|
|
【原创】破解Quick Screen Recorder' F6 M, X( N3 H
【破解作者】 yijun
* T6 X5 @" [) o' z【作者邮箱】 [email protected]9 e6 N2 I- M1 u4 X5 X; @7 I- d
【使用工具】 OD,PEID
7 t& I8 }* I i5 ^7 G【破解平台】 WinXP) E# L) k7 y& S# v7 w
【软件名称】 Quick Screen Recorder6 W& `) B% c! ]2 c3 y
【下载地址】 天空6 F; u2 @' Q5 h3 S6 z7 a( z6 T" f
【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
7 T' G+ N9 ?+ i7 ?' y. E【软件大小】 540K
, C% r6 i) I6 N: A: t; ~【加壳方式】 无& U" C& n0 H6 P0 Q
【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)+ s+ v7 @" {5 x5 w5 z& R9 `6 s
--------------------------------------------------------------------------------3 {9 F t- k, B2 y& Y8 O
【破解内容】2 n7 T9 i4 N5 K7 h- J/ G, d
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:8 Z& w! g: D, f5 u
00404C69 55 push ebp //在此下断5 i0 D4 v( f( a* s
00404C6A 56 push esi
) ?' r( [1 z4 ^+ _, ^' o( q: G; |& o00404C6B 57 push edi% \' G% T% ]9 Y) n
00404C6C 8BE9 mov ebp,ecx
6 }. I1 c4 m2 g& P# a00404C6E 6A 01 push 1
: Q5 n4 @9 \! ^- ^00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名8 E, R! A" H- `' z
00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]# U# r; Y z, s0 b6 T+ D3 Q
00404C78 8BCF mov ecx,edi" K: Q6 P" Q# B) ] Y2 ?+ K1 T
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码
9 E3 H0 U2 `7 C' N9 o00404C7F 8BCF mov ecx,edi
' N' n8 e7 ]! z00404C81 E8 A73E0200 call qsr.00428B2D
9 E# O3 f: I# g. H( e: t00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
* D6 N0 _9 u3 V+ ]6 G' _) i0 @, W00404C89 8BCE mov ecx,esi, ~& R3 G' @+ B; P
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX+ W$ {, m, \% c% S" y- L$ S
00404C90 8BCE mov ecx,esi
0 C5 A- B' ~; ~00404C92 E8 963E0200 call qsr.00428B2D* R% H$ _9 F( J
00404C97 8B06 mov eax,dword ptr ds:[esi]
; ]/ T1 i( |) O+ |; u8 Z5 W00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2% |2 e! x1 A1 V- u S6 [: V
00404C9D 7D 26 jge short qsr.00404CC5+ F c. v/ H- N/ F- h
00404C9F 6A 40 push 40
/ O$ G( N6 ^: c& a( G' o00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"1 L" q3 d$ b1 I9 [
00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."
3 ] [8 B4 H/ N% i00404CAB 8BCD mov ecx,ebp8 J7 E1 e8 e- U3 C' U: R) G3 [
00404CAD E8 C3840200 call qsr.0042D175
) R/ \2 m @& M1 G00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]0 s& V9 T/ \# S- J8 o
00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx
}% h5 h0 E. X0 Y# v* z; f: Y3 l00404CBD 5F pop edi
# b& u, |1 R# n% {6 v6 Z00404CBE 5E pop esi" F3 L/ e3 Y7 ^
00404CBF 5D pop ebp3 N" n) q" X# t' d# V% z3 v* \- ~
00404CC0 5B pop ebx
! |$ C$ q- A* ]6 F1 b% R% N00404CC1 83C4 18 add esp,18
c; P9 u3 b( U2 P( o9 w" q00404CC4 C3 retn
- d! n: m1 x& p& t* e& L- s; g00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]( }" V* l$ [3 k) w$ J& L
00404CC8 84C0 test al,al2 C8 q- |) V& I
00404CCA 0F85 1C010000 jnz qsr.00404DEC6 e# k7 Q" F- o6 L8 \ W% u
00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]7 @# N, T. S7 P4 a. r( e' I& L3 x
00404CD4 E8 87E3FFFF call qsr.00403060# A, b7 z3 n% @4 s2 {7 ]4 O6 O8 S
00404CD9 51 push ecx1 q8 c- U: g I' ]; U$ c$ s4 K
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0$ E; ^ B; Q7 y4 w
00404CE2 8BCC mov ecx,esp
% @8 I# N/ K$ ?6 u$ z! Q, d+ e00404CE4 896424 14 mov dword ptr ss:[esp+14],esp/ ~% |3 [. E0 B3 f# E _: K
00404CE8 56 push esi7 N' B0 ~- i9 L9 V8 |: b
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0$ v% ^- ?7 L) w' H% J
00404CEE 51 push ecx* ]7 F8 o5 A! }; ?
