|
|
|
【原创】破解Quick Screen Recorder
, ^, K0 C& O% Z9 J. X0 d【破解作者】 yijun
4 ?/ Y L D8 i7 x+ _【作者邮箱】 [email protected]. a+ l) A9 X2 }3 k/ i5 v
【使用工具】 OD,PEID; p9 @& }6 t: {; ^0 C' c
【破解平台】 WinXP
8 w3 f! p, ?/ p" R【软件名称】 Quick Screen Recorder
/ T& v3 p6 t6 I【下载地址】 天空
8 d" C! \% X5 i, X, [- s* O2 F【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
. x+ A( d1 U; I9 A; Y) h" t( m6 b【软件大小】 540K
, N- L1 M: w' Y2 d) X【加壳方式】 无, ? @9 s9 @& W/ ~3 T9 D
【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)4 h& V7 T5 U5 f y8 B
--------------------------------------------------------------------------------1 F' }# E/ n4 Z0 A* o* V
【破解内容】8 B* h6 A4 ~2 T9 a& r
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:0 l" _8 \) T5 L2 w& @& j
00404C69 55 push ebp //在此下断& x5 V! a; R4 B0 s: w, S- x
00404C6A 56 push esi# \: q, f, T) C) s& j0 G3 V' @; T
00404C6B 57 push edi) D% \( t7 l3 O' W
00404C6C 8BE9 mov ebp,ecx
- ^ A5 \3 x$ r, y0 \. z, k4 G" M U00404C6E 6A 01 push 1) r- t) \; b' a% g. f! u4 o
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
" P P' V0 X" B3 \- c$ Y3 r) m00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]
6 x2 e( k% ?* J" J2 E$ O00404C78 8BCF mov ecx,edi
E# G* V& y; m9 M+ j00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码1 n: r: T4 K, u
00404C7F 8BCF mov ecx,edi
Y4 S5 B( ?! l4 b+ L! E00404C81 E8 A73E0200 call qsr.00428B2D9 d* V% G1 a" @6 s7 Z
00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
, q j/ ?- S3 h00404C89 8BCE mov ecx,esi, h) j3 f& f) k: `1 G) v
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX# I' \1 E5 h" H' y; S0 V
00404C90 8BCE mov ecx,esi1 \7 L2 n( }: q5 {$ k
00404C92 E8 963E0200 call qsr.00428B2D
2 b0 f2 m t) l- x# H00404C97 8B06 mov eax,dword ptr ds:[esi]
# B( C5 v( I9 h4 u2 R# u" g, `) M00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
5 x5 f; p6 v( n7 `, U0 y4 Y00404C9D 7D 26 jge short qsr.00404CC5+ j" M/ X% r, u% C4 t
00404C9F 6A 40 push 40
% [. d; x+ @. V0 }2 ], \00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
+ U- F3 d$ v* Q6 h1 j. L/ q00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."5 h- o! Z* ^! a/ X4 ?( F$ M6 R
00404CAB 8BCD mov ecx,ebp
3 [% @7 X& x% f$ s+ }00404CAD E8 C3840200 call qsr.0042D175
6 Q5 F. _, C. H; `% Q& `$ j; t00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]9 o) z( P3 d# k" s
00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx
6 q: h+ a8 ^2 h; V. c00404CBD 5F pop edi
" M5 V. v- F7 r5 h00404CBE 5E pop esi
& ^: v* o0 f+ y00404CBF 5D pop ebp
u; w) t# F5 W00404CC0 5B pop ebx
& a9 m( i, z7 M00404CC1 83C4 18 add esp,18# C! S+ R# X! \0 v) P6 A
00404CC4 C3 retn, |9 j2 } W( t; a* a
00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
/ G' U+ ^; m7 j; b00404CC8 84C0 test al,al/ @/ W9 v! a0 ?
