|
|
|
【原创】破解Quick Screen Recorder
0 z6 U# I5 L1 H8 g【破解作者】 yijun; _+ H: J j3 r# X
【作者邮箱】 [email protected]
! H2 t" ?% V8 i0 b【使用工具】 OD,PEID2 r5 O: F: f: `) I0 w, e
【破解平台】 WinXP: i. J y5 D8 F1 s+ A6 Y
【软件名称】 Quick Screen Recorder+ ^" f( p1 u8 V
【下载地址】 天空
: [8 m4 J8 }0 G- X5 g【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on. 4 r' e9 M% L& A8 U( e: y- p# q f9 Z
【软件大小】 540K( \% s; [2 S) i
【加壳方式】 无8 R4 E/ c6 p( i) j% ?* _. G
【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)3 ~% \* R1 ~& x) u( x9 D
--------------------------------------------------------------------------------
2 t3 C! |" P4 q【破解内容】3 o: v0 L: M' H* J- n
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:; S: I; c- P2 x
00404C69 55 push ebp //在此下断
* G* o7 X; |3 \# O1 j00404C6A 56 push esi& S3 C0 i% z" a; a2 Z: r* P* A/ p1 g! a/ t
00404C6B 57 push edi
4 q5 h3 g: ?6 M+ v2 j% p2 ?9 l8 S00404C6C 8BE9 mov ebp,ecx7 A+ y& e0 I& J, O
00404C6E 6A 01 push 1
! @3 e* s7 y6 P; @3 P2 }& q. l00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
1 E: ]# t' ~) A9 t i00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]& h8 z. t. R$ u/ _ x
00404C78 8BCF mov ecx,edi+ I$ U; l4 R7 R# ` D/ Z# a
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码4 e, w# x( ~9 Y. ?! c5 t0 U* e
00404C7F 8BCF mov ecx,edi; d% o6 b9 s0 B$ t: a6 Y; {
00404C81 E8 A73E0200 call qsr.00428B2D) |) v. ]+ |8 N. r' Z
00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
# p1 G! T! g8 X/ o b$ @. _00404C89 8BCE mov ecx,esi
1 e* z6 m' Q4 b$ U5 a# O00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX- \3 R$ `$ c% L# U4 C9 t u& u
00404C90 8BCE mov ecx,esi
( |: I9 u4 A: _; I# p1 @9 N0 I* R5 i00404C92 E8 963E0200 call qsr.00428B2D4 V) {) ]" W; ?; x
00404C97 8B06 mov eax,dword ptr ds:[esi]
; X4 t& V* y9 F- P: E6 m/ K00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2+ F- k+ `- u+ W$ I
00404C9D 7D 26 jge short qsr.00404CC5
1 z# A: v% R# E# B& m$ x6 _) V00404C9F 6A 40 push 40/ z/ ^6 u a# `1 W- o; a0 d( H
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"4 T. C& B* k" ~9 P& `
00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."
( M- D7 Y; n( j1 m1 K) g. E5 x00404CAB 8BCD mov ecx,ebp5 G$ }/ Z" R7 H: Y
00404CAD E8 C3840200 call qsr.0042D175, l* V J. m9 d
00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
- A/ u% V5 J9 f0 o00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx" f. ^$ `. B9 F: G) j% b; c7 v
00404CBD 5F pop edi
G- M. b7 T5 l2 Y00404CBE 5E pop esi
1 F2 L8 ~4 r" W00404CBF 5D pop ebp
# J# @ T" g( o( h00404CC0 5B pop ebx! b& H y& ` s, }( s2 U
00404CC1 83C4 18 add esp,18
1 F5 d4 X" }% J z3 P4 d# L3 c00404CC4 C3 retn
' s+ A# K% p2 T9 x! m1 S00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
. ]4 \! r3 s7 h$ e: Y6 J3 h00404CC8 84C0 test al,al J: \& K( |( E3 S
00404CCA 0F85 1C010000 jnz qsr.00404DEC
- Y. p8 c1 w3 [* H! }% {00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]6 V7 v# D) ?/ v2 G
00404CD4 E8 87E3FFFF call qsr.00403060
8 S" D: }0 w2 r- `; X% r00404CD9 51 push ecx4 ]4 q/ y8 F2 P9 M' {
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0- C4 _( Z- {/ y3 q
00404CE2 8BCC mov ecx,esp
+ e8 } d3 w) i y1 y00404CE4 896424 14 mov dword ptr ss:[esp+14],esp7 I# c; g. j" o9 O! U9 w7 P
00404CE8 56 push esi
' t6 ?6 } P# Y+ S! |* S00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0# M* R3 U3 V5 X. b: k
00404CEE 51 push ecx
& i; N/ K! C0 R! J* ?& y2 ^00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1
4 p, K+ R9 o7 \$ `" ~00404CF4 8BCC mov ecx,esp8 N1 a8 [; |0 |3 t# ?9 s% u+ x; n
