|
|
|
【原创】破解Quick Screen Recorder0 W9 H: [9 G% q/ f/ I; n* X
【破解作者】 yijun/ ?$ r4 O) c# Y5 d) q9 l
【作者邮箱】 [email protected]/ ?0 j& z5 U$ o7 e; w$ M- M
【使用工具】 OD,PEID2 z8 [8 p/ \$ f5 H% k
【破解平台】 WinXP( D* \. ~+ ~7 F n
【软件名称】 Quick Screen Recorder5 N) a5 A6 ?$ k+ O3 ^5 e
【下载地址】 天空3 N, m: ]% U) z% c( I7 N( \
【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
: K# Q9 W7 o2 Y4 @. `2 I" g) m【软件大小】 540K' p) e5 K. D1 ?) c4 n
【加壳方式】 无
7 R, o0 e- l0 v【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)8 u# {/ v B' |4 r0 u% {' D
--------------------------------------------------------------------------------- `/ l2 j6 s* D- z
【破解内容】) T5 t/ K2 T" f* R) u3 p
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
/ b3 T, ]7 t+ j% j: L" V00404C69 55 push ebp //在此下断
3 O% [/ |1 j. l& E+ x$ V00404C6A 56 push esi
) i" w6 b& C) z$ M s6 r+ R' L00404C6B 57 push edi/ Y1 e. s u- h& Q8 j5 J. b* O. w" W
00404C6C 8BE9 mov ebp,ecx
! \+ v8 G6 l, Y* u00404C6E 6A 01 push 1- [' q# m: W4 ]5 [
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名( H8 l1 F. K! _; t! r, D0 R
00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]* ^+ J! Z8 S7 a2 [6 V6 d
00404C78 8BCF mov ecx,edi
1 _6 y; S7 F1 w" R+ ?" K/ j0 m9 j00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码
- s- X' _& h( X! c6 X: d8 X00404C7F 8BCF mov ecx,edi
+ [) _+ s _9 z& k00404C81 E8 A73E0200 call qsr.00428B2D
+ r0 p: }/ K! Q$ A5 p7 R( m3 r00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
6 ~8 H3 r7 l" Q$ _00404C89 8BCE mov ecx,esi: O, X0 e0 F. `% c& N
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX: J# c3 F7 m& S( ? K
00404C90 8BCE mov ecx,esi. q+ ? Q3 c- o4 ?$ S* O* {: y7 r
00404C92 E8 963E0200 call qsr.00428B2D- H! C4 o+ |0 v9 v! |/ N6 I& e6 ^( Q7 x ~
00404C97 8B06 mov eax,dword ptr ds:[esi]2 O: m# ~4 b9 j) U- P s- P% O! Z
00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2+ W6 X, q# J8 y# D6 d' ~' a
00404C9D 7D 26 jge short qsr.00404CC5+ G' Z, m0 i2 S: Z8 Y
00404C9F 6A 40 push 408 ~' t8 s6 i( F ^4 Z
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"( ?% H' {5 T; B* A) T7 q
00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."3 y7 H% x7 S/ |9 d X: e- [
00404CAB 8BCD mov ecx,ebp
# \# _, S/ y! ~0 C E, h5 A00404CAD E8 C3840200 call qsr.0042D175
% Q3 P7 M8 P7 ~4 b00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C], x" y- q; h: ^+ x9 z
00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx ]) N/ s9 U# o5 @$ Q
00404CBD 5F pop edi
1 M$ R" T, k! C) F8 [; Y6 \; i00404CBE 5E pop esi: w% L0 y; _1 Z, B: u4 W
00404CBF 5D pop ebp5 k9 ? `7 o) B& r3 d+ G
00404CC0 5B pop ebx
0 }' N5 y# f" @8 K( ?00404CC1 83C4 18 add esp,18
, y/ ^" B0 t6 S8 K. ~ i00404CC4 C3 retn- d1 m2 i% M2 b2 S" {8 Q2 h" Z" e
00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
0 @; u- S( a/ @00404CC8 84C0 test al,al
% L/ H; e% s) ? b4 {& Y; }00404CCA 0F85 1C010000 jnz qsr.00404DEC5 b% m* f" m# N. R. W* ^
00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
1 k/ e% [. U/ I. l2 n8 G( |00404CD4 E8 87E3FFFF call qsr.00403060# g8 P. y- G* C5 J2 E
00404CD9 51 push ecx
9 ]* K/ p0 C, o7 w: D3 |& j00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
! h- b. g6 D% ?( X5 \+ e$ B00404CE2 8BCC mov ecx,esp
