|
|
|
【原创】破解Quick Screen Recorder
- j/ H7 x" G+ B) D+ W【破解作者】 yijun
1 k( R7 V% l! [; B1 T5 ?【作者邮箱】 [email protected]
8 O/ b# C3 }# h+ Z【使用工具】 OD,PEID
5 H5 H3 @5 l2 S- e2 ?' i【破解平台】 WinXP
5 p4 _" y! q3 I【软件名称】 Quick Screen Recorder' x! `6 {( F2 H/ |
【下载地址】 天空
/ T9 L1 T o2 J% n* r% O, S& s6 Q【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on. 8 f7 ~- M9 r* J+ }
【软件大小】 540K8 l& _& N3 `1 O# Q3 ?
【加壳方式】 无
, n' t0 G6 k Z" U& }% x【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)
* ]" W5 w5 V* B7 i1 @9 v! ]--------------------------------------------------------------------------------
& o8 w; P$ I# K% M, ]: D【破解内容】
* B, s3 k+ J2 l+ r) F" |% Y6 n PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
7 u8 g3 u1 n# ~8 ^8 u! v00404C69 55 push ebp //在此下断
: w4 _ {! I7 H% w) W00404C6A 56 push esi
7 G- {0 {! B( T& u0 Q00404C6B 57 push edi
4 n) ^ ?6 j2 Z/ }# K" a; g00404C6C 8BE9 mov ebp,ecx
; L! k; e" H- H, O" u3 U" j00404C6E 6A 01 push 14 i) ], S& p' _7 E. B) P
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名( @: _. I% i9 x
00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]
1 x, e" X) Q: [6 h' ? w" _7 B# J00404C78 8BCF mov ecx,edi% n6 h; [, w/ D* X, g
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码6 R P: W4 G& v
00404C7F 8BCF mov ecx,edi
) ]. x9 @2 {# I0 M. V3 {00404C81 E8 A73E0200 call qsr.00428B2D
" b1 b$ w# Z3 Y! [00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
, k2 n9 A8 k5 R00404C89 8BCE mov ecx,esi) E5 T) R& Q" g/ d* g# N+ f2 F
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX
g, p& e: }- s00404C90 8BCE mov ecx,esi
' C% n8 ~; q( r* z00404C92 E8 963E0200 call qsr.00428B2D+ R& d3 I5 m' S$ f- u; T
00404C97 8B06 mov eax,dword ptr ds:[esi]
1 ~" |: ^3 \3 R) h% _4 R/ X9 ~00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2% x; t0 _1 H! S
00404C9D 7D 26 jge short qsr.00404CC50 g5 q- _8 Y6 ^$ p8 T- g- \
00404C9F 6A 40 push 40
# m5 r/ n0 M ~ {# Y8 ^00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
6 E( F2 ? Q' G: X00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."4 L5 a% w0 ?- ]( i
00404CAB 8BCD mov ecx,ebp
: o/ E( Q9 z" D- W) n |00404CAD E8 C3840200 call qsr.0042D175
. W2 E: z1 X# F4 T; D* v, ?00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]5 q- ~& }$ d. o1 r" D9 `
00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx$ r8 m9 Q* d% m$ v
00404CBD 5F pop edi8 u6 i3 v9 H9 ]0 U
00404CBE 5E pop esi) N0 T# I* x$ p, B5 |# ~0 a
00404CBF 5D pop ebp1 I- L$ h7 g9 |% n: V# U
00404CC0 5B pop ebx
! p; ~' r& C7 n! B00404CC1 83C4 18 add esp,18# f2 v: F0 e' ?. x5 m. E
00404CC4 C3 retn
+ A# g% g0 c/ }" ~+ q00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]$ o: S$ p6 z4 Q6 N# |
00404CC8 84C0 test al,al
2 L5 F0 C8 f0 v1 V1 M2 |2 H( v8 X$ S00404CCA 0F85 1C010000 jnz qsr.00404DEC
5 _9 H4 F- R2 u, N* J00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]* ~8 F p' ?* A* {) w9 d
00404CD4 E8 87E3FFFF call qsr.00403060
8 e# U7 L( a/ b- O8 F+ t8 Q7 H- F00404CD9 51 push ecx8 M1 J0 X% h: h/ P5 L
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
2 M7 z$ [& J$ b( M' V. x3 z00404CE2 8BCC mov ecx,esp' ]# h7 l" K3 o8 k
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
5 ^( h9 U9 q, t. M: K% t00404CE8 56 push esi- S8 P& {5 m& s& P3 Q
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
- ^, ~+ F" a3 h! s# M4 C' a! C00404CEE 51 push ecx/ r1 E+ `& C2 R. z( W, X
00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1 P; w I5 ]. @' P" ?6 |
00404CF4 8BCC mov ecx,esp% m5 e1 V8 K j
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp" c, |/ e: {& H3 a
00404CFA 57 push edi
" }1 b0 t% r3 d/ t00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是09 T9 o( r5 h; Q3 [: c' R- L' V
00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
+ h- D8 }7 I0 L! ^0 I% e9 v5 \$ \00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],03 P# | ]. m7 P+ R
00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~
( ]8 n+ C. n3 g0 O3 Z4 g00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~6 D$ n/ ^% |4 Y8 F
00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~( u7 p: b' F) \, T
00404D12 6A 40 push 40+ q, H' o, C- \ ~2 v# C# B
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
; x8 D- G5 E" M% L+ `" h00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."
