|
|
|
【原创】破解Quick Screen Recorder5 H* F! s* F% c6 F# O. q) ?
【破解作者】 yijun+ F6 ^$ a- E5 v4 G0 r! [
【作者邮箱】 [email protected]! S9 H; u: C3 ~/ s* C$ x7 f
【使用工具】 OD,PEID2 v9 U( \6 _( i. v) a
【破解平台】 WinXP3 T, Q+ Q4 T/ Q& x: z( ?
【软件名称】 Quick Screen Recorder
# s5 u: G f) g0 o# {【下载地址】 天空9 R) f& H$ p: j$ \3 c& }
【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
$ n1 p' t4 G! E! c, j; t' _) m【软件大小】 540K
& t4 ~* n2 @ J+ p* f/ o【加壳方式】 无
! k1 e. ]7 J) F. X【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)
5 ]8 B9 @) O" W- \--------------------------------------------------------------------------------" W; i! S7 F8 d! N: @1 C
【破解内容】
V* k2 }* b& G7 f# l5 { PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:4 b* @; t' B) r% S) ~7 H) V% f
00404C69 55 push ebp //在此下断4 E& K- y! J5 u! S
00404C6A 56 push esi- n* i5 l7 d* |
00404C6B 57 push edi- r$ c% _0 P( E8 U$ d
00404C6C 8BE9 mov ebp,ecx
& [. z0 |( y) L; _2 ]& N' J3 }00404C6E 6A 01 push 1, _' G/ R* z9 Q0 V$ a; M
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名- A7 S! y9 u5 B- X: d6 p. N
00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]! B1 I9 Z/ ]& i6 p) g- C
00404C78 8BCF mov ecx,edi
% R# g, p9 i) E% g- x( d( Q0 B00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码& ]3 t F/ }! t; F
00404C7F 8BCF mov ecx,edi
- P0 f+ z$ a# L+ }00404C81 E8 A73E0200 call qsr.00428B2D
% d9 ]! y' e+ k* D* f9 r8 F00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
' _) f2 E* A+ o6 f00404C89 8BCE mov ecx,esi
. _! m: Y1 P7 R {( [. f0 H00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX/ B0 n' T0 R& C, ]& m# Q
00404C90 8BCE mov ecx,esi
' t8 H, T. f5 l$ G7 w4 m* u! e00404C92 E8 963E0200 call qsr.00428B2D
7 E' C- O+ E0 g' T00404C97 8B06 mov eax,dword ptr ds:[esi]
: |: P! w# R9 E, c" i1 ~00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
: J+ v. m5 `1 }# T00404C9D 7D 26 jge short qsr.00404CC55 s, x6 a/ a* i0 @
00404C9F 6A 40 push 40
' l" L+ g' \, A' R }00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"' c1 o# M4 A2 n) M$ b* {
00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."
/ z4 E" t3 n8 [. |- {. a1 q00404CAB 8BCD mov ecx,ebp; y/ D0 w3 y* G y0 ^
00404CAD E8 C3840200 call qsr.0042D1755 u4 ]2 t' I J) K3 Z' [2 F
00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
/ V, | b8 S# Q- ?- y9 E00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx0 W3 N" G, q" r8 r
00404CBD 5F pop edi
' d B# U# {9 f. E4 M: R00404CBE 5E pop esi A, Z+ T( ^1 W
00404CBF 5D pop ebp7 @% ~& p" W. K5 j( f
00404CC0 5B pop ebx H6 x# L8 s/ D% L# T
00404CC1 83C4 18 add esp,18
% s( q p' j, ~00404CC4 C3 retn3 }3 J( \" |& _& z3 I+ H" {* D
00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
6 ^% Z5 H' g" ~) r" a00404CC8 84C0 test al,al; N9 \& A6 I8 ^
00404CCA 0F85 1C010000 jnz qsr.00404DEC. d. F; w' N7 o0 J
00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]/ m3 Z" \5 m' r, g
00404CD4 E8 87E3FFFF call qsr.004030604 Y" U! y) n3 D! v8 J
00404CD9 51 push ecx
7 I0 w2 b1 a8 r* T! Z) ~. d. ^00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
; {* }( ^7 H" L8 {6 \00404CE2 8BCC mov ecx,esp1 b( K# J! H9 E
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
/ e' a% P6 J2 H$ u0 O8 A! i00404CE8 56 push esi$ Y! o; A: c8 a& i
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0( l# ~' x; a6 z+ q
00404CEE 51 push ecx
9 o) t v/ }% R1 F7 ]& V' H00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1/ Y9 ]" A1 X' H1 B7 b8 \. A! e
00404CF4 8BCC mov ecx,esp3 U d+ N6 M# U( v: h
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
$ |, s* E! J- [8 {$ l" E00404CFA 57 push edi
2 J0 R6 w3 o$ }! T+ t! [. N* b00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0/ `) L4 Y2 O/ Q: e
00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]* i% w, s, g; z* [9 q1 J$ |( P
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0" p1 X. b8 e# U
00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~
" m+ T. _, m3 T. y0 _00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~
- ^, _; O. l1 q# L- h: y00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
% A" Q3 V3 X7 D3 G00404D12 6A 40 push 406 ?& ~; T. v g" ]1 ^) J
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"8 Q2 f! \2 }; s T/ {3 ^/ ]) I
00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."
