|
|
【原创】破解Quick Screen Recorder
3 S* x$ {/ V8 K5 @( G% ^$ I【破解作者】 yijun) W5 L; x; @: c) \( V
【作者邮箱】 [email protected]
" v4 R/ M4 Z0 z. S【使用工具】 OD,PEID* S+ n( k; c+ _2 j0 e- Y& @, a
【破解平台】 WinXP
6 Y* o4 n, P3 I9 k3 a: M) X, c【软件名称】 Quick Screen Recorder
3 U3 G4 @1 a r+ L【下载地址】 天空: O% q4 U% N# P7 [( w8 f
【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
& m) A& {( ~ h+ I" m7 F【软件大小】 540K
+ w! A% }: y: h4 e【加壳方式】 无
! E( D+ k; P* D$ t7 R6 \【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)
( H. L$ z5 r' X0 P0 O! \7 r--------------------------------------------------------------------------------
4 S$ y; J- T0 W/ ~( R0 l【破解内容】& D( ]" z1 E9 \! q# P' x
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
5 M: a5 U( ~7 T f# S' J00404C69 55 push ebp //在此下断: l' i) h/ T0 ^4 N* ^/ Y" r. P
00404C6A 56 push esi
! c4 H# e9 H, ?' ?( s1 W2 Q: P% {2 g00404C6B 57 push edi/ @: v/ f0 F! m! i$ r2 U
00404C6C 8BE9 mov ebp,ecx% U/ a& C7 M9 N7 F8 m
00404C6E 6A 01 push 1
8 m2 D& R/ }2 b* c- u00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名9 l% u2 y4 O9 f. O
00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]1 V5 v5 ]2 n2 w5 y
00404C78 8BCF mov ecx,edi
0 \5 w) T, o6 S00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码
, M; t+ x* S' `00404C7F 8BCF mov ecx,edi0 r% D/ H; b; J$ @# U9 G# g
00404C81 E8 A73E0200 call qsr.00428B2D
9 T6 o$ S e! I1 ?: n( `00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
9 ?, V; o# x# z0 q00404C89 8BCE mov ecx,esi
. {4 z# W, N% B/ w3 Z# A9 r" w8 v00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX
6 w; M& m2 U$ L2 |; m: i! M. u! _00404C90 8BCE mov ecx,esi
1 [ l5 Q5 M H4 u, \; f6 Y00404C92 E8 963E0200 call qsr.00428B2D/ m- H. Y/ g* |
00404C97 8B06 mov eax,dword ptr ds:[esi]
. g3 W' F4 |) W7 m9 X; a Y, g00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
2 z& T K, y- A2 e2 `00404C9D 7D 26 jge short qsr.00404CC5- l% O w' g) J, \
00404C9F 6A 40 push 40
" g& V2 z3 j, j; ]( C" @% G2 s- f00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"( y3 T/ O$ C5 S. D$ r
00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."
0 {6 Y( d3 @% a" r00404CAB 8BCD mov ecx,ebp
4 B9 N# {( m6 m00404CAD E8 C3840200 call qsr.0042D175
, K0 F# c2 l& Y$ [" r1 X6 ]/ N00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
: }' H# x( z H( ~00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx
+ u. d+ }9 }4 x4 T" a6 O00404CBD 5F pop edi( f [' n* J3 K8 |
00404CBE 5E pop esi
- ]& q) S6 c1 J, A/ P$ R; c& {00404CBF 5D pop ebp \: m2 ?+ x6 u8 v$ ?* Z
00404CC0 5B pop ebx
: P$ G$ p- ?4 X+ F. A: M00404CC1 83C4 18 add esp,189 t- U0 V! n$ L. H
00404CC4 C3 retn
+ g; Z6 g9 z" F# N! [00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
" ?& E% ]! H8 U7 r, D- l g1 S! O, R# V00404CC8 84C0 test al,al9 N6 x9 r4 E7 Z# R% h. t) H
00404CCA 0F85 1C010000 jnz qsr.00404DEC" T1 ?1 O8 A' G* q9 Z. S
00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14] t# D9 C: `& z" D
00404CD4 E8 87E3FFFF call qsr.00403060
0 w4 ]) Z8 @& h+ _00404CD9 51 push ecx# N& a4 u- f- \5 A* |
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0# t+ ?# j V7 Y" {2 j# J: }. ?