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
/ y0 d, \6 P% ]& w' A/ ]* B00404CFA 57 push edi
% ? _1 C _- K( M2 z00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0
1 ]" @. y1 p, `+ K7 P; ^# q+ U& H00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]7 Q" n; }' I: A: s7 H- Z
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0
. \7 ?* [ V" c( d/ d X00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~
8 w+ r( z: r, b7 B" } `; W8 z00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~2 U' X8 Z+ _2 @1 o$ V _
00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~0 f( A8 i$ l8 a1 f$ x9 F
00404D12 6A 40 push 40! T8 m2 C6 y+ p1 B. Q
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"1 m6 `2 j2 T0 N# |% a8 n8 p/ h
00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."
4 g2 F! [# w+ \00404D1E 8BCD mov ecx,ebp
. K2 W I" S7 P3 R00404D20 E8 50840200 call qsr.0042D1759 a+ e, z5 G0 j7 v
00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
+ R; r+ H# p" ~$ I! m& L00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-19 y* u3 E! R0 }2 N+ h
00404D31 E8 5AE3FFFF call qsr.00403090. z' ^0 m+ ~, U7 N/ [9 l
00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]9 @$ ~8 w3 s, ]& {
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx/ K$ K# p p/ z9 ^3 a! }
00404D41 5F pop edi
( Z8 n# ~8 R; `5 ?- w2 I00404D42 5E pop esi$ M; A+ C! A, T$ m
00404D43 5D pop ebp7 z9 D8 S; p! M( q; M4 V; L
00404D44 5B pop ebx
5 T! a* W) _/ p6 o, P( H- U% e00404D45 83C4 18 add esp,18
: g8 P# ]$ P8 o9 W00404D48 C3 retn
( T' Q* Q$ R( N7 z6 D y*********************************************************************************************************************************************************
" o+ ?2 H. v) Q4 R& G跟进00404D09处CALL来到:
3 Z% i9 b6 X/ b! {+ R/ [004030A0 6A FF push -1 //一路F8下去~~~~* P" _- n) F0 f* b
004030A2 68 C88F4400 push qsr.00448FC8$ w0 G2 V! Q Z
004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
$ I' t# z- i2 t. s004030AD 50 push eax
9 N. D3 u/ z! O, v9 S& v. e$ i: T004030AE 64:8925 0000000>mov dword ptr fs:[0],esp
6 f2 X8 c6 x0 R. M h004030B5 83EC 24 sub esp,24# j8 W) T* j4 {6 U& {( J, r
004030B8 53 push ebx
4 b/ H7 X W/ I- I004030B9 55 push ebp
9 y4 L6 a, L- v! P) o004030BA 56 push esi
( Q7 o3 Z8 a$ M8 M, d& ^004030BB 57 push edi
5 ?5 L1 T+ q/ d+ t# o. u0 X004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890", H% R2 e# x# b5 ~$ T- S& L
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
G! p1 x; \% p. v, |004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1
, T9 ]. t: }, `# N h: I; m004030CD E8 27C40200 call qsr.0042F4F95 @) h6 q9 |" M$ c8 ~
004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
9 H: {2 b' T( H7 p# Q7 D004030D7 894424 2C mov dword ptr ss:[esp+2C],eax
' @, z( `1 V( p5 Y9 X004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]+ w$ \) ~6 y" C8 C
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
( ?7 }' m5 Z+ t+ b0 S: L004030E4 E8 905A0200 call qsr.00428B79
1 i4 o# {: O3 m. d% @004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]4 s2 a' o7 Z3 l- n* q2 n) V
004030ED E8 3B5A0200 call qsr.00428B2D% M7 o9 K! Y- A8 B J8 f' [
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
; g. |1 K% H; M004030F6 E8 7E5A0200 call qsr.00428B79
- _% S% |+ F* @0 D004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]5 P8 x/ z) ]! U# v6 G' R
004030FF E8 295A0200 call qsr.00428B2D/ n0 H, f$ l+ A9 K' j+ S3 M% S
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]4 t, o. `, r) O" q( A
