|
|
|
【原创】破解Quick Screen Recorder
/ S0 m8 y% c# p) a* D【破解作者】 yijun
7 {7 G; z1 ^* b【作者邮箱】 [email protected]+ _5 ?/ d' t& q
【使用工具】 OD,PEID
0 y$ C# l" u3 u# o5 R) X* y【破解平台】 WinXP: ~8 D7 J7 k g! H. v; \7 ^
【软件名称】 Quick Screen Recorder- u- ?- w* i1 P% E: [
【下载地址】 天空
' l( c+ A3 \+ u) Z【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
* F( L+ o3 u: r4 M& G V/ x【软件大小】 540K
* X; s- P. z V+ ?2 E1 O【加壳方式】 无
0 e) n- w6 S" z9 x9 s6 o【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)7 m1 A' x$ ^$ e0 ^2 L, b2 Y
--------------------------------------------------------------------------------
1 L7 L9 [ `3 Z0 j【破解内容】* t$ h* p. `; m8 O0 A" p( d
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
+ h1 ~5 E& p4 Z9 m6 d0 c( L& k' N00404C69 55 push ebp //在此下断
; }" t" A8 w9 t! h00404C6A 56 push esi
/ G9 k4 O" X |& d7 b00404C6B 57 push edi. R3 o5 |% [' l2 u3 N8 {0 y* ?
00404C6C 8BE9 mov ebp,ecx
6 R t! f) y- a, f& D00404C6E 6A 01 push 1& n7 k6 N, B& X7 p6 U) [$ k
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名, g. l% s) j1 t, j6 ]' q4 O/ {6 i# j% X
00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]
4 ]# i. ]" t' p5 H: `3 I' k00404C78 8BCF mov ecx,edi
( H6 K4 P7 {9 t5 c+ B00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码, { i3 F5 V2 [% w2 [, `' {
00404C7F 8BCF mov ecx,edi* b; x. A0 N; K2 b" P
00404C81 E8 A73E0200 call qsr.00428B2D, D u' {& Q. k7 |( j, Q& x7 x
00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
; Q! O2 x* V. u d0 t. `5 ?00404C89 8BCE mov ecx,esi
5 C' H2 k. {, ~0 r' u; J00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX
" |! B5 P/ n! s- j8 b- D: A00404C90 8BCE mov ecx,esi- T$ N2 |% f8 U, B
00404C92 E8 963E0200 call qsr.00428B2D
" H( S, D0 a2 {. y+ ^3 m; v00404C97 8B06 mov eax,dword ptr ds:[esi]6 w" A- M5 F: l5 y* n, o2 Q
00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
3 X1 w$ T4 {) z. V00404C9D 7D 26 jge short qsr.00404CC5
b6 P* K/ n9 F5 l$ r$ u00404C9F 6A 40 push 40' Z0 n0 @ E U9 e! P1 h
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
% E. V& D1 @& d00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."0 J7 A0 u6 I6 \; p) E U. X
00404CAB 8BCD mov ecx,ebp" ^/ m0 B: g, y1 A0 E- w9 \7 P! ]
00404CAD E8 C3840200 call qsr.0042D1753 c0 d" g( a/ u
00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]% q; @, k. ~4 K) u& W
00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx+ a, b- n/ |! s1 l9 O+ x
00404CBD 5F pop edi
+ h: [( C r9 T( |00404CBE 5E pop esi2 ^+ c3 S4 g$ c+ }/ h
00404CBF 5D pop ebp3 O P) J. C7 D. ~% n# l
00404CC0 5B pop ebx; J: z2 X1 I( b: M8 A3 g
00404CC1 83C4 18 add esp,184 B9 S1 a$ U2 X. e N: u- k
00404CC4 C3 retn" c, I h/ v& H8 L
00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
3 q2 H9 _' ?8 r, B00404CC8 84C0 test al,al( W1 U5 y: A* j0 Q, W/ Y3 Z) N! R
00404CCA 0F85 1C010000 jnz qsr.00404DEC" N( W7 x! S" R. w9 y0 Q
00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
& ^7 y' @" G: |8 ^8 h00404CD4 E8 87E3FFFF call qsr.00403060
7 ]: g1 F- S# \00404CD9 51 push ecx1 L" J9 @/ g0 B1 Z9 A: W
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
' e' N/ Q9 o* C$ b00404CE2 8BCC mov ecx,esp6 }2 F4 p* y! G: @- @% w, K! B
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp" }# N# c/ }9 }/ i" D6 o& c! Y6 k
00404CE8 56 push esi: h* K3 D, ]/ o% ~3 ^6 w
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
2 [ x, f& A0 A* C0 @. o00404CEE 51 push ecx
# s1 `' N1 y g" `( n: s00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1
2 [0 z, K' o: i00404CF4 8BCC mov ecx,esp( y1 v, {; A' T
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp+ e* C" t1 |" M$ ]$ s* Y5 A- s
00404CFA 57 push edi( I: G: U' w: l& g
00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0( c# G2 w' C4 D) y/ ]; ^) l
00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]# \# ?. m6 p( Z: z
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0
& B5 z: B" @; U' {" P00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~
- s& j' D, w4 P9 p$ V6 @' j00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~
( U" l+ s* j' D8 j* M) _0 h00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
5 A6 }8 V* q4 [/ H00404D12 6A 40 push 40) _+ G$ b+ Z9 \! Q$ |
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"/ {5 d- e4 z9 h R
00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."
