|
|
|
【原创】破解Quick Screen Recorder
8 F3 s, I/ M* o【破解作者】 yijun) ?% j2 p1 U# X! z$ z3 i B
【作者邮箱】 [email protected]
1 j3 g C% [) r; D3 V x5 q" W: k【使用工具】 OD,PEID
$ G: u$ b8 p4 Y" V* A2 v0 t【破解平台】 WinXP6 B9 k* K4 f/ u% v) h
【软件名称】 Quick Screen Recorder* p3 g3 w1 A) n" p
【下载地址】 天空
0 K4 X5 T4 B% t3 ]7 H【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on. 4 m) \. w$ |* |' J& V, Y
【软件大小】 540K6 |2 a8 J: v& D' W! K% ]# }
【加壳方式】 无
R' u7 [9 }3 y. ^! u$ R【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)8 Y2 f' F; v5 s m
--------------------------------------------------------------------------------
/ \# s* w, O) A% Z. T【破解内容】& z& S; [( S; Y( V
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
7 A" a; z9 _: G- @ j1 P4 U( y* g' W00404C69 55 push ebp //在此下断
/ f: w4 z2 C" j; s& Q8 [* K) B00404C6A 56 push esi6 O9 ~# S7 j; T K
00404C6B 57 push edi
; ~+ v9 j" A" ]$ e6 @00404C6C 8BE9 mov ebp,ecx
4 a& s9 \; e0 }7 \3 r00404C6E 6A 01 push 17 V) l& v; O1 x0 Z, Z9 R7 n
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
( {* c; K. s3 n" v% V4 i# O/ f00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]
2 d' W) v. c$ e" q0 R00404C78 8BCF mov ecx,edi& x& Q1 J8 N2 m1 u7 n: d$ p
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码
0 `4 M! c* ]/ p8 O9 X) A# D3 i00404C7F 8BCF mov ecx,edi0 `9 f* z5 N6 W! c9 r; o
00404C81 E8 A73E0200 call qsr.00428B2D* K. M8 h% y+ c/ A0 j+ g
00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
6 O: W+ u5 j3 I! |; n0 H5 E00404C89 8BCE mov ecx,esi
% j4 s" q) k! @ c5 [: }2 M00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX
3 A5 W, K9 W4 R3 i00404C90 8BCE mov ecx,esi' b7 D4 I9 ~- t8 H
00404C92 E8 963E0200 call qsr.00428B2D
0 T* K# V' @3 w3 J" z1 ~5 }6 c00404C97 8B06 mov eax,dword ptr ds:[esi]
3 {* u1 c G0 W, G4 m00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2& I4 \# ]; s2 z! c
00404C9D 7D 26 jge short qsr.00404CC52 }$ f( c/ J- P% b5 t) S; r/ s. n$ r$ f
00404C9F 6A 40 push 40! h" @( L: e( T E) a* C# A4 W
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
: o, l& m8 _# O: @5 d- g9 }00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."
8 ?! T! J0 L+ ]8 j5 h3 s; Q00404CAB 8BCD mov ecx,ebp
% s9 e7 C. n/ F/ D' I00404CAD E8 C3840200 call qsr.0042D175
2 }4 f/ o ^, r; i6 u5 `* d2 h00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]3 Y0 b" g, j/ }0 R5 @. j
00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx: |. Z4 `& k& \: t) c* T
00404CBD 5F pop edi `: S3 s% }* Q. D' ^; i
00404CBE 5E pop esi' G# R: s" v9 L# C' `0 C6 f1 l
00404CBF 5D pop ebp
- @" P( J7 ` W/ j1 T00404CC0 5B pop ebx' x ~+ H# o1 l/ J/ C; l; l6 M! u
00404CC1 83C4 18 add esp,185 ?% x$ Q3 r) b: D2 R) n4 z7 n) A
00404CC4 C3 retn2 t: W: W4 Y; \4 E
00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]% J; w5 h/ \) {* A4 o( `$ {
00404CC8 84C0 test al,al
+ `# L+ U+ e$ @/ e6 w00404CCA 0F85 1C010000 jnz qsr.00404DEC9 r! z' U8 P3 H/ M/ @" | D/ Q' m
00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
% ?. p z+ `5 x6 n* c& _- j00404CD4 E8 87E3FFFF call qsr.00403060. w. V5 c; c% V6 a) d
00404CD9 51 push ecx: R" K/ V K1 k3 g, d! g
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
" y- ?2 J4 @' v c00404CE2 8BCC mov ecx,esp5 N5 s6 }) D5 i0 ~0 T# ]) S9 i
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
: P( d. P8 K! _! N" K* J00404CE8 56 push esi9 S1 s: ~( S9 } E
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
! y& r$ }- w6 v* T- h00404CEE 51 push ecx, x O, s4 L8 W/ w7 D1 g) a4 U& V
00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1
/ C+ H3 `; ]* s" G( z4 `/ d00404CF4 8BCC mov ecx,esp
: \8 `5 O t6 g" X: F6 U. A00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
7 S& b% r& p) M2 G s3 H: [00404CFA 57 push edi
% d% n' q" A: V b& \* B00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0
# V& G, x7 I3 s0 u00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]# B. b: c- u( D) T6 M: o
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0/ @6 k \8 q1 k. S
00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~" |" C: V( B) [! c/ t$ [
00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~
: b/ r6 r' Q, u' Y5 [00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~6 S6 s1 G% | ?5 I. E9 b
00404D12 6A 40 push 40( f- s+ f3 s) c, m
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
E2 K9 M$ \0 X# b' |% g- q" T00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."
