|
|
|
【原创】破解Quick Screen Recorder
' l: S( \. \: T/ R5 }8 W5 d; ~【破解作者】 yijun" `1 ^( g/ s7 I
【作者邮箱】 [email protected]
0 _# Q4 `! i9 ~9 V6 }; v【使用工具】 OD,PEID
% I {. b! H" Z【破解平台】 WinXP8 M, K+ u5 R n6 _$ E
【软件名称】 Quick Screen Recorder2 q0 s) q; ]5 h- Y3 Y) W
【下载地址】 天空
4 S# T+ c; i9 \# M: `7 J【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
( `9 U3 x! n" @8 N【软件大小】 540K; i4 v; a" v# z$ u% w
【加壳方式】 无5 K4 P* f5 {; r3 F3 Z5 s
【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)+ z" h7 G! ` |+ x3 Q8 a1 b
--------------------------------------------------------------------------------
; K( v: p) e9 ?1 A6 N【破解内容】
" ?5 ]6 g9 q% S2 ~ PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:' b# n# Y+ }2 @2 Q4 s/ Z3 f5 l6 U
00404C69 55 push ebp //在此下断& B5 c' k8 S! r: ]
00404C6A 56 push esi
! Q. H, \4 H, M# {5 V00404C6B 57 push edi
) A3 Q0 Z J7 ^- O0 ]00404C6C 8BE9 mov ebp,ecx
5 `2 Y/ X9 }3 ?& ^& }/ ~00404C6E 6A 01 push 1
0 _1 T' r! x0 ~, u00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
6 f0 `5 ? A! `3 D00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]
" f0 P* j4 h0 u: `, r' R7 |00404C78 8BCF mov ecx,edi( a" c6 P. z3 c
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码 h! f5 ~0 Q4 Q$ ~% p
00404C7F 8BCF mov ecx,edi
6 ^( g; h4 a+ F' C) N0 t. L7 P00404C81 E8 A73E0200 call qsr.00428B2D) ] _% a* W/ i
00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]0 O2 V6 B: m; r2 _$ r
00404C89 8BCE mov ecx,esi) c9 J- ?; k* i" h/ z+ \" _8 I
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX5 R {8 k6 g8 d# o K5 T
00404C90 8BCE mov ecx,esi% [, i/ x9 ^' x/ |3 c* |; O
00404C92 E8 963E0200 call qsr.00428B2D
2 @$ F. B8 i# B00404C97 8B06 mov eax,dword ptr ds:[esi]
: Y5 C/ ?4 x; B `6 k- n0 _3 y00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
; a8 I/ Y @4 Z00404C9D 7D 26 jge short qsr.00404CC5& B7 q8 R- a8 c3 g8 c
00404C9F 6A 40 push 409 A/ O2 K7 D- [" B4 e8 H$ k5 y J
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
c- i0 u6 T: b7 @% f00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name." t9 b% R" j1 B: }9 j) n
00404CAB 8BCD mov ecx,ebp7 n; t# S1 y# [
00404CAD E8 C3840200 call qsr.0042D175 x/ R; O0 k. Z6 G3 j7 t
00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]: r& @/ m% P" m% Z
00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx
& `3 d* C/ \$ I/ C00404CBD 5F pop edi+ F i, N8 V- Y X* u; a
00404CBE 5E pop esi' J5 M( \8 t' J4 X# B
00404CBF 5D pop ebp6 C( k6 J4 k- N
00404CC0 5B pop ebx5 Y) C/ u& Q" K6 x
00404CC1 83C4 18 add esp,185 w& k1 C. E) t3 e* J* H% n1 ]
00404CC4 C3 retn7 W0 k: g3 `! a" G
00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
! ]* c1 Q: N# {' k' w: U00404CC8 84C0 test al,al% x/ h, O, X& P3 {0 \; w& ?3 M; P
00404CCA 0F85 1C010000 jnz qsr.00404DEC% p+ B; ^ W2 m, l
00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]8 v U' ?1 i$ B: N/ z/ ~
00404CD4 E8 87E3FFFF call qsr.00403060
( X E X/ a6 ^ K00404CD9 51 push ecx8 E: e# `& S" [1 j X. v7 k
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],04 s4 L: Q+ v* d$ e! O T- G
00404CE2 8BCC mov ecx,esp/ D) r% }. K) K3 ]6 C/ F
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
1 b$ `% Y t$ M9 R% G' C00404CE8 56 push esi
2 T b; p, @* Z00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0: g1 c4 x# j, b3 g% }/ l; C- s7 L
00404CEE 51 push ecx1 S! c! I7 b" \# u; G$ y- v e
00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1
! J# E: V* @. T) a/ K+ F8 B00404CF4 8BCC mov ecx,esp6 c( R% a5 d2 m- ]( }: Q5 `
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp V* q) t$ V# B' {6 j1 w
00404CFA 57 push edi& ^8 I- e$ W, C. Q; ~
00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0
" h% D+ j0 c6 k3 U- u" u' R9 a9 f00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]: B7 O1 w ^+ `7 \2 m
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0