( f8 Y, \- y/ {# I0 K8 O6 |, h00404D1E 8BCD mov ecx,ebp/ S2 \8 {) `( A; m
00404D20 E8 50840200 call qsr.0042D175
E' W( `9 |" o7 a& h0 k' s) _00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
" T5 K/ ]2 a- T* q$ z00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1 \ L2 M; |6 g; L: W X. G
00404D31 E8 5AE3FFFF call qsr.00403090
* t `3 o1 P. p, B( @0 q# A2 Z' p4 L00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] p" r6 _- o6 I! K2 [1 j
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx8 L# Y7 f# B0 k/ Q
00404D41 5F pop edi
2 }* x2 e- l. e8 {" P00404D42 5E pop esi" Y! m! ~" @" G
00404D43 5D pop ebp
# ~: L. R* i. N; i9 d00404D44 5B pop ebx# L" {+ j/ e5 O2 F9 z2 D
00404D45 83C4 18 add esp,18: }0 J/ u- }' n+ g$ G% T/ g
00404D48 C3 retn* b( h7 ^, O2 W, j
*********************************************************************************************************************************************************4 U/ d+ ^2 h$ d3 Z& r
跟进00404D09处CALL来到:; ?; z, Z* U. q( s; O& u1 I1 D
004030A0 6A FF push -1 //一路F8下去~~~~
, o8 T! I- d3 J e( |004030A2 68 C88F4400 push qsr.00448FC8
. O7 L: d& B$ h( x3 t5 j2 e' r1 x004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]! k9 Q, f* F. x* v
004030AD 50 push eax
L$ b7 O, S) K0 G# G- s) j% T004030AE 64:8925 0000000>mov dword ptr fs:[0],esp8 k4 B& G6 w) l& ^
004030B5 83EC 24 sub esp,24
9 R& G3 j! t" [6 h& Z004030B8 53 push ebx! n: B7 `8 ?# K
004030B9 55 push ebp
" W1 P3 c/ x, T/ m/ J5 H6 B004030BA 56 push esi
# y# p7 q) {$ n5 y* [004030BB 57 push edi. `5 m3 x% m3 i, _# u2 N* o
004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"/ v2 _ v: d3 t ?
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
# N5 X1 a' G/ U9 Y004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1
. }( o: z$ [; ?004030CD E8 27C40200 call qsr.0042F4F9
& E7 U" E/ v/ J: o- f5 Q8 `/ W% t004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]3 D- K3 W2 q) J& p; A- ?
