|
|
|
【原创】破解Quick Screen Recorder- D3 h. _4 t+ T+ V( X
【破解作者】 yijun
% y% V. }5 z2 G) ~$ k: P6 M2 D. C: S【作者邮箱】 [email protected]
2 O; }2 a- q% t【使用工具】 OD,PEID
* e& {4 s) R" f2 _【破解平台】 WinXP
/ a4 p' z) n9 K【软件名称】 Quick Screen Recorder! Y( s* L3 m6 a& v l
【下载地址】 天空
# a9 k% R% Y0 w【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on. / v W6 j# E, |& f
【软件大小】 540K
" T8 O9 D' S) |7 x6 x0 @. Q" K【加壳方式】 无. k( y" V. N3 ~/ J) c. j
【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:), @0 F4 c! D5 H" r% B
--------------------------------------------------------------------------------
/ [$ |- A) G/ m: z9 m! \ V【破解内容】8 p1 s) K# o' ^9 G0 e
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:4 E2 N/ ?+ Z- L) |6 T6 g& M
00404C69 55 push ebp //在此下断
3 [. @+ \0 w. T: x00404C6A 56 push esi$ [* `* t" X3 @( k- F$ }& p
00404C6B 57 push edi
! D$ N& Q6 {# m& D- ?4 m, l00404C6C 8BE9 mov ebp,ecx! I. K! a# L) w+ o! m& F
00404C6E 6A 01 push 1
; H1 h8 b: c0 u00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
( f& Y* K4 T% ^* s. W- G00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]4 k* `' s% y+ p
00404C78 8BCF mov ecx,edi
" d$ J2 q9 s9 M; Q$ N6 Y00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码3 |* P, |1 l+ M$ ^' n) e
00404C7F 8BCF mov ecx,edi
( M I9 x4 C) m3 y2 M/ z1 x& T4 v5 K00404C81 E8 A73E0200 call qsr.00428B2D
, @' s* A+ H6 ^) G' ^00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
1 s- ?* Z! v a# w7 @. N I3 _00404C89 8BCE mov ecx,esi$ M* W# w m1 ]4 D+ x5 w
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX4 ^: N8 L8 a; f! Q7 Q1 K: i' U: F9 E/ `
00404C90 8BCE mov ecx,esi- W! Q: n1 O* s/ I* b
00404C92 E8 963E0200 call qsr.00428B2D, s. o% r7 P; @4 c: Z. P" l3 Y
00404C97 8B06 mov eax,dword ptr ds:[esi]
5 u- r0 ]& ?6 _9 V% [- a1 F( j00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],28 U% G9 V1 d0 q; ]) ~5 k: f+ q3 ]; c
00404C9D 7D 26 jge short qsr.00404CC58 j3 {3 I/ C W& X8 n+ j2 M: A2 x/ q4 ^ N
00404C9F 6A 40 push 40
6 X+ D- Q' D% s7 C% L( O. Y8 e/ L9 i00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
: z, k5 i# ]& v' q& n# j& [0 G( J00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."
+ v8 F/ g# g* h. m! V00404CAB 8BCD mov ecx,ebp
4 P% w3 u9 \' A( j. w/ J/ T00404CAD E8 C3840200 call qsr.0042D175
7 Y- x9 P6 X& Z( c& S7 O00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
( q* @: W! r' M. P& ^* h' @8 K00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx1 D+ m- X, d' v# \: e
00404CBD 5F pop edi% ~ R5 c" a ?: j4 }6 \; v
00404CBE 5E pop esi
) C3 k/ s- P( Q3 Y; [" m. c00404CBF 5D pop ebp
% e2 W( }5 g$ B3 ^" g* i. T00404CC0 5B pop ebx
% E% N6 M; Z5 O! H' L$ S00404CC1 83C4 18 add esp,18
& P+ J# p" r+ N00404CC4 C3 retn
* @) M/ u# N, {! q0 A2 x$ m$ B00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
$ w: P: a8 z3 H00404CC8 84C0 test al,al
% e" N& x) k0 C8 |& |00404CCA 0F85 1C010000 jnz qsr.00404DEC
* c4 J" W' l! g# c# z$ X2 B; D00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]5 o6 O1 E8 `$ q5 R+ [' s
00404CD4 E8 87E3FFFF call qsr.004030600 ~8 \- l" P7 y2 w# u1 n! ]
00404CD9 51 push ecx3 V! E0 {3 e5 `* n8 K
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0% U; j- R* I N6 d
00404CE2 8BCC mov ecx,esp+ g) U+ }# ^6 ~; U+ m4 C
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp' |( r8 m5 {2 m
00404CE8 56 push esi0 n6 f; p4 }- m5 t6 V/ f* R" @1 e
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是08 L0 R! d+ F2 P3 m6 c: Z- V+ Q( ?4 o
00404CEE 51 push ecx
4 |5 Q( W1 ?- P3 S! d3 T00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1; [4 `. D+ V. k: g, K/ D8 J
00404CF4 8BCC mov ecx,esp) P. J' z$ {1 O0 z6 x2 o
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
6 _, U$ G, g3 c3 i! S00404CFA 57 push edi
* b4 x5 [ a' H00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是08 e4 K* {7 R0 H Q% [6 W4 D
00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]' W0 J- V d9 Q/ R4 r4 t
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0; _' R& F R9 O) i2 X
00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~
* M/ H8 V, K' ]: \6 t) @' H00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~9 _$ {& r- }$ s p0 j ?