00404CCA 0F85 1C010000 jnz qsr.00404DEC
- l( {, [9 v0 {00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
( K$ J; a% Y/ q% _ z+ T00404CD4 E8 87E3FFFF call qsr.00403060
2 @) Y& f8 K) O, g7 |9 k( P8 |# m00404CD9 51 push ecx
' g, s& ?; h' q/ f+ B00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
5 O. P; j+ K& Y# g2 \; Q7 I" Q; R00404CE2 8BCC mov ecx,esp, `9 X! W- U7 K# |& p0 ^' N
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
5 b- L4 a- v* x% M7 R ^00404CE8 56 push esi" ]3 ^' d" p" |- {1 \
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
0 m A) f+ |% t d' u3 q00404CEE 51 push ecx }" N ]$ z+ R2 n# H
00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1
. X1 k( b& v" w: {9 M E! t00404CF4 8BCC mov ecx,esp
- [; P7 _1 |8 l4 D: X00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
; X/ _9 ^$ Y" y% Q, i00404CFA 57 push edi
5 _6 K }. c& `$ r7 P `00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0- @6 z4 ~; p# N
00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
0 |: k( H3 Q |4 V00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0; ~% x2 |; \! q* M
00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~
" @1 r) k C0 w) s+ \7 N! X00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~
, g3 U7 F, [1 P' Y' G2 M# [5 D; }00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~! F% w" F. ^8 Q( d% u/ @
00404D12 6A 40 push 400 z# C/ G/ H6 _" \# e8 Z5 a9 r5 x
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
$ k! h* H; V c: l( c00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again.", k; z [" g/ a. b' l3 h
00404D1E 8BCD mov ecx,ebp( I; x- h# R/ [
00404D20 E8 50840200 call qsr.0042D175
( {; V, g7 @1 b7 p1 Y+ J( g* i; x00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14] U2 P3 U; Y# P5 I# k- N
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-16 {5 W5 z/ {) U
00404D31 E8 5AE3FFFF call qsr.00403090
% Z1 v! ^! G' }$ K3 j/ x6 I00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]! O) X+ |, Y( U3 }0 B
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
4 U6 `* d+ S8 E00404D41 5F pop edi
$ @' D- @ h" p( G8 G00404D42 5E pop esi( F7 a( I* N+ H( {
00404D43 5D pop ebp& r5 b5 Y* x+ i( D
00404D44 5B pop ebx
* L4 D; o" D2 T4 p+ D00404D45 83C4 18 add esp,18 v2 a0 Q3 T" l" O# M
00404D48 C3 retn* ?1 t" S" _" {! A/ x+ |
*********************************************************************************************************************************************************
+ _4 k9 Y2 N. t跟进00404D09处CALL来到:
4 v8 R: {! K! d* V3 B004030A0 6A FF push -1 //一路F8下去~~~~
8 ^4 p2 N' N1 q; `% c004030A2 68 C88F4400 push qsr.00448FC8
* j, _, M0 [. v004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
) _) W, u. j2 N/ P004030AD 50 push eax( F1 b0 b4 S& K; p6 `+ o2 h9 S5 z% C
004030AE 64:8925 0000000>mov dword ptr fs:[0],esp9 N6 j) D7 p. R1 M, R K
004030B5 83EC 24 sub esp,24
# f/ L0 m' G+ ]2 N% V2 B004030B8 53 push ebx
( v2 R- g8 Y8 F/ D: y: d004030B9 55 push ebp6 |: L) w1 O8 f: b+ ]8 L
004030BA 56 push esi; ~5 S" f' e& W. l, |* e6 p! B' {
004030BB 57 push edi
- _. ?# Y& c& l$ l004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"$ L, A, M0 `0 X t
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
8 V; F# p1 D1 z5 w: X M" x- R2 j# I004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1
8 ~% ` c/ K1 a9 Z; d+ [004030CD E8 27C40200 call qsr.0042F4F9! x k a: g4 v7 |
004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
/ R& [# V) E3 `0 a; I8 Y6 B- q0 g004030D7 894424 2C mov dword ptr ss:[esp+2C],eax* j6 I' @. \2 d) ?2 G
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]5 R% O0 n- {0 ~1 g5 e0 N. V9 e