00404CE2 8BCC mov ecx,esp; k" O" I, }' Y, e0 Y9 r- M& u
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
# F/ o/ w& z0 d% m% P/ i, O00404CE8 56 push esi
$ ?: V4 C6 M2 c+ y3 f$ q% |* ^( U00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
1 M+ c( e. }- E( {0 Z& W( J00404CEE 51 push ecx
! l a9 O4 p/ [. s" T* i; Q' a, s00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1# b" ]2 d( {/ s. T2 r8 ^ |* e
00404CF4 8BCC mov ecx,esp
7 i7 Z2 c/ Q% W" ~00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
0 D* g5 j6 \2 v00404CFA 57 push edi
- b/ u3 w% C* J4 o00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0
; ? M* v8 H/ J4 d1 s0 }3 T% t* t00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
2 b9 C6 g0 v5 c3 r+ ^$ M00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0; K; F$ _/ B5 S" J# N- p; {
00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~
, M! O8 H* F5 T$ i3 J00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~
4 ?4 ?3 W4 E# L* p00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
$ c" B+ H7 l* [ ]00404D12 6A 40 push 40
4 b- Q9 J ~8 B+ s# U9 K3 V00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
' ]) i8 l6 k, }00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."
# o6 e* G1 D5 t$ Y00404D1E 8BCD mov ecx,ebp! y! g& k3 m7 G' O1 B
00404D20 E8 50840200 call qsr.0042D175
# m* Y: ~6 j5 M' E+ M9 h00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]) k/ k% i" ?5 y! H4 I8 _
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1
2 ]( r6 q( r. Z2 _+ I4 E9 C00404D31 E8 5AE3FFFF call qsr.00403090
+ [6 G! @: y! q1 u" o" h2 B2 b00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
# Y B+ e* n- K& M8 U. e) m ?6 X00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx" \% {; W/ C0 K6 ~
00404D41 5F pop edi
% F8 c6 M$ l+ ^1 i& [$ L( q00404D42 5E pop esi
7 n: I8 G( e6 b9 e9 `% ^2 U, Y00404D43 5D pop ebp
& v! d1 E; X, S6 }' L" h00404D44 5B pop ebx
3 v8 M% i9 h6 o& w00404D45 83C4 18 add esp,18
: n0 _, O E6 q. |9 \5 o00404D48 C3 retn
2 s7 ^) N( U, U9 Q7 X2 m, q*********************************************************************************************************************************************************
0 F. T- F3 O! |9 P2 f$ \跟进00404D09处CALL来到:
! R" d# p- ?% B" B: d* l$ q004030A0 6A FF push -1 //一路F8下去~~~~
. t# R8 E9 ~- L$ e1 P; R* L4 ~1 {004030A2 68 C88F4400 push qsr.00448FC8
: \) w9 ~- _2 @0 p7 U. R9 H6 J; p004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
+ r) `) B, U( c, y$ I& b4 H* q004030AD 50 push eax
: N5 W) @* S/ C4 ]004030AE 64:8925 0000000>mov dword ptr fs:[0],esp
' d- N$ w0 d m3 v6 N$ @1 A004030B5 83EC 24 sub esp,24
% A, U1 i; f8 t$ B9 k3 e0 A004030B8 53 push ebx
5 S' w, o* O/ Q( y7 f7 `3 X004030B9 55 push ebp
`. C. z" e- ?! ?& n' s7 c8 u004030BA 56 push esi
! B: L8 M" a Y' E004030BB 57 push edi
( b9 T0 j- c1 y# G3 k004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"
; ]* f. {( Y* f! e004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]8 B% A$ u1 F w
004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],19 F7 P9 C+ h1 L" }( Y) x4 R
004030CD E8 27C40200 call qsr.0042F4F9
& p" L( e# y( l. v! Q$ G( k004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
- s" V s( _# i8 }# I7 P3 N+ ?004030D7 894424 2C mov dword ptr ss:[esp+2C],eax
: ~4 o5 I7 @% l" x" s8 |004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
) ~! ]# c- y) J5 F( t. L2 o! ]004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
: H3 L/ \: S0 g0 C' Y004030E4 E8 905A0200 call qsr.00428B79+ l9 q0 h8 K- t N& W