00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~# r, N2 ~' T4 A4 T% ]
00404D12 6A 40 push 40: D' m' h; D3 P) v9 Z u* D! b
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
B1 G& `( X7 q& Q/ `00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."
3 W7 a8 N6 ^4 S* \- L00404D1E 8BCD mov ecx,ebp% E, s1 c" H- v$ c7 h
00404D20 E8 50840200 call qsr.0042D1751 U' g/ m3 J8 [+ }, @' c; }
00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
- u9 x' |4 Y/ z3 D9 M! W: S00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1+ p. l, [; S& Q! x& e' C! g5 I! h
00404D31 E8 5AE3FFFF call qsr.00403090" T T4 v& `% ^
00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
0 Z, G p' o, a' U! `00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
( V8 d- m. K( W0 M- E' F1 I00404D41 5F pop edi
9 U _- O( h' w9 Z4 O+ X5 S00404D42 5E pop esi
, d* \9 v$ ]' A6 B! }6 i00404D43 5D pop ebp
( Y" A- S% w% @" l, F# \; c00404D44 5B pop ebx; O3 ~. b' A0 r- s( {6 o, ?
00404D45 83C4 18 add esp,18: f* F1 S5 v( y" H" O
00404D48 C3 retn
* }$ t5 {# l+ i1 ~$ u*********************************************************************************************************************************************************+ I+ L. p/ G# o6 e) @2 e
跟进00404D09处CALL来到:: I, J# @0 Q" e {; h+ I
004030A0 6A FF push -1 //一路F8下去~~~~
- L9 b i3 N: g* ?004030A2 68 C88F4400 push qsr.00448FC8) }$ v, `8 _* Q0 c$ w( m
004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
; g" \7 ]7 b4 n1 v% z004030AD 50 push eax4 N/ R8 w5 A7 n5 n Z |# h, k' e
004030AE 64:8925 0000000>mov dword ptr fs:[0],esp+ R+ E j8 j% ]2 ~
004030B5 83EC 24 sub esp,24
" [/ a' K0 b" g" \7 l" u8 K004030B8 53 push ebx
$ L& Y' T' C* Q' v004030B9 55 push ebp8 L2 Z- P: g5 M6 `; i" b
004030BA 56 push esi
1 p3 \0 f9 {1 \" P3 h9 Z004030BB 57 push edi% x7 K) M' K& {% I X
004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890") ]8 ], {5 k( M8 \
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
# w' K/ L$ t7 b" b+ f- A- @004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],14 Q/ a9 T4 M6 q% V
004030CD E8 27C40200 call qsr.0042F4F9% e2 g7 @! e9 z
004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
3 O% g6 m5 P' t" {$ C0 x: W) ^004030D7 894424 2C mov dword ptr ss:[esp+2C],eax; G9 ?, P. S2 H5 {
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
0 u: d; A% d2 d3 V% m004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3% q w8 v* h1 G u' M, p
004030E4 E8 905A0200 call qsr.00428B79
, b+ \" F K9 G4 S$ P9 A004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
8 y6 [' H' V! n( j5 W- F9 x004030ED E8 3B5A0200 call qsr.00428B2D' L8 ~) v$ P% Z9 k/ j& Q0 \, x
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]9 ?4 N) }; o" w- k# ] N
004030F6 E8 7E5A0200 call qsr.00428B79
; i5 P/ `) F8 K y3 k) _! i+ U004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]" H( W- @6 }* I' O7 J
004030FF E8 295A0200 call qsr.00428B2D
, N" ?; Z4 d+ Q0 [5 \. s00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]
U. S' Y5 S( V" @) c& ]" B$ e00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]1 X& Z( F: `$ d' B
0040310B 83F8 02 cmp eax,2
4 Q9 |& Z1 f7 R0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
- m9 b" }+ a2 L, z$ t, S00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]
+ @: D1 S4 Y, J4 Y. E S& T00403118 837A F8 18 cmp dword ptr ds:[edx-8],18