004030D7 894424 2C mov dword ptr ss:[esp+2C],eax
# j* y. M0 {0 n: y; S# O004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
& P1 h4 l! Z0 \: j: y004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
! _+ O: v; d* j/ o3 K+ g004030E4 E8 905A0200 call qsr.00428B79/ J8 K! L; X, v# m$ i3 v: G6 i
004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
8 B8 _0 E& X: q" y004030ED E8 3B5A0200 call qsr.00428B2D) W; n0 p1 P0 d/ @
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]1 R+ C; d* {8 [: x/ r1 a M, Q
004030F6 E8 7E5A0200 call qsr.00428B79. h0 S# B7 B) } m" v5 k
004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
4 p* c1 H' j1 `0 I004030FF E8 295A0200 call qsr.00428B2D
/ b+ T7 Q# s; X9 Q9 ~00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]
2 v+ S# a9 D1 H! K; j00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
7 @$ X9 O1 Y+ K1 h# b, T0040310B 83F8 02 cmp eax,2
* V& ~# _: Y8 P7 [/ s9 r3 X0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
: F9 {; ~( G; A% ~0 t( P00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]& |/ X& k9 ~- ?; q1 D
00403118 837A F8 18 cmp dword ptr ds:[edx-8],181 y* p; f0 s& o9 h" c& q9 ?! Y
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳# J3 L2 o% Z! r
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]8 B1 u! U/ }1 L1 y% E
00403126 6A 01 push 1& W: Q6 q0 V3 Y% F( t. C* P
00403128 50 push eax2 T+ q* ~- b$ K3 E3 d: b
00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]% M1 Z& ]( [$ o% r. e
0040312D E8 C4550200 call qsr.004286F6
! O. F( O( o5 C5 z) ?00403132 8B00 mov eax,dword ptr ds:[eax]7 m+ z. F: B% x% ?: C0 |) g3 N
00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
# s7 u6 {, P$ \% T6 `8 R+ v6 o3 G9 j00403138 50 push eax/ ]; T. T- }0 `* x
00403139 C64424 40 04 mov byte ptr ss:[esp+40],4) Y' W3 F( g2 m, Q
0040313E E8 4D560200 call qsr.00428790& ?8 Z% M5 M* z0 Y! {
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
$ u4 a7 t+ w, T00403147 8BF0 mov esi,eax
3 k" k' j0 F& U7 g00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],37 T( y9 V& @. a3 d1 z7 J: o
0040314E E8 38C30200 call qsr.0042F48B
# ]' [9 }7 A/ k) ]' D6 w00403153 8D46 0A lea eax,dword ptr ds:[esi+A] j# l% |# x, A5 H
00403156 B9 3E000000 mov ecx,3E1 _% X/ F4 f2 q
0040315B 99 cdq
. s4 e* ^7 B) w0040315C F7F9 idiv ecx* T O2 f2 y4 X4 L
0040315E 6A 01 push 1
/ ~, m; c- m" i$ a00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]1 u: K3 z/ y' v0 a9 Y" l4 \+ Z
00403164 8BF2 mov esi,edx6 g8 E: B( t, }8 ?# I2 ?& P
00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]& y: J: i+ L% a2 d
0040316A 52 push edx
) p& r5 f* K7 R# L$ k+ ^0040316B E8 0A550200 call qsr.0042867A
$ |" _$ V$ g8 Z" R00403170 8B00 mov eax,dword ptr ds:[eax]5 E3 l* a6 e: {, b% @
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]) K- a6 ^ P3 [
00403176 50 push eax
4 Y" P! z1 a3 b/ Z* [! b00403177 C64424 40 05 mov byte ptr ss:[esp+40],5/ d1 ^5 z' d9 W0 U
0040317C E8 0F560200 call qsr.00428790
0 @8 N! T6 s/ h$ y& J00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]3 Q: k4 `8 W z# P* _* w. x; { j
00403185 8BF8 mov edi,eax: d& k4 Y) [* X) ?( E
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3
+ E$ h) `; L0 X; z% ^0040318C E8 FAC20200 call qsr.0042F48B8 Z& m0 L& N9 o* p4 X
00403191 8D47 0A lea eax,dword ptr ds:[edi+A]8 U! |7 o' F* ~. V* Y# h. m8 c
00403194 B9 3E000000 mov ecx,3E
$ o0 T- A/ `' U% H00403199 99 cdq
