|
|
|
【原创】破解Quick Screen Recorder7 Q6 c- A- x( @: H
【破解作者】 yijun
( q7 G$ K' N+ f: f3 L, }' [【作者邮箱】 [email protected]
) {3 ], Z0 Z( _( r5 [【使用工具】 OD,PEID
! O+ P! q5 i5 r0 }【破解平台】 WinXP
/ @; S: u! I/ U1 U0 |- F【软件名称】 Quick Screen Recorder; d; B1 F7 }- \+ r( t
【下载地址】 天空 v* s& x4 U: @0 k& t
【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on. 8 _& u2 a/ [6 d# Y* y8 r2 Y
【软件大小】 540K# W9 {' A9 ~5 M8 m3 Z+ P& b( D, o
【加壳方式】 无
+ Q5 a/ p( x* P d/ u5 X% _【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)* }4 T$ R9 _+ M. c) `) {
--------------------------------------------------------------------------------
5 J) ?% }0 A& A【破解内容】( c% n! G* p d5 d
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:* D4 ^ r2 I! k) l& J
00404C69 55 push ebp //在此下断# D1 G3 z/ E/ a/ _" `
00404C6A 56 push esi
) ]6 z; [* W+ R/ o" ?* b00404C6B 57 push edi) S6 W) T4 ]' s2 X ~8 |
00404C6C 8BE9 mov ebp,ecx
, N ?5 T p) {9 O& q! W( M* `& T00404C6E 6A 01 push 1
- ?% v. B4 m* z, `00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
. c% Z5 L" o0 v1 Z- O* K8 I ^00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]9 M* Z/ p0 S# M" I! @2 ~
00404C78 8BCF mov ecx,edi3 K9 d8 D! e* c$ y. E
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码
! `/ m4 R! g% l, M9 k- K( I00404C7F 8BCF mov ecx,edi) a- V& k* B# c x+ y- v
00404C81 E8 A73E0200 call qsr.00428B2D
# E! a3 z$ e' A00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]5 D* h/ j4 W8 ^
00404C89 8BCE mov ecx,esi" c4 o7 {1 i( A6 A) Z( t7 x1 n
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX+ k. {. ~% e; ~% p( [
00404C90 8BCE mov ecx,esi
( | {4 {. ?1 ]! M3 T- n00404C92 E8 963E0200 call qsr.00428B2D
+ A; K- ^" Y( ]* W00404C97 8B06 mov eax,dword ptr ds:[esi]
, t, ]; o4 a3 e3 z* `, q0 H00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
, B. V3 y/ z8 I& @ x0 B00404C9D 7D 26 jge short qsr.00404CC59 @: y" ?2 d+ n N
00404C9F 6A 40 push 400 R; A9 f" K. }# |; e
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
. R0 c& g; r7 t( h+ O' e# S* c00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."3 u. P. q4 C! q
00404CAB 8BCD mov ecx,ebp
" n+ y5 w6 z/ y& p8 F, k00404CAD E8 C3840200 call qsr.0042D175
( i1 t8 R/ Y; O7 h v00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]; B( F* I* B- k+ Q/ i: }
00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx
+ Q2 m/ X+ k# |9 j. U5 Z00404CBD 5F pop edi5 b! O7 o3 [' ~0 E& _/ ?