5 J) Y3 P0 k0 g00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
: Z5 D* k7 E' `! F% v9 d00404CE8 56 push esi' j8 y3 T6 a% v) ]! g a
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0- G4 @, P* @3 l
00404CEE 51 push ecx8 g* R5 [) G% K( Z7 l
00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1
# ?/ M C& N" [+ T& c o# G00404CF4 8BCC mov ecx,esp
* n* x0 R6 T! x1 u00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
& d" E, E2 t* M- K0 L t00404CFA 57 push edi: U0 i; d9 K4 g* @$ o
00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0$ a+ A3 G6 q4 |! G* n$ V: q6 b
00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]3 g5 Z- @( }$ J2 b. G$ h( t1 @4 Z2 g
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0
4 F9 s" h, ~& r3 Q( ~' b3 g& ~00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~
& C! t7 Y$ b V5 D/ s4 b00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~
0 f" @: A6 t' H8 s; M00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
1 ?: c9 W8 R) s7 Z00404D12 6A 40 push 40
: v" G8 [2 L; v J00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"2 a4 X' T, E& L; o& ^
00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."
5 w6 o% `$ L0 _# I+ U0 i/ A00404D1E 8BCD mov ecx,ebp
0 m. r5 S0 R& y00404D20 E8 50840200 call qsr.0042D175
Z: N* K% }" R7 ~' V6 L" n5 R00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
( Q8 ]9 W0 F) v' G) m00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1
; F( Y5 Q& B; }3 I00404D31 E8 5AE3FFFF call qsr.00403090# T" t! h) }- F# b; i. \
00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]5 a# |, `' ^4 J/ c
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
, ?: G6 e, E/ j8 k+ _6 s6 u& u00404D41 5F pop edi0 m; j% u0 K! i0 e( ]
00404D42 5E pop esi
" @0 C5 ]+ m9 S% n00404D43 5D pop ebp% i, y8 ]0 M; d2 U; X; k: _8 L7 R
00404D44 5B pop ebx
; j$ [+ u) H$ A$ q, @00404D45 83C4 18 add esp,18 R4 [" p7 `6 c+ }2 h6 |2 I
00404D48 C3 retn+ [) ]& X9 o8 I) I8 h! M" l
*********************************************************************************************************************************************************
( p6 P) z" F+ ?, x3 `; ^跟进00404D09处CALL来到:
" D9 y7 o6 m4 p5 Q7 Y004030A0 6A FF push -1 //一路F8下去~~~~
" j3 W/ Y' \7 ~7 L) c2 f004030A2 68 C88F4400 push qsr.00448FC83 P% u1 m) M- \+ l# N$ B
004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
' _0 i7 _- G6 s* b9 C, k004030AD 50 push eax
, [+ v( B! r, O5 q2 i$ g4 |004030AE 64:8925 0000000>mov dword ptr fs:[0],esp! g. L$ |* G: |* z* ?4 [' J6 L! n( @
004030B5 83EC 24 sub esp,24
5 A' s, T7 U* t' \. q. l/ P% b4 }004030B8 53 push ebx2 w9 p# V% j& J
004030B9 55 push ebp. W; z7 N5 d; Q. q
004030BA 56 push esi
( `" C; U; F' K: j7 F004030BB 57 push edi; l9 b2 n4 D* ]7 Q9 n: z! x
004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"
: Z' I+ K' C6 `: d& o/ B# p004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]7 z- D! d. t# |* x' L/ H
004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],16 I& _# f( u5 g% P; N
004030CD E8 27C40200 call qsr.0042F4F9
9 [6 F: V/ O" `2 U* Q004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
* T1 R/ r% x0 u! |4 I004030D7 894424 2C mov dword ptr ss:[esp+2C],eax
