|
|
|
【原创】破解Quick Screen Recorder
2 A% |6 C7 w3 X" B9 x【破解作者】 yijun) F7 \' ]& B3 H& i5 K" `0 [
【作者邮箱】 [email protected]" I9 S0 P' v# T7 ?
【使用工具】 OD,PEID
8 D7 T- d0 ?7 Y8 a- T; V& U【破解平台】 WinXP. ?' k2 L: ?. t4 _' L1 C
【软件名称】 Quick Screen Recorder4 g7 B! [% x9 k' {3 t1 |7 A
【下载地址】 天空
- J @9 f' d& m" b# P【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
a; a$ g' t, k4 w( u【软件大小】 540K+ Y6 u- [7 n$ h" u+ a
【加壳方式】 无
( j7 f* e# \# F+ {' P9 }' l% \4 V【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:). r% f: \' \( K) P
--------------------------------------------------------------------------------
* c0 d' m0 q/ G9 [4 h$ N% u【破解内容】. _ c! u ]# }2 r
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:+ n4 }# E4 q) R' D
00404C69 55 push ebp //在此下断
, v$ N6 x5 M% Z3 Y00404C6A 56 push esi
/ v! o2 N6 ], ~4 Y00404C6B 57 push edi
& x$ f5 P+ B3 L) ^0 ?% v) h/ l% w% P00404C6C 8BE9 mov ebp,ecx: D: e- f7 \0 N3 H! V2 ~
00404C6E 6A 01 push 1. O9 a" t* S9 G& ]0 W- e5 U% K, V
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
$ q! {! I: @ j2 D00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]
1 Z% ]4 h8 {8 n; M$ F00404C78 8BCF mov ecx,edi m& O" A8 ^( @. i) n
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码
4 B7 R# l( [8 f( A8 E8 {00404C7F 8BCF mov ecx,edi
) i1 k. u4 t! c' e% {1 f+ f00404C81 E8 A73E0200 call qsr.00428B2D1 ]: {. R7 X% Y( K7 v- v+ F3 j6 p
00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64] \! M6 @% |# z5 D: H+ K- } Z* T
00404C89 8BCE mov ecx,esi) V( p# J7 O+ d O- J1 l
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX
+ r4 ]- ^/ w$ [) s% T# o) G R! @00404C90 8BCE mov ecx,esi7 j6 \2 r% @% b: |& R) T7 D* q
00404C92 E8 963E0200 call qsr.00428B2D
/ Q' L: t) @+ n$ P, e! Z00404C97 8B06 mov eax,dword ptr ds:[esi]1 H/ T8 P- v$ ^5 I7 S V: x
00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2: c) q! X, [2 R8 \
00404C9D 7D 26 jge short qsr.00404CC5
# J. m8 x, Y! i4 t8 I9 c; C00404C9F 6A 40 push 40
6 _5 w! B b; s' {3 A; \6 D00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
8 @7 Z& m5 q# z& p00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."
* c. a5 a0 V5 I: }00404CAB 8BCD mov ecx,ebp _: k ^# E& Z# n
00404CAD E8 C3840200 call qsr.0042D175
+ {/ P3 a- x$ ?) ]4 j0 f00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]5 g" k: R" @% s7 u$ Q+ F# s
00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx1 \ G1 l( j& J8 Y! e& d+ n
00404CBD 5F pop edi! y1 w- \3 m$ Y* ~# c% h
00404CBE 5E pop esi( j* ?* F1 E, W
00404CBF 5D pop ebp3 q; l/ h+ L5 M% q& |) K8 g: j
00404CC0 5B pop ebx, R+ Z' ?* L8 h% u6 Y
00404CC1 83C4 18 add esp,18+ U' d7 m8 Y1 ?/ D
00404CC4 C3 retn
5 n5 R0 y' k& T$ k00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
& n- M7 q* ]5 C2 P. u$ `00404CC8 84C0 test al,al
+ N! `# ?. D! j V8 _00404CCA 0F85 1C010000 jnz qsr.00404DEC
3 H9 n0 B- G: b) K! I00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
& {) q. M, m5 Z" ~3 a; g00404CD4 E8 87E3FFFF call qsr.00403060
& b! h( \8 x% k/ C6 V" O8 R H3 S00404CD9 51 push ecx
! a" Z1 ~* W) Y9 S r00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0 R5 l; _* J6 V e8 K
00404CE2 8BCC mov ecx,esp% K$ z* e, i/ O1 U2 _% ]
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
