|
|
|
【原创】破解Quick Screen Recorder
) e+ M7 m% w5 a n% ^% I【破解作者】 yijun: d+ j, j5 |6 e: T; G& Z& h2 t
【作者邮箱】 [email protected]
( J) F* G; S& ~8 o, M【使用工具】 OD,PEID4 A J7 y4 y; ^; q" y6 B
【破解平台】 WinXP5 x; M$ Y1 g8 u
【软件名称】 Quick Screen Recorder
( S, a' j/ | O/ C# b【下载地址】 天空- I0 B, Y- s' ]0 I& R2 v; W
【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
) z' y9 n1 m* R1 J$ O【软件大小】 540K
2 ]( c* \; s0 I# q4 i/ v9 A0 B【加壳方式】 无- }5 q0 S3 `; O% k! C7 j
【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)
# [) Y1 V0 M- q) l9 V' W' c--------------------------------------------------------------------------------
3 G5 S! b S6 f& M6 P【破解内容】9 H1 k7 m2 w0 l/ E! ?7 S# w& d
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:: m) P2 B* o6 Y8 [6 ]/ N# B. W7 r
00404C69 55 push ebp //在此下断$ ^4 X! W; {/ w( O
00404C6A 56 push esi" o( ?& Y* B6 `' z/ `
00404C6B 57 push edi
8 F6 e/ N4 h g% O00404C6C 8BE9 mov ebp,ecx
6 ]: p* j5 Y8 s* S00404C6E 6A 01 push 1* C5 N; {) K8 e1 ]
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
" m4 l/ u' o* h. V/ i/ a0 e00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]' T. K2 f! S2 W
00404C78 8BCF mov ecx,edi0 T2 w, M& E* S0 W2 M
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码+ {& z" E7 ?' G0 i
00404C7F 8BCF mov ecx,edi
8 p, w% z4 \; _3 T) [. u00404C81 E8 A73E0200 call qsr.00428B2D
8 g0 U7 _- w' C/ ]) A7 K1 b) Q$ ?/ w00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
' I( g' B4 s; L. r: {00404C89 8BCE mov ecx,esi# Q4 X* d% G0 S: q( C+ j
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX9 a& N; A4 V* m. O
00404C90 8BCE mov ecx,esi
5 m* C2 H: r: J/ H1 K0 z00404C92 E8 963E0200 call qsr.00428B2D
* Z* P; E1 A- w/ P' N& S4 z" ~. y$ ^00404C97 8B06 mov eax,dword ptr ds:[esi], _& j F+ V2 }
00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],27 w: V- Y# p [, Z* {
00404C9D 7D 26 jge short qsr.00404CC5
+ B R3 I7 h6 W9 g* L& j00404C9F 6A 40 push 40) W& i+ I+ f9 r9 S7 S( k
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder". O& z2 E* K+ Z4 h" I% N
00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."( h5 N( r0 X$ {2 j2 R
00404CAB 8BCD mov ecx,ebp
! O3 c. d" _5 ] h" Z: `! \6 n00404CAD E8 C3840200 call qsr.0042D175
; G! d- ]; M% q; H" F( k+ w00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
; R+ n, Z2 [5 t( P0 D6 O; N00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx
: m3 H( ^2 G- i" b00404CBD 5F pop edi
! C0 c6 f" ~ u00404CBE 5E pop esi7 t) }' j$ i( u$ o6 U
00404CBF 5D pop ebp
1 h- B# X- s; _ t9 W00404CC0 5B pop ebx7 o3 f7 P$ X( T. d$ s$ l6 Z
00404CC1 83C4 18 add esp,18: S) ~3 l) _% H6 J! |' X
00404CC4 C3 retn
/ r. S' n6 j1 M7 g00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
3 ^+ v9 [7 O9 x3 s00404CC8 84C0 test al,al0 I+ [" |# I. G6 e- U& ?& c
00404CCA 0F85 1C010000 jnz qsr.00404DEC# E! V' f2 ]" G5 G