; f/ _ x9 B( K. a8 y00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~7 L3 e$ Z& [# P/ y! R _& J
00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~
+ l. b" s, g* H9 y00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
6 g) Y0 \0 w- A5 _4 N1 R$ s00404D12 6A 40 push 40
3 h1 ^& C7 O% i1 m" W00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
5 o1 }! {) q3 h' N# s! b( U; E00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."1 {, s$ @4 A, e3 |: G' ?: ^& Z
00404D1E 8BCD mov ecx,ebp; L' o; _/ L+ ^3 H: B. w: m- [$ H% z
00404D20 E8 50840200 call qsr.0042D175
* ^% h" a+ j- L3 i( [00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]2 A0 b- ?6 O0 d! H3 o
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1: k8 b+ h0 @: L& B) U7 u
00404D31 E8 5AE3FFFF call qsr.00403090& ]8 n4 a9 P% h p; E! d
00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
9 U5 |0 }) }6 r' J5 C4 Z00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx% o* U1 s1 G) z
00404D41 5F pop edi
' X1 {$ `% k7 o) X/ N+ Z$ O/ U6 p0 z00404D42 5E pop esi. R$ W4 k8 k- s2 y
00404D43 5D pop ebp9 h0 S7 s% s, _& b7 L. q
00404D44 5B pop ebx, [# \( [$ u3 G1 m: d6 L
00404D45 83C4 18 add esp,181 z& y7 o$ B) h1 i% P' [* l
00404D48 C3 retn
( X) {3 a4 d) Z*********************************************************************************************************************************************************
1 |+ x# e& z( N8 D% C: S- u! H# K跟进00404D09处CALL来到:
% ~+ n: y. a o* g2 e6 c3 R; e, G004030A0 6A FF push -1 //一路F8下去~~~~3 y( |# v6 `# O5 {0 p+ d0 ]: A
004030A2 68 C88F4400 push qsr.00448FC8( Y" @: k# x' h# ]. j4 d: j
004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]8 N# O+ x% K/ r+ [, ]
004030AD 50 push eax2 |" y+ k3 Q* y2 @& R ~3 W, E
004030AE 64:8925 0000000>mov dword ptr fs:[0],esp
4 u" w8 y, b# k ]( m004030B5 83EC 24 sub esp,24
/ s( g. ]' f- s004030B8 53 push ebx& A# p* e; r4 |3 S- j
004030B9 55 push ebp; @- I- k6 W1 T& t6 W7 W/ F c
004030BA 56 push esi
% M4 b4 C) F# R* W% c$ p( d004030BB 57 push edi
' r4 j& R4 g/ m% Y* L4 u3 g004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"- Y# ~1 u$ @5 K9 B# w! C" V
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
6 _. ~# d/ }9 w2 R- e# c5 E- h004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],10 }/ M" e. B8 o. x9 ]$ c0 V
004030CD E8 27C40200 call qsr.0042F4F9. U. H( N; n3 c# N- X5 D
004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
5 e4 _- g/ Z& `- F' q004030D7 894424 2C mov dword ptr ss:[esp+2C],eax U1 L1 Q9 [( X) F. p7 p
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48], C# y8 `$ ^- F! w; |/ p" [5 P
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3& Q) r2 J. \& c: m: q
004030E4 E8 905A0200 call qsr.00428B79
) a% g+ G9 |& N {- S004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
]! j, e8 s, [' `6 d Q004030ED E8 3B5A0200 call qsr.00428B2D; a$ g- W4 l% N! x
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
8 x# W& P' i3 t) v0 G004030F6 E8 7E5A0200 call qsr.00428B79
, l1 R- \' S: K2 I% {2 t004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
* ~8 K3 O P& w- `004030FF E8 295A0200 call qsr.00428B2D( `1 g$ `$ ]3 [3 \5 w
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]
8 G3 [7 h- h$ x" X" b00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
& g) j( k; X' p5 f+ k# G |0040310B 83F8 02 cmp eax,2
- f* ` x& D! n2 s0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳% B( z, b% D( g w% H8 ?+ d
00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]
" B4 p* R7 r" B00403118 837A F8 18 cmp dword ptr ds:[edx-8],18
6 ^+ r& o- v8 _. j7 u( S5 P0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳/ i5 e, I- J- l) y
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]' U) q5 A7 a) r$ W" p( v
00403126 6A 01 push 1
% | D; I! e ]% s00403128 50 push eax$ g+ k* T* B" n, S1 `6 l) E ?