004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]. K' F& I2 D# e3 y0 ~: D
004030ED E8 3B5A0200 call qsr.00428B2D
' q4 ~1 {$ r$ b1 k! i. f. |004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]" B# f8 e) |/ g8 p4 }: B
004030F6 E8 7E5A0200 call qsr.00428B79- N V Z/ M; P0 W% P) I
004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
& n, z: J1 i6 z! S1 \2 N004030FF E8 295A0200 call qsr.00428B2D
: Y! S9 P3 |0 {$ J00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]) N& s3 I) V+ j6 b' p- o
00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]. j2 S4 `0 }7 c
0040310B 83F8 02 cmp eax,2& w; d; w; C: o4 \+ R7 W+ C: p6 K% [
0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳( _# k$ S0 M O& L" N$ P' K, ]
00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]
2 C/ f J3 T5 V00403118 837A F8 18 cmp dword ptr ds:[edx-8],18
( G( m9 }( a- N6 Y2 P8 a* `0 x0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳# k k: M) f9 z- [
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]3 O5 e1 `' i$ }4 H; ?" L) w4 U
00403126 6A 01 push 1
( \! P9 V/ ^% s+ H- A7 D: ?00403128 50 push eax
5 i, r I% L& _8 X" Y. e$ N: j# U9 f00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
7 A& ]5 [ R$ z5 v. f$ I0040312D E8 C4550200 call qsr.004286F6( O, u' t, J1 J3 F7 C
00403132 8B00 mov eax,dword ptr ds:[eax]' h% x i1 a' ?% ~
00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
0 P9 b1 Q; t$ P8 p& N$ @$ m) Z00403138 50 push eax$ `6 i: c+ Y7 e. Y
00403139 C64424 40 04 mov byte ptr ss:[esp+40],4
0 V. _. P; o: w( ]+ A1 g/ ~' H3 b6 G0040313E E8 4D560200 call qsr.00428790, W0 f$ f7 k; g( }5 u3 r
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]0 d k* ^3 t( V* Q& U6 o: N
00403147 8BF0 mov esi,eax
7 y6 Z7 U D0 G" o: x ]00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],35 y! v" g4 C( k3 P
0040314E E8 38C30200 call qsr.0042F48B
! F# m4 W) b7 k) K4 Q00403153 8D46 0A lea eax,dword ptr ds:[esi+A]
, j0 |" F) K/ y! ]6 X00403156 B9 3E000000 mov ecx,3E
, }8 D( W2 u. ^) Z% a0040315B 99 cdq5 a; g: h' M5 ^. p; @ c6 _
0040315C F7F9 idiv ecx5 H' B0 U- r$ |5 l/ s4 J# X g
0040315E 6A 01 push 1
$ M2 E: x5 M% C00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]
8 n$ c" f4 ^4 m) `( F' L00403164 8BF2 mov esi,edx2 ?. B4 x- G) S [7 W
00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]1 C6 k6 \, n' l/ u
0040316A 52 push edx
5 {& q5 R+ H# E R$ I2 ]' E0040316B E8 0A550200 call qsr.0042867A
8 E5 ?7 p+ e' G7 a3 Y/ d; q# t00403170 8B00 mov eax,dword ptr ds:[eax]
) P. K; x' u5 K00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]. m y+ x5 I5 ?1 j# F2 P
00403176 50 push eax
. ]/ Z0 g$ }9 q% W" k# E" I3 E3 l1 s00403177 C64424 40 05 mov byte ptr ss:[esp+40],5
# n2 o8 o: l6 h4 {- ^( u E' i7 e0040317C E8 0F560200 call qsr.00428790
1 e' I$ g5 n) Z1 s0 A6 }) h00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
- j2 O+ }2 d- v6 ^8 f' Z00403185 8BF8 mov edi,eax
3 [, d0 V+ L: ^3 t, \2 J F00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3
" |2 ^! M+ `2 `5 q K( J9 [4 j0040318C E8 FAC20200 call qsr.0042F48B
+ P' _# X( I- p00403191 8D47 0A lea eax,dword ptr ds:[edi+A]
. v6 _: g' S2 i. z9 t00403194 B9 3E000000 mov ecx,3E
$ h. \$ h1 ?' f$ [00403199 99 cdq
! k4 H7 S, G% ~: U9 ]0 b9 K0040319A F7F9 idiv ecx
+ o4 k/ l# B% u) b0 \, l# ~0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]; D; I {. J, b$ Y. C+ E
004031A1 894424 28 mov dword ptr ss:[esp+28],eax
/ G; E. H) c" ?9 N* v( s+ e004031A5 8BCA mov ecx,edx0 z$ n4 M" }0 I0 j6 \1 p9 ^6 F
004031A7 894424 24 mov dword ptr ss:[esp+24],eax
9 k( n; y" B" ~5 T/ f! W, c004031AB 894424 1C mov dword ptr ss:[esp+1C],eax: i8 ] M6 p% D5 w9 z8 d