00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1# E6 V c, v9 Q
00404CF4 8BCC mov ecx,esp; z8 R6 F F S4 J( n$ c; n
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp5 l8 A4 q: r) i, ]
00404CFA 57 push edi
, K9 e+ N( [. F( A$ E00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0
: b1 ]: w; I4 _ c00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
8 M6 z% P/ b9 V* w00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0$ M6 D5 U$ ~% _( F8 w
00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~
1 B! @& u3 [* b) Y' V00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~# f7 h0 b/ o* S$ O) I8 Y: D
00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~ I. w6 T! D1 {+ ]* ]
00404D12 6A 40 push 40' G* j4 I8 f4 v, Y6 V
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"3 q. M) X ?1 D# w
00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."
}$ A! X5 t6 Q3 o00404D1E 8BCD mov ecx,ebp
5 G2 `& Y+ S5 U8 D$ ]00404D20 E8 50840200 call qsr.0042D175+ j* S; y# U9 E- Z- |. w
00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]# W" ` i( Q4 Y6 \3 [5 C
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1) e3 `! f/ R6 P) b1 T' b
00404D31 E8 5AE3FFFF call qsr.004030908 L$ U5 h: W3 \! j9 p4 s2 b
00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]4 ~# r9 E, {7 j r
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
9 c- q( T1 u% Y+ U8 o0 O! l00404D41 5F pop edi3 U+ n" l! X" N4 i
00404D42 5E pop esi& D5 {8 G: p9 c2 L. Q6 b( ]
00404D43 5D pop ebp
0 I0 w) u0 T1 }00404D44 5B pop ebx2 e0 w. y, b4 [! @2 N* z
00404D45 83C4 18 add esp,18. t4 y+ _. o9 f* i& _4 A+ p
00404D48 C3 retn
! H$ j6 P; Q& d+ S*********************************************************************************************************************************************************
! L1 v' Q. V% Y4 \: K( U跟进00404D09处CALL来到:
0 a8 }3 G0 V" m& ]$ s; L& h/ H004030A0 6A FF push -1 //一路F8下去~~~~
9 M) M* O) j; I$ |3 r& V% }4 {004030A2 68 C88F4400 push qsr.00448FC8, } d/ g% L5 X( y
004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
/ G/ e# W! Q6 `) d2 b, P004030AD 50 push eax
6 j+ K- F9 z9 _% F, |0 F004030AE 64:8925 0000000>mov dword ptr fs:[0],esp
9 E B8 e0 r, ^; ?- A2 H004030B5 83EC 24 sub esp,241 M: } h# m; Z
004030B8 53 push ebx
0 ^2 C: L) a/ y004030B9 55 push ebp5 H- E8 a* p8 I
004030BA 56 push esi
/ j5 n x2 y3 ]( Z004030BB 57 push edi8 Q2 V2 }" F3 U8 O7 N' c6 ]
004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"
% J, |' n, S' p* {9 U* y& {& i2 i004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]: N) B2 Z8 @3 s3 G4 O
004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1
4 q1 s: j& e, ]$ \004030CD E8 27C40200 call qsr.0042F4F95 T: R- Z% e- a
004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
% y; t! ?$ |; R9 M3 A3 J, u2 N0 V. p004030D7 894424 2C mov dword ptr ss:[esp+2C],eax! H' t# I9 H* K; W T# f
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]4 k% v9 }" c" q- \
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],37 t+ P( ~ q' u) X: f% {% x& W( \
004030E4 E8 905A0200 call qsr.00428B79+ [; q8 y- A3 s5 a1 r
004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
2 n! ~' ^1 T! s) u1 K9 i% y004030ED E8 3B5A0200 call qsr.00428B2D
) }! n6 R# O8 Z" U: }004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
1 n$ W0 J! G2 P004030F6 E8 7E5A0200 call qsr.00428B79 Y3 J0 B0 M N$ x8 S+ @$ Q1 M7 o
004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]) h2 u T* G/ a$ ~
004030FF E8 295A0200 call qsr.00428B2D% ] G- w5 i: b7 c# ]