00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
0 q$ {& n/ G, n2 k, K; o0040312D E8 C4550200 call qsr.004286F6
$ {7 T5 K9 m/ L# b1 {0 ~2 a( L& Z3 D' j0 L00403132 8B00 mov eax,dword ptr ds:[eax]- p9 t* k7 Y' L* `! d U
00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]4 b+ O# d, h2 U/ m y) z' }# @9 U
00403138 50 push eax
3 [9 F4 N. ?1 X! o, ~00403139 C64424 40 04 mov byte ptr ss:[esp+40],4) N( I1 \6 w4 r! m
0040313E E8 4D560200 call qsr.00428790
( ~& p0 F6 q( O9 `: s/ }6 t00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30] X/ u* p; _! ~
00403147 8BF0 mov esi,eax
9 D) S5 A K2 Z9 r: z: ~ P00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3$ F% F$ S7 A7 s8 t3 K: T# K
0040314E E8 38C30200 call qsr.0042F48B O. |/ ] J% A$ T% ]
00403153 8D46 0A lea eax,dword ptr ds:[esi+A], V3 A* `# r; Z7 {) ]& ?
00403156 B9 3E000000 mov ecx,3E% @+ ^7 f5 W, E
0040315B 99 cdq5 U- }- m/ l! Z- X$ a
0040315C F7F9 idiv ecx5 s3 I8 b/ l% ?9 i
0040315E 6A 01 push 15 {1 n( N( O( M& M% Q* e, h
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]* }% [, U g* a H3 a, b* W' O3 z- z
00403164 8BF2 mov esi,edx$ g i2 h7 `8 |8 k0 ~
00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]" E( |, K0 ~! a2 A) D3 ]" \0 c! ?' {
0040316A 52 push edx8 I5 {! j* e1 O) ]5 J2 J
0040316B E8 0A550200 call qsr.0042867A
1 Y7 \; l/ h" B" P' J- y" [00403170 8B00 mov eax,dword ptr ds:[eax]
& u* _% z$ ~- ~5 }00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
. J! b0 v* D* P; t6 @00403176 50 push eax
) }0 G) @* w! J& H6 X00403177 C64424 40 05 mov byte ptr ss:[esp+40],57 G" X& m* ^, J2 X3 B( Y$ w
0040317C E8 0F560200 call qsr.00428790 @7 G( U: X$ _4 g$ y# H2 C* q; O
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]' ?- z- P3 e% n( E
00403185 8BF8 mov edi,eax
2 a% {: s/ Y- ]' o" Q00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3: j4 E1 G( c( A. |
0040318C E8 FAC20200 call qsr.0042F48B- K: X) J1 ]: H" K3 t
00403191 8D47 0A lea eax,dword ptr ds:[edi+A]
7 M$ ^! W' F4 M4 w, g4 o00403194 B9 3E000000 mov ecx,3E# g0 u9 Z X' e9 o9 i. f0 P% E& m
00403199 99 cdq
2 {# o( E1 V/ b) J0040319A F7F9 idiv ecx$ k* `, O3 P% L. q( H) {; k) g
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]2 K. t$ \+ j# X% O' U9 r. h
004031A1 894424 28 mov dword ptr ss:[esp+28],eax
+ k' c) C0 j% X) `# b3 p) X004031A5 8BCA mov ecx,edx% ^& _! |5 e" x: m3 [# ]0 U o* A- M# x, Y
004031A7 894424 24 mov dword ptr ss:[esp+24],eax
5 I7 p7 L2 y- Y: h- [004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
4 D. C: I" j2 h004031AF 894424 18 mov dword ptr ss:[esp+18],eax6 w2 ]8 K3 q h% v) s2 P: Q5 f
004031B3 894424 14 mov dword ptr ss:[esp+14],eax+ h0 j z* B' Q& ?+ @- O( W
004031B7 894424 10 mov dword ptr ss:[esp+10],eax
0 B* k1 H' B% C$ s( r; w004031BB 8BC1 mov eax,ecx
+ L i3 b7 y! b2 X; [+ B5 {5 U004031BD BF 0A000000 mov edi,0A, U7 h" z3 N% y) F
004031C2 99 cdq; k/ u. x0 H3 ]6 U( q2 b, ~* @/ ]
004031C3 F7FF idiv edi
; ~6 G7 V, R# U/ ]' _ B004031C5 8BC1 mov eax,ecx
* f# x) G! D7 _3 `3 Y2 [6 ^004031C7 B3 0B mov bl,0B$ q4 ~) |! l K* g c
004031C9 0FAFC1 imul eax,ecx) y7 ~. K8 M2 s6 k. p; ?9 Z, ^
004031CC 8BCF mov ecx,edi( w0 w# E. Z3 |# |6 l5 H
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
% m9 y; `$ ^* Y; r; L7 [004031D2 52 push edx
/ O$ _: O" i* [0 Y% t: U004031D3 99 cdq
- s/ r/ I& y) ~2 G/ m' C+ M004031D4 F7F9 idiv ecx! s: f# q* W( L4 p# p2 \
