|
|
|
【原创】破解Quick Screen Recorder) o8 t2 V- Z2 A" b* C6 l
【破解作者】 yijun' _; F+ I4 N* K$ m# e# h& y( q; I
【作者邮箱】 [email protected]1 W( ^" b5 r6 k0 G! r2 ]) D* r5 u3 p
【使用工具】 OD,PEID
2 }- B0 k& K; E% }4 B4 F$ N【破解平台】 WinXP) t- ]7 s2 _% L R4 T: g$ N
【软件名称】 Quick Screen Recorder
) T$ l& n7 ?, L8 X【下载地址】 天空) T6 J" c2 j+ H
【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on. % e* R5 G* G8 Q5 t" Y4 h
【软件大小】 540K
. u" e* `9 Z2 e* k f【加壳方式】 无
! H W0 B( H5 H, h+ ?【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)
" a' F& A9 Q5 r: F/ c& l--------------------------------------------------------------------------------& N6 B: q5 ]8 f* t) D) F3 g) p, L
【破解内容】
5 K b7 T8 c+ I4 \5 G( I/ S# R4 h PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
# E( U' H# T8 I/ k* \$ m00404C69 55 push ebp //在此下断
+ a) u5 M& i# b6 q3 ^00404C6A 56 push esi
6 b: r2 j* h6 w8 ?( }7 ~00404C6B 57 push edi9 Q0 D+ n" `$ m- w
00404C6C 8BE9 mov ebp,ecx
2 E5 \& W) e* J& G: i* M8 r00404C6E 6A 01 push 1
( U7 V% N2 I: F00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
2 d* D9 G8 V- L. b$ _3 l00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]
( f7 V1 E k- i# Y5 a3 y00404C78 8BCF mov ecx,edi; e4 f. M: n& M# q Z& G' d# T% z
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码; e4 ^+ i; n% _: C/ X
00404C7F 8BCF mov ecx,edi
3 U. Z6 G8 P, C% r. k8 m1 r00404C81 E8 A73E0200 call qsr.00428B2D6 m1 a, J/ E. ~8 |
00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
0 A3 H& _7 O. t6 \; Y) C00404C89 8BCE mov ecx,esi
( n7 ~( i7 p0 V# D3 `( d00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX, |5 h% X; A0 M
00404C90 8BCE mov ecx,esi
( H& [3 F9 a1 I0 \! t: H00404C92 E8 963E0200 call qsr.00428B2D
8 A9 B& Q1 R( _: C( F00404C97 8B06 mov eax,dword ptr ds:[esi]
0 j- e2 T3 V6 ^3 q8 W00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
# l" x& l4 x& q0 m. w9 G00404C9D 7D 26 jge short qsr.00404CC5
2 [* b2 O2 m% g- O00404C9F 6A 40 push 40
, `+ n7 i$ w; o, C) u. I, l4 q# {00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
0 K$ q# D) S3 |+ T00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."5 r# x; V9 p# a# K1 }& H1 Q( r y
00404CAB 8BCD mov ecx,ebp2 R& @' ^0 t8 A- m# y2 R) v0 r
00404CAD E8 C3840200 call qsr.0042D175
$ s y- v4 y e% S1 i% ~7 q00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
0 m# |5 h5 C/ W/ b8 D6 \9 _+ E00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx
$ t! S ^" N' }+ a+ R* h: Y$ m1 U00404CBD 5F pop edi6 G1 b) W9 a, z4 G2 i- Q* x
00404CBE 5E pop esi0 n' d' h0 r4 c4 n9 Y
00404CBF 5D pop ebp! ?5 ]1 [# }3 |% p- {) a) g
00404CC0 5B pop ebx# u7 W2 i( q8 C7 Q: i
00404CC1 83C4 18 add esp,18) e% ]. d1 ~6 a* |4 K
00404CC4 C3 retn
1 }* \$ _9 c2 f! C% s& K00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
! e# U* I" K4 Q+ Y4 D& x1 M: u00404CC8 84C0 test al,al! s5 p- e% d. ^1 f( }/ X! y& b
00404CCA 0F85 1C010000 jnz qsr.00404DEC7 Z/ L- L N1 T0 r3 ^1 A# z
00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]7 V q' [$ I* @+ ]; A L
00404CD4 E8 87E3FFFF call qsr.00403060
; p7 l$ }& Q! Q! Z00404CD9 51 push ecx
% _" V0 W2 Y6 X: e00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
' J0 s3 N: {$ x0 y% f1 L+ n" Z00404CE2 8BCC mov ecx,esp
( |, z) Z, C5 N! B9 T00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
, D" o9 ?$ Z, f+ r00404CE8 56 push esi
( L! E; r3 \0 g( p00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0, T" ]. j" H3 ~. ~6 D
00404CEE 51 push ecx
4 N8 P, ~. g$ r9 P) v, B00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1) W# }% I3 [, p* ~. }( S% S
00404CF4 8BCC mov ecx,esp; S! u: A6 j6 p* n( }1 }
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
y: u) Z+ ~- s8 X00404CFA 57 push edi
6 X- y5 e3 |$ b2 R0 O: S1 S2 ~& {00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0) \( p0 \% W) A$ x
00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
( z, V6 Z5 N! c+ q00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0
* P# X% Z: d* i2 C! E1 l00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~
2 p* s/ m) Z# I2 i: l1 m00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~5 L H+ [* c$ M
00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
+ [- `( a/ l4 L6 c00404D12 6A 40 push 40( u4 o) W9 i+ K; k2 O3 k) ?