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]
8 x6 J& W3 d2 |# r% ?' t00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
8 \. S9 h" h5 [0 G c0 [4 Z0040310B 83F8 02 cmp eax,20 a0 G; T2 F6 S. B6 G, ^
0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
* j+ Y( g, i0 v; [; h5 A! ^00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]
8 J8 j; H) R. Q% b" F7 U8 j00403118 837A F8 18 cmp dword ptr ds:[edx-8],183 d7 y" e0 g8 D* v* W T6 o, M, _
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳- {" ~7 U* y5 ]' ^( ~' ?$ M
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
: E0 |; U% ` N9 {6 w* G00403126 6A 01 push 16 N: s7 `) ^: ~7 T1 G) `! |
00403128 50 push eax3 s+ P: Y* V7 ^8 I; u
00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]% G4 E, |8 e- c: W7 g% w8 Z. d
0040312D E8 C4550200 call qsr.004286F6- y3 F/ ]6 V# m" [& V _* B
00403132 8B00 mov eax,dword ptr ds:[eax]
; S: l. |. T3 F% k00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]3 [7 J. Y2 @9 l6 I9 I! ^7 a
00403138 50 push eax- l7 T6 a) d, r0 X" N0 O! X
00403139 C64424 40 04 mov byte ptr ss:[esp+40],4* M6 F+ [% `& W/ B$ {! e* N
0040313E E8 4D560200 call qsr.00428790
" Z& P+ j4 u5 \00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]& G. i ]1 q! s3 _7 K# D
00403147 8BF0 mov esi,eax# A/ _2 U, w% e, q$ L5 a
00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3
3 I9 e: W# L; V: X( ~% g0040314E E8 38C30200 call qsr.0042F48B
: b. ]0 U7 t6 M1 r00403153 8D46 0A lea eax,dword ptr ds:[esi+A]0 c( h9 k+ x) A: O. U
00403156 B9 3E000000 mov ecx,3E9 V. a& w; J6 p& X, q
0040315B 99 cdq
6 }) j& K( H2 k( D0040315C F7F9 idiv ecx
( K4 g) e/ G/ |% ^% N% ~0040315E 6A 01 push 1) _# c" u5 M" ~! D* d
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]/ B' o: x) o F4 U: h: J M# M. U
00403164 8BF2 mov esi,edx
$ Y8 X% S! f/ H( X* U5 v8 r! k% t00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
% O. r% [" l4 M0040316A 52 push edx
2 D1 N7 J9 H; |$ v9 p0040316B E8 0A550200 call qsr.0042867A
& E' \7 [- R1 F4 y# l00403170 8B00 mov eax,dword ptr ds:[eax]9 E: t+ U2 z& C6 A; d, i9 [
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
6 T+ ]5 b9 I( L* D9 H00403176 50 push eax
' M' q, |' Z+ ?; g00403177 C64424 40 05 mov byte ptr ss:[esp+40],5) t" H4 R. p' q" o
0040317C E8 0F560200 call qsr.00428790
, R+ X6 z- P$ ?: y00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
, p5 |( [' M9 l6 a# f! q1 Q+ _) O' a00403185 8BF8 mov edi,eax
3 w$ n6 j' R. h# i0 B# \) b00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3
) U0 N5 t! R# p S0040318C E8 FAC20200 call qsr.0042F48B/ M7 |5 z, C. q4 f3 h+ G' q
00403191 8D47 0A lea eax,dword ptr ds:[edi+A]
# ~) N# X2 S' B" W. y- P9 P00403194 B9 3E000000 mov ecx,3E
2 V! B4 I' H( b3 f7 W. E' ]2 b+ m00403199 99 cdq
2 c/ `5 C2 j/ w0040319A F7F9 idiv ecx
( E I6 y) G! W2 F8 t$ M. L0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]6 z. G$ q2 [5 }1 m
004031A1 894424 28 mov dword ptr ss:[esp+28],eax# U3 t& }, I# q* o
004031A5 8BCA mov ecx,edx
& ]- \2 l+ `, O004031A7 894424 24 mov dword ptr ss:[esp+24],eax, T2 b- S0 {6 D j/ s' ^) Q
004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
% D8 \0 q0 C3 i8 | V3 D+ C' Y004031AF 894424 18 mov dword ptr ss:[esp+18],eax
4 H& U+ w' J8 |$ Z7 T004031B3 894424 14 mov dword ptr ss:[esp+14],eax2 J9 n% ?( N0 r# F& N
004031B7 894424 10 mov dword ptr ss:[esp+10],eax
) |+ |- D5 ~7 X004031BB 8BC1 mov eax,ecx
5 a5 D5 y/ J% r004031BD BF 0A000000 mov edi,0A
9 v) v0 g% e5 ?0 J% V004031C2 99 cdq