00404CBE 5E pop esi
/ A% |$ H H) u1 r00404CBF 5D pop ebp: s" g' V& B: n u ?1 S6 L" K
00404CC0 5B pop ebx1 J) v4 `& O9 c U/ [7 E9 l- w
00404CC1 83C4 18 add esp,18
# R, R# p9 S. U e6 _8 D00404CC4 C3 retn
. A3 _% [3 v! s7 ?00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]7 l: l. f i$ m& t1 \3 m- u
00404CC8 84C0 test al,al
1 N+ m, S2 N! J6 O00404CCA 0F85 1C010000 jnz qsr.00404DEC
* |2 ?% L0 \, g00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
2 k/ J8 F" o8 ?" Z" b00404CD4 E8 87E3FFFF call qsr.00403060
, o/ X" @" \' F/ x00404CD9 51 push ecx g0 X B7 a, J- a
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0: R B1 M! @. Y5 P, c
00404CE2 8BCC mov ecx,esp
5 C, s2 _% M2 K+ h" v1 }00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
1 {. U/ B2 K, H# W2 U$ ]00404CE8 56 push esi8 f. C; x, [* f3 J3 t. N$ L& h
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是03 X! Q9 f+ ~# u: J
00404CEE 51 push ecx
- X, j- u$ k2 n% e' ^" `00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1: p" I2 B5 t! T/ H
00404CF4 8BCC mov ecx,esp% R; M" @" {9 k
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
* y4 H* P0 k- t3 e0 D3 e2 M, w00404CFA 57 push edi
5 X2 Q3 d$ h- o& V9 h+ A6 E6 l5 V4 x00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0
+ }& Y3 U$ Z9 K+ S4 y00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]6 g: p( D. o9 J! G* G8 w! h' [
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0
0 y1 j) j: D9 I2 U00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~$ V" j( M$ f7 y; T( k
00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~0 Y: [/ b, J: P3 u6 U& H
00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~ O& T; i+ I+ w/ S" |; c; C, a
00404D12 6A 40 push 40 J7 P7 `. T6 z, w$ U& i
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
: R" |2 B( A& b) k2 n00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."5 D4 l* S5 S4 x# ?2 t( J
00404D1E 8BCD mov ecx,ebp
' `8 f C% r& n2 v, s/ K00404D20 E8 50840200 call qsr.0042D175
" W- f' B, O$ C8 t4 t00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]/ F$ f2 J: x- z, {" c5 {
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1
5 l2 N5 }, ~! L, f( d/ |/ l00404D31 E8 5AE3FFFF call qsr.00403090
- |" L! S2 ?' x' u8 K00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
6 }' l3 |7 d) F$ D6 T. ^00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
0 o$ C8 T, B& n z00404D41 5F pop edi
1 I) V( c: E! S* c00404D42 5E pop esi, N! o7 S% ?$ r% q+ }, N
00404D43 5D pop ebp
3 _, q% F: R, m00404D44 5B pop ebx
7 D/ Z, i' z" H0 D00404D45 83C4 18 add esp,18
i3 Y8 D3 B7 x% C6 A+ b4 K7 F00404D48 C3 retn
5 d% W* l( N8 h$ M2 L4 X*********************************************************************************************************************************************************" Q3 t6 @4 b2 m$ i1 I! q8 K" \
跟进00404D09处CALL来到:
1 `+ b4 u5 X; n0 a& U9 g$ T004030A0 6A FF push -1 //一路F8下去~~~~4 i% _4 n7 v" }4 e
004030A2 68 C88F4400 push qsr.00448FC8
! f, `- D" \4 G8 h$ K' i0 H9 J- [9 e004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
& Q5 V: r: E% Y& E004030AD 50 push eax$ N& M3 ~8 W; t, G
004030AE 64:8925 0000000>mov dword ptr fs:[0],esp/ O* w( a y9 i1 N4 B; Y: Q
004030B5 83EC 24 sub esp,24
9 x- E/ y5 a: \1 F8 I( h n* d004030B8 53 push ebx
6 V$ Q! A7 t2 e+ k9 @004030B9 55 push ebp
$ o5 e' y4 \, G5 T# Q: l004030BA 56 push esi
9 J% q# L) F z" m/ B' K% o004030BB 57 push edi
0 [) c# m# x2 c8 K1 O004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"' P2 y0 ]/ i e# k
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]$ w A: U% O# s
004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1& W+ r# N( q8 b! Q1 v2 x
004030CD E8 27C40200 call qsr.0042F4F9
' e0 h+ t! b7 Y% L6 X) \! C004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]" Z* K6 X0 h* E& Y
004030D7 894424 2C mov dword ptr ss:[esp+2C],eax$ `, q+ f7 b' @
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
+ T& R# @9 `* i% H004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],32 `% l* ?2 t, T, ?1 M. m* I) ?) J
004030E4 E8 905A0200 call qsr.00428B799 V* H% L$ Z+ |/ J* k! s2 h
004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
& O0 u, f# \1 C! b0 f9 i5 z004030ED E8 3B5A0200 call qsr.00428B2D8 O6 F; u+ \5 f7 M( F
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
9 k/ J9 D. p# g) d004030F6 E8 7E5A0200 call qsr.00428B79
* w& e; Y, s5 ?004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]4 L# [" l0 v% ?8 d6 c4 J! B4 v
004030FF E8 295A0200 call qsr.00428B2D% L+ `9 m1 O4 m# u+ Z. {) ?
