|
|
|
【原创】破解Quick Screen Recorder l+ U2 ?; R6 k6 \
【破解作者】 yijun& n+ W8 F) k0 L# Y' V' U
【作者邮箱】 [email protected]; K N- d5 w* j+ V
【使用工具】 OD,PEID: |* R4 Z, L+ X# W- a
【破解平台】 WinXP4 o8 {7 ~2 {; d" B0 ~, ` F* E) U
【软件名称】 Quick Screen Recorder
5 F( k3 ]: x) F# h- I【下载地址】 天空
1 E x4 F( N$ U1 ~. r- ?- M【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
7 k6 b. y0 ?. F【软件大小】 540K' D* q k) w* {' n" R. e6 r. X3 O
【加壳方式】 无
; L0 V' Y" q1 W! P- q& e【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)
5 }0 L( W0 o" M% U, N& O--------------------------------------------------------------------------------
1 @& L" R$ B" C W( q( u7 k M【破解内容】. D+ ?5 t, r6 R R( `% v
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
1 W) W! W. J4 J* `00404C69 55 push ebp //在此下断
" r8 @# n6 c, L: ~4 K, @00404C6A 56 push esi
& F& L1 f" h9 f t8 p0 ]0 \- A* J00404C6B 57 push edi( `& r- ~) G6 b {
00404C6C 8BE9 mov ebp,ecx1 r( W2 N2 `' `7 M* \ f* m7 J
00404C6E 6A 01 push 1
5 C& l% g- \) X) l' }4 `# @7 I6 J; @$ {00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名' M$ H1 ^* C% C1 y9 o& O/ I4 d( N: N
00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]" e3 Q/ m9 {# ?' q& ?
00404C78 8BCF mov ecx,edi
9 a' i# V6 m* i) u8 J6 n00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码4 c+ m+ [/ P. F+ `6 W" W4 y
00404C7F 8BCF mov ecx,edi
& V8 E: V6 E, T \' d00404C81 E8 A73E0200 call qsr.00428B2D3 Q5 p6 p* b) z( {/ ?5 {
00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]5 Y# q% C( j/ I0 m3 t
00404C89 8BCE mov ecx,esi
! `) m& ]6 t. j& S2 |2 i1 B00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX; J/ S( O+ ?$ p: {: ]
00404C90 8BCE mov ecx,esi& W2 a$ u9 v6 ^6 G1 |- k. ?0 d
00404C92 E8 963E0200 call qsr.00428B2D
7 R; e% m q7 N& D00404C97 8B06 mov eax,dword ptr ds:[esi]
- K3 r, P- J# N/ y0 D00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2) e" f6 m; U5 N$ q9 U# K
00404C9D 7D 26 jge short qsr.00404CC5, h! Q( h8 O' F3 _+ e W
00404C9F 6A 40 push 40
' ]0 i. F% R6 t9 A% ?00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
- e8 e( o9 N( t; I5 H7 R00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."
+ `1 d( m7 U8 k o3 p( ]! o00404CAB 8BCD mov ecx,ebp
5 ~6 k- e0 u4 T& A5 Q" P00404CAD E8 C3840200 call qsr.0042D175
+ Y3 Y! g% b% A" q00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
2 ]6 D; ]$ X- [0 G& d00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx" u; |% J4 m1 M" a& G
00404CBD 5F pop edi
, z* b) q8 z* b1 P) O" l00404CBE 5E pop esi
4 _( v: b, {$ S' u+ l) E+ S8 P* ?00404CBF 5D pop ebp! m. w- H1 t. B& @
00404CC0 5B pop ebx
; U! l s9 D- h& Q00404CC1 83C4 18 add esp,18
6 O, }3 i1 J& Y9 k' L: y- @00404CC4 C3 retn
% E! u7 {* f, h% f4 S' j6 v00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
8 A6 \" m8 U4 ^6 f9 e$ k6 |0 h- I00404CC8 84C0 test al,al& a3 F1 J. M& l& i8 V
00404CCA 0F85 1C010000 jnz qsr.00404DEC
8 q- ~# m3 m: D# z00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]% p+ J7 g; Y# }, q2 j! q z
00404CD4 E8 87E3FFFF call qsr.00403060
% t" T/ |) ?& d' J% |1 W1 m00404CD9 51 push ecx
3 B6 b1 n: ~* p- B8 u' g00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