1 g6 }/ E' }4 ]; c! S6 X6 D004031C3 F7FF idiv edi, U. X) E, _5 z& q2 D
004031C5 8BC1 mov eax,ecx
3 t! E( Y+ |2 ~004031C7 B3 0B mov bl,0B8 G9 o+ b" \ L+ k
004031C9 0FAFC1 imul eax,ecx
9 [+ h+ y' K( t s, n004031CC 8BCF mov ecx,edi
/ h1 A3 s3 i* d n# j W7 M004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl. y/ [2 N5 \6 D5 y, L
004031D2 52 push edx
3 h2 `4 u5 W( d( l004031D3 99 cdq
- H, N+ a$ W# R/ z# R004031D4 F7F9 idiv ecx
. N, p( E { U1 t3 s8 P2 Y: ]004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]8 U0 f+ B7 @5 q, r. q
004031DD 2BC6 sub eax,esi
) q. _+ a, c( V1 _7 u004031DF 52 push edx3 a: g% c6 F% h- O4 \7 V k
004031E0 99 cdq# z5 o! y1 c8 ?% ?7 i8 A
004031E1 F7F9 idiv ecx% `. t4 T1 G- }* a0 s) f1 ^: X
004031E3 8BC6 mov eax,esi
" Q2 @, g8 U0 t1 x* O004031E5 52 push edx
6 B% `" g/ q( |$ S1 M2 \1 w004031E6 99 cdq
2 O0 m n6 n7 \7 R9 N004031E7 F7F9 idiv ecx
) v, d( }* }1 V* j" u004031E9 52 push edx5 l- f* H0 Q! u% Y6 t
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]4 x- c: z" r) D2 i! b' s: j
004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
9 S+ p# t% U6 R: M( H$ h004031F3 52 push edx0 @* L3 R* z, b4 [1 c) w) o% n7 R* Y
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是48938 ?, j, `1 R5 T/ b
004031F9 83C4 18 add esp,18
- o1 o+ n( M) z; C7 S+ j004031FC 6A 04 push 4
m* l( [$ C( m1 n! \6 s) R0 H' O004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]
- Y8 m7 G/ ^+ E3 P00403202 6A 00 push 0! Z, n% F& C2 t# I3 A
00403204 50 push eax
* q5 P9 g$ C' r; E6 Y( ~4 x% J$ R00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
2 A5 p2 k9 I! m) D8 N2 C% Z& u z3 ?1 W00403209 E8 D6530200 call qsr.004285E4# b6 ~; u! ]9 S. k1 e9 s/ q Q
0040320E 50 push eax |0 z9 ^1 M) T1 j# J' p
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
5 n* R) k6 S7 {( Q* b00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C0 d, a2 {) `0 J1 D/ o3 R/ h
00403218 E8 A7C30200 call qsr.0042F5C4 w& V# b7 }) m% _& g+ r# i+ g& }0 x4 |
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30], ~) _, [" t" J( x
00403221 885C24 3C mov byte ptr ss:[esp+3C],bl
6 _; z" u" u3 a9 k- |, n! T00403225 E8 61C20200 call qsr.0042F48B
! @. C* V7 y3 [5 P5 o0040322A 6A 04 push 4
0 f; Y+ b5 E( U- q# g* r( S- r0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
z8 ?$ U5 E6 x+ k8 {8 A& |00403230 6A 05 push 5% @4 ]6 Y6 M& C. E! {8 i; e/ Z
00403232 51 push ecx
9 ^- D& O) r: y" ]4 l00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]5 K% i8 e% t: y2 E( o; S, h
00403237 E8 A8530200 call qsr.004285E4
7 c" l& ?4 W9 S. Z0040323C 50 push eax
8 k0 x, `6 g- ^3 u! z; {' ^% k0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]" B+ R8 @3 r6 m* A
00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D
" _0 N: F0 Q, x4 H* c! D00403246 E8 79C30200 call qsr.0042F5C40 z9 j* _2 t9 |* T9 K7 v. q3 i6 i
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]) R T( r9 M7 S% `
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl( Q4 U& k- ^4 F1 F7 K+ C
00403253 E8 33C20200 call qsr.0042F48B
& u$ `! [0 c$ k9 D4 a00403258 6A 04 push 4
( G e* a$ z: G0 Q. u" t1 I0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]
( t6 g0 n& x; ^# X+ R5 w e0040325E 57 push edi
, T5 C1 D6 Y( R0040325F 52 push edx
! e7 U0 P3 h7 _00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
3 Q( ]3 I2 F0 X! t00403264 E8 7B530200 call qsr.004285E4 `/ O* A4 Z1 x3 n) C- H: v
00403269 50 push eax
2 }, j5 ?) M8 p, e! w7 E" n0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]: D8 G$ T9 h4 a! ^
