|
|
|
【原创】破解Quick Screen Recorder1 g2 z1 y8 {/ J( L
【破解作者】 yijun) |3 y' a7 [2 L' J
【作者邮箱】 [email protected]
+ \$ @: z. x6 _; G5 ^$ Q& v+ @【使用工具】 OD,PEID' u/ r# _( v+ k" w
【破解平台】 WinXP4 `% [+ S& ]: L, t, k
【软件名称】 Quick Screen Recorder
, f5 h6 A3 W7 ^: l! i/ }【下载地址】 天空
; t2 j C- d) u& @, K8 l! p【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
. z' `- ]2 g. f N. h8 h! N+ C【软件大小】 540K
$ w5 m \. i6 v6 |' ]) i# |( E【加壳方式】 无
2 u: J6 l/ ~2 h8 M【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)
. L: m$ f- U2 ^+ D* x--------------------------------------------------------------------------------0 r: P& I5 B4 z: q) ]' v" k0 Y
【破解内容】
- {; P" @* F& l& E PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
7 n" a3 X! m3 N3 P$ d. Z* Q" Q, g! c4 ]) [00404C69 55 push ebp //在此下断3 S) y1 j0 J: E3 _7 n% o" [
00404C6A 56 push esi/ Y1 U" i1 U0 J, |5 \
00404C6B 57 push edi
3 u B+ H+ s. p00404C6C 8BE9 mov ebp,ecx
0 Y9 L: Z3 S# a6 ?5 z& K00404C6E 6A 01 push 1, B. }1 ^' u3 J- y8 q3 ^0 s
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名 w W9 V; o- v9 h1 q
00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]
* g: n5 o6 n4 ~+ A00404C78 8BCF mov ecx,edi% a8 f+ p4 A: P3 J; B& ^6 m
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码$ r4 @1 E5 y8 C8 m) ?2 A
00404C7F 8BCF mov ecx,edi
* u. y2 I+ t1 m" h00404C81 E8 A73E0200 call qsr.00428B2D! {' p3 O+ g. H9 }3 W( a( j
00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]9 _! k" C1 D( s$ N% m! A
00404C89 8BCE mov ecx,esi
3 |3 d- H6 r: h* C* ?& j00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX; |/ u! O* c& W2 `% F
00404C90 8BCE mov ecx,esi' M$ ]4 {! R8 ?2 \) D1 |6 F
00404C92 E8 963E0200 call qsr.00428B2D
3 T) X; p% ~ N5 G! X6 w2 ?) L" E$ U00404C97 8B06 mov eax,dword ptr ds:[esi]
, h5 D+ x7 l @" V( D00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
; c/ a! L2 Z' q7 U: }! L: F00404C9D 7D 26 jge short qsr.00404CC5# h; W a1 f) S" O3 F6 k5 e
00404C9F 6A 40 push 407 b0 y+ l! |+ ~% J
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"& G' r1 W+ ^0 Y' x8 }! C& t
00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."
1 d! Y b y: t" |2 Y$ C# p# J00404CAB 8BCD mov ecx,ebp
1 Z& N( D" q& ~% Q0 K8 c00404CAD E8 C3840200 call qsr.0042D175# n9 y7 B- e' Y4 _) f
00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]5 q, i7 _ u3 i6 f
00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx, o* O6 k6 O( o7 y2 {
00404CBD 5F pop edi- ~- A" A, o ?/ l! p1 c4 _& ~% C
00404CBE 5E pop esi& z. I1 M+ v v) F
00404CBF 5D pop ebp
. U) s( m3 D( R# l/ \) l00404CC0 5B pop ebx
) w2 b4 B7 m' N9 Y00404CC1 83C4 18 add esp,18
2 }. @, N. @8 |00404CC4 C3 retn
u( P) U7 N5 h6 z/ M- @; Y$ [00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]$ E/ n* _% m6 `$ g5 H W, c, o1 w
00404CC8 84C0 test al,al( F2 E4 D. Z1 | N; W
00404CCA 0F85 1C010000 jnz qsr.00404DEC. i9 f0 E8 ?- U5 X4 r& e( j
00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
) Q6 h8 G$ s1 }+ z3 [# l5 G+ ?, f00404CD4 E8 87E3FFFF call qsr.00403060. s) |7 ^% D% @
00404CD9 51 push ecx
$ V1 O# K& z+ q& d4 n, i00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
) X6 \4 ~2 h% G1 T00404CE2 8BCC mov ecx,esp
4 e. W# h( {* M& F# ?- U/ X5 w00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
8 |9 C/ r# W; [4 F00404CE8 56 push esi