* j* r' I- u* B/ u' y; O8 E/ V5 Y00404CE2 8BCC mov ecx,esp
; T8 _& ^9 x" }00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
' C7 K0 X. v7 A0 N2 q00404CE8 56 push esi- q f/ p9 w5 ]" L9 K, F& z; X1 A
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
/ B0 w9 @3 v1 f" L8 w& n00404CEE 51 push ecx* G% M% z& X8 m: q( ~/ W' J, M
00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1
$ i3 G$ R. A) x* ~3 ?; U8 a2 Y00404CF4 8BCC mov ecx,esp8 b* ]; o; A/ u( ?! T
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
; `" W& z$ _/ W4 b, K: M00404CFA 57 push edi
! K, O. N! f1 i3 G6 f7 v8 ]( C: x00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0
2 V3 ], I: Z3 r* T7 b00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]. @0 a8 o( I+ {' N/ Q: d6 r, }
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],04 j! Q4 u) ?; r @$ s& q8 l
00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~6 X1 H2 i0 d' K' ~
00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~
- Y6 Z7 @0 D, G8 ?00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
( t# z+ ~0 n0 W* U5 a3 v00404D12 6A 40 push 40
9 C+ o1 V% b5 i" o" r00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"& P% {: Q8 F4 \. O, j4 d: Y
00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."
: o5 z! U) J0 `: x00404D1E 8BCD mov ecx,ebp: {! L v+ k: ?3 N% K, G2 o
00404D20 E8 50840200 call qsr.0042D175
/ O) c* u' G8 ~( V; K00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
- Z8 ]1 D" w) U6 `; r0 t0 m00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-17 L- |7 y0 P: E6 ]* L
00404D31 E8 5AE3FFFF call qsr.00403090+ }& {! O! }! m4 Y% ^! c! A
00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
" L3 `8 K5 M" X1 ?: M, \) V& u00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx& A0 k4 {6 Y+ @, x0 J( s S
00404D41 5F pop edi
% G9 O7 m5 z& i4 w00404D42 5E pop esi- V& M' b6 M6 M0 ~
00404D43 5D pop ebp
/ u: }( V- Z9 b& J00404D44 5B pop ebx
; ?3 e( ]+ Y0 s& B# H+ z h6 v, H00404D45 83C4 18 add esp,18
( r5 \; L# h, u4 [( E: l00404D48 C3 retn
3 t6 l" q4 N* z8 p7 s# m: f*********************************************************************************************************************************************************
" D2 ]' f( S0 p5 j; i( t0 B) l跟进00404D09处CALL来到:
" ]3 E1 \3 V& H* g004030A0 6A FF push -1 //一路F8下去~~~~
; Z/ o, H8 _) Y7 y004030A2 68 C88F4400 push qsr.00448FC8
5 Z0 G) v# x" T* a- \004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]( m, v, E- O4 X2 m2 S' K2 C
004030AD 50 push eax* N2 V, N9 S, A) g9 z0 @0 o
004030AE 64:8925 0000000>mov dword ptr fs:[0],esp) |# `6 A- t; V/ e5 a, p
004030B5 83EC 24 sub esp,243 |! u% F) m" Q) C
004030B8 53 push ebx# t; b5 L. g: Q& h! Y% F
004030B9 55 push ebp+ F- f4 t1 L# b! i2 A2 p
004030BA 56 push esi
; K) j% w* C* q7 m$ Y* k3 `004030BB 57 push edi* b2 Z' o' a! d/ j4 f' z2 l
004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"
& d. x- p7 p7 B8 C: t004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
$ Y- u& \0 r; A% z4 r004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1
1 ~% u9 M. ]. z M6 C% b c004030CD E8 27C40200 call qsr.0042F4F9, k4 E. M4 v- s4 E