( j# x+ S% m/ U0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳0 k( S C' `4 e- @! F! s1 L
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
( D2 j% Q) C" I- j00403126 6A 01 push 19 e# n5 ] y0 F
00403128 50 push eax
5 { Z) L* i. O) O! r7 u00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
/ M: e; q9 |2 {( B, q5 f0040312D E8 C4550200 call qsr.004286F69 e0 k2 f/ ~4 Q8 P+ N' c; k- i* y4 M
00403132 8B00 mov eax,dword ptr ds:[eax]- Y9 H2 R* R R2 t
00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
9 n6 x. {4 \# E W9 }# f# o" B# s00403138 50 push eax
% n5 i9 a+ x3 l; }00403139 C64424 40 04 mov byte ptr ss:[esp+40],4( k$ K; q& c+ N' \+ R& ]0 r
0040313E E8 4D560200 call qsr.00428790+ `" I1 \) q/ N/ H( G0 b
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
. J: D7 [+ a/ S8 ~3 @1 D4 A00403147 8BF0 mov esi,eax
+ j h' A3 T+ `* U4 s5 d; G00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3% w. [+ b# Z5 Y& p
0040314E E8 38C30200 call qsr.0042F48B/ k3 i+ q8 @/ e3 c. Y+ V% U
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]! m1 {0 N' K7 Y% o# d4 O
00403156 B9 3E000000 mov ecx,3E5 s, _# j2 `5 [+ f# }& d
0040315B 99 cdq" s" x! P# Y j# d* l
0040315C F7F9 idiv ecx
) L1 u$ c( K" |* ~6 X0040315E 6A 01 push 1" }3 }% |0 k: I7 _" M. p% i
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]: P; J+ ` P$ v3 i b
00403164 8BF2 mov esi,edx# Q0 L' [4 H# O. ^/ F) ]. W( G
00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]% K# h) x l4 t) w: B6 s; V# g
0040316A 52 push edx
1 T* e3 E) B V, U4 _! [; U0040316B E8 0A550200 call qsr.0042867A9 @( Q7 Z' v) \. `9 _2 X$ o8 k/ R
00403170 8B00 mov eax,dword ptr ds:[eax]) g1 g; y- ]! `9 g# K5 h* n# Y: }
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]% t% p) e' K0 C6 }( D. l
00403176 50 push eax
7 P( m$ i3 l' g: Q6 x) e, F7 |00403177 C64424 40 05 mov byte ptr ss:[esp+40],56 H; N- o" b: C0 ]7 _, ^6 W
0040317C E8 0F560200 call qsr.00428790( M# s# q5 t* m! d6 |8 s) M
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]% y* a: j( ]7 c1 t0 u( b4 t1 d3 c
00403185 8BF8 mov edi,eax
4 [/ R& M$ \* s b* Y: m& w6 A* [: k00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3+ s4 @1 o' M1 H" G
0040318C E8 FAC20200 call qsr.0042F48B4 s. X. Q* G. q* J, L2 z
00403191 8D47 0A lea eax,dword ptr ds:[edi+A]; Y2 [$ D# d/ P- z
00403194 B9 3E000000 mov ecx,3E
T5 C" G! z$ O4 f, k00403199 99 cdq5 y0 a; R! e* F
0040319A F7F9 idiv ecx' w2 j2 p6 F( n* E: }8 x! D
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]
- A k' d' Y" d% o/ N/ W004031A1 894424 28 mov dword ptr ss:[esp+28],eax
! a1 _! d0 D) v5 N004031A5 8BCA mov ecx,edx
: u$ R5 \4 M; w; I004031A7 894424 24 mov dword ptr ss:[esp+24],eax
3 c) f9 }2 A% f) l: R004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
8 Z3 z* T4 l4 C& e5 o7 e: Q004031AF 894424 18 mov dword ptr ss:[esp+18],eax
' ?6 e& i5 A8 \% e004031B3 894424 14 mov dword ptr ss:[esp+14],eax
' V6 [ B* [' z! X8 T004031B7 894424 10 mov dword ptr ss:[esp+10],eax) n* ]2 F/ U' q
004031BB 8BC1 mov eax,ecx
! H g k. s: u! ] ^. i004031BD BF 0A000000 mov edi,0A
8 T6 y3 y8 i+ u/ p# Z7 {6 s, \004031C2 99 cdq
$ P- Y7 h2 m( \& z# v% `004031C3 F7FF idiv edi" A s0 K7 ]0 L# Y4 G
004031C5 8BC1 mov eax,ecx
! a: E1 E' }" M" ^- [5 m6 f004031C7 B3 0B mov bl,0B% T4 ?% O% G/ d1 p7 _( r
004031C9 0FAFC1 imul eax,ecx
6 i) _7 I$ X5 y004031CC 8BCF mov ecx,edi
' j7 S7 F. l8 _* Q9 A3 m004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