3 h. n, g: \8 h' T5 D00404D1E 8BCD mov ecx,ebp4 ^( c" n& X6 W) a5 w, M" H
00404D20 E8 50840200 call qsr.0042D1754 y$ j5 m3 e P0 z* Q$ m
00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
7 C. l0 u, m1 F/ q/ L0 }2 b7 [00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1$ b U9 k5 Q! ?' v+ ^( Z
00404D31 E8 5AE3FFFF call qsr.00403090
* p4 P3 `# ]2 k, V( g) E5 V' ?6 l- _00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
0 e+ ]" N; x9 L( `6 E% ^00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx& K7 \6 v6 T* q$ G X
00404D41 5F pop edi
) c b: D1 A5 R( n( H8 ]+ V8 i00404D42 5E pop esi
3 v3 u, a: \5 s! B! u9 P/ X: S00404D43 5D pop ebp
. j8 L: F' ~, m00404D44 5B pop ebx
0 x, |. O8 X& w- u" x00404D45 83C4 18 add esp,18
- [" h/ ^+ [ K( U2 f00404D48 C3 retn1 k" T" c; [7 p+ {9 b7 `( y
*********************************************************************************************************************************************************& z" a, Q8 r h) s) i
跟进00404D09处CALL来到:6 C! ?& G3 {7 }4 G
004030A0 6A FF push -1 //一路F8下去~~~~* d, a% C- l" f% a7 X$ m: q
004030A2 68 C88F4400 push qsr.00448FC8
& ]$ ]0 N! D2 y004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
" K2 p2 i R/ S0 d* c: o1 y/ V004030AD 50 push eax' m: X5 _+ ]# w$ b# _( m2 \
004030AE 64:8925 0000000>mov dword ptr fs:[0],esp
" i; Z5 Y. i& R! z5 o004030B5 83EC 24 sub esp,24% W5 R( |! P, j% S3 T7 V
004030B8 53 push ebx8 X H; F# T w& ]9 Y* r
004030B9 55 push ebp9 Y$ _2 W5 f2 H& ^& r( z
004030BA 56 push esi
. r# W) k8 {3 `. j, d, P$ D004030BB 57 push edi" Q) a# |2 s! \. @) c* p
004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"
$ E+ z( i2 ^/ e1 Q004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]% k, w7 }4 a z) |
004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],14 g: l+ [( U* j( u6 |- o4 [3 y
004030CD E8 27C40200 call qsr.0042F4F9' ?2 [% U: P% V5 ^
004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]3 `; z$ `$ c V1 V; i" O+ P
004030D7 894424 2C mov dword ptr ss:[esp+2C],eax
, I% l# E( m- e+ [) R0 L$ G8 a004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]$ z7 ^6 ^; K) ^
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
+ D7 M. R+ e z+ J( O004030E4 E8 905A0200 call qsr.00428B794 d$ L2 w. {4 i. J3 g' z
004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]$ d9 l; A: A$ Z3 ~: }! x
004030ED E8 3B5A0200 call qsr.00428B2D8 k* _: C) s4 D6 c/ v$ ~- M6 [
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]+ D1 ?, F/ d, N* o: S
004030F6 E8 7E5A0200 call qsr.00428B79# i# a- w: i0 t3 T" ^' e3 d ?* A
004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]/ @% I! v9 N) q0 Y! I
004030FF E8 295A0200 call qsr.00428B2D) P1 p% J; a9 @
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]
7 `' E; ~+ I* Q$ ?00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]5 A2 j: ?; v. p* O3 E. X3 q
0040310B 83F8 02 cmp eax,2; a" U1 I4 }% a6 w5 \) U% L
0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