004031AF 894424 18 mov dword ptr ss:[esp+18],eax1 H) t, w. i+ f* Y& f3 I. \ E
004031B3 894424 14 mov dword ptr ss:[esp+14],eax6 [, H) e/ S1 F, g v
004031B7 894424 10 mov dword ptr ss:[esp+10],eax9 r& K, H/ Q+ {, E
004031BB 8BC1 mov eax,ecx
9 p( E+ f3 D8 ~ N! c004031BD BF 0A000000 mov edi,0A
- S' v5 H4 `1 b c/ [& y3 v9 _004031C2 99 cdq
/ G5 F( K( I0 n5 X: g$ C% O004031C3 F7FF idiv edi
8 J% e; K+ Y# \004031C5 8BC1 mov eax,ecx
+ Z6 T% o+ p/ B6 G+ R8 f5 ?; u004031C7 B3 0B mov bl,0B
- g' k3 O. o1 p& n' d004031C9 0FAFC1 imul eax,ecx
- r$ m2 e4 B' u: @# g5 D1 P: `004031CC 8BCF mov ecx,edi* G. O+ n% K; D A5 Q' q: o! l2 w
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl0 z- p& b2 o( }4 m
004031D2 52 push edx
3 @$ m9 O4 K6 G+ y5 g1 }004031D3 99 cdq3 X" _' i# b7 D
004031D4 F7F9 idiv ecx0 T6 t- ?: T b5 d. H/ n1 j/ {9 M
004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]4 y7 I9 u, U* G+ C
004031DD 2BC6 sub eax,esi
/ {, q$ s4 w$ v004031DF 52 push edx) o, O" R6 y$ o9 D* ?* h! V
004031E0 99 cdq# R' i" M8 O" q9 ~: C3 M- x, I: r
004031E1 F7F9 idiv ecx
4 q* H, S2 n$ P& ?$ W004031E3 8BC6 mov eax,esi
e3 M% U& a/ G K004031E5 52 push edx* |% Z: h' J* k5 Y
004031E6 99 cdq
$ O3 i2 Z, F7 P( o! Z004031E7 F7F9 idiv ecx
: ], d/ O8 s, Z0 _$ D$ J3 z004031E9 52 push edx: H8 R' e5 @& V; ~. v# z6 c! T
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
' @2 K, J: K6 w004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"+ l0 Q9 T3 S0 z0 C: x- W
004031F3 52 push edx6 Q; d2 ]5 D, N/ H8 Y C0 |
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893
9 u" T9 O- W' @7 W8 F5 s# Y( _8 s3 V004031F9 83C4 18 add esp,18
" g6 [3 P- w9 E- d& Z004031FC 6A 04 push 4! V* F+ Z/ q0 ~5 p0 u3 T$ v
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]
+ I2 g9 H* f) f1 o8 V, v00403202 6A 00 push 0
7 N' T5 e& p! d00403204 50 push eax
R7 O- z% T" S) r* z! \3 m5 u( n00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]1 g& Y' W) D. d
00403209 E8 D6530200 call qsr.004285E4
. v/ B( k6 ^0 |# h8 l0040320E 50 push eax% w; g. {- d" {$ D
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
2 }' S* ~, e. J# j6 M$ |) k4 ~: E00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C# `5 j2 t: m" j/ V0 F# E6 b
00403218 E8 A7C30200 call qsr.0042F5C4
7 `7 y% n% A+ _" l# B0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]: N, z, e2 ~( c" |, }
00403221 885C24 3C mov byte ptr ss:[esp+3C],bl
, d4 P! D, m+ x& C5 @: {. J00403225 E8 61C20200 call qsr.0042F48B
) m1 q E( G- T) W0040322A 6A 04 push 4
" f% Y! f' u$ E& ]! I# Y# L" u0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]( t- m7 l) k* m0 n8 X% O
00403230 6A 05 push 5
T* i: ?$ G( I6 S. x8 C00403232 51 push ecx
# ~7 t! P( r$ o1 i3 y: N00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]3 X' D+ ?6 E6 ]) E4 ]+ i/ h6 t
00403237 E8 A8530200 call qsr.004285E4' B. @6 Q) P$ v5 l& i" |3 K( b# v/ ^
0040323C 50 push eax0 s' F: e5 \! h9 e
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]: z8 T% |, T7 |* r/ L1 }# C+ Z c
00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D `% o: \. N! L$ }* p H
00403246 E8 79C30200 call qsr.0042F5C4 M* j& W$ E l0 A% b, _# J
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
4 C8 \. ^- Q( X2 o( L0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl9 M1 y k! ]! k' K n
00403253 E8 33C20200 call qsr.0042F48B
$ E6 I. z! v7 ?8 x+ S% M) A00403258 6A 04 push 4
$ b! B4 |* T/ x7 z7 E* ?% m }0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]
" {; Q2 j, N/ U1 [0040325E 57 push edi% g1 m1 R7 k f) o- D9 X8 G