00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]9 L0 B! D" P) y3 h# ]$ L: q6 q
00404CD4 E8 87E3FFFF call qsr.00403060
k* z! P) c g+ @00404CD9 51 push ecx7 u/ N5 g. E$ I% n" M& G- R
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0" r1 d% \) Q3 u
00404CE2 8BCC mov ecx,esp, ?2 q6 w' X2 H! z
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp) q( ]9 ^% f. k( [( z+ x
00404CE8 56 push esi
' }0 z, T0 [& S5 ]4 ~00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
( a# Z( F: m7 }; e% z. T00404CEE 51 push ecx
! u% `' {! j; @; e8 K00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1
2 y& l* q) W J) G, y/ p0 O00404CF4 8BCC mov ecx,esp0 T$ W, ^# Q# s B& j
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
* F; P5 f) i: ^8 ]! k) y00404CFA 57 push edi8 y0 n7 @3 \. Y; x1 W
00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0
F4 w7 B, p6 e9 ? n( f00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]* }8 j- H9 e) t; t
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0
0 I+ d5 _# { m1 _+ j$ t00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~6 \# |, A+ ~" r$ i5 r6 h
00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~! R7 y3 j: J" G/ |) V1 A# k7 f
00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
T h/ f" x4 o" r, j8 e00404D12 6A 40 push 40
5 P6 `7 F, {1 k }4 L: I00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
* ?. u2 H( N9 V+ D' X( H, v00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."5 I2 C# w0 R6 h7 i7 a* W
00404D1E 8BCD mov ecx,ebp- V2 V* O1 w7 Y; ]
00404D20 E8 50840200 call qsr.0042D1758 W2 |" T- Y6 i1 K. d' N. M- L
00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
! X+ r m/ ?7 A+ b ?5 M- X; r00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1) p) e3 w8 ]+ y' s$ W1 x% l
00404D31 E8 5AE3FFFF call qsr.00403090
$ x; |3 h! B6 p6 d& |00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]# G& e% E0 |: \
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
) k; i" i/ C- b00404D41 5F pop edi
3 e# E& p# L3 W' W00404D42 5E pop esi
7 J; t8 K x8 y7 u/ s H3 J00404D43 5D pop ebp" b% v0 p; X; T4 d9 W
00404D44 5B pop ebx
! p2 L# B4 I4 F+ u. J8 f- N- O00404D45 83C4 18 add esp,18
0 O$ Z5 C* h. D6 K% n9 z00404D48 C3 retn
H7 s, ]/ Z m: X, ?*********************************************************************************************************************************************************
. ]: e# I2 A0 U! F2 A跟进00404D09处CALL来到:
7 J* t, d9 c3 I6 X* @004030A0 6A FF push -1 //一路F8下去~~~~" J9 a7 L! i- b
004030A2 68 C88F4400 push qsr.00448FC81 H4 M. O3 Z6 |
004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]2 v9 C2 [, v a: d. A, p
004030AD 50 push eax+ g) g4 T! h# H/ X5 o6 D. g
004030AE 64:8925 0000000>mov dword ptr fs:[0],esp/ t& i. O6 i4 x, j+ E- n; W- B
004030B5 83EC 24 sub esp,242 l0 X# p4 T$ ^( e+ d4 u
004030B8 53 push ebx9 Y$ {" i) a5 ?5 ?