; z; { O* m8 K. ^( S' I00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]% f' s1 o& d, M. d4 N& t2 U
00403118 837A F8 18 cmp dword ptr ds:[edx-8],18
! y# v. d- U2 U" u" e1 z0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳
0 [ v2 Q( p+ w# F0 ]00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]1 m! I/ B1 d7 c% b) A1 N
00403126 6A 01 push 13 D# X8 ^' Z1 Q; D' u% I6 ?" m
00403128 50 push eax! a5 N2 l0 X. @' o
00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
9 F0 b Z! d+ L$ F2 @: g' \0040312D E8 C4550200 call qsr.004286F62 } n$ K8 O) h$ o& R
00403132 8B00 mov eax,dword ptr ds:[eax]$ _0 s r4 {) I: b: [' d
00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]' I) A4 W5 m% z9 |7 y/ b
00403138 50 push eax
% s* `( C. C3 L4 u `3 m, I8 Q$ `) ]00403139 C64424 40 04 mov byte ptr ss:[esp+40],49 k* W. _2 @3 B. w
0040313E E8 4D560200 call qsr.00428790
- H' o4 |7 d5 T; Z00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
3 ?( r, i( d, m" |* l* Z2 X0 G00403147 8BF0 mov esi,eax
& e m! u3 c0 S7 y: j00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3
7 W. s8 O0 L4 R$ B0040314E E8 38C30200 call qsr.0042F48B
* U: A$ U, l& W' E4 i1 z00403153 8D46 0A lea eax,dword ptr ds:[esi+A]: d8 F$ `5 y& ^4 g
00403156 B9 3E000000 mov ecx,3E C4 X3 F" F' e& U
0040315B 99 cdq
3 k) K! o/ N- k! k0040315C F7F9 idiv ecx& O; O# E. C) ]. g5 B! |
0040315E 6A 01 push 1
" J; b) h, M# K8 Z00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]) G; h: l. |0 [8 B0 N& t
00403164 8BF2 mov esi,edx9 R) U; b+ m4 ^" ?
00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]( M5 G. l$ j/ j, W" @
0040316A 52 push edx2 K3 A$ L, z6 u7 x1 m, V
0040316B E8 0A550200 call qsr.0042867A S; q& R/ r# C1 J1 ~
00403170 8B00 mov eax,dword ptr ds:[eax]2 w% m3 V( \% A# Z% b9 m
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]; M, y. n% c" `5 u, F3 a
00403176 50 push eax1 @/ u+ Y, ]# S' a$ l
00403177 C64424 40 05 mov byte ptr ss:[esp+40],51 x8 t% |+ n3 F6 Z3 S9 y
0040317C E8 0F560200 call qsr.00428790
/ I& p# k0 s0 j5 H% Q$ v6 i6 L' p00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
( }$ B' X% x: ^/ a; k ?8 l00403185 8BF8 mov edi,eax5 n, d) o m, u* l; G
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3
' ~7 c1 y" u4 l3 l7 G/ Y; }0040318C E8 FAC20200 call qsr.0042F48B1 u+ ^$ c! h3 e5 H4 o
00403191 8D47 0A lea eax,dword ptr ds:[edi+A]
8 G# J9 Z2 S4 e- V% ?% a2 w00403194 B9 3E000000 mov ecx,3E
2 n5 L4 a( j/ K3 b$ M$ P00403199 99 cdq+ e2 r! d( A5 J O; v% R
0040319A F7F9 idiv ecx
& N0 Y5 P) l) r& ]2 `( |" }0040319C A1 38F44500 mov eax,dword ptr ds:[45F438] E& p" A' p1 E0 v @- c+ E8 V) ]
004031A1 894424 28 mov dword ptr ss:[esp+28],eax
! m k- H4 ~6 t% w7 L7 n/ ?, F004031A5 8BCA mov ecx,edx3 a1 u4 H/ i4 Q4 `8 h
004031A7 894424 24 mov dword ptr ss:[esp+24],eax
" T1 r8 g7 o' A; J3 y9 I( m8 e% t004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
8 @0 Q+ b0 Z; {# f: P004031AF 894424 18 mov dword ptr ss:[esp+18],eax
\3 n8 E. S1 ^! ^$ M- I* j004031B3 894424 14 mov dword ptr ss:[esp+14],eax; {9 p, K' B6 R4 V/ ^