004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]1 z. N' M5 J6 }6 @
004031DD 2BC6 sub eax,esi
x6 V0 M. m1 @4 b; X004031DF 52 push edx
" A4 s5 T1 x/ ]0 u% V8 U3 U004031E0 99 cdq
5 \/ m7 c# z( `# s. u: D004031E1 F7F9 idiv ecx
. t4 |5 f; o6 v( u004031E3 8BC6 mov eax,esi
( W+ l! x/ \8 j( x004031E5 52 push edx
8 U {- J' k( V1 K0 O004031E6 99 cdq
% M o7 b- m; w7 q. H$ c004031E7 F7F9 idiv ecx
6 ^8 |- N" r# B- F9 j8 m* A- x [004031E9 52 push edx
( s, v$ u: h7 g8 W8 x004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
: J; g! b0 c$ t, q* B9 ^3 U004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
# @( |. z+ _8 `, {7 O) t5 e004031F3 52 push edx6 X) |7 N) ]# W. K% O
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893- @; b$ W8 Q# c7 d u g
004031F9 83C4 18 add esp,18/ H7 P% Z: P. i& l6 b% d0 F
004031FC 6A 04 push 49 I6 F$ Q3 j) ~8 \/ z
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]
$ P# ]" G- m! e/ m2 |00403202 6A 00 push 00 o C1 j" d1 S: U6 f
00403204 50 push eax" Y& }; f( ^: a6 r5 c$ M# b
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
# W) u, n" p4 R1 q$ R! b00403209 E8 D6530200 call qsr.004285E4
4 n( W3 Z' Y! N4 G( p0040320E 50 push eax1 s& ^* y9 i) i
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]- d8 {2 G5 r) ~; n" s; g
00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C2 O7 m2 m# p/ t v7 d) i
00403218 E8 A7C30200 call qsr.0042F5C4! r( K* n8 Y. R5 N4 l+ E. o' G
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
$ \6 i% Y9 O* v" O00403221 885C24 3C mov byte ptr ss:[esp+3C],bl2 j2 z" E: d% P5 d, N. D
00403225 E8 61C20200 call qsr.0042F48B
6 b+ ?2 y: K; O" F. f8 C2 Z( u! P! f0040322A 6A 04 push 4$ A) l% u3 i( h
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
' {, T6 F$ @. I: s1 V! u9 R5 O00403230 6A 05 push 5
0 I$ r2 R+ } ^7 x0 G, l+ L% h _00403232 51 push ecx8 m) P* l! M. P! E1 {# s: t- H8 {3 D
00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]3 }$ e# _" X& a: E: P- i& B
00403237 E8 A8530200 call qsr.004285E4
$ y% m$ P! Q# T! [: |( k K+ ~0040323C 50 push eax
* m6 ? d+ M! p; q( m0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
" f) [( O* k V+ G00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D" d+ @3 I) J. `1 E
00403246 E8 79C30200 call qsr.0042F5C4" u3 {& X* z% ^2 k1 ]
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
. X2 K) Y6 Q) a" M! ~0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl' Z4 E% L/ i3 e, W2 J4 j3 @
00403253 E8 33C20200 call qsr.0042F48B. a; m U/ U" b5 A+ u! Z
00403258 6A 04 push 4
- r( u. E' I. z" O0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]* { o/ l7 _8 L" Y6 c
0040325E 57 push edi
( r0 \; }8 u. e5 J: B$ q0040325F 52 push edx4 W6 c/ P& S. A6 k" h
00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
$ U3 f: t: H' O7 g+ w$ @00403264 E8 7B530200 call qsr.004285E4
: [" A8 }3 w, h6 c, L3 ~00403269 50 push eax
8 {: J$ g4 s6 |& w! \0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
) x5 s U+ R. \0 T& D7 \. U ~' W0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
3 p" j* F) j7 Z00403273 E8 4CC30200 call qsr.0042F5C4
2 x' J/ d& A) C- L) J; ^7 p8 K00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
% f/ M c: f7 f$ D. h. T0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl6 J/ z" E& o6 h7 x/ a0 J
00403280 E8 06C20200 call qsr.0042F48B
2 B6 B1 Q: m% Q" C# E00403285 6A 04 push 4( j) N6 \+ [ _8 Q* V
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