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]
) Y S: T, O* y00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
% E/ i0 J( a3 V+ N0040310B 83F8 02 cmp eax,2
: `+ v5 C& R8 k: f" F3 h0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳$ g0 Z7 M% x7 X7 H+ n2 r( R3 D! ]& T
00403114 8B5424 44 mov edx,dword ptr ss:[esp+44] `; e2 ], n$ e8 {( G
00403118 837A F8 18 cmp dword ptr ds:[edx-8],18
9 P( C: U" r1 P1 ?. l* F1 E6 p* }0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳
% D8 z* d: [6 T9 ~% `: h( j00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
" C7 i6 }! [9 I2 M- R00403126 6A 01 push 1; A7 ]( T8 C0 l
00403128 50 push eax
, J; L, z# S8 S0 u8 \00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
1 e5 T6 y( w- k' N0040312D E8 C4550200 call qsr.004286F6
9 @: L5 b; @/ D6 K00403132 8B00 mov eax,dword ptr ds:[eax]
2 |* j+ r2 h2 w. }00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
$ [6 h6 r: z1 f. H9 \6 w/ I00403138 50 push eax
2 R" I% J; v6 c6 z1 I1 ]00403139 C64424 40 04 mov byte ptr ss:[esp+40],45 I" u3 x& s, r* }
0040313E E8 4D560200 call qsr.00428790
/ K& M& o1 k( `9 v: G4 ?00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
- r- c$ P$ A: [ }6 A8 }* c00403147 8BF0 mov esi,eax
9 Z( ^4 I e9 C y& E v5 s" w% q00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3
/ R- b4 _, f/ V5 s4 d4 k0040314E E8 38C30200 call qsr.0042F48B/ q9 p4 Z) n1 W, k s
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]7 u) y) w. J* H" k
00403156 B9 3E000000 mov ecx,3E
3 h# J7 h5 B1 T8 T0040315B 99 cdq
# n l9 y6 J& y% ?0040315C F7F9 idiv ecx
' C2 I# [- O" `8 l* q+ k0040315E 6A 01 push 1) ^, b' c( m$ l- L2 S) f/ [3 O
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]" K5 X% ]) O' {. e) j7 f ?
00403164 8BF2 mov esi,edx
) r: q" v* f: }/ J: a) N00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]* \* P0 M$ N& C5 W
0040316A 52 push edx- [1 |' d+ B% u* C) f7 N8 |1 K+ Y
0040316B E8 0A550200 call qsr.0042867A' a# r: V6 A5 w, v, U: f
00403170 8B00 mov eax,dword ptr ds:[eax]
( O/ w' P/ C O3 u" _7 n00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20], C) P- A! E3 R7 S
00403176 50 push eax
' D. D0 Z$ F- E5 ~3 \! C00403177 C64424 40 05 mov byte ptr ss:[esp+40],5
; ]5 P! ]4 B+ o$ A9 b0040317C E8 0F560200 call qsr.00428790
7 i) R# R( o% W9 k$ ~1 h( J00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
; q0 M+ o5 O* ^& j" G. C0 r2 G00403185 8BF8 mov edi,eax/ f1 `+ ^5 W# u' z4 r7 h( O) S. ?
