr.0042F48B
. A; \( x/ ]5 {00403191 8D47 0A lea eax,dword ptr ds:[edi+A]
7 q7 }, Y- T" r( o00403194 B9 3E000000 mov ecx,3E
* N9 y8 g% T" j) B0 g00403199 99 cdq
1 y# m7 d5 X; X6 ?6 N4 s' U0040319A F7F9 idiv ecx
9 ^: Y$ M: ] J" o; F4 Y; r0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]# b2 G, \ C9 ]" I% s( Z! J
004031A1 894424 28 mov dword ptr ss:[esp+28],eax7 j& q% C/ W( K0 K. x8 }
004031A5 8BCA mov ecx,edx
3 c2 j, }( b x6 g4 o004031A7 894424 24 mov dword ptr ss:[esp+24],eax1 ?$ K/ ?* |6 N4 i6 U2 @* X0 Z( K
004031AB 894424 1C mov dword ptr ss:[esp+1C],eax) s: P. B) n2 G
004031AF 894424 18 mov dword ptr ss:[esp+18],eax* ?, B# x2 ]' T3 O6 z9 a
004031B3 894424 14 mov dword ptr ss:[esp+14],eax- y, c0 v7 H2 J- M& o
004031B7 894424 10 mov dword ptr ss:[esp+10],eax
6 n. L8 K; ?3 e) t+ d- r004031BB 8BC1 mov eax,ecx
. H% ~1 ]5 T/ s! e004031BD BF 0A000000 mov edi,0A
9 }9 [$ c# @9 R0 l004031C2 99 cdq
$ J j; j. ]- l1 z4 L% J' k1 ]5 o004031C3 F7FF idiv edi& _' f/ k/ L) z; g$ v& M
004031C5 8BC1 mov eax,ecx' m! h0 `/ M$ u/ r/ e% V4 P7 \
004031C7 B3 0B mov bl,0B
: A2 w9 c" }. l& D' z; W4 T004031C9 0FAFC1 imul eax,ecx
# T* l5 n% ?( X- V% H004031CC 8BCF mov ecx,edi; Y$ `3 H& K8 X8 c* X
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
1 [2 @5 C) e. D. Z3 c004031D2 52 push edx1 G; ?+ R5 _7 y5 B( b
004031D3 99 cdq, B7 D* i: p- l
004031D4 F7F9 idiv ecx
0 Z# p1 v: o6 p8 X; p004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]6 r% n2 X, o, u
004031DD 2BC6 sub eax,esi& `8 [) m5 J e( o: c4 w4 J$ B
004031DF 52 push edx
2 T7 \0 k. I! q5 w& ]004031E0 99 cdq7 f1 ~; k8 {2 v7 G- K' r5 E
004031E1 F7F9 idiv ecx* ?7 Q6 H. W# o5 K3 }' E
004031E3 8BC6 mov eax,esi* h8 `$ l$ d, K+ Y0 n# _7 g) r3 O* G: G
004031E5 52 push edx: r2 E D+ ^+ W- j" ^
004031E6 99 cdq
1 \6 Y1 u$ N _9 y004031E7 F7F9 idiv ecx
1 k, d- f; c7 n6 T% N- _* Z004031E9 52 push edx5 s/ S7 W! u$ _, W
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]& h: b: Y, V& T0 R$ I R0 j2 J, _
004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"7 E' x5 h. V+ b7 C0 ?+ G
004031F3 52 push edx
9 ]. V4 A3 w- p: ~8 `7 x' ~004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893
$ s8 F6 L% s/ w6 Z* U1 o k004031F9 83C4 18 add esp,18( d4 t0 t- o. ~
004031FC 6A 04 push 4
; Q& C# s( j* ]5 @ K004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]
0 r8 w' r8 ^ W00403202 6A 00 push 06 @ {: [* r# a- N& ~7 v4 y
00403204 50 push eax, [' v5 q" `: P2 o
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
# D# K+ S$ e1 w, Z/ b7 ^00403209 E8 D6530200 call qsr.004285E4
! d+ K( L& G6 N$ _0040320E 50 push eax
5 P3 L6 r( l. N, g0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
- S1 d) ]$ w! w- @( m4 o00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C* x6 ~4 J w; g6 |8 Q7 n
00403218 E8 A7C30200 call qsr.0042F5C4
/ H4 ~# V% A! x* r% E- M0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]8 ^2 S* y" q- K" |( k
00403221 885C24 3C mov byte ptr ss:[esp+3C],bl' i; e# {" J. _
00403225 E8 61C20200 call qsr.0042F48B
. @/ Y4 c) L) q. l" \$ f& B: ]* w. t0040322A 6A 04 push 4! A3 M( l2 c! [ o% E
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]7 M E$ M! E6 C7 X& d# d+ X1 j
00403230 6A 05 push 5, Q! P6 k) v6 V J7 s
00403232 51 push ecx* |# E. a& {3 [5 t- |
00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
' I6 [8 z3 t; d' u00403237 E8 A8530200 call qsr.004285E4" k: H1 z; C/ k1 v& m- v: v# u
0040323C 50 push eax
* l) b1 Z7 d4 {. N5 [! v0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
3 Q! y% M, f/ J+ X00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D* `; V: r* B# i) E8 @) X) t# P
00403246 E8 79C30200 call qsr.0042F5C4+ ?+ x7 I* \) I. y. Y
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
