|
|
|
【原创】破解Quick Screen Recorder& s# C8 G; B2 s) ~: U6 K4 `7 Y
【破解作者】 yijun+ n7 H7 d* _# t" K% N0 t* F
【作者邮箱】 [email protected]
6 E2 I4 f! }% y7 F) I) m【使用工具】 OD,PEID
9 A4 I. W" R; f# _【破解平台】 WinXP; u5 O [- c" M
【软件名称】 Quick Screen Recorder+ X: O1 v* S, G5 b" J
【下载地址】 天空
0 e4 ?+ s% u' n9 x【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on. 3 g x* o/ @: Q5 Z% T9 f1 M7 b
【软件大小】 540K+ q2 }) A% |6 ^/ W
【加壳方式】 无! K! H+ D# H9 @ I" E6 j
【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)
0 s0 V- ]' x" _4 q7 `. C--------------------------------------------------------------------------------
6 Y: L5 R* H8 b: n i# n$ H【破解内容】
4 b( P3 @: x" F0 ^# l PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:) M! Z8 @ v% T2 P d& F7 [) k
00404C69 55 push ebp //在此下断
: Z1 f7 Y/ W/ S2 @" n% [ _00404C6A 56 push esi
* h% w! p) [8 V, l00404C6B 57 push edi: P% o+ t- g/ j& w+ j& }5 @
00404C6C 8BE9 mov ebp,ecx
& L8 \, L/ V+ \+ m4 P9 K, f00404C6E 6A 01 push 1/ j0 n Z7 j4 o8 \1 l) z( C
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
G8 N4 ?% R) v$ T9 P00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]1 T K4 y2 ]* r; b3 l; u% x7 g0 E
00404C78 8BCF mov ecx,edi+ {$ k* D3 ]& G6 L7 p9 g
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码
$ [8 }/ m. o8 ~* L8 c# q00404C7F 8BCF mov ecx,edi
+ }, l6 j+ h* V$ e00404C81 E8 A73E0200 call qsr.00428B2D ~' q n+ N% ]' `9 F
00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]- X! m4 @2 @7 B' ] L0 M
00404C89 8BCE mov ecx,esi
; I7 `0 c1 ~! p00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX- @( Y) e1 k1 i
00404C90 8BCE mov ecx,esi
5 d1 [2 |! n. v+ D00404C92 E8 963E0200 call qsr.00428B2D& g" a3 ~' f" x: i1 b/ Z! A
00404C97 8B06 mov eax,dword ptr ds:[esi]) e4 A+ n6 K! ]; B/ x8 ~- C
00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
+ D3 i& r' c. h: O00404C9D 7D 26 jge short qsr.00404CC5- r( n) a4 m/ H; ~' z) Q
00404C9F 6A 40 push 40
* T9 H0 }, [. d2 H! F00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
: |: E5 s. L2 S2 t+ [00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."' k# C9 x( X: |. B" D/ x Z
00404CAB 8BCD mov ecx,ebp
6 E! g9 k' A- R! R00404CAD E8 C3840200 call qsr.0042D175
8 B1 ~/ E8 @3 a4 K% j00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] O+ L, h4 B% R9 z* L5 x" t& F
00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx; C+ h% A# ~3 e2 b
00404CBD 5F pop edi4 C+ ?; a2 q) u" z2 Z7 L0 L0 k6 x
00404CBE 5E pop esi: y7 f z6 v& }: T+ K3 M
00404CBF 5D pop ebp$ I, N4 i, M! `( N: r: ~
00404CC0 5B pop ebx1 Y+ r# F) O; {: Q9 v
00404CC1 83C4 18 add esp,18& \) P1 R" [. ]( X1 d0 J
00404CC4 C3 retn
9 {) e' v. H0 D0 z# p00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]: ]( [) m" v" s0 Q
00404CC8 84C0 test al,al' ^% T, S- _3 D0 C" G
00404CCA 0F85 1C010000 jnz qsr.00404DEC
8 J! x& P; E# ?9 I: Q7 a00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
/ d& |+ u' R" k3 E- J00404CD4 E8 87E3FFFF call qsr.004030601 q! v6 k/ K% e0 o+ g5 K
00404CD9 51 push ecx
% }1 l N6 _$ t- G2 N00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
! ?, G! s& r4 Y [5 Q( |00404CE2 8BCC mov ecx,esp
2 h* a. y* k6 { v3 B00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
" v/ H* ~! K5 p; Q. r3 K00404CE8 56 push esi
) s& Q8 u. u- [; S& }00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
7 m1 p& Y# z8 x$ f3 g00404CEE 51 push ecx; P% y0 Y2 I' P" j& z+ |
00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1
: L5 h7 p. @3 s* m; I00404CF4 8BCC mov ecx,esp
0 y( O$ B+ j* F/ a) m2 }00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
; L) e5 x& W2 Z8 s00404CFA 57 push edi
9 O4 W( C! L" C- t: S00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0, ~2 E; w Z# m k& L! D
00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
, W3 h) v6 R- N# A. I @/ y00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0- Y$ m) `* z, ^3 O: i' \9 O7 F/ h, v6 T
00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~8 N; \: C% l6 ?5 A" D3 F4 ]
00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~
$ N7 N. J. ^6 _4 t5 l3 M" \00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
3 E1 `/ d2 |7 J00404D12 6A 40 push 40
/ p- I8 C/ n5 w' K00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
3 w* |. y% `3 t( F00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."