. P6 g3 @6 }3 E: B00404D1E 8BCD mov ecx,ebp6 y8 T, A$ Q! F5 ]' I v( i+ O
00404D20 E8 50840200 call qsr.0042D175
7 u/ A0 j, @9 R! E* T00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]# I9 a( i1 _7 r% O! [8 z) N
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1: `# U4 ?7 w8 Q
00404D31 E8 5AE3FFFF call qsr.00403090. J0 O$ n# u" d% c, Z, j
00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]. t& Y+ M$ n) x5 P8 s3 g# e- n
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx, X, X3 m5 Z* A8 P- N2 `+ j) Q
00404D41 5F pop edi
3 P0 q7 C; _. l7 l6 G9 U00404D42 5E pop esi5 l g2 q% e9 y$ v# R6 N
00404D43 5D pop ebp
2 ^$ Y& T" D% p0 ?00404D44 5B pop ebx9 ~2 {; h, Z& t6 ^, m
00404D45 83C4 18 add esp,18
# W; K% ?) R* u# b4 H: m* K6 r00404D48 C3 retn
+ N; Q4 U, l1 M" N, H$ R& _*********************************************************************************************************************************************************/ S5 x+ G; X8 ^* _' \, H
跟进00404D09处CALL来到:, p* A8 N, ^8 }3 z# H8 F
004030A0 6A FF push -1 //一路F8下去~~~~4 R' s8 t3 H6 L4 _/ w# e
004030A2 68 C88F4400 push qsr.00448FC8) r9 I/ Q0 F& U
004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
3 g9 c: P2 n( z7 z& P' ?& G004030AD 50 push eax
# w" v; B" X. d( S4 J8 E' K$ e: p004030AE 64:8925 0000000>mov dword ptr fs:[0],esp! W% N, F: `6 b! b
004030B5 83EC 24 sub esp,24
, Q/ Y% L) L) ^6 h004030B8 53 push ebx( G! M6 X, z/ |
004030B9 55 push ebp
# g" w! V( o# H/ r: S0 `" ` U004030BA 56 push esi
0 `6 B6 Y6 I( a004030BB 57 push edi
7 [6 l) B; Z" d3 H004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"
& y. E( j8 Q8 G004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
! r) j% y1 |0 x; |, M- A: j004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1
5 F% u" v/ z, `% t( c8 ~004030CD E8 27C40200 call qsr.0042F4F95 D6 N, c* e# S
004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
- F d7 ?3 U( s, I004030D7 894424 2C mov dword ptr ss:[esp+2C],eax) a5 C0 t6 Y D/ K# f
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
1 W6 Z, A1 w; @* J8 u) v2 W# s004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3- F' |$ [8 y! r, \5 z9 B: s9 {$ b' Q5 _
004030E4 E8 905A0200 call qsr.00428B79
6 q9 U* ~+ e4 v3 c004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
0 B) v' F1 M; ~, `0 n* L9 \004030ED E8 3B5A0200 call qsr.00428B2D
5 X1 a, [1 O. ?' H, b004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]: K4 f% {4 K, Q" \1 G
004030F6 E8 7E5A0200 call qsr.00428B790 x& c4 ]" C6 E8 w: g K5 z5 l) M I \
004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
2 z) o3 ]" O$ x: v004030FF E8 295A0200 call qsr.00428B2D
( c& O& d& {# ?- Z00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]6 C; |$ T6 \1 _9 Q
00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]$ g- Q- X1 e) X R5 }. k A
0040310B 83F8 02 cmp eax,2: u! l3 h. W% P& m* ?( x# J
0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳6 N6 f, z; _; E {2 s( h
00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]
. q& ?8 m3 W2 v. _, S; T' |# z00403118 837A F8 18 cmp dword ptr ds:[edx-8],18) I. _$ u+ X t& M
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳
) _3 r2 w9 N$ p6 d7 A, v00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]; k5 d+ w- K, ~5 L- b