004031B7 894424 10 mov dword ptr ss:[esp+10],eax
! x( N! p4 D; C004031BB 8BC1 mov eax,ecx
, {( J" r' E( \" K+ Y0 b: T- f004031BD BF 0A000000 mov edi,0A ]" x$ ^ r& ?, |' m( v% l+ q( F
004031C2 99 cdq5 s$ w: s7 y+ F1 m" [
004031C3 F7FF idiv edi
+ x( |& U8 ]$ N004031C5 8BC1 mov eax,ecx
+ t L: a& A y. f: O4 d( M004031C7 B3 0B mov bl,0B
5 \ x' ~3 P1 Y6 e% d" i# r004031C9 0FAFC1 imul eax,ecx
7 j+ H- h* |0 o% F* }0 u8 ~1 \004031CC 8BCF mov ecx,edi
, c1 R$ m& ^1 J* s% V1 @# k004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl- V% r4 D# @9 {4 F: B7 e
004031D2 52 push edx2 |9 R) L* g( o4 P, w, j0 ~
004031D3 99 cdq
' i. H8 H6 w o+ r004031D4 F7F9 idiv ecx, O# h: l& x3 x) v: s( t3 @% w
004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]. f- s6 J' K/ h' }4 C" `. T0 Y
004031DD 2BC6 sub eax,esi
/ v8 z! M1 S: q) M; `004031DF 52 push edx
2 _8 E$ }. L: n8 [# n, J5 X! p' {- \. ~( b004031E0 99 cdq a8 n L) K; d2 ^
004031E1 F7F9 idiv ecx* A% G* F# q U' j9 s
004031E3 8BC6 mov eax,esi, p6 o9 j8 ]! w8 S
004031E5 52 push edx
" _; _$ f) ~4 l+ R# C5 _" H3 c004031E6 99 cdq
5 }$ o. x3 N- D004031E7 F7F9 idiv ecx
* p* i2 @5 D+ g* T; I004031E9 52 push edx x/ p% p; q: A* Q* ]
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]" R4 @3 c- Q& X
004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"9 T& d0 N& h6 t! @1 M1 V, U$ @
004031F3 52 push edx3 E8 w" g2 Z* s) F& H/ X
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893" }' J6 ?2 Y: e( m! [6 f
004031F9 83C4 18 add esp,18
% o6 g9 g* s/ d* i' o' h9 X1 [004031FC 6A 04 push 4
+ X) C0 i: ^) b# p5 B004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]
4 C% ^/ h& s% F2 r! o00403202 6A 00 push 0
9 \9 w1 _+ ?7 _( Q) U5 i00403204 50 push eax
; X5 ^4 i7 O* Q/ f y% ]+ ]' C. ?00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
+ @; k; u/ p4 I- Z; q o7 h7 V00403209 E8 D6530200 call qsr.004285E4
( c* R! d8 }; k6 j; b" T0040320E 50 push eax: L$ X/ D. C# G0 y9 y* @2 @; J
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]( I' b! h& _: R; Q7 c' S) f8 @
00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C! V+ {; N2 v; R4 ^3 } B; v
00403218 E8 A7C30200 call qsr.0042F5C4
- y' O& n* p* p& m& C* Z0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]2 C) j2 W) Y7 e+ i, w
00403221 885C24 3C mov byte ptr ss:[esp+3C],bl }& f+ Z+ U; s2 ~, }
00403225 E8 61C20200 call qsr.0042F48B5 K2 n- W1 X3 V: M* @
0040322A 6A 04 push 4
4 Q7 W. K( H% G" |3 `; m0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]0 [9 e5 }; f8 Y9 g3 R
00403230 6A 05 push 5
+ ]# P% a9 Y7 q8 x3 f$ i00403232 51 push ecx
+ |7 r9 z# U8 g1 O2 ^) r00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]# G8 m5 h1 @0 @- ^
00403237 E8 A8530200 call qsr.004285E40 F" t7 {1 D: b
0040323C 50 push eax2 a( ]7 I* U3 v6 i, E) X# A( d
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]4 r. e7 b$ H* }' N1 x Q6 [! q
00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D- p9 N' l9 k6 b! i, ?