004030B9 55 push ebp
# w3 J. M2 N/ B) d% t, @004030BA 56 push esi4 a/ W% Q6 N, \8 f6 `; I# A. _& q
004030BB 57 push edi
8 h1 D3 ?; N9 K4 S5 c004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"
" d/ p7 C0 h6 Z6 Z/ D; j F) I004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]* ^! w. k; _6 V C# |, S4 b2 W
004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],19 Y2 Z3 ` A, A+ C7 d& A
004030CD E8 27C40200 call qsr.0042F4F9
9 k% F4 B; q$ U" H& d/ x5 F004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438], n6 ~ p. w) b1 Z% e/ j: M
004030D7 894424 2C mov dword ptr ss:[esp+2C],eax; Z- J& \+ s7 z) w9 }
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]6 Y1 _3 U3 V6 i! F; I4 }* e/ {: h
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
1 |' M8 k' U( |1 ^( x6 U7 h+ S2 y004030E4 E8 905A0200 call qsr.00428B794 X* H3 L( o5 I6 q# s
004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]& K* g6 F0 X. L2 _8 H+ c' W: t
004030ED E8 3B5A0200 call qsr.00428B2D
0 u! q9 T; Q" j004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]! \! S- y, b8 ~+ }1 q
004030F6 E8 7E5A0200 call qsr.00428B79
( {& f% N7 v5 s9 ^& u$ Y004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44], m1 H: j4 G$ w; D
004030FF E8 295A0200 call qsr.00428B2D
5 ?+ u. d5 U/ c% {( W1 N, E00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]. |. Y" G1 x- f% f
00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
0 M( p- L. N- O Q: P1 b$ }$ u6 O0040310B 83F8 02 cmp eax,2/ K) U5 n5 t* @' W$ F- ~
0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
$ q+ |9 l* p; h$ ?! e, m7 T* [- t00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]
) D2 ]% j: |5 n1 w00403118 837A F8 18 cmp dword ptr ds:[edx-8],18
! Y( }0 a( Q t* D* C5 _; g0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳
9 f. l9 Q3 e* W0 c- C00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
9 g: ?/ \6 k) R& w/ c! R2 H% V00403126 6A 01 push 15 b! g6 y0 b: H
00403128 50 push eax# r& J/ ~7 U/ n& G
00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]. _7 b2 g$ j+ B4 x4 }$ Z1 }
0040312D E8 C4550200 call qsr.004286F6
5 r4 |$ N1 }( i) r00403132 8B00 mov eax,dword ptr ds:[eax]% X# a' ], B/ I& Y% p7 X
00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
5 e/ t6 O5 N# W, O00403138 50 push eax8 j( W4 a3 \; m2 I& Z' U0 Y
00403139 C64424 40 04 mov byte ptr ss:[esp+40],4
$ L S& H5 T# e, U2 _. [0040313E E8 4D560200 call qsr.00428790& W8 O T: y. Z5 t1 y$ c3 Z) r
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]6 F+ I& X8 w9 ?* Q( |: H
00403147 8BF0 mov esi,eax5 K% ?9 j6 _2 _4 F
00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],32 D: p' V# l& c3 d
0040314E E8 38C30200 call qsr.0042F48B- \, r( m5 @! z1 w+ z1 T
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]
$ I. ~' \: Z6 c, o. v00403156 B9 3E000000 mov ecx,3E
; K; T0 v6 O, S. ^1 e- W& r" B0040315B 99 cdq
q4 E- v& w$ Q. e0040315C F7F9 idiv ecx; H0 s3 U, n: x0 w A
0040315E 6A 01 push 1
& [6 t% e! E+ Z8 ^9 U! L00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]6 N/ [; F' ~( a; j; K5 m# i7 h
00403164 8BF2 mov esi,edx
0 K7 O. ?5 @& N" Q8 [. x, u2 S9 U; p00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]* \: A; b$ I9 X- X) Y: P
0040316A 52 push edx