7 j0 t1 U4 Q* c9 E. q2 u; K) `00404D1E 8BCD mov ecx,ebp9 s! W7 U& Q2 x: o# X( F9 @- o
00404D20 E8 50840200 call qsr.0042D175
) {+ \( t) G# F4 a/ r+ V00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]9 c s2 a6 i$ x* n4 [5 f
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1
5 l/ A+ w% Z3 N- D5 y3 [00404D31 E8 5AE3FFFF call qsr.00403090. L& {2 l) W; e O; x' y9 n6 @
00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]1 C) B& K4 Q- _( a( s0 ]( Z$ A
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
0 _1 d; W# l1 m, d1 S* G* e00404D41 5F pop edi
& e: b+ U5 ]8 K2 y. y- g00404D42 5E pop esi" i: M2 j& V* D3 ]2 D
00404D43 5D pop ebp8 a6 f& `% r( u7 n7 ]; P% C! w' L
00404D44 5B pop ebx" R' \: p( Y$ s( o- G
00404D45 83C4 18 add esp,18
1 t+ @$ P% r* h% q* c6 H. D! P* g00404D48 C3 retn t' y4 A/ y. f8 I7 s1 {
*********************************************************************************************************************************************************
1 I4 r0 B U0 q8 H" K$ n7 i跟进00404D09处CALL来到:& w' L& `* K4 t" S. Y
004030A0 6A FF push -1 //一路F8下去~~~~
$ o8 w1 R9 V5 F7 }004030A2 68 C88F4400 push qsr.00448FC8
% }# ?8 m2 ]1 m' o004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
" E& {) v& M; H004030AD 50 push eax
; R$ {. E) f$ v) Z0 x004030AE 64:8925 0000000>mov dword ptr fs:[0],esp3 p1 W& F- N/ T. c
004030B5 83EC 24 sub esp,24
@. x! b1 P6 h% r# I004030B8 53 push ebx
0 g7 X; l6 Q: @% X. B9 V004030B9 55 push ebp# x B, \; ~9 d! ^! F
004030BA 56 push esi
. w" l$ G" Q5 ~) _1 t) d004030BB 57 push edi _. `0 Y3 I* \, l
004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"3 M! \* i* b! z5 I B9 |
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
; C* V/ Q9 M# V4 T9 W004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1; X. I, N& h: Q1 g- M7 w" ]6 q
004030CD E8 27C40200 call qsr.0042F4F9
5 _# F1 Z1 X: k, _+ M$ Q004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]7 J% N+ `* n4 i& n: n! [ q
004030D7 894424 2C mov dword ptr ss:[esp+2C],eax4 |' y' Q/ b: E2 a( ~; |* |: ^. l
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]% ]0 {8 E: U, ? z7 a" [7 s
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
0 }+ s: f& l. G004030E4 E8 905A0200 call qsr.00428B79
9 E* N8 o7 j$ \5 K) W+ k004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]3 s* [4 f, W/ E a4 k8 ]) Y$ ~
004030ED E8 3B5A0200 call qsr.00428B2D9 p7 Z- |1 r- A7 M. L6 W
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]2 @: }$ M; v6 c- g9 u
004030F6 E8 7E5A0200 call qsr.00428B79
& `0 H3 r }0 H9 c7 {004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]: Y% P5 L2 ]9 ]" o" u0 ^9 o
004030FF E8 295A0200 call qsr.00428B2D
4 o* C9 \. B4 E9 e) a00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]0 D/ k5 Y- t: K& i+ Z- C2 p
00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8], f8 R2 v- Y5 I; y( K- R. b4 {
0040310B 83F8 02 cmp eax,2" O7 G, u* J; p$ a4 u9 c
0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳4 G* h9 `( c0 {, S( s
00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]( O4 p$ L" d9 z
00403118 837A F8 18 cmp dword ptr ds:[edx-8],181 H5 T' V! d* A
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳
8 t2 X2 q$ a0 r. M- W6 _4 X00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
) W# c r$ L {* Z D; u00403126 6A 01 push 1
% K2 J, @/ [5 X# W. y8 x00403128 50 push eax
8 X/ }- N: K7 K00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
3 ]2 t6 a, L0 {3 J. P0040312D E8 C4550200 call qsr.004286F6
" ^$ }5 ]6 N& q6 o0 j2 |* n3 y" E( g00403132 8B00 mov eax,dword ptr ds:[eax]
- o$ v$ i& ^7 c) _7 h00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
; k2 [' h- E& ^+ f3 u% V) A2 ^00403138 50 push eax& j) Z, M( Z! n. E3 S6 y2 X
00403139 C64424 40 04 mov byte ptr ss:[esp+40],4
2 v& T) }; E7 @& U+ y% {( H0040313E E8 4D560200 call qsr.00428790/ q. X' r. I: A7 B
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]4 Q3 T h* h/ N! n. @- W- v2 E
00403147 8BF0 mov esi,eax
7 w) Q! ]( T: N00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3
, n9 S; t% l5 T* U3 l2 ^0040314E E8 38C30200 call qsr.0042F48B
* K: U( f- H* i% c" F00403153 8D46 0A lea eax,dword ptr ds:[esi+A]
" B. I8 G t+ z: Y00403156 B9 3E000000 mov ecx,3E* W4 ^# C6 ^9 M& k0 ]
0040315B 99 cdq
7 G5 ^4 y# @, _4 X0040315C F7F9 idiv ecx
% \2 W9 n2 {" T9 K" L9 A) l! G0040315E 6A 01 push 1
2 a, a U& v. T00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]5 l$ n3 t) B+ u. I
00403164 8BF2 mov esi,edx
% A8 r6 T7 L" h9 P, H00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]* N; x! l/ d. E) P3 L
0040316A 52 push edx f; B. A I$ O& \
0040316B E8 0A550200 call qsr.0042867A6 h6 p8 o2 s/ z5 Y
00403170 8B00 mov eax,dword ptr ds:[eax]' S: j0 P9 e8 Q. Z& p3 |
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]% S$ z/ y* ^) n! X
00403176 50 push eax
s: x2 l& {. ]/ s00403177 C64424 40 05 mov byte ptr ss:[esp+40],56 i' N* ~ m/ S/ M' e6 C z
0040317C E8 0F560200 call qsr.00428790
7 `8 {" Q3 H! G2 {0 v00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
" E) T% U. |% B% i( X00403185 8BF8 mov edi,eax0 g, e7 x! M9 g- s6 B4 c
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3
9 j! }0 Y F* d4 |0 d' O% @" ?, V. Q0040318C E8 FAC20200 call qsr.0042F48B$ V0 v- I" N4 X& b1 S$ J2 _
00403191 8D47 0A lea eax,dword ptr ds:[edi+A]
+ f- a8 n5 E! C1 ^! c7 z% Y00403194 B9 3E000000 mov ecx,3E
5 v/ d! s* D3 ?: T6 d% f9 f; G& [$ L; X00403199 99 cdq
" n7 I. l8 Z: a) `$ A# w0040319A F7F9 idiv ecx
( G$ _& p/ a) m) i# h0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]
2 g5 u9 A! q2 \; G* N, t004031A1 894424 28 mov dword ptr ss:[esp+28],eax
5 D' |, s8 _. l* R004031A5 8BCA mov ecx,edx
$ N; s0 B- S: ?$ K, B004031A7 894424 24 mov dword ptr ss:[esp+24],eax6 [$ `7 {: W# e( D# `
004031AB 894424 1C mov dword ptr ss:[esp+1C],eax+ H t/ k3 ]1 {
004031AF 894424 18 mov dword ptr ss:[esp+18],eax
9 h; }: N1 k2 m3 X5 N; V% i004031B3 894424 14 mov dword ptr ss:[esp+14],eax
% O4 {' B+ e/ u$ p+ j, c/ ?/ k004031B7 894424 10 mov dword ptr ss:[esp+10],eax
5 E( Y8 `- A; o004031BB 8BC1 mov eax,ecx7 n: s0 c+ x8 j5 E% i& X" {! s
004031BD BF 0A000000 mov edi,0A7 G( E; s: g4 P$ D" A) H
004031C2 99 cdq3 k1 }, S) S4 X0 E
004031C3 F7FF idiv edi% O9 H& h+ d0 Y7 B/ R& \) Y
004031C5 8BC1 mov eax,ecx7 l- W* E* d: l/ Q+ B8 k- P. y
004031C7 B3 0B mov bl,0B4 ]( r# E0 ^$ ?