% k, |- N6 O1 s& {) P; M$ B00404CE8 56 push esi( F1 ~, A" p" T, Z0 t
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0+ A$ b7 P' W; _6 u1 g
00404CEE 51 push ecx/ Z; U4 U2 m4 x8 I$ F' Y, ~2 W
00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],17 n1 N8 ]2 T V+ D; G
00404CF4 8BCC mov ecx,esp' a8 Y4 a- b/ Y2 ^# o: X a: H5 k
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp( k2 n4 {3 X' {4 \+ p
00404CFA 57 push edi% ^! d1 R; b; M
00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0
2 q4 [2 @ W9 p, e; y# m r) {0 V00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
, i' o5 \' G- N( C" i8 H00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0
8 K, Y& i1 G* J+ p" c% U00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~
. {, L( ^# c' g/ E7 V00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~
4 p. v7 \4 T7 A# ~1 J00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
' K! s" W* q+ t% }4 @+ v4 ]. u- ?00404D12 6A 40 push 40" y( p0 ^! A6 X9 b8 r/ Z) }
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
4 D% M' e6 a0 G2 M4 R7 A' S00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."
' c5 Y q+ h. q( ^% ]- [) l/ p00404D1E 8BCD mov ecx,ebp
0 t U: A" j M& ?& { d1 p6 E00404D20 E8 50840200 call qsr.0042D175
6 @; J/ W0 Z3 c5 h00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]9 V, _2 C9 f8 }9 M) m& X: f
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1
& J9 d( e! k4 X, E00404D31 E8 5AE3FFFF call qsr.00403090
+ @1 E* O: C. G- \ t! Q( }00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]& m6 j- j( S: ]- T5 ?
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
1 a8 U( x; A+ u7 u. V; O00404D41 5F pop edi
' n/ X: k$ u- q0 ~+ b00404D42 5E pop esi* o- S; J6 S5 o+ L) `
00404D43 5D pop ebp+ J( @; B! X6 `( L! s
00404D44 5B pop ebx
- [, ?, u6 W( d' ?2 h00404D45 83C4 18 add esp,188 c# E8 Q6 H( A. t, c/ G/ ~
00404D48 C3 retn* Q9 u& ~& u0 k, w4 E4 l
*********************************************************************************************************************************************************' G% p9 s8 C S, e& V' y7 s
跟进00404D09处CALL来到:
- Y0 u' h8 X7 A5 Q. T1 Q004030A0 6A FF push -1 //一路F8下去~~~~
- U) M( f1 \# H' ~5 ?004030A2 68 C88F4400 push qsr.00448FC89 f# n: `, Z# r7 i
004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
3 p& p9 f7 h6 g0 A/ d004030AD 50 push eax- ]/ K- j" r* I" {, k2 i6 R% v: I4 J5 j
004030AE 64:8925 0000000>mov dword ptr fs:[0],esp" f( }$ f- o& e
004030B5 83EC 24 sub esp,248 c# A" f2 b `0 i4 c
004030B8 53 push ebx1 }5 q& e. U/ z; {
004030B9 55 push ebp
/ t% n; c: l3 ^- f004030BA 56 push esi
9 S% W) d/ a3 F; w7 r) N: y) h9 ]5 |004030BB 57 push edi3 I# T/ u; x! j3 d# }* \
004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"; t& W# j1 w, I/ U$ P) m
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]1 u0 y5 e( O. j$ {" _/ D( w! ^
004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1' g5 r: s p% {. v$ m! W
004030CD E8 27C40200 call qsr.0042F4F9
! ?' G5 [$ l5 ?" i l3 N8 t+ Y004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
; h2 c5 m3 W G n6 K, K6 r) O3 i004030D7 894424 2C mov dword ptr ss:[esp+2C],eax
/ }7 E6 I% G! o4 F4 n004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
2 B2 m& j, I. U, n: o2 m+ u004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