00403126 6A 01 push 1
) W2 F1 S: w6 e' D8 `& ?) H6 c$ f00403128 50 push eax: s* V6 y v/ ^% T
00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]$ b0 q# D' ~% X5 p
0040312D E8 C4550200 call qsr.004286F6+ P8 q1 v. p+ \9 u
00403132 8B00 mov eax,dword ptr ds:[eax]8 }9 K) F l$ V! a
00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]4 p; ~9 t) Q, M# `" o5 L* A7 e; g
00403138 50 push eax
- ]- C# f; e9 T+ I+ Y00403139 C64424 40 04 mov byte ptr ss:[esp+40],4
$ {3 B5 J' P8 e$ p- }0040313E E8 4D560200 call qsr.004287907 K3 \% L4 a1 @7 F; B
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]1 i& ?0 g# F; I7 v% e7 V) a
00403147 8BF0 mov esi,eax
* ?0 o1 ?- {9 Z' {5 @00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3
8 Y7 F4 ^; h* B, y/ [0040314E E8 38C30200 call qsr.0042F48B* K- @4 V; g5 M
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]
* I: h2 R9 _* C- c% y, t' T* j00403156 B9 3E000000 mov ecx,3E
1 i/ t; n6 h% V4 p/ v& ?- t: x+ z0040315B 99 cdq, g; a: F0 r: o3 _
0040315C F7F9 idiv ecx
' u& ~' T' b* A0040315E 6A 01 push 1' z! v- }" K8 M; W
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]
0 R: P; y( m2 b' R; f00403164 8BF2 mov esi,edx' I1 L5 b% T( M8 H) q
00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]+ r6 {8 t( b: \6 J
0040316A 52 push edx9 Y$ h- i1 z6 _- P( d! s
0040316B E8 0A550200 call qsr.0042867A
3 L3 \2 s+ N* i0 ~6 F) U00403170 8B00 mov eax,dword ptr ds:[eax]3 r+ l5 K4 Y( K6 o" Q
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
' L' E( ?2 t0 z- U00403176 50 push eax
7 F. ~6 v T6 \! A- I, I8 Z00403177 C64424 40 05 mov byte ptr ss:[esp+40],5 e" O8 q0 z' }8 v5 z
0040317C E8 0F560200 call qsr.00428790
9 r1 g; T2 o& m1 a00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]" t' q" n4 w! w. e
00403185 8BF8 mov edi,eax
2 I( y, O! @* P6 O* n& M F$ u00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3% Q. a4 h0 `7 o0 C5 k
0040318C E8 FAC20200 call qsr.0042F48B
$ p$ \2 ^8 B5 t' u; p5 X6 N00403191 8D47 0A lea eax,dword ptr ds:[edi+A]
1 Y& j1 D6 T1 I, g- o00403194 B9 3E000000 mov ecx,3E
3 f Y7 ^' ^3 g00403199 99 cdq
- V& d( a# v _8 L3 v; ~: [0040319A F7F9 idiv ecx/ ?- f& b7 `; f; \6 {
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438], ~2 x6 L" |" q! O- m4 R t/ Z
004031A1 894424 28 mov dword ptr ss:[esp+28],eax
2 Z% }- k+ }7 [* D, }3 p004031A5 8BCA mov ecx,edx. _+ V" t0 c" l/ I4 H' q
004031A7 894424 24 mov dword ptr ss:[esp+24],eax0 p- B: F, o! ^ B
004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
( N* \; |/ I+ T% R) V8 v004031AF 894424 18 mov dword ptr ss:[esp+18],eax
/ R# {9 I+ M I* x( {004031B3 894424 14 mov dword ptr ss:[esp+14],eax
* |" k/ y5 F" U3 }% D% o6 b$ ^+ y004031B7 894424 10 mov dword ptr ss:[esp+10],eax
- G+ n$ Z+ [$ L" U/ ?3 Z004031BB 8BC1 mov eax,ecx9 j! J. ~* d- O! E; c. U* u/ Y# b$ X: Z
004031BD BF 0A000000 mov edi,0A. T# H5 _' {5 s6 _1 L. X
004031C2 99 cdq
$ G0 o' V3 e' f" t4 g3 e1 ]! y004031C3 F7FF idiv edi
1 X" I8 i+ n* u5 q Z& m6 Z004031C5 8BC1 mov eax,ecx' D9 S7 y0 R) H9 W8 @
004031C7 B3 0B mov bl,0B% u5 k2 L& S. ?4 V! r7 e( I
004031C9 0FAFC1 imul eax,ecx/ b H" u% s% w1 z1 H7 d
004031CC 8BCF mov ecx,edi
5 n- r h H; O+ P0 o) ]4 c004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