004031C9 0FAFC1 imul eax,ecx8 L% J# b! N7 `
004031CC 8BCF mov ecx,edi
: p V1 V2 m- z. {- d: A; @004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl5 o' O7 n3 \4 p0 S. ]
004031D2 52 push edx
. w6 f5 T2 {2 z9 Z( r; |; r% O004031D3 99 cdq
; p( k! V3 m6 f3 f; w004031D4 F7F9 idiv ecx- o5 Z1 r% w3 N3 g; K* u3 U$ d
004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]
. b6 g! E7 M$ a! q* X9 X- K3 d: i004031DD 2BC6 sub eax,esi3 f% ^( @0 }. S4 \6 Z6 b
004031DF 52 push edx, R" a/ g- x5 O, ~+ U9 k* c% N+ y
004031E0 99 cdq
$ s* C) J3 d6 P3 h' k9 d004031E1 F7F9 idiv ecx$ ~# u4 k5 P, S& W0 m+ D" X" E
004031E3 8BC6 mov eax,esi
& S8 M7 ~. c3 N* M& _+ W. u6 j9 x i004031E5 52 push edx
# O% ?# L1 J9 }3 w; @ r( [004031E6 99 cdq
+ a# W: I& v# R) I4 {004031E7 F7F9 idiv ecx! }- K: d0 b( p. q$ b
004031E9 52 push edx
) W9 `% U5 `9 z( v1 \4 D004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]; d; a* ~1 t- H2 `* ~1 L- B- k
004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
% j% M/ o& i0 f1 X% U9 T- `004031F3 52 push edx6 |* c: Q" N: }4 [ }+ L" y& M# W
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893/ k# Y0 R* s- @ A: A
004031F9 83C4 18 add esp,185 Q: z" J+ j: Q% |' e" t4 x- m
004031FC 6A 04 push 4
9 @( A+ x1 a& X9 N0 z9 v/ M004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]
6 q3 ^3 m2 H5 M& [$ ^% X& O. Y B" g00403202 6A 00 push 0" F" Q+ s' [! d' J( T7 l
00403204 50 push eax
% w; X6 |. z7 b00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]& s3 L0 F1 o: y! a: Q5 _, U
00403209 E8 D6530200 call qsr.004285E47 H4 Z; F# o, D* U- `7 U% h
0040320E 50 push eax$ _ j. L0 ?, h- G2 V8 q& I4 i
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]7 h, b7 u$ m2 A$ o8 u
00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C7 f( N% D- C' {! q% E* {' a
00403218 E8 A7C30200 call qsr.0042F5C47 p* ~7 T, }/ A4 B5 _ d( {
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
- [2 n$ @! _0 G1 Q: z$ c, y! M00403221 885C24 3C mov byte ptr ss:[esp+3C],bl
1 w; r, B, Z- S# Z6 a9 Q00403225 E8 61C20200 call qsr.0042F48B
% T# |( Q% {* }; N/ N8 B0040322A 6A 04 push 4" Y6 Y; ~+ V. [: A: M, A2 v: c
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
5 P: [; P/ t" W0 C00403230 6A 05 push 5
2 I/ K0 m$ U/ \, H2 r+ N0 j00403232 51 push ecx: {. D7 Y3 X4 z1 ~0 A
00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
, V k7 ~& v- |. ^& M00403237 E8 A8530200 call qsr.004285E4" G4 h1 Z3 x! C" t( n- t( L. Y. E
0040323C 50 push eax3 s- U3 ^! g$ L6 P+ o1 s1 I3 v" a* _
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
( o8 {0 c9 m" i' t/ p* H00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D i- V+ m i6 M( Y
00403246 E8 79C30200 call qsr.0042F5C45 Q" v! K2 [1 x6 p
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]/ F! Z2 t2 q" x1 |
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl
2 E" @2 _. x Y; U B! d" W00403253 E8 33C20200 call qsr.0042F48B
# V/ c! g! f9 V, C+ b) o5 ]# r. e00403258 6A 04 push 4
6 u% @; d5 |- T) L0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]4 H2 Z* G: C( C6 V9 B4 J2 \+ r+ T
0040325E 57 push edi7 ]5 A, \5 b7 k- l
0040325F 52 push edx
" r" L( t1 ~$ w' p9 p00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
: k) j, D) h( W00403264 E8 7B530200 call qsr.004285E4
9 X& R! m. y# h! y00403269 50 push eax
) |; P. f& F6 m3 z' F0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
1 n5 J3 G3 S, a5 m! a0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E% ^# k" s% M3 f4 y- X