004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]: V3 E) b9 K$ K: _
004030D7 894424 2C mov dword ptr ss:[esp+2C],eax) e7 |9 N6 `7 X- C( N
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]0 {2 g# S$ R. P+ `+ w$ @3 m
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
/ J# a1 H/ Y1 c004030E4 E8 905A0200 call qsr.00428B79. w4 O( N: ^& R0 `: z
004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]. m% x. p$ N5 r7 l- n) n% W
004030ED E8 3B5A0200 call qsr.00428B2D1 R6 I( m- }1 y: ]- j# U
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
( f. T, r$ i& a004030F6 E8 7E5A0200 call qsr.00428B79
+ f5 B+ U4 [$ ]/ ~, C' g004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
3 a# j/ M& r3 r$ R004030FF E8 295A0200 call qsr.00428B2D3 i5 z* J7 A; F7 s/ [0 Y/ x
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]
& [4 w6 E3 D" ^0 ?00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
~. O4 A# w" z. U3 `0040310B 83F8 02 cmp eax,24 F7 h# R. R& C. G9 H' y, V
0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳/ g; \- E# ]' S) q5 } n
00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]
1 x- C8 N6 Z% J4 M2 E1 k' J00403118 837A F8 18 cmp dword ptr ds:[edx-8],18
+ W2 f; K/ e; ?0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳6 b6 X# D) H7 I1 u
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]/ X; [5 q O6 \% x4 r/ X
00403126 6A 01 push 1! S2 R4 J5 d- N1 D6 @* Q
00403128 50 push eax2 z Q0 i9 z: }# y
00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
. C# |6 E4 I7 A" ~; S0040312D E8 C4550200 call qsr.004286F6
3 [2 E) b2 U5 I5 Q00403132 8B00 mov eax,dword ptr ds:[eax]( r" J- S7 Q' J' m' I3 P. H7 L
00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
2 {( a; U" @2 O. x& v/ J# T( U9 Y00403138 50 push eax1 R6 R4 G: [- R/ c" r, |$ F
00403139 C64424 40 04 mov byte ptr ss:[esp+40],44 A, t+ c" Q( J7 V+ Q
0040313E E8 4D560200 call qsr.00428790
1 [. t1 e. j% k$ S# `+ \00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
; b8 Q2 J/ e- s00403147 8BF0 mov esi,eax
2 p" ]/ F6 L/ v; |6 C7 h00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3* j5 ]: ^3 K- B: [4 A( m: A+ w
0040314E E8 38C30200 call qsr.0042F48B9 b+ x* Z) S% P, U# ]! J0 e
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]1 H" R' y* |. E$ }
00403156 B9 3E000000 mov ecx,3E
/ F' i' o+ N. P1 p; S- j5 M0040315B 99 cdq
8 q; ~9 [- v y" v9 T h8 \0040315C F7F9 idiv ecx1 ]( D! r% i5 V/ u* b
0040315E 6A 01 push 18 U& M- R- ], j) G
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]/ y9 m3 ~( _2 {8 N! X- ]8 c/ u H
00403164 8BF2 mov esi,edx
$ l2 C6 P3 s( T7 N00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
7 `3 Q* P% y5 A5 G3 E0040316A 52 push edx" m. X# B& x8 R2 M+ u3 c/ c$ `
0040316B E8 0A550200 call qsr.0042867A2 q* C# ]1 s; |0 g. ]
00403170 8B00 mov eax,dword ptr ds:[eax]6 E- u7 T4 Y: ?/ h
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]. s9 i2 J; J3 i4 h1 v4 |
00403176 50 push eax) u" N+ {6 y* F! I
00403177 C64424 40 05 mov byte ptr ss:[esp+40],5
; t" x7 {; i3 y/ u9 g* M0040317C E8 0F560200 call qsr.00428790