00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
! V7 J& Z5 o7 x* O. S$ ~1 y0040310B 83F8 02 cmp eax,21 y& @; P2 a) S) w, E# C! r2 p
0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
+ Q3 Y" A$ @' K* z1 @" n5 z# Y. `00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]
) V# m3 f- W6 D: F5 M, B3 O00403118 837A F8 18 cmp dword ptr ds:[edx-8],187 e0 }& j G% w$ z/ y( @
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳 r; m4 X5 \$ c" y) z1 h. }
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
" \ Q/ P+ ?6 f: ]00403126 6A 01 push 1
4 f" H8 a8 b8 g1 b: }0 N$ r9 N00403128 50 push eax! L2 g7 v; l$ m+ }
00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
" T9 [( s: d9 X0040312D E8 C4550200 call qsr.004286F6- W3 j" i& E S: E) F
00403132 8B00 mov eax,dword ptr ds:[eax]
/ M4 Q* J, a: S% h$ K- ^00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
+ K- O! _& [; |% q) f$ q- A7 m00403138 50 push eax9 R) x" `1 F' m2 v$ P
00403139 C64424 40 04 mov byte ptr ss:[esp+40],4. M, O! j/ H' c3 W c
0040313E E8 4D560200 call qsr.00428790
& D0 f4 H& q% c/ | D00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
' _! o# X2 O$ ?, @. d- x2 Q2 f5 ^00403147 8BF0 mov esi,eax
$ x) ]0 n& M2 S9 }4 q! k# ?7 J00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3- E) E* H# d7 O% ?1 ]
0040314E E8 38C30200 call qsr.0042F48B. q; g' {$ Z5 E& _
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]
" d+ L3 K+ R$ ^6 N/ W, f00403156 B9 3E000000 mov ecx,3E
1 ~) K7 o# `$ W+ g9 X0040315B 99 cdq. A b$ k" v3 g) L& b& f; o
0040315C F7F9 idiv ecx& T- }9 @- S0 |
0040315E 6A 01 push 1! M5 Y" V6 g& z8 G0 y
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]3 ?( F( L: k0 D2 G0 n
00403164 8BF2 mov esi,edx
6 k2 W3 [7 z* b0 z" x, ]00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]! M/ z. k, b6 T' z# O# X2 w
0040316A 52 push edx3 @3 Y9 e: x! g0 w! d8 S. K
0040316B E8 0A550200 call qsr.0042867A
) ]4 ?% C) D: I9 Y, h% L8 o00403170 8B00 mov eax,dword ptr ds:[eax]; i6 J: ] l N# j
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
; m: h5 L9 }; a7 {. @ \5 B00403176 50 push eax) x. d1 f) I! `8 N6 \6 z0 |# G& ^
00403177 C64424 40 05 mov byte ptr ss:[esp+40],5
. A$ T) f5 C! h+ X6 \ o4 u/ l% {/ N0040317C E8 0F560200 call qsr.00428790/ g2 [, x- ^ z$ X
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
1 ^# \, I/ q J8 Q7 @- p00403185 8BF8 mov edi,eax
3 x9 X3 U1 n. I00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],34 Z2 C; D" c. X
0040318C E8 FAC20200 call qsr.0042F48B
# E P5 W4 Q$ s, k3 T* _00403191 8D47 0A lea eax,dword ptr ds:[edi+A]
2 v/ J( X- C3 a* B# c; O" \3 c/ z00403194 B9 3E000000 mov ecx,3E6 p$ p( ]5 p8 ?; m
00403199 99 cdq/ W/ J, n8 V2 [: r$ R7 m
0040319A F7F9 idiv ecx" G; @( q0 P w4 j2 ~8 H
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]
) l3 W, X0 e A: H6 C# ~" I G' G; C004031A1 894424 28 mov dword ptr ss:[esp+28],eax
# @* H- t" s5 l3 O; \ T004031A5 8BCA mov ecx,edx
2 P% E/ C( P0 H0 f( S6 O004031A7 894424 24 mov dword ptr ss:[esp+24],eax
% n) F4 |" o# u& O; q7 F0 L004031AB 894424 1C mov dword ptr ss:[esp+1C],eax3 K( v# q4 h" n
004031AF 894424 18 mov dword ptr ss:[esp+18],eax4 ^5 l5 U3 Q+ M# h: F3 x0 @
004031B3 894424 14 mov dword ptr ss:[esp+14],eax
; c T7 l% |+ c/ E5 r d. _& e8 Q004031B7 894424 10 mov dword ptr ss:[esp+10],eax- q4 Y, g* o( `' [
004031BB 8BC1 mov eax,ecx
* f/ ^5 [ j& J' h+ o# I9 w" M004031BD BF 0A000000 mov edi,0A9 W0 G& B# c7 a0 F
004031C2 99 cdq: h3 t+ f- T! s+ I