* u' k0 [+ F5 U2 k" k6 F# U3 b004030E4 E8 905A0200 call qsr.00428B79
4 C, w! Z* Y/ }% ?/ b0 ^( H004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
5 a- u4 y. a( Q# w# ? q. F6 G+ }004030ED E8 3B5A0200 call qsr.00428B2D
6 D; A& Y2 x8 I4 w. R7 y004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]8 H3 s' X, u9 `- n5 Z
004030F6 E8 7E5A0200 call qsr.00428B79
/ i$ J! g! P" X3 q$ z! f004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]/ [/ V1 S, N0 X: l( _
004030FF E8 295A0200 call qsr.00428B2D) G2 Y5 K! o8 X+ h
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]. ]; [9 t0 T5 K1 z+ ~! `' X7 v
00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
( B) H) ], d% z( f. T$ X' A1 Z$ x' A0040310B 83F8 02 cmp eax,2
3 D$ f- o. z3 w% A0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
6 j( A. \! j! \00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]
+ d: w1 j& j0 \" g00403118 837A F8 18 cmp dword ptr ds:[edx-8],18
" s {4 |1 x& r6 Z( k. z3 Q( t# \0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳2 ~& p! u! R6 D1 G* I' ^
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30] I" X4 d/ G) c/ h' {" y
00403126 6A 01 push 19 g; r( ]& v/ ]/ `
00403128 50 push eax/ _2 b4 ?& ` H& q$ j
00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
4 ?# {1 ~1 @) q0040312D E8 C4550200 call qsr.004286F60 \& d) o$ V6 S
00403132 8B00 mov eax,dword ptr ds:[eax]
; P- g) u% y. O+ `, d, S6 O; v' s00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]0 G8 j; r; A9 w' v [8 I+ t
00403138 50 push eax
7 W6 L9 k( V1 e4 D00403139 C64424 40 04 mov byte ptr ss:[esp+40],4
$ j5 S5 c' m$ p" k0040313E E8 4D560200 call qsr.00428790! m) Z5 x4 t- H. ~8 V' V
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
5 @1 `& b- N2 M00403147 8BF0 mov esi,eax9 x) T3 q: d; ~( z2 z! N
00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3
' y/ y9 w) P" }! ^& d j3 e0040314E E8 38C30200 call qsr.0042F48B" j3 j3 e1 U1 @7 k0 b
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]# D0 Y! J- L5 h" C" n: w
00403156 B9 3E000000 mov ecx,3E
5 G4 f2 R: O. ?6 Q& p# P0040315B 99 cdq
" q* I/ S \' q0040315C F7F9 idiv ecx0 G, d$ V+ a) t5 ?# q& }7 W
0040315E 6A 01 push 15 H: N( t5 t/ A2 p% B3 }3 ^5 \7 z
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]: f4 V# `. L5 F# _; u
00403164 8BF2 mov esi,edx" ^: `4 o8 S$ l; K
00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]0 ^, |7 g& W" p4 q# y8 W( l
0040316A 52 push edx2 @/ ]$ c0 n0 h' p" o
0040316B E8 0A550200 call qsr.0042867A+ i! t* r4 M8 R. A7 @! ~
00403170 8B00 mov eax,dword ptr ds:[eax]
1 W* B" b e O4 y00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]8 L6 J& i/ H0 k# E# q
00403176 50 push eax1 U, X( y2 O: I; |7 O$ @' y E
00403177 C64424 40 05 mov byte ptr ss:[esp+40],5: Y R, W! w+ t5 K8 ^3 B: v& g) W
0040317C E8 0F560200 call qsr.004287908 P4 M& s1 \) \; s) l" G
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
% U7 t& a U# M# V00403185 8BF8 mov edi,eax C: Y1 j/ X2 ?2 U
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3. z: D9 X! Q- B. c
0040318C E8 FAC20200 call qsr.0042F48B9 _" s, I$ T9 C# Q3 [8 |
00403191 8D47 0A lea eax,dword ptr ds:[edi+A]
( Q2 y9 z( u' o1 a8 q00403194 B9 3E000000 mov ecx,3E W% `& ]1 E4 k' {2 c; w( |
00403199 99 cdq