2 n( j6 v' v; e! K9 G0 ]4 w00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
; R: T) x! d$ z. B9 o5 N00403185 8BF8 mov edi,eax
# m% |4 V, b( `# T4 d00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3) S& a- {! v! q; E* C4 r+ F" }
0040318C E8 FAC20200 call qsr.0042F48B
. k6 C# w, D6 w6 t4 V6 J00403191 8D47 0A lea eax,dword ptr ds:[edi+A]
# b. w' k* j; e00403194 B9 3E000000 mov ecx,3E: x- U" x4 T# ~ q _0 U
00403199 99 cdq
: G* \2 ~8 K: t; ]0040319A F7F9 idiv ecx/ g) n k, z% I J' M! r z
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]
" y* a. r; V; U- W004031A1 894424 28 mov dword ptr ss:[esp+28],eax* a9 l6 x( ^* I5 C/ l
004031A5 8BCA mov ecx,edx, s& F# N0 s! `% {
004031A7 894424 24 mov dword ptr ss:[esp+24],eax
4 r' d2 e2 B5 k" C$ l004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
# ]6 Z8 R' u' ^. C' i! v004031AF 894424 18 mov dword ptr ss:[esp+18],eax
; V5 k0 {% \# [2 P& b/ ]6 D3 j) u* Q004031B3 894424 14 mov dword ptr ss:[esp+14],eax% @* O/ P c) ]- V% }
004031B7 894424 10 mov dword ptr ss:[esp+10],eax1 k8 \3 Q; O% `1 a/ v
004031BB 8BC1 mov eax,ecx+ r2 i3 s; b- d" z' ~# U* K
004031BD BF 0A000000 mov edi,0A3 D% }; |7 }7 H: x
004031C2 99 cdq! s& ?' V1 Y p' m
004031C3 F7FF idiv edi8 M6 F3 v2 o$ p- z: h* U3 _
004031C5 8BC1 mov eax,ecx! i* _% S2 C% L* a$ Y9 P
004031C7 B3 0B mov bl,0B0 @6 z0 V X' O6 j* t! C( o' `( {
004031C9 0FAFC1 imul eax,ecx4 C I, e& S* @8 m: ^ N0 S2 M
004031CC 8BCF mov ecx,edi* k! [1 |4 C8 ?5 [- \+ E
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl. d4 @* ?+ j7 e3 _: K6 s% j) `0 Z4 m
004031D2 52 push edx
: u( l' p7 M4 H, z& D; d; @& _004031D3 99 cdq
) H9 z5 B" {2 V2 y004031D4 F7F9 idiv ecx: y: ~0 @' l2 x
004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]6 ~2 n' r: H9 Q0 W; V
004031DD 2BC6 sub eax,esi) P6 t' y! T% V o. g7 ~& e" G$ a
004031DF 52 push edx, L* }- ?' E. m+ `% y* O
004031E0 99 cdq
% l% x9 a* F! z% |2 H' {004031E1 F7F9 idiv ecx: }# p& J% F: B2 g
004031E3 8BC6 mov eax,esi
) P, Y& |( y% t- M5 u004031E5 52 push edx
8 ^& d U& t: V: A7 `004031E6 99 cdq
) J) X9 V! S3 x2 R004031E7 F7F9 idiv ecx
; d# Z* A: ?1 H' U" V; d004031E9 52 push edx1 C" \; b2 m3 O9 z+ j% B! l& G
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
( U; q/ Y: F1 g& A004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"5 z* g8 [3 D) c p: e. n. O% r' I
004031F3 52 push edx* W( l. P2 M& \( y
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893
+ f' S3 G9 e) K8 T4 o004031F9 83C4 18 add esp,180 u$ c7 z( e! K @; A
004031FC 6A 04 push 4
5 e7 [. f+ G" {. Z( y2 W# L% f004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]
& I5 \, |$ S( N c) h P00403202 6A 00 push 01 N x0 j8 ?# G3 }& H& p, ~# ^
00403204 50 push eax( K. z/ B5 \0 T; |
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]# R/ `( s% P2 |5 D
00403209 E8 D6530200 call qsr.004285E42 ^* E R, f, ^% V2 F7 _
0040320E 50 push eax; T) y, j' q+ i! F
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
7 q8 y, Z* D9 P0 k2 E2 M00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C; X9 B+ B2 E; Q
00403218 E8 A7C30200 call qsr.0042F5C40 q9 G8 I2 \6 T4 h1 A9 l