) n, x; `: C) u }5 F0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl+ c- K5 Y- |* U; f. d
00403253 E8 33C20200 call qsr.0042F48B r; H$ V$ P/ k! a
00403258 6A 04 push 4
! A: t+ r) O1 B5 e. ?& b: r* n! Z* K0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]/ N' q: ~( r' M8 s" |
0040325E 57 push edi; l. t, _6 H- V T1 }7 _0 P
0040325F 52 push edx
1 F$ }# \, x; |6 i& k00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
0 k0 v T8 y& A1 ]* i8 }00403264 E8 7B530200 call qsr.004285E4. ^& N0 a+ q4 w. ~# l
00403269 50 push eax
6 a' o G6 R1 |4 |! Y$ {0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
/ L6 y/ C2 [5 j1 I6 o* T2 l0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E l3 e; ~# w8 ^( E4 h% ~" G
00403273 E8 4CC30200 call qsr.0042F5C46 ]& |8 ~; s- o2 T. a
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
! z$ p2 a' b+ }' m* O/ ]0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl" V0 S( s$ Y: E9 a8 i, K# i/ h) [
00403280 E8 06C20200 call qsr.0042F48B
( a7 ?. O/ {4 b8 W00403285 6A 04 push 4
: N. J S+ s, b2 Y00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]) s( G% V: q8 x8 m8 `1 F" }
0040328B 6A 0F push 0F* t# z4 Z% h3 D' C
0040328D 50 push eax% C; S. }& A! a$ \ ]1 n; }) ^
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
: m V* q. ]$ [3 n) Y/ [# `00403292 E8 4D530200 call qsr.004285E4
3 Q j1 x! p* j- T9 ?, k! S4 R0 v00403297 50 push eax
; c: h0 d2 U" C# ~4 ~& f00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
2 f6 ?8 j0 @! z& u0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F. A6 W) C/ A9 x3 o" @
004032A1 E8 1EC30200 call qsr.0042F5C4
& I+ J' V/ E( O$ h; h/ D m2 q; ?004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]0 S2 m( Y) f/ ]& n
004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl
0 T/ w9 U7 V& ~) ^8 B) F+ q* K. ~004032AE E8 D8C10200 call qsr.0042F48B
% D7 {; K' j0 @+ R004032B3 6A 04 push 4
6 I+ Q# }/ [6 w: w2 S& @+ Y7 O004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]& u3 i& |9 I% r# f" C
004032B9 6A 14 push 14. H1 g2 v$ o6 ?8 d4 t6 N2 m* b# T
004032BB 51 push ecx
3 \2 R9 y, a9 n' u004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
0 U: n9 P) w8 |5 N4 B' Z004032C0 E8 1F530200 call qsr.004285E4
1 \3 Y6 U0 X8 ]" p004032C5 50 push eax6 T5 Q- u: G$ a" q: ?9 f
004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]7 {: }( J* _9 G3 `
004032CA C64424 40 10 mov byte ptr ss:[esp+40],105 b' Q- I1 w+ }7 x3 u+ e
004032CF E8 F0C20200 call qsr.0042F5C4
+ r: N' u) t5 i004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
4 T) _4 B7 t' h7 }, ~004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl9 N3 V% D6 W3 ^, c
004032DC E8 AAC10200 call qsr.0042F48B
* k7 Z$ ]3 Q, S# N$ j" h004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
$ Z$ M! L+ o, m- t3 {004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
* N4 M# s' s. S, {004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
3 v; g) ?1 d1 L3 l004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL
+ z+ J7 U8 x7 J& G$ D7 w. w. \004032ED 8ACA mov cl,dl ; DL送CL
U3 L, a. B6 g9 q# {004032EF 3AD3 cmp dl,bl ; DL和BL比较
5 C; M& H( X& O004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)8 M$ t! o3 ?. @$ |7 m
004032F3 84C9 test cl,cl: a( A, t/ e2 K$ I
004032F5 74 16 je short qsr.0040330D
6 G; {' h) T \2 e' t+ a$ A004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL9 Q" ^8 k; U c! T, W5 D( y/ R5 o3 d
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL5 M1 ] Q# A# ~5 v: t! @5 d
004032FD 8ACA mov cl,dl
/ w2 l+ m; S) `/ n, X) t* |004032FF 3AD3 cmp dl,bl ; DL和BL比较# h* F, r* _5 h9 h) r& T/ ^" Y
00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
. c. \( O- L6 L2 ~+ K' x0 V00403303 83C0 02 add eax,2 ; EAX加2