00403273 E8 4CC30200 call qsr.0042F5C4" a" W7 l, g: }! p5 c
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
# P. v+ ^* R, _6 @0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl- i! V& t9 S9 n$ W; c+ E7 U
00403280 E8 06C20200 call qsr.0042F48B& J- R- x3 k& _5 B, u7 i! M' i
00403285 6A 04 push 43 M6 E" k: l& ~
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]2 A7 L* A( C( h: Y- s% i' j
0040328B 6A 0F push 0F
; k9 H: ]" I0 Z `0040328D 50 push eax; l* D- |5 h# C/ `/ o# k) E1 H
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]9 N9 z1 @2 z0 Z. R# P% y
00403292 E8 4D530200 call qsr.004285E40 j& u, n0 z* Y" f; b
00403297 50 push eax
: ^7 ~/ u" R4 j H00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
3 K3 N% p6 w1 M* _0 [+ ~0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F9 {' I2 t1 b8 C4 z
004032A1 E8 1EC30200 call qsr.0042F5C4
0 \0 ?; q! M- }004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]- M4 T2 Z/ I( }( I, |& A. ~" Z: H
004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl
) n) S+ L- g: B* s; g004032AE E8 D8C10200 call qsr.0042F48B. _0 [% q; L7 w9 A
004032B3 6A 04 push 4
7 X! }. {; ?- V9 S2 }7 h- G004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34] q- V: J/ o5 P
004032B9 6A 14 push 14
$ ]7 g9 e% r* I* E) K) s004032BB 51 push ecx% z; k# W Z: E Y- L
004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]& F0 k" F( r( D; x, v0 E. C
004032C0 E8 1F530200 call qsr.004285E42 O4 n Q7 n+ D' z v+ G5 R
004032C5 50 push eax! S a- |5 E# E, B* N9 ]
004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]* ?# U6 ` P; s$ u
004032CA C64424 40 10 mov byte ptr ss:[esp+40],10
* @' s7 Q, o9 O. y) \. X004032CF E8 F0C20200 call qsr.0042F5C45 o) h/ W+ \, b- G! q
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]! z' ]' b- S' m& k+ @0 S# `
004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl
+ f; ~7 [* X4 L0 I+ @% v004032DC E8 AAC10200 call qsr.0042F48B
7 J5 M: |, f- ?# F }004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
9 u" X. T! @: r' @7 v004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX( R V: Z5 v. B0 n5 t2 I( y
004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL: _' M# M o5 I g) s+ a
004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL
" ~) f' u. U3 h2 s2 h( ^+ x004032ED 8ACA mov cl,dl ; DL送CL
; u+ D3 k: D) {5 w- e004032EF 3AD3 cmp dl,bl ; DL和BL比较, i( C7 U2 }! {; M' O$ j/ g2 ~
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)3 ?" H0 ]5 e d, s1 q
004032F3 84C9 test cl,cl
5 p# T; X6 ~# k8 C004032F5 74 16 je short qsr.0040330D( G, t4 O3 |2 o, l" N0 t
004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL
6 ~$ R) [3 e, I$ g* _3 e, z004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL1 ]* Z8 u n1 z' X3 m
004032FD 8ACA mov cl,dl: y2 n/ B+ M9 P7 ]2 a
004032FF 3AD3 cmp dl,bl ; DL和BL比较
9 s. @. c( y/ I2 X1 p- J00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
2 H+ b: S7 |& j: G D1 O5 I00403303 83C0 02 add eax,2 ; EAX加22 V ^+ u. D8 d' a1 I& N
00403306 83C6 02 add esi,2 ; ESI加2+ e# R( ^8 H' A5 Z1 V1 B& ]
00403309 84C9 test cl,cl
, f* e- G+ }6 c0040330B ^ 75 DC jnz short qsr.004032E98 v' Q/ O, t8 s8 k- T7 v7 u# `
0040330D 33C0 xor eax,eax+ C- Y8 P; F7 m, J
0040330F EB 05 jmp short qsr.00403316# ?; O! w" Z- @: F3 M2 L0 V
00403311 1BC0 sbb eax,eax
' J& l ~! ~ \) G. b00403313 83D8 FF sbb eax,-1
7 p$ Z0 z7 H; n+ d1 q9 v5 \00403316 85C0 test eax,eax
9 y7 R. [1 L, B& Y) t/ B/ x. S00403318 74 0E je short qsr.004033288 [( f/ O% Q) x$ I3 g