; S* n) I1 w6 Q: g/ ~1 e004031D2 52 push edx9 C' I1 P$ v$ u1 w6 `+ f8 e5 V! C
004031D3 99 cdq' {5 B. u% e* x0 |& K+ b
004031D4 F7F9 idiv ecx7 l+ m! E0 V3 |4 c# A
004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]% E9 b2 T; \: c3 [4 L* @
004031DD 2BC6 sub eax,esi- a! L1 a3 ~+ O, c3 t! w6 Z
004031DF 52 push edx& P4 v! N8 j8 z2 C4 Z! \
004031E0 99 cdq
# S% X1 T7 p* r# ^004031E1 F7F9 idiv ecx
: h4 y5 _& V2 t7 o004031E3 8BC6 mov eax,esi9 }- i7 N4 B1 ]+ X- R8 T6 k
004031E5 52 push edx: C% j& U/ W$ f3 l- ]/ c/ h
004031E6 99 cdq
1 |6 x# J) `, d( h004031E7 F7F9 idiv ecx+ }) g. B4 |1 A5 q
004031E9 52 push edx; ?: Z% N% M3 v" O& c
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
6 q+ g4 M3 ?8 F2 r0 N/ l004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
- [4 U H6 |0 }) d5 F- ^$ {004031F3 52 push edx$ H, R- j0 a; \5 [/ g+ ~. U: L8 E
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893
! o) o3 R8 W' d# M004031F9 83C4 18 add esp,18
2 F" k* z" z/ s' c7 V4 h004031FC 6A 04 push 40 c' e( w4 q# G" {% D$ v8 ?9 G
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]
: ]& Z) M0 t, }) e* ? @00403202 6A 00 push 08 z2 F% G6 k o+ S- J5 y
00403204 50 push eax
) Y2 F& [( ^2 m$ |# t% v* N0 M, {00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
+ f% j% A2 X% @1 k8 G% k' m00403209 E8 D6530200 call qsr.004285E4
7 u3 s$ ^( k2 {0040320E 50 push eax
2 K# {( C; D8 V: }" ~' V0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]$ ` p* u* o" `& s V! f
00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C) A1 L/ e n1 b# O5 a- J" J& A
00403218 E8 A7C30200 call qsr.0042F5C4
r8 A/ B4 Y6 m# Z) t+ \* R0 h1 n0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
" R9 z9 I' Q0 \$ J2 N00403221 885C24 3C mov byte ptr ss:[esp+3C],bl6 `1 }% G7 u! l9 ?* b) I
00403225 E8 61C20200 call qsr.0042F48B* E ^7 n: U+ q
0040322A 6A 04 push 4. k) G4 k( G# C* l
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]: T! T- z) G7 x$ |7 a* E
00403230 6A 05 push 5% X V$ m6 ~5 f* h, D2 D3 M" s
00403232 51 push ecx
) j$ h9 _# \5 O; _, v2 h00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]/ a8 `, V* G) _6 ^( I
00403237 E8 A8530200 call qsr.004285E47 [- [6 i# v3 l: z+ z" m
0040323C 50 push eax% e2 t/ `" u. i3 d! \
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]+ H* X* v* ~/ H
00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D4 o, w3 r' J% B) a2 m
00403246 E8 79C30200 call qsr.0042F5C4' M# t4 A9 g! I/ I8 n
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]# p O2 |% f( H; M4 J
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl
! k* p1 o$ j% v: H% Y. ^00403253 E8 33C20200 call qsr.0042F48B
@5 Z- v$ q# f8 N# d00403258 6A 04 push 4/ e9 D$ A. ?0 | U; q3 M
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]
# G9 n2 h" i8 A& c0040325E 57 push edi
* e& K9 g! Z8 @ ^7 M+ Y0040325F 52 push edx
y( ?, R$ `. Q% Z8 h: j00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]4 z5 n: q3 \0 D% i9 f1 |
00403264 E8 7B530200 call qsr.004285E4, Z/ E- U; y! O/ D: ~4 q1 {$ w
00403269 50 push eax
# h3 L- {6 ?9 O6 p0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]/ N: ~) Y- d, D" `' c
0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
% N! i% G1 M4 ?& p1 O) u4 H2 a00403273 E8 4CC30200 call qsr.0042F5C4' ^/ N, j! d9 U% k) S3 ^' ?
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
3 Y5 g* G$ ]7 M* o0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl
5 R9 R: x: K+ a: e3 f& O00403280 E8 06C20200 call qsr.0042F48B
' g6 i! U( Z, A% r# ^& l7 h6 w" g& w00403285 6A 04 push 4
, l7 I& n4 n" F00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
l8 j6 r( f; [( O% j. E0040328B 6A 0F push 0F
; l1 D& I: X+ O8 ]4 @* |0 m; e0040328D 50 push eax' a& Q! o" N3 V4 L% M+ V8 n
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50] Z) `% w3 K* H5 A( g+ b6 Y1 P
00403292 E8 4D530200 call qsr.004285E4
6 Z y0 I9 T: a2 J: {- l) Y" J9 n00403297 50 push eax
3 C& a# r* k5 K) v2 A00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
: w5 k& s9 i; K/ a0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
8 k; {6 X4 w3 L* P004032A1 E8 1EC30200 call qsr.0042F5C4; o% Z7 t# d; v- D
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
5 y! [- L- F1 q# D004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl
+ v$ y* p- @+ g+ \6 u004032AE E8 D8C10200 call qsr.0042F48B( W6 u* ?+ V2 q# p
004032B3 6A 04 push 4
" ~1 |* z& U/ j7 P7 z5 q# i) h004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
' G- }' L/ L4 w) I" X3 m8 _+ j8 _7 K004032B9 6A 14 push 14# ? d% x9 ^ t" |- d% }' x
004032BB 51 push ecx
4 [8 O! E# P5 O7 g2 _1 K004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
+ E$ v- R3 [+ Q9 {( r5 f004032C0 E8 1F530200 call qsr.004285E4
6 m" `8 Y# a5 [2 W- ~' \004032C5 50 push eax* E6 P0 m' I9 W( P1 ?$ B6 o
004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]- _$ C1 D4 j9 _+ t
004032CA C64424 40 10 mov byte ptr ss:[esp+40],10. {& c% c8 J _: P9 u
004032CF E8 F0C20200 call qsr.0042F5C4
8 e b9 n) o4 p" d6 }% Y004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]0 x% K- Y* s: r/ p: X; f
004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl. d2 L9 L/ d' C5 N1 ]2 Z- a0 I
004032DC E8 AAC10200 call qsr.0042F48B
: u9 |7 e; {) B; A" I) ]004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
L$ u' E& [# C004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX4 T, b/ C7 d: y$ e2 D9 \
004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL- b5 E6 _8 a) Q( h* q; Y* T
004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL5 _8 }* e8 V; M1 Q" j2 b4 t) Z
004032ED 8ACA mov cl,dl ; DL送CL
6 K# _4 R& z) q3 W004032EF 3AD3 cmp dl,bl ; DL和BL比较+ ?/ v# y4 a- \) _9 m- H& \4 G8 Z
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)! l* C; |" ?- Z; l1 X
004032F3 84C9 test cl,cl# E5 x( J* W4 G3 e! W
004032F5 74 16 je short qsr.0040330D
7 p8 J; M' i# p+ }7 X/ u2 g6 o& l004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL
: X B0 ?* R3 {004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL& T% P# m. X% N% M
004032FD 8ACA mov cl,dl
& v/ s2 N1 F" C. C+ R: M004032FF 3AD3 cmp dl,bl ; DL和BL比较; S5 ^) `/ T8 O* t. M! ~ E
00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
% o5 p0 i, L0 F: P; S1 e' t. i* A00403303 83C0 02 add eax,2 ; EAX加2
6 `8 }8 N7 x1 @$ L00403306 83C6 02 add esi,2 ; ESI加2
7 a# d9 h5 x$ N+ y% y* o0 V00403309 84C9 test cl,cl, ^: |! \6 ]! L/ ^
0040330B ^ 75 DC jnz short qsr.004032E9' Z5 m- b) l3 x! D! }, t. l
0040330D 33C0 xor eax,eax7 G6 e# h# Z K* @. {
0040330F EB 05 jmp short qsr.00403316
$ q0 |" e ^+ p% P) W0 Z6 O2 h, C00403311 1BC0 sbb eax,eax
. M* a( `4 a3 ]$ l4 D% [00403313 83D8 FF sbb eax,-1
9 ]" `; d! f* r/ f8 ~0 Z, d00403316 85C0 test eax,eax
0 H8 V u' R7 ] c: A) ]00403318 74 0E je short qsr.004033281 c! q* S! ]3 f. H( T8 O2 S5 `
