|
|
|
【原创】破解Quick Screen Recorder5 a8 d% }& g" L) g7 q' f- E
【破解作者】 yijun
7 z2 E% @4 U* C2 i( ?% E* E3 ?【作者邮箱】 [email protected]+ c: B/ x) I! Z
【使用工具】 OD,PEID! U, B0 Q; C$ n: N, {' K4 g, t
【破解平台】 WinXP
2 B! ]! c: g$ x9 i【软件名称】 Quick Screen Recorder
1 r* G1 G0 S2 }* [- i! S" _7 d【下载地址】 天空2 H( ^0 k+ e2 a; |5 H6 j
【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on. 7 f: K* ~+ }9 e1 d. u
【软件大小】 540K; X* v" Z9 k6 h) d( a" v8 w7 m
【加壳方式】 无
9 e! y! t; t5 ^0 {5 K. P【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)4 t; m+ ?7 X& L! X
--------------------------------------------------------------------------------, e2 a/ @- ^1 v5 _' q
【破解内容】
+ ~6 M& `. m* C4 x# x) ? PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
! l3 D3 a4 _( a- @: f$ h- W7 O d00404C69 55 push ebp //在此下断. G) S, P2 _+ \# X7 f7 g+ X9 y
00404C6A 56 push esi
; \" Z1 z/ G+ e) e$ @+ Z00404C6B 57 push edi1 T# h0 P' j0 D" B; H& ?2 @
00404C6C 8BE9 mov ebp,ecx8 z/ L4 a0 `' N8 h n' E9 H c
00404C6E 6A 01 push 16 ` O2 h- Z5 W
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名( J2 _! h1 K s' e3 Z; j
00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]1 V! F) i9 W: f2 _4 N. \
00404C78 8BCF mov ecx,edi
! b+ A7 U, F1 [$ b9 H00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码1 G$ j1 M. a/ H! `) E; G6 q
00404C7F 8BCF mov ecx,edi# W4 m5 l% g& ^. N9 k
00404C81 E8 A73E0200 call qsr.00428B2D
- I8 C9 O) p2 W8 p00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]; ?) A; T4 ]' P7 |: Z
00404C89 8BCE mov ecx,esi" f3 T, Y( T( w3 a1 f. A0 F
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX
! Z- z J. y2 l2 S6 B9 g00404C90 8BCE mov ecx,esi
8 {9 B7 k, j6 w/ U* a3 m- @: U8 W00404C92 E8 963E0200 call qsr.00428B2D! z' {- X+ O* t+ J) b% e3 M- `
00404C97 8B06 mov eax,dword ptr ds:[esi]* D' Q8 x8 B' C1 |- F
00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2# Q' }) {/ Q. H( E$ p. Q
00404C9D 7D 26 jge short qsr.00404CC5" s) v% D2 U, W* g2 T
00404C9F 6A 40 push 407 e6 n5 w) X0 d
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"% u0 K/ `+ _' a1 B8 W
00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."
4 ]! f9 D! @$ a- v+ m9 r$ S2 l8 K00404CAB 8BCD mov ecx,ebp: ^1 A4 }4 J+ z+ |# l/ I$ S ~
00404CAD E8 C3840200 call qsr.0042D175, Y6 y; m- i% ]6 k- I
00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
2 J }! V( o7 n8 s7 C00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx( J" a, r; T* E6 Y* ?& \
00404CBD 5F pop edi* p# Y2 S, g5 e" Z" b3 I! r' L
00404CBE 5E pop esi
- d4 \8 n8 d: y2 `7 l- r" v00404CBF 5D pop ebp; O, g' X) M& f! q! @ y
00404CC0 5B pop ebx! u2 U. T3 Z. s4 c+ m
00404CC1 83C4 18 add esp,18
" n. H/ e1 M7 `2 T" O00404CC4 C3 retn
; [7 n, N" h5 K9 o2 e00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
3 I3 Y- _1 g7 _! \00404CC8 84C0 test al,al
9 u0 ~2 Y& a/ U s9 f" d. }8 |00404CCA 0F85 1C010000 jnz qsr.00404DEC
2 A+ T1 i! t# F) v f! I1 G7 e00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]0 l0 |, k0 Q7 Q* I( O8 P5 b
00404CD4 E8 87E3FFFF call qsr.00403060
1 a. O8 V$ p' d3 `: t00404CD9 51 push ecx
$ R( [0 s) |3 ^* t; l( B00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],06 _/ _; ^) Q+ D* f
00404CE2 8BCC mov ecx,esp
8 u. c, F8 E* q( \5 E00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
! ` X' J$ Z* @3 o2 g3 {+ V& y2 p00404CE8 56 push esi+ T+ D/ O( g) E# @6 O8 q# X0 I
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
" X% T. d9 [1 B7 b00404CEE 51 push ecx; H- q, ~' A( j) w+ G. s( X9 R
00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1