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"$ v# I7 n( T& n$ b4 ~- c
00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."
; L. [0 i& a$ K1 g) E9 z" A+ u2 R00404D1E 8BCD mov ecx,ebp* T0 b8 y# z5 v2 P6 f
00404D20 E8 50840200 call qsr.0042D175
% f0 F) Y0 b1 @. E6 |2 s4 n00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
9 H' A3 V- j6 e. L4 y00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1
- A; ?. j, a; \& A5 i# |00404D31 E8 5AE3FFFF call qsr.004030907 j: G9 }* C, n
00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]' a, r' V* k( L
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx1 J2 |! I6 c+ W( a
00404D41 5F pop edi! t Y4 Q. [3 {" ?7 G
00404D42 5E pop esi, P8 M9 w) O! P
00404D43 5D pop ebp
) M3 U. m4 e" \4 r7 ?# P00404D44 5B pop ebx) x8 F9 l" A8 q2 I
00404D45 83C4 18 add esp,18
4 l) v9 Y& W: B n' `+ i00404D48 C3 retn
# G2 `3 |6 w3 e, A*********************************************************************************************************************************************************
; p: V5 D+ ^' Q0 w8 s跟进00404D09处CALL来到:* J" X+ Q! n. B0 ^9 U2 S
004030A0 6A FF push -1 //一路F8下去~~~~( j4 u7 u" Q( ~- E
004030A2 68 C88F4400 push qsr.00448FC8$ }/ ]+ X' N3 Q
004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
! a+ K8 x3 v! M004030AD 50 push eax- T& d: {) k0 d# }8 b4 y
004030AE 64:8925 0000000>mov dword ptr fs:[0],esp" H. u6 M2 R( U9 Y ?' ^
004030B5 83EC 24 sub esp,24
- M1 U$ ?, W7 \$ N' G# ]; M: w004030B8 53 push ebx
1 D, Y7 H5 ~. _2 G6 F7 M0 R6 j004030B9 55 push ebp
8 ]; j6 }& T6 S% J& n' ~. \* m004030BA 56 push esi2 M, I3 c3 ?' R9 @6 D) l
004030BB 57 push edi
( ^' C) L+ [4 _/ U! D004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"
1 M4 a ~8 @' E; Y$ n+ K004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
8 z# H* u7 ~, D9 J* U. Q( U4 v7 Z004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1* I" s8 t: G, b% [
004030CD E8 27C40200 call qsr.0042F4F9
! j# O5 `; [8 Q004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
- c" r) W. U- K) N7 d3 M004030D7 894424 2C mov dword ptr ss:[esp+2C],eax# {) K5 D& B+ K7 Z. G% h i
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
* a! ]4 B& s1 p9 {004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
3 s9 d" B* x4 v' {$ l) e2 y% U/ P004030E4 E8 905A0200 call qsr.00428B79
* ]# D; y L& F+ p; }004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
5 h; y) |6 i h' M" O: E004030ED E8 3B5A0200 call qsr.00428B2D
2 A X# q# |4 {( N1 n3 e0 A004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
; S, z+ S5 ]- g004030F6 E8 7E5A0200 call qsr.00428B79: C! Y. q$ C& H7 R7 e
004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
3 d/ T: l+ Z7 ^9 v- M& b1 u004030FF E8 295A0200 call qsr.00428B2D; \ n/ ^5 R/ S
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]8 F- S5 i# x+ ]1 {' z" y