0040325F 52 push edx
0 l3 C9 @7 t4 `# Q& u7 K2 u! p00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]( W$ ]5 V5 Z. ?6 @4 k
00403264 E8 7B530200 call qsr.004285E4
( }1 N- C: o+ t/ n% v00403269 50 push eax
, f2 @! G0 a' y3 p2 o6 O0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]# I9 t h# X9 F" i7 P
0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E( V. J O; K2 v+ Y6 Q& t" S
00403273 E8 4CC30200 call qsr.0042F5C48 x& }9 }* B t" r% }7 A
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
8 {4 f/ v3 e; w9 n0 K6 U0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl' W8 t. [: {! F
00403280 E8 06C20200 call qsr.0042F48B
. P$ o& T" s2 v* _6 I7 o0 E00403285 6A 04 push 4
4 h+ s4 `; L0 @! M! M2 |4 F00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
) B' x, L: t4 }5 j1 X+ i" D0040328B 6A 0F push 0F
7 u; m7 ^, L' b1 p+ K3 s0040328D 50 push eax6 `: V6 |4 J5 q6 }) F; N3 `) W
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]( ?% }$ J* @7 k4 k# V" y
00403292 E8 4D530200 call qsr.004285E4
7 U3 y6 F; ~- D9 j4 U5 A4 m" D00403297 50 push eax
% T( g% T% M& V: }5 s9 a00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
0 Q+ B" ^- _8 Z0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
) u7 |/ [4 ?# |1 j# i004032A1 E8 1EC30200 call qsr.0042F5C44 k5 B( a* Z# ] D, D3 h; v1 z
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
; G1 I/ h1 K) p( d: _# Q9 _004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl; E$ y5 }" A' x0 n9 @0 ~/ p! g
004032AE E8 D8C10200 call qsr.0042F48B+ Z6 i- a8 e9 `5 \+ u/ m* Q" I3 V
004032B3 6A 04 push 4
$ N9 C; {8 A9 N. i; Y004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
t% E* Y; }7 e( j4 Z* H9 s& t! o: g004032B9 6A 14 push 14
. P% T- ~6 x) P0 t0 W004032BB 51 push ecx
3 I/ {0 `4 c# @004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
+ Q& K0 q& q+ m9 F$ z004032C0 E8 1F530200 call qsr.004285E4, Y) {8 W R1 i$ m
004032C5 50 push eax
1 w2 ^4 y/ r5 }) ^) V! W004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]% \) X, u+ `: J' n* b/ {
004032CA C64424 40 10 mov byte ptr ss:[esp+40],102 v* |3 x5 N, t h: h: @
004032CF E8 F0C20200 call qsr.0042F5C4
3 i, n/ H3 D# y4 K T- F004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]" j+ A* A2 t, t- h8 o: d! A: L
004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl! k" w1 K5 s' { \! P* _
004032DC E8 AAC10200 call qsr.0042F48B
. z* P# s1 V( x/ ]3 ^ A. p/ e004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI% Z: q; ^& x; \' X
004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX/ h3 Q+ y2 {, P; [
004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
. g0 q9 ?+ Y( R; g3 Y" Z004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL# {( ~4 A" E9 y
004032ED 8ACA mov cl,dl ; DL送CL
7 g1 n9 J, b7 U# \004032EF 3AD3 cmp dl,bl ; DL和BL比较& s8 \) V8 A" i( h: {. z Q# E
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)2 E( ~3 I) [( G9 B$ c+ Q( F* _
004032F3 84C9 test cl,cl7 u j$ _3 k5 H8 X; s- r$ v% q! b
004032F5 74 16 je short qsr.0040330D
8 C1 j6 e7 j; q+ \004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL
: A# k- N/ a$ g- v4 U' Y; A; z0 `! ?004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL
K/ O6 e" ~1 I4 F004032FD 8ACA mov cl,dl
4 m; F) Q1 u( }; c$ b7 m004032FF 3AD3 cmp dl,bl ; DL和BL比较
2 y7 }* a6 X6 O00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
) o0 L: y$ i9 T- T00403303 83C0 02 add eax,2 ; EAX加2
! e9 E. m' a$ U+ E; `6 }4 \00403306 83C6 02 add esi,2 ; ESI加2' P, s1 [4 j; B8 U# P
00403309 84C9 test cl,cl
! X0 O+ v5 C1 x& I0040330B ^ 75 DC jnz short qsr.004032E9