: z8 d2 Y/ ^" b2 s" U m00404CF4 8BCC mov ecx,esp
1 W; L$ }; \/ \ k" [4 O00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
& ` P4 \ v7 e00404CFA 57 push edi. Q& i& F: N) H" G8 M% c
00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0
p& i! U% U7 q& E) H00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
, ~2 z: Z7 }( w: c00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0
' _7 A% h5 Y6 w: E* {; X% G00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~ t" e9 v2 n1 m8 b: g2 Z
00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~2 ?: q) ~5 u+ ]1 P+ L
00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
; b3 O5 m& Y4 n* U; B* |2 d2 w: B00404D12 6A 40 push 40
8 e) Q8 `% w: w$ ^$ ?! g3 i00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
j8 j) l `: C% y00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."
$ U6 c9 q. H( }6 y00404D1E 8BCD mov ecx,ebp
* ?1 ~. Y) }9 y00404D20 E8 50840200 call qsr.0042D175
' X& r, R: F8 D: h B5 c5 L00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
4 q5 O+ x6 n4 M& L a4 ^00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-18 x& d0 z8 |! g: j4 C5 a6 T4 k
00404D31 E8 5AE3FFFF call qsr.00403090
% V% a& ~9 M1 e9 X00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]. i& x- F" V$ L4 K7 u, {: g
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx+ C6 @/ l0 k/ c: p$ y
00404D41 5F pop edi
6 x# z0 k/ |6 F0 P8 U00404D42 5E pop esi
3 N: u% N$ H1 p6 C4 U00404D43 5D pop ebp
2 z. Z# k& m& x5 j7 m9 @00404D44 5B pop ebx
/ E5 E. Q2 K3 U2 ]) T# E* q00404D45 83C4 18 add esp,18% s% i. F3 w' E& x; A. ]. v
00404D48 C3 retn
/ c9 S+ [1 ?) [- X* `, y*********************************************************************************************************************************************************
3 J: e6 ^! Z) I) E跟进00404D09处CALL来到:+ Q* \( U( c. I5 s0 @" H. B
004030A0 6A FF push -1 //一路F8下去~~~~
$ {& _4 V( ]0 t6 i5 Z004030A2 68 C88F4400 push qsr.00448FC8
3 O# c- R) i" \' ?9 T004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]+ r& j h# C! I' d! e' |* Z
004030AD 50 push eax
8 _: F0 Q! R3 i3 F- H. V) B5 x004030AE 64:8925 0000000>mov dword ptr fs:[0],esp
2 _8 ` Y3 j4 w% Z3 H3 U004030B5 83EC 24 sub esp,24- X' r9 s, y! K0 e8 F
004030B8 53 push ebx
! ~$ E! f# H% e004030B9 55 push ebp
' p5 ^2 ^+ g1 u8 Z4 h) e" h: n004030BA 56 push esi- p6 W4 ?; w# `! J5 v o2 V
004030BB 57 push edi/ G: W3 {: m$ |4 O, Q, V
004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890". B. b/ n/ m( [% m, r7 e
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
: I& b! B: C. u9 Z004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1* `* H0 y' i- s' b
004030CD E8 27C40200 call qsr.0042F4F9& ?; q. J+ w$ t8 W, Q- e
004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]( c" s# W" A( e1 J6 u1 ~( {5 L
004030D7 894424 2C mov dword ptr ss:[esp+2C],eax
! U$ D& {& I9 P- J& `9 u2 k* F004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]) u% q) E! j5 q# O1 j+ O
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3. M8 Y+ }4 a1 c5 b3 S$ S) C
004030E4 E8 905A0200 call qsr.00428B79
/ X+ G/ ~. L$ r$ @- W004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]6 I) u; t& G) _9 p, a9 B1 y# `
004030ED E8 3B5A0200 call qsr.00428B2D
$ T+ p R) i$ H0 r9 N8 o) F3 A004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]6 v5 S& o) x8 P# ~* C
004030F6 E8 7E5A0200 call qsr.00428B79
# P6 J. @7 i7 Z" D. V004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
8 |, t0 V: U: M# _8 m004030FF E8 295A0200 call qsr.00428B2D; K" q: D" ~% e7 d