) m, [3 k- v/ P) K+ ~/ f8 D& ?* W7 I004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
$ J* e* j( t' t+ I004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],39 t2 x2 @ X( b( z) M+ j: s
004030E4 E8 905A0200 call qsr.00428B79
4 f+ a9 n" n' ~9 E& ^8 y7 R004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
! K: {# n) _' r0 j6 y9 c2 e5 N5 ?. x004030ED E8 3B5A0200 call qsr.00428B2D
* R6 H( v8 P+ Z. C004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]$ J* D; e: K4 z1 f5 O2 g
004030F6 E8 7E5A0200 call qsr.00428B79- a M" p/ j, P
004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
) S# j+ s" ]7 [0 t7 C004030FF E8 295A0200 call qsr.00428B2D& u* y% O1 T8 e
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]. b- d& ~4 g" O* j2 r
00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
8 y9 M3 G4 `3 M3 q8 j0040310B 83F8 02 cmp eax,2, a3 h/ t6 c, O
0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳8 M! J$ J& r7 v0 h5 o$ x
00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]. }1 g# |! P/ ?; M
00403118 837A F8 18 cmp dword ptr ds:[edx-8],18" k8 ^6 W. ~2 ]3 j/ l
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳6 t, o! r' w0 Z6 f8 k
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]/ c# s3 G8 Y' t" C- f7 N
00403126 6A 01 push 1
1 X5 k6 l; H* F: w: a/ q8 b- }: Y00403128 50 push eax
0 O( n2 }$ F. H) ?% a00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]) u/ H+ f8 N/ n, f; f1 h
0040312D E8 C4550200 call qsr.004286F6! @ a2 F7 D) } g
00403132 8B00 mov eax,dword ptr ds:[eax]
, a( C u5 V7 t00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
, d4 L( u- v; ^+ x, W9 o; b# O00403138 50 push eax
9 |5 f2 B0 s7 G9 Y2 K' e. L+ y00403139 C64424 40 04 mov byte ptr ss:[esp+40],4
1 H5 S I V; K- ?6 Z0040313E E8 4D560200 call qsr.00428790
: u, w2 L# G2 y0 w1 T" z' h: M00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
$ W# n# V& y% H: \00403147 8BF0 mov esi,eax
: b5 a' H6 c7 m' m& u& O! L8 n9 y: E00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3
; G/ M+ q) P D' M2 G! B. Z$ Z0040314E E8 38C30200 call qsr.0042F48B/ ^* f9 T6 ~' W) @! [- V
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]
" I$ u0 H1 I/ S00403156 B9 3E000000 mov ecx,3E4 j# u. g/ Q$ ~. h4 r8 l; c; s
0040315B 99 cdq
/ | x5 _- p2 v2 V) i+ f& y) p0040315C F7F9 idiv ecx7 o4 w4 ], R2 w2 c4 u. G4 {
0040315E 6A 01 push 1. |" v" b4 P- P7 s
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]
8 K% k: y. M; S( M! H00403164 8BF2 mov esi,edx
- [6 f ^8 W. M/ O/ a: ]00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]9 i" U& k- P. z" r5 p: x+ C
0040316A 52 push edx
[/ r2 K$ {1 ? T' d; x( l0040316B E8 0A550200 call qsr.0042867A) K$ Q) p4 f# z7 ] J
00403170 8B00 mov eax,dword ptr ds:[eax]
/ b* K$ J& D- `* Y, X9 i00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
1 o) f9 R) h6 g2 ?00403176 50 push eax# c; }, S0 n @' `( U; W+ Y1 n! B+ T
00403177 C64424 40 05 mov byte ptr ss:[esp+40],5' A6 ?8 S9 e& n; x- Q3 U$ P; W
0040317C E8 0F560200 call qsr.00428790" C+ Y! \% R5 Y* U+ g
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]3 J7 w; v, @4 w* w7 w
00403185 8BF8 mov edi,eax$ \: P8 a' ^1 s; m, b; l0 `