2 ]- I# V: R3 Y7 f. ?+ B0040319A F7F9 idiv ecx
$ Q, ]: X) R% T: V0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]4 u8 a5 [. ^9 j; i/ O! ~
004031A1 894424 28 mov dword ptr ss:[esp+28],eax( w. b7 v7 M+ g/ ~: C+ ~& D' L
004031A5 8BCA mov ecx,edx
3 Z9 f4 R9 z" K1 V9 \8 Y0 F004031A7 894424 24 mov dword ptr ss:[esp+24],eax
3 B$ M# M: h2 h+ r9 N& g/ l( {004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
4 r/ J( y7 Z' B3 q% _004031AF 894424 18 mov dword ptr ss:[esp+18],eax
& }% ^, T) W8 U+ t/ m; ^004031B3 894424 14 mov dword ptr ss:[esp+14],eax
3 _, u5 Z4 c, H004031B7 894424 10 mov dword ptr ss:[esp+10],eax
1 w9 N9 k; b* f; N+ b0 \1 |004031BB 8BC1 mov eax,ecx
8 t' `+ S1 P( }& J0 C, {004031BD BF 0A000000 mov edi,0A
% \- X- C! O" ~% J$ D004031C2 99 cdq) t& }. n; Q7 k6 ~
004031C3 F7FF idiv edi
! Y6 t" c* { H: A/ ]004031C5 8BC1 mov eax,ecx
" M5 j8 U" O8 Q. Z004031C7 B3 0B mov bl,0B
1 N, S+ X7 a; {9 M004031C9 0FAFC1 imul eax,ecx
2 R& G3 e4 H; T+ I004031CC 8BCF mov ecx,edi" x a, |' o4 L
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl. i+ A: v J$ ]0 k- a4 x
004031D2 52 push edx% W( {- b( W& T+ s- p
004031D3 99 cdq
6 c3 x* ?1 l8 |) f' y0 C004031D4 F7F9 idiv ecx' I) N4 C! \. f* E) v
004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]
8 f: z- b. @+ Y% p* Y- O1 t# [004031DD 2BC6 sub eax,esi
9 a3 o) q7 w3 u0 z) d004031DF 52 push edx
% d' s6 N4 Y, z004031E0 99 cdq2 B" L$ U( f: L0 D
004031E1 F7F9 idiv ecx+ G3 s- f7 ?& X8 ^& t) _
004031E3 8BC6 mov eax,esi/ R" y C) _* P( I
004031E5 52 push edx
/ l1 g8 i0 H/ h {# B. B5 U5 G004031E6 99 cdq& [8 w7 I# Z, S; D
004031E7 F7F9 idiv ecx
3 O3 [4 Y& ]3 J; q004031E9 52 push edx7 t" R. H! E4 l8 F6 Z! a
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]/ \8 ~* R3 k0 @: q' h) ?3 [8 s
004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"8 T9 E+ r" w E0 F6 b0 g
004031F3 52 push edx
6 t& G0 W0 M5 m6 t004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893
& a$ ^' B+ G" D0 ?" P! W004031F9 83C4 18 add esp,18; T+ K& ` S& Z' L% }: o- w; u
004031FC 6A 04 push 4
- b o- a7 I( J( Y, P g004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]) N' M( R1 p& i$ A
00403202 6A 00 push 0+ M- b& V: g: q/ u2 y3 k
00403204 50 push eax) t5 q# N# L8 d, Q }, d% ?% e
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]- a6 } J8 o: u6 l$ B' \
00403209 E8 D6530200 call qsr.004285E42 t7 D$ [- c4 F3 I4 l# F1 |2 O1 R
0040320E 50 push eax0 D7 l. f: q$ m: p& l' S
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]8 B8 b4 i. Z: L. M" m4 w# a0 D
00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C
: l, X; x5 y3 }, L00403218 E8 A7C30200 call qsr.0042F5C4
; U, }8 C( N, R; S' h0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
6 [$ j) x; {0 U& {" @) d/ U00403221 885C24 3C mov byte ptr ss:[esp+3C],bl( n9 l( b2 K1 i0 Z- z0 W
00403225 E8 61C20200 call qsr.0042F48B7 ]2 ~0 u( H: g6 G
0040322A 6A 04 push 4$ x5 g0 e: [1 l; S1 @$ u$ J; z. S
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]* W2 g/ J, N! c6 y+ d
00403230 6A 05 push 5% O/ e$ c" K% b# _' ^9 o$ p3 L$ B
00403232 51 push ecx* F: D- B5 W# H9 }, B' H
00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
( W4 Y5 z, h3 k! F' |4 H# l. `00403237 E8 A8530200 call qsr.004285E4
! T9 O( y/ C, K+ q- B0040323C 50 push eax
, `4 c: u& Q( C- y9 |0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