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]
3 ]) G- y8 ?6 t! m9 ^8 F' p00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]3 w% s' I& D; b* }( p# F
0040310B 83F8 02 cmp eax,2& L t0 [ ^7 {) R5 G4 l e# A
0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
* m _- g) d5 Z0 D: P$ W00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]
" f2 b2 y$ b* A0 R9 m% v00403118 837A F8 18 cmp dword ptr ds:[edx-8],18% Y i, r9 X. L
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳- [# D! Z: v* y ]& a, a2 Q
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
2 u& }5 i3 t- k, Z00403126 6A 01 push 1
; @' N# H' y" K00403128 50 push eax
* y; t P+ i1 d. n9 Y00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
( p$ \ c1 G/ A8 x* V2 a( u0040312D E8 C4550200 call qsr.004286F6! d; ~* h! L( R: }0 b' w
00403132 8B00 mov eax,dword ptr ds:[eax]; x! v6 N3 {1 D% p6 q: v) f- _
00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]! `' x: W5 R2 H" @( {* E9 f2 z; j
00403138 50 push eax
4 {6 |4 {( x2 T* y; F00403139 C64424 40 04 mov byte ptr ss:[esp+40],42 |6 N2 d7 |/ q
0040313E E8 4D560200 call qsr.00428790
. {- V7 ~# ^( ~! g- _00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
* }/ G( C& u2 ?- Y% X, h# e: [9 k, @00403147 8BF0 mov esi,eax( y. J5 J8 M* X' t5 u
00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],37 c( g; T% x) G# m
0040314E E8 38C30200 call qsr.0042F48B3 l4 `" {8 m7 S1 m$ x3 d
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]
: Z I: G2 [, Q00403156 B9 3E000000 mov ecx,3E, g$ r' l5 P2 o1 K( ^& d+ S
0040315B 99 cdq4 l( e- _( o* C# S) t5 T
0040315C F7F9 idiv ecx
3 S8 [4 Q# M* I& L0040315E 6A 01 push 1
$ S4 n; M1 w8 Y0 Q0 `" y7 [00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]& J. o6 X% w+ P$ y/ `
00403164 8BF2 mov esi,edx
! B/ j5 |% D L8 N9 G- m00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]) g% M) p: p8 N% v+ c
0040316A 52 push edx
" ^1 ~) } n8 Q6 q# E- {2 k0040316B E8 0A550200 call qsr.0042867A2 }7 I4 r* Q8 u7 S4 G
00403170 8B00 mov eax,dword ptr ds:[eax]' g2 u7 x% ~7 ]% ^' l9 K4 z
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]/ ~: P$ c/ v4 C; P2 r! o" p
00403176 50 push eax( \9 w5 R+ X2 g$ Y
00403177 C64424 40 05 mov byte ptr ss:[esp+40],5
2 B! h- `6 T9 i- Y" G0040317C E8 0F560200 call qsr.00428790$ |) E/ A! Z9 D+ I0 t$ O5 r2 j
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
- q& }' ?6 z; u0 M5 A" X/ \00403185 8BF8 mov edi,eax5 K2 a* @1 _1 H+ [# U
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],32 U0 i4 Q+ K; S: o' P$ d
0040318C E8 FAC20200 call qsr.0042F48B
3 v0 [9 k0 F3 d7 Z+ R* k0 f00403191 8D47 0A lea eax,dword ptr ds:[edi+A]$ n' s4 _' t9 w T) K* z
00403194 B9 3E000000 mov ecx,3E
4 m, F* [! D5 R: k+ H! t00403199 99 cdq
/ Y& `/ B3 R6 a' ]8 C0040319A F7F9 idiv ecx& \5 E4 S& K; c" v
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]
+ k, y3 {8 p1 l. k; d( f' m8 d4 z* W004031A1 894424 28 mov dword ptr ss:[esp+28],eax6 G0 E/ e$ r w/ J, }
004031A5 8BCA mov ecx,edx2 }1 I( a% @% \$ ]$ P8 y$ {
004031A7 894424 24 mov dword ptr ss:[esp+24],eax7 L x/ \) [7 B& p4 a; r& x8 b. M! p
004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
1 t& ~# e3 j1 d, ]004031AF 894424 18 mov dword ptr ss:[esp+18],eax" ]0 Q4 ?3 u; n' }% j- c5 N( q
004031B3 894424 14 mov dword ptr ss:[esp+14],eax+ P+ F( d; s+ ?" l( G# g
004031B7 894424 10 mov dword ptr ss:[esp+10],eax. o" v# N, n& o) \. z; b
004031BB 8BC1 mov eax,ecx
) B; M$ g7 [) j& n$ c, v004031BD BF 0A000000 mov edi,0A