( e: ?, {' ?; s$ l00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是07 r" ]2 F }3 E
00404CEE 51 push ecx
e4 Y" b' y6 r, M3 k' |3 o j00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1, k" b! ^; ]1 @8 o' k
00404CF4 8BCC mov ecx,esp! C! J( J& D% A; q
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
' H1 }% }& g8 O$ h00404CFA 57 push edi; ?* N. |! f( P6 W; j5 I1 |/ ~
00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0
H! M3 E2 i: [; S) n; e) A! U# @00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]7 ^+ B! V* t- }1 x, i9 `
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0
) Q/ K% E$ F- M' ~. U4 |00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~
2 x( V/ y1 y: W* j9 U' z2 L00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~9 D7 ]# {8 J- R2 D8 k9 b# X) C* {1 g
00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
7 A r* G* T6 p# J9 j8 q) S00404D12 6A 40 push 40
0 e. e) W+ t9 n- J$ w. Y( s00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
3 D7 m4 _- L) L) d/ I# @; r00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."' d% F6 i" j' w( x) M
00404D1E 8BCD mov ecx,ebp) K+ q! q- _6 }, I5 E; l
00404D20 E8 50840200 call qsr.0042D1757 B& q% v0 V1 u/ D6 B
00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
8 o+ l( V$ G/ t; u1 Y$ X* o00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1
. w1 n' H. a, W' W" [( f. h2 n00404D31 E8 5AE3FFFF call qsr.00403090
& ?8 T* J& W- V' v+ M# u: V! k' p# J00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
2 q I* k, b& A9 n& o, ?# w+ y00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
* @+ x; M* [ j$ s8 G% o* B00404D41 5F pop edi/ h0 l+ t9 O8 D2 V$ W
00404D42 5E pop esi: z" N+ f$ j# f1 Y. H t3 G3 j
00404D43 5D pop ebp8 ? z2 O" o g! ~+ S
00404D44 5B pop ebx
4 s8 r1 }. n/ j ~8 b z& d00404D45 83C4 18 add esp,18
* e+ c& |2 a! P1 ]. l" i00404D48 C3 retn0 i9 z" j; o& J6 w9 T& J4 B
*********************************************************************************************************************************************************
7 M4 R$ q3 }* @6 ^跟进00404D09处CALL来到:# m( L o! N) b' f& h
004030A0 6A FF push -1 //一路F8下去~~~~
/ d0 k# s0 ?% c- U/ `004030A2 68 C88F4400 push qsr.00448FC8
) B" f7 D2 H* m5 Y004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
1 K; L0 f# w2 C/ B5 Z! R0 P' j004030AD 50 push eax
F; b# n" i5 ^! t h' l004030AE 64:8925 0000000>mov dword ptr fs:[0],esp- v9 T5 k' y6 G9 \1 S: ?; ^
004030B5 83EC 24 sub esp,24
* I5 s$ h1 _* I/ T# F* V6 g4 e9 K004030B8 53 push ebx, Z8 L1 C, c, G: i+ T' E" _
004030B9 55 push ebp
k# O. ?9 U& k, t; e9 K004030BA 56 push esi- Q2 J% C+ c* A3 L, s8 k& M2 Z" f
004030BB 57 push edi
9 Y! D Y3 Q, Z2 N6 U+ {7 u4 N004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"
Y6 i, E$ I& J* m% M5 u/ L004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]4 o- I( l5 }6 z5 C2 p. D
004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1
: m% b8 r' m. a' t+ {% T- R$ I004030CD E8 27C40200 call qsr.0042F4F9
4 f9 F- d, x/ Y# u; Q, c/ o; E004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]- `% d9 ]3 [3 R, t1 {0 }
004030D7 894424 2C mov dword ptr ss:[esp+2C],eax4 D5 _8 D+ s. K8 I7 d, @) y, \( R1 A
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]9 W. M E- A r' f; v
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],35 S# ]; f# M. ?