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]& Z3 [+ s; R0 N6 V
00403221 885C24 3C mov byte ptr ss:[esp+3C],bl1 f( \' E* F; k7 S" T
00403225 E8 61C20200 call qsr.0042F48B
; D! n! b- ]2 A3 G6 N0040322A 6A 04 push 4
* E; G0 d2 V; i* L5 H& a0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
! Y7 h9 W" G, B' x& z( @8 i* V4 ^00403230 6A 05 push 5
6 G1 p0 A3 J5 }+ l6 h* d00403232 51 push ecx
$ E% Q; E7 P( m% T& k2 D0 ~00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
, l. H5 }4 c' J' o. [. ]& W: D00403237 E8 A8530200 call qsr.004285E49 B0 }: J: U. ^
0040323C 50 push eax
, y8 W; k2 k* ^0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20], k: Q( y5 I1 A. o: Z$ }
00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D- Q; ^( t8 H2 U% X+ j
00403246 E8 79C30200 call qsr.0042F5C4
; g# G s1 o2 Q0 D% O0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30] a7 @3 I( Q, O( a) P
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl+ k% E/ R( E7 D* f
00403253 E8 33C20200 call qsr.0042F48B# V; q* _% @# Y2 c% [
00403258 6A 04 push 4, X9 s h+ g* H* s, e
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34], A: ^& l0 k1 ?/ k' |% ]4 {
0040325E 57 push edi' c; T/ e d* {6 Z% F& L' a
0040325F 52 push edx `( o: V) W# s6 L7 f$ N7 S
00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
4 l! K4 f- R# E00403264 E8 7B530200 call qsr.004285E4
5 I7 B3 d1 I ^0 [6 [- G3 s00403269 50 push eax
- L/ Q4 H. p0 [! [" M+ G; |) I0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
$ L' P# b+ ]. n, \0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
; q a% [2 ~0 }5 E7 U' b00403273 E8 4CC30200 call qsr.0042F5C4% ~# o5 U/ ]; F6 R) s; g% m
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]5 v1 c( ]4 O" a @* j
0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl
/ }$ o" i' q1 `% d! ]0 K$ m" \00403280 E8 06C20200 call qsr.0042F48B4 S8 Z+ ]1 h- z6 Z. c! Z, `8 V) s! B, _
00403285 6A 04 push 4. Q6 q2 q/ r( f: D2 w+ e
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
) ?" T( u# \* [) D; h0040328B 6A 0F push 0F! c4 q b. R8 s+ T# \/ u
0040328D 50 push eax6 G2 v8 k5 i8 r+ T) V) L- d3 p
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
* t9 l" X4 T! l6 }" ~00403292 E8 4D530200 call qsr.004285E4
3 L( K6 u6 N# b9 ?4 Z! k3 Y% Q00403297 50 push eax/ U. z' z }/ n& k9 U, m: ?0 f4 r. `
00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]5 l7 X4 `' w* [
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
0 Z, h- }0 n7 T8 p004032A1 E8 1EC30200 call qsr.0042F5C4
1 Q2 U9 U% B5 s+ [1 f004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
; y6 e- r1 E+ \) [2 f8 H004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl3 s& H4 R9 O) D" v& q. t" t2 w+ l3 I
004032AE E8 D8C10200 call qsr.0042F48B
7 E/ H2 n# u) ]% n4 |. @6 r: z004032B3 6A 04 push 4
' B# G1 s( _% Y' l1 k( y% X004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
9 V6 Q3 X% Y8 X$ N1 R/ Y( J004032B9 6A 14 push 14
6 u9 W6 D1 v0 K" a) z, V1 `004032BB 51 push ecx
; ?( k) a% s6 s1 T; r( G004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
4 v. V. \! U# O0 w+ e004032C0 E8 1F530200 call qsr.004285E4/ j6 L; b, X" H2 e% ?