# y+ E) ]2 {4 m004031D2 52 push edx, C3 b+ \- X z @& Z/ d
004031D3 99 cdq: X' D( H6 S. h$ g! Y9 b
004031D4 F7F9 idiv ecx
3 q3 M8 @( z% q004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]& p* x) _: f( |- k3 Y( N& {
004031DD 2BC6 sub eax,esi* P7 `" R! w3 R; L; H; B! [4 B
004031DF 52 push edx
8 N2 W. q4 d, [6 |4 k# T$ e004031E0 99 cdq
9 c6 Y7 e0 r* ~ e) t# x5 T. k004031E1 F7F9 idiv ecx: l4 @/ R0 ~/ i# \0 D
004031E3 8BC6 mov eax,esi& d2 q% U3 N- ~6 _( i- J
004031E5 52 push edx
( a& t$ w; k. [' u004031E6 99 cdq) E# G+ J& A2 `+ L4 ?! J
004031E7 F7F9 idiv ecx% _" _; a1 l" ~* P, P y: }3 p6 F
004031E9 52 push edx
5 `; Y5 d# ~; i/ k1 [! u" J004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]" r: Y9 _' C V/ y, r
004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"9 {: g6 B" `7 W( m* m0 e
004031F3 52 push edx
' D) z9 ]3 X0 m4 ?; x9 L# M004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893) G8 R. ]1 e% O0 D( C* t
004031F9 83C4 18 add esp,18& E* A! H$ P) @
004031FC 6A 04 push 4+ i( a: G0 Y$ Z! |# N7 N$ M
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]
( ~1 E) t$ ^- V& V00403202 6A 00 push 0$ C- U: q' I* F4 m
00403204 50 push eax, a3 Y1 }0 ?" A
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]) p6 Z4 X8 |2 ^4 {/ j' F4 d9 M* n2 }% @0 E
00403209 E8 D6530200 call qsr.004285E4
! I7 f- o4 L( x: r0040320E 50 push eax) Q( r2 r' i( v; J+ j" ^/ K. A# K
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
$ x( r" u7 k6 D+ D, O. ]00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C, s- T1 Z9 I3 B' @9 k2 Q
00403218 E8 A7C30200 call qsr.0042F5C4! W& n& w$ a2 a
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]8 R( b f+ A- y
00403221 885C24 3C mov byte ptr ss:[esp+3C],bl
* s# v) H. \! t( L3 y00403225 E8 61C20200 call qsr.0042F48B
9 x/ X6 j( m7 c6 S2 q. |0040322A 6A 04 push 41 ~: k- \- H6 N: w% e3 u% F) m
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
. F P" h/ n8 _' ^) g, c00403230 6A 05 push 5
}; E% \' A9 _00403232 51 push ecx
/ I7 P6 B3 q, e" l* a00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]; `, h0 L f6 G# Y/ z5 n
00403237 E8 A8530200 call qsr.004285E4 k- M* O$ G9 j; M- w; a* R( \
0040323C 50 push eax
# \! W7 b. }: x9 L0 f* X% d% P0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]8 ?$ n$ [5 D1 z7 a4 A) ~
00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D& R4 b1 d% Z9 `4 n% E' l) d1 d
00403246 E8 79C30200 call qsr.0042F5C4
" L; {1 N; ^1 {' E1 w# i% F0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]4 o) b4 x! j2 p% c% ]
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl+ E: k8 ~3 ?5 x& f) }1 ?' y
00403253 E8 33C20200 call qsr.0042F48B& l( ~1 M' ~! v; D4 ]/ m* _
00403258 6A 04 push 44 j1 G! l {( v7 |$ e
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]) l j* D2 U$ J- {: b
0040325E 57 push edi# f/ C4 C9 G/ O4 _/ [( I" C
0040325F 52 push edx
* m* g+ P- L0 s. {00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
; e2 V4 I: y+ ^* a& Q00403264 E8 7B530200 call qsr.004285E4, Y' y w# @2 Z' q6 K6 u& W! @0 ]: C
00403269 50 push eax
, @6 L7 W: z# }0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
3 l+ n5 X- T7 p! A* n4 p% {0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