# e& k6 |2 V% L# s4 B6 G/ s0040328B 6A 0F push 0F
& c$ f+ w+ R' Q% c0 o) `0040328D 50 push eax3 m( L, p. T( Q. a- C' ]
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]0 J- T: Q* ]5 i+ h: q, w4 F
00403292 E8 4D530200 call qsr.004285E4 i& U, o. m0 ?. L: Y+ W; U
00403297 50 push eax
: v* S4 f- O; o2 r00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
7 ~" S+ U6 {) u6 |" e0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
, H8 \0 _1 ?; {5 L& n4 g004032A1 E8 1EC30200 call qsr.0042F5C4) p$ I7 m5 G# F3 Z! I; m: ^- G
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
. F; a( D$ V* p; n' j" r7 \004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl" e5 Q2 q+ j% r7 @/ a2 \ u
004032AE E8 D8C10200 call qsr.0042F48B
! t6 H* i8 ^; h& g004032B3 6A 04 push 4* u4 d: E) j0 [! r
004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]4 c! t u% \. J7 t c& y9 @
004032B9 6A 14 push 14
& b- O: U C* \1 y: s* a- @004032BB 51 push ecx
: h. a; p3 V0 l. l; W004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]7 N' `. O& t9 v- g6 a! @9 Y* \
004032C0 E8 1F530200 call qsr.004285E4
$ ], B9 \: D( s' X Z004032C5 50 push eax- P: U; V" g) g- `( t' r1 x
004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]7 E% Z1 ~" ^& `6 k( p0 H0 l
004032CA C64424 40 10 mov byte ptr ss:[esp+40],10' V! J- W* z$ k! x, i
004032CF E8 F0C20200 call qsr.0042F5C4
8 W2 z5 A; n2 J% g) Q004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]& d9 i3 y( F, i
004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl
# L/ B* o; X3 }0 A004032DC E8 AAC10200 call qsr.0042F48B5 A5 D- ]8 u3 R' a" _
004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
: z2 ^; W8 h" f1 ]7 z8 R004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX0 P6 `$ |) t8 v4 E! S
004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL) U3 {3 C' [: t/ {) u5 G# r
004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL
, u8 m# v+ m8 c$ p9 }% |- J004032ED 8ACA mov cl,dl ; DL送CL
# A) k# u5 D5 H7 g5 P004032EF 3AD3 cmp dl,bl ; DL和BL比较
( M6 i$ b, x+ w! A' t& C004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
$ w T/ W6 A5 B0 i/ ~0 T( n004032F3 84C9 test cl,cl
{2 C1 j5 _) s# Y* K. X/ p004032F5 74 16 je short qsr.0040330D; x2 r/ F- n0 O/ J
004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL5 {- J/ _1 T# W
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL5 D2 p2 g6 [9 u4 |9 u+ I
004032FD 8ACA mov cl,dl7 v, M8 G* }5 U. ?" X
004032FF 3AD3 cmp dl,bl ; DL和BL比较
5 h- o+ [$ f, q00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
% _, e5 O0 l7 _& y5 J00403303 83C0 02 add eax,2 ; EAX加2) K) y2 s# H7 f: d' R
00403306 83C6 02 add esi,2 ; ESI加2( U. t3 k( H, v( C
00403309 84C9 test cl,cl; q+ I5 r ?3 m- N
0040330B ^ 75 DC jnz short qsr.004032E9
/ \6 E6 N, f) x3 t( D0040330D 33C0 xor eax,eax
+ d- C( o! W# @3 i9 a0040330F EB 05 jmp short qsr.00403316
" Z/ x/ v5 }' g: Q8 W& z00403311 1BC0 sbb eax,eax
) j* A. j9 J/ b" ?7 d9 v# v00403313 83D8 FF sbb eax,-1' |) q0 t! w4 {- Y
00403316 85C0 test eax,eax
1 K$ ~7 H- K1 h Z00403318 74 0E je short qsr.00403328
; p6 }& K* J0 L! ^2 c* N3 X* [0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
- Q+ a6 s1 o8 }* F: v7 M9 l3 C$ O3 \# K0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]* `# q: Y2 x7 N) A% m
00403323 E9 F0000000 jmp qsr.004034188 K1 O+ D H8 S$ B
00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