004032C5 50 push eax
4 x& G) U3 u( A8 l0 o0 B8 A. K004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]8 J j( G0 M# X3 G6 b1 G! e; G
004032CA C64424 40 10 mov byte ptr ss:[esp+40],10' W# q# ^. z' \& @0 u
004032CF E8 F0C20200 call qsr.0042F5C4
- c5 w3 f% i7 Y* @- O004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]2 {# [# R2 ~) j8 t
004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl) b, M Z, ^& P; G& [; U- v! b- \
004032DC E8 AAC10200 call qsr.0042F48B8 D, z3 r' e ~3 r0 N1 x& _
004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
y \. x- j5 W, Q b004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
2 y& J. W4 s" G# `1 M d004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
7 @4 {# [9 T$ v: Z004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL) k; Y3 X6 ]/ [! ?6 {" b, A
004032ED 8ACA mov cl,dl ; DL送CL8 G q I5 r% r; Z& U
004032EF 3AD3 cmp dl,bl ; DL和BL比较
: i( d1 D9 x/ \9 g" G5 M004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)6 i4 o5 ~& ^6 x
004032F3 84C9 test cl,cl9 t$ j' J: q7 v! F9 W4 Z5 d3 b
004032F5 74 16 je short qsr.0040330D9 G) P3 k7 p! m5 t
004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL/ M% R) U$ ^( a
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL
. S/ h; [! a2 m5 q( p$ {004032FD 8ACA mov cl,dl
4 S. P' s* h: u4 u" O* j9 A* n004032FF 3AD3 cmp dl,bl ; DL和BL比较
( w1 R9 y5 N* e$ g% K8 H) O00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)# _- O5 v' g8 A
00403303 83C0 02 add eax,2 ; EAX加2
& Q+ y) k5 l9 L% j00403306 83C6 02 add esi,2 ; ESI加2' n5 O2 [7 x* E3 d
00403309 84C9 test cl,cl
9 Q2 C* K2 L% U4 M0040330B ^ 75 DC jnz short qsr.004032E9
4 f5 m; O& u' @; ~0040330D 33C0 xor eax,eax
) w: e$ a+ `; A# t6 K) x; [9 T8 I0040330F EB 05 jmp short qsr.00403316
4 {( ~& G" Z( R K+ L: S00403311 1BC0 sbb eax,eax. I& Z% e+ `2 K ~7 A* C5 m2 P- ^
00403313 83D8 FF sbb eax,-1
% I4 s) R) s% o& T7 j00403316 85C0 test eax,eax8 p# Y) n6 f4 {) K* ?& Z5 g( B
00403318 74 0E je short qsr.004033287 Z/ `$ m4 a! n! Y3 ~
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
& ] K: `( ]6 N/ V' Q; s0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]% \- N# i+ o7 x
00403323 E9 F0000000 jmp qsr.00403418
& }" \8 ~& n9 _3 b% f00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX% e1 P3 F/ a9 b- l
0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
$ |9 g9 n( ~* u4 @2 u) d$ y00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]9 Q+ X1 j1 |( l0 l: S" S3 n
00403333 50 push eax
9 D3 x1 F( T3 b00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX2 K1 X8 P9 H+ v3 D' O4 i/ c2 ~
00403339 50 push eax# p2 v7 |/ p6 i( O# y
0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX
7 j) k) H( t/ u Z9 q* B% c: b, j \0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
9 S' X5 N# H8 y00403343 83C4 04 add esp,4
) V4 K9 T3 M# v# g: H4 e) ]00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI% T2 I, |/ K7 T5 f0 P R) [7 }- v1 {
00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]
$ K" b2 q$ y, C! P0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
+ Z9 l9 e7 ?' F0040334F 50 push eax4 J1 X% R1 c ^( t! M
00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
3 \, h3 D: b$ U- x0 a" o00403355 50 push eax! ?; e6 @! z, x; x/ f0 _' o
00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX# H4 `) G- U. ?( a" p3 X
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
9 X: }' f2 `- B9 z0040335F 83C4 04 add esp,4
4 m9 i8 `+ B" {00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI
& K% J" Z8 E, }) S9 h. ^; F00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
" S; v% c! E" t G4 I: c00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]* g! s9 j) z' O
0040336B 50 push eax
+ y/ h2 K' _ h4 X k' W. F! D0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX
8 ?8 h& V X& N00403371 50 push eax6 {# M; i5 N. x+ _; W/ J# X4 F
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX5 k; Y; O2 @% Z3 ~+ h# T" f
00403377 8BD8 mov ebx,eax ; EAX送EBX
4 R9 u& F7 D. q00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX
) O8 G" I0 C; F# ]" X0040337D 83C4 04 add esp,4
, ]2 s+ d1 @: X0 _" A8 R( G00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]( _6 L9 R0 x- y& M
00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]
0 b6 _3 h: z8 _/ X3 p' T00403387 50 push eax
" d9 {* _) H }6 E- {+ K. j00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX
) w! v7 u9 H# V" Z2 n1 d& w/ H0040338D 50 push eax4 t3 `9 `& d9 d! ~# V% p1 u! e$ H
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX% K; M1 X9 i; z# ?