00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
+ M0 y) L" r" Y0040310B 83F8 02 cmp eax,2
" q8 |4 [) |' q7 l n* T0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳5 N8 K; c; y% ^9 X$ i
00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]
% G/ U6 k3 ^3 D: M5 w: w00403118 837A F8 18 cmp dword ptr ds:[edx-8],18" `$ v4 J7 Q* Z
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳' W- F0 e8 A: J" Q l7 n
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
7 P$ U+ c4 y( ]6 X9 j% T00403126 6A 01 push 16 Z! E8 C/ c @$ S
00403128 50 push eax
1 K5 U* E. O2 j6 Y) c, p. y! D00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]3 j1 A7 y1 l" @7 @4 G- \( ^
0040312D E8 C4550200 call qsr.004286F6/ N) {( \( M- X0 B, x
00403132 8B00 mov eax,dword ptr ds:[eax]6 E3 Z5 s" \ w6 T; R. `$ H' U: |
00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
; q/ J" ^5 M5 C9 z6 U: V$ @" J- `00403138 50 push eax
7 q# ~% Z- B' i" M- R1 o. w# Z00403139 C64424 40 04 mov byte ptr ss:[esp+40],4' }3 l5 N. H1 }( |
0040313E E8 4D560200 call qsr.00428790' r8 ~4 J; {- M$ R6 w! Y+ g' p
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
5 i% S7 J9 n: H8 p2 m00403147 8BF0 mov esi,eax/ C2 {. _: `9 N1 u" Y; f3 X+ K3 e9 X. e
00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3- s& W z4 B, r% T9 a2 m% ^- ]% M
0040314E E8 38C30200 call qsr.0042F48B* Z: n; U/ f8 M/ ^
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]
% D3 [. E! L- w G$ k0 s6 r4 D6 ^00403156 B9 3E000000 mov ecx,3E, _4 |5 g6 ?! h+ p6 ]7 {6 m
0040315B 99 cdq
7 ?8 R$ Y2 a+ z8 n# W, f0 Q; R& q* v4 h0040315C F7F9 idiv ecx* ~- a, Q4 X; c0 C: m' v
0040315E 6A 01 push 1
9 d5 |5 _# C4 K! A% i00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]5 h( }/ I0 B( J7 L; K$ S
00403164 8BF2 mov esi,edx
' m7 R V7 r: H" Y( X00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
; w1 J' e9 Y7 d2 R, `1 O6 X; C0040316A 52 push edx" F) j, g. k y4 Q! `* k; y4 E ^! w, h1 l1 e
0040316B E8 0A550200 call qsr.0042867A
- }/ X m% Y' G5 y( m00403170 8B00 mov eax,dword ptr ds:[eax]
4 w7 Y L7 r, t" L00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]/ C4 \* s3 |5 Z, r; D0 j4 a$ Y4 S
00403176 50 push eax
% {. f% R$ }5 \ A1 u; {& ~, [00403177 C64424 40 05 mov byte ptr ss:[esp+40],5
" E' D" t) n4 o$ D- m+ D' o* e- J0040317C E8 0F560200 call qsr.004287902 m/ \6 r X+ c: Y
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]8 b! S% Z7 |+ Q* P# v q1 R/ K; x
00403185 8BF8 mov edi,eax% z8 ~& D" ^6 y
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3
* O0 @9 {4 I$ H' L$ H% f& U- I0040318C E8 FAC20200 call qsr.0042F48B! V3 T5 J$ Z- j/ B
00403191 8D47 0A lea eax,dword ptr ds:[edi+A]* e- Y0 Z5 o& } C4 u6 {7 ?0 ]% C
00403194 B9 3E000000 mov ecx,3E
+ }' ~2 l7 @$ ]: r00403199 99 cdq
, k! S+ A2 f# e3 f$ f0040319A F7F9 idiv ecx. l% E/ B, B5 p% ?9 e; H, {" l
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]