& V- o& B( a& g3 G3 F) c9 C. t00404D1E 8BCD mov ecx,ebp0 X0 D' i6 S P8 V P
00404D20 E8 50840200 call qsr.0042D175' b# b9 a& E0 |7 l* b
00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]8 F$ F$ r/ ]. m
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1& J" d; Q' M" f' Y ?; Q
00404D31 E8 5AE3FFFF call qsr.00403090
3 ?$ q- X# |8 u- k: I00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
7 h& Z9 s3 L; e3 K/ t# u3 F00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
( |/ _/ S/ J0 x S9 ^00404D41 5F pop edi$ i/ w( o# g: n
00404D42 5E pop esi, E' N. o }+ x3 S$ e7 R% G
00404D43 5D pop ebp
3 T2 S: L5 r9 G! M6 O- o00404D44 5B pop ebx
( C8 i5 y2 e" l! _0 U00404D45 83C4 18 add esp,18
+ E" D/ |& A+ w+ V& q4 ~' O00404D48 C3 retn
' m. ^+ D- I: `' }*********************************************************************************************************************************************************
! I9 A% q6 r$ r' x* E2 M! j跟进00404D09处CALL来到:$ {! h7 }' `+ d# I9 L, q
004030A0 6A FF push -1 //一路F8下去~~~~
& u k$ p; V2 t. V' p3 V. \3 X2 X004030A2 68 C88F4400 push qsr.00448FC86 V& K7 O/ X0 p* Q; S. [4 _7 l$ o7 D
004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
5 {% g5 X# Y1 P: x+ A" c004030AD 50 push eax: P( w# l, l! S4 y+ h
004030AE 64:8925 0000000>mov dword ptr fs:[0],esp" c; o' ?* P4 o0 H7 z
004030B5 83EC 24 sub esp,24! C; P& R4 r" i, M9 q' }
004030B8 53 push ebx
5 C- k3 B5 O+ P004030B9 55 push ebp
8 ?- U4 m# L; m9 Q- F+ P" `: E0 A004030BA 56 push esi* }/ `( X: K* M7 [4 y
004030BB 57 push edi
! g2 D2 c& f/ }004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"$ i8 ?# D6 X* X+ V E: S a
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
, W- Q6 @) J" D2 @( Q8 ?004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1
/ R9 |4 c# {4 Y0 T004030CD E8 27C40200 call qsr.0042F4F9
, Q2 {4 `2 N& U; x004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]1 U1 c2 {( {- [- q9 D( r
004030D7 894424 2C mov dword ptr ss:[esp+2C],eax
( a8 t- [5 m8 G/ W" |: a004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]( h$ c# x' q7 z% T
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
0 s% ^& g9 ^% P& B) O' }004030E4 E8 905A0200 call qsr.00428B79
" J! y% T) Q; z0 j: N004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
6 I/ p. p2 M3 ~0 _/ q# ~: x004030ED E8 3B5A0200 call qsr.00428B2D
- R# R7 `6 ^1 S5 O004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
. i2 d5 ?4 K6 ]9 B9 E. u5 {004030F6 E8 7E5A0200 call qsr.00428B791 z g+ }% J& u5 o