$ r" e/ c( K( R: k" [9 Q9 O00403306 83C6 02 add esi,2 ; ESI加23 C! D$ E$ N1 Z5 ?
00403309 84C9 test cl,cl# n1 c' \" B/ V& ~6 L
0040330B ^ 75 DC jnz short qsr.004032E9$ V8 g/ K0 N! I0 |4 |
0040330D 33C0 xor eax,eax
( ~6 q3 F, U: @; l0 z0040330F EB 05 jmp short qsr.004033164 j- d# v/ N- X# Y# ~" u
00403311 1BC0 sbb eax,eax* _$ P* {/ e1 T( Y* L
00403313 83D8 FF sbb eax,-1
- `/ T- Q7 q& e s00403316 85C0 test eax,eax
1 D# O {1 {& j1 `8 d e00403318 74 0E je short qsr.00403328% n" G3 L7 A' i3 a4 |6 d, H3 q
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A! p$ a/ o. X; `: {9 ]; Z
0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
' B* j* D- b6 n+ V00403323 E9 F0000000 jmp qsr.00403418* c9 j. P) O& h- j& s/ a$ Z* n
00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX9 e, N `, _. A9 p9 m( D
0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C], N& }5 p+ b; Z. g3 `; U" Q( }6 P6 m
00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]
; y0 O7 h: H! k7 `, a6 V- H% o00403333 50 push eax& F8 q* W' E9 c) k0 m
00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX s/ G+ I# ?7 b0 D/ \9 v% D ^
00403339 50 push eax
% m$ P/ f: H- ^9 J8 Z0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX
% U' \! D8 `: k7 l P+ Q$ ]0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
' d) f3 u" b# L8 A00403343 83C4 04 add esp,4
& A( d3 \$ I& Z& b3 K! D% \7 y% r00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI
, O$ a: w7 A; r4 u" @00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8], W( N% l2 Y+ t- w; S
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
7 A9 ^' m' Y9 ~9 @0040334F 50 push eax; ~; }1 B4 T4 _" U0 Y1 M" l) U
00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
6 |+ }/ p! u2 c1 Z0 ?00403355 50 push eax
1 h H9 z2 F4 Q G% F" ^8 b( o/ u00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX+ l9 C- [5 O; }8 u
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX* ^) I4 [8 j! _8 e' t
0040335F 83C4 04 add esp,4: o: k5 M N3 h( ]* [, B
00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI, E1 Z% _ Q" T: ~
00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
u# K; L' J# R00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]4 c/ M- V, U# r# Y" c
0040336B 50 push eax; F9 ]) t q1 `- _8 Z' T
0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX
! t. T( e8 X: @, J00403371 50 push eax
) n4 T7 @7 o" U% b8 m' `00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX
) H* _% O6 @/ F: ~00403377 8BD8 mov ebx,eax ; EAX送EBX
) P: Y1 z$ e1 W( h% r00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX
( G7 g- H' p+ d' J! p+ Z, ^6 Q7 F0040337D 83C4 04 add esp,4
0 a0 g# g6 i b00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]+ u( I+ f' w, B* b$ S- K# L
00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]
$ o* Y9 j( ] L+ D! m00403387 50 push eax1 e/ b" p& H2 M: N/ I
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX7 R% N* E% Y4 a) l
0040338D 50 push eax, M o' c9 x# u/ _8 i
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
6 {$ q: G, Z- P% d0 Q/ {2 H; v3 R00403393 83C4 04 add esp,46 y9 `0 T G# o7 I5 j
00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
2 J- v- M: q) ^; c+ O0040339A 8BE8 mov ebp,eax ; EAX送EBP
' F: X' G* A4 s( b# N0040339C 6A FF push -1
- i- z/ }! c7 b! h% Q/ L( A0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX
, o& Q& J: h' E- t$ `1 F004033A3 6A FF push -1
6 z% ], m1 l' c3 Q004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
! D4 J9 @. i1 H9 \" G' e004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX/ }* G, v! I$ m* a) [; L6 v
004033AE 6A FF push -1
* P* x. B" S8 n* I Z004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX
2 [% _% Y! ^1 K! [* J004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX
+ Q1 b) ~ |: J9 G004033B9 6A FF push -1