& I3 [2 C3 I! X) E' D0040319A F7F9 idiv ecx
3 f1 X; v% o7 X- ]% T, T$ e1 Z8 H0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]8 ]3 i, d6 c+ @& |
004031A1 894424 28 mov dword ptr ss:[esp+28],eax
6 q! L$ O1 I& J004031A5 8BCA mov ecx,edx
: C2 u, f( C5 `9 v3 N1 o. E. Z4 e004031A7 894424 24 mov dword ptr ss:[esp+24],eax# Z/ k$ L2 F( u% \, F1 j, j& ^$ l9 _
004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
: `) [* f- _/ b# U0 R. U2 D c! M2 ^004031AF 894424 18 mov dword ptr ss:[esp+18],eax
4 f5 j2 ^( s/ E3 l* V$ x004031B3 894424 14 mov dword ptr ss:[esp+14],eax
+ |8 ]. T7 c) ]004031B7 894424 10 mov dword ptr ss:[esp+10],eax2 ]; i2 W5 u7 M1 B. w
004031BB 8BC1 mov eax,ecx
/ Z; z% o( q# }004031BD BF 0A000000 mov edi,0A9 G) {3 t' ]- {
004031C2 99 cdq( S% E# B) y% _9 O4 d9 n
004031C3 F7FF idiv edi+ Q8 {) U* U$ V! l$ X {7 i
004031C5 8BC1 mov eax,ecx$ Q$ {1 g: x" a$ `
004031C7 B3 0B mov bl,0B
8 j5 V( c' ?: _. d! V004031C9 0FAFC1 imul eax,ecx4 Z: |2 _' C7 y$ d7 t3 x% U" M
004031CC 8BCF mov ecx,edi9 a- ^' p) x+ n" P
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
8 b0 r1 s8 P3 f. R004031D2 52 push edx
/ a/ {* m5 ^& S2 P# L004031D3 99 cdq
2 l; [" Q! t1 A% b4 c004031D4 F7F9 idiv ecx
' S3 O1 c% {- p8 ?6 v004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]
% Y: @( i/ k% L004031DD 2BC6 sub eax,esi
7 |% N9 Z4 b# O# c% r; i# M. f' s7 c004031DF 52 push edx
h/ ~2 \, T" f% E# w9 [% t004031E0 99 cdq
2 U2 e8 \6 Z2 o4 t) V004031E1 F7F9 idiv ecx* g, ?, l2 H6 P4 [/ O# L
004031E3 8BC6 mov eax,esi
% X" r" `% N" W$ Q5 t004031E5 52 push edx
( c- L s n r+ l7 e% _( R) J- z" p004031E6 99 cdq
' X& H$ i! `% m+ C004031E7 F7F9 idiv ecx
1 k* R! G- Q2 t% B, p004031E9 52 push edx g$ O8 e' J* h* `. a. n
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
0 A T1 g; q# a7 f( o004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
3 N6 ]" ], ~& e( ~004031F3 52 push edx; R$ |+ P6 C$ D% W' J* s2 u
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893" f8 y& {3 h$ {/ ~
004031F9 83C4 18 add esp,18$ X' v9 s( @9 G+ M4 [5 c" f9 G
004031FC 6A 04 push 4
6 Y& Q1 t3 r4 c$ ] ~004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]
) G7 j1 d3 [! w) I00403202 6A 00 push 0
[& t6 n1 T j' ?& P& c6 M% f. O00403204 50 push eax
. S6 L/ z* p* {/ y00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
$ }5 L' h9 D# B! F00403209 E8 D6530200 call qsr.004285E4
) {1 k7 N2 K. ]0 Y" @0 c4 f6 d! [0040320E 50 push eax
4 f, f$ O' Y/ V- L+ @0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]$ h: D7 P" I; B- D9 o# G
00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C
( M T2 T; L% G; v$ B00403218 E8 A7C30200 call qsr.0042F5C4
& U+ q6 Y) M8 s2 X- c% s" Y3 Z0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
; t7 p; L( u$ A4 c0 D4 d, V$ r% f00403221 885C24 3C mov byte ptr ss:[esp+3C],bl6 S G$ @& z, z* G0 V6 ^
00403225 E8 61C20200 call qsr.0042F48B
) O5 C M7 U: z0 A0040322A 6A 04 push 47 a) D# _' _/ U
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
' f' ^; M/ n+ p00403230 6A 05 push 59 k$ l2 Y- ^, f& S/ l6 {7 W& s. @
00403232 51 push ecx; J$ K9 w% q. W9 S9 h
00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]2 ^' X1 k$ g& ~$ ]! t# x* a
00403237 E8 A8530200 call qsr.004285E4# j8 k5 s( P( Y5 a