+ {5 }' l: L6 B00403273 E8 4CC30200 call qsr.0042F5C45 N3 V8 |) a8 Q
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]; b; h9 Q3 e6 n9 J
0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl) Z/ k- i9 A7 S i5 s4 f
00403280 E8 06C20200 call qsr.0042F48B7 @& ^7 t! ]5 }% L: `8 U
00403285 6A 04 push 4
' R5 ~* l/ e: ^. a00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]: r% ^6 N3 g& ~: t+ g% o
0040328B 6A 0F push 0F
! ?: g2 [, e8 p, T% R0040328D 50 push eax3 M+ _- R1 k) w1 j) g. X1 s
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
& _4 _& u! h# d& r" g# @00403292 E8 4D530200 call qsr.004285E4% h% V6 X* w6 b2 H
00403297 50 push eax
- }3 p! ~& R$ ^. R, M* b00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
+ K& `* }) X9 z+ E+ S& g/ j0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F ^7 W! g+ V, N! @# C! q. U
004032A1 E8 1EC30200 call qsr.0042F5C47 B. q: W5 t% n
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
h; f$ a5 V4 k2 B004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl
( S' f) y; ]7 d; L004032AE E8 D8C10200 call qsr.0042F48B) f+ E7 K8 k7 ?6 f A
004032B3 6A 04 push 4$ b3 h( I3 ^7 M3 k5 \1 y1 m
004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]" q$ z0 |2 T% X0 T, H" c! t
004032B9 6A 14 push 145 R' Q, D! E; C4 w, ?4 z- ^0 G% o
004032BB 51 push ecx
. f- v# C7 n2 F2 S' i+ h7 G7 E004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]5 G, @+ M) k- @8 w2 [ n# k
004032C0 E8 1F530200 call qsr.004285E4
/ M* r+ ]& A' |8 c4 e O" {6 E004032C5 50 push eax$ o# I' M% @6 J! Y
004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]( X8 X0 i i) a
004032CA C64424 40 10 mov byte ptr ss:[esp+40],10
g$ z/ [- r$ @+ R1 X$ W: N004032CF E8 F0C20200 call qsr.0042F5C4$ \" O% q! T9 b* L. \
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]6 [1 p Q x+ L0 U1 k1 `
004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl1 W2 B$ w& n0 t6 q4 X3 u
004032DC E8 AAC10200 call qsr.0042F48B
: ]: d8 R0 {& o004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
. _! L8 n; M+ G2 B! c1 a1 z O004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX+ Y$ v4 \% I2 v3 e; F8 c# F* Y; R
004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
; t2 H% v- P" d$ [" Y4 m" `004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL
$ N- {3 B2 r% X# i/ n+ Q- c! J004032ED 8ACA mov cl,dl ; DL送CL
( D4 I" U- B: M8 W9 W0 k6 n% H; O004032EF 3AD3 cmp dl,bl ; DL和BL比较) }2 [) D( d- _5 g3 H! V p
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
4 O6 N6 {1 V5 V1 K004032F3 84C9 test cl,cl9 o( ~) R8 \- N
004032F5 74 16 je short qsr.0040330D
: ]4 I) S, W7 |/ Y6 D5 J# _: y004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL% j4 x* W0 T3 ~7 k) Z9 @3 y4 S6 ?/ J
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL
9 i' } K! `/ f- l$ D( A004032FD 8ACA mov cl,dl+ |" E! R+ H2 \* S' \" ~2 k
004032FF 3AD3 cmp dl,bl ; DL和BL比较
0 M, G$ S+ M L( V3 _00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)0 ~3 z/ N8 j# L) x! V
00403303 83C0 02 add eax,2 ; EAX加2
! h l. u- d0 b9 [* t00403306 83C6 02 add esi,2 ; ESI加2
( ~0 I3 S1 C( `+ i1 o+ N7 |00403309 84C9 test cl,cl
2 Z; k: r# i# V0040330B ^ 75 DC jnz short qsr.004032E97 u# W5 g) b% ^: e, J5 }
0040330D 33C0 xor eax,eax' B5 ?1 x7 j" m n" S/ c# e% @