00403393 83C4 04 add esp,4' _! t; `2 v1 Z1 R) |& V2 Q6 d
00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]& \+ j* T8 o8 w
0040339A 8BE8 mov ebp,eax ; EAX送EBP
4 Q2 _# V& j0 G$ ]0040339C 6A FF push -1
, ^; {4 T: D, A! |/ z0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX% W. ]) U- B* w4 a! c2 v9 P/ w
004033A3 6A FF push -1
* `2 O0 z4 o8 F0 K004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
7 x4 O( r# Y1 H2 `7 }9 e: Y) p004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
2 N8 I6 \; t! d/ J1 D004033AE 6A FF push -18 H; [) _$ t! N5 M# V
004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX/ | t5 h' e- J4 d$ y a7 A
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX n/ @2 F* h7 O3 O! T1 h% h7 f0 x
004033B9 6A FF push -15 Z! s* `" O) W& u
004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX0 p2 P# @ R2 t0 G2 Z- h
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX* [& d( \6 E# }6 [5 r
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX+ A" h$ ?8 }( n2 C J- D
004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
2 j& N. J" F5 ~, s! }- t004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
: o j+ h, c1 ]2 ]1 Y6 j' A004033D7 D1E0 shl eax,1 ; EAX左移1位
4 a8 Y- p1 i8 {3 ^+ w004033D9 99 cdq ; EAX扩展* X( {3 G5 V2 q3 O7 y
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中- Z' ~8 v3 u7 C% H+ W7 H0 \! [ ^
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较( ~% L! \, S" N9 P2 h
004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)
7 ~6 a3 H* g' g# ?9 |004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A! X) y/ x0 v; x* }4 S1 [
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]6 k+ \" p; O- d$ q0 O
004033E9 EB 2D jmp short qsr.00403418
5 ^+ S4 u- j* G8 n7 E1 W; l004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX
1 e+ G2 m& e! s4 @004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E28 t( O4 Z5 L9 c. r! ^
004033F7 99 cdq ; EBX扩展6 L+ C( p- A) a
004033F8 33C2 xor eax,edx ; EAX和EDX取异或
; _$ m E$ ^+ ~) f b% e9 L0 W004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX' M# p) k8 I. J+ ?( o! @7 u
004033FF 2BC2 sub eax,edx ; EAX减去EDX) I6 ^* a2 v. D8 A( }( t& C% @
00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]) e* F4 ^; n5 M) t9 I/ K
00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
0 B' i' h! Q. m3 |$ e$ s0 c00403409 99 cdq% |2 I7 y, _; `
0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中6 M" m" Q0 ~- u' N, o" S: m
0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX
" n2 l: F# w( X2 e00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较/ U+ `& d: d$ W# Z2 x
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)
3 W: k3 `9 T% d6 j3 h& }00403418 E8 6EC00200 call qsr.0042F48B ; ; r: w& ?: j! R. d2 V5 g' j
0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14], @0 e( p5 }# d; v) p! q* O
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9
, \# M w5 N, m9 s8 p5 i00403426 E8 60C00200 call qsr.0042F48B
0 m$ [; v1 X3 N# [* ~% M* J0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]/ t8 V4 f @2 t- _; ?