/ ]4 M6 w- W3 k9 t; w004031A1 894424 28 mov dword ptr ss:[esp+28],eax
0 g, q( y6 q9 x! y9 f004031A5 8BCA mov ecx,edx1 P/ t3 @' d7 e
004031A7 894424 24 mov dword ptr ss:[esp+24],eax- B2 k3 G& Y- M. g8 r
004031AB 894424 1C mov dword ptr ss:[esp+1C],eax/ J2 h2 ?6 D8 J& q
004031AF 894424 18 mov dword ptr ss:[esp+18],eax) p X p- ~+ q( S7 h+ O
004031B3 894424 14 mov dword ptr ss:[esp+14],eax
! [( M7 r, z/ s& Y6 R( C004031B7 894424 10 mov dword ptr ss:[esp+10],eax
. l9 j3 F0 U6 ]5 J4 K0 d5 F( d004031BB 8BC1 mov eax,ecx
u; l7 }8 s2 r s0 J- d3 V004031BD BF 0A000000 mov edi,0A, o, s: R, d. U& w# W
004031C2 99 cdq
3 I6 x( b/ P( `* A- X004031C3 F7FF idiv edi
, [# \" a- k9 s k; Q. @0 p004031C5 8BC1 mov eax,ecx
2 c O8 h. {, W8 V* ?$ d004031C7 B3 0B mov bl,0B4 D+ o/ ]1 i' a8 _. g( G
004031C9 0FAFC1 imul eax,ecx: Z) N9 k3 [" G+ f+ q N6 `
004031CC 8BCF mov ecx,edi( `& ^/ K0 z; X
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl% J* ^. v( x! G
004031D2 52 push edx. P2 [9 L' e V2 Q, s C- {
004031D3 99 cdq
5 ?% ?- n- b& K004031D4 F7F9 idiv ecx
* ?' u7 Q4 L) G5 Z+ ^, K004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]
2 A: z; q, ]+ f5 b6 f W004031DD 2BC6 sub eax,esi
) b! z. j, v$ }! D004031DF 52 push edx3 l7 u1 H& l1 z6 @/ q: k
004031E0 99 cdq. x- h- z" Z& R
004031E1 F7F9 idiv ecx
9 @' \) C+ ~8 Z004031E3 8BC6 mov eax,esi! K; s" P1 L, q& Z' v' V; J% ]
004031E5 52 push edx
8 x& `6 [0 B: O% F6 ^* X004031E6 99 cdq
5 j( ?2 V0 z$ z* W/ y004031E7 F7F9 idiv ecx" ?7 G; H) b7 q1 T* \
004031E9 52 push edx" u/ M1 x* Y/ F7 @- T
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]- x, b1 O+ i, p8 ~) L c) a% w0 w
004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
' u% S9 |, g$ \" G004031F3 52 push edx
% d. @7 G% J1 Y6 \$ g* Q004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是48930 G3 V8 u# r V% ]% C2 q& w$ A: e
004031F9 83C4 18 add esp,188 F0 w& M+ [, m! l- J
004031FC 6A 04 push 4+ S6 C" Y/ R6 L9 y5 l( p# j$ x) R
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]
9 I5 y1 l I2 | ]1 Q00403202 6A 00 push 0& d4 e. ?/ o L( y, ^& D
00403204 50 push eax, n- ~9 Y, k" O Q) A2 `$ e
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]6 ~* `! W. {2 ^+ y8 T4 L! f5 Z
00403209 E8 D6530200 call qsr.004285E4
# K5 W4 [- q" {3 Q1 }2 @0040320E 50 push eax
% p' S4 [3 L3 _3 L$ ~0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
& P. a2 o5 b) O% g6 b5 X00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C
( r4 I# D; q, z+ R* C00403218 E8 A7C30200 call qsr.0042F5C4. C2 m7 i8 g5 v" D* [9 ]1 \$ w
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]- {8 Y8 w! Y0 q' r6 U
00403221 885C24 3C mov byte ptr ss:[esp+3C],bl8 g1 [/ B) m" j) G @6 J
00403225 E8 61C20200 call qsr.0042F48B2 A: D R* \/ i' T
0040322A 6A 04 push 4
' I* T, U; D9 Y. P, E0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]+ H& b3 x- F% ?