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A h. ^) v, u$ ]- O$ |
0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]0 ^& O7 H3 z; q0 S* W& q
00403323 E9 F0000000 jmp qsr.004034183 Y. F1 h! a8 u. }
00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX7 R# U; S1 i3 s, k' J& _; Y
0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
8 M! |7 }1 Y& Q' e00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]
4 O3 G& u2 J h# }: ?5 Y; \00403333 50 push eax
" m0 m+ H! ?* u6 G00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX, p% ]. B0 C n$ D4 W+ f! @( _
00403339 50 push eax
; H3 |; r3 Q$ S2 e0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX
: ^5 p, Z. `+ O0 E5 x" D4 t0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
- ~ U' L" t' j00403343 83C4 04 add esp,4& W7 v4 a) e5 v( j* Q) X" P
00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI
% L2 J$ S2 g z1 d0 U) ^00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]
: R) g- k* b. h8 E- d6 S% U4 N0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
) Y) h( f3 m- T+ J% F$ n0040334F 50 push eax
3 o! K/ D2 D* f$ l$ |! w2 ~00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
. l! G" }( G. v3 i) \6 [, ^! q00403355 50 push eax
: |4 W/ x+ a$ T2 l" Z; r4 m00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX* f3 I/ B4 n) R3 Z) u
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
# t" e. e( N% J' Y" Z9 r9 Z0040335F 83C4 04 add esp,4
9 T: c. `4 Z f0 X) j00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI
* ~# i) }0 c# ? q00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]1 w) P9 }% Q* J2 b! ]! k5 F9 s
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]& _: C' d- l. q" S# z% p- X4 }5 X" {
0040336B 50 push eax8 Z/ e7 M0 @3 Y) j4 D4 N- d
0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX
) X) s3 R6 K1 F' C: Q% B6 B00403371 50 push eax
8 d b- F; S7 D/ h# H- T00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX! D$ V A% N8 x, V6 Z" e* E9 P3 Y* {
00403377 8BD8 mov ebx,eax ; EAX送EBX+ U4 m h# K. y
00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX& {9 r0 [" Q* `5 d, J
0040337D 83C4 04 add esp,4' Y+ ~, @& [. k) C& ?! ^4 |
00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
& x1 t0 {% H$ ]7 @- I: K. j00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]
* N1 U% p; A. f) Q3 C( M00403387 50 push eax5 E& x! D3 I9 i' G% o* Q% L
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX3 w1 N3 M/ F* h( P
0040338D 50 push eax( C3 V6 b! ~! r# o( e% H
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
v1 v" @) G7 w" T9 N% N00403393 83C4 04 add esp,42 j: D1 P# E m3 k
00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
; H5 A% F R! u; t+ r( ~# W( G0040339A 8BE8 mov ebp,eax ; EAX送EBP
$ q5 \" @3 @) |0 Z8 e9 T0040339C 6A FF push -1
j" n% a$ T+ i, g8 s; R% f0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX8 `# b# i# E- |! ^& g$ S
004033A3 6A FF push -1
+ g$ S/ S, K" Z5 i004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
) E, G1 v/ l1 T004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
& Q4 h/ i' ?# Y$ x3 Z004033AE 6A FF push -1
& z( U# J; _' e% S H004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX- u$ ^8 |$ V9 ^+ X1 y
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX2 W" z- [! M. f$ D- `2 E) k
004033B9 6A FF push -1$ d2 {; l' s c
004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX# [( J; o. g0 x Z. e