004030E4 E8 905A0200 call qsr.00428B79
, x+ ~& o9 D( v( [004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]" D* U% O4 N4 |& l f: y+ Y
004030ED E8 3B5A0200 call qsr.00428B2D/ L; G3 [) n3 c% C5 Y
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]' T! `5 A& B- }, Y
004030F6 E8 7E5A0200 call qsr.00428B79- E& @4 x3 _- L# B/ z# H2 `
004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
4 _) h- x' F* T& }004030FF E8 295A0200 call qsr.00428B2D
- j+ l g, W S( i$ c9 R# L00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]
% R& W, h+ X& J00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]) ^: L9 v& e' ?, q3 S2 X# @/ r8 A, [, y
0040310B 83F8 02 cmp eax,2
6 [ K5 ?: k5 i: k' \0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳$ C* S% f9 C' O( x; J
00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]
* A- j4 [% i3 @5 g& B) d00403118 837A F8 18 cmp dword ptr ds:[edx-8],187 C: Z- N5 ^: S
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳
u, n! [8 N. ]5 p, l& w00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]4 `/ q5 y; `( u* ?/ c
00403126 6A 01 push 1
/ ^ S6 v3 H& H* o00403128 50 push eax
, ^ ?5 P8 q" H1 P% G: E( \00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]) I' T/ {# M a: \- Y" P$ ~
0040312D E8 C4550200 call qsr.004286F6
( C* i- v' \( E1 `8 O00403132 8B00 mov eax,dword ptr ds:[eax], a% G# U& L8 U- F% o) ^3 P0 e
00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]4 [' b: Y; K3 }5 W
00403138 50 push eax4 @7 D% ^8 H! ?' l1 w
00403139 C64424 40 04 mov byte ptr ss:[esp+40],47 v9 ]+ ^# _' L. N. u- i( K) h
0040313E E8 4D560200 call qsr.004287906 ^3 _/ Q7 R' _. L, M# ^; G
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]5 p" ]% w- {: T0 X8 z% t0 A
00403147 8BF0 mov esi,eax
I# f& L- I: J3 H+ T! e& q00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3
# f# G" q5 S( F) ^4 o0040314E E8 38C30200 call qsr.0042F48B9 s7 C; ^& R" w( y9 I3 V+ P9 q1 e
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]. g) }( ^- e1 @4 G8 W
00403156 B9 3E000000 mov ecx,3E
R1 N& v1 e" X0040315B 99 cdq7 U; @7 a- u4 r' K8 j/ y
0040315C F7F9 idiv ecx$ [7 o: f* S f' ?! w% b4 B0 N
0040315E 6A 01 push 14 z! t) o5 h) c: T& M# J
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]# r' z3 p) q* M4 _
00403164 8BF2 mov esi,edx
, W( N7 e. B! N4 {6 M/ D00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]# x$ W: M. S+ N$ Y
0040316A 52 push edx
9 j# q3 |. Z) d0040316B E8 0A550200 call qsr.0042867A" p/ A8 Y- t- C2 n. S+ N8 m
00403170 8B00 mov eax,dword ptr ds:[eax]* K- R5 ?+ L9 X+ l: D$ R$ s
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
. n, S) s) W% N- a e00403176 50 push eax$ Y! ^0 T% P2 c& o- x, @% n8 M
00403177 C64424 40 05 mov byte ptr ss:[esp+40],5; \# y8 ~9 C# q3 U7 ~7 q* F4 m
0040317C E8 0F560200 call qsr.00428790& |: J% d2 e8 z4 V# V& S
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
1 _1 n2 D$ y4 n00403185 8BF8 mov edi,eax/ |& |! u" i9 z. Q' N& z
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3) J/ s& B" X7 M' J. [) F! t
0040318C E8 FAC20200 call qsr.0042F48B1 _" U% [0 I! h8 H5 R0 z( i* R
00403191 8D47 0A lea eax,dword ptr ds:[edi+A]2 ]+ O& B. U9 T5 r: h! [
00403194 B9 3E000000 mov ecx,3E
/ [3 K2 L) x4 Q8 R* b' G00403199 99 cdq
1 ?* f: A& |' M; R( M* I0040319A F7F9 idiv ecx
$ h; s* O% I' G' b* {, u: w0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]
$ B7 _% G$ e% U; W. X004031A1 894424 28 mov dword ptr ss:[esp+28],eax
. X1 y7 A* n! q0 I4 H9 }$ m004031A5 8BCA mov ecx,edx