00403230 6A 05 push 5% T) e# t& H" `
00403232 51 push ecx
: o5 T+ i% b3 h+ z2 T00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]$ P" R+ u4 @0 N9 M& S
00403237 E8 A8530200 call qsr.004285E4
$ c' Y `5 L' h) e0040323C 50 push eax! r2 E: _' ]* g
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
" c! D" r i/ ^* X. g8 ^* S. I( a# i00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D. r7 H2 B0 k: r: j R
00403246 E8 79C30200 call qsr.0042F5C4
# N* y* L7 ^! Q# p9 B- x0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
0 x0 }. S1 T0 q( k0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl' G) n& m7 E1 L# i8 O/ j! a( H1 i; i' A. `1 @
00403253 E8 33C20200 call qsr.0042F48B
% u, B9 G+ D4 k0 }2 P9 ^ w00403258 6A 04 push 4- I1 i& i2 Z( Z
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]1 ~ Q4 e: i+ h( O( o
0040325E 57 push edi( L I$ u3 F# F# Z( O
0040325F 52 push edx
; i! X W: C, I00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
2 z) i2 W$ s$ F00403264 E8 7B530200 call qsr.004285E4
( Z* m' @; p. d, k+ b9 n v' B00403269 50 push eax) P5 ?; v8 L* w w- L h ^
0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]3 k9 `% }% j8 r3 ~2 k- m2 R+ f9 w
0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
4 Z0 Y; ?- b% c00403273 E8 4CC30200 call qsr.0042F5C4( j1 T8 D- H* Y$ U N* v
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]6 c0 R) {3 X, r
0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl
6 `4 G, X8 `1 I/ V7 |/ w# Q) z00403280 E8 06C20200 call qsr.0042F48B, I8 N1 ~! ~- A, J3 |2 {
00403285 6A 04 push 4
# j$ J! u4 \/ N& G% }9 c4 `00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
" J1 {. s# g1 N& L4 D, Y* b7 M0040328B 6A 0F push 0F
2 M( U7 [8 R4 `0040328D 50 push eax: l3 C& t2 X* ~
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]1 b! Y8 I3 N8 Q' H9 L3 ^
00403292 E8 4D530200 call qsr.004285E4
3 _# k; x8 Q6 G$ b! d00403297 50 push eax6 H# G+ P% J8 j( K- w7 B
00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
. d9 }. Q* l: {; |* y4 A' ?" i0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
7 Z) e7 i* X9 Q004032A1 E8 1EC30200 call qsr.0042F5C4' C& q( X; n5 G; o+ C0 K5 Z
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]6 i; P. k- ]/ w9 w
004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl, O# A3 ^9 b1 X
004032AE E8 D8C10200 call qsr.0042F48B& i) l4 P& r4 K& P4 X
004032B3 6A 04 push 4
9 o% a. e* G) r( b1 i004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]8 o+ i: y! m9 T( U
004032B9 6A 14 push 14' Q6 i- i" }7 [' f Y8 L7 Q4 B
004032BB 51 push ecx4 r7 Z# S, p0 r$ b# _. R- L6 u
004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]. M. M# y# I+ u1 l7 P
004032C0 E8 1F530200 call qsr.004285E4
1 m- C, L8 e! Y( X$ w004032C5 50 push eax
5 ?" }; D, p3 j. O% S6 l004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
7 e) I- g8 D" P$ @0 B004032CA C64424 40 10 mov byte ptr ss:[esp+40],108 `" l2 N$ J8 T/ p- Q* F
004032CF E8 F0C20200 call qsr.0042F5C4
# H p w' i% J6 s8 W004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
7 B& m. I. @2 p' F004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl
; N- Y. S- q# L& p8 P7 d004032DC E8 AAC10200 call qsr.0042F48B! P5 C. c7 O! ~, I" E
004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
! G' b# Z6 j0 Y5 n004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
8 l: l) W8 H' p" U004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL+ j' Q4 p0 S3 Z
004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL
8 y/ i- v' ^, J004032ED 8ACA mov cl,dl ; DL送CL
' Q2 Y; `* W: o( ^+ R3 a) |/ T004032EF 3AD3 cmp dl,bl ; DL和BL比较2 K% Z0 g% n' t/ V. S1 }3 H, X/ m
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)! C$ f. m3 ~" ?* H6 T+ \* h8 `
004032F3 84C9 test cl,cl
$ e4 ^! v* F' j! p# [- o* x6 p+ T8 o: @0 N" r004032F5 74 16 je short qsr.0040330D