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3
- X8 }6 n1 f! c4 J: Z( y9 D+ X5 n$ P0040318C E8 FAC20200 call qsr.0042F48B* q2 \! x# N8 `! s; S
00403191 8D47 0A lea eax,dword ptr ds:[edi+A]$ a4 o; f6 H. J" v9 `- ?! t
00403194 B9 3E000000 mov ecx,3E0 ?/ f) S' s, q6 m) R" z
00403199 99 cdq
4 y5 q7 T* E% T8 t; @: X* w0040319A F7F9 idiv ecx0 k5 b7 c/ o W! |
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]( O# W( j# B+ k# L
004031A1 894424 28 mov dword ptr ss:[esp+28],eax4 J4 [4 |% y d4 h
004031A5 8BCA mov ecx,edx
0 O6 t" v, i7 v' u- ^004031A7 894424 24 mov dword ptr ss:[esp+24],eax3 y1 k6 r' L7 T
004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
$ v! O" p c1 @2 u# c# E' z: j! t! W004031AF 894424 18 mov dword ptr ss:[esp+18],eax
8 ?! y! d+ F' b: m004031B3 894424 14 mov dword ptr ss:[esp+14],eax
/ \& }( j$ v( [; T% K* v; R% }/ B4 [3 A004031B7 894424 10 mov dword ptr ss:[esp+10],eax
- x- v8 {9 t9 T. ?* y004031BB 8BC1 mov eax,ecx- h# \. p' h4 W$ N& w& q
004031BD BF 0A000000 mov edi,0A
- n: W: ]8 q$ R, v. _ r: h004031C2 99 cdq6 ~0 p9 p) r. ]7 ]1 b. {- |
004031C3 F7FF idiv edi! u2 ^* | H! g/ H5 c
004031C5 8BC1 mov eax,ecx! B4 t3 \$ E6 p9 \# s, c
004031C7 B3 0B mov bl,0B$ W2 d {. B' }6 t
004031C9 0FAFC1 imul eax,ecx5 i/ z6 E. v4 N1 w
004031CC 8BCF mov ecx,edi8 Z! H8 L+ J- ~+ y/ g( u" U4 v) f
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
" ^: I6 h0 k1 v3 f5 R3 t) C004031D2 52 push edx
. m8 b$ f; r! G8 v' Y004031D3 99 cdq
" s% \0 N1 b0 y3 m4 a* L004031D4 F7F9 idiv ecx
4 c. W- |( V! f2 g* t* Z9 s8 f L4 E004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]
" M m' f; |& E! V1 e004031DD 2BC6 sub eax,esi
0 {2 Q7 K/ \8 B! O7 z. n004031DF 52 push edx7 x% N' I0 t8 {& `9 \
004031E0 99 cdq
5 Z! l6 @- \7 n4 t/ m/ Q4 B004031E1 F7F9 idiv ecx1 }3 q; m& [" F- {/ ~: o
004031E3 8BC6 mov eax,esi
" i1 {1 Z0 x; i004031E5 52 push edx
/ x" c, }. L3 y% w5 E- M) J# @004031E6 99 cdq q8 q. ]" [) s8 I
004031E7 F7F9 idiv ecx0 X5 h# G5 Z! \
004031E9 52 push edx: A0 E8 d$ n9 R/ h5 S$ G9 ^
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
. k g- y$ E; x5 |/ Q2 k004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"- ]; F$ p7 s+ N5 h5 S; P0 X
004031F3 52 push edx4 d; Z z0 k- v7 ]+ P
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893
z4 ?: {+ R6 ~: @004031F9 83C4 18 add esp,182 ]. j5 g# K- ^! q! d
004031FC 6A 04 push 46 l3 m& E* L9 N& [6 {1 o' D
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]* t, p' p0 O4 K2 {, ]
00403202 6A 00 push 0
' C3 h# t: d$ m1 F# Y+ l00403204 50 push eax
* _2 O0 g" C3 k' K; `" N! }2 q00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]5 H9 u" D9 U- s9 J
00403209 E8 D6530200 call qsr.004285E4
7 r) L) E6 w( H0040320E 50 push eax
8 q/ ?9 m6 `) q% I9 H3 |0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
1 R+ W! ^: k. O1 h% F" Q5 k00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C$ r* h! w# ~2 z" m) ^. `7 z
00403218 E8 A7C30200 call qsr.0042F5C4
* O7 M& A% r6 {0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
# U' V" f4 I% q3 ^00403221 885C24 3C mov byte ptr ss:[esp+3C],bl
, h4 {6 W3 e3 D00403225 E8 61C20200 call qsr.0042F48B' C& \9 }/ _' o8 b
0040322A 6A 04 push 4" L! ]5 f6 B2 u1 K. p
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]# g7 {( P4 {& ~( ^( ?/ W
00403230 6A 05 push 5