- C( B- x7 }, {0040316B E8 0A550200 call qsr.0042867A! H8 W# s3 o V& y% M: M- T9 I
00403170 8B00 mov eax,dword ptr ds:[eax]
. r( i1 m; o# n; V00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
, S0 A: |# _9 [* _4 u00403176 50 push eax. W; V8 @5 u$ w
00403177 C64424 40 05 mov byte ptr ss:[esp+40],5( A* L0 M, `9 x' @: [# @
0040317C E8 0F560200 call qsr.00428790- F$ A9 X7 ]& P9 r% o1 i: T6 g5 E
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
. A" m3 @" a' t00403185 8BF8 mov edi,eax
& y+ {& x" C4 {00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],32 o3 k. S0 Z9 t8 s
0040318C E8 FAC20200 call qsr.0042F48B
' b2 H! S3 X9 N2 A" O00403191 8D47 0A lea eax,dword ptr ds:[edi+A]
; Y r8 e$ h* F' D1 t5 s, s00403194 B9 3E000000 mov ecx,3E+ b ]1 L8 e9 W$ g2 e: r
00403199 99 cdq
9 Y7 b" p( I1 @0040319A F7F9 idiv ecx! H" L! q+ s# v" n% c* b# T& g2 F
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]
& f- _1 V* H) g: P/ h; S004031A1 894424 28 mov dword ptr ss:[esp+28],eax
! W% t/ z% o7 z1 z* T6 u: t004031A5 8BCA mov ecx,edx# D4 J7 Z4 \5 _2 ^
004031A7 894424 24 mov dword ptr ss:[esp+24],eax
& R ?* l3 A9 M9 f$ W004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
6 C3 n* \4 ~9 |004031AF 894424 18 mov dword ptr ss:[esp+18],eax4 N9 W5 J& z/ |
004031B3 894424 14 mov dword ptr ss:[esp+14],eax
3 p) _% z. o2 x' W+ [004031B7 894424 10 mov dword ptr ss:[esp+10],eax7 Z! R7 w8 @3 k: w/ ]/ \, l H
004031BB 8BC1 mov eax,ecx
# Z4 l$ M$ B# P+ V$ r004031BD BF 0A000000 mov edi,0A
$ \/ T( o; V! j- f( k, I, P& c6 f004031C2 99 cdq- [/ ?9 h _$ |- Q
004031C3 F7FF idiv edi- d- W7 Y1 r% P) _( p
004031C5 8BC1 mov eax,ecx- T1 s/ W& f m7 o$ r1 f+ Y) x
004031C7 B3 0B mov bl,0B
' p' Y) s! ^9 U+ O% x004031C9 0FAFC1 imul eax,ecx* C2 J6 o$ n) i9 o5 m% f4 ~# U
004031CC 8BCF mov ecx,edi
& T+ c v: c7 m9 |! a004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
D$ Y* U: Q. J4 j004031D2 52 push edx8 r2 e6 I: @/ T) Q. \
004031D3 99 cdq
O2 i3 ]9 o Q+ t7 J004031D4 F7F9 idiv ecx
+ t' W9 B, k8 _004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]
1 ^ I1 T+ v# y' ]9 y+ w2 {2 q' l6 O/ V004031DD 2BC6 sub eax,esi, k* |" v+ M; |1 n4 E
004031DF 52 push edx
, A7 f% _* i' o8 d004031E0 99 cdq
?" q9 |% y7 C8 p004031E1 F7F9 idiv ecx
- W, o8 E+ S, I# R5 n+ S004031E3 8BC6 mov eax,esi, n' j0 E( V4 b& z0 P( ^
004031E5 52 push edx, L+ O0 V! s: m5 v! F4 c$ ]8 R r3 S
004031E6 99 cdq
5 f1 i& G' h7 J7 r8 k004031E7 F7F9 idiv ecx' g. w1 d# I4 C& X a& z. Z& Q& D
004031E9 52 push edx
6 M( N9 X& [0 ^* Q( d) Q1 ~1 L004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38] S4 J* ?7 z6 Y8 s
004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
& a) Q' n& r% x, M4 O& G" W004031F3 52 push edx9 c& N3 L$ N+ R- Q% ~, ?; U
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893
7 v6 w6 @( C; \8 M8 }004031F9 83C4 18 add esp,18
# Y7 ?; i9 u' l2 E; S$ A004031FC 6A 04 push 4- K1 o1 R$ x% p0 l, F
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]3 u" h% }; j7 H3 d* N, d/ W
00403202 6A 00 push 0) V0 Y. A0 _. W+ L
00403204 50 push eax
8 F' ` S6 k5 A5 D4 ^% p00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
0 ~! `7 t7 P! I# l2 y00403209 E8 D6530200 call qsr.004285E4
3 s$ o8 w) r! C& j3 C) z; Y/ j8 U0040320E 50 push eax3 ^" r5 I+ d& a4 E6 _