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX% ]. [8 L8 }. q: C- }* f
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
& t0 ]& j; \4 g- D+ W3 i004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
( i9 A. w' w8 M6 @1 p/ U004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
) i! Z3 | {/ P. f004033D7 D1E0 shl eax,1 ; EAX左移1位
; a# j" Z& X6 }7 h! S' o004033D9 99 cdq ; EAX扩展2 M/ K/ |- G5 e4 f+ c+ C
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
8 p: D, _; I4 X5 J004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较: Q2 |8 x+ v ], M' @, w% B
004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)* Y! y4 M& I9 M- Z; i0 C2 w
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A
' [' a( ?4 P8 W8 w; A8 m/ Y9 S004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]: {4 Y9 I5 W8 L5 L( ?, K
004033E9 EB 2D jmp short qsr.00403418. g( I9 f) F: t
004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX
! L5 R: B7 u. g6 y$ w0 ]004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2
2 q+ R. c! E) z# f6 N& [004033F7 99 cdq ; EBX扩展
! N) a- x5 A9 ]' ~% F0 p004033F8 33C2 xor eax,edx ; EAX和EDX取异或3 E6 G$ p& M, U2 H3 A+ N$ t
004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
! y. q; r" ` [' l: m' n004033FF 2BC2 sub eax,edx ; EAX减去EDX& T7 {2 w, F. Q/ e, [
00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]! l: N+ u$ V4 }
00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
& X( ]+ L+ T' g9 O/ Q0 M+ g8 L00403409 99 cdq2 w% d' X8 y$ Z" L
0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中! n% _7 ~" ~9 q# n2 L3 ~
0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX, H \3 N4 j: K& j& d S4 O" d
00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较0 ]2 b+ C- R# u" \
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)
& T- k2 v& V3 i+ X% E" l9 h4 L5 f00403418 E8 6EC00200 call qsr.0042F48B ;
7 M" ]: {1 k7 o+ I! n7 Z0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
7 m! A7 ?2 J0 |; C00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9+ A0 H0 z' Q9 x. T' l1 f
00403426 E8 60C00200 call qsr.0042F48B
# q+ x/ Z" z$ p9 \5 Z# L# e0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]& }7 @7 l8 @% K
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8( a9 Q& b: i: q5 W( ]$ _0 y
00403434 E8 52C00200 call qsr.0042F48B
* }# o( ^& u% n& ]5 r00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]6 N. G7 I0 U; A0 a% E% C. i. s
0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7, O" D1 L4 R$ q( v
00403442 E8 44C00200 call qsr.0042F48B. o" j. x/ B% g# c
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
0 O. v0 C u* N' j3 \; Z; f* F, F0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
: p* Y$ |1 [) z00403450 E8 36C00200 call qsr.0042F48B; g1 l# f" P- L
00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]; Z6 u# k9 ^+ p( D- r& A/ A9 l
00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3
* q/ Z& p- s6 Q* K. ? U, u3 O) E0040345E E8 28C00200 call qsr.0042F48B
: V9 k3 {4 E* n/ J; B) @00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]$ u* ?8 M+ ?! p0 U( M9 U
00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2; R6 n6 b8 h9 P
0040346C E8 1AC00200 call qsr.0042F48B5 L4 L j) r; h N3 Q" Y
00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
( F8 p+ b& j) ?4 N1 z( [, M00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1% l" E3 k- P: k. y0 i6 [