0 U B# J/ q2 R- Q9 p, z2 y+ n, c00403232 51 push ecx# y p% k7 \8 A6 `3 W
00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
2 P `: U5 N$ k4 T; l( A/ C00403237 E8 A8530200 call qsr.004285E4! k( `; H2 P" D& Y- w
0040323C 50 push eax. y% d6 z, _" ^$ h7 L
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]1 g' L& @0 o2 Y" q* `
00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D0 r2 I; P& m$ M( v1 Y# B4 y
00403246 E8 79C30200 call qsr.0042F5C4
# Z% k0 `$ Z) H7 q3 }9 F- ?0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]: E$ m! r, ^0 J3 r- w, d+ g
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl0 P& f$ u5 s% h4 ?: u$ ]
00403253 E8 33C20200 call qsr.0042F48B
" c8 ]' B. d) D( }9 f' j4 P: R5 R00403258 6A 04 push 4" D6 {! l5 m- Z& N2 J7 a
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]
! t6 E$ X- q0 `9 d0040325E 57 push edi; X* K) b( l: ^( S
0040325F 52 push edx" v' G U1 Z$ f6 Z" a' F2 t7 P
00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]7 h) c9 F( i5 k8 D. I* T5 V
00403264 E8 7B530200 call qsr.004285E4
( q& ?: q! C H' E- A- v00403269 50 push eax! k# l) k8 n1 m0 f5 _! P- y' u
0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
: [! I+ \1 f' e3 [) X0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E O: I1 ^! @ i. p
00403273 E8 4CC30200 call qsr.0042F5C4
9 ]; T4 T0 w! i' V) d6 S; p2 r$ F+ F* `8 O00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]! |' x! u {7 ]* K: |; s2 R
0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl
{1 P/ ~$ g! f1 `$ T! s7 q00403280 E8 06C20200 call qsr.0042F48B2 L/ }7 l- I/ D* _5 e
00403285 6A 04 push 4
# l; r& T( u* K7 p00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
* R+ p) H5 g- z* `7 [. }0040328B 6A 0F push 0F9 d. V& U" O, u" [* h( j9 }: x
0040328D 50 push eax
# B; x& d& h5 `$ d: p) [0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
6 [! U: G& }2 c- m1 V00403292 E8 4D530200 call qsr.004285E4" Z0 `' |3 k, y, k
00403297 50 push eax. I% ]+ j( o& q0 ^& u
00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]$ H: ^' Z" b ]' j
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
: P1 L: q" O u004032A1 E8 1EC30200 call qsr.0042F5C4- I+ E0 r7 S! {) Y* I4 M
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
+ h3 `/ A! `7 a% g/ f3 Z7 B/ o; a004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl
/ x9 `' V$ o' _& [ {004032AE E8 D8C10200 call qsr.0042F48B
" s- d# S& g5 U004032B3 6A 04 push 4' G- ]( L$ l: x9 x) e% f, {& W+ \
004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]0 ~9 a( j Y% K- d
004032B9 6A 14 push 14
, f: [1 U: ^, D1 F3 j0 ?# Y004032BB 51 push ecx& B1 m a& k' y
004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
- t3 E' h- |7 v, u8 w1 w004032C0 E8 1F530200 call qsr.004285E4
) T- T- R7 k6 H9 q, y: g2 p. R004032C5 50 push eax
, N$ U( A2 [4 e8 O6 C, \' U004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
z& u/ P0 v7 R2 q& T% m/ d004032CA C64424 40 10 mov byte ptr ss:[esp+40],10" y7 ~5 x* B. ^+ Z( U$ v
004032CF E8 F0C20200 call qsr.0042F5C4
2 A' w! v* a( `5 a2 o. n( h004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
/ ~% g& F2 o+ z1 i- i; b004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl
0 |- r- ~; h- v/ [3 x004032DC E8 AAC10200 call qsr.0042F48B9 I( C- H. {' A6 t
004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