: Y6 E4 G5 v6 j7 f( \6 e0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
5 `9 @- ~9 ]) t$ U# w00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]' y/ g M% a, \ ~; k' u1 `% q
00403333 50 push eax* L$ V1 v4 C% u
00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX+ \4 G5 R5 K7 s# U2 @+ C* R
00403339 50 push eax. N" l; {5 r+ A2 [% b' V3 K
0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX x. w. X8 O8 s9 P# f. S
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX1 @' J$ i8 w1 k# S" ^4 N
00403343 83C4 04 add esp,4
, Y/ ?, f# s( L00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI
+ i3 @ ]: @' X00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]2 O4 A0 z/ ]" `( {) Y$ m) S
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
+ Y% \4 |, {$ S: C, u4 Q1 c5 `0040334F 50 push eax( i, M( g5 }6 c) i4 L' ^, p" s
00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX" T: ], {- K0 o d4 u9 o, W( q2 q. H
00403355 50 push eax
4 Y6 n$ R. L% i4 \& P. w7 Y. v# G, m00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX0 Q4 A. s* V1 |
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX& l0 T/ }4 k9 }/ u3 Y" m P
0040335F 83C4 04 add esp,4" k6 L& j0 m6 N# b2 h# C- X
00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI6 d2 K8 a: @2 Z2 I+ q C
00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
7 Z3 w! ]- C- J6 R6 w/ u00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]
, h% S: S# }3 Y' C6 H) v; H0 t0040336B 50 push eax
! Y# R h! M- H9 y0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX
O: {0 o6 @. [& S00403371 50 push eax
# o/ h/ `, w- E3 h, `3 ]9 o00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX
3 {$ k- p! [, q! V4 J00403377 8BD8 mov ebx,eax ; EAX送EBX1 t0 E* n8 S7 p, p# z
00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX
5 `# H6 ]* n `! C+ @0040337D 83C4 04 add esp,46 r$ `) ~1 {% @! z, Z' u2 s% Z
00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]$ W7 r A% e( s% Z9 l3 }( d0 \
00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]+ ?2 e* |1 {5 s. D4 L: V6 r8 u+ j- |
00403387 50 push eax9 r$ k% [) H5 {) Q3 M# b5 [
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX
8 q" r2 { }* V! Z! F% p" T0040338D 50 push eax
1 `# T% X. j2 m1 u7 L/ r3 j! X0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
! p6 U( S0 w/ W4 S: Y1 D00403393 83C4 04 add esp,4- `5 s% [, H8 q d0 _
00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]' o1 W! Y* F$ q! E& I
0040339A 8BE8 mov ebp,eax ; EAX送EBP
, g3 M; Q9 o8 R$ Z$ B3 g/ H4 n0040339C 6A FF push -1
t% N" E( S1 T* k$ P0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX6 W. |$ V9 [: y" n, L: L. G3 @
004033A3 6A FF push -1
! i! M# ^: r3 a+ x004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
8 f/ A- j* a" o3 j0 y) N004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX. J+ f; l2 D6 a$ b4 [
004033AE 6A FF push -14 }# M, K! T" Z3 f) I
004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX+ o5 J& c" j4 W' y" U. H T
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX) O2 ~* G2 r# e1 E
004033B9 6A FF push -1
% K q9 V. K8 c# o& e! o$ s004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX+ g5 v* i) l1 Z: {' J4 t4 a
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX% j; r/ {7 A4 X' G5 V
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
* A S8 j* x" ~ G004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX' z; R; `% i7 y5 f# k9 s" N1 ]