$ [2 v9 S" R t; C0040330D 33C0 xor eax,eax
/ C( L' p6 m6 D5 s( e" N, _0040330F EB 05 jmp short qsr.004033164 v5 l7 {% G6 T* h8 H
00403311 1BC0 sbb eax,eax: R5 v2 X# Z( y4 u: W5 J
00403313 83D8 FF sbb eax,-1
2 w- l5 w6 q: M9 X; H, w00403316 85C0 test eax,eax% t. t/ g8 s' `( v
00403318 74 0E je short qsr.00403328
: k+ ~" \6 R% |+ `: M0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
: c* L+ e% s+ B1 S1 k9 A& h, }0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
$ f8 }* F% L# {9 \& g00403323 E9 F0000000 jmp qsr.00403418: S6 z. ^" `: L! N6 d
00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
) v3 K, K# i! i0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C], ]* ^- O* P+ b' w ?, u
00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]" V! {* @9 m/ J
00403333 50 push eax
& S* U$ D5 F+ W0 f! ^- Q00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX0 P8 J5 z) ]9 f$ a" P
00403339 50 push eax
+ e( x0 J# W8 ~* _5 \5 |0 R0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX, ~+ C0 K) s6 b- H( C
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX9 X6 X# Q; J M5 N
00403343 83C4 04 add esp,4
" p5 w$ C. l* n' n% V- ^& n00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI' x; a+ h4 ?2 P0 h5 i
00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]4 N9 `' p( Y* t
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
7 ?2 O# V# }# E" F( i: j0040334F 50 push eax
1 w3 Q: J! B/ i4 a) [00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX0 \+ G* Z" x) t3 ]
00403355 50 push eax( ^) J' K; ?# B: Z
00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX/ S5 V% Z. k3 }/ }
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
3 X4 c$ C: R# u7 c; o& X0040335F 83C4 04 add esp,46 E! g$ ?. p& ?% p' p
00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI
; {, w9 [7 h1 R1 B00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]8 `: e5 f4 {+ \1 |# k% F' d
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]9 n! g' ~" V# _
0040336B 50 push eax$ j$ B8 x+ m! T# j* n) W5 q' x7 n
0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX5 p' @4 |+ e, L$ }$ a; _ X
00403371 50 push eax
- u) w" s- Q# O0 f2 q00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX
1 F7 ~! \- v. h2 x7 d00403377 8BD8 mov ebx,eax ; EAX送EBX1 I c0 V7 I" b; K' Q8 V, }
00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX/ }. S9 ?! L8 w7 n: K) g
0040337D 83C4 04 add esp,4
0 h8 {) u' Y% A1 ^00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]1 x4 p$ E" b+ O; A$ @/ s2 q7 A# d
00403384 8B40 F8 mov eax,dword ptr ds:[eax-8], V! l5 U* i" e4 e* N
00403387 50 push eax6 H* m1 Z2 ?% n
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX% K& `8 y2 e' V- \
0040338D 50 push eax5 P- l0 F% f$ |7 f' s
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX+ q5 O# x7 ~) t" j8 b+ G; I
00403393 83C4 04 add esp,4
+ b% q6 }) s2 Z3 E } }00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]/ q, U. V; z6 O" d3 ^/ S
0040339A 8BE8 mov ebp,eax ; EAX送EBP
- f6 d( P. l& r3 j5 g2 `0040339C 6A FF push -1: z6 n% W% p1 C' X% Z
0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX8 [ k/ d5 {' X0 h6 j: n
004033A3 6A FF push -1& I2 k5 h7 e! v0 k3 X0 r* c
004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX( _* y8 L, ^1 H3 p- z2 p
004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
) l; _+ p1 Y. M( `004033AE 6A FF push -1% b7 @, _' s8 g0 ^9 @7 L
004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX& q8 o0 [3 ]8 x5 d* H) P+ G$ x
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX. y0 V# A! @' B- C1 {