4 o4 X! z% R$ P2 q3 {004031C2 99 cdq
( L' b% l2 N0 e* L3 I; e# Q004031C3 F7FF idiv edi
0 a1 I" X# L5 l004031C5 8BC1 mov eax,ecx
2 B* L) o; M- s- H& D- a v( m004031C7 B3 0B mov bl,0B5 h8 f' P0 e+ E6 u3 J3 m) y
004031C9 0FAFC1 imul eax,ecx/ H* `! _+ e( j, V& o7 C
004031CC 8BCF mov ecx,edi
' d6 f3 z. ~ ?: U$ X004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
' v( c/ B$ o: m) I/ E" s+ x004031D2 52 push edx+ \" Z( T |7 h8 ]
004031D3 99 cdq
& W h! x( T1 f- p# ^* j6 r004031D4 F7F9 idiv ecx! C, Q0 ~9 Y- v( Z+ h! [3 }
004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]
- m7 b3 B9 e" \& C4 A6 r004031DD 2BC6 sub eax,esi
) Y4 H6 w2 Y3 I4 a: ?6 j! ?004031DF 52 push edx
& a4 Q5 W& p3 W004031E0 99 cdq% z2 w) ^7 ]: K. T
004031E1 F7F9 idiv ecx
: m# ?0 w5 N% y. q0 z, _6 y- @/ {9 w004031E3 8BC6 mov eax,esi
& e" E) V8 n y6 M) a* R004031E5 52 push edx7 ~6 S0 | Z# x g
004031E6 99 cdq
1 |; a; ~ K9 E% `3 X% i; _3 x3 s004031E7 F7F9 idiv ecx% W- U% N* M! ~7 k! v" W3 h& i
004031E9 52 push edx
. S y+ N# R2 I9 x004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
& s5 e* A+ z2 g004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
. m4 K q, N! b2 H004031F3 52 push edx
, \0 i: a8 V9 ^6 Q) [/ l7 Q' g9 I7 P004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893( m; I1 K9 \* R; [3 F3 M/ v" O
004031F9 83C4 18 add esp,188 j6 \$ M; e: R2 ]' ?% |$ ]; I
004031FC 6A 04 push 4
; p- Q7 ?8 m5 \1 u, l7 Q8 E004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]
: |# S/ G, ?# h. g00403202 6A 00 push 0: @8 [' G2 W$ T3 O2 Q& E7 F
00403204 50 push eax3 C* V$ k2 O1 ?5 ?6 y
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]3 i* ^! n$ ~' p( R
00403209 E8 D6530200 call qsr.004285E4
! p* N- \: c3 J6 @0 m' y- P0040320E 50 push eax
! a" S& q# I& v5 t8 L- B/ Y0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
+ k3 ~0 Z& u% w00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C A& ~; s4 \% d7 J7 y
00403218 E8 A7C30200 call qsr.0042F5C42 C6 D# i) v3 Z1 F# K t
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
: C% W* ~1 H0 A3 C! g1 c2 O( V00403221 885C24 3C mov byte ptr ss:[esp+3C],bl: R/ J' W/ l8 _" t
00403225 E8 61C20200 call qsr.0042F48B
: ~: r" [2 E2 w7 V0040322A 6A 04 push 4
1 x! Q) o' ]+ I7 v" T$ b0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
! B# k! w6 f: w, U+ k6 x2 ~6 y4 J00403230 6A 05 push 5' X! l8 d0 p7 H; O
00403232 51 push ecx7 u1 Y. |# V& H. B. y: ~0 w) I, x& M
00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
r' k6 C( v7 P$ e9 q00403237 E8 A8530200 call qsr.004285E4
" T |" }2 |5 n' b& P8 _0040323C 50 push eax
& B1 D6 Y2 z" A' T7 _, Z0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
, m7 [* _) R: C6 c9 A6 \/ q00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D
6 a/ a3 G& I- I00403246 E8 79C30200 call qsr.0042F5C45 G, N0 Y" H: z- ]( T
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
0 ?: ~0 A" s4 r2 U/ W0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl
& `, `2 W3 F9 K( e- Z4 H00403253 E8 33C20200 call qsr.0042F48B) ?7 h5 S1 t- S' `- R! c
00403258 6A 04 push 4
0 Q q% j) l" o( T @0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]3 w5 M8 T0 o7 r( R
0040325E 57 push edi1 g* e, s: W9 g3 g. R" N$ i/ K+ i
0040325F 52 push edx
6 V$ `( Q: I" W; v& q4 N& v00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
3 T/ d. [ b/ l: H( V2 U5 d00403264 E8 7B530200 call qsr.004285E4
6 E6 C3 e: R3 l* a' B- G8 I00403269 50 push eax2 z* t, y: J6 n
0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]5 O, Z& ^) f1 M* Y