# H- v# Y) {1 M4 V! X2 e004031A7 894424 24 mov dword ptr ss:[esp+24],eax; ~$ o3 l* D* ~8 M# p* V4 _4 S1 M
004031AB 894424 1C mov dword ptr ss:[esp+1C],eax& W) z @& m% @7 E
004031AF 894424 18 mov dword ptr ss:[esp+18],eax9 s) x- j4 d( `8 i% V3 v3 M3 A
004031B3 894424 14 mov dword ptr ss:[esp+14],eax
) _4 Z- n' O2 T9 e) N1 x2 D004031B7 894424 10 mov dword ptr ss:[esp+10],eax1 V" s/ I7 t/ D8 [' I v4 P6 O
004031BB 8BC1 mov eax,ecx
6 I1 s' W$ t- s8 W) Y, b004031BD BF 0A000000 mov edi,0A0 b. T+ s5 s5 [( P
004031C2 99 cdq! s6 M/ D. s) f' t* Q; p% d! w
004031C3 F7FF idiv edi
0 x8 @+ i E- I3 {; @004031C5 8BC1 mov eax,ecx
) l4 ^. S' p7 ]$ ]004031C7 B3 0B mov bl,0B
% b# ?9 c& B# B004031C9 0FAFC1 imul eax,ecx# ~+ M/ z' \* M- U) z
004031CC 8BCF mov ecx,edi* M5 s5 ~5 v5 e; b) Y% \& F
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl) e! k' ~9 `( J, U+ K
004031D2 52 push edx
; P y: N1 e& T6 a' n004031D3 99 cdq
$ O. q4 E ~4 ~004031D4 F7F9 idiv ecx' Z4 ]" q! [, D* p8 I+ y F
004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]( }% |4 T* Q2 [5 r, i* M
004031DD 2BC6 sub eax,esi
. F0 c) Q# D8 X$ C- h& B& ?2 E004031DF 52 push edx- H' ~* R0 K, q5 T E |5 O7 g: E
004031E0 99 cdq
; A) s/ v" Y9 j8 S1 r004031E1 F7F9 idiv ecx$ S5 ?- M& X+ p' O" f
004031E3 8BC6 mov eax,esi
- D+ a+ C B! p/ n" c. F004031E5 52 push edx* x% A$ u7 s2 k4 p# Q0 R! g6 O% g
004031E6 99 cdq- n! P5 F& e. V" N& t9 g/ X: x0 e3 a( W q
004031E7 F7F9 idiv ecx
4 L3 h8 |6 b& c0 M5 b004031E9 52 push edx
6 b W1 t1 f3 p" {" p004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
- H N" l x7 |1 V! x1 T( Q004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
9 `& Q: T$ p4 ]1 i5 ~+ R) B2 W- T004031F3 52 push edx4 Q4 D8 [: u4 m7 A4 J: y4 r
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893. E9 B% S8 K4 M4 Y. a) j8 J$ C
004031F9 83C4 18 add esp,18
P1 F w+ ]7 i$ p" h004031FC 6A 04 push 4- F" S ]$ w1 c1 }9 w. O
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]
* ]: h" q; d( c1 T! I! x* O00403202 6A 00 push 05 M, v6 x" K- e/ R: Z2 @3 F
00403204 50 push eax
* X" O7 ^3 f, t$ a- Z00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]# {8 U) d2 p( t0 b& v7 h
00403209 E8 D6530200 call qsr.004285E42 U3 ~) e, m5 a
0040320E 50 push eax8 k7 B7 E5 g- R5 [9 E0 P
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
$ N) P* w2 A9 e8 @00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C' d- l- ~2 g L2 m# `: D" J
00403218 E8 A7C30200 call qsr.0042F5C47 v/ z+ t* F3 d) \5 H
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]4 n& c Q, ^ b# m- N
00403221 885C24 3C mov byte ptr ss:[esp+3C],bl
0 Y; S1 T& F$ y' K00403225 E8 61C20200 call qsr.0042F48B
. ]! z' _# c( w3 x/ F h9 T0040322A 6A 04 push 45 \0 l4 Y! i3 q/ c# \( T) S
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]$ ^! q1 S: q7 w
00403230 6A 05 push 5
% Z. R% _- F4 o0 c/ U8 f00403232 51 push ecx
) H2 _! H2 D9 a1 j, |: N; q00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]. W; [1 g9 x( o! x/ I- P
00403237 E8 A8530200 call qsr.004285E4
% p8 G8 g- [, L# _* Y# u0040323C 50 push eax
6 ~. |. {9 S) P5 s0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
9 \' s; O* W" `' a; |00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D
3 h4 j. b9 T! b- \( M- f% w00403246 E8 79C30200 call qsr.0042F5C4% Q$ p/ c; l: D
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]4 D+ V7 [. d9 {+ p8 h6 w3 r
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl" Z8 T w+ U! f. t! p* f( y- c; n
00403253 E8 33C20200 call qsr.0042F48B7 P" r+ b3 A8 A6 w+ T. O
00403258 6A 04 push 4
! B0 U5 i0 N$ s9 v5 R0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]+ j* w- ^) {! r' U* R) T