004031C3 F7FF idiv edi, y! a" X5 f4 [% H( s# h/ x
004031C5 8BC1 mov eax,ecx* v# s8 X/ b2 H( e- p9 G
004031C7 B3 0B mov bl,0B( L7 H9 S; \) `0 l
004031C9 0FAFC1 imul eax,ecx
6 Q# J x+ X. Y( r6 P% ~/ e004031CC 8BCF mov ecx,edi. e& T4 F6 B; V6 P- z' H9 j
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
. D$ k: v% ^7 T# G7 w- H004031D2 52 push edx
5 ]" L% G, p3 H9 u& z t, ]% t004031D3 99 cdq7 n5 E+ r& n" g; R
004031D4 F7F9 idiv ecx
2 M" M9 l5 v# l" A- N& V# y. x" j& N004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]
2 Q5 ~0 l" U; R' J! }1 F4 ]004031DD 2BC6 sub eax,esi+ Y/ F8 ~( O8 l1 V4 C' |
004031DF 52 push edx `4 d$ o& @6 m/ C( T! m
004031E0 99 cdq, S5 B$ l; B& o6 [1 u; B
004031E1 F7F9 idiv ecx' H" {' C, @) L5 O
004031E3 8BC6 mov eax,esi3 `' Z6 J# D" k/ l: W7 k
004031E5 52 push edx; @6 {- K m- W' J1 Y5 }& p; _
004031E6 99 cdq
$ V- }6 m, \0 D' Q! ?8 {004031E7 F7F9 idiv ecx. C j# m& j6 P6 q5 W
004031E9 52 push edx# m1 q! U+ N4 Z
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]9 m, Y# `9 X1 @& c- [
004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d": k. `& {' l2 t) H, A; [
004031F3 52 push edx
6 F5 c8 @: ^6 o' N; v$ G004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893
! Q9 _% S( P* d2 x- ?! V004031F9 83C4 18 add esp,18
% d' i1 i* S/ [5 B004031FC 6A 04 push 40 G- b4 y( s% z$ g* a: v T
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]
6 B) Z* ^! h2 a, E$ Y! V$ l- D00403202 6A 00 push 0
+ e. P' K/ c. @& q9 B" A+ `; t3 h5 l00403204 50 push eax( U$ H4 A' E! q/ k- R+ f! S
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
+ Z+ C, O& m K- Q! g2 ?00403209 E8 D6530200 call qsr.004285E48 v9 M% T" U( `" A
0040320E 50 push eax
. F# u+ E8 W$ J$ y0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]- H& s6 ?' |. U/ B9 v- w
00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C. |, p0 J3 y& _" K9 f, p; d
00403218 E8 A7C30200 call qsr.0042F5C4
8 F j0 h1 j3 K" e e/ j2 C) S* J0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]6 q, [1 P, e6 w; C& W
00403221 885C24 3C mov byte ptr ss:[esp+3C],bl( s/ F' J3 ^& r
00403225 E8 61C20200 call qsr.0042F48B
/ p: n- b0 S U" c/ J0040322A 6A 04 push 4
+ [$ N# F7 Y6 H; O0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]5 \* z! Z" _" h# A9 l. t* w8 ]0 n
00403230 6A 05 push 5
0 A) j! {) { l00403232 51 push ecx
6 \; `; A L! Z4 w00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]8 q2 [+ {9 \8 T- `3 M
00403237 E8 A8530200 call qsr.004285E41 f' d, ]& [; S: i; B
0040323C 50 push eax
7 t( }) P( Z. i0 k2 c& H0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]3 L% A+ U' y7 d& n# }" {7 r( Q% h
00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D
4 l6 j8 \4 p/ D00403246 E8 79C30200 call qsr.0042F5C4
% l- U; a* K% d% d3 ?4 }0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
4 A; j' d- |2 J. {* p. g0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl( Z0 H- A- e' z: ^6 w6 E
00403253 E8 33C20200 call qsr.0042F48B3 X4 ]$ B% b) [8 ^ C
00403258 6A 04 push 4* K1 s- u1 Q1 E/ h* o `
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]5 @5 k9 p" L s5 D6 i
0040325E 57 push edi9 W* k. u8 i5 z1 k
0040325F 52 push edx) M" F1 _4 I! I! p- }2 A; C0 P
00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
/ o! ~$ \1 x9 a, v& H: a( u7 s00403264 E8 7B530200 call qsr.004285E4
4 W9 k0 _; s$ C% q: S/ R! `' P00403269 50 push eax$ l. T: l& E* s( j' X
0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]4 D! k% r0 s/ `
0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