: d& J3 R; D5 d004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX' t, S) T; J% U
004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
, s1 Q/ b" X8 @004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL
1 i7 w$ t2 K8 a& k004032ED 8ACA mov cl,dl ; DL送CL" f0 l( ?, _: s+ \
004032EF 3AD3 cmp dl,bl ; DL和BL比较
; ^ v/ }3 l3 z004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)' Z. @( A1 m ~% b A7 S( f [. H
004032F3 84C9 test cl,cl* \- d" l) }1 _' O6 Q
004032F5 74 16 je short qsr.0040330D
( b) ^. R9 o- h% y: c004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL
; X4 E8 a ^: H7 ^4 g004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL' E+ d# Q* e0 l5 n$ A* a
004032FD 8ACA mov cl,dl
# v- n; O/ J. R2 X( v0 g8 I' V004032FF 3AD3 cmp dl,bl ; DL和BL比较
6 A6 M4 H: D+ c! ^' }00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
5 D$ B* x5 R+ q9 e5 a% K00403303 83C0 02 add eax,2 ; EAX加2& t+ I$ @9 X$ ], Z l
00403306 83C6 02 add esi,2 ; ESI加2( L! _- X* ~2 ] z
00403309 84C9 test cl,cl' G6 y5 G; \" J' A3 r) I
0040330B ^ 75 DC jnz short qsr.004032E99 N9 R$ h' \4 w
0040330D 33C0 xor eax,eax
" o( _4 ?) }# z8 i* z# l! E0040330F EB 05 jmp short qsr.00403316
, ~+ y `( Y8 i- ^; `# |00403311 1BC0 sbb eax,eax( h; T, z2 J" A% N/ h& K" h x
00403313 83D8 FF sbb eax,-1* Y/ N; W3 m7 [' R3 F& u
00403316 85C0 test eax,eax. \8 ~4 C! y+ c6 F# U7 \" j
00403318 74 0E je short qsr.004033285 g$ |5 y7 Z* B+ o! e' c
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
. x; a% C7 `6 `' `) V; z) e( t0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]0 n; \2 k' o& \$ X: a
00403323 E9 F0000000 jmp qsr.00403418
+ r% v% }+ Q* B. z: C' \) E3 I3 W8 v2 g00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX* r. ^& H0 j# k1 e" l/ m+ }
0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
- {3 H" v# k9 X, t7 P& _00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]6 z2 ~: V% C% _- R# I# T& ~, p% [
00403333 50 push eax
4 \6 n- i! o% v% X5 a4 T( {00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX
$ F7 f% B# M% g/ t J! Y1 ?00403339 50 push eax
' F/ o. u. E C0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX
& ]7 h8 S9 w. c2 Y0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
) h! W7 C6 A8 A4 J4 d00403343 83C4 04 add esp,4
- E; S: @1 v1 F5 X. d# {6 ^00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI
8 v1 d5 S: @" K* Q% C0 r00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]+ _0 {6 V0 B3 g6 L7 V$ I* t9 w: e
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]/ i! x9 }: _1 k( K: g
0040334F 50 push eax
3 x: L0 _5 a: t3 h- P7 q00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
7 _) S# P3 ~3 z: c00403355 50 push eax, p4 A# y+ d" C( C/ _( s
00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX
. y0 X; k* t; B7 c3 Z' m. [0 \0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
. B" f" }8 q; Z% W0040335F 83C4 04 add esp,4
/ s3 E4 r4 N( P4 Y& ?% D' z, I00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI \# \* Z; P5 A5 [& ~# c* W
00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
7 L2 J8 O3 W2 `# p; P! M$ x; Y' L00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]
/ J' u, S& `$ S0040336B 50 push eax# i" R6 Z1 Z: E: B' r3 I
0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX2 u% c0 z8 g1 q. D3 F* \
00403371 50 push eax2 H# W4 C" L; ?