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
; h+ z* U2 u$ |& o3 j2 r7 E( y+ M( e00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C7 M+ m$ B( H' f# f1 R. U* w
00403218 E8 A7C30200 call qsr.0042F5C4
- A7 @' { k. A! ?0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
* g" X1 Q2 I s9 K7 m8 w: p00403221 885C24 3C mov byte ptr ss:[esp+3C],bl
3 _ s% M9 W; n" s {$ p8 r3 B$ N00403225 E8 61C20200 call qsr.0042F48B
' Q2 M: s. Q- R2 ~8 x7 f% |# a0040322A 6A 04 push 42 K0 G5 _, t! [, \
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
# h* o4 A7 D6 a8 l w- p9 G00403230 6A 05 push 5
9 f+ n+ Y5 f9 h/ H: I8 q3 G1 p00403232 51 push ecx
: y5 b5 a( X% Z" B4 B- O00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]- B C k. ]9 H( T/ V
00403237 E8 A8530200 call qsr.004285E46 V# M/ e S, F: y: s
0040323C 50 push eax' j& ^( Q0 l+ _ c, h
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
$ Z7 {+ p% F8 `& l00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D& v- L. S( a. h. f1 b6 w, w$ {
00403246 E8 79C30200 call qsr.0042F5C4$ ?0 |& ?, }$ L% |9 c7 L2 P
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
! D& v9 ?( V q* A9 W5 C" a* L0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl# Z' n. H) { h; A! \! W
00403253 E8 33C20200 call qsr.0042F48B
3 x% N/ ?0 t3 P00403258 6A 04 push 4$ G/ a5 Q" v6 N
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]
7 J: o7 t5 R- z! b* B5 p; m0040325E 57 push edi
, c; y! S5 s, W0040325F 52 push edx
; {6 o/ O4 S+ m; I, @; _00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]( \: K. V* m0 Z. D2 H
00403264 E8 7B530200 call qsr.004285E4# C% o& d# }. o$ F x5 m1 a
00403269 50 push eax& A; [/ X L# h, c6 O2 |+ O
0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
$ l1 q: d1 k( ^3 i0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E; y6 g2 ^- b8 i, C; U
00403273 E8 4CC30200 call qsr.0042F5C4
; J, f4 O4 x6 v$ ?0 O00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]( E0 i* B8 K: u0 Z" M# W/ o
0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl7 D6 F/ x9 \" F
00403280 E8 06C20200 call qsr.0042F48B
D' {" m0 A- O- g& i' ^00403285 6A 04 push 4
7 ]7 l/ a" A& o; U& f00403287 8D4424 34 lea eax,dword ptr ss:[esp+34] h$ V" ]0 h( i0 w
0040328B 6A 0F push 0F
0 I' ]. O+ _9 J; h! v G0040328D 50 push eax
* ~3 L0 j" n- Y f O0 ^+ I+ T/ f0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
2 @; P: h! D: D% l! P9 d' V00403292 E8 4D530200 call qsr.004285E4
3 i: [ A" L+ K3 F00403297 50 push eax0 |( W2 d% ~8 X4 S5 Q
00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
1 {# t4 r. X: X1 ]0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
$ k% ^8 {7 F" V) D6 o8 I1 q004032A1 E8 1EC30200 call qsr.0042F5C4
& m) N v* Z+ w0 J' b' \7 c004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
- ^! k, f7 `4 a( G004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl& `+ c6 y1 ^' Z. K: j! b
004032AE E8 D8C10200 call qsr.0042F48B
3 u! _/ M5 r K `+ e7 }% {2 v# ]7 h. T004032B3 6A 04 push 4
6 [5 A4 N( B* q0 J8 K. j004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
4 @; x1 I( M3 P. T004032B9 6A 14 push 146 n* i: m! N0 ?$ Z# | [7 t1 x2 B' a+ N
004032BB 51 push ecx7 u; e s$ P- C( F& B# ?