9 o6 R( \# \" \+ p$ P! A00403273 E8 4CC30200 call qsr.0042F5C4. `+ B6 w9 [8 {3 ^: P
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]' l1 T: d J( e: C8 |, C
0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl
% {0 a) b6 O# t: t+ j00403280 E8 06C20200 call qsr.0042F48B, I4 F Z9 g9 z2 X% b) k
00403285 6A 04 push 4
% l% H% {' N4 b5 }& L) y+ i. j00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]+ g! C7 b: |+ g: _4 {/ c) o4 c
0040328B 6A 0F push 0F
: x* W, z9 G' u& w- \& d! ^ d" h0040328D 50 push eax' K1 X2 A+ w! B, p
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]) \6 d3 u) b" ]/ c4 }: ]
00403292 E8 4D530200 call qsr.004285E4
" L- r5 A3 h/ F1 v00403297 50 push eax, t6 ^3 `" x& h6 c& S
00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]) M$ G" S2 _7 j$ L+ E, ?
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
# y8 W1 `) v e004032A1 E8 1EC30200 call qsr.0042F5C4
; ~0 `# d1 L7 T+ a7 Z004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]6 t- Y7 k: E! R% J6 D
004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl
- m0 B9 s. _: @( _$ [ B004032AE E8 D8C10200 call qsr.0042F48B$ u9 s5 W3 T" g3 P( |3 c$ O8 Q
004032B3 6A 04 push 4
) A5 ?' T% e0 N$ H004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]/ W8 H/ r3 C$ L& ~+ _; ]
004032B9 6A 14 push 14
6 `) d; f/ ^4 l; `6 j. L9 h004032BB 51 push ecx
& c0 l: n; y2 {: n! X004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50], Z3 P7 h) r7 A/ k( j
004032C0 E8 1F530200 call qsr.004285E4
' ~1 Q$ u3 Z; ?# Z004032C5 50 push eax
! M! L1 E# Q) X; L7 ^, a( S; ^* P004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]* V, l; D0 l4 u5 N( A& q
004032CA C64424 40 10 mov byte ptr ss:[esp+40],10: d) ]$ ]/ U2 {& H3 ]
004032CF E8 F0C20200 call qsr.0042F5C44 [7 i# {! S. W* z! \! h
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
+ s7 Y) y' V! S% }1 K! r004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl
. k4 |% w' E* \' Y004032DC E8 AAC10200 call qsr.0042F48B
3 _. _% ]: C5 c, J$ n# @4 ]" u* ^004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
6 p' W9 m! V9 [7 @3 O5 I$ ]- [004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX0 C, t" L! o' z, L; }- J
004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL, L7 W/ l% F- j3 V) O
004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL# g9 b* H: D i+ B1 D/ R1 e
004032ED 8ACA mov cl,dl ; DL送CL
3 ^9 u' ?7 M x9 ~004032EF 3AD3 cmp dl,bl ; DL和BL比较
1 \8 V% Q5 _) w8 D% D4 I6 K004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)2 Z$ h5 C/ z4 W7 c: S9 g0 [
004032F3 84C9 test cl,cl3 U+ J7 x. k/ A, T( [: J
004032F5 74 16 je short qsr.0040330D- S, R0 n) K3 p* Y
004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL! i, e' {! U( W" H, o& Z' H
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL' W) ^" J [2 y
004032FD 8ACA mov cl,dl
$ j9 a4 v$ B5 e" a' B* i004032FF 3AD3 cmp dl,bl ; DL和BL比较
% G/ q" j0 a' @0 l% ]6 M00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
f& a# b6 c9 U C) `* U7 l4 |, R00403303 83C0 02 add eax,2 ; EAX加2
% P/ U) }/ p) ?: c00403306 83C6 02 add esi,2 ; ESI加2
# h6 j$ P. S; D" k$ n/ n5 z7 B00403309 84C9 test cl,cl6 }% d# f$ x: B6 a0 K' M* t& x
0040330B ^ 75 DC jnz short qsr.004032E9& ?: I- w# a1 B9 G/ `/ r3 _
0040330D 33C0 xor eax,eax
4 ]) I1 e6 h; w7 X0040330F EB 05 jmp short qsr.004033164 T7 u% J, U3 ?0 ]; f! Z
00403311 1BC0 sbb eax,eax
+ k1 u7 V0 }4 c* h1 U2 R/ S: s( Y00403313 83D8 FF sbb eax,-18 y0 s0 v0 E+ T3 x7 M0 w* m1 e+ k
00403316 85C0 test eax,eax7 W& B) T6 r/ [: D4 ], Z, H2 u' J