0040325E 57 push edi" H( |# k. k8 C. Q, j9 d
0040325F 52 push edx
! M" H# h8 S& q3 c1 s% p/ ^9 Q00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
0 |: N0 Q5 Q8 R! h! C* z. O00403264 E8 7B530200 call qsr.004285E4
) b% N! ^% |6 u6 d* R) m00403269 50 push eax$ v1 F% O! z6 F
0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]: t' @! Z/ G5 s8 C h. w
0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
7 Y0 s! M0 R- w# s3 R7 ~00403273 E8 4CC30200 call qsr.0042F5C42 ?9 ~6 G. ~% J# G' ?
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]3 ^2 F1 W# X6 a v
0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl
1 i* F- O9 s6 b1 c- H, i9 d; B& m00403280 E8 06C20200 call qsr.0042F48B
' s! L! E( S$ n00403285 6A 04 push 4
) A7 d6 W( F# _5 s8 x7 O" _00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
' k; G+ A: b& o7 N5 K% A0040328B 6A 0F push 0F6 E6 L7 q' @; [( G
0040328D 50 push eax& o$ r6 }" |! Q5 {
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
* l( D W, g# C0 d& a00403292 E8 4D530200 call qsr.004285E4
$ u! _% c! x% h+ e- s00403297 50 push eax8 D$ d4 Y0 y3 r% S9 B2 }% V# ^
00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]) ]! @( x3 D9 H0 f
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
# o6 U+ z- W+ ?* ^# ]004032A1 E8 1EC30200 call qsr.0042F5C4; [; z+ I, b* e. H& c9 f# z9 ?
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]3 v: i6 [+ k4 F7 f
004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl2 V& r' T+ _9 }+ G G5 R, q
004032AE E8 D8C10200 call qsr.0042F48B
5 J% }9 A0 [# m, s004032B3 6A 04 push 4
5 ^" v; ^) d, ?% i1 C7 }2 Y. V004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
' k8 }+ A1 G3 v, s! [& x9 |004032B9 6A 14 push 14
& m z; r/ P) O1 k+ V0 A004032BB 51 push ecx
3 Y+ a3 ~6 p9 T$ |8 r2 ]* ]3 a004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]4 c8 @2 r3 v/ F) F0 W
004032C0 E8 1F530200 call qsr.004285E4
1 K$ ^7 F; m3 N004032C5 50 push eax: H. k, v8 h% c9 x: r0 w/ \
004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]( R1 O1 P/ R* e9 z" ^, W; m: Y8 ]
004032CA C64424 40 10 mov byte ptr ss:[esp+40],10
- N8 a( q$ Z9 C( l. j( B) u004032CF E8 F0C20200 call qsr.0042F5C4
8 u v) q: z6 ?6 W/ d& z004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]4 H9 x5 B, y: ~6 |# o0 W9 q
004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl) ?7 ], Y) ]3 |& ~
004032DC E8 AAC10200 call qsr.0042F48B
0 m7 y/ k0 g* ]. n! s* h. s004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
3 L q A& E w0 N" T004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX( n9 T* O) E8 \
004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
7 w0 u/ e% I9 W004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL
8 o. b$ A$ p9 b& n004032ED 8ACA mov cl,dl ; DL送CL
& O2 `& v& v$ n8 r8 x9 F# |004032EF 3AD3 cmp dl,bl ; DL和BL比较
0 O6 _9 ~# \- W' l( T004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
. U& T- B- D7 i! E9 i) N' J2 _004032F3 84C9 test cl,cl' c2 d% f3 d7 p* `' l: _
004032F5 74 16 je short qsr.0040330D% A7 @8 F. M% h# o4 L" i& [) k
004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL
& u( h' |1 [- t$ o: ^% F+ Y, Y004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL8 G/ I4 c4 m% S1 {% o$ W) P' L. k4 T0 v
004032FD 8ACA mov cl,dl
+ y3 H3 c! R2 Y! c9 }1 ]1 n8 u0 |) t" j004032FF 3AD3 cmp dl,bl ; DL和BL比较
' x7 ^1 Q! T" U0 ?00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
* h& Y# X4 y: P% M Y$ k- n00403303 83C0 02 add eax,2 ; EAX加20 \+ m' e4 _2 k( b+ K9 ^7 j
00403306 83C6 02 add esi,2 ; ESI加2: @+ n* v9 p' O
00403309 84C9 test cl,cl- l6 h+ I5 q8 u