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
0 n% i. ~/ W' b" q004030E4 E8 905A0200 call qsr.00428B79* h0 J8 |( k! R3 U9 \
004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
/ b! {9 r0 J. H004030ED E8 3B5A0200 call qsr.00428B2D
. f5 J; x4 C* }004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]6 _# [* c7 a; F: V9 Z8 J
004030F6 E8 7E5A0200 call qsr.00428B79
+ Z1 E- \; C6 e) K/ V' j w0 w+ \004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
( d; V [8 z& Y! L( s" \- i. y( M004030FF E8 295A0200 call qsr.00428B2D
% D( g8 L) [3 a$ p. z$ j8 L00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]: h$ [3 |) I9 t7 T9 P2 K
00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]2 Y+ e, E5 `- c, k
0040310B 83F8 02 cmp eax,2& D9 i/ S, N+ D( @/ q! G% y
0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳1 b) f3 E9 U8 B& F e h% [
00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]
/ l U, d" c2 J1 W! M4 i) j$ Q00403118 837A F8 18 cmp dword ptr ds:[edx-8],18
$ ]$ v& f! d" ?9 p- M$ W/ S0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳4 B! M, d6 v; ?7 o
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
N! q& a! T8 B3 X$ q+ |& ]" F3 D00403126 6A 01 push 1) t2 V; W! n: Q! G) @, V. Q1 [
00403128 50 push eax9 H* ]: o0 g! [3 C/ J
00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]4 R! J- t: e: @: ]) K6 h
0040312D E8 C4550200 call qsr.004286F6
7 `* N( V! U/ B$ J0 ]$ p00403132 8B00 mov eax,dword ptr ds:[eax]
) ?5 y# }' Z) L6 n' G @! H" J/ e00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
. u& L* {3 f( V8 ^; G4 ]* K00403138 50 push eax
% H& G- i3 ?) f9 S( |: b00403139 C64424 40 04 mov byte ptr ss:[esp+40],4+ `) L4 S$ y' B) i, @4 Y# o
0040313E E8 4D560200 call qsr.00428790! L/ ~6 G" z7 K
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
% y/ \2 I" a2 j# N: [/ `00403147 8BF0 mov esi,eax5 F0 |3 e# F! ~+ m/ B/ i' G
00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3
" Z! o) M. |' {( I: {- c8 c0040314E E8 38C30200 call qsr.0042F48B
* {/ l; Z( c) Y8 \7 F7 T00403153 8D46 0A lea eax,dword ptr ds:[esi+A]6 O5 r0 y0 W7 R
00403156 B9 3E000000 mov ecx,3E
; Y/ B5 k$ A' D8 Z/ D0040315B 99 cdq
+ F; O2 @$ z2 x' R: Z& p4 Y, V) _- f0040315C F7F9 idiv ecx, e" c# r$ E3 D# Z! y* w
0040315E 6A 01 push 1
" R% T) Z. q! j9 o4 Q- u& A, |# ~00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]2 `* Y. O0 q4 S5 a: E* ~/ G9 N# o
00403164 8BF2 mov esi,edx
: ]8 ^5 j) R5 u& y( x2 s2 @00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]# E( _' U0 O5 f! O
0040316A 52 push edx
; S* u& u2 @0 N) W0040316B E8 0A550200 call qsr.0042867A' k: B1 t+ M; d- x; T
00403170 8B00 mov eax,dword ptr ds:[eax]- B- F( @* i; [/ A- r, V
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]0 g! k9 U n) w( U# N: x3 W6 w
00403176 50 push eax
; I2 N: e* I1 q: O7 s00403177 C64424 40 05 mov byte ptr ss:[esp+40],5
' V) J: Q* R; K# w0040317C E8 0F560200 call qsr.00428790' `! z" f; m. X( G
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
; b! M( q# Y5 f00403185 8BF8 mov edi,eax/ O- F9 m# w' u. T$ m
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3
! f: t3 v$ T' {/ Y0040318C E8 FAC20200 call qsr.0042F48B# j& m- |6 B) C8 j1 n& _. s
00403191 8D47 0A lea eax,dword ptr ds:[edi+A]
0 H7 e; {( a* M0 I8 J( V# o00403194 B9 3E000000 mov ecx,3E
3 u1 H) `2 ?2 |! J+ V00403199 99 cdq1 g, Q/ t* X0 q9 Y: a
0040319A F7F9 idiv ecx6 o2 r3 U/ b5 k+ c* w" D+ U7 a
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]
( B& V! y9 h! l4 [2 D! r2 ~7 ]004031A1 894424 28 mov dword ptr ss:[esp+28],eax
$ S# q+ C& a0 f! g" S6 v$ A004031A5 8BCA mov ecx,edx$ g, `4 Z! v: l. {1 @) k( v" E