0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
" {: o( C U) j2 s, {00403273 E8 4CC30200 call qsr.0042F5C4- R7 W8 o- r8 Q9 F! n
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
! ]# \8 F$ g' Q) x0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl
% M' O( ?. p2 V9 s, F# r* F00403280 E8 06C20200 call qsr.0042F48B
/ i9 c1 O1 V6 O' C00403285 6A 04 push 4
5 }( _! p: U. m( ]; j5 y7 r, ]00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
3 k% z, L! D! w/ s+ o9 |# [$ K0040328B 6A 0F push 0F' Q6 j; S2 g4 a" F5 `+ K% j
0040328D 50 push eax. N9 \ ]% H6 y* i# l
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]0 q: w* w& [( Q9 C0 y
00403292 E8 4D530200 call qsr.004285E4
; Q9 C+ x9 m9 c9 B5 w00403297 50 push eax) V4 @0 E8 K6 T9 L( e
00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]/ H8 i7 o* c+ H6 E2 G
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F8 l) D8 O) R! _) W
004032A1 E8 1EC30200 call qsr.0042F5C42 t( P3 z1 C( B8 ?
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]1 n, h/ d& e+ w% o5 |' @
004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl6 q& [7 T4 g- ]/ n2 y
004032AE E8 D8C10200 call qsr.0042F48B
. n1 C6 T2 n, V/ q& ^004032B3 6A 04 push 4. l5 u) s+ I& y) `9 J% |
004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]3 Q' x: D5 i+ J/ [8 u6 Z
004032B9 6A 14 push 14- |- R6 a# d0 j& T. r' A* k" j
004032BB 51 push ecx, o% U. F# M" t2 h
004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
' |5 W" ~0 _$ b3 o- p4 [$ B, S004032C0 E8 1F530200 call qsr.004285E4
4 z; y% W" e/ d8 l# S- T) J+ R004032C5 50 push eax9 |) }3 `0 f2 ]& h; d
004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
8 h; v' i7 b4 a* F5 s004032CA C64424 40 10 mov byte ptr ss:[esp+40],10$ o* P9 Y/ [) [4 ~7 ]1 r
004032CF E8 F0C20200 call qsr.0042F5C42 ^7 C/ |3 O# y5 S
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
$ \! r# G1 G9 G+ m004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl$ r$ T3 v1 W+ M
004032DC E8 AAC10200 call qsr.0042F48B
- S/ D7 D) h H, K004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
( O# Q# [ V- h2 G0 p& y1 R004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
: r4 b0 q% X4 Z004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL4 n" d5 ?9 g6 X1 ~
004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL
* ~, V6 A7 z4 u) r# m6 z$ U004032ED 8ACA mov cl,dl ; DL送CL
# x1 d$ V' u/ G0 Z8 O$ H004032EF 3AD3 cmp dl,bl ; DL和BL比较% X) G) Q. |; s3 e) J: }9 b
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
0 {+ A% x: I, `' y" ]% ^ z004032F3 84C9 test cl,cl
% t0 \% P/ J/ |* s. o+ S) A; J004032F5 74 16 je short qsr.0040330D+ @& x4 t1 z4 n% y3 B
004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL
# d5 N4 t* V0 u# g004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL" d# i$ q" z% |% K# R
004032FD 8ACA mov cl,dl
5 }5 w6 U" [2 i% q% L w004032FF 3AD3 cmp dl,bl ; DL和BL比较
% ^. x! j- @; }00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳): ?; z; ], Q8 w! s" K' C
00403303 83C0 02 add eax,2 ; EAX加27 Q# E8 h# \3 j2 `# s
00403306 83C6 02 add esi,2 ; ESI加2
5 ?2 Y) ^% f) u. P v- F00403309 84C9 test cl,cl/ f1 A" y' d9 x* @$ T
0040330B ^ 75 DC jnz short qsr.004032E9
/ J% x; j* @7 ?7 j9 f* y2 j& n/ w0040330D 33C0 xor eax,eax) U; m! ]4 }- J* ?2 q* E9 @. s
0040330F EB 05 jmp short qsr.00403316
2 ] t3 w7 }. C5 L) J& c00403311 1BC0 sbb eax,eax8 R! L6 N$ T0 k7 k
00403313 83D8 FF sbb eax,-1" l5 q4 j8 y* r6 H, K
00403316 85C0 test eax,eax4 h# z5 O0 T3 u* ?
00403318 74 0E je short qsr.00403328