004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
4 U* `' {, u6 M- E Q8 B6 ^004030FF E8 295A0200 call qsr.00428B2D$ ~5 r* e- X* w) c* a
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]2 q( J8 K& Z7 h {$ d' N
00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
# q% ^6 M7 `7 j( s4 Z+ b0040310B 83F8 02 cmp eax,25 q/ x% g9 |2 g" F
0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
# L. k+ l* [2 B( x00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]9 X: r- J& _" ?
00403118 837A F8 18 cmp dword ptr ds:[edx-8],186 Q: z" n) f) D- [/ b/ C) m# t
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳
% O" J4 C5 z8 r" P8 b00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]" V. L8 h7 A. K5 [
00403126 6A 01 push 1! }0 \1 y* X& j+ w: |' P0 \+ A
00403128 50 push eax
! X! Q4 r" ?- U( l8 r$ T6 W00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
& l; j4 Y1 ?/ M+ `4 [' a0040312D E8 C4550200 call qsr.004286F6' f1 B; J) u j5 z0 ?4 ~+ @/ |
00403132 8B00 mov eax,dword ptr ds:[eax]
9 Q: V! K0 k' L' z! ~% b00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]/ v+ B+ v7 R1 x4 g7 k' S& {
00403138 50 push eax" n; \! h+ Z, Z/ C4 n( B
00403139 C64424 40 04 mov byte ptr ss:[esp+40],4
' Y, w" C) r: ]. h1 B# @1 S+ u* n0 u0040313E E8 4D560200 call qsr.004287902 h; ]4 G! g' u: F. r% v
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
. L4 a+ w1 [) p; \8 m1 V00403147 8BF0 mov esi,eax' y# `+ ?: V7 x
00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3/ u E- F- S9 u0 v- W
0040314E E8 38C30200 call qsr.0042F48B) e/ `) ]3 J! W
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]5 n6 e3 ?, S" p
00403156 B9 3E000000 mov ecx,3E/ x; m2 d/ i, ~) ~! W! d$ M. d% D
0040315B 99 cdq& _- \ f+ {# \
0040315C F7F9 idiv ecx
7 m2 n- P/ q1 h/ a0 _ j0040315E 6A 01 push 17 Y' Z/ w$ J# Q+ o: W4 M* V
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]
" f- `" Z9 H m$ S3 f" M9 _/ r00403164 8BF2 mov esi,edx
( g5 k% g* D9 {! @8 \7 ]00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]3 Q2 e+ _* F+ n, Q' v' K
0040316A 52 push edx
0 `' }* Z5 _) F/ f+ X( x0040316B E8 0A550200 call qsr.0042867A
$ O5 q0 z; s* ]& g$ m4 m6 p0 g00403170 8B00 mov eax,dword ptr ds:[eax]) g9 W H: X# m. ?4 r
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]2 M) ?1 f5 I: d
00403176 50 push eax3 `# ]/ ^' s* J
00403177 C64424 40 05 mov byte ptr ss:[esp+40],5
q% E; w0 T" M' i8 G0040317C E8 0F560200 call qsr.00428790
- Z; ^( d* B( e9 L+ c) p3 D) q8 r00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]. f0 X( o" M; X( C# a5 t
00403185 8BF8 mov edi,eax5 H& C3 E# {/ p4 d
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3
4 R# g) s$ E- S0040318C E8 FAC20200 call qsr.0042F48B2 w/ s' @* ?: m$ s- F/ e: O0 X$ }
00403191 8D47 0A lea eax,dword ptr ds:[edi+A]# \/ E6 a$ u+ B2 b- g9 ~9 G
00403194 B9 3E000000 mov ecx,3E
* I$ ?+ B0 P5 M00403199 99 cdq, V7 b8 [/ c& g& M5 J4 P; S8 |, J
0040319A F7F9 idiv ecx c3 \% U5 b- P% c! o* C
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]
" q* _) V7 O7 F/ f: Z, F004031A1 894424 28 mov dword ptr ss:[esp+28],eax9 V& r7 V9 n; e+ k
004031A5 8BCA mov ecx,edx
+ t% C; M: W7 X% S) h004031A7 894424 24 mov dword ptr ss:[esp+24],eax
1 l* h/ ]! j6 r6 @3 Q# K6 R004031AB 894424 1C mov dword ptr ss:[esp+1C],eax m1 k1 g, Z9 X# u# R
004031AF 894424 18 mov dword ptr ss:[esp+18],eax
2 P r, X4 N, \/ \# p- E004031B3 894424 14 mov dword ptr ss:[esp+14],eax6 Q7 ~% t( H9 C# n2 t
004031B7 894424 10 mov dword ptr ss:[esp+10],eax