004031A7 894424 24 mov dword ptr ss:[esp+24],eax7 `) C. M0 j7 G, l3 v
004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
# k: N' _: Z7 A; c004031AF 894424 18 mov dword ptr ss:[esp+18],eax
& }5 D; F! ~" R* J# h1 }: U' c004031B3 894424 14 mov dword ptr ss:[esp+14],eax
, j# o$ p7 r5 I2 @4 k* O004031B7 894424 10 mov dword ptr ss:[esp+10],eax/ H/ Q$ q1 L3 Z! O5 N
004031BB 8BC1 mov eax,ecx
* _( s" z. [3 S$ _004031BD BF 0A000000 mov edi,0A
: L; H' z$ O3 m# e: \4 X) }. r004031C2 99 cdq
! t' g& @7 F% M004031C3 F7FF idiv edi
4 T1 a% X$ D# W5 @) o) X4 X004031C5 8BC1 mov eax,ecx
4 o) j1 C! |" @2 j! F( b004031C7 B3 0B mov bl,0B
6 P- Z4 l! x& D, i& j7 k3 D004031C9 0FAFC1 imul eax,ecx
6 ^* `% @! K6 [4 v7 a, H7 V# S004031CC 8BCF mov ecx,edi4 k# Z; J% N- c7 Z
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl' y s. F# L: H. l
004031D2 52 push edx
8 M; S& j/ F+ \% T b9 f4 `004031D3 99 cdq
/ _+ O' y7 P: q$ w' x3 G004031D4 F7F9 idiv ecx
! H& \8 e: M. f; i* p004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]
7 e- h" K6 U% C1 U0 e3 O004031DD 2BC6 sub eax,esi
3 N! E. r: Q% W# @7 u1 \004031DF 52 push edx3 h/ n6 k- V2 J, d' n5 L
004031E0 99 cdq3 Q, b A$ A m! P! Z
004031E1 F7F9 idiv ecx
* j1 k; x2 X7 v! `/ f/ F! M2 E004031E3 8BC6 mov eax,esi7 b4 r* \# h! E
004031E5 52 push edx1 b) ]1 W8 g( J+ q, |4 q
004031E6 99 cdq
- M# w7 r V1 J2 V7 M- M3 v004031E7 F7F9 idiv ecx* @& }# j3 D3 p
004031E9 52 push edx
) d# _5 K* m" \$ g& g3 d* ^004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
o* Y3 `7 w1 h* O( O; \# ~. Q004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
7 D9 ]1 q: V, l1 O8 _$ l004031F3 52 push edx) t# g2 y: n" w' g+ M! a
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893
- J4 N% T+ P J% J4 a, l004031F9 83C4 18 add esp,18
, d$ J+ e, Z' `) K; O/ L( c6 S004031FC 6A 04 push 42 k4 W. ]& ^2 K: n( H% s
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]2 D1 X5 F w7 x2 D, X0 t
00403202 6A 00 push 0; Z# W' n o, P& ^3 U; ^% o
00403204 50 push eax
8 T' h' ~+ B) {3 @* `* K00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]. u2 X( L- W! A7 J; c( q
00403209 E8 D6530200 call qsr.004285E4
# e1 |0 s* B. @1 V, U0040320E 50 push eax: s% p0 A. e0 C$ r
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28], t) m: y) J+ k# K. h, d
00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C
k/ {7 t/ R b$ m00403218 E8 A7C30200 call qsr.0042F5C4" F" d( s2 B0 \6 ?6 a. x+ b6 P
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
n% Y6 s0 ~# K" h& S \00403221 885C24 3C mov byte ptr ss:[esp+3C],bl' Z& O8 l) v" J) l# D Z7 F8 s
00403225 E8 61C20200 call qsr.0042F48B: L! Q% _" p' r
0040322A 6A 04 push 4
# Z+ y/ j6 {$ ?9 Z4 n2 k8 f0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
8 ?) Y8 ^' ]% r$ L8 X4 f00403230 6A 05 push 5
$ j8 q0 P+ l! g. ~6 L7 ]4 C00403232 51 push ecx
. H( k0 I6 ^4 o* @# u00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
# A4 e" D. B9 B {* i8 w5 r00403237 E8 A8530200 call qsr.004285E4$ B; X2 [) o3 d$ D6 {
0040323C 50 push eax; q3 {3 f% v' v4 g6 [8 ]
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
% _8 J9 S% e4 E# S00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D- w( o. A, i/ X7 e) Y1 y. c
00403246 E8 79C30200 call qsr.0042F5C4
' k, w8 C# _6 R' Y( e3 k0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]8 @9 v8 a/ p1 A5 T5 h9 d% ^7 I
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl
2 n F+ G0 t( k l! Y8 c3 n6 l- e00403253 E8 33C20200 call qsr.0042F48B7 u, z3 I. Y% O7 l
00403258 6A 04 push 4
' ~! M6 ?2 U; D6 o( [: }( \' t0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]4 r5 b( ~$ I/ e/ J2 o