0040330F EB 05 jmp short qsr.00403316
/ J6 w2 b* T) Q' ^00403311 1BC0 sbb eax,eax. ~' ]' c+ t) d0 j
00403313 83D8 FF sbb eax,-1
" _; u( W% a, H& ~( y3 y% \. G00403316 85C0 test eax,eax
, F% n0 @9 V4 }% A* P00403318 74 0E je short qsr.00403328
. h% n' ~7 ]# e5 {0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A% B9 j% U3 c5 {0 C1 v2 \
0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
/ c' f# C% W3 W9 @* r, X' w00403323 E9 F0000000 jmp qsr.00403418
1 a/ K5 T6 ^6 M" Z5 Q. b7 `7 {00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
9 D2 ]$ G* h; a5 R$ T6 l0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
$ ]8 W; T- M9 u$ h& z" `: J00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]
. i; u( {! {3 [' ^; \- I' a: O00403333 50 push eax
3 o# l! {, T7 y- g6 }3 @) U: m00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX
# X. F- @% m- d* w" c0 a9 \00403339 50 push eax
2 T' S& d e9 S/ V1 D# T/ }0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX1 t4 t' B( I+ L2 [
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
: o+ t; e% ~+ g2 t7 J) e- |) c+ R2 j% f00403343 83C4 04 add esp,4
) u; ~) {9 ]) `. k) H* ~" s00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI
/ v+ q5 w% \' P k$ I9 j r00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]% r. q4 s9 i6 F- e4 o9 D
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]6 C7 {9 y2 N5 E' l5 R; |4 I6 n$ I8 [/ L
0040334F 50 push eax' I$ ~: b+ Y$ l5 U# u
00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
+ ?9 D! e4 A4 a7 [6 {4 W5 e00403355 50 push eax o' I5 \; i2 c1 G
00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX
# j- c2 K* L: c9 {, J. E0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
% u0 G7 ~( R3 k+ n9 H6 y0040335F 83C4 04 add esp,4
7 O- ]1 ?) A3 x6 d- ~00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI% m5 Z. K5 Q: E( l6 W% ^; V* `
00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
" N/ S8 B4 \+ s- L9 u0 O1 {00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]4 D7 d7 q1 d. G/ n' W
0040336B 50 push eax9 p7 T+ P# n; J5 i" z2 U
0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX
( U- O, y+ ]+ q e& J# U* r00403371 50 push eax' b% Y! F/ r6 K, @9 j* C- U5 u- k
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX
* ^+ X4 h4 O2 z% J, \00403377 8BD8 mov ebx,eax ; EAX送EBX
7 L4 K: t4 N6 s( T" h; X( C00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX- _6 ]3 F) n5 |) v/ j$ R( m
0040337D 83C4 04 add esp,4
! c+ c! n# I. V: c6 u& }5 G8 y3 s00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
W6 n6 G# w7 r' O0 a: u) y00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]
! G: h: X8 C$ k0 S; R00403387 50 push eax
, p w. ] Q1 a6 X2 N8 o' C* @3 J00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX
m( d5 }/ f0 f/ g3 o0040338D 50 push eax
4 y6 S) w3 d7 M) J a# a0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
; D1 r3 H k5 } X8 c$ [9 x* |00403393 83C4 04 add esp,4
: X7 U P+ `, ] ^00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
+ e" q/ ?4 g+ {5 x. o7 I! v0040339A 8BE8 mov ebp,eax ; EAX送EBP
9 r) y0 Y) b; L: S R3 b L0040339C 6A FF push -1
) L' A* m( d$ x. H" r0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX7 `& [- ~9 ^1 ?