, O5 o t4 K" t( h. {00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D5 [1 ?7 e/ q8 J& H0 F
00403246 E8 79C30200 call qsr.0042F5C4
- u0 l% `- l9 D7 W4 Y0 c0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]& P o0 ^/ ?7 c
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl9 [- T- g4 q5 [! v- v7 r
00403253 E8 33C20200 call qsr.0042F48B7 A5 {, i. G' T) |: Y( d
00403258 6A 04 push 4/ l( ]$ H) E1 F; o2 V
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]
0 b1 k! N0 V7 J2 x9 |& Z! P0040325E 57 push edi
; A: V5 L& M p6 @; O/ q5 N8 K; J2 f0040325F 52 push edx
0 h; h( d2 q# y1 _; x% B, L00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
* ^: D0 E( a8 L' k, Q/ R4 E00403264 E8 7B530200 call qsr.004285E4
, M3 ^8 a- n' v. R! x7 ]00403269 50 push eax+ b4 E; |& s# _, C
0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ?4 m: C2 a1 Z1 r6 q
0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
# ~3 I: a. K- u! A, g- }00403273 E8 4CC30200 call qsr.0042F5C4$ m, |" _7 P' J4 L3 m
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
* i7 D9 M& s% {- u/ k0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl% v& `, n, T) _
00403280 E8 06C20200 call qsr.0042F48B
7 A) P7 W+ r/ Q6 c00403285 6A 04 push 4
( k- @8 X5 D3 H: m# c) @00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]7 Z E" B0 j4 k2 D
0040328B 6A 0F push 0F8 j) j- R; y1 [ K! t* K$ ]' @
0040328D 50 push eax( F8 A7 p9 E; ^" r5 J5 c8 \
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]: p( H( s) u3 q1 s
00403292 E8 4D530200 call qsr.004285E4% r ? c% K8 x
00403297 50 push eax" k3 p9 e0 V& f& r2 Q
00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
w D) U8 c; q, |/ c, p0 W$ j0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F3 f( m* C% a( y4 S
004032A1 E8 1EC30200 call qsr.0042F5C4$ C, s* q' E/ a
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
; V6 d$ i {/ a1 F x% l- z! c0 n004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl
% g. E2 a$ `4 g( Y004032AE E8 D8C10200 call qsr.0042F48B; B/ q& A6 ^& Q) q4 K. [ Z1 p
004032B3 6A 04 push 4" f B& ~# |+ T5 u, f2 E3 j/ \
004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]5 d- @7 N) S# o( c6 p
004032B9 6A 14 push 144 ]- W# p7 ~7 @. [; \
004032BB 51 push ecx
. i) F$ O6 ]9 W) v004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
# J! m: m, ]3 s8 |+ K) M9 {004032C0 E8 1F530200 call qsr.004285E4
. n* L9 _/ S# A$ E& p; c004032C5 50 push eax0 [; _$ ^5 {1 n$ v6 }( ]1 W# {
004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ^9 n7 [3 |0 R5 }% b8 ?9 |
004032CA C64424 40 10 mov byte ptr ss:[esp+40],10
0 X" e" Z* _% r$ ^& }2 @004032CF E8 F0C20200 call qsr.0042F5C40 y7 [# ]( V6 O5 [: B; h
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
7 ^4 k" m: m1 R" g/ b004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl/ ~9 }( p0 f P6 A7 e9 K) m
004032DC E8 AAC10200 call qsr.0042F48B
& K+ v5 F2 n' M) N1 q0 z% u004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
# n! B8 ~+ j" J+ @* Y( E" h004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
8 w. }* ~5 m% y1 u1 |, Y( z9 c% `004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
3 N& p! j3 J9 Q004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL
0 q* `' C( G8 ?( C. V004032ED 8ACA mov cl,dl ; DL送CL! o! J+ b, i1 D, u& W1 u
004032EF 3AD3 cmp dl,bl ; DL和BL比较
& O+ I0 L9 p( n2 P004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)* i" `/ w7 w( O" V; _/ ?