0040325E 57 push edi
$ Z" `* C0 b0 U7 [9 w0040325F 52 push edx4 e$ C: @! @9 J9 I6 C
00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]- w1 Z" E! T/ v C6 h
00403264 E8 7B530200 call qsr.004285E40 v" m/ |- N- Z' Z9 ~% N
00403269 50 push eax
1 t- D. Y- c1 e2 M" g2 e. h0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]6 v0 ^- T+ }4 F" r/ k d
0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E; z, o- C H% e5 c; [+ F3 W3 j8 p/ H6 g
00403273 E8 4CC30200 call qsr.0042F5C4
; t5 D4 e4 v- @5 L) ~1 B00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]( ^: ^; B+ k, ^" v
0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl
# ^' V G5 i! ~5 a00403280 E8 06C20200 call qsr.0042F48B
. s [- a1 D8 @/ y4 ~. h. K00403285 6A 04 push 45 o7 h! r! n; G) m n1 Z0 {
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
2 e' [9 r8 P/ {; @0040328B 6A 0F push 0F" q4 g# C) m+ U& z8 O4 ?% n
0040328D 50 push eax0 [% Y! J* ~1 P b H e
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
! w5 G; v: E3 P# L00403292 E8 4D530200 call qsr.004285E4
7 `0 A. R3 k% E1 F/ d# m( I00403297 50 push eax
5 K8 H7 u& h! a* d00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]2 h' E) X5 b: m# ~# L
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F2 Z) Z5 C! n3 U
004032A1 E8 1EC30200 call qsr.0042F5C4/ r# _' h' ~: s* i5 x4 C0 p
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
9 @! I4 r- q& c. Q004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl
3 [" L+ b3 N+ t6 a& E4 U4 v0 I004032AE E8 D8C10200 call qsr.0042F48B% P9 z: x* V" u8 m. j- O
004032B3 6A 04 push 4; l9 H. _5 C" T4 H
004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]( i" U# P; w2 g& F% Q3 F: i) t
004032B9 6A 14 push 14* F/ j, t8 I- C3 k7 w* ~
004032BB 51 push ecx9 C ]1 S' b% m* U3 }% ?
004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
2 R* T6 A* B: l! A004032C0 E8 1F530200 call qsr.004285E4
/ k) Y* ]6 n; T( k1 _4 p" U0 P004032C5 50 push eax
# `1 Y1 \9 o! _' P/ q, v( H: M004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
$ |0 v. ^, k% w2 W$ O( n* D8 [6 E004032CA C64424 40 10 mov byte ptr ss:[esp+40],107 `- G6 f# z* D3 R
004032CF E8 F0C20200 call qsr.0042F5C4
( b/ g% C, f9 w$ d9 E5 M004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
0 X- }0 x+ d, I7 `* i004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl6 t' s8 B u% p z
004032DC E8 AAC10200 call qsr.0042F48B8 C( F6 v7 e- K; J" Z+ Y3 M6 n
004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI6 d% y. q# U/ n7 W2 I
004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
; q0 x' z6 O4 h' f& F; A1 q! h004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
$ o, y% Q) U1 w$ D! p004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL
7 i% M3 T: s1 K q7 z004032ED 8ACA mov cl,dl ; DL送CL
% b- o3 h. P* c! O5 v004032EF 3AD3 cmp dl,bl ; DL和BL比较6 L. p S8 c1 ?9 F- z5 H
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)) T+ n- l. U9 v- n" d" T
004032F3 84C9 test cl,cl0 d1 M" d; r1 ^ e5 J- t6 X* @
004032F5 74 16 je short qsr.0040330D; ]5 ]( U4 o0 H3 {7 A- _* L
004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL/ x8 d$ z1 e t: }4 Q7 ^, J/ C: r
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL
0 W) A$ J5 x) i! e+ Q% U8 v/ d' D004032FD 8ACA mov cl,dl
& m% _# M3 b( g) q! g. a( b+ x004032FF 3AD3 cmp dl,bl ; DL和BL比较
$ k* ]8 H% u3 I7 Y0 T8 O0 q- M' n& K9 H00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
; U% n' f# _) `1 I* c: g$ a" e00403303 83C0 02 add eax,2 ; EAX加2
8 ^4 N% M( c2 [+ D. R00403306 83C6 02 add esi,2 ; ESI加2" U* S' l9 l& D8 L/ Q- B2 `! V
00403309 84C9 test cl,cl