' _" O! x; e! R) ^4 o0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A& D' `1 U* O/ f. j; K0 V# f5 i
0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
5 l7 o! t( @- a! D6 z0 s00403323 E9 F0000000 jmp qsr.00403418
0 t0 i, v# d. \4 y- M$ X00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
- Q) @ e& T* K2 R- n0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
: U0 x: u8 ?2 m9 r; O7 H9 h( C00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]
: C0 e* w( ~ [00403333 50 push eax
, a# v' \# _6 T6 ]( a. e R00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX
1 p- x: {' M6 R6 e3 ]: d) I& s00403339 50 push eax* r7 c4 e* G( j- c# `
0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX
8 }+ e6 u6 b5 G' q8 }* w5 G2 z0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
; Y' Z) ~8 L" O. P5 ~00403343 83C4 04 add esp,4
2 G9 \$ {/ Y# `5 V; g- \00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI
! y9 v9 w; R2 w3 p* `9 V# v00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]5 {; f; k+ o9 }/ M, I% J
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]% I4 o' D b9 o
0040334F 50 push eax
5 O# v' S" _4 |+ I00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
e; G3 O$ y! w' u8 H/ P00403355 50 push eax
) i6 n# ~7 ^' W7 L% l. `0 I00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX5 o3 C; x% u8 ]0 _5 \
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
6 D) p1 b! O/ k: ^" O- J0040335F 83C4 04 add esp,4
c3 m3 X3 `, \+ y, X" f00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI
$ c8 e2 }. W3 G" f; H& g! Y5 a00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
) G# Z6 N) ]- C9 y+ H ^3 V4 G00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]; [9 g: W6 o+ {9 C% J y8 ? v
0040336B 50 push eax; e" h/ |+ G2 v+ F N( V$ t
0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX
2 Y5 j+ }, ]3 e* [0 R8 A00403371 50 push eax
! ]# P4 |9 _# n- f( L00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX
; ?$ q! G0 b' B9 m. m- _( P* a00403377 8BD8 mov ebx,eax ; EAX送EBX
6 p' I7 U" ]! r% U00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX
+ D" P Q4 H: W- d9 _0040337D 83C4 04 add esp,4
+ H4 c, @' Q, f) } V& s3 M) n00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
3 l, { o7 O" m1 [& i00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]7 I1 [/ F4 ]3 B: S0 d5 ~4 g
00403387 50 push eax# n2 R! s! H; g- Z! X3 N$ r% C9 A& j
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX& {( x0 Y$ c3 K( Y! w* Q% Z0 m) n# H
0040338D 50 push eax
7 L% g5 V" y& M' ?+ Z( ^0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
( n/ M7 {3 K. r00403393 83C4 04 add esp,4
" X8 S* X% R2 w3 q1 [8 |( B00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]% @6 Y+ ]$ v- ~( {; @. c# q' c8 \; J; @
0040339A 8BE8 mov ebp,eax ; EAX送EBP6 D: W9 X" @0 [0 ?3 I. P
0040339C 6A FF push -10 F. x3 v' J* ^% s
0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX
/ W- |3 o/ i, ^$ i2 S# D004033A3 6A FF push -1+ d# Z! A1 P q6 E9 f4 i! g" M& U
004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
. G! T5 D* a9 z4 e) ~004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
5 z) C; q# L; f/ |- v: A, I3 e2 T004033AE 6A FF push -1# T0 {2 A1 s. Q; K" F8 g2 l6 h
004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX
0 L9 O1 u- G- j9 a( e004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX
5 p+ B9 F& F: q0 [) J004033B9 6A FF push -1
4 D3 | M G2 v/ ^( ]6 S" M4 V D004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX, T1 ]4 ~% ?- C: r1 q% K! \ `