004032F3 84C9 test cl,cl
4 s9 I4 o/ u' d004032F5 74 16 je short qsr.0040330D
# r! P. M* k! O, w004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL
! u1 c2 t1 i3 t# \! N( c7 [! W004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL
V |/ \- l+ m0 A+ J5 G4 | o004032FD 8ACA mov cl,dl6 K2 I5 T. Q/ q) N( D
004032FF 3AD3 cmp dl,bl ; DL和BL比较8 Q; E$ r9 p I Y2 H7 v* O5 ]
00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
. |/ y/ B/ R9 @! H$ `, ^00403303 83C0 02 add eax,2 ; EAX加2
' ~+ ]- n8 m- R- |* Q00403306 83C6 02 add esi,2 ; ESI加2 t( f9 A0 K/ r3 n- s. T9 m
00403309 84C9 test cl,cl" `0 \4 n a& R, o, A
0040330B ^ 75 DC jnz short qsr.004032E97 S7 r, y" M' [' J4 }" L
0040330D 33C0 xor eax,eax% F- }/ m& V* Q" D; B
0040330F EB 05 jmp short qsr.00403316
0 Y5 V8 l8 v7 w) I00403311 1BC0 sbb eax,eax
, C3 `. z2 R0 w# n00403313 83D8 FF sbb eax,-1" F* Z' A" W/ |8 |0 d
00403316 85C0 test eax,eax
9 e. b2 ]9 c, J% b m; A00403318 74 0E je short qsr.00403328
{9 D' [9 d6 F v+ p0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A: p0 s# a( F1 ~4 v, ]) }. ^
0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]5 L$ Z6 t; e. ?- C$ B
00403323 E9 F0000000 jmp qsr.004034185 {; i9 O s5 K5 i! _9 s# ^
00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
m& V( r& x! L, g( p+ c" V& r0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]7 U" l- X3 R; f0 L% n2 q, q9 F$ Y
00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]& L- H; Z& \6 { q% O( p
00403333 50 push eax
5 V+ L1 O1 _9 V( f7 p00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX
0 `3 K U6 K M- K2 R# G# Z00403339 50 push eax
6 j/ p5 X5 M( E) j% q0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX
( I2 ]% j0 _- L- S. g, h3 ^" P: |/ z5 d0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX, F0 _, }1 ^% f7 ]
00403343 83C4 04 add esp,4
. g5 @+ S2 E3 d x& W00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI) w5 U7 k$ H+ O; T( o
00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]
' q, w" k; g5 I9 T* J" x- F1 v/ [2 q( {0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
4 U& n1 G% W9 C/ ?" j8 C0040334F 50 push eax, U, x* g, r% |4 Y: }# i( K5 p
00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
( r# S4 c- b- o00403355 50 push eax
4 b/ ]& V: Z- J) p) w00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX
: L' e: c6 ~& r5 {8 m0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX; h1 P6 ~' p8 x# o9 T
0040335F 83C4 04 add esp,4
2 R2 P' e' B* E00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI
( I- `' Q% I3 A1 b: K00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
9 I. m5 y$ @ r: V5 R00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]" r$ D8 W% e$ ^& w2 c# m
0040336B 50 push eax! L* v9 D- h' H& f
0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX
- {9 i- p5 j B% p8 U v- J00403371 50 push eax
" G. D5 O W6 D00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX
! K+ S9 Q* Y B( N00403377 8BD8 mov ebx,eax ; EAX送EBX6 p( e2 H9 G4 V8 F; R
00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX) S; |7 c& ~1 ]5 ]; c
0040337D 83C4 04 add esp,4' s: ]* }' r5 r. y% U7 y
00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]( h) t$ g: |) E9 k
00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]% o8 u6 {3 d3 I
00403387 50 push eax
& k/ Y9 a& B! e2 D+ D: Z00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX* {/ {3 f, |' }8 ?: Y; Q
0040338D 50 push eax
% D7 F4 M4 o) i' r5 J2 b$ H0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
0 l( S) ?- B8 k7 b/ P00403393 83C4 04 add esp,4
! X5 {: u1 D1 K. F4 g# T2 L00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]; x" S$ A, Q2 Z
0040339A 8BE8 mov ebp,eax ; EAX送EBP
6 v2 [1 g; M( C) o9 x. G: ~0040339C 6A FF push -1