8 G+ J" t' X8 S5 N3 E& i2 w004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL
2 t8 R' |6 J& X4 @4 X! |004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL) ?. c9 ]1 s) t5 y2 ~
004032FD 8ACA mov cl,dl- p9 a1 |$ \1 q% |3 s; H
004032FF 3AD3 cmp dl,bl ; DL和BL比较
" Y$ t# v) T# r7 L+ Y, S00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)9 {: [* d7 a* V; E* ^
00403303 83C0 02 add eax,2 ; EAX加2
* N; Q# n. W$ L6 |6 g6 h00403306 83C6 02 add esi,2 ; ESI加2
8 W# \8 w/ e, T% t2 b% E00403309 84C9 test cl,cl
$ f! A' l+ P* d; a0040330B ^ 75 DC jnz short qsr.004032E97 L: n- f! P* w. \: `$ l2 m; f
0040330D 33C0 xor eax,eax
2 S( D6 ?! J# A9 s8 s0 b0040330F EB 05 jmp short qsr.00403316) a5 {" l; V. ]1 p8 g/ }! ~$ p0 t
00403311 1BC0 sbb eax,eax
: i ^8 @$ v% I b, P1 f& j" E00403313 83D8 FF sbb eax,-1# r: E+ N0 e8 v1 d9 [
00403316 85C0 test eax,eax2 |1 \2 w3 e# P" {4 U+ Z
00403318 74 0E je short qsr.00403328
/ }" S% q/ v1 l- U6 m# R' z/ S1 j0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
: {3 B1 G, ]2 d" U7 }1 w9 V' r0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]3 t! N S4 h+ @- p
00403323 E9 F0000000 jmp qsr.00403418! ^5 r# E3 `# I( d. g6 i
00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
' _! B5 I( X" l0 k2 q$ e2 q$ J0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
/ a' o3 y, W! @) \. E9 {00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]
' V' B+ S7 S% x3 w0 j00403333 50 push eax
~5 z3 [" @ T/ h# y4 ^; T# i00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX
@2 a Z: {2 N. X* b8 O9 n00403339 50 push eax! u: O6 s: k3 `$ f
0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX
7 ?( O$ G Q$ o0 ]0 p0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
0 \6 `0 S3 A/ M$ \# K( w: i3 ^& `/ ?00403343 83C4 04 add esp,4$ n% n3 D$ W) j
00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI
* m% M$ ~$ V/ H# }' _" H$ _00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]
0 P# y" B4 h4 ~, L. Y0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
* g" g/ _8 o K& N0040334F 50 push eax
/ x3 w) `8 D' G# \4 _# v0 d00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX5 J X, h3 P% ^, s0 ~1 a7 D+ y
00403355 50 push eax! K0 g8 L" ~2 q( V! u4 a, s; ^
00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX6 w& X' m7 N+ s4 J2 l* n" L/ k- a
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
2 R( c8 H$ Q& J, Y" _/ k7 L7 r0040335F 83C4 04 add esp,42 p0 @4 ^2 V/ O: C$ t
00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI% W) S4 D, F. w/ ^2 k
00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]! v% G: n9 R4 m8 ?" w, k
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]
- F- V: a& Y: {2 H. i0040336B 50 push eax& K; Z4 E5 E6 ^
0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX
+ ?7 g1 a' b& {% R9 R00403371 50 push eax
9 [8 i( g* k% R0 o00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX
: ]1 c& t3 H) `1 X( G00403377 8BD8 mov ebx,eax ; EAX送EBX( E+ `- Y( g, @* p% N2 h1 L
00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX; O) Q1 u; f+ A) B) y
0040337D 83C4 04 add esp,4
0 P. ^6 u; t8 q( |00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
% Q( q$ r/ m: T b ?& u00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]" W9 k2 h- |8 c7 R& O
00403387 50 push eax, J% V) }) j& k0 f/ f* |
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX
* N9 u. x ~( Z0 v0040338D 50 push eax
. T5 u, ]# h/ S2 Z& e0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX5 }+ E0 E" d& m6 l. q* V8 z
00403393 83C4 04 add esp,4
) c$ p" r# s8 K: h# w7 t% E# v$ t- W00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
6 k" ?/ g3 Q2 f7 ` B; I0040339A 8BE8 mov ebp,eax ; EAX送EBP/ x6 O4 `7 T# {2 U F. z% H! y
0040339C 6A FF push -1
# K f- S3 b' ~0 E" o0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX
4 k/ b: _) B: ?2 y9 o0 A1 J7 m004033A3 6A FF push -1