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3# ]+ i' k5 P- b; z d
0040318C E8 FAC20200 call qsr.0042F48B
- z* y" e# C: q& X( k( r/ X00403191 8D47 0A lea eax,dword ptr ds:[edi+A]
& D$ c" E+ g4 E* u00403194 B9 3E000000 mov ecx,3E
* z7 X# J9 {% j6 V: `00403199 99 cdq
: P' x+ ]; c3 F: v) e! d5 u1 _+ n0040319A F7F9 idiv ecx% p, d7 V& k8 K8 h# P. ^. r3 `0 u
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]% D/ } y8 F: a. F
004031A1 894424 28 mov dword ptr ss:[esp+28],eax$ n" z) B+ Q0 \/ f* v! }( q/ B' Y
004031A5 8BCA mov ecx,edx
! {# k4 E/ F- I! T004031A7 894424 24 mov dword ptr ss:[esp+24],eax8 ~) n* Z$ S" v3 S2 x
004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
$ h" w8 o) x/ R$ F- E004031AF 894424 18 mov dword ptr ss:[esp+18],eax+ u: p8 R8 u7 V) f" `
004031B3 894424 14 mov dword ptr ss:[esp+14],eax2 y8 Y( S. t2 V
004031B7 894424 10 mov dword ptr ss:[esp+10],eax" b4 u; D3 K9 z. [2 r
004031BB 8BC1 mov eax,ecx$ f0 J5 i9 A$ H- i; O
004031BD BF 0A000000 mov edi,0A0 p: M& B% \; z8 P8 f4 ^8 p# W
004031C2 99 cdq
$ t9 D9 @8 o1 e% s: }0 v+ N004031C3 F7FF idiv edi
, r. d+ k9 |" D004031C5 8BC1 mov eax,ecx5 D. i3 o+ W R2 G M2 q' J
004031C7 B3 0B mov bl,0B# U5 \$ X( w+ A) _8 `' r
004031C9 0FAFC1 imul eax,ecx
; N; y1 T8 O. Z7 J* J, }004031CC 8BCF mov ecx,edi6 D3 s) O% ~! j3 O2 d
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl( t7 J# H) D/ _/ F0 S, ~" o- g
004031D2 52 push edx
6 s4 E, u0 T M% }' {# h, m004031D3 99 cdq1 f) c3 V/ w( r, L
004031D4 F7F9 idiv ecx
~8 X: F# Z9 W5 g% F004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]2 p, O. Q' d& `0 @; q
004031DD 2BC6 sub eax,esi' [ W; x- s2 G+ a h
004031DF 52 push edx
% e a D; i3 M) H% u004031E0 99 cdq; R+ w* G$ y# R/ p
004031E1 F7F9 idiv ecx
, k9 N! o/ E( O; _' ]+ n3 G004031E3 8BC6 mov eax,esi
; g' q, J t V. \; ~004031E5 52 push edx
/ X0 S% F& _% `- u" S) F004031E6 99 cdq4 m M: e2 }- q+ H1 s
004031E7 F7F9 idiv ecx
$ B+ E) i) o8 v0 ]$ U% `004031E9 52 push edx
$ w) g/ u( b) A: K$ |' x004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]7 p$ X, n8 z1 K, g( O4 t2 f) S3 x
004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"% g, @ P" ^) V& J
004031F3 52 push edx% S' D+ P% z9 k: N( d9 o
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893
]( J8 K* `7 d5 o7 D- ?" l004031F9 83C4 18 add esp,18
! _7 p8 S y7 I P004031FC 6A 04 push 4
3 m" x: m' v/ |. N3 v004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]* J$ w6 U2 D3 g2 r8 D: j5 a( R
00403202 6A 00 push 0, a" S% Z8 y! Z! D. E
00403204 50 push eax
/ P5 `2 O. f7 G00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]! {1 b6 u0 b, \) d( F `
00403209 E8 D6530200 call qsr.004285E4
1 y6 l( z7 Z7 _, R4 M n0040320E 50 push eax
, y' e, F( c# q" z u7 _/ R8 k0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
+ {$ K) w" r1 Z5 e! M00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C
- s% z f; |( H9 p00403218 E8 A7C30200 call qsr.0042F5C4
4 m8 x! j v. y$ Y! `0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]- g; @3 N! u3 N4 O* N! k
00403221 885C24 3C mov byte ptr ss:[esp+3C],bl
9 z# ]! } I/ ~1 }2 A8 ~+ P! h2 S00403225 E8 61C20200 call qsr.0042F48B