# _+ }7 {0 n6 {0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX
/ I" d( s$ `3 Y5 B u& t+ V004033A3 6A FF push -1
" ^) Q$ f0 I1 X! m j6 `( j004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX4 h8 g, E% B. ^0 z1 v5 y* |
004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX7 a- A6 G* v# y9 P! H# z% _
004033AE 6A FF push -1
( L T+ j3 R/ z) N$ [- X004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX/ Q; d$ W+ e. I9 v Z+ @1 k% Y
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX3 B& P+ y I3 S( Q, e2 X8 Z3 k
004033B9 6A FF push -1
+ R7 i/ k0 ^/ X3 F: W! x004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX9 {. Y7 Y- R& L) w! ?* E g
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX1 ?( i9 X, b) @, M
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
: v- m. E5 y( b004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX' ^4 w5 P' ~ T( }( I
004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX# g! U' m" X$ i& s
004033D7 D1E0 shl eax,1 ; EAX左移1位/ ~7 l5 l5 S# j$ g. R R- `
004033D9 99 cdq ; EAX扩展. v; S( a+ e5 W7 @/ U2 I1 q5 [
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
8 P# S" z! E# O, r A4 e# {8 I: O5 s004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
5 i' z4 f1 P* {004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)3 o! a+ u+ M" j8 h, I: M$ f$ j% @/ \
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A7 K% s. ?9 Y1 ~: E! C* C( `
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
6 [; i' l: p+ |* q; R' n ~004033E9 EB 2D jmp short qsr.00403418
6 a( R6 l& x) ?9 X$ E, t7 D5 O004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX2 S# J# q0 C' r/ K/ W y1 W
004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E22 u4 {5 n* c1 L/ r5 e
004033F7 99 cdq ; EBX扩展
6 T" }+ T6 l8 q% _1 Q( F4 h) S7 X6 [0 T004033F8 33C2 xor eax,edx ; EAX和EDX取异或# A& y0 j: Y. W. l* v
004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX& X1 j' v+ ]8 w2 ]- J6 {5 ?
004033FF 2BC2 sub eax,edx ; EAX减去EDX
& B; j; O. I$ z- }+ R5 ^, w00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]4 C7 g% F) G1 E r
00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
1 T* c, [8 ~% Y; q0 n00403409 99 cdq8 @8 r3 G* R1 z3 ^/ v( t4 E
0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
6 Y/ \9 t9 v! x8 v/ \0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX7 T& U( @6 V3 Q2 q
00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较
0 A0 G& ~- S3 A2 a7 x7 I4 ?+ |00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)
, ?- b! h/ T9 O; V0 b3 z00403418 E8 6EC00200 call qsr.0042F48B ;
- o# U! v5 v# `" l- i0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]* [( a- ] V; i9 U y! X
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9& E- q3 m; H: `' A+ P
00403426 E8 60C00200 call qsr.0042F48B& [) R7 v% s* t: @
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
" k6 O2 a5 R- N2 [, E( o/ e0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8% C6 c3 G. ]; b
00403434 E8 52C00200 call qsr.0042F48B) F Z" n. p, ]+ R( I$ J% k* K
00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] T# E0 P/ a2 K
0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7
& A5 s! g3 q/ u00403442 E8 44C00200 call qsr.0042F48B7 G% H% w4 |! p' P
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
1 P0 p9 }" H' O0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],60 Z1 B2 s( n3 t! k+ X
00403450 E8 36C00200 call qsr.0042F48B- d$ ^2 T3 a' @2 G! G' o
00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
$ K9 C( Z! f6 n" Q00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3# d' x4 t4 q( z8 w/ W! Q
0040345E E8 28C00200 call qsr.0042F48B
0 P0 A. ~& n! N/ R; p00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
# E' N/ [ `! y2 Z00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2' g: Y$ K4 u1 e5 @
0040346C E8 1AC00200 call qsr.0042F48B8 f6 N* I6 \* V7 d