004033B9 6A FF push -1( J9 l J0 {$ j
004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX
+ P/ k% ~3 W7 T" n8 _3 k% V004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX
" u* {9 {" @4 @, n) B" K! U. d004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
, ~8 s: p6 R. Q1 z1 p6 k6 A: G: `+ g004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
N( }4 n- N! W004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
% _9 f; t7 j' {4 z! C Q1 t004033D7 D1E0 shl eax,1 ; EAX左移1位$ F7 o% L; @& F/ u8 @: Q
004033D9 99 cdq ; EAX扩展
! U7 ~: f3 ~' ]3 @8 J004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中; U" ]6 A6 g' _7 Z/ D9 q
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
( X& R5 X, y3 Q; h* Z$ B004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)
& v8 G/ ^* s! B6 k6 \. k) M004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A
6 W9 j+ P3 _% g3 c004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
l1 G) F: t) m004033E9 EB 2D jmp short qsr.00403418
2 I4 w6 ]2 D1 V6 m7 d. z004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX
. m) o6 Z% P6 O- |8 _& X$ v7 R; w004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2
8 `8 D) U1 P, ^% [$ _4 _- W004033F7 99 cdq ; EBX扩展
- T8 H% M/ \* W004033F8 33C2 xor eax,edx ; EAX和EDX取异或3 [$ G0 A$ X, P2 ^7 e
004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX) F* U) `# l. q4 n! P
004033FF 2BC2 sub eax,edx ; EAX减去EDX
* l6 U3 T5 K1 q! ~00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]: S' C6 y! p& O2 u& }$ k
00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX) Y! `' `8 `0 D. _9 J
00403409 99 cdq
- ^: P( Y" t& {* p0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
" e4 n* i3 X2 ]0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX
$ Y9 n, b$ y+ c; `1 o# ]00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较
' N; [1 y2 G. `00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)
; M; g9 b. u. T9 _8 _% F8 W00403418 E8 6EC00200 call qsr.0042F48B ; & U* C2 C5 J5 y
0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
3 ~& _6 X( g& F' }) }4 `2 M* a$ Y) @00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9+ i* |/ n3 C5 s8 n
00403426 E8 60C00200 call qsr.0042F48B
) K2 N; B) o4 L- }) [6 _" P8 s0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]" o9 O- n0 z% i2 A% N* l
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8
0 E; Q4 ?' m' o00403434 E8 52C00200 call qsr.0042F48B
2 M: p( q# x% K( M% R3 j* [00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]1 a2 |1 H, T2 h/ }: m
0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7' v, S, _& M) e0 S( @8 j2 I
00403442 E8 44C00200 call qsr.0042F48B2 O* ?3 _! `! i! H9 \
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]* X# z% x9 i$ ]6 C
0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],67 B w8 q' N7 ^" W2 I4 |5 U: v" n4 j
00403450 E8 36C00200 call qsr.0042F48B
: ?7 e* G3 j/ H( @00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
" r# V& ]" F4 w/ v! S0 N00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3
, n8 d" `4 d# ?! z2 M% z4 t0040345E E8 28C00200 call qsr.0042F48B2 R+ B) ^( e) C& }
00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
4 f! j9 J9 [ ^" t0 u1 o" a00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2% y6 ^' c: ~' `9 `# e5 ~
0040346C E8 1AC00200 call qsr.0042F48B
. h$ E7 s q" `' d3 E2 M00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]( p6 h5 j- `( H. }
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1
. c9 ^) v, Q w. I }* H) Y0040347A E8 0CC00200 call qsr.0042F48B