) d# O6 ^' w4 T4 _004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
1 W. i+ f/ Z+ H004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX4 `/ z# _% H0 w
004033AE 6A FF push -1
- ~& K" U, V, L$ a* Q# {8 B3 O2 U004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX, t! w4 Z! t: t
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX3 M3 r- k/ r4 k6 K' ~1 | l7 K
004033B9 6A FF push -1 f3 ?0 q! H/ W% O' `
004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX
4 s- K& O8 M" ^% U004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX+ r+ R* w4 y: h# H# W3 K5 u% l
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX2 `5 H: C, f7 u# m6 n
004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
L* `4 P; ?- k4 g5 H7 @004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX* X. I( @3 k0 f7 h. _8 \9 K
004033D7 D1E0 shl eax,1 ; EAX左移1位6 ]/ c; l5 ?3 Y6 c! T6 ?
004033D9 99 cdq ; EAX扩展
3 I% ?- t' w* ~+ s004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中# \. `8 U% L% c! X, @
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
/ r1 M6 a3 y7 o4 O8 o t* b8 U004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)
1 R1 Y$ `- T9 f004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A
- L* ^- z9 F; |1 a" j# l004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]9 _' R% C: @: b' q t' Q; W
004033E9 EB 2D jmp short qsr.00403418
( {. }# W" ?3 r6 T2 L6 G$ |004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX
# n" v9 y( v7 z. x: p( H' Z004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E25 M+ f. n9 t: F3 r- q1 G: m
004033F7 99 cdq ; EBX扩展; S; t8 K& _7 [' e7 f7 g# l
004033F8 33C2 xor eax,edx ; EAX和EDX取异或/ T4 c, _ @! q$ a2 ^8 d7 u, d& H
004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX( e: g' i9 x% F+ n8 s8 a/ v( @
004033FF 2BC2 sub eax,edx ; EAX减去EDX
/ o/ K' I5 ]9 k$ K0 v00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]: g& e& m- t- W5 q7 J
00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
! M* k# A( b; m2 K; b. x, g" E00403409 99 cdq
% U6 K% D9 c7 b0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
) d }9 Q$ u; v0 |' A$ S* m. m0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX* T5 f3 {# U( y& {8 h% f
00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较
. L. C0 f2 S$ K9 {0 T00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳) z! D& x( K6 L' w7 b4 T
00403418 E8 6EC00200 call qsr.0042F48B ; 8 E4 B$ M, p9 }3 M
0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
- [0 G q; |, T00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],93 @: b! g0 ` v$ \
00403426 E8 60C00200 call qsr.0042F48B) L. q. P' m' Z4 ?& d
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]0 @0 G% ~+ R# U3 G, ^! S/ f
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8/ Q5 U# u8 s1 q+ ^! V
00403434 E8 52C00200 call qsr.0042F48B* |5 H0 e" @. E
00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
3 s" N* T1 a3 ^+ Z* o+ m/ f# d3 j0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7
1 W6 b2 k8 O" w/ b8 E* a00403442 E8 44C00200 call qsr.0042F48B! ~) j0 O' v+ w; ?/ s( M. X
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
, Z1 S9 n1 A8 t6 A0 S8 M4 R0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
: z6 j: Q1 t1 n' ?: s. c00403450 E8 36C00200 call qsr.0042F48B
% ]8 {+ q P6 }9 B5 w H00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
1 t, K* B7 b, m; s7 Y0 @00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],36 Y* |; C) U$ Y
0040345E E8 28C00200 call qsr.0042F48B0 w( z7 K* U. i. e
00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
6 e& q- c! G# K/ z, j3 a00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
8 F7 E9 J( T0 c, L0040346C E8 1AC00200 call qsr.0042F48B