00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20] ]; E% J6 J# ]5 I ]
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1
4 u! d; f! `$ l% z* W0040347A E8 0CC00200 call qsr.0042F48B ^* `) J( l# X7 d5 ?& f
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
* A+ G% T2 O' m4 v% g$ t00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
! b/ J( w! B5 q8 e1 ~5 [00403488 E8 FEBF0200 call qsr.0042F48B
# N( e% R" \: n. P& `0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
1 T& p. P/ m. l2 [3 k: U- u5 S) j00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
+ _3 d' i8 l/ A* ?0 s9 H% C00403499 E8 EDBF0200 call qsr.0042F48B
2 e1 K) U- q7 R! B/ t0 V6 y& f, K0040349E 32C0 xor al,al ; AL清00 L6 G+ r; g( n) x
004034A0 E9 88000000 jmp qsr.0040352D
4 B" x( V- c6 T3 v- P% l004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~4 i' f9 A. `, D; u- g! o: C) W
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
( `: I, w' ~* e/ d: P+ X3 Y004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9* e* D7 k& V3 i+ S+ Y2 F
004034B3 E8 D3BF0200 call qsr.0042F48B* r' N& `& }7 A0 T7 Q6 G2 G. f
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]1 F, d2 c5 B+ _3 J' l. r) T) X
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
, Z( a5 ?4 @" J1 P! f/ |004034C1 E8 C5BF0200 call qsr.0042F48B+ ~6 ^7 I; a( v0 _. h
004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
3 z5 `8 x6 G2 v9 }9 E/ T6 ^. E004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
" D* I$ n0 x% r004034CF E8 B7BF0200 call qsr.0042F48B q# Y! G$ o( d3 _' `, n$ s
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]/ X4 |: D0 i1 P% J8 E# W# a
004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6
$ y7 D0 X- x4 U$ y1 T. K004034DD E8 A9BF0200 call qsr.0042F48B$ o6 V4 c9 y" N
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
, T( M N% F/ ^* F. K004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3' o& C# K0 B6 H
004034EB E8 9BBF0200 call qsr.0042F48B4 h% J! S8 P: Y' i l) j
004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
$ m. x; E* f, M% E4 X6 l; _004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2
0 T% P# W% }2 _( L% Y8 ?004034F9 E8 8DBF0200 call qsr.0042F48B6 q- |0 q x8 @1 m
004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
) S* ?3 r% X# o( P$ }1 t. y00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1 a0 Z4 `4 i' V( o# U, @
00403507 E8 7FBF0200 call qsr.0042F48B
" k: Y& h6 ?% Z5 z+ [# F0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
' Q! Y: t% T' l1 a2 I5 I00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0
6 u" m: f2 f X* b00403515 E8 71BF0200 call qsr.0042F48B& w# B/ b( Z% ]. G" E: E% W! K
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
( j) g( T: R: \1 R0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
# e% s9 \# b! t00403526 E8 60BF0200 call qsr.0042F48B8 i3 `" r% p. b5 Y
0040352B B0 01 mov al,18 S; X- o7 E2 s1 [! l q7 p
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]3 O) U" S* ?" \6 G ]8 |& |! K
00403531 5F pop edi$ J, G: u' |: V6 g# B! { \
00403532 5E pop esi) M k2 A9 ]* V! a* J% X; j
00403533 5D pop ebp" J, `4 a } o: a+ }1 D
00403534 5B pop ebx
$ J8 `' E6 o! @$ k3 Y00403535 64:890D 0000000>mov dword ptr fs:[0],ecx/ C5 ^5 p! V0 o
0040353C 83C4 30 add esp,30& |2 p) A" x) p2 `8 B( q
0040353F C2 0800 retn 8
$ m! N2 k) [1 h( e* c9 G--------------------------------------------------------------------------------1 a2 Y0 M5 A1 V4 T1 Q9 L
【破解总结】$ v6 T4 S+ U5 k/ Y1 X- l$ _/ I
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
8 z& N% Q2 c+ A. s用户名:yijun
7 `' V# u, K3 Y+ }! b: n注册码:4893*7777*3726*7777*05291 B4 k6 u& Y' Z4 N' q
--------------------------------------------------------------------------------6 p4 X" v" B# G
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