0040323C 50 push eax. A' f$ E; G2 s( C2 k5 E" `
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
' `2 p! f$ A1 e2 T% L( e7 G00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D
! |2 o- X3 _- b3 A- S00403246 E8 79C30200 call qsr.0042F5C4
4 g6 F0 k3 n, V0 R, I0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]/ |- _4 a/ O# H! |
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl
- n/ o8 i9 j9 O! B* {+ j8 ~00403253 E8 33C20200 call qsr.0042F48B( s/ h4 \8 p B- v: z0 U
00403258 6A 04 push 4
3 E' R* P6 i+ A5 K: ]0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]
5 {3 x- w) |0 [' C1 n$ b0040325E 57 push edi( `6 j9 @/ J5 `, ?6 l% o, P6 w
0040325F 52 push edx
- H0 m) D/ P& E( A00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50], _- `3 {! d4 W2 \6 p" V- ^
00403264 E8 7B530200 call qsr.004285E4: V& r K. }0 Z5 v
00403269 50 push eax
: F6 |, _5 ^2 e& x7 k/ D0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
" [' g5 h! k% Y7 C; u0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
) V$ `! h0 K/ ^& ^0 p$ t% M" ~2 w00403273 E8 4CC30200 call qsr.0042F5C4
9 u: g0 a: [& M' R00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]2 y6 g. ?/ r. {( M: V" |, W6 C, q
0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl G* C/ R& v' `, K
00403280 E8 06C20200 call qsr.0042F48B( G1 q) z1 Y1 L5 M' ^) m
00403285 6A 04 push 4
5 x' H) w) v6 V% D0 r) u1 \& [% v00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
( _6 e* q0 J; O W/ F0040328B 6A 0F push 0F
$ Q5 I/ k. ^ _! Z8 Y$ J0040328D 50 push eax
8 N- E( S& U, [0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
! r; U& Y: M3 c$ E00403292 E8 4D530200 call qsr.004285E4
7 J4 p7 V" f3 p" s2 B7 u00403297 50 push eax
2 d1 ?! v7 A$ v4 F5 s% l00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18] Z2 O U( E, ^% j. H- A/ M/ B2 z& r
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
9 V; F* O- O. V9 ]# Z, f S" w004032A1 E8 1EC30200 call qsr.0042F5C44 K9 w1 W3 R$ T9 `; Q
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]1 I3 n0 Y8 w" E2 K& A7 z
004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl
; v6 u9 V& H, n$ X. Z; b$ k004032AE E8 D8C10200 call qsr.0042F48B
$ R! r+ L3 u/ o6 W0 B004032B3 6A 04 push 4
7 W" P# R' Q* U4 u0 Y004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]. C% V2 m' c- I
004032B9 6A 14 push 142 z& |, p5 F- a
004032BB 51 push ecx
8 w0 ^3 r1 ^) [* b& b004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
: \- {) A+ i/ j4 x004032C0 E8 1F530200 call qsr.004285E4$ l( U4 ]) Y% A0 Y+ q' \
004032C5 50 push eax
1 }5 C }$ _2 X4 d+ q& ^004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]9 e1 t7 X) Y( ~8 e- m; Z. v7 q" H% \
004032CA C64424 40 10 mov byte ptr ss:[esp+40],10
3 P' s9 a0 `6 J9 ]7 r* i004032CF E8 F0C20200 call qsr.0042F5C41 P) C: G2 U' L+ @/ o, b
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
- f! V# v9 x4 T# R" F9 z004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl: c' a! s9 p0 W! t; w& j
004032DC E8 AAC10200 call qsr.0042F48B
' ?) r5 p7 Y5 M* d- T004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
3 j: V: W5 u" J004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX8 l# s) \- T' `; \; m: P7 F4 X
004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL2 w. X1 ?5 |: r