" j7 \* Z' O5 u' [) G- M0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]0 J7 r' C4 [' s/ Q2 d% G
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
3 V7 N7 m* V( s00403488 E8 FEBF0200 call qsr.0042F48B
! J: m7 N- B' q& b' ~( z0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
/ Z" J L: w( b% A+ b6 r% t3 h00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1+ F9 o# g Q5 f# D! h( d: }
00403499 E8 EDBF0200 call qsr.0042F48B
- W+ C5 C1 O9 M( Z1 B" I7 r0040349E 32C0 xor al,al ; AL清0
+ P" Y; j1 n! h1 H' i+ e% y004034A0 E9 88000000 jmp qsr.0040352D. P9 E4 J) F& r5 a
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~8 _ N3 \0 ?/ M( `
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
% n/ C( j; c$ Y# z004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9
) |$ s$ X9 H8 u% G* W# p9 |004034B3 E8 D3BF0200 call qsr.0042F48B1 t- H# n- ~) v7 `- C
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]/ e2 t" h$ T6 V5 D
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8+ W+ W# i; H8 h0 Q0 ]
004034C1 E8 C5BF0200 call qsr.0042F48B, p) z! h2 X* j7 s
004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]) l4 L1 \$ E* W- Y; z( ~, F
004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7" ~- b6 [% g) L8 h# `: V
004034CF E8 B7BF0200 call qsr.0042F48B
2 O0 d% a \2 E$ I. ?004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]2 W+ d9 d2 X' i7 \. [# F( e( X
004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6: s9 M5 p6 [: D- A9 b! c; t
004034DD E8 A9BF0200 call qsr.0042F48B) O8 u. c% H2 k4 y' V. N7 R- T
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]+ A2 x- }' g; i7 {
004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
, i0 d; g* `5 Q& e$ n004034EB E8 9BBF0200 call qsr.0042F48B0 n; u e0 _8 Z! ~) _! y6 J! J7 T
004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C], B* f D1 O) Q4 i0 d D
004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2' [0 f' g# q0 j% ?2 s, ^$ J
004034F9 E8 8DBF0200 call qsr.0042F48B
1 k: f' z5 d' {4 u) n004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
! M: }, Z8 T# K00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1
2 t$ o; U# K* q0 I+ |1 W1 C00403507 E8 7FBF0200 call qsr.0042F48B
( O% D3 O2 r* P3 O) s; z0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]$ N+ K1 K' q6 B3 }8 l2 ?
00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0; f6 B+ |6 A7 s
00403515 E8 71BF0200 call qsr.0042F48B6 g( ~4 C9 n- H, h
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]) s o f R- X+ g' b$ f \
0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1& O; B9 p5 X- c1 E& C* H0 F
00403526 E8 60BF0200 call qsr.0042F48B
2 s; u! ^/ \/ d" F- k: d& L0040352B B0 01 mov al,1
~: N. L/ M" S2 U9 s0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
3 |% G2 i( `- ]1 k6 v- ^00403531 5F pop edi
5 C1 I' C1 v1 N' J9 I9 X00403532 5E pop esi
1 b! w4 p3 n: i6 w$ h; d00403533 5D pop ebp
+ @1 G6 @+ k) U! V6 N00403534 5B pop ebx1 Y' f; ]' N: M* i2 R
00403535 64:890D 0000000>mov dword ptr fs:[0],ecx
* ^) e! ^1 V: O2 e0040353C 83C4 30 add esp,30" X& c, C& e) w2 L
0040353F C2 0800 retn 8
. x7 G, S6 j" y H) q2 j8 H--------------------------------------------------------------------------------2 f0 l' H3 i9 }2 \$ A5 T) z/ J
【破解总结】
9 [1 H$ r$ f a 用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
; Q9 z; s4 f: x) q) _用户名:yijun. w+ i, f" p& D" b" b
注册码:4893*7777*3726*7777*0529
6 |2 G) e: {. R2 T5 W. f--------------------------------------------------------------------------------
" s) i, W% J( B) Y3 K' P3 E【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