0040347A E8 0CC00200 call qsr.0042F48B
4 g- _4 G: N: m5 ?& h0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
3 F0 e T) o1 p5 M0 A8 y5 c00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],03 E# W1 [5 R2 o" w. ?
00403488 E8 FEBF0200 call qsr.0042F48B2 t9 ]: E+ [1 Y- Z; z
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
, j7 I; v5 e8 [0 g; M00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
6 ^) J3 O* N8 ]. }8 j9 k8 K U00403499 E8 EDBF0200 call qsr.0042F48B* }& d" r' W/ q9 } v
0040349E 32C0 xor al,al ; AL清0. H3 u# K% ^' r: x- a
004034A0 E9 88000000 jmp qsr.0040352D& v$ Z7 K6 b2 g! {- i
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~
1 e' c8 q* G) c# ^004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
8 V6 v( g5 `2 q+ r, \4 A004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9
2 Y! t" B6 F* t+ ]1 Y4 D004034B3 E8 D3BF0200 call qsr.0042F48B
. W5 Q& I8 q. Q9 Z1 z+ ]7 h004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]. h! ~3 `2 [( u: J0 O
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
. k, z7 ?$ b& J" l* G* D- u6 S$ Z0 J004034C1 E8 C5BF0200 call qsr.0042F48B2 H" S/ D3 x [+ p d
004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
+ s3 @6 r0 h0 G0 \9 \- q! H* e004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
2 C" I4 x7 Y! }' ~# c004034CF E8 B7BF0200 call qsr.0042F48B# S4 X9 h/ d' d! }
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
9 D k: }* q9 c# L% t0 z004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6. k @0 W0 A5 P; q6 r
004034DD E8 A9BF0200 call qsr.0042F48B
; J# u9 p3 O9 B! C6 }4 E004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]! t8 K; {4 @! V9 |- s0 c+ C
004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],31 r' q( v# E2 E I+ q
004034EB E8 9BBF0200 call qsr.0042F48B
" H6 Q, v1 K0 v$ Y7 l$ L004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]& N3 Q) F* w8 z3 Z
004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2
$ k* c {* I4 J0 v) W004034F9 E8 8DBF0200 call qsr.0042F48B8 J' f* ^5 s4 Z6 m/ w
004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
1 h! q E2 d7 M+ U00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1* C' m8 s- ]: i ]
00403507 E8 7FBF0200 call qsr.0042F48B
) N/ S- ^' a, _# v" R8 Z% {, s0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]8 I7 Z% ]# s' W$ s. f
00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0
2 f+ R# c5 R; Z00403515 E8 71BF0200 call qsr.0042F48B y6 j9 W% h! T+ n
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
* r5 H' H+ v8 @& v8 @6 H% F0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
/ K3 z+ ?6 E) C( V00403526 E8 60BF0200 call qsr.0042F48B7 [, j/ K7 f$ q
0040352B B0 01 mov al,18 ]! l. G( {1 g6 p. n0 q G
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
. P, g& r2 p$ T' Q4 [5 |00403531 5F pop edi
, R4 c1 y0 |: k3 Y3 B& c7 w00403532 5E pop esi
1 S' v- G) X, f7 a00403533 5D pop ebp
3 a0 O" M2 y' w! M00403534 5B pop ebx6 D) j, E7 V) E' \, A+ O; @. ?
00403535 64:890D 0000000>mov dword ptr fs:[0],ecx
/ E2 r& M: K$ k) W9 B0040353C 83C4 30 add esp,301 O* |! P; j, d' v
0040353F C2 0800 retn 8
5 r! W2 X* a' K5 n& t--------------------------------------------------------------------------------
: R2 J H* W6 S【破解总结】
/ Q6 r' _* E, S5 z 用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
5 Z4 Q; q" g0 N用户名:yijun
+ `/ J% _) }4 d1 ~; w注册码:4893*7777*3726*7777*0529# y: U+ E. x' h
--------------------------------------------------------------------------------2 |. d8 V/ d& Z2 p3 P
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