004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL
2 Y0 ?8 Q6 C4 }0 O004032ED 8ACA mov cl,dl ; DL送CL
/ C- L" X0 L- Z8 W004032EF 3AD3 cmp dl,bl ; DL和BL比较% W+ [' R z" @
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
, N; {6 J5 x7 q% \004032F3 84C9 test cl,cl
1 ^& \( o$ ~ ~4 l2 u, p$ A% x+ |, N004032F5 74 16 je short qsr.0040330D* k& p% G+ R8 k1 i. z. t# J9 ]) O
004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL
# t; x N+ c6 `+ y/ a004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL# F v0 Z0 I2 Y' O3 A: S8 W, [
004032FD 8ACA mov cl,dl
! g0 l: D7 V; @+ J' Z$ r* q004032FF 3AD3 cmp dl,bl ; DL和BL比较
3 m( N Z, t: E7 h00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)5 t3 W( E0 t% F' |" x
00403303 83C0 02 add eax,2 ; EAX加2
: b8 j l2 ?3 D+ {) I# Z00403306 83C6 02 add esi,2 ; ESI加2
! u" F8 x' @# h- o, r; ~3 E00403309 84C9 test cl,cl* d: c' c+ y$ z1 s8 B
0040330B ^ 75 DC jnz short qsr.004032E98 c1 q4 S0 o [; y/ s% q
0040330D 33C0 xor eax,eax2 n$ s. i# t% C9 q6 d' q6 b8 d
0040330F EB 05 jmp short qsr.004033169 W. o" E6 {: k9 @$ O# S
00403311 1BC0 sbb eax,eax
- E8 `+ y: W+ T: H00403313 83D8 FF sbb eax,-1% F1 ~7 y7 ~7 R, o, h
00403316 85C0 test eax,eax
& {7 B) O( j1 d! M7 Z00403318 74 0E je short qsr.00403328
9 `% O' o# z: j" U5 R/ H: o4 `0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
1 X7 L& P9 S: Q/ I$ y) H8 V0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10], i& E3 F- k( y9 x$ K1 F1 R1 [
00403323 E9 F0000000 jmp qsr.00403418! T' d& I) H# N& a- M' j
00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX9 [ P8 J" l: {7 c' {! b/ k; l" k
0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
2 A0 p* P0 t" p8 i0 a, Y00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]! h5 G7 V5 v/ ~% |# L
00403333 50 push eax; h1 V% H, L* ]$ ~3 z
00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX
$ }: O5 `9 ^3 C+ }0 L00403339 50 push eax
5 C$ ]8 @$ i( [- E, ?; h1 F% Y0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX& s- a3 Y; M! l' X1 h* I# J/ G
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
% A% T1 B" [3 t/ t7 K! W! }8 m00403343 83C4 04 add esp,4) ]' d/ b+ l6 |& w! \' g
00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI( v: P6 g: X" Q4 \: z" h6 H
00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]
' `( R V) a1 T8 U+ Z" r0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]: w2 @ N' O" w0 n
0040334F 50 push eax
: {" s! W7 O/ w/ c* D% x% I00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX# Q0 D, ~( Y+ S4 s1 E# e
00403355 50 push eax0 w: B9 S0 R5 X B6 U
00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX: g6 l3 J" P l5 Z" H
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
" b3 Y7 r) e8 m0040335F 83C4 04 add esp,4
& ?+ C1 w5 u: x! @! H; U: b00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI3 G# r$ o) o% O+ [
00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]3 Z6 U* V: Q/ p9 {$ I
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]- Z# |6 z6 I7 n4 R
0040336B 50 push eax
" Z" J, D4 K' }$ v0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX
7 L* o3 Y0 N' S3 W! \% E" S00403371 50 push eax
6 b2 O& e/ S1 W$ j) n' m! v) A00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX/ |" x/ r$ J' }3 z) m$ f1 D0 ?