5 A' E9 ~9 m# v# ]0040322A 6A 04 push 4
3 M Y s, \3 ` C$ c8 J$ U0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]* s6 j( [# w5 O* W, h
00403230 6A 05 push 5% A5 g2 {# x4 i5 L7 w( m; R& X
00403232 51 push ecx
0 p0 Q' l+ F' I: T, N00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
+ g3 z2 a0 ~9 S1 z) P R00403237 E8 A8530200 call qsr.004285E4
6 c! k* H1 R2 q& h6 A0040323C 50 push eax
$ C0 P5 X, N" w2 X: i0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
2 e3 d( ~" R& F00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D, _# D$ {0 M- I2 K4 w
00403246 E8 79C30200 call qsr.0042F5C4
* k& j2 x- ~: }8 x) q! i0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
3 Y( I, ?" d2 l8 B3 A+ i0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl
8 V7 O- E4 W, @: s' J00403253 E8 33C20200 call qsr.0042F48B
. v: e& R+ Q: \2 h7 t$ U1 C0 g00403258 6A 04 push 49 J/ \9 V" j( s- m, _: `$ M" K
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]
: [# j7 k: z6 I0 B+ @% n; _0040325E 57 push edi* w$ X6 b( F" _( ^( j& i* T9 U5 z
0040325F 52 push edx
. o1 K1 K5 }2 i0 U/ [00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
. L- h6 R! y4 @# R3 T: n( [3 Q- l( s00403264 E8 7B530200 call qsr.004285E4
3 a3 s @/ p+ v. \( @$ W00403269 50 push eax
2 q3 k+ N' ~* U0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]" D& i# |" K- R! J2 r! Z
0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
) }2 g% c8 C" {( L" ]& x00403273 E8 4CC30200 call qsr.0042F5C4
1 o$ M8 d9 E5 O' j# S00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
8 \. E& l% b- U g/ x* {, W0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl' Y# L3 d. p; N; g9 o3 Q! E
00403280 E8 06C20200 call qsr.0042F48B
! r" b0 R2 T; I6 R1 |/ u00403285 6A 04 push 49 h8 E' W9 f( n, `6 u7 n
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]* S8 b: k0 m$ g d6 O" c
0040328B 6A 0F push 0F
: e- Y: e' e5 c" }1 Y% T3 J0040328D 50 push eax
) k- q! O& ]5 ^' n% d$ J6 P8 s0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
( @* a, f8 b/ ~: {4 P00403292 E8 4D530200 call qsr.004285E4- m6 s. ?% L) a# i! S
00403297 50 push eax
% Z/ R$ m3 q5 i00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]4 Q; c% K4 }" ^- a
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F" C/ H4 e5 j/ h4 u
004032A1 E8 1EC30200 call qsr.0042F5C4% A: B, ^1 s, v" X. M6 K5 m
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]% k+ b% V2 I I
004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl
( s" d0 [# x9 J* i004032AE E8 D8C10200 call qsr.0042F48B
$ B2 |$ {/ Y$ Z, j- Y: J- T) [004032B3 6A 04 push 4# ^2 k# Y' s* E1 o- y/ R! l
004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]# \4 P {, B; h5 B% o/ W
004032B9 6A 14 push 14
; G( `+ c6 E- ~1 m9 g) M004032BB 51 push ecx
5 \1 h q' u& U! K T# H+ C2 U004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
2 K, x* a3 _ V5 m3 `2 }% H6 i004032C0 E8 1F530200 call qsr.004285E42 E4 P# U1 H! `' ?
004032C5 50 push eax
, f' g: e2 f* k6 H% H004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
; \" z& B- H4 S K) Z9 ~# Q004032CA C64424 40 10 mov byte ptr ss:[esp+40],10. Z" q2 `9 U, X: ~! S; [. H
004032CF E8 F0C20200 call qsr.0042F5C47 x6 v; z; c' D3 k+ ~8 ?