00403318 74 0E je short qsr.00403328
' d- J0 h" Y, b8 L0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
3 @/ l/ }; s$ s0 \0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]3 Q3 K6 c( ~: m) {9 f" x( O
00403323 E9 F0000000 jmp qsr.00403418& g' ~- j* R! Y
00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
6 R" `! @, A1 H* \0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]) l/ I5 Y# g2 }
00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]/ ?/ k8 {) i+ U+ y$ Z% G
00403333 50 push eax" V( s, z- j0 i4 y7 B" x
00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX. M) p. q+ g0 D" u
00403339 50 push eax
# d4 z) E7 b: G2 \) `0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX' y; b# S5 m) E X# r9 |: ^ P
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
: p/ G3 P; l- o) y! [; M" E) |00403343 83C4 04 add esp,4
$ W3 |- n& b0 P1 t! N" U00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI
8 E* G7 u5 P9 I- l- C00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]0 ?! n& a2 y9 V8 I0 y8 G2 I
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]2 H1 U$ o( z$ g0 ^
0040334F 50 push eax
0 Z6 _0 J, E) g8 T- [00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX7 y- o/ H3 S1 x/ x
00403355 50 push eax1 g6 r3 l. j3 W% E
00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX
; a* `7 V h; E4 L" p6 o2 O0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
2 j! q0 X* y/ K3 t e0040335F 83C4 04 add esp,4
, B- v( k, J4 z4 Z, _/ |00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI P* h# v: V+ u
00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]1 U( v2 ]- x% y! n* R
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]# K3 V( t, k. n' I- v, Z( c
0040336B 50 push eax
U( Z" ^, u. k$ F4 p9 S- C0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX! N5 {: N$ i( c) g
00403371 50 push eax) b9 k j4 w" l* G
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX
8 Q- p9 V- J' R" `00403377 8BD8 mov ebx,eax ; EAX送EBX
7 ]0 g1 C1 |9 t% W# `00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX
& T* H' O2 h" K" I+ S- Y) j0040337D 83C4 04 add esp,4
" s0 q/ Q* O" b( Y8 R# b& [" f00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]% K, S/ E2 B W$ y, h0 [$ v; Q$ h
00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]/ }) G" A( s% n( d4 x
00403387 50 push eax/ C: i1 b( _3 k
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX
+ @ m+ Q2 M: |9 [. x+ A* f0040338D 50 push eax
2 Y4 D8 \' Y! h, \3 W& m. \7 [1 K$ g0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
& _( N2 ]- Z6 X00403393 83C4 04 add esp,4 w$ B4 P% c c3 I F- u- h
00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
D, O I+ j# z. C- s0040339A 8BE8 mov ebp,eax ; EAX送EBP
, v2 ]$ [% H% c+ u9 S3 m/ E0040339C 6A FF push -15 E9 z5 Z: `& }5 h8 L* V
0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX7 ~9 N/ c& ? _% d5 M2 p/ g3 v. g8 l
004033A3 6A FF push -1+ x! w$ z5 H8 |
004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
6 x' Z" \7 E# X3 _) d004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
9 D y' N8 D; f# ]/ ?/ g. }( n8 k004033AE 6A FF push -18 W1 D- K2 T- G5 K$ s2 z
004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX! {8 I; `' B% N( M. x
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX, h3 `5 a k/ r2 e. H
004033B9 6A FF push -11 W/ x ~! w) _. e9 ^
004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX
9 X, e) `2 q( ^; z: w004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX
u% ~2 c7 G! i004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