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A3 M7 Y/ G$ f( Y) e
0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
1 Y( o7 y( n- v; Q, M! d00403323 E9 F0000000 jmp qsr.00403418
2 [4 _8 a O5 K* D$ z, w v00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
0 f; [3 i, g2 C0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
) n5 C. i9 p F3 O00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]
6 S/ ? s" s: B. U& n5 x6 `00403333 50 push eax% v* _* [ s3 \6 c9 [1 K
00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX
% p8 A7 g& m c: g* U4 ^3 }00403339 50 push eax
6 O; z5 }+ [' J0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX
1 @' R) v3 n1 R0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
9 {4 ?/ _0 T" h n8 z+ \0 K/ e00403343 83C4 04 add esp,4
W% A* s- X7 T; R/ G6 T00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI
) d3 `& e! K7 J- m% H& Z0 D: }. U00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]
0 Q; I# T6 P& v# S1 G5 m0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
- S# p3 L. }8 P7 U1 h0040334F 50 push eax& K, F8 X( b0 \5 P/ S) z# ~
00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
$ Y, Z, B1 j: ~" M2 V2 f: y+ F00403355 50 push eax1 ] Q2 n( S1 R' h5 c% m
00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX; G6 V/ N; [) g2 Y- f1 e7 e+ F3 i% Q
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
: z! c* F# ~4 X6 M0040335F 83C4 04 add esp,4
& X1 L# q) c" u) W7 `00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI$ ?6 v1 ?! L- { ^& w. \, f" M
00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]) z6 R- ~+ m7 o5 H0 }& m% x; e
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]2 k4 P4 M: J& `9 e
0040336B 50 push eax
# n( q6 l* z5 r0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX2 b1 I# Y4 q$ _" D
00403371 50 push eax
/ Q2 K5 D' s) P) Q00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX2 Q3 _' h: [4 U4 m) `7 F j
00403377 8BD8 mov ebx,eax ; EAX送EBX4 R. x! P) A* x/ m7 V2 X+ e
00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX
5 M) P4 @& S# S P, c p4 `0040337D 83C4 04 add esp,4
! y9 {8 E0 E/ {3 X6 D; j00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]5 n% p. N+ j) v/ b% S8 P0 _' p/ u
00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]
' d! |; c+ O9 [/ f2 D00403387 50 push eax; L2 h# z0 R/ |
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX5 a; b! j; Y3 b9 ]# D4 T, e
0040338D 50 push eax
% ~) s* b1 i" a' P1 _# e! q0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX3 v; s5 S- ~. n# s6 i+ ]# \
00403393 83C4 04 add esp,4
' l% _6 I% l+ P/ J3 e2 i) T) H00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]& z8 }$ K8 N) ]* S, @4 g4 E
0040339A 8BE8 mov ebp,eax ; EAX送EBP6 w5 ~+ u, l8 d9 ]9 H8 g R
0040339C 6A FF push -1
1 A! a, f0 W6 T$ R0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX3 W9 K# G0 ?: |$ l9 B+ G% O
004033A3 6A FF push -1; j5 J: H+ k( b( I7 P
004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
2 w( T" H2 f" C. k/ y* |$ ?# L004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX' J: S2 O. t* ~* b8 ]
004033AE 6A FF push -1( e) X8 N/ x6 Q8 S( e
004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX3 @) D9 v$ k" K- ]
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX
/ K& P- I6 q# n004033B9 6A FF push -1 E4 q- z8 U7 @3 @3 ]
004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX5 I4 O: ]0 A/ X/ W
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX
3 @4 [/ C: s' K004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX* K" P: d1 C$ f5 u2 t$ n$ f
004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
3 D- e; q# a6 X5 _: M% j7 G004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
+ p% t2 D' Z0 x: X. A$ ]- L004033D7 D1E0 shl eax,1 ; EAX左移1位
# E) m' Y/ r3 _& a# Q# |4 Y/ @5 G004033D9 99 cdq ; EAX扩展- ?( e/ A) r5 T3 W I/ A( P+ ?9 S
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中& q- ~( K! f8 P6 n p
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
z, j9 j ^: Y C7 ^9 m: C004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)
1 D2 I! F8 U6 \; U- S, a004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A
! ]; v: U- t" V. y004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
' c, @0 ]4 f; H( p004033E9 EB 2D jmp short qsr.00403418
6 u+ Q' F& f; K: S004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX
8 R3 B" y' b/ _& o* W) O004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2
% G8 f4 \( n. R( @: g004033F7 99 cdq ; EBX扩展
6 G, V3 y$ q8 {6 {; V004033F8 33C2 xor eax,edx ; EAX和EDX取异或
% l$ g. G5 |# A! ^( |5 a$ b# p4 p004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
6 i( t- P8 m) D% ~6 R+ A, _5 V004033FF 2BC2 sub eax,edx ; EAX减去EDX/ u# _. ^+ c) r1 e: \
00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]* q; e- l' [# d
00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
" P' e. T6 ^8 x# ~: s00403409 99 cdq
, i8 s3 I- L6 S1 i0 J! o0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
- J0 z& i( h7 P1 P( g8 W- T0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX" U6 V$ p; s( B) L
00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较4 x- D; o) w6 O G- w. |
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)
: R! m3 g& H) P7 m4 b. I6 A00403418 E8 6EC00200 call qsr.0042F48B ;
, K/ ~1 }6 b/ S8 E0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]5 ?8 A( g6 r% i3 d/ `
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9
8 g: Z2 u4 O2 V$ }" D) I00403426 E8 60C00200 call qsr.0042F48B
8 G! X) M8 ^+ L- |0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
' u1 V+ T3 x' \0 x- X5 g3 H: w0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8
/ j; G8 b; }. G00403434 E8 52C00200 call qsr.0042F48B
9 A( ?- ^# N* y% s S; W00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
0 W; R- a* R4 X& j0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],78 P5 S& q9 ?6 |; K* r
00403442 E8 44C00200 call qsr.0042F48B
, K# D. i3 b0 A) P00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
+ R. v' L4 W4 |/ L. G6 h* v6 u8 C# I# a0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
' `, C4 P6 e. V4 ~1 U9 G00403450 E8 36C00200 call qsr.0042F48B: T% M7 _ }4 i% H8 [
00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
8 i4 w0 M+ `, m8 J1 [# m1 Z00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3# d. e5 X0 y( q# D) Z5 J* L
0040345E E8 28C00200 call qsr.0042F48B
7 U) E% M* ?1 n8 U00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
; J( x6 e+ U, \9 e6 l00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2& t s/ n; v( h; y
0040346C E8 1AC00200 call qsr.0042F48B5 r' H3 H( B6 C; O/ h; Z
00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]. I5 v! ^! R+ r: F1 s% t
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1/ K& K! T+ i9 _$ Y2 T' t
0040347A E8 0CC00200 call qsr.0042F48B
, m8 b3 o9 N# o# l- F% [0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]( j8 X; A6 D" U' B
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