0040330B ^ 75 DC jnz short qsr.004032E9
. H* r. r a9 [* W5 K7 x3 X0040330D 33C0 xor eax,eax( Y- B L! K. P% ?$ Y
0040330F EB 05 jmp short qsr.00403316
. s i, w9 I* U7 n; q00403311 1BC0 sbb eax,eax
; x( i4 F, d' \! E, y! `3 c; C! Z- |& |00403313 83D8 FF sbb eax,-1. |5 ^8 c4 k n, X
00403316 85C0 test eax,eax
; Z( U& h1 Y0 I# B0 V1 o00403318 74 0E je short qsr.00403328) P# \) s Q& S7 C) E0 Y
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A s& y& Y% t6 K0 K* ?* o* N+ ?
0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
; @# o7 c7 K! J3 ]# Q& A00403323 E9 F0000000 jmp qsr.00403418' l) m8 C3 b, z' q3 @( J
00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX9 ?% B: l A# V% s/ C. c1 f* x
0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]* S, l$ d. G) n" ^- _
00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]
3 R7 T7 k" `4 n3 U: N- G. N- V7 J00403333 50 push eax" H* Y3 r3 v4 f% S b! J
00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX4 j. R0 J; N& H. q6 a% T
00403339 50 push eax' [" `: D. c$ q z0 X6 N# I
0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX' w! c7 _# ?& a
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
7 V; K* K: E( E7 {4 m+ X4 F) J00403343 83C4 04 add esp,4# f: d4 h. ]- `7 q, _3 v
00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI
. v3 d9 Q- n z00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]9 |) H$ V* f/ B% ]/ [
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
4 \3 O- C$ ^0 @3 Y+ d3 S' k0040334F 50 push eax d% D* b4 o5 I6 _6 I: ]
00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX. O# E/ J# z6 M( K* I' D
00403355 50 push eax
# i0 {; |# V' L% s F. Z00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX7 H5 ]: X0 P8 u* G6 C+ X
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX9 N) O+ h$ q5 \& J
0040335F 83C4 04 add esp,4: E3 A6 v3 F5 D4 a7 M
00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI
( {4 N( p* S+ ?% X, g' ^' Z9 ]* `. x00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
: L7 ]" R c8 ~: S4 w, V00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]! P5 J% I" w" R
0040336B 50 push eax
1 I( k8 r) v. D# R C" h# C& T0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX' g0 g# Z$ {5 F1 A) \, q+ h2 H
00403371 50 push eax1 B% v$ T5 g- @' M( _3 M
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX
/ F% x# @* L# ]+ w9 [! E00403377 8BD8 mov ebx,eax ; EAX送EBX
5 U! K# e. Q1 I# ?00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX4 ^+ m0 P# _; t
0040337D 83C4 04 add esp,42 ]# f0 O9 Y2 }
00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]' @3 @; u) p0 F: T4 R
00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]
; P( q+ \8 |% `: R! `5 ]00403387 50 push eax [$ l% o& d, ^
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX1 t2 \' g& U4 b! z
0040338D 50 push eax, m/ h6 \* f/ A* g: a
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX- x! N: I" _) V9 g) X3 A: u2 |4 P
00403393 83C4 04 add esp,4
: r6 _/ q7 ~, ?' P. \00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]; i/ _8 ]' u. j$ |
0040339A 8BE8 mov ebp,eax ; EAX送EBP! X% h0 W4 R! {: E. ?5 `' X5 x
0040339C 6A FF push -1
# [2 j8 m7 N0 k$ h0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX% J5 T' W1 b* x5 o( l( y! N& f7 K
004033A3 6A FF push -1. T# n8 L; c5 y; v
004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
, h3 }/ `" \( S" r: ^! D0 D/ r. H" o004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
+ m" G, H! ?# X4 ]9 q004033AE 6A FF push -1
% C- E+ T5 {3 k004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX! L" m v- k' g+ _0 |2 ^( B8 ^) j