1 q* ~- B0 k* N( k5 {8 v$ ?004031BB 8BC1 mov eax,ecx" @% V6 a4 _! X0 V& @5 w
004031BD BF 0A000000 mov edi,0A: X4 Z/ }0 B" c
004031C2 99 cdq' d' ?+ u, G1 ^# l
004031C3 F7FF idiv edi
( R4 g0 m& ?2 g% _: B) _004031C5 8BC1 mov eax,ecx
! A, Z" ]6 v, ~9 _! N004031C7 B3 0B mov bl,0B* K" I' X( A" S1 i4 m
004031C9 0FAFC1 imul eax,ecx) n0 N$ q) f* {8 t7 D
004031CC 8BCF mov ecx,edi
6 U; I% D" K. i$ U9 C8 d004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
) h" N. q- m ]1 H004031D2 52 push edx* g9 t/ P" G7 _; i
004031D3 99 cdq% `" A7 M; u3 w! p7 {: ~
004031D4 F7F9 idiv ecx
4 s, H1 q/ B" N0 K" Y004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]8 u8 h% u8 J! C: n. w
004031DD 2BC6 sub eax,esi
& H$ Z e- D6 S( ]004031DF 52 push edx
: L8 I s9 _; k2 p% ]7 u004031E0 99 cdq I& X% Q$ Z: v9 j- f
004031E1 F7F9 idiv ecx" p3 g- C: v& q
004031E3 8BC6 mov eax,esi% ]9 v9 Z& M' s, G9 Q2 y& X
004031E5 52 push edx
9 ~$ l- c4 ~- v004031E6 99 cdq d s8 X0 i, c1 |& ~% X3 Q) A
004031E7 F7F9 idiv ecx% f( g! V' C+ H+ n7 d
004031E9 52 push edx
5 F4 R' B. {; Q |$ @# w004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
8 D# Y" F& ?/ A. b9 \004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
/ M. H$ F# V5 n6 b; o+ d( q. S004031F3 52 push edx1 U) R% [: Q0 C9 Q
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893
2 l' R, G" |. V* E; c8 N6 X" ?004031F9 83C4 18 add esp,18+ ^: \9 [8 ?, r' X; v* Q
004031FC 6A 04 push 41 a) s* K# R b' w* W1 q8 k
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]
. Y( F4 y) w2 G1 m1 Q1 ]+ L! q% N00403202 6A 00 push 0
' a3 a I6 s0 o! B6 @) p3 {00403204 50 push eax
- E0 K/ s& K% h; S, M9 U00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
* w$ V! i& j6 b! R00403209 E8 D6530200 call qsr.004285E42 N; D# h9 I# r* P7 z x
0040320E 50 push eax- W! H: c1 c) j5 k
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]+ p( K; c% |4 _" F
00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C
/ l7 N; v/ [4 n1 Y( [ N/ f3 N, q00403218 E8 A7C30200 call qsr.0042F5C4' O. k$ U- c/ L9 R8 y
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]' c9 m' ]; ?. p* L! x- D
00403221 885C24 3C mov byte ptr ss:[esp+3C],bl, [& N0 ^/ X: n/ J$ v: G* p n
00403225 E8 61C20200 call qsr.0042F48B, @* u' J; `! M1 y$ S; w, N( \% M! c
0040322A 6A 04 push 4+ ]4 d4 g/ m' H' @/ F
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
% v% B2 I9 A) P) j00403230 6A 05 push 5
% ?: S- T7 `6 h' ~9 @4 c- |00403232 51 push ecx
0 S6 G9 x# C7 F2 W, E% G3 b! m00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
% U! d& \2 }# N! X6 L00403237 E8 A8530200 call qsr.004285E4, y5 T5 I2 ~) s8 |; k' p7 n
0040323C 50 push eax
7 ?4 {4 o' T4 t' ^+ s; n- r0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
, D4 K) r) [/ f/ a, y* k, m00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D
- R; }& ?' y* z! L5 L. N5 g8 P2 z00403246 E8 79C30200 call qsr.0042F5C4% X: m# c" N/ N3 W6 t
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]4 ^( s! s* P9 L+ W0 @2 B& e9 S
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl
8 p% z3 @% b8 h00403253 E8 33C20200 call qsr.0042F48B, ^% k$ ^0 W7 i$ |2 ~# }& q
00403258 6A 04 push 43 [, H, Z6 R9 i' r
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]/ R ^2 C" H7 `- G1 H
0040325E 57 push edi
# X6 i1 Z. o3 J( Z( ~6 [0040325F 52 push edx
q: M3 }, j' B! m) o00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
, _* a% o P3 d00403264 E8 7B530200 call qsr.004285E48 d* n0 Z, [, a* E% I
00403269 50 push eax, Z# e" ?1 j) { m" X" B