3 O$ b" `" B0 I& ^4 @1 o* J" X004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX/ {5 S" f/ f* h! O* \9 l2 [
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX+ ~ X5 T, @& V
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
6 d( ?% M/ k% c/ p3 V2 {004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX W C# Z0 p- {( H& A
004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX9 d+ \0 k) x: j; A: H7 n' E
004033D7 D1E0 shl eax,1 ; EAX左移1位7 m M, p9 n- P+ H
004033D9 99 cdq ; EAX扩展
1 ^4 e8 |4 h3 n/ F% C004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中5 G+ Y; }! l. r/ {1 A
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
3 U1 d8 P2 Q& I% Z/ g004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)
: R# E+ l4 r& p7 p004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A
9 [) _) l/ b0 e2 \8 X: m004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
! g: A! F) `- n2 T+ F6 F004033E9 EB 2D jmp short qsr.00403418
; [, `$ T2 |$ S9 c004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX# r% K9 G3 S; I+ ~* u
004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2. [# ~( G3 K. I9 f O9 A1 v
004033F7 99 cdq ; EBX扩展
) s7 _7 d! N& a9 W" z5 W7 h' s# `0 k2 n004033F8 33C2 xor eax,edx ; EAX和EDX取异或4 S: t3 Q! X& J: x p
004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX8 H8 x9 q' @$ x8 }& y$ h$ f
004033FF 2BC2 sub eax,edx ; EAX减去EDX
! ]% l6 _# p8 }, w3 [0 s. G00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]
5 t6 [. w' h& q00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
, N, J/ g0 j+ S; ^, k00403409 99 cdq) k+ _ z. i \( w# V+ P
0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
9 v$ B# j; P+ d0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX3 R& w4 c2 j) _* m a
00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较# k! [7 H% q/ F" d
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)9 z/ X# Q& I; x* p8 H& P3 J5 ^8 D
00403418 E8 6EC00200 call qsr.0042F48B ; ; [( ~" [. ^- D+ m$ o% r* x, q
0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]- z w. M+ w0 h- w2 C
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9$ @3 y. M6 i- s3 K8 Z, T# w
00403426 E8 60C00200 call qsr.0042F48B- w$ I9 {* Z# [$ y, @, x' c1 W* M
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]7 u& W: q; z) J, k. {0 w
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8
3 `" d4 L7 w; P2 t5 N00403434 E8 52C00200 call qsr.0042F48B
8 M; L4 A. @0 r# y$ ~7 y3 t00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
+ d* ]& V4 K4 ]8 |0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7: b4 B: n. V0 u7 |- \. D& ^/ B @% u
00403442 E8 44C00200 call qsr.0042F48B
. d1 r; x* ?6 u( J, m00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
# Z# x" y& I4 r' l! r/ b% z( D E* a0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6" y- k3 m3 r: X; W+ w! a8 p: A
00403450 E8 36C00200 call qsr.0042F48B8 @% t9 Z. }9 `+ K, a2 \1 J
00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]3 ]* g5 L' [1 w9 O
00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3
7 v0 H% q0 r, f4 x2 j# d. Z0040345E E8 28C00200 call qsr.0042F48B5 R8 I4 Q% x% l* |; E4 i9 M
00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
% Q, i8 ]2 z" Z7 _: Y+ w p) t00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2/ p; F) s" b4 ~7 n5 {2 K
0040346C E8 1AC00200 call qsr.0042F48B
* e k$ n9 S6 ?, Z: x00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]1 S! h, r" \- W5 m% R' ^; A- h
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1. K; Z3 `1 D: W/ e7 G" `
0040347A E8 0CC00200 call qsr.0042F48B Z) Y6 q N: O2 h
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
8 \0 l9 T/ T3 B9 g, e; w/ G00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