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX6 H4 _1 F, [0 k* R0 R) H, P
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX- X. w+ K' f) `
004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
; B$ n8 |+ R8 l7 A004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
9 B" J; O5 Q3 N5 }8 _; l2 k004033D7 D1E0 shl eax,1 ; EAX左移1位
; \" z3 _' U4 J0 b004033D9 99 cdq ; EAX扩展0 Q3 i& x- }( ]* v7 |% [- \$ v# t
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中' ?; ]3 ^ u. J/ W
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
0 O" U2 b `, b& N004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)' e6 z* @9 r% j& M
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A& O8 q* q$ N( ^& G. E- b9 Y8 J
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
, s$ r: p: b1 q7 W% c2 M+ c004033E9 EB 2D jmp short qsr.004034181 w3 ]! d. ?1 H5 b
004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX4 P2 K; s1 H2 z# l- ^
004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2: |; H% P- ?: N
004033F7 99 cdq ; EBX扩展" e; j: d! [0 d
004033F8 33C2 xor eax,edx ; EAX和EDX取异或
9 s" C5 A F- K9 Q004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX; T, Q2 G: |0 m! }$ [ d2 x$ O
004033FF 2BC2 sub eax,edx ; EAX减去EDX1 z9 _9 u$ k3 a1 S6 Z0 m$ T- s" t2 B
00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]& b P! q9 B% X( p. P; `+ _7 f
00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
& t" j4 t4 A$ o$ U! I% }00403409 99 cdq
. A- o0 e: t/ w0 n6 r0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
0 X/ v4 V: L# W9 a/ W: N0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX8 \0 }# Q- o* k" X. R1 S
00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较9 o0 u* |% W+ M
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)6 q% H! ^0 M- K- x* F4 Y& J7 B
00403418 E8 6EC00200 call qsr.0042F48B ;
( b; W- ~$ V9 j% t; Z) `0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]. |6 c3 ?- ]+ e% f4 Q8 L
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9
+ U/ z- }, T6 M9 |# s* c3 l3 O# l00403426 E8 60C00200 call qsr.0042F48B+ O; e1 D/ B" n. l+ e. K
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
* p- N# V, W4 `$ n0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8! l$ _3 T; D# ^ M3 s: X
00403434 E8 52C00200 call qsr.0042F48B
5 R% i. a8 Q1 r$ U1 N! T2 X00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
" s- M+ L. k- z5 G0 J$ N/ h# u0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7+ ~- u: B' p$ L
00403442 E8 44C00200 call qsr.0042F48B1 E3 _. |- f/ [6 ~% B7 T$ [
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]3 Q1 b6 R1 E u
0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
" j G0 n2 ^' Q& W, t00403450 E8 36C00200 call qsr.0042F48B
x2 k2 g) G/ C ]00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]' k' q* b2 z F. s# f1 {' B
00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],33 w8 h! M; W! P! z
0040345E E8 28C00200 call qsr.0042F48B$ a* g$ |% v" a( \
00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
2 w- S3 G2 g: e# g0 T; S" ?% q0 O' b00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],23 }3 E0 A' i- Y: f. t
0040346C E8 1AC00200 call qsr.0042F48B
3 F7 B7 A' A4 }, }& O- S' [% _! c6 n00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]7 F H% L: g& p' ^% \7 S# p3 W
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],17 T6 f% z# X$ @& \3 B9 t
0040347A E8 0CC00200 call qsr.0042F48B: i' H; |8 u$ d
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44] B& W0 n6 v; B! }- x7 }& l