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX
; A9 u! V0 R' d9 g- b004033B9 6A FF push -1
; f0 ^4 t- B9 M5 J& c2 m004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX0 v3 r1 L, J. }; I1 [ E" K& ?" X& \
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX8 i9 l9 ?5 h0 R& W7 t6 H
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX: ?0 E& H7 o. Y# C
004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
$ m4 C4 P; Q+ o# l/ O7 K" q1 ^004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
$ N) K! O8 E+ o6 i5 x8 B004033D7 D1E0 shl eax,1 ; EAX左移1位4 P; x6 H! c6 N/ d C; T
004033D9 99 cdq ; EAX扩展! D' M5 g0 U9 J
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
& a# c% R' M( {$ |/ U2 P+ H004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较& U% C$ \ h; u7 h3 s* c
004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)
% @" j4 U$ E( L, g, l" S i( k004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A
6 q4 @) N+ D; P3 z. Z004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]' C( i* z! u+ ]5 L7 S' h1 g: o
004033E9 EB 2D jmp short qsr.00403418
7 z( D* V- I$ P2 j004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX. y0 Q( J8 G; b6 |
004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2
. c& ^0 ~2 R9 J004033F7 99 cdq ; EBX扩展
; C2 W, N) |( e- K004033F8 33C2 xor eax,edx ; EAX和EDX取异或
% p3 Z# Z3 {9 M2 a004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX7 n8 }, X' Q' f1 Y9 G0 K: A
004033FF 2BC2 sub eax,edx ; EAX减去EDX
8 U6 M s8 @2 U U# {00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]
( r% k5 h D7 Q) ]; H00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
5 c0 J4 `0 s4 K9 S! ]3 k5 f9 N# h00403409 99 cdq
" m; } k! K5 t$ v# B8 k0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
: U6 {) [% F' E0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX
# \# d0 ~ s/ c" X4 g00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较
: A+ x4 U2 j) j9 w! m00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)6 R) F; i# n& T4 I3 K
00403418 E8 6EC00200 call qsr.0042F48B ;
7 m7 y1 n# q: b0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]1 Y# H; O6 c- y
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9
8 P1 o* B/ t+ J* q! _# F00403426 E8 60C00200 call qsr.0042F48B- Z) y0 @+ [9 @0 H6 m- X) O
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]& e- i+ P h6 Z" ?/ g: ~8 x
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8
% K8 s! g) a% T3 v0 o8 ]00403434 E8 52C00200 call qsr.0042F48B5 c9 k/ l9 W u* _( d
00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]1 b& h" l& m! T2 X
0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7& X7 ^# X6 e# {( R* _4 @# H3 ]
00403442 E8 44C00200 call qsr.0042F48B
) T$ G- d; F! u% ~00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]5 ~; G5 H! K% p3 x, y
0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
& T' m5 F8 k o6 X( P00403450 E8 36C00200 call qsr.0042F48B
( y$ k% a) C$ D1 b) n3 {00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
% q2 F2 Z1 f1 G# W" T( B00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],35 c3 |; s5 _+ t' ]9 d* \
0040345E E8 28C00200 call qsr.0042F48B" I) f8 Z2 r# V, c) n' ]7 {
00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]8 S8 l7 Z! J8 o c# i8 V
00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
% ]5 G6 ]4 _6 L0040346C E8 1AC00200 call qsr.0042F48B
1 E3 F$ b) x# u# J00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]" e7 X9 B; x, }
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1) E6 a; x7 d+ [2 x! @; Y