0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E' j1 c( o' J$ ^4 f) H* }( J& A
00403273 E8 4CC30200 call qsr.0042F5C46 T% T+ |; d. v+ \# C
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
& m1 k; O! x5 K- E* d0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl- y0 Z5 `% g) n8 ]' y' ?6 i
00403280 E8 06C20200 call qsr.0042F48B
" o, z7 q' x. B00403285 6A 04 push 4. J4 h9 g( {5 t/ s* w
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
! [7 M9 Y! m+ I3 K! J, i' F0 F0040328B 6A 0F push 0F% e1 Q6 N0 \& P% s" s+ F
0040328D 50 push eax$ l4 |8 X0 y. ` s" Z1 u, e
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
x& b( W2 M1 W: F7 {00403292 E8 4D530200 call qsr.004285E4
0 I6 u/ S+ A7 y7 b00403297 50 push eax
1 T& e* x# m7 a/ c, U00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]$ {0 w/ R t4 d7 r
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
- Z2 P u' E) s a( ~0 K5 x004032A1 E8 1EC30200 call qsr.0042F5C4' L$ N' p1 r; r$ o: k
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]2 y. ^9 o/ f8 F6 g* E% Q. D$ t
004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl+ ^* d) R# P2 `/ ` c- s( R
004032AE E8 D8C10200 call qsr.0042F48B: Z; M3 D2 m6 q/ `
004032B3 6A 04 push 45 T" _; c! L9 J6 v
004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]' P" Z+ m# o7 C5 w$ A$ l& Z
004032B9 6A 14 push 14
5 \ A2 u+ X8 ? [004032BB 51 push ecx
4 P4 ?5 t. A' u5 s004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
2 `- @8 L$ u/ V6 A Y: y004032C0 E8 1F530200 call qsr.004285E4: ~# \% Z. _: l( ~% V
004032C5 50 push eax1 o t8 |. P0 ~ S0 n
004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
0 u+ H( z" @ Y% i8 n9 `004032CA C64424 40 10 mov byte ptr ss:[esp+40],10
' P5 @4 l* {- {$ c; B+ @* k004032CF E8 F0C20200 call qsr.0042F5C40 h2 ?( {3 ^* Y
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]# H, X. n/ o, I. `1 H# l" A% K) r
004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl
' o7 o3 W; B4 D$ T$ O" ^004032DC E8 AAC10200 call qsr.0042F48B
2 p* n- c( w' A3 o8 E+ ?2 q6 }; `2 z* a004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
4 Q' K" [& P9 e- {1 [) f, M9 E004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
- f# |. y) s6 p: ^: b004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL! N: c1 ^$ [' ]' K8 e
004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL5 H1 q# k! }! H) v) |7 c. @4 T
004032ED 8ACA mov cl,dl ; DL送CL7 h: c" Y6 T( e2 X" X; D
004032EF 3AD3 cmp dl,bl ; DL和BL比较
8 S( O0 m2 V" v- b004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)2 ~4 e* C) x' Z+ v$ I6 U& @
004032F3 84C9 test cl,cl I6 _1 _6 ?" O+ i7 e$ c1 d
004032F5 74 16 je short qsr.0040330D
7 Q* V& Q: ]+ z0 H8 G; h$ [% C X004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL/ g9 Y( T4 r: Z8 K
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL
! s! |# `/ t3 G) S" N5 R( W' t004032FD 8ACA mov cl,dl* t I" g' D) h# i
004032FF 3AD3 cmp dl,bl ; DL和BL比较
" M7 G, j: D) {00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)6 b: A2 M- @( J6 \
00403303 83C0 02 add eax,2 ; EAX加2" E& B* u* c+ v* @
00403306 83C6 02 add esi,2 ; ESI加2
8 T; K2 F' \5 ]00403309 84C9 test cl,cl! o! |! U9 y5 q3 Y( h
0040330B ^ 75 DC jnz short qsr.004032E9( E& Q5 h3 J+ l
0040330D 33C0 xor eax,eax
2 r$ J( {+ a% d" R& j e Q0040330F EB 05 jmp short qsr.00403316
% E7 W- ?, F' O0 E% ^00403311 1BC0 sbb eax,eax( i& \( {$ T8 X
00403313 83D8 FF sbb eax,-1
% I$ c& _4 z5 A1 S4 o; @00403316 85C0 test eax,eax