6 K% M1 @8 g8 }; s1 g& r; \3 g3 y8 M9 X00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]( ^$ @! ^1 h, i5 W
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1. j- z! A0 Y# j% n
0040347A E8 0CC00200 call qsr.0042F48B5 K L' F5 w: s! R/ B+ U
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]' d- J5 i7 Q* d/ N0 Y; M' d/ q/ y+ h
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0! A$ L# f! L8 Q4 u; k) F
00403488 E8 FEBF0200 call qsr.0042F48B( I# ~% c `' a; e
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]3 l# s8 @5 ^& W- B" I
00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1: B1 I; D1 A; K2 g# }+ y8 m2 k' }
00403499 E8 EDBF0200 call qsr.0042F48B
. x9 i0 B& \6 d; V' K8 g0040349E 32C0 xor al,al ; AL清0
0 Z7 X, d" G3 {" v E004034A0 E9 88000000 jmp qsr.0040352D" ?9 T3 t7 }0 j* s8 m
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~
) s1 M' w( ?$ [. f; n. }004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
) I4 f0 m8 M3 |9 R+ x5 ^004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9
8 B0 `# ^1 P- h; @8 e# S4 }( _6 n004034B3 E8 D3BF0200 call qsr.0042F48B
+ g' w( W5 H5 B/ ^0 t! o/ p9 ?; Z9 T004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]4 M4 d$ I2 F6 o- B
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8; v4 c+ X- \7 G6 a: G
004034C1 E8 C5BF0200 call qsr.0042F48B: B; W) l. C8 }
004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
: u2 |) s+ K7 J2 i/ r004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7- M( E" p, A7 Y8 h) J
004034CF E8 B7BF0200 call qsr.0042F48B
2 a6 O l( u- w" g8 D& O# ^004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]5 E' K# P$ R) H& \: e
004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6
& X1 w3 s* G" r3 m# \/ g" F& T004034DD E8 A9BF0200 call qsr.0042F48B
; V8 w6 t5 L7 E/ m. d004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]8 m4 G8 }: D" Z
004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
" c% l ]; Z' A8 L5 F+ y, [" C004034EB E8 9BBF0200 call qsr.0042F48B
& H# t7 ?7 R7 s7 A004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
$ C" q' L" E0 u' q% {! b2 m: v004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2
) D: }: g0 W9 R# ]5 D004034F9 E8 8DBF0200 call qsr.0042F48B7 y9 o B7 ~; s. x& A# G) V$ P
004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
& u) J; C# L# r6 E0 s3 m; F$ J! L00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1
, u& [+ A+ b: [% k9 J3 t00403507 E8 7FBF0200 call qsr.0042F48B( L) z8 ?4 w* ]4 `8 `' a7 V9 S5 n2 b
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]2 H$ q, W$ a/ R, j
00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],00 C. N D/ q+ W5 q! |* O
00403515 E8 71BF0200 call qsr.0042F48B
0 h8 c, `2 V: f/ T0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]/ b! B5 t3 K& y( M. G/ P% ?8 R
0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1# K; p% ]3 ~# L0 K( d8 z
00403526 E8 60BF0200 call qsr.0042F48B
, b* L$ j$ D% J2 v6 N0040352B B0 01 mov al,1
! h& g. l V1 i2 |3 W( V* Z0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]6 y* X8 o s- N% f/ X" Z
00403531 5F pop edi
8 }+ T. z5 R, b00403532 5E pop esi2 m* Y2 `2 O! ^
00403533 5D pop ebp& G) g5 S* m2 T5 D/ @
00403534 5B pop ebx
% i) f6 u; D; ^! G) A00403535 64:890D 0000000>mov dword ptr fs:[0],ecx
6 H4 E# U: W4 p* k1 A4 }0040353C 83C4 30 add esp,308 ]5 v+ N* i5 K+ r. u d
0040353F C2 0800 retn 8- E; f# X. x& f3 Q4 y1 L
--------------------------------------------------------------------------------
U# |4 }( o7 Q( ?' b- O! x2 ?* \【破解总结】
# k, y' Y2 G' E/ x$ r' | 用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
" l' l M0 Z6 T2 X1 i' p用户名:yijun
4 [) ]6 t2 y6 B2 P6 j注册码:4893*7777*3726*7777*0529
5 |5 u/ i0 h% F m--------------------------------------------------------------------------------9 E& w8 @6 g: ]$ G
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