00403246 E8 79C30200 call qsr.0042F5C44 h0 P+ L' a" y
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]. w, [& i7 p1 @% C
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl' G: \# ?7 Z+ R
00403253 E8 33C20200 call qsr.0042F48B
+ W2 L; o% R4 p# f00403258 6A 04 push 4
8 M/ W8 y; N( C( f2 e M+ i0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]
3 \2 S3 v) e8 D6 ?5 P0040325E 57 push edi
3 ]2 m3 Y* z* x% @0040325F 52 push edx
! T( `5 }, @) G0 y00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
/ O, X0 c$ h4 E, f Q% U. V00403264 E8 7B530200 call qsr.004285E4 E. t" p: t- A& j# V5 [) l
00403269 50 push eax
$ v, c2 D0 u7 G' ?% B0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]' S! g) b+ Y% o# a. x9 {' @# I
0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E, Y+ L' b* ]* ~" f& J
00403273 E8 4CC30200 call qsr.0042F5C4
8 c: f' l+ h% m6 J0 V5 @; g00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]4 B$ W+ A5 F) n5 c. C- k
0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl+ b% C% S' ]# [. Z! h! M5 W) Y
00403280 E8 06C20200 call qsr.0042F48B) t8 D2 d: ^! d+ ^* Y; J
00403285 6A 04 push 4
7 T/ x- l& |6 V6 B4 M/ t00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
9 Z7 X2 _1 ]6 ^0040328B 6A 0F push 0F
+ C9 n7 l& h( V4 |/ h4 G( W- S+ s0040328D 50 push eax% Y5 \# K7 I8 C' X; g+ J" Q
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
3 B: {+ F# Q+ ]4 E2 l7 T2 C# D00403292 E8 4D530200 call qsr.004285E4
1 H8 T) h* T8 _$ Y7 v/ @9 w00403297 50 push eax1 ?: N! S$ I3 m/ c
00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
, X6 y! J8 C H1 P" p' v0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F" j5 U6 S1 c6 M& {. W5 W7 N% k
004032A1 E8 1EC30200 call qsr.0042F5C4
7 @' I( d$ E+ n" X( R6 R& J. G2 H1 m004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]5 Q% r# f" t& g3 r! a0 g
004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl& q, S; ]. h# t3 y
004032AE E8 D8C10200 call qsr.0042F48B
2 t. \' R- Z2 I h9 @) H004032B3 6A 04 push 4
" A2 a9 {- L9 n/ n: C% S! O d004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]8 i2 r( t+ w. N! Z
004032B9 6A 14 push 148 l# y8 L! F9 t; O+ h* i( z
004032BB 51 push ecx p- _7 Y; S7 ~" `3 R8 X H
004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]0 b$ f0 E3 |8 I- j& ~2 U6 t6 |) L
004032C0 E8 1F530200 call qsr.004285E46 Y2 ?7 m* Z( B" W. b# I
004032C5 50 push eax
8 n3 L9 p# {9 e% [004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
H$ h% I% m# i' L004032CA C64424 40 10 mov byte ptr ss:[esp+40],10% N+ K+ Q `1 D# p
004032CF E8 F0C20200 call qsr.0042F5C40 L8 r+ Z6 g, g4 r* L0 H5 f
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]% W8 [0 D3 c+ G) Q3 b
004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl
G$ d9 W) T( R6 @6 n# p0 S: d004032DC E8 AAC10200 call qsr.0042F48B
: N5 h5 Z1 k. @3 B004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI! g* ^$ ?7 l, M" F
004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
. F: m% W6 }& y4 W& x/ i004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
1 ~5 q! i( |- s004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL; M. f `6 Z% ?1 c3 q' i- T4 d
004032ED 8ACA mov cl,dl ; DL送CL' x0 B- @4 ^$ x+ H9 `
004032EF 3AD3 cmp dl,bl ; DL和BL比较
! x+ r' i4 b" @7 y004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
! w$ \9 A: i/ s: A- c o0 p( ^, o004032F3 84C9 test cl,cl! G9 ^' U, A: j
004032F5 74 16 je short qsr.0040330D$ _: S8 p6 t( c$ E! D1 {2 f; ?