/ l) ^2 y t" E6 a6 n00403318 74 0E je short qsr.00403328
5 C7 q* e6 @1 l0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
' j: v; w4 V$ Y; n/ t/ _* Y, K$ I8 L0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]- ?% G$ n) O9 x, _
00403323 E9 F0000000 jmp qsr.00403418
5 T9 L' J" F4 W9 Q P9 C00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
6 V3 ^4 o% ~9 P; G6 [" w+ a0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
- H: p$ e |8 l; H) M- R00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]
4 p0 @. R7 ~1 z, ]' b00403333 50 push eax# c% O% ?4 F5 o9 E/ t; Z" @
00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX
4 @, F/ h; }( @! o1 C00403339 50 push eax
0 T. u! @ Z* f( \6 w# e9 d9 d' g0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX
% f; {- o5 Z8 U0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX) C9 N0 B) D+ K+ e! p
00403343 83C4 04 add esp,4- K# Z) J" x8 \
00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI2 y! G. Q! ]( s* k0 Z/ Y1 T% [% t' N
00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]
) M9 z3 [$ s' x. k% J0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
" T+ Z/ e5 m# r! J1 Z0040334F 50 push eax
& |! @, y' {" [ h00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX$ u s8 g9 \1 a
00403355 50 push eax
) `0 B4 {" B. i6 U, H00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX
: @6 `8 i& g/ }, B0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
8 J7 s' p1 j& { e/ X0040335F 83C4 04 add esp,4
2 @9 v! w& M" a) X. } @00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI
0 j' z/ s& P5 H) n% b+ z% { L00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]3 E+ C, R/ _/ o" S! u
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]
. h- u1 m0 g$ `) _$ I- A9 G9 |+ N0040336B 50 push eax
; ~2 z0 K% `1 s3 T5 O; E0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX
6 ?) L) N, J# q; C& M9 g00403371 50 push eax
; y; Y& x2 m8 q1 x, r00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX. D1 E9 ` l; r& s- c
00403377 8BD8 mov ebx,eax ; EAX送EBX: b/ _7 R# `5 R& t: p3 a/ G- j% s
00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX) A. A+ Q: G. n' O
0040337D 83C4 04 add esp,4; t7 V* Y- g# C4 e. n1 P$ |4 W
00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
. m, f, p5 X5 O! n00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]
3 T- V; _7 q1 P" w00403387 50 push eax
" \( i' }! G. D! a* f* ~9 h00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX2 k M" W- A _; `, b/ r
0040338D 50 push eax
; f0 k1 `; h9 \+ h: ?0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
2 o+ a. y# n$ m4 x' _$ r* r, |00403393 83C4 04 add esp,4: _1 o- J& |" ~2 B
00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
7 |: S5 V) u( @/ X/ k. y: g0040339A 8BE8 mov ebp,eax ; EAX送EBP* g6 A0 h1 y! i5 [$ {6 ^9 b' E
0040339C 6A FF push -1& Z6 x# k: w. Q- U' ~: R7 m- D
0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX6 @5 X& J3 D; S' I. H8 n' _) K
004033A3 6A FF push -1
5 A+ G7 M$ }* T1 [( z004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX# v! o1 m2 E. R
004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX2 R2 Q8 G2 I" Q# g% o H" `
004033AE 6A FF push -16 y @$ b- Y$ R2 O) r( U9 z
004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX
2 z& ? p# \, F5 Q2 n004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX
6 I6 V/ t' M# k2 Z# S004033B9 6A FF push -17 Y0 W1 U5 {$ c
004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX
5 C% F/ T/ v2 C3 h004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX$ \3 z9 k5 B, V& x, i