00403377 8BD8 mov ebx,eax ; EAX送EBX5 C$ w( b$ [' G% U8 {/ d
00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX
9 C0 X. h3 o* N' k8 u7 Z9 ]4 _0040337D 83C4 04 add esp,4
/ p5 e! x+ J7 J00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
3 x" d5 ]! [* t: X" X' [# i00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]7 z3 D& n+ G8 P! S, R
00403387 50 push eax O1 r/ n g. {2 C' O8 o
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX; t! G) l0 `5 O w0 [( L
0040338D 50 push eax
7 Z- S- e; Z5 z! T5 c" C# @4 |0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
: y( h5 O. ?5 R7 r00403393 83C4 04 add esp,4! h, F' m+ K# C- b4 P k1 n
00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
' Z3 A9 E3 M2 m4 y& I0040339A 8BE8 mov ebp,eax ; EAX送EBP
/ i0 |2 C5 q! \/ }0040339C 6A FF push -1
, T' P4 T7 f/ O) T0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX
\$ d" K. u: ]+ q6 n$ A& G004033A3 6A FF push -1
' K6 t" n. f! q004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
; | C4 T/ b2 R- j004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
4 Y3 X8 X1 {! n" a004033AE 6A FF push -14 ?6 ~- r# h/ p1 z: T
004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX$ x- w/ ]3 p/ h
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX
9 o% b9 j1 N. W- m3 e004033B9 6A FF push -1% J1 B b3 n2 S1 A7 F
004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX9 k/ @; t4 {$ V
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX
9 y4 U6 K0 C! @7 d9 E8 ]+ m2 F+ t004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
, D5 V! W( S3 z4 J* u004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX$ C7 @6 P3 M9 [# m/ R3 l; H, f+ U
004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX5 S7 r1 R9 Z8 f! Z6 y
004033D7 D1E0 shl eax,1 ; EAX左移1位
. }4 z2 K3 n; L @004033D9 99 cdq ; EAX扩展
+ W/ J' J. x3 P1 N004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
) L" }" K% }4 O7 ^ L: [004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较/ i3 [9 V# @$ k/ @. `" B+ L' N
004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)4 H/ {% ?8 v- a; J; v7 I/ Y
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A1 x3 _# F2 L% a2 ], c; p% m4 z8 j
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
u/ X; h3 Z& q _* |$ ]004033E9 EB 2D jmp short qsr.00403418
6 N# w9 D5 O6 g7 _5 t004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX
' K) r: A- R% k( ^: F, M( Y004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E26 C6 {# ^" v* I9 `7 |' C ^
004033F7 99 cdq ; EBX扩展
, q0 ?/ o: s/ ~2 V, A1 U+ g004033F8 33C2 xor eax,edx ; EAX和EDX取异或
1 t& \1 p! e7 D& ^004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
9 e, l* i; T+ {6 [004033FF 2BC2 sub eax,edx ; EAX减去EDX* g( u* l& k- l
00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]
4 @+ q! C9 ~% z& O2 B00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
# z/ P& S- V8 n# z* [00403409 99 cdq4 i* L2 V7 P8 Z9 Q
0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
7 t( K. D7 f3 n+ w; o0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX
/ z) J- g& M B) a00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较
# j# t; f" R0 J8 g00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳). I: @- f, R5 B0 a4 s6 k
00403418 E8 6EC00200 call qsr.0042F48B ;
; c. K+ W5 b) f) F; J, ^0 p0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]0 j+ G, P. Z( r! n1 Y) n! {
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9, O- Y. g2 e) z- a, S! B& K* e* ~5 F
00403426 E8 60C00200 call qsr.0042F48B" C4 P6 }& p/ E% d9 o
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]$ M$ I y; q9 u v9 } i: w
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8
8 m7 h6 w& y3 s7 k( t1 D- b00403434 E8 52C00200 call qsr.0042F48B4 o7 Z. ~1 e* g4 T" M. H5 \" z
00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
" z5 w) a9 \! q6 O$ K& J0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7
6 L9 m5 c$ n0 q9 `3 Y6 B. `+ _00403442 E8 44C00200 call qsr.0042F48B
+ B. x+ F3 \5 r( c00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
. B B; p: \1 H. U3 ^1 d' F0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6, M+ R$ N, B% N5 l
00403450 E8 36C00200 call qsr.0042F48B" L( ]: e [7 M7 j0 I) Z