004033A3 6A FF push -13 t# G7 i5 K9 u+ c" s
004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
$ g; S$ l( ?: E6 E4 l! S6 K004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX, h5 `1 p+ {: }; Q. y' q
004033AE 6A FF push -1
E) Q5 z+ t" F% E3 k004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX
$ F: ]5 b2 ?7 L1 z5 d# m004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX
% z- z" s+ Z7 z004033B9 6A FF push -1
1 Y8 g+ J1 |! D- ^! s) u' }: }004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX h1 n+ |8 ]& ?: F$ z3 X4 H
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX' w% r# G* G! R! K9 }
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX9 ~. Q( G( L- n3 u6 S* `1 p
004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
+ {7 C6 s2 u9 S+ Y- [004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
$ w7 i6 I) |/ l7 ]# N; {004033D7 D1E0 shl eax,1 ; EAX左移1位
% J; Y" J' b6 n$ y: I/ c004033D9 99 cdq ; EAX扩展 v0 B7 P. D% L i, Z2 h6 |
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
+ o! s6 L0 ~ ^004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
8 n. j r8 ~+ T; g; Z: o7 x' P3 E004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)
( ?) D+ \6 L' [( j004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A0 B& D( C/ v/ j8 s- l; e
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
7 X0 Q) M* I; i5 t R7 S' ^004033E9 EB 2D jmp short qsr.00403418
! Z$ ~$ C- M+ `! @; H9 R004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX
5 Y5 l# E5 Z6 c9 ]004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2 |+ O1 F, k- n D7 v8 V
004033F7 99 cdq ; EBX扩展
, h% P9 k. s! p$ O% E004033F8 33C2 xor eax,edx ; EAX和EDX取异或
: P+ [' {2 @' H7 x004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX \7 {& Y4 ?9 |
004033FF 2BC2 sub eax,edx ; EAX减去EDX. p' V. D) [1 B9 B' z( ]" o3 S
00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]9 y. F% g7 B3 O8 `0 k
00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX3 u$ q. ]( }# z: ~
00403409 99 cdq
! Y9 a0 n- g! h- }! ~0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中/ T, u9 [! {1 j7 c8 b4 t
0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX
5 Q( [. k( z- U; ?6 G00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较
; L3 ]. X/ y9 h, o- c00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)! w7 V! `8 F- h: c% W
00403418 E8 6EC00200 call qsr.0042F48B ;
1 p+ }# n B$ a# i b0 ^0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]/ K$ Q Z3 F. O( t* u) t
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9
& S. j k T4 m( q& l7 R00403426 E8 60C00200 call qsr.0042F48B# W B7 w6 B4 d/ |( t
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18] g6 j& [" a" ?$ m
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8$ w8 O- l# W4 A/ h
00403434 E8 52C00200 call qsr.0042F48B
, [$ `) l1 d5 d) n00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
' \# |3 h! f9 e0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7
8 G" b; Q' m! ?+ {00403442 E8 44C00200 call qsr.0042F48B8 ~' o! M) @) u
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
2 \# A2 o6 n/ z9 U' Z# ?# ?0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6+ I! c& J- s8 ?! ]/ q* y
00403450 E8 36C00200 call qsr.0042F48B
* J. a9 B9 W0 \0 t* |; L9 H00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28] m7 f: I- _- e( Q& }, M. {6 w
00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],32 [# D8 V% }) i: S
0040345E E8 28C00200 call qsr.0042F48B
/ w4 g9 G: O$ ^3 \# n00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
* u. t* m! m( F00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
: w% F+ w; O. N0040346C E8 1AC00200 call qsr.0042F48B2 a) w# \' M# W q% |( n3 t
00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]) x! Z) l% L) t! W