0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
! y3 a0 g& q8 ^) b/ A+ L/ s0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
+ i" y: x9 s# _( r0 }00403273 E8 4CC30200 call qsr.0042F5C4
7 E' {) a# _1 }# n; z! b/ o/ ?00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
+ x3 H4 J# Z c9 c0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl. m1 v4 _' ]4 e
00403280 E8 06C20200 call qsr.0042F48B
^3 u D0 b4 C- g00403285 6A 04 push 4+ W2 i. A+ w- H) q+ @
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
' y& R' q( I5 {% V6 l7 b0040328B 6A 0F push 0F
' v3 r8 R" q4 G2 u0040328D 50 push eax
+ C4 l, j! Z# E0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
0 m; b9 J1 a8 R5 S; x, Y/ e, I- d00403292 E8 4D530200 call qsr.004285E4
4 q, e8 l& A8 V9 i00403297 50 push eax+ @) _6 L2 a! E! v
00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
* k* P4 Z3 Y3 ~9 }7 |0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F" f9 K, b& \6 W5 G
004032A1 E8 1EC30200 call qsr.0042F5C4
# L4 F8 D4 g: \1 S F004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]; x7 _7 D) i" K
004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl
" U) l+ }( M! [5 O. y004032AE E8 D8C10200 call qsr.0042F48B
' |! r0 n# z& U! L; x004032B3 6A 04 push 4
4 }8 M# J. L r# Y5 \! A0 G004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
1 U1 ]5 p' s3 o& p004032B9 6A 14 push 14' F b% H6 `5 b
004032BB 51 push ecx, p0 X2 R5 x/ |5 d) ?
004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
4 r4 U6 z" m2 j: r0 t, f6 }004032C0 E8 1F530200 call qsr.004285E4- o, N* L# [; a+ O- E
004032C5 50 push eax
' G7 h7 g8 ~' _* U0 Y* `' G004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
, P5 ~: K/ h+ @4 a4 a004032CA C64424 40 10 mov byte ptr ss:[esp+40],10
$ D, B u" Z: q) U3 x( h004032CF E8 F0C20200 call qsr.0042F5C48 G$ S q5 [* u2 ~. W/ e3 ]
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
# z& X. ~8 x: @8 l$ ]004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl- _2 \ d2 U8 I" q- P8 Q
004032DC E8 AAC10200 call qsr.0042F48B
# ]8 @, D! M" `5 d$ Z9 H004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
9 k d' i6 v. x7 m. h! q, K& j8 u004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
% M0 z; B' Q/ O6 P+ z. S; c004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
1 S" K8 B# {0 R( n4 m! o0 L( b004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL" }0 l5 z2 o8 n- I6 Q
004032ED 8ACA mov cl,dl ; DL送CL7 H* B. A) T$ q- ~- ~) u& ^8 S
004032EF 3AD3 cmp dl,bl ; DL和BL比较1 D/ x$ S7 g1 X. i
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)' b& ~& }: |" n9 `. U2 B; i- p
004032F3 84C9 test cl,cl" c' }* m! Q, F4 X
004032F5 74 16 je short qsr.0040330D+ h$ E8 v& h( W- S2 u- \
004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL& h7 O/ r8 @' [5 m( p9 d' _1 Q$ ]
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL: K( E& K% K3 Z
004032FD 8ACA mov cl,dl
7 W4 V: J7 X% |) P$ i+ b004032FF 3AD3 cmp dl,bl ; DL和BL比较
7 f2 L( K5 j: b1 _* U; S00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
T( t- ~% j2 s" [4 B; n/ L00403303 83C0 02 add eax,2 ; EAX加2
1 B2 k8 B8 |8 _& a5 ?# c00403306 83C6 02 add esi,2 ; ESI加2
& i( }' i7 V5 u! @$ Y9 Y$ L00403309 84C9 test cl,cl! i" K* h: \8 _; |! R: E9 g- c( h6 m* S
0040330B ^ 75 DC jnz short qsr.004032E9
) M( x5 v# E, S) W/ n, v0040330D 33C0 xor eax,eax! c8 S$ ^! ^' k$ I4 ?% k% i% S
0040330F EB 05 jmp short qsr.00403316
3 ` w- g1 g5 N0 J7 }$ S4 A1 c/ x00403311 1BC0 sbb eax,eax. V8 H5 |4 h* w7 s( P
00403313 83D8 FF sbb eax,-19 e5 ]. k) ^+ w- e ]