7 K% a3 p* F# n2 C00403488 E8 FEBF0200 call qsr.0042F48B+ P j8 y1 v* r# Y) H* C: `, ?
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]5 m0 z. ]( P* ~( g5 \
00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
' w! e, K2 @3 `) D p+ D8 G+ y00403499 E8 EDBF0200 call qsr.0042F48B1 d( a$ y: U2 d. q) f
0040349E 32C0 xor al,al ; AL清0
% T. z3 q! b9 ?: b; C8 }& y004034A0 E9 88000000 jmp qsr.0040352D
6 L. r/ I6 Y5 Z K6 D# k8 G004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~
3 w; `; ?7 K1 B' h004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]+ V; @. Q: S [$ z) u: W7 \
004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9
& w- _/ p @, K0 z004034B3 E8 D3BF0200 call qsr.0042F48B
- r Y4 J/ S$ d: u! h0 M, T/ x004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
, ]5 J/ V+ Q; J* `% R- l004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
+ w8 T+ S4 W& b$ v004034C1 E8 C5BF0200 call qsr.0042F48B
% n! B# H4 [& {& `004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
9 _1 Z* k/ L0 {+ P# r. s) o004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
1 N* i- z4 B, K004034CF E8 B7BF0200 call qsr.0042F48B
9 Q1 C; e7 W: H D b9 \( e004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
" z( a W% m- b/ B/ U+ x9 w004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6& w% ~ o4 }6 ?8 D! I8 c* A5 W7 y A
004034DD E8 A9BF0200 call qsr.0042F48B
- A/ J5 \. [4 [3 s, E004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
! l+ v+ c8 {4 o' E004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3% k) A0 A( l6 Z# P$ s
004034EB E8 9BBF0200 call qsr.0042F48B8 I0 \$ ~ n! R! m4 R& A
004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
5 R( A, b& a5 c3 D8 z6 u004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2
* ^ l+ I8 d$ O, U# \004034F9 E8 8DBF0200 call qsr.0042F48B
; U+ o) U& P$ ?; ~$ ^; p& x `004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]" k2 `9 b1 p( R/ }. D
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1! J, r) K& X% U/ \$ X
00403507 E8 7FBF0200 call qsr.0042F48B" d `' `) Z7 U- G6 Q# ~* P
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
( t- N+ R& \% p3 C00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0% q" Y, }( ~# C. m- f; L0 ~
00403515 E8 71BF0200 call qsr.0042F48B
- Z$ q" N" L4 O0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]2 W+ D* T& d9 D
0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1! `. [2 ~: f# Q# ]5 z
00403526 E8 60BF0200 call qsr.0042F48B8 }! K4 w( Z1 S1 U' D% Q
0040352B B0 01 mov al,19 [3 t: C& l+ }2 t) s
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]0 |$ v0 M: i8 `/ _
00403531 5F pop edi2 G1 w2 m& Q8 l/ v
00403532 5E pop esi9 K$ Y. N O& `# l
00403533 5D pop ebp+ ]; f9 T; Q. H
00403534 5B pop ebx
1 i& [* _) n6 }! k( i00403535 64:890D 0000000>mov dword ptr fs:[0],ecx9 G7 W( b1 {0 P: M1 ?
0040353C 83C4 30 add esp,30' _" {, w9 g' Q a1 H
0040353F C2 0800 retn 8
8 r0 t# n# y3 }* u6 {8 _- N0 n* k1 \--------------------------------------------------------------------------------
3 q9 Q. @) I+ \/ L4 e; S7 q: |* a【破解总结】) D8 J @% d( E
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
# z. m5 f/ T. R" p! Z: r' s用户名:yijun) U" ?: a/ I* S0 I
注册码:4893*7777*3726*7777*0529$ f% p$ t9 `& d2 n* f9 k ^0 I: P
--------------------------------------------------------------------------------3 r( `1 K0 D- b( [5 \$ }) {
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