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
' Y, y3 h. {! U. u. T0 ~7 c00403488 E8 FEBF0200 call qsr.0042F48B
\" z1 r" J* v! R' C0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]! y0 }( S, O4 w* r/ U
00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1% R* E L0 `) n+ {8 q- O
00403499 E8 EDBF0200 call qsr.0042F48B$ q& b, }! ^7 u/ \9 \! G
0040349E 32C0 xor al,al ; AL清0/ {- A9 o5 n3 J) G; {8 u# k
004034A0 E9 88000000 jmp qsr.0040352D
( n! L! @/ n5 g2 U0 E3 W004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~1 \4 V4 w1 \+ H8 @1 b7 u
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
Q8 A6 C0 {: _; o* q" @: V$ m004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9
% s6 d5 t3 O1 M/ B6 m004034B3 E8 D3BF0200 call qsr.0042F48B0 ?# m1 h) I. u- }3 d0 _
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
; p! S. Q9 s& ^: D004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
7 I1 e8 W) |0 D% `$ W" R) d6 E7 E; D004034C1 E8 C5BF0200 call qsr.0042F48B
& r, F( m9 o! N4 u8 [ J5 S3 q004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
7 q) {; V; f, H7 n" l; J9 l004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
+ w9 S ]0 V" ~5 C004034CF E8 B7BF0200 call qsr.0042F48B9 k( C8 _# _& C$ ?/ `
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24] S1 I7 M) ?. B$ S
004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6
& X/ M$ {' B: r( d: k7 e+ v004034DD E8 A9BF0200 call qsr.0042F48B
9 A. V I, d( p( a8 s& U: G j004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28], k$ |9 _! B3 O# Y+ x0 I, L
004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
2 R$ ~' h1 o% [0 W, M004034EB E8 9BBF0200 call qsr.0042F48B8 U* z4 K4 X/ K+ ^) V3 F, m- E
004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
( A6 j0 }" e& L, V9 H" h4 q/ c8 D004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],22 v" u9 p$ G. f; N9 |% r2 @+ o
004034F9 E8 8DBF0200 call qsr.0042F48B# Z, \' [9 E( `/ z" @! }
004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]8 a) e6 @/ j( ^0 f" f4 N" J5 O' w
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1 d" t3 T }5 w) W2 \) T
00403507 E8 7FBF0200 call qsr.0042F48B2 L' v3 y1 q: `) r+ V& R0 U
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]9 l/ F% i) Y' C5 {9 L/ Z
00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],08 P1 T. [# G' @: W8 ~' D% k: B& ~
00403515 E8 71BF0200 call qsr.0042F48B
2 T$ s) z& F# C$ ^7 A% K0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
$ T/ H8 m. a$ h w0 D8 z0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
, U g/ k& [9 T$ g; L- a) p* Z00403526 E8 60BF0200 call qsr.0042F48B. L( b/ ?% h9 T/ {3 x
0040352B B0 01 mov al,17 W2 J" f) I! {4 w4 }# [* Y
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]9 c7 p! F' N2 R1 Z
00403531 5F pop edi' b; e* X" B1 X* q- ^' ?
00403532 5E pop esi
0 z: Q: d) s) |* g6 W00403533 5D pop ebp3 W) ]* Y% k4 e0 A2 b) E; r" ]% L
00403534 5B pop ebx8 M2 f/ |% S- v) s8 `
00403535 64:890D 0000000>mov dword ptr fs:[0],ecx: a3 u0 g( r/ ?, n2 S4 _* i9 z
0040353C 83C4 30 add esp,30
7 g8 q; t( h) e# @0040353F C2 0800 retn 83 P$ I7 v8 W. ~0 |
--------------------------------------------------------------------------------+ E$ G& o2 K0 y
【破解总结】
. l, h; A5 o9 f. c 用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^# }! t# c/ n% ?0 ?
用户名:yijun
" X. {- y, [ D注册码:4893*7777*3726*7777*0529
3 a/ R( I+ [' B Q9 u--------------------------------------------------------------------------------
6 `' i# z7 w: H【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