00403316 85C0 test eax,eax
' a: M- N0 t7 n$ A00403318 74 0E je short qsr.00403328
& M3 L9 ]8 B% c. R* e7 K; Y" p0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
+ @ X' ?9 r/ T* C& E$ ~0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]* z+ k2 i0 z$ }7 u* N1 f& K
00403323 E9 F0000000 jmp qsr.00403418
0 s: N5 T, _5 T$ f00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
# G$ e" N3 o/ V) I& o0 C9 d- M! b0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]# q# a+ V( |7 B: |
00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]
6 k3 [5 w5 n( g- X/ l" N: u% @9 T7 g00403333 50 push eax' [0 ^) C3 p. h# `
00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX5 Q# h) |: G( h: s; W
00403339 50 push eax9 p# h& r n- Q Z8 [0 {" Y6 I
0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX0 u# v& s) d1 H2 D
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX1 q8 ^# B. w: M1 m, I) S- P0 e
00403343 83C4 04 add esp,4" U1 q1 K' N) Q0 u2 j
00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI0 y" t- P y( @
00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]7 B) b$ \9 x7 \
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
5 ]6 q& q& V% } P0040334F 50 push eax
& X, H' \! s' m$ y5 o- A00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX& B( ?0 G2 I, V4 ]+ c7 a) @2 G, A
00403355 50 push eax
3 b1 T- x, j& m+ V9 c00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX4 [' l$ X% u I
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
9 w" K7 [4 q6 B. U! S7 N0040335F 83C4 04 add esp,4! D+ D0 B+ J! p
00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI" A h9 ?0 D% a# L& b
00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]- N% N0 I% @& }7 ^
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]& q& {2 w/ D- V/ b+ F6 P% g; N
0040336B 50 push eax& e! m D) G& m, z
0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX( A: ~5 @" Y: ~3 }, f
00403371 50 push eax. b" Z; j- c$ c5 [
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX
- q* W8 [8 ^, W0 [2 ^00403377 8BD8 mov ebx,eax ; EAX送EBX! h6 ~! E- z: S2 c7 _$ h# S" U8 z
00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX
j. y' V0 g: ?. R0040337D 83C4 04 add esp,4
& w/ i* I% l5 P+ _( b( ]00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]" u, h: `2 L) k7 f# s6 X1 H* v( r
00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]$ Q3 c" @" I. }
00403387 50 push eax
S0 j; i7 L3 u00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX# t6 ~2 F- n& P1 W
0040338D 50 push eax
! f1 M+ M7 D# q2 F8 L! H; J0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX5 C6 F/ ?9 S# e3 x7 u% G; d0 H$ f
00403393 83C4 04 add esp,4; k8 \- g% s6 d! k
00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
9 _! G! i' q# F& M/ L0040339A 8BE8 mov ebp,eax ; EAX送EBP; X! X, m+ n! q& `/ ^6 a8 X8 H
0040339C 6A FF push -1
3 U+ j4 `) l4 U0 i s0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX
0 ]6 T. h- r, o1 _004033A3 6A FF push -1
+ R) H- S9 b# W004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
: J4 o e5 J, S. G' v o) r004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
I1 A$ K$ ?. ^* _7 `: U004033AE 6A FF push -1% @: G0 `/ b7 K# s4 H! I
004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX
/ _# ]% {- Y+ {7 Z8 ] R7 H; u+ u- k$ B: t004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX
3 C" R7 x0 w0 ]9 R$ r- _5 B8 i/ Q004033B9 6A FF push -19 `+ p6 E" E; v/ a$ ]* n8 b
004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX
, k8 i. j q; j' M2 E$ c* y9 {3 _004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX4 \7 R; _3 X! k3 w$ K
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
# u- H4 a6 V" r* y0 h7 J d7 ], V004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX. T3 p+ n3 }0 G4 ^ j
004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
- o' e, \% Q1 B: S' C004033D7 D1E0 shl eax,1 ; EAX左移1位- n, t. M. `* G1 W6 v% K5 M. ]4 v, P
004033D9 99 cdq ; EAX扩展+ w( h# T( }. l" Z' ]
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中- `$ z: e9 Y- c/ |3 n
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较2 O B- R* C( S5 V0 B
004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)- h% `2 Z- S6 ^5 @4 _8 _ r8 b# }1 Z
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A) n6 N T0 M% t3 l; v4 p5 b3 R% D _# J
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
1 }, d. z7 S+ G004033E9 EB 2D jmp short qsr.00403418% k+ [5 M; E, G
004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX
+ O' o( }; I5 E8 D4 F- v004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2
$ e7 C: f, Z4 ], }# s004033F7 99 cdq ; EBX扩展
' ?8 G; D* |; o) k004033F8 33C2 xor eax,edx ; EAX和EDX取异或5 }" S. y F1 E8 {
004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX: m; W5 ^" s3 G/ B& k% }3 i
004033FF 2BC2 sub eax,edx ; EAX减去EDX7 o8 C- g6 h' J5 q
00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]
6 U7 o! q/ _6 f4 s W' P, q" f00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
0 N% C; t, q/ E& b" r% O00403409 99 cdq: r" @; Y* X% {% L& K1 L1 ~
0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中6 I4 L* r- u" z0 a1 C# T1 E
0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX
4 {/ j8 e( s+ z% O0 c$ v& |$ t2 ?00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较0 ^3 U1 }1 r' ?7 p" m; }
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)3 U# U$ M' }# ~- }, _8 K
00403418 E8 6EC00200 call qsr.0042F48B ; - B3 J1 C+ `+ _
0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]8 N. s; g" M' U- ?, q
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9& }) _3 i% B8 j
00403426 E8 60C00200 call qsr.0042F48B+ h8 u0 }6 @ [, s, \, G
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]8 I- ~2 |3 S$ X
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],89 F% K4 D+ g/ L3 t# f% h+ b
00403434 E8 52C00200 call qsr.0042F48B
4 i% r# g0 v! ]8 E x00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
& M3 K5 F% m* O4 P) u/ o0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7
% g# U0 J0 U. u00403442 E8 44C00200 call qsr.0042F48B
( K' c3 n K6 _00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]( y( O: J% A6 Q- O. y0 V, `
0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
( _. Y& T/ m& y00403450 E8 36C00200 call qsr.0042F48B
5 |/ R. r3 f) Q! r' z+ ]00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]5 j" P( H1 |% T& c
00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3
+ S8 ]$ I! ?# }' j t9 r- K* H8 X0040345E E8 28C00200 call qsr.0042F48B" E: H4 P. w6 |# i9 J# M3 q4 A/ s
00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]) f }3 W+ X: I: Z/ t- m/ U! x( o1 W
00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2% {" j/ `2 ?2 ]) J+ R
0040346C E8 1AC00200 call qsr.0042F48B5 Q! o2 H1 F6 C3 q5 W% z
00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
9 k6 J- v0 b+ h00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],17 b+ T. h8 I: c3 d3 R5 u6 l# ]. _" I
0040347A E8 0CC00200 call qsr.0042F48B x/ Y5 K' |/ k