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX) z" @! S6 l4 j' r
004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX* Z, x4 h9 f9 i- Q4 l& s
004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
# H- V; l: w7 o5 t( ` [0 d004033D7 D1E0 shl eax,1 ; EAX左移1位
. S# P' y7 _8 S, @' S% v004033D9 99 cdq ; EAX扩展* O8 y% O# a% O& q
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
" k) r5 ?8 v- r' ^, Y/ U004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
" Z1 ]2 a7 n, s% E) S0 K/ S004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)
$ L/ F* l0 ?9 K: F) f004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A; L: W' T! f6 {) H. M
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
j! ^. L/ H d! B6 k# c' c {! b4 [004033E9 EB 2D jmp short qsr.00403418
2 I5 Q( X W* c/ Q004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX
& \8 W! z9 c& ^+ W! s004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2* r& V% L( |# X I4 [$ W" c* m& K
004033F7 99 cdq ; EBX扩展
7 J9 \2 |5 {& l0 \( C) |004033F8 33C2 xor eax,edx ; EAX和EDX取异或
' z) b# U) M, f: J004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX" u" E5 r4 t- G& y- Q
004033FF 2BC2 sub eax,edx ; EAX减去EDX. j% ?) J# Y* `' p
00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]
% P4 s3 C: O9 u9 ^00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
. S( k# x, N0 _2 o: Y& T00403409 99 cdq; a# Z5 @1 \& {! T; D
0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中6 K3 _4 i* C, S' u2 `% H, @
0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX
* @) ^! F6 ~9 G, e: _& G00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较2 p4 H; L9 [& L% J* g+ T0 }7 t& @
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)
1 Y' Y5 U% }* M1 J1 u00403418 E8 6EC00200 call qsr.0042F48B ;
' N4 D. k1 W" f$ \; m1 d) z0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
) u4 U+ B, f! G! }00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9& Q5 u4 V3 V' i7 O0 x
00403426 E8 60C00200 call qsr.0042F48B
0 A, s- w! J4 U4 s! D, s; p0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]% Y% G( q/ v; V0 V( [
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],80 S/ j+ W1 } l& Q& Y" n( r$ W! ]3 o
00403434 E8 52C00200 call qsr.0042F48B( E: |: [, S7 N7 Y/ o; J
00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
7 I$ u, E, C1 }3 p0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7+ n$ ]% i% [! S( Y* c
00403442 E8 44C00200 call qsr.0042F48B
7 @0 o( ]3 Z; s% w9 Z8 J3 i8 m00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]7 d+ v7 y) c" U, K+ W* k/ m& z
0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
( r1 S* C* w; M& x$ Z! l( s3 |00403450 E8 36C00200 call qsr.0042F48B
- B6 g6 G- r; B1 g00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
8 x+ i8 ? i3 A( F" e00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3
" |' e* x2 A% e# D F5 B7 i0040345E E8 28C00200 call qsr.0042F48B9 q* _0 c8 a' c' d; ^
00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]# h: X7 g5 x3 a% E: s7 {6 X$ H
00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
( ?3 k: U# j2 _$ s0040346C E8 1AC00200 call qsr.0042F48B
+ D- {9 m: l- B- _00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]5 h5 s: a6 K* \
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1# f. }8 J) Y6 {
0040347A E8 0CC00200 call qsr.0042F48B5 u: V: m) B E1 h3 K
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]0 y8 u% ` m2 u+ s% o' H