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX
# T* |# V" C$ y$ O" Y0 C00403377 8BD8 mov ebx,eax ; EAX送EBX
, b3 J% ?' O) E [7 V% O00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX J# J% n' S3 |6 f1 r2 N
0040337D 83C4 04 add esp,4
) x: L+ z* ^( @* K1 W00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
2 ]' H# c+ j. `, U6 H( s00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]
5 J( e; _' B# b% [00403387 50 push eax* n0 E* ]) g u8 m& U8 X
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX
- D7 m& o& \" I- m7 }; N5 P0040338D 50 push eax& c, i+ e- j0 W( ~$ `1 d, T
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX7 s/ @4 v4 _! {$ K7 t C' x! M# V
00403393 83C4 04 add esp,4
7 f8 X- s( d0 ^ ?00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]0 q( P8 {7 W- ^; g; E4 r; r6 d; {0 L, C
0040339A 8BE8 mov ebp,eax ; EAX送EBP
A, ^ D# r, N5 ~- f5 X+ U+ m0040339C 6A FF push -10 ]! M& B9 d6 o; x5 j
0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX f6 ?6 I- i) e C
004033A3 6A FF push -1
0 ]0 Z6 M) ^. S004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
& D1 B) _5 f7 f# d: G; E+ ~004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX. T, i$ R9 v8 o8 e- m
004033AE 6A FF push -1
) q; K. h- H, ^2 ^9 l004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX
/ _8 M0 h- i3 Z9 r! J004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX, h; Z5 s; R7 S7 V4 Y# B$ l+ z y
004033B9 6A FF push -1
1 K9 c9 [3 U- X! w% L004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX
; _1 ~9 ?* P" i3 L004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX8 c( p& s9 }3 @/ a/ i: z! r
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX! W c$ N0 ? x9 s. Q
004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
$ d' p7 g* Z7 [) U004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX) }, S( r0 @9 h! @, e
004033D7 D1E0 shl eax,1 ; EAX左移1位/ K' l- V. ~5 v& G) W* S& j
004033D9 99 cdq ; EAX扩展
4 N! N% V9 z5 @$ ~004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
5 x4 x \# ~& Z) s% d( F: X0 Y9 T004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
# z: }) C8 k" {( E004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)
: o# v1 g- K; L7 ^ Z6 I004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A: u( L. }) j' `, F& t
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
$ X- K# K; D# I4 W& |004033E9 EB 2D jmp short qsr.00403418
& x- }2 [! y& [004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX# {, \+ n1 G& ^5 r. e; u2 |! ^
004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2# ?# U% V) ?2 o1 \. {/ V
004033F7 99 cdq ; EBX扩展: V6 C: E+ g/ P# Z0 x
004033F8 33C2 xor eax,edx ; EAX和EDX取异或
9 `' |) }/ W4 w# x* d3 H004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX0 j G$ m( H4 t
004033FF 2BC2 sub eax,edx ; EAX减去EDX' \7 F* O6 X. Z9 u: I; K' c1 X
00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]
4 v# ]3 t" g! J$ Z0 L. t8 F00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
. o$ X4 n5 b- m! q; c00403409 99 cdq
1 J# W* } |6 S' f3 ~0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
) D$ Q. b4 q: w! ^: p0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX/ s" r( I% j' S+ H9 I
00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较
4 n. T# p) A9 e" F- F- \9 F8 C00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)
3 B5 ?' v Z. a) C00403418 E8 6EC00200 call qsr.0042F48B ;
3 c. T7 j1 y& H7 K' Y0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]5 P0 |4 X5 y7 I, ?