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],17 y0 q/ k0 T! v, W; D/ I; g) Z
0040347A E8 0CC00200 call qsr.0042F48B ~* C0 e0 |- Z) Z9 r9 f
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
$ n9 D+ e8 L, @1 T% J* b00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
) L1 q5 C9 W+ U# r. }+ G7 [00403488 E8 FEBF0200 call qsr.0042F48B, ^5 q% o A1 F: }7 |
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
' C9 s7 `4 B/ `. {7 a00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1) Q6 h4 Q" ?& Y9 a, g5 z5 h
00403499 E8 EDBF0200 call qsr.0042F48B
7 i3 `0 X5 j9 a( X9 s; c0 d, b- }0040349E 32C0 xor al,al ; AL清0
, Y9 x9 x" x/ [# s& w6 q6 s004034A0 E9 88000000 jmp qsr.0040352D
: w F& r5 ^4 V# z# M- v3 s, O004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~/ c' B$ T( P5 z9 w4 i
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
: z0 |" w( g# Z; z3 |- r1 {- N) {004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9( o6 ~; ?8 \; U& ~
004034B3 E8 D3BF0200 call qsr.0042F48B! O: V. E; g, e" S; b# o+ \& f
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]. {7 B# ?& n$ E K
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],86 g9 Z8 O2 `, W! M& u+ j
004034C1 E8 C5BF0200 call qsr.0042F48B& `9 s6 m; M, s
004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
3 L- j' }+ e! v" h* w, B4 Y004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7. m' q( b7 c- c+ \& q t
004034CF E8 B7BF0200 call qsr.0042F48B
7 E* O' P/ o s% n( L0 P2 J- I004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
3 l% v, d& X, H+ C; {+ I004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6
5 E) S" _( y/ M; O, f5 X004034DD E8 A9BF0200 call qsr.0042F48B; \- p% _5 i6 S7 y$ c0 x! b; ]5 W$ F
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
. {& K0 @6 v9 V$ ]# i2 n004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
+ I: P- c2 U, _; e' V u004034EB E8 9BBF0200 call qsr.0042F48B2 S$ z: I6 g7 y3 q8 s9 _' ]
004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]$ n4 L7 P9 K( O: b
004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2: C: _; Y' J; j; X: ?0 Z! X# x Q7 Q
004034F9 E8 8DBF0200 call qsr.0042F48B
* k! k8 ?- q, Y; S" d- p6 I/ _004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]! |6 p: H7 j+ {
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1! v+ W. Q. W9 P8 C
00403507 E8 7FBF0200 call qsr.0042F48B
1 f5 t5 r" E2 r4 v6 u2 _% l% B9 ^! p0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
* F Z1 Y% U. Q! S7 g$ k9 O00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0
( h% ~2 o! f' {( |& @" }00403515 E8 71BF0200 call qsr.0042F48B' a( M0 S. Q* X& h6 f
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
* |! i# Z4 p! r7 u0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
* G% e% U( {( g, T* E00403526 E8 60BF0200 call qsr.0042F48B
9 ^8 j1 y, w3 K6 c% ]9 g8 f) o% w0040352B B0 01 mov al,1
* C9 N" l% ?# O2 Q0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]- A) O* n) a! W% S& Q
00403531 5F pop edi
+ y8 w. K9 f, x! A8 `" Q) V00403532 5E pop esi
4 l6 d. u8 J' k+ A% X/ m00403533 5D pop ebp
, T4 n8 e1 N2 D$ f$ }' h00403534 5B pop ebx
~# p; i: @' d5 L% g00403535 64:890D 0000000>mov dword ptr fs:[0],ecx
; `% B8 ^# {3 ?0040353C 83C4 30 add esp,30
5 D7 F: v3 a/ V5 ?0040353F C2 0800 retn 8
6 r* b: C. q# ~; o$ V" R--------------------------------------------------------------------------------
% c: O+ X* c3 ^【破解总结】
" H) d7 ?; S5 ^: u0 A% |3 M, K B 用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
9 N$ N0 d" u, I- f7 s用户名:yijun: N" R5 X% q$ n0 V; L# B! k7 N
注册码:4893*7777*3726*7777*0529
% l$ g! ^8 D) i+ O: `, i--------------------------------------------------------------------------------
2 F: S+ I& R! |) K W3 b【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