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
" i( w- r- m( {' d) x7 H/ E004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl
+ f/ M$ m) M" f$ z1 b. M: K004032DC E8 AAC10200 call qsr.0042F48B
# F) p- @3 M' J$ d9 {004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI: A& H% g* p) e& G3 @" y
004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
- \6 }7 a5 {6 f& ?0 ^004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
/ Z# C: J$ q$ K. b# C4 D5 d004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL1 F/ Q g6 r" a P! s: k: k/ ~ C
004032ED 8ACA mov cl,dl ; DL送CL( y+ Q8 A* B* p
004032EF 3AD3 cmp dl,bl ; DL和BL比较
9 x" z/ N# f$ y d# n004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
& K' m& F8 q, `2 U& N004032F3 84C9 test cl,cl
2 e4 b( \4 F j2 ]+ k004032F5 74 16 je short qsr.0040330D; Y& F$ h+ T: y$ T" f! y
004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL
8 _& \6 [, K% r! P, p( }004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL
! U( o$ v3 }, l B6 W+ ?6 e004032FD 8ACA mov cl,dl
, d& `7 X* w3 g6 V004032FF 3AD3 cmp dl,bl ; DL和BL比较( M* X5 y+ X n3 b+ U& L# s
00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
6 r, x$ C' ]5 x4 i% \. E- C+ k) |00403303 83C0 02 add eax,2 ; EAX加2
# ]: o( \ k4 O6 |& U* ?6 t00403306 83C6 02 add esi,2 ; ESI加2" j0 Y6 T1 a2 j- t
00403309 84C9 test cl,cl
, k# N. R k6 s# s0040330B ^ 75 DC jnz short qsr.004032E9' ?* h' m: G1 v& G0 h7 D0 s/ F/ P) [
0040330D 33C0 xor eax,eax
& i* _! G1 D6 @2 [0040330F EB 05 jmp short qsr.00403316
: t: J) k1 I4 d5 m# J: ]$ a00403311 1BC0 sbb eax,eax
2 g7 @( A; a# I4 c9 X A: s00403313 83D8 FF sbb eax,-1! \* O) m* w) O( x' I! K Z
00403316 85C0 test eax,eax3 O) F; r: n; e+ F& I
00403318 74 0E je short qsr.00403328
: I$ b5 F$ M" b6 n' T6 J4 C0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A2 n( n1 B! k* h
0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
p: p* j2 H) F00403323 E9 F0000000 jmp qsr.00403418
& M( G9 C( |: Q00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
+ q1 V1 S9 T0 q. H9 B# t) L0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
4 I* b" `' }& d00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]
) m$ n" [: z' C8 ?0 G3 N, e00403333 50 push eax/ }! r7 e* T3 C
00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX
# V! D1 g* i, b/ x00403339 50 push eax
5 M( U# Y0 @) R( `2 K3 {5 Q/ w0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX
$ P2 r. m0 O8 [7 @0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
$ X' B; d5 _6 v& ~% N1 @ K00403343 83C4 04 add esp,4
* k% T" E7 o3 o$ H00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI+ s+ M% f/ x2 G
00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]
4 M5 K: s! {* a8 X' `0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]/ ] n' u& S* z
0040334F 50 push eax7 h! T/ y$ d. ]% h+ [
00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
! I: i: I3 D. l/ U3 s* j00403355 50 push eax
$ |! x. T: l2 i% ?00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX
& Z# G4 W8 G( e: n1 X6 ]: o: [. w0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX) o$ K# u$ U3 {. y# P( h
0040335F 83C4 04 add esp,4
3 Q7 g; z+ p3 \! f1 g" [! ^% S/ N. {00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI6 c) c1 Y+ ^/ G
00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
7 K7 z' t- c4 g/ l00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]* M) }' P- I, Z- J7 d$ e
0040336B 50 push eax
% J' N: H6 s; x0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX
5 G9 ?! v! @5 P- m1 W7 P00403371 50 push eax
6 ~4 t* m. p# M0 ~+ D8 s00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX
0 A' c' J8 E/ w( Z4 y00403377 8BD8 mov ebx,eax ; EAX送EBX
, Z$ d6 r0 i8 a, o. i00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX2 n0 V- r' T& p9 I; p
0040337D 83C4 04 add esp,4( {5 e3 S) Z( y4 x4 ?' ~
00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]0 a2 M: S( H) H' | @) \
00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]
4 U X. u6 K8 w2 W* v+ `+ u00403387 50 push eax+ c' `" G- W5 T# w) {# p0 G
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX
0 w. t9 h: Q2 b8 A0040338D 50 push eax( c5 S) \) L4 e1 V; n6 O4 L
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
! \5 b$ I/ {( f00403393 83C4 04 add esp,4) P# [2 ^! @3 a2 x' k& a& w6 Z& @
00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]) L V: B3 p3 Q
0040339A 8BE8 mov ebp,eax ; EAX送EBP0 k3 C5 b0 |5 y
0040339C 6A FF push -1% ?' n4 M% R6 `3 @. _+ u