) F6 ?! @9 g# X5 B5 [. p5 G* {0040330B ^ 75 DC jnz short qsr.004032E9! ?3 C. {$ y/ i5 [4 z
0040330D 33C0 xor eax,eax
3 X6 s1 L# r0 e& m( P0040330F EB 05 jmp short qsr.00403316' a9 j1 D J, ~
00403311 1BC0 sbb eax,eax
! g% b% f/ X u! Y; o+ h00403313 83D8 FF sbb eax,-1) P1 C8 i1 F* B8 d
00403316 85C0 test eax,eax6 \7 E: S0 d4 W" u D, R' K( t' w
00403318 74 0E je short qsr.004033282 i0 V( ~/ v2 a: i! _4 p
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A: n, a+ h6 _8 A. d; {/ \7 T9 A
0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]! k( c n# M) L% M4 [
00403323 E9 F0000000 jmp qsr.004034181 [. I+ H) E( Q
00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX9 F8 @& f4 U2 [0 k j
0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
* Q& {6 R! U/ g" B9 m7 d00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]5 J' d9 ^- i8 o# z4 l; E( ]* f' Y! ]$ v
00403333 50 push eax7 C7 S9 Y! Z1 r7 ^. E
00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX* U9 [6 d+ d/ Y* t9 Y4 r" ~
00403339 50 push eax
" y. v% D8 V5 _2 a. r0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX
+ o7 }7 D- t( ?1 i0 Q5 Q/ p* B0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX0 Z. m) I: G# V2 y* G' q
00403343 83C4 04 add esp,4
+ ^' C7 o0 k, N0 y4 |' N00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI
6 e) c" S8 j7 m& S6 A) Y8 e( T00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]
0 w# r* f& \8 y% G Z; W0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]! T5 u" U% }& j5 B N( }: q; J
0040334F 50 push eax
$ s* H* H2 i) [) m) N5 i r' L7 n00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
7 b r# C$ B% C& f6 w1 L1 W00403355 50 push eax& k& D5 P) u+ |7 D
00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX
. C" P2 s% G- }4 G# `+ } t+ ]6 X2 R0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
" O: Y$ t( L9 z2 G Z+ |5 u) R/ ~0040335F 83C4 04 add esp,4* B, n" j5 U" j
00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI
: x' J" k" r7 B00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
% r8 {. T V; g00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]( i) x I9 R. P" y# @; d
0040336B 50 push eax
+ c( Q7 | D* \0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX, h$ `& E' u5 J2 f
00403371 50 push eax" g( J- M! k+ @
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX N8 w! r( o- e: G, _/ z$ d
00403377 8BD8 mov ebx,eax ; EAX送EBX+ s# i1 j9 G0 h. k5 Q; r: ^
00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX) e7 v/ U" a( W, j/ F1 R; f$ I7 I
0040337D 83C4 04 add esp,4( l- D& \* T, K$ h* d; c; L* D7 h' {
00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
( V5 G: u# @/ T* @00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]
3 L& {( [# C7 a/ M7 w00403387 50 push eax; o9 s0 Q, P/ n
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX
7 o# D1 r0 X ^- p0040338D 50 push eax; Z8 a# f9 R" ^
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX. w4 @2 ~3 z9 q( z/ {( @
00403393 83C4 04 add esp,4
$ L- \. f7 v- b! t00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
. a9 ]' M$ W$ Z: _" p& c0040339A 8BE8 mov ebp,eax ; EAX送EBP
6 P5 U3 y7 ~0 {- g6 m; K0040339C 6A FF push -16 Y6 V4 B% D: X
0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX6 j5 n4 d# E: Y4 N9 _
004033A3 6A FF push -1% ]9 p! q; L) p1 g6 m% w5 Y, M$ a# `
004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX c9 ^5 }" o6 @$ L8 V2 c. T- P( f
004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX5 T" e4 l2 F7 c
004033AE 6A FF push -15 W9 N* X7 |( _, H. Y( S
004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX2 E5 t L' e& j3 Q$ g" d
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX
' `+ m' p |' r2 e$ R004033B9 6A FF push -1+ R' M6 K+ W' T; O+ N2 a' f
004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX: ]4 h; k/ C$ l M+ S$ r( }, A
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX
r$ g+ i0 F8 A) F004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
9 Y0 F, B: p+ ~/ X9 S' ]5 F- x004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX; g+ i4 b3 s. S8 r- K. ]
004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
3 s' L/ y1 ^# Q0 U2 F6 U C004033D7 D1E0 shl eax,1 ; EAX左移1位
/ H/ y$ i) y: {8 u; w6 E4 p2 k004033D9 99 cdq ; EAX扩展4 N) f$ T5 f( o/ ^& @5 ?5 _
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
/ A" Q2 U: J6 B! P% |) O; D004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
5 \, Z* E( q. l, ]- J- D004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)
9 Q8 }: `5 N( J004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A6 C* Y+ Y$ z D) O
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
6 L: F3 D3 b9 N004033E9 EB 2D jmp short qsr.004034189 B0 E j/ w8 B- L4 ~8 I9 }$ ]
004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX. n2 Q* l; J8 o- c# f* I9 }! H# B
004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2
. w8 w6 y0 C g6 A004033F7 99 cdq ; EBX扩展
+ U+ b8 B: u( f& {* f/ Y004033F8 33C2 xor eax,edx ; EAX和EDX取异或
. ]" m7 G/ `- h2 l6 ~004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
* Z5 ?5 B* n' ]( d: n+ e& T4 v004033FF 2BC2 sub eax,edx ; EAX减去EDX
( D" K3 V$ q$ H& Q7 e% D3 y00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]
* \. i; l* R! V+ d U00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX+ P% B$ B4 D; x, b# }" o- Y
00403409 99 cdq: K$ P( D) w- m7 T
0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
6 G e, H. `' ~9 c! u0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX4 Z3 V" L; V3 h4 y3 b$ ~: N# y3 N
00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较
# v% Y; X+ v+ g. j# [ `# O00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)
3 v" l: Z2 J" l- e5 S e5 ^/ R+ S5 u- a/ N00403418 E8 6EC00200 call qsr.0042F48B ; ) L i' I4 p( T- e/ M; i- w( h
0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]5 K* I" F9 v+ ]' L b: h8 A. M! I
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9
4 R/ g- I& b! d$ J4 S00403426 E8 60C00200 call qsr.0042F48B
' S( e- j8 ?) O- d0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]6 [" R8 C5 n: {$ t0 R5 l ~
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8
5 c- j- @6 K: [' N) y00403434 E8 52C00200 call qsr.0042F48B
+ h, e8 T* T ~/ A: |00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]7 x. ?. K+ V5 `6 k. |
0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7* Q5 A) \7 b4 Z6 y+ J
00403442 E8 44C00200 call qsr.0042F48B
! r7 s* [/ q# d( J4 e$ n8 L" G00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
8 o4 g. y z6 D' E8 q: r; L0 M" i- M0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6! {, ~" w j% C
00403450 E8 36C00200 call qsr.0042F48B( m6 Z' ~: `: |0 B+ Y7 s
00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
: W: u; \. h2 L) K& G0 Y% i( }% N( W00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3% e9 T2 t% ?+ X* A6 B9 u! r
0040345E E8 28C00200 call qsr.0042F48B0 o. H h& p2 E2 ^
00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]: M* O+ @! W4 [1 Y% W ?4 ^4 t
00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2; J& d9 N- ` T, b0 N8 g; ]( n
0040346C E8 1AC00200 call qsr.0042F48B
9 |+ q9 r7 T: Z9 D00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
7 G1 q9 F/ U0 m& ]0 m00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1