004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL, @ y* Y) E9 q/ m9 I; A7 S
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL
; s2 X" {1 |2 B! T& X$ u E: ~0 ~# Q004032FD 8ACA mov cl,dl$ ^( I' K8 z8 ~6 T
004032FF 3AD3 cmp dl,bl ; DL和BL比较
" b, _+ e' R2 t9 p3 ] g1 j3 ?4 C00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)2 k8 Z" i; m6 G, n4 v
00403303 83C0 02 add eax,2 ; EAX加2
. y# B9 C/ j8 a% L2 k$ a00403306 83C6 02 add esi,2 ; ESI加2
# k% M" h$ {) {) x00403309 84C9 test cl,cl; e& A' t1 R2 e' k4 d! w
0040330B ^ 75 DC jnz short qsr.004032E9- e$ A9 [6 P; @$ W$ w0 k
0040330D 33C0 xor eax,eax) @/ L( c3 r4 H- @: z( N
0040330F EB 05 jmp short qsr.004033161 v4 J v/ W# I# w
00403311 1BC0 sbb eax,eax
$ S% B& A& A: l! X00403313 83D8 FF sbb eax,-1' i3 j. ?0 p1 c. C/ Y8 E x
00403316 85C0 test eax,eax
& T1 t: Q. g: Q0 C' H00403318 74 0E je short qsr.004033280 i: I: o1 s0 p O" F
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A7 B) h) D' r$ |6 u' x
0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]+ i4 D& F! g% o; \7 p: T. E
00403323 E9 F0000000 jmp qsr.00403418
6 c* U7 `% F$ H6 u9 `' F00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
+ r$ o! U7 t/ ?/ x2 \0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] U8 O6 j0 m/ X5 ]) _
00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]7 y9 @1 l) M- J) p* c. Z# {
00403333 50 push eax
; B1 v) Y* ?7 d& t d6 u/ K+ s00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX, x' I3 q9 [$ f7 z; [2 h$ @7 g
00403339 50 push eax. y3 Q# K4 S8 i7 D' M
0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX
0 d, d6 e D6 C4 r. h+ m- n) I M0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX$ p4 k% h9 s9 L/ X
00403343 83C4 04 add esp,4 H0 u/ o8 V0 v( Q1 g+ |
00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI1 U. b; O8 ^# L4 P" _
00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]
9 r- P+ B+ k/ L) X* o1 Q( @4 n0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
, ~- `# y. ^/ D8 E2 x2 l( Y0040334F 50 push eax; f4 j4 j* `. t
00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
a' V( ]6 ^4 ^9 E: ~9 p9 W8 R2 |00403355 50 push eax; ~* l. V, Y: v" x- }, ^8 D
00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX
' J- Z; b8 i/ ^, L2 M, {0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX p, x4 A9 _- [) i
0040335F 83C4 04 add esp,4
7 j% d' z- i, V7 g5 H+ z00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI
) B* m2 W5 C6 J, W4 O c1 T& l, k; N00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]" f3 I( z& O( n' h2 @
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8] x, P% e+ F* m8 t2 @4 `1 g- s
0040336B 50 push eax( l" O& T: J& H$ e: Y b
0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX" k+ V" r3 \5 {
00403371 50 push eax
; {3 l& t+ i+ M2 Y3 D2 s2 m, J00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX+ d/ L. T3 a0 \
00403377 8BD8 mov ebx,eax ; EAX送EBX
* H& I2 C3 w* w; O# a) g! t00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX( k8 b i7 O4 a( e& s; V$ w, O0 l
0040337D 83C4 04 add esp,46 m- q, G9 \* I# Q
00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]7 }# y& t* Y' N( o/ k. J3 r1 [
00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]
, ^; v5 k3 u6 Y) j' P00403387 50 push eax
6 c% N; v1 i3 R2 a+ A, E$ d00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX/ x/ r4 B: S6 Y7 V4 F& U
0040338D 50 push eax
5 j! w8 _0 ~+ i* o0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
6 ^) j0 A3 H0 M( ? [00403393 83C4 04 add esp,4
, l) e. l0 b2 }$ \' w00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
2 S* M- z( ` R) q, P0040339A 8BE8 mov ebp,eax ; EAX送EBP) A8 {! O# b4 u6 e. o5 p2 }
0040339C 6A FF push -1
/ z7 f( P. `/ B5 i0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX4 A6 X4 M7 e$ f
004033A3 6A FF push -1! K0 a0 ~3 a2 O5 H0 s6 K