004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
, ~/ @& D z: ~; ?- Y* t! ^004033D7 D1E0 shl eax,1 ; EAX左移1位' ~& [( p/ e0 ?& u! k2 L& g6 V/ e
004033D9 99 cdq ; EAX扩展
: n" |8 Q9 @( X W: {004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中6 w C; T# `1 {4 H9 J8 w. x
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较) K/ ~; E1 m1 l) w
004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)
- u1 V/ v( L% @' [2 G004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A9 J2 Y! w% X2 P6 a( \9 t# V
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]3 y$ W, Z/ ~- e; s5 A
004033E9 EB 2D jmp short qsr.00403418
) w( g: y3 k" k7 |004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX2 |. J- E0 k/ P2 _0 ?0 {" ]: a* j: T
004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2( M! |% U/ w/ j1 z$ M9 ^5 ]2 J$ D
004033F7 99 cdq ; EBX扩展' S# c' h8 j- h& q
004033F8 33C2 xor eax,edx ; EAX和EDX取异或& m1 f. Q6 q3 J' ?# i$ x4 Y9 i
004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX$ A7 U) _" j e% W" C
004033FF 2BC2 sub eax,edx ; EAX减去EDX
) J6 k/ S$ L% G& H$ q; I' U00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]
7 K" }% l7 V! k2 b" t1 X00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
( X0 z" \7 B* p3 i00403409 99 cdq7 b6 f: i& E% [, X: ]) E2 P0 r
0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
+ o% E0 n* [- O) T4 l Y6 m! z- h0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX+ Q4 [) u* J. Q
00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较
4 A2 r' {6 p- T9 ]8 l1 M! n, d00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)
2 U8 p. t3 U6 Z/ O00403418 E8 6EC00200 call qsr.0042F48B ;
9 C! a: O# G+ m: C. B0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
. j3 n& x4 i8 d4 S6 x6 E00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9
' S& w, ~% c. R/ \3 P* u00403426 E8 60C00200 call qsr.0042F48B0 k" A. a/ G' ^" ?1 g* O( |, h! i q& D
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]( d* N' b5 ]- z
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8% d- m" ^2 F" k. s
00403434 E8 52C00200 call qsr.0042F48B: C# O- H8 E# n9 q1 k- z* W
00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]1 f' H" |* E/ s5 w! d
0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7- i. A6 d' O1 _$ l" T- {
00403442 E8 44C00200 call qsr.0042F48B, j& X) v, A$ @9 n4 ^
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
1 \3 c' _" t% i" y0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
! r2 R7 L" C, i00403450 E8 36C00200 call qsr.0042F48B' ^, Z$ y4 i! k
00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
/ ]9 b8 W! D5 _6 H. W00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3
2 H+ a6 t: m4 K9 J) j' d0040345E E8 28C00200 call qsr.0042F48B2 Z& J# T7 z2 f# x
00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
- }( X& @* x3 Z: P% @00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
( V) } F! k; t8 p4 Q+ z0040346C E8 1AC00200 call qsr.0042F48B
7 ?( w* q9 \8 T! h! X00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]: J/ D, @+ R8 H
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1
2 ^* {+ A7 h( S3 Z I+ N8 l( T3 F0040347A E8 0CC00200 call qsr.0042F48B
; _) e/ f4 l( Y6 o3 t: x0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]: C* x7 V) Z( _) T1 D
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0- ?% _5 C. ~& R" n! z& x