" I X8 m! j2 M V# S0040347A E8 0CC00200 call qsr.0042F48B$ p1 v( f% |: {6 n6 b3 x# w
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
0 V+ b+ [; T& h0 z0 J$ O. b8 I00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
$ S7 z# \4 ?2 ]* F% w1 N* s0 F00403488 E8 FEBF0200 call qsr.0042F48B
* O6 y: _: c# \# W9 _& V0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
* u; T0 ~7 d3 R; ?: y; r00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
6 ]: G6 A, i q$ |# y5 T00403499 E8 EDBF0200 call qsr.0042F48B
! O% m% X2 X) b' m8 h: M( d0040349E 32C0 xor al,al ; AL清0
9 | @' [4 i: B004034A0 E9 88000000 jmp qsr.0040352D. R. M! m y/ [! k3 `$ a7 X
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~
" ~% o6 D [+ }: d6 h004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
$ ]8 \2 u# L! ~004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],97 h6 a1 B7 M/ |1 v$ n( ^
004034B3 E8 D3BF0200 call qsr.0042F48B
+ R- {) I; v+ R0 z004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]8 _0 |5 q, \; z& V! w# [- \6 ]
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8$ V* d5 E: s' t$ q
004034C1 E8 C5BF0200 call qsr.0042F48B
% m4 h s6 p% u7 \" `! i004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
* N G- W7 V9 C004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],76 d' K) }4 |# c, v& Y+ E
004034CF E8 B7BF0200 call qsr.0042F48B- A# n7 M# _2 z$ ~9 g0 Z9 ^5 I6 Y
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
7 r1 y% P1 A2 n3 ?2 ^5 c004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6 ~2 t: P" O. }) `% t
004034DD E8 A9BF0200 call qsr.0042F48B4 r5 R( u6 H3 b' I2 N4 _+ g. z
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]" `; E- U3 x, o& A+ \" `
004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
7 Y0 B3 e% J4 ] C9 B$ }! p004034EB E8 9BBF0200 call qsr.0042F48B6 N# n" c! k! `# Z- Q
004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
( U: J: a0 c/ N004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2. k" w' m0 L3 w+ ^" \
004034F9 E8 8DBF0200 call qsr.0042F48B
" v" O5 [6 H$ `) G004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]! ^* N2 C, c; u" q. R: s. _' \
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1
; {1 d$ ~- [9 F0 f. W5 z00403507 E8 7FBF0200 call qsr.0042F48B
# @- a, j% D9 {& F: l0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
% G. y0 H1 Q) }) D00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0) G4 P, a i: b* r q$ o
00403515 E8 71BF0200 call qsr.0042F48B
# R( w( g; l* J! t1 @* b: C4 S" l0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
7 O9 S6 M# m" c- m& r- z0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
/ A$ j/ [; [- A4 `. W4 d/ R00403526 E8 60BF0200 call qsr.0042F48B
* V6 U: n, G. S5 v0040352B B0 01 mov al,1
# m5 s3 V M' Z& [4 p; c+ E0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
; F6 t$ i7 K, a- j V- p00403531 5F pop edi4 g' v9 X9 g; @3 X# \
00403532 5E pop esi
( V) u* a2 e9 W% O+ @3 t8 Q* J00403533 5D pop ebp. L$ K. x; c8 o6 z, h
00403534 5B pop ebx* D: U# J, k4 X6 c# M
00403535 64:890D 0000000>mov dword ptr fs:[0],ecx
( k1 f: U0 U0 I0040353C 83C4 30 add esp,30
+ Q# x7 @* M; \' N0040353F C2 0800 retn 8: H, }; H0 O* Q7 B
--------------------------------------------------------------------------------, i/ \! `: l" A* m, T8 a2 ]
【破解总结】6 ]* [4 e+ \/ }+ T4 l) J
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^& C' z! l; E% k( l
用户名:yijun
) O2 f5 e( h/ Y6 a/ A5 A+ n注册码:4893*7777*3726*7777*0529
. \8 Y( T# _4 R; r; h( F7 L--------------------------------------------------------------------------------
& l( A M3 X$ @8 B/ @0 Y' t) Q【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