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]) M7 }/ _& T1 m5 Z9 ~6 B
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
; @# {" |% i6 P( b: v00403488 E8 FEBF0200 call qsr.0042F48B" j0 t; x, a! P& |7 r/ [
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
. p5 i2 p( ?3 ^: ~00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
$ k* }% R2 y/ w4 m# y3 z00403499 E8 EDBF0200 call qsr.0042F48B1 S5 ?' }4 n7 [, B, f! S
0040349E 32C0 xor al,al ; AL清0
6 S w# G; W/ O- B/ L y004034A0 E9 88000000 jmp qsr.0040352D# {: W* C, C! {
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~
4 M. K8 p# L% }& L( x3 u004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]. T+ m9 X) z1 u3 N( B; |. k4 C
004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9$ E) I) W' a' N& _. m6 ^( B( p
004034B3 E8 D3BF0200 call qsr.0042F48B* b0 Q4 W- s' b- T. }
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
0 X; d) ^5 ^ U+ C7 F/ x004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8( D0 ?5 I- ~: W* ^( X/ w# H, Y
004034C1 E8 C5BF0200 call qsr.0042F48B! Y+ X4 k. |2 m6 \/ L# e0 t( f f# J
004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
7 D2 _" }7 Y3 [" D* x/ ]; U004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7- K) }/ I9 G o3 L# p
004034CF E8 B7BF0200 call qsr.0042F48B
% f& l2 a: \: l4 {004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]0 B$ h/ M/ S" |1 X* u9 {& \. T
004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6
1 `5 }+ t( j+ j N' ^004034DD E8 A9BF0200 call qsr.0042F48B" P# J6 L" \/ U7 l# h
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]/ i# `" a) b3 g! ?
004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],34 b( N" a: x* z8 `
004034EB E8 9BBF0200 call qsr.0042F48B
* b6 k4 [0 \7 z004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
+ i4 {/ Y; }$ S2 t. `, P4 ]) [ B+ H004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2; k# Z: n' F- |3 y
004034F9 E8 8DBF0200 call qsr.0042F48B
+ s3 c. T: T$ [& ]: |- O, i004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]) a0 v: i0 A* @4 t3 ?. E
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1) x2 l* F3 O. R. |& W3 m8 {; h
00403507 E8 7FBF0200 call qsr.0042F48B
: W1 Q' T9 r$ M+ j( L0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
/ A! S, N3 k' X; v' B00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0
# U; a7 j* z' _) Q00403515 E8 71BF0200 call qsr.0042F48B
`5 `" `: T: n' \0 w6 [9 ?' \0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]- H' N% k6 l% C
0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
2 m: K2 }" {, ?; T o4 T00403526 E8 60BF0200 call qsr.0042F48B/ l9 c$ I, n" J8 q
0040352B B0 01 mov al,15 q! a, _( B+ R0 J* v
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
% d$ @2 \3 U5 U00403531 5F pop edi& F- z& p' Q$ B Z
00403532 5E pop esi
7 F h9 g: _' j00403533 5D pop ebp
; s8 R: U7 T* f% k8 P; ~00403534 5B pop ebx
: M3 C2 _ r1 M% r00403535 64:890D 0000000>mov dword ptr fs:[0],ecx3 b; L8 T) l5 b1 G/ I& w! c
0040353C 83C4 30 add esp,30
, D; v7 {6 h9 z; e( r! ~0040353F C2 0800 retn 83 g3 P$ B J6 i0 }- F3 k
--------------------------------------------------------------------------------5 m$ B6 D( Z6 d* C0 |
【破解总结】
6 Q# P \/ V; J$ v, @6 \ 用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^* t- q! I1 y @7 u+ S4 Z
用户名:yijun. T) M. o% i6 N0 G
注册码:4893*7777*3726*7777*0529) E+ J# U# l) X q# i8 _/ v5 x
--------------------------------------------------------------------------------
5 Q( D- i# o# @1 s【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