; C9 J, |: e T2 G$ ~5 x9 F004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX1 C3 O0 U; T- c* _
004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX& C/ D Q( o- f- V3 p4 E+ D
004033D7 D1E0 shl eax,1 ; EAX左移1位
* i! d* l4 Z( w+ x9 k. s! w1 r004033D9 99 cdq ; EAX扩展$ m0 w3 g6 ?. B' z! x
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中3 J" N7 ^+ w( q" ~7 M3 Z) E
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
, D$ \, i5 ~) E7 w3 h% ~ n9 a7 P8 h004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)
, {" I3 n, E9 K, c- m004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A
# M: {' Y; M: ?' A004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]. b" r# p" a% }& p
004033E9 EB 2D jmp short qsr.00403418
+ d k% O8 a5 E' o+ x004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX
3 w4 e$ w! h5 G7 J0 a& X004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2
) j1 a5 {4 u; ^! N) t004033F7 99 cdq ; EBX扩展
, h% D2 o" A! ^: h. x004033F8 33C2 xor eax,edx ; EAX和EDX取异或
* v: l1 [( @5 ]7 K. T8 Z, `( H004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX+ i! l5 u6 D: P$ Y
004033FF 2BC2 sub eax,edx ; EAX减去EDX0 ^) M8 {. ]* x3 g1 d ]
00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]
7 f# Y9 O5 \. K3 K% L! H00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
* a7 v/ ^, X( K- V3 g# Z! ~5 F/ b) D00403409 99 cdq
4 x( f8 k- a7 Z+ Z$ m6 p0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
1 H. m! G6 U6 c0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX
- u' k5 B; z, O) N$ B- K! S5 M0 h00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较
* [) D9 Y' F, h0 L3 D00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)5 S6 l# @& X2 v% \4 z
00403418 E8 6EC00200 call qsr.0042F48B ; 4 F" ^# t J% k1 u$ z6 @
0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]: M. N4 k7 W9 z0 S2 a
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],93 z* w m% d( w! w" @$ ~$ R1 S. I+ O
00403426 E8 60C00200 call qsr.0042F48B
; ~. e& s4 V. O# O7 H- r% \0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
$ ]4 u# f) l( g1 N: @# D. l5 h! }! ]7 |0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8
$ u; m. y: p) _) T00403434 E8 52C00200 call qsr.0042F48B+ d" e9 ]( [! F" C
00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
( `& h/ H8 X7 _' u2 n/ t$ d% q0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7/ b" g" D5 X2 n
00403442 E8 44C00200 call qsr.0042F48B
" h' x# v( |- H2 x' W, A00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]7 z5 Y0 G, ?+ X9 ~* e" m
0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6+ d. n" L+ T# g+ m4 a# g7 j$ ^* A2 d- R
00403450 E8 36C00200 call qsr.0042F48B
. J& S* E+ e( o V3 ^; U00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]& a2 V: q, z8 q6 }
00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3
5 B; D* W" g. F1 M7 a0040345E E8 28C00200 call qsr.0042F48B
/ M/ }1 [- u) _; o y* ?1 m00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
% L1 M! V$ S/ G9 c: j" v n00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
G$ Q. n% ~9 p* S. ]3 L- _0040346C E8 1AC00200 call qsr.0042F48B
0 X9 z5 k& z2 Z6 ~5 _ d00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
. L" l0 I2 @& N4 Q% L, ]: e00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1) k2 o }. j8 G5 t0 ]
0040347A E8 0CC00200 call qsr.0042F48B1 G" c, R( }- z, p3 S& C- a
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
5 B3 ?6 s$ `0 u7 W- `3 r00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