5 y( |& ~0 W: q u. q6 g00403488 E8 FEBF0200 call qsr.0042F48B
4 N& O |# b) y- t$ X0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
' y8 X7 I: M' @00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
/ x& A. |4 |1 l# j0 g00403499 E8 EDBF0200 call qsr.0042F48B
. @7 s6 m1 l' A v& D% ^+ _6 O0040349E 32C0 xor al,al ; AL清0
% w' `; P, L0 J8 @. m$ j004034A0 E9 88000000 jmp qsr.0040352D
0 Q) K8 [6 j0 U8 F004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~* J6 m+ I1 K# S5 H* G
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
. J7 o/ y- h& k: O) z2 i R004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9
, r8 I% y, V* r5 ^004034B3 E8 D3BF0200 call qsr.0042F48B+ H! h6 p0 D9 D# c" V
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18] n( C3 u% J0 I$ h: j& Z! y
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],88 l! t- Y3 ^6 {
004034C1 E8 C5BF0200 call qsr.0042F48B# U& [# z; E# f6 g
004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]; t+ i+ r6 u, M0 v) d
004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
- I1 i3 ~2 Q/ C, T6 Y/ b004034CF E8 B7BF0200 call qsr.0042F48B
4 v; m% R6 }. z( h004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]6 o' c8 X9 [2 T. @# c
004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],67 b4 b$ I: K& U4 a3 }
004034DD E8 A9BF0200 call qsr.0042F48B
0 v5 L. w2 z( J3 e6 n004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]& S) o L7 |0 h# l1 |! r
004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
0 X9 ~. R0 ?8 ?) h004034EB E8 9BBF0200 call qsr.0042F48B* p& c# y. u5 V! }, w% R% m; k
004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]$ i* J, o# A% k/ Z8 b$ _7 p
004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2
7 k7 p/ G o, j" c- D004034F9 E8 8DBF0200 call qsr.0042F48B
* x* f6 e1 H2 w6 Y; Q# O- U1 k$ M004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]; k, W/ _2 ?$ u$ e7 ^) E. m" d; S1 f
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1
. X1 z" }1 g# \$ W E5 n" ~00403507 E8 7FBF0200 call qsr.0042F48B
: G9 t& `2 `" _) M6 i0 W. J% u0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]. r* S* }3 A6 M/ K T: G
00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0) Z3 [* `* K1 m8 O
00403515 E8 71BF0200 call qsr.0042F48B
& |2 d. t4 k0 F3 W, I* X0 @0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]- U7 a- v- {- s% \; J
0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-13 }. O" B5 k+ Y% q* K- N7 v
00403526 E8 60BF0200 call qsr.0042F48B& n7 r& P* ?+ Y. p3 f
0040352B B0 01 mov al,1, C7 M! L, B8 C! `6 ]. M' g5 U
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
. G( W# U) p7 A$ J, s9 D00403531 5F pop edi/ U: i7 @; y8 k- }
00403532 5E pop esi
$ A7 j, N$ G \+ z! C3 A3 y00403533 5D pop ebp/ t7 n5 Y' c8 I3 _
00403534 5B pop ebx
. ~& q R1 Q" o* T' f00403535 64:890D 0000000>mov dword ptr fs:[0],ecx: T6 U* F! V7 V: w. v5 o4 i( H
0040353C 83C4 30 add esp,30
) a5 M0 Q* J7 m/ T3 S6 v( F; l0040353F C2 0800 retn 8
: L0 {# K3 q9 L7 e( y1 \- v$ M--------------------------------------------------------------------------------1 N' V. M) Q7 c1 q, O
【破解总结】8 K( t' J+ z7 ~7 c
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
5 K+ h& N0 I$ E用户名:yijun
1 x. D$ u0 Q% c7 A0 @注册码:4893*7777*3726*7777*0529
9 V; H5 b4 Y# ^/ I7 F2 D/ W0 M2 m--------------------------------------------------------------------------------
' W* G! I! a* J6 d+ D5 q3 w' J" {【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