00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]+ L& ]/ G( t7 Z g2 r* e, X% X. j$ n
00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],32 D2 @3 |# ~3 q* p& w E5 v% Y
0040345E E8 28C00200 call qsr.0042F48B
9 O6 w* r+ k; w" c00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
/ I, D+ W4 H7 G" N. _( ~+ S5 C$ o00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
+ z- d) P( B N$ G, o' M* V; r! V: B0040346C E8 1AC00200 call qsr.0042F48B
: B ]; U, Y9 x* ]# P00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]! Q+ I9 K, x$ Y% |: t( j
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1
5 L6 H* c2 f0 ~( ^6 S6 d# x0040347A E8 0CC00200 call qsr.0042F48B( s* g8 m0 ]$ q) z; f
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
% K% u+ W8 e) a1 V- O00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0- M# g1 s; @9 c1 e; A$ ~3 B
00403488 E8 FEBF0200 call qsr.0042F48B
% U1 k2 d9 N. g; E2 A! [ Q4 }0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48], B+ ^8 y E/ z
00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
. P% _' a6 V U4 C8 z' Y00403499 E8 EDBF0200 call qsr.0042F48B
C: y4 t: }6 G) Y0040349E 32C0 xor al,al ; AL清0
- h) [, `: ?: k: O5 B% O. A5 T004034A0 E9 88000000 jmp qsr.0040352D
7 h+ A$ L0 B( z: L8 |004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~
4 R1 A g; a' O004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]; f9 R2 t5 j- h8 o' O, n' |
004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9
' K# o6 A& s2 ?2 o$ l/ G- q004034B3 E8 D3BF0200 call qsr.0042F48B, V7 i% j/ V1 x8 X- B& r
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
- _7 J! e$ ?# ]- |004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
) [+ {, z% ~( {6 Z( `004034C1 E8 C5BF0200 call qsr.0042F48B. P8 X/ e- ?) h' V @
004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
& ?- R( s; |1 C9 f8 M004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],72 ~6 J- L: F8 V+ Q. I; `% Y
004034CF E8 B7BF0200 call qsr.0042F48B, C% C# a$ j' y$ q
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
/ g p0 c! o3 a1 u+ j ?$ a1 D% D004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6, m. X, T0 K, \& s4 ~
004034DD E8 A9BF0200 call qsr.0042F48B" L% d& u. t$ D8 t
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]3 v6 t6 @- i0 y. l" a3 X
004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3! y# b% X! _$ C5 _9 b! y
004034EB E8 9BBF0200 call qsr.0042F48B
& U2 d0 o# \, g( B, _1 X004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
" \+ M9 E2 t1 w0 _0 s" l- d004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2
% E0 L9 L/ i1 E/ z5 C004034F9 E8 8DBF0200 call qsr.0042F48B. g+ ?" C. Z# A" H
004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
& q+ e! ^" N. `6 D- E( N' O8 m00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1
/ {& ?( _' X X! f00403507 E8 7FBF0200 call qsr.0042F48B+ T5 q% g7 \( _4 q+ S
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]& Q9 v7 U' M/ B9 Z7 C9 C$ G/ T# o) r3 B
00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0
. ?$ _% j! r0 B% C5 H00403515 E8 71BF0200 call qsr.0042F48B& S8 `7 ?. t) I: \
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
, l: V1 M* R( s0 }0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
1 k& e5 L! I/ {2 _9 M8 x00403526 E8 60BF0200 call qsr.0042F48B
# T& ~( A# p1 o! L$ r# ^* c0040352B B0 01 mov al,1
' S3 n5 E: Q( i/ w0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]3 x! u! \4 T2 w+ O8 i. \
00403531 5F pop edi
4 B" O& A! ~3 }00403532 5E pop esi% y# c+ e1 Q- S9 t8 e1 H& s* M
00403533 5D pop ebp
" t6 J, y5 b" U. B8 X# @00403534 5B pop ebx: Y$ n7 `5 `# ]# ~7 L" ^4 S
00403535 64:890D 0000000>mov dword ptr fs:[0],ecx' P4 E9 w! W- h: E, j6 {
0040353C 83C4 30 add esp,30 v( T% s s, j
0040353F C2 0800 retn 83 h+ H U) A8 J) k+ \
--------------------------------------------------------------------------------7 O( A" Z7 u l6 u4 r
【破解总结】4 |0 s9 u# @0 D. D5 H+ n" _
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^" s( D$ y$ ~- C! l: t& B
用户名:yijun
; I8 q# R# B' q; Q H- H* E注册码:4893*7777*3726*7777*0529
" d( V% F! Q r5 C# P f7 Y1 X! H' z--------------------------------------------------------------------------------8 s% b0 h5 J2 e0 Y. _4 o& N
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