7 x# `' d9 O. u3 O$ G# I00403488 E8 FEBF0200 call qsr.0042F48B# c) Z) ]! s" r; n0 L* Q O
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
6 a A) k& Z+ A' \/ A0 o0 P00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
0 w; S/ z. c, F00403499 E8 EDBF0200 call qsr.0042F48B
P+ ?% y1 U% y. A, U% E0040349E 32C0 xor al,al ; AL清0
% u" `, t' Y* b3 _# Y( W004034A0 E9 88000000 jmp qsr.0040352D
1 o8 w) V# C. e4 U/ j004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~
& R j7 S1 r- E8 G. q7 t004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]! v6 h% x) K. y% a
004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9
9 E- A% F; w$ h+ p: V004034B3 E8 D3BF0200 call qsr.0042F48B
/ H5 L. J4 z2 ^% ~6 a$ H004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]) G7 Y/ S! [/ |3 k b+ x2 w
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],85 o5 b; l" t& `* ^0 M3 r% C
004034C1 E8 C5BF0200 call qsr.0042F48B9 m) j9 g* _+ X; p8 F: o$ K$ W
004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
$ c( c/ O; w1 Y0 U+ H9 N( D( z004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
9 I9 A* Z# V$ e/ s$ h004034CF E8 B7BF0200 call qsr.0042F48B0 n0 @# o0 t+ r4 s; c6 M- S
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
: m; |$ |9 g; \8 {! U: N0 b C3 L004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6
! ^1 O% a# G, B9 d. p3 h004034DD E8 A9BF0200 call qsr.0042F48B) {# c* F8 [+ z
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]! N5 y; [: C3 Y8 `7 D2 |
004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
' n' n$ X/ `& X" d, i2 D+ O' e004034EB E8 9BBF0200 call qsr.0042F48B2 j# T/ W4 f5 `$ ^7 B# d9 W7 g- K$ X' F
004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
, ^0 Z% Y7 b" F) ]004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],27 }: \! q. ?, {
004034F9 E8 8DBF0200 call qsr.0042F48B
" m1 f: H" {8 d! T004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
, z- n/ m1 X. E3 N00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1; R& \/ _# z$ L( F* d$ U
00403507 E8 7FBF0200 call qsr.0042F48B% [# ^# l& ~6 i+ |" B% |8 d7 U; F
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
5 }- g) n% P- b l* P00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],05 L. {( {. d# j, k* V. b- G
00403515 E8 71BF0200 call qsr.0042F48B
( o6 |$ ~7 v) {$ `0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]4 ^" r$ I0 Z- L6 W2 S* |2 E
0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-11 P4 x- z" `( h, c
00403526 E8 60BF0200 call qsr.0042F48B
$ @3 |, a% ]) p4 s' V6 D, Z0040352B B0 01 mov al,1
( j: F2 w( a" N; {% W6 [3 {0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
8 p& @8 d2 S! V. Z; X2 m00403531 5F pop edi
* ]7 q$ o- h: I* g$ Z- F) C00403532 5E pop esi
& b- O2 |" O6 ~% O! h00403533 5D pop ebp
/ t/ p4 {' ` V7 z00403534 5B pop ebx! M5 n+ B5 w% s
00403535 64:890D 0000000>mov dword ptr fs:[0],ecx
* o1 t+ f+ Z) E! z! r4 K0040353C 83C4 30 add esp,30
: B. J8 [+ P2 _6 V# i6 ^8 s0040353F C2 0800 retn 8
( @' D! `. v$ i& J--------------------------------------------------------------------------------
' s, d/ T$ P6 }; y# b$ @【破解总结】
& l/ Z! O' S0 H 用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^; x" ?9 l1 h- ?4 X, R* T5 J
用户名:yijun: _1 W& z( {, T2 R$ Q" m3 s- X8 u
注册码:4893*7777*3726*7777*0529& B5 f0 v* p/ Y; f2 i* T$ s- T
--------------------------------------------------------------------------------
4 A( ^: D4 x1 f' M8 C6 u* V【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