0040347A E8 0CC00200 call qsr.0042F48B- l* o' q6 y) ^/ b
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]. f% ~9 F `% W( O/ T3 [! k
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0+ o, l }; j) k& g! M- z
00403488 E8 FEBF0200 call qsr.0042F48B2 b$ L5 o7 k' e! O! a. b$ B
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
/ t' ]/ I4 {% C g00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
/ l9 d L9 H7 s- _, p( c& a00403499 E8 EDBF0200 call qsr.0042F48B* F @, Q( w) D2 D' C+ V
0040349E 32C0 xor al,al ; AL清0
. s7 \8 x" w9 V004034A0 E9 88000000 jmp qsr.0040352D
+ K4 M7 k" @+ I8 U7 F004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~; [3 ^7 q/ X4 M
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]$ ?" u/ x2 G& L6 V9 g' T7 H
004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9
* u% T$ Z2 V0 `. E004034B3 E8 D3BF0200 call qsr.0042F48B |3 o/ Z1 `; `) S6 i
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
* p4 W ` U% V, R2 a9 l& }6 G: A004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],87 O- _6 b- [$ l; c
004034C1 E8 C5BF0200 call qsr.0042F48B
" d: q# m; o/ Q. @004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]* R' O6 u+ K+ i' s) F/ e# \- b t
004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7# G* X# k& _6 n! y" F2 r
004034CF E8 B7BF0200 call qsr.0042F48B3 `9 h& e' H9 u2 X6 @$ |
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
( n8 V& Q t8 F' N( l004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6( o$ X8 ^0 i- t7 W
004034DD E8 A9BF0200 call qsr.0042F48B" [4 q1 D3 M! F: L
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
$ ]6 J9 I1 w8 w$ U& v0 t9 V: Q+ T004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],31 Q, n& h" M. q& j' j5 C; k: M
004034EB E8 9BBF0200 call qsr.0042F48B
5 m$ a1 A% i+ p, [2 X: n004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]8 O2 {! O8 r5 E3 M+ f- j
004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2 X: f4 Y* U2 m% c
004034F9 E8 8DBF0200 call qsr.0042F48B5 k$ p$ q% [, J' d1 v0 y
004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]. Q5 E3 s1 z9 E! } e" f; y% {
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1' k& r o( q) S; [' S
00403507 E8 7FBF0200 call qsr.0042F48B
' C( I9 }+ ~4 _0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
7 f) t) I/ z l& H4 ^' A00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0
. c. P$ P! \2 T3 I* C4 @00403515 E8 71BF0200 call qsr.0042F48B c5 `- g. K- J
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]6 n+ H: J0 T. l) ~
0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1/ j6 y8 R# i4 c# J( Y' P, f4 I
00403526 E8 60BF0200 call qsr.0042F48B
6 ~" I" C$ a( \' Q0040352B B0 01 mov al,13 K0 P- c% L' r
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]: Y. S4 _9 Y; O/ o! H6 R
00403531 5F pop edi% _5 Q4 Y# h1 ]
00403532 5E pop esi
1 z, _ f# P/ I; _/ g00403533 5D pop ebp
3 H) i Y9 d7 C# U! X00403534 5B pop ebx" L3 B; Q" Z6 Z8 O( o
00403535 64:890D 0000000>mov dword ptr fs:[0],ecx
( d s: H6 m' d" b7 l' B& |0040353C 83C4 30 add esp,30- G% h, X+ j) d, Y: s
0040353F C2 0800 retn 87 |6 o0 _0 Q5 ~ A; H
--------------------------------------------------------------------------------4 T0 c2 }& B, b% s3 _
【破解总结】
1 t3 a- T+ o+ o/ z7 q 用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^5 W# T, f8 H/ g2 @ i( U% c7 A
用户名:yijun7 |, F2 `! A# k# }* S
注册码:4893*7777*3726*7777*0529, P- N* I$ p! D. o) Y7 s" R1 W. r
--------------------------------------------------------------------------------
- u( ^: @; E& W8 Z; ]8 A【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