0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX6 j# x) s m1 i" _
004033A3 6A FF push -1
) X! D7 ? e1 z; ^! k) J4 A004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX; m( [0 I6 m$ s; L3 r) Y
004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX4 Q4 M8 k i+ ]- Y& g4 \
004033AE 6A FF push -16 d) y, N# s1 q" e- p
004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX6 x o& {. `4 u+ G* C0 s* Y, l$ |+ A
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX
) n$ o! o9 J" ]004033B9 6A FF push -15 l1 j W5 ^8 _5 W* K, b& {
004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX
! }8 z/ @; w U a) h$ w B004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX0 {) N, \. J$ O3 u$ M# \( S
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX. [& @% V$ v) N' A Y& [' @
004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
3 w* k7 [* ?) j7 a5 u, l6 I1 [' e004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX9 r; I* i; g9 ]8 |1 Z, j" V
004033D7 D1E0 shl eax,1 ; EAX左移1位# Q) x" \ L; X1 @2 Y k8 l2 n
004033D9 99 cdq ; EAX扩展9 y" k* G# e& }+ X1 s1 O
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
9 P, Y( W, |$ [0 u- }% [004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
, s' C! A- k7 L* e) |1 Q004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)" l9 N) G2 {+ u; m# R
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A1 a y! U, r) r8 o! M+ G2 N
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]* s8 t6 F9 Q! g8 Z1 }$ X
004033E9 EB 2D jmp short qsr.00403418
" I1 }9 ^" z- Q' q6 H004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX
9 c% D2 L: U. f" S v) F004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2
: ?( Q( Z+ h: y+ k/ \: Y/ R3 v0 E004033F7 99 cdq ; EBX扩展
# N5 g* K) Q! n0 t4 M004033F8 33C2 xor eax,edx ; EAX和EDX取异或6 ]+ g4 L; K2 f) ~& O8 {
004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
7 H" s9 V1 S% H0 m, ?1 c' U+ N' K004033FF 2BC2 sub eax,edx ; EAX减去EDX
4 Y" F' c6 @$ ]8 a, {00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]; F$ h8 h7 d d' p$ Q. {# ]- x
00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
* w2 t) I# |- N. O3 t00403409 99 cdq" j0 `8 @" E- U2 G2 ?+ {
0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中. q9 \7 F% T2 w+ b
0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX `8 p0 t3 j/ q
00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较
/ T z; I! K- ~0 ^: S5 P00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)! ?' G1 Q9 f# \$ c2 ^
00403418 E8 6EC00200 call qsr.0042F48B ;
3 z; c5 y/ T2 @( D2 O/ f" m m0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
- W! S+ z- F% T: \- z( v% ]00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],96 {" H1 L% E; S% {6 v7 } \
00403426 E8 60C00200 call qsr.0042F48B4 R: m' S+ F, {0 p
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]+ ?) o) T n4 t3 b" o% g# U5 r6 _3 T
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8
^# R& m) u! `8 P, B9 O00403434 E8 52C00200 call qsr.0042F48B
. H4 k2 y6 Q6 H' [' A# P00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]0 u) T$ D& S9 e1 W
0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],71 U" v( p+ E* j! J* G
00403442 E8 44C00200 call qsr.0042F48B
2 J7 R, p) U5 H00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]# ~" e7 h0 L, s
0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
) z' w$ C) ^' l8 l5 }5 P4 N00403450 E8 36C00200 call qsr.0042F48B
4 U$ {8 `8 [4 A( B }$ E. t$ r00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
* p, |5 \& u9 G7 G* ^: U1 ?& P0 c00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3
- i. z5 Z% d4 u* a% G+ f7 B0040345E E8 28C00200 call qsr.0042F48B
# S7 T! A1 o; n00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
! |" }( u7 J+ ?3 J( r' N00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2/ g6 A' m# `# z7 v1 L5 m
0040346C E8 1AC00200 call qsr.0042F48B
# A/ c8 `& I) Y1 P# h00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]$ `6 Z0 E5 y* a6 G
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1/ n6 m% O, F* @1 ~: P/ e/ G2 E+ I
0040347A E8 0CC00200 call qsr.0042F48B
: ~8 O1 I" Y1 s9 N& `' \0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
) t& W2 ?3 x0 N: \' H. \# w* I00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
2 A; y/ ~* m" _: l1 s00403488 E8 FEBF0200 call qsr.0042F48B- M1 Y0 c4 A# T& s* k( k9 m9 @+ ~
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]- C, M. b7 A1 c4 a, J' e6 ]% ?