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9
4 F2 S( S0 P# K00403426 E8 60C00200 call qsr.0042F48B
2 D: Q7 s, C7 N1 ]" S0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
/ L) K( C# S" _0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],84 {$ [( p, {. s5 Q- y# ^
00403434 E8 52C00200 call qsr.0042F48B1 O$ W3 W8 a" n" o2 r+ y
00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]; x0 w7 v& k+ r H# ?6 J
0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7; w! y/ \0 A0 ]7 N
00403442 E8 44C00200 call qsr.0042F48B2 Q% j2 d+ S# o* q
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]$ _# p5 f" z, L/ z# K/ U, K3 [$ e
0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
' {$ v F& ~) ?00403450 E8 36C00200 call qsr.0042F48B
0 I; @7 E- I) K5 b t00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
' T& Q+ K7 C# N2 b00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],39 C o4 }" [5 d; w' N
0040345E E8 28C00200 call qsr.0042F48B
, J! f- G1 Z3 g6 Q00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
$ s: u9 D' J2 x! e1 g! I00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
) N' K0 G" {* O5 s N+ F7 O0040346C E8 1AC00200 call qsr.0042F48B; F( {5 N }) a+ U
00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
m1 p. J, x- `. N# y/ N00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],18 ?$ O7 z9 `1 C4 n# o9 F% V4 [
0040347A E8 0CC00200 call qsr.0042F48B
: Z7 g4 R/ o' {6 e1 {% V0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
% |2 w/ N, Y: w: R6 P) Y00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],06 N7 }7 D( U8 b' |
00403488 E8 FEBF0200 call qsr.0042F48B) D% t" p: w$ Q0 w+ _8 }! T8 O
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
: |/ u, \: |6 K5 Y3 X9 o00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1! e& D( u* S9 _' c- G6 o3 X6 b* U
00403499 E8 EDBF0200 call qsr.0042F48B; _' h+ ~ m! ?9 Z
0040349E 32C0 xor al,al ; AL清07 a5 |4 a( _. `! e9 }/ ]) _: } F% p
004034A0 E9 88000000 jmp qsr.0040352D- [& M: ~) w4 s; K7 p
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~
% ]& I2 o& |% I2 ~9 I& p4 T004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
) i7 |# i. J# I6 F004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9, O5 t% |0 x3 V* _+ x- F8 \) ?& ?7 o
004034B3 E8 D3BF0200 call qsr.0042F48B
; G, `8 ^" U p: K" J) Q8 W004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]8 c5 W- e) o; a% e
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8! h; J: a9 s: X5 [
004034C1 E8 C5BF0200 call qsr.0042F48B
" B1 N$ v! Q/ o2 c8 E) L004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]$ z6 f( k# u5 ^. F/ `
004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
! B8 g( j, Y) W% r/ t& q5 [004034CF E8 B7BF0200 call qsr.0042F48B$ y: w( \$ M$ B& D
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]3 W+ d& G4 I1 T( ~* B
004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6
Y$ V- B! b9 q004034DD E8 A9BF0200 call qsr.0042F48B! l2 D/ M' P2 r; ]
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
7 m: Z9 C* U e, E004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],36 M( T2 p7 v- j2 `" f1 G/ s
004034EB E8 9BBF0200 call qsr.0042F48B
9 l" c* O* m/ y004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
3 g, a8 F0 L g* `& e0 ~9 _2 G3 J004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2 ^% {7 I( V3 `# Q' B+ p
004034F9 E8 8DBF0200 call qsr.0042F48B
* D$ o1 n, ^! }, m H004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]) ?" t9 o+ x5 U! C6 E6 X- G
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1
5 T3 I6 K* ^5 Q2 Q2 M) o8 H00403507 E8 7FBF0200 call qsr.0042F48B: {7 p1 a. @. R9 l k
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
2 [/ }1 F+ T" _$ S y00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0
E) r1 i* m3 \- \% `00403515 E8 71BF0200 call qsr.0042F48B" N1 D# _: I2 [+ h9 d
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
$ s3 S, W# H" y! }+ B; u0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
! U7 y) J) f& R; Y00403526 E8 60BF0200 call qsr.0042F48B
6 s7 n3 |& x$ S% m* d; u. P0040352B B0 01 mov al,1% ?3 A& v) y% v% R0 o. Y$ \
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34], }; u2 m" \* Y: @% X& \
00403531 5F pop edi
' F: O( A* L8 I0 b. [1 f4 O9 t00403532 5E pop esi; S! @' W3 k% E; |
00403533 5D pop ebp
; p6 M9 V1 S# m5 W Z00403534 5B pop ebx J$ n z) B b! t
00403535 64:890D 0000000>mov dword ptr fs:[0],ecx9 P# R' ?* R* Q j
0040353C 83C4 30 add esp,307 Q _' @3 d; a/ f' h. C7 P
0040353F C2 0800 retn 8
. f* d% H: u, T: h( l2 H( P--------------------------------------------------------------------------------
% A" X& n) @. g" y, q K! E【破解总结】
( ~( q7 \) |& e9 b 用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^4 x1 ?1 \* ?* r
用户名:yijun
I5 ^! |( Q& O/ E注册码:4893*7777*3726*7777*05294 t. a! L# y1 B: `. q
--------------------------------------------------------------------------------& A8 e9 s3 G* u; M) [' i2 o! @
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