004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX) k9 p. d" b8 D8 I) j! f/ a
004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
! D" j; n y3 k4 |004033AE 6A FF push -1
6 C8 ^( a$ e$ ]1 X) t! u5 `: M. _004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX
0 A2 a U( l; b! n0 w* }8 i1 l6 j004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX. x! X; g/ e; b
004033B9 6A FF push -12 A( \6 D( [! f* X
004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX
: l& t$ D) l% [004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX+ R& I# j) H3 M
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX' A7 E7 m! V1 Y7 b
004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX! p! B# [! ?( z: X1 |: r/ B7 e2 {
004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
5 t" C* x, [# M- b1 d004033D7 D1E0 shl eax,1 ; EAX左移1位
6 B2 I7 W# l0 z004033D9 99 cdq ; EAX扩展% Z" b! m% X ]* i" \3 s! I+ y) H
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
! L. \3 M7 h# g0 z; o004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
8 x' j3 P# V. a004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)5 Q r( J8 J9 f( \8 I
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A
+ Q4 @9 p8 y$ w% _/ v004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]4 ], e8 d) y- s3 [7 Q
004033E9 EB 2D jmp short qsr.00403418
- d# V2 Y* W p+ G& Y/ P004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX
1 M+ l, T- s7 O# z. ~2 C' r; G004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2
7 w% @" ~) g( g" s004033F7 99 cdq ; EBX扩展7 G# ]' Q7 h" _! B1 p: j/ q
004033F8 33C2 xor eax,edx ; EAX和EDX取异或
6 i) }, ^7 t: ]2 h; R$ C004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX* U }$ X" z: Z- N2 w% K; o6 `" N
004033FF 2BC2 sub eax,edx ; EAX减去EDX
" n/ C$ m# s+ \$ E2 ^0 B00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]
$ c5 }& ]1 w. v# P( s Y00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX/ j/ g9 M- v$ x$ ~# P
00403409 99 cdq
6 L4 @" E8 |! c% G$ g0 i0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中5 ^8 {% S& a) `8 n& ?7 i4 e
0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX
- ?* }4 t: E- }9 L( r00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较- Q( u2 Z$ p& G1 g
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)6 U: n+ l! @1 V0 T$ r$ Z) k
00403418 E8 6EC00200 call qsr.0042F48B ; $ H2 X+ [2 O4 ~6 a& l' p
0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
6 H2 u e/ m/ y00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9. ~3 X5 s8 Y$ L1 \9 a
00403426 E8 60C00200 call qsr.0042F48B
) C0 l; T. h+ K6 ^! ~4 c0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
0 k0 t. u" W" Y7 `0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8$ }5 m' }. ?( k0 c! ^6 L
00403434 E8 52C00200 call qsr.0042F48B( a; [3 E2 j( k# }/ J; v
00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
9 R$ X; E2 Y/ l; k& A" w0 g0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],74 C% y" M/ A, ]# F" `
00403442 E8 44C00200 call qsr.0042F48B
, b& G& w/ v9 }1 n, ^& F" V00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]! t7 Z( t5 j6 q0 r* r7 U: q: o" q
0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
) U4 u7 D w2 U; t5 G00403450 E8 36C00200 call qsr.0042F48B5 H5 z" C. Z# {! L6 G4 c& p
00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]) ?$ c' T, \' `" i0 @" a9 O
00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3& z, X, K* \* {" X6 f2 m: H1 U
0040345E E8 28C00200 call qsr.0042F48B
8 w. J5 K. k* ^* B, u4 E00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
9 W& Q9 w5 `' _- X, N' Z1 j00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
; z) o- t( t8 h6 z- D6 m t: y+ g0040346C E8 1AC00200 call qsr.0042F48B
% l5 d0 F8 R' f; x% J" V4 c0 _; H; E00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]8 y7 G6 o+ w# C) M