00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1( }. W/ F3 T5 u' B! `* E% d: ~
00403499 E8 EDBF0200 call qsr.0042F48B
) f" z5 K, A, R5 Q3 h0040349E 32C0 xor al,al ; AL清0! y# O) ~1 N; o7 K) k% o
004034A0 E9 88000000 jmp qsr.0040352D' I1 Z! n" N- J5 j) q/ C
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~
: ~& d' o4 @6 t: {004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]/ @) |' ^4 U5 o- u7 i. W
004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9& T9 L# `! r* ~/ C0 N7 h" m
004034B3 E8 D3BF0200 call qsr.0042F48B
' `2 J4 E% ?. @4 o8 M/ {1 E004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]0 P# c. H! L9 [; p. |% C
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],86 B% i- s9 m, f
004034C1 E8 C5BF0200 call qsr.0042F48B
: u M9 U! o' G# _& e; n; s% `6 u004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
: l4 y4 C+ p2 U: \4 y4 N004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],78 Z3 S" }: k/ u$ C5 i5 `- t/ k4 |
004034CF E8 B7BF0200 call qsr.0042F48B" w& i' P! E# v* u! Q) Z& U
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
+ E; R- i0 S) L @4 g0 C004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6! U$ o9 u" y+ M* y2 L) [; A* [& A
004034DD E8 A9BF0200 call qsr.0042F48B
% i3 r" T0 K( w/ ^9 D7 a. N004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
' O5 {( j3 Y7 `9 v6 y J5 x9 J% w004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
/ b% L- @) v2 V) b2 T' K0 C004034EB E8 9BBF0200 call qsr.0042F48B
1 H0 M: r; ~3 q8 V/ V. E3 y/ r5 W004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]) W7 D* R: _+ F. M! }% `6 _$ z" q& v
004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2
S8 s9 Y" i q% X5 J, a004034F9 E8 8DBF0200 call qsr.0042F48B2 ?8 M1 T/ L9 h6 P+ [
004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]$ e+ {& M5 v6 v
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1
- \9 H5 Q8 R0 v* d9 n00403507 E8 7FBF0200 call qsr.0042F48B; V$ D8 o2 B( w' K/ _
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]: j7 R3 B. U, n) l
00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0! k) a6 V% a6 Q
00403515 E8 71BF0200 call qsr.0042F48B8 Y$ v; m& R5 f3 o$ R
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
/ c* ^5 e7 ` n: J0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
. G# s8 q3 Q! k$ Q( O0 ?, v0 e) @ _00403526 E8 60BF0200 call qsr.0042F48B
% w1 B7 C& D$ _4 |# B5 v5 u, b1 D t) p0040352B B0 01 mov al,1+ I) p8 y0 U$ u
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]6 S1 `' I7 f" k9 ?- c& n8 y
00403531 5F pop edi0 \2 ]" z% E- Z) f) M6 w
00403532 5E pop esi
: O% v& G1 Y2 ]+ T9 d2 @00403533 5D pop ebp+ X' T5 w: d" g) i) `/ `
00403534 5B pop ebx
" | P6 E3 w2 L0 T6 } |/ T7 U; s00403535 64:890D 0000000>mov dword ptr fs:[0],ecx, k* Z$ x$ g. Q n; Q- D* Q7 \4 q
0040353C 83C4 30 add esp,30
; V" x/ w' {! m5 m# o' t0040353F C2 0800 retn 8' _) i& p, l9 ]9 }+ P9 b
--------------------------------------------------------------------------------6 U) I1 e& ?. x) o. I% B* M6 k$ P
【破解总结】+ Q e8 ]3 t8 s# K- H7 v& |
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^ ~% t& P$ I7 Q$ u2 I
用户名:yijun
" y! I. }; h3 Q) W% L, e. ]注册码:4893*7777*3726*7777*0529' O( y( B5 {% x2 U: W5 j
--------------------------------------------------------------------------------% x$ H3 v) p0 x1 Q; x4 U
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