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],00 L: I0 f8 Y) R$ L8 h9 V+ o
00403488 E8 FEBF0200 call qsr.0042F48B0 ^6 s0 p8 H6 d; N; v
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]1 P( c/ i8 S% \
00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
# \' {+ S' Q, y% z, @# v3 T. r* ^00403499 E8 EDBF0200 call qsr.0042F48B
4 [4 e# W( B' u! }+ x0040349E 32C0 xor al,al ; AL清0
1 A' t! U8 W& i4 g004034A0 E9 88000000 jmp qsr.0040352D ~8 b g7 L. _4 i
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~1 _5 t( P! k: k) c( ]
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]3 X# o( e9 g# I
004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9
) ^& q% @! z* ]* {& [8 j% X004034B3 E8 D3BF0200 call qsr.0042F48B/ A5 C5 Y3 {6 w! M) e7 W
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]2 B; D0 M/ @( R' h: s
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
; H6 I/ r8 E% y: u4 _) U6 r6 b004034C1 E8 C5BF0200 call qsr.0042F48B* s' I. S4 q8 J& f( N+ j
004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
. ~) @6 [/ [$ ~5 [% T- r2 i" j- F004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7* A& v+ y9 K6 f# v+ _1 Q& ]
004034CF E8 B7BF0200 call qsr.0042F48B
1 i; i, w8 C* Q% I! k004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
1 B/ W! l) ~3 H9 Z9 Y004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],63 Y; ^7 i3 r6 |5 \$ d6 L# G
004034DD E8 A9BF0200 call qsr.0042F48B
7 T3 t5 k) o6 k004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
- A& R. ~3 d' Y004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
* ]# @' G( m2 I% _/ @004034EB E8 9BBF0200 call qsr.0042F48B4 G% T# ~2 k! S1 }7 c& W0 }+ b5 t( o# C
004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]3 H2 v# Z* b6 j! L( |1 n2 D$ e
004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],28 I8 s$ q$ O4 k( t, Z
004034F9 E8 8DBF0200 call qsr.0042F48B
) P0 V4 P& B% y004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]2 ?6 E g7 m8 T2 u, I* L1 Y! [2 P- F. A
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1
1 @3 `! S0 o5 _0 c# E) q3 t00403507 E8 7FBF0200 call qsr.0042F48B
9 Y% S& X1 u/ @4 F9 A" c$ K4 l0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
* n$ Z' w" I# A. K3 |3 O00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0
# {. J9 f! j4 K, x00403515 E8 71BF0200 call qsr.0042F48B. n1 w5 Y+ v! r6 D4 x: B
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
" b! J) e: {8 a. L' a0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-18 k" L! p) C0 F% k1 |, [9 r2 z+ Q/ V
00403526 E8 60BF0200 call qsr.0042F48B
9 Y$ C9 [& R0 m# J* P0040352B B0 01 mov al,1
: @8 Y2 R) ^4 y0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]* n: q/ y* X# _1 O9 |5 H& J' ^
00403531 5F pop edi
5 `$ [7 P$ l. O2 O% N, }00403532 5E pop esi
* S! ~, F/ z# o00403533 5D pop ebp
- I ] X5 @% `/ A- N9 x% t: X00403534 5B pop ebx H& ]9 F8 I* E; r, p4 |! Z
00403535 64:890D 0000000>mov dword ptr fs:[0],ecx
& T' z# j* E* q4 t, g0040353C 83C4 30 add esp,306 x' x3 B1 a. v, F8 P8 k
0040353F C2 0800 retn 8
1 o3 k" z0 j: R5 k3 q8 p. S! k8 R--------------------------------------------------------------------------------
8 }+ a, M8 K; s2 K! Z$ O【破解总结】& o2 H2 P7 {6 |" a5 ~& O0 a
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
# s0 i# i' C, N: Z) A6 y用户名:yijun
7 {( h* A* i) ^3 L: K注册码:4893*7777*3726*7777*0529. ]5 t: P3 d4 c3 d
--------------------------------------------------------------------------------
& G: @+ E$ C$ ], i5 @. {【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