00403488 E8 FEBF0200 call qsr.0042F48B8 K4 x, h4 E6 y3 d1 Z6 \
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
% y' ~5 S5 j- i' I) h& @; _00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
* s5 g9 r) M- i( }2 \ M00403499 E8 EDBF0200 call qsr.0042F48B
& x1 d; S% l- C0040349E 32C0 xor al,al ; AL清0
' u; I% B+ z; B; f0 M004034A0 E9 88000000 jmp qsr.0040352D: z; `+ ?. c. V, L0 \
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~2 G+ M0 y" i. ]$ u- A
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
& D1 z) H/ T0 ~' D$ ^. _0 D004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],94 S* F( `: T: b% M3 R+ c
004034B3 E8 D3BF0200 call qsr.0042F48B
9 i. _. v+ J) H" }4 {6 U3 e( A5 J004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
* d9 w0 ?7 |" m, T2 m, w004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8$ n% W p' V* ~, }8 i( _
004034C1 E8 C5BF0200 call qsr.0042F48B' W- s5 u' e5 f; s& {; Y' q
004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
- z% k/ `7 x) k0 u5 ^3 I6 s: Z004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7, h, A/ G$ R8 ]
004034CF E8 B7BF0200 call qsr.0042F48B
! {4 S5 y* ~. z# z6 ]7 V004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
. N2 p" C- R+ m. U" X7 X9 D) U0 t004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6
% P5 B8 w+ s' g& m+ O0 z004034DD E8 A9BF0200 call qsr.0042F48B0 U# p4 }# R+ ^9 y
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]3 Y' ?$ Q' A3 X- f C
004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3% ~/ r# Q" e, u$ t( V
004034EB E8 9BBF0200 call qsr.0042F48B
9 w. r/ y. o/ T8 B! g* @6 F& c. V004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]* i1 F: r" }+ @
004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],27 c* }' `6 Z* d4 e
004034F9 E8 8DBF0200 call qsr.0042F48B3 t3 G' z, N/ i) a5 L1 Z
004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]. k" ?- [/ V6 Z1 T7 z. W( L
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1
) r* h7 F7 k5 `% d00403507 E8 7FBF0200 call qsr.0042F48B
1 O0 \$ P; f; T( z0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
1 a# ^1 C8 }9 [* y9 ?' j) h+ |# O00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0
# P' o! ?3 D+ a) x2 E* h00403515 E8 71BF0200 call qsr.0042F48B
3 P4 F' u% u" @6 r3 |8 P3 Y7 m6 d0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]' E, H$ X2 M0 Q: m ]
0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
1 [9 {2 O8 @: z$ o* [00403526 E8 60BF0200 call qsr.0042F48B) u& n0 L, V( J9 A& F
0040352B B0 01 mov al,1
( M: r5 t$ Q V: | \' i0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
! w7 Q% t' _8 n4 e) Q2 |00403531 5F pop edi
" A# h9 l8 }& X1 j, x00403532 5E pop esi
" {+ |. l6 f5 V( u00403533 5D pop ebp
: ]! {! h0 ]1 ? t00403534 5B pop ebx
/ Y* r8 N9 K9 B* T- z00403535 64:890D 0000000>mov dword ptr fs:[0],ecx
1 x) m& @, S, d) y r0040353C 83C4 30 add esp,30
/ z/ N% A( y) f0040353F C2 0800 retn 8
& O5 L( T9 S3 ?8 G, F. g--------------------------------------------------------------------------------
z: T1 x6 j4 B( ]+ o/ X【破解总结】/ h) B$ i6 P8 S" l, w
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^1 b2 @4 x7 V/ k d, w' F2 L- g
用户名:yijun
0 f! Q. X+ y: p8 g2 Z注册码:4893*7777*3726*7777*0529
0 |7 @- ~2 w7 S1 J% @--------------------------------------------------------------------------------
' D$ f3 E6 g& h) h; r2 k【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