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1) w# w! `0 U8 q) t8 r+ x" u4 [" P
0040347A E8 0CC00200 call qsr.0042F48B: X+ o& u& Y z; A7 t( [0 }
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
! o' F3 ~; I5 F0 S3 N4 P9 M6 S9 X% x5 T00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0* F1 f* c8 l* V; K
00403488 E8 FEBF0200 call qsr.0042F48B( O3 p0 l5 k! x) Q
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
4 X4 `+ @; q( P0 ? Y, ^00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-19 z- N- u5 M% f d7 X
00403499 E8 EDBF0200 call qsr.0042F48B& m1 i# H/ w8 B* K8 `5 `
0040349E 32C0 xor al,al ; AL清0
8 {; F8 X: Y/ s5 q! E8 c004034A0 E9 88000000 jmp qsr.0040352D
, z9 o3 K0 e- \) O. M# ^. J004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~
# z0 p9 Y% K/ }( |004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
! H8 m: _5 [1 c' r- {& [004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],94 K0 H( x7 n( C. o2 ]; m( ^# D' I
004034B3 E8 D3BF0200 call qsr.0042F48B; @* f$ I0 w: {3 p4 G3 X/ a$ M5 P
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]" j, A4 J4 P4 k8 h8 N i
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
1 Z: V: n/ q9 N# \0 M# G/ j$ M004034C1 E8 C5BF0200 call qsr.0042F48B6 R; t# b! ?, y
004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
6 j0 _( m# e* \004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
% X& n! t0 {" ~/ a004034CF E8 B7BF0200 call qsr.0042F48B
7 T$ U$ W% C, z- ?) V, P8 P% Z+ c004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]$ n, I% V l4 m2 ^* N/ t
004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6
, T. r' n" g5 s1 \4 M/ C; S0 b# t004034DD E8 A9BF0200 call qsr.0042F48B1 p" g! @2 h3 i5 f" v. v* h0 M7 v
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
/ _2 y x' Y* b5 v+ N; L* S& \: G004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
) F7 q& a1 T# h: |2 y7 s* a004034EB E8 9BBF0200 call qsr.0042F48B6 P5 \+ K8 L4 X& E6 f
004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]" X+ f" n S( Z& E
004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2
& O; |% k' ] P- N/ A4 ~/ k( J+ W004034F9 E8 8DBF0200 call qsr.0042F48B
8 x5 R B3 G+ N: g! f m8 P( j4 h004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
7 s) q1 Q ?1 c+ M( [, a) e00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],11 E, }% M2 b1 j/ Z, f. }% y
00403507 E8 7FBF0200 call qsr.0042F48B
: H, N, f$ ~3 `- n4 l% p0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]3 K+ e3 h$ p4 Y
00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],04 K) l! N/ H, s) o
00403515 E8 71BF0200 call qsr.0042F48B
- Y& R2 t. _ L4 e' a0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
+ \4 m r1 H9 V: k! i0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
" n9 L _) Z! k* k9 A: X; m00403526 E8 60BF0200 call qsr.0042F48B" G" j) i* x4 m b6 E) y9 w6 y6 q
0040352B B0 01 mov al,19 d" C/ @( i, \0 \
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
, ~ c* R# n1 D+ [: D: O- |00403531 5F pop edi
/ r+ D6 L/ x( a8 K n00403532 5E pop esi
6 R" D* W" _: ^& P8 z00403533 5D pop ebp5 G5 G. Z$ g8 g. W+ X7 x
00403534 5B pop ebx) i, Y$ \2 d- |1 d7 P- p( R! F" ~
00403535 64:890D 0000000>mov dword ptr fs:[0],ecx
- b3 s: R7 C Z( |9 B0040353C 83C4 30 add esp,30
}, ]) `) P* z- J; M" f9 G; O# V; X0040353F C2 0800 retn 8
: O( Y" `# n8 J0 g K- V" V: R/ u. W--------------------------------------------------------------------------------$ I$ O, h4 P8 i, O4 K9 @! D4 o
【破解总结】7 F0 ?$ t8 Q+ ^& s4 G
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
% \+ R( P" {) ]& k/ ]; v用户名:yijun h" Y: f! u) E+ m# K0 X: z
注册码:4893*7777*3726*7777*0529
& b1 _$ j3 T% T9 P4 E( J--------------------------------------------------------------------------------
$ G- s; k# _& n【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