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8
0 H9 [* y6 D" Y00403434 E8 52C00200 call qsr.0042F48B
; a$ ~+ s; a; U7 B: X. ?6 l00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]* X% V1 O" f; s- k- M8 }
0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7
6 f- Q. N$ t) `9 M6 n' ^ I: b00403442 E8 44C00200 call qsr.0042F48B
# d8 u, j( M7 l: v; r/ \# [$ v$ B00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]( p/ j! `3 j( a2 b9 U/ G
0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],67 o( p2 E# W4 \& E* q4 z6 U0 _
00403450 E8 36C00200 call qsr.0042F48B! n, |$ G9 @( W7 b3 z1 q
00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]$ G3 X" _- B# Q* j
00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3" R3 k$ u0 |0 |$ J8 t
0040345E E8 28C00200 call qsr.0042F48B( g7 b" K' }, ?+ ]4 v
00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C] I2 r9 x* a$ f$ D! k+ J
00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2" b; S( y% K. ^( C3 w) U
0040346C E8 1AC00200 call qsr.0042F48B9 ~1 K8 G# Z4 J/ M$ \2 Y
00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20], {) h( q c8 g6 f0 Q
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1- Y4 W$ ]0 V$ @. ^& q ~( f
0040347A E8 0CC00200 call qsr.0042F48B* _( Y K% J7 r0 \( D- ]
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
( ~0 U8 W6 l' |, H4 n9 F00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0& [. N" P. S) h& W
00403488 E8 FEBF0200 call qsr.0042F48B/ S B! H6 `' |1 f& T5 _
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
! a/ C# z- G/ _- ^& _% P00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
$ l8 O# ^4 V9 j- G1 I$ d* W00403499 E8 EDBF0200 call qsr.0042F48B" S+ l3 ?, a* m8 b- B0 l6 ^ U$ q
0040349E 32C0 xor al,al ; AL清0
7 r! F. W/ V. k9 L3 U- @004034A0 E9 88000000 jmp qsr.0040352D
. U6 l) B. @! T* [004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~! Q8 {% @! L, G
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14], x8 j& s+ p3 \; h4 w/ F
004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],90 v/ C( [7 }: p3 H# y e
004034B3 E8 D3BF0200 call qsr.0042F48B7 I) t1 A* j2 G4 _' s" ^& l
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
. p$ _* ]+ { r# ?" T$ v004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
8 n. A* m% y; U; J, {+ h" F004034C1 E8 C5BF0200 call qsr.0042F48B
& F7 u( [& E, a& q# k8 q% q) ^004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]$ F& g/ b% `# P* {4 F
004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
& A# D/ V( T! Q+ Y! k1 T004034CF E8 B7BF0200 call qsr.0042F48B
, s$ B" L" a' g% H7 y004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
/ e: c$ e% f+ Z" H& k0 }: t( I004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6
4 z; ^( P6 ~. D6 w& ~004034DD E8 A9BF0200 call qsr.0042F48B
" k& b0 E( I/ I+ ]004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]1 }4 M& `7 _, o4 \ M
004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3: m1 z- I2 E! d e
004034EB E8 9BBF0200 call qsr.0042F48B
: c$ x$ j* D4 l$ x ^& K004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
: g7 S" r$ j; r: l& s. l7 f004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2
! Q# L# [0 V5 x+ `004034F9 E8 8DBF0200 call qsr.0042F48B+ B4 k: b" U2 ^5 t
004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
: i* I" ~5 `- p- g00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1
9 Z& h w. P; C z9 c& w00403507 E8 7FBF0200 call qsr.0042F48B
4 y$ u' g9 G& m1 s0 E# n, ]9 x0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
( V/ g1 x! F0 m# p5 T00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0, W$ m0 M; I( T) B9 X# R( @
00403515 E8 71BF0200 call qsr.0042F48B
, T( X9 k9 L1 L0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
" D' L# W+ U% { _6 b0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1" X/ |! b9 E1 [4 F! Y. t
00403526 E8 60BF0200 call qsr.0042F48B V) X3 _% w) |$ ]" J( o
0040352B B0 01 mov al,1
' n( [$ ~* u7 ]% i, {0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]" m& x: |. j# a, {: L8 q2 H+ d
00403531 5F pop edi
& F& r& r/ y/ D" @00403532 5E pop esi( i2 P- u! P9 C/ n! d1 S
00403533 5D pop ebp
. k- H- ]' r+ x% Y' {9 q% A00403534 5B pop ebx0 R( X0 y7 N: [& C) Q& r$ G
00403535 64:890D 0000000>mov dword ptr fs:[0],ecx ^* {* y; P% B; {0 q7 E
0040353C 83C4 30 add esp,306 s! D+ d) k& L+ X+ K" J& j8 l. j
0040353F C2 0800 retn 8
3 y3 i3 L* c: s9 i! I4 t4 m1 b--------------------------------------------------------------------------------% Q5 ^5 B. A8 b$ s
【破解总结】
* G& a- y+ S6 h9 w$ n+ K 用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^8 Q! Y2 Y% A3 T
用户名:yijun
! ?) A1 h: m* _, ]/ S: T注册码:4893*7777*3726*7777*0529/ M- p6 A+ S2 \! v2 `$ X% s
--------------------------------------------------------------------------------) b2 i# I1 L) d$ p0 _
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