004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
. V5 i9 }& s+ m* h004032C0 E8 1F530200 call qsr.004285E4+ a" @" S2 ]7 M. P7 x8 O% F0 ]1 \
004032C5 50 push eax- \4 c; c8 j, D3 m4 x9 D V
004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]; [9 a0 U a7 W' G
004032CA C64424 40 10 mov byte ptr ss:[esp+40],10
8 S0 D# B6 s, c0 y/ r; Z004032CF E8 F0C20200 call qsr.0042F5C4
3 Y* _% q5 @: b- s9 y004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]# g! p# R$ Z; d# Q
004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl
' `" t( f* K7 ]2 \1 @0 U# ?- l7 ^004032DC E8 AAC10200 call qsr.0042F48B/ f4 S& B* }; ~+ }9 w
004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
+ n0 |( U3 w* y. F. z004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX9 B5 b8 d% A" D# L* ^1 ^; |
004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL3 P' D0 p" @3 E h3 Z7 A
004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL
0 w o* ~2 e' X. ?8 Z/ c6 b, }004032ED 8ACA mov cl,dl ; DL送CL
; P% ^0 Y2 g T( { r! M004032EF 3AD3 cmp dl,bl ; DL和BL比较
7 w% U) S. b [/ y X3 b004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
# H1 f" f% z3 e. ^' H; r& F004032F3 84C9 test cl,cl
$ a( x3 @3 `# v( q: Y i0 V004032F5 74 16 je short qsr.0040330D
' a! ^6 x! S3 c8 U* i' y004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL
/ L1 o- f8 I! A$ `3 s004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL
g; D8 V# z# l# U004032FD 8ACA mov cl,dl; G8 n% Z' j3 Q% I/ h
004032FF 3AD3 cmp dl,bl ; DL和BL比较
2 ?0 m0 V$ y" F& ?5 i00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
1 c0 p6 O+ T7 q00403303 83C0 02 add eax,2 ; EAX加2
1 _7 ~5 d$ r5 Q00403306 83C6 02 add esi,2 ; ESI加2+ c1 ?5 R4 X7 h
00403309 84C9 test cl,cl) m; H4 V$ S( M% I
0040330B ^ 75 DC jnz short qsr.004032E9
) F' I9 c$ R! R+ r2 a. o0040330D 33C0 xor eax,eax
- y8 I* j" s. @. l6 E' l. K$ s0040330F EB 05 jmp short qsr.00403316: d" m9 N$ G0 m2 R' V/ M) ~
00403311 1BC0 sbb eax,eax
( l: H) _. w7 f2 l' c+ [00403313 83D8 FF sbb eax,-1
( q# N4 V& V; f- `* q5 c7 ?00403316 85C0 test eax,eax+ x# U7 T5 V( o. U& b+ r& k
00403318 74 0E je short qsr.004033281 W+ K) k$ X3 l
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
6 ]* n/ Y: f) z9 g. ?8 j/ v3 v0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
! H! Y3 R1 e, m+ w! ^! P* n00403323 E9 F0000000 jmp qsr.00403418
! N/ n& T6 E) K: ~* y5 }00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX9 o6 T9 V& f! }) N+ b
0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
2 h/ y8 \' t1 J. t( Z1 q00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]* M, E/ O+ H* J) p' s
00403333 50 push eax
9 h( }7 Y8 R& m+ @8 r* _: [9 [00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX, j a2 M* |5 r: m7 q
00403339 50 push eax
# A6 O3 o( I* h7 K) v# u9 E+ u0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX6 d" t& ]2 `- |2 z. b4 z1 C
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
8 C2 F# k* b& p4 b" I* ?' h00403343 83C4 04 add esp,4% }/ ?- B9 U6 `+ a8 E
00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI
! g7 E' y1 k9 q00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]
, z0 `1 C/ Y$ C1 ~6 k* v" [# ^0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
& p% |9 K. F) ] X7 J Q0040334F 50 push eax! O4 h$ J3 C$ s& _/ Z( ]
00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX4 F! _+ n: Q* ` ], M& T0 g
00403355 50 push eax
. M! u& k( Y' v' g( K, h/ K00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX2 {. O; @* A3 G9 G6 R4 t6 P
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
; G1 i) R( X' b% e: F0040335F 83C4 04 add esp,4
t# W, e- Z+ @+ D2 ]0 c+ y! n00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI
& p% Q3 ? V7 G; d1 h0 l00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]4 i6 f; C6 s( l' s
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]
* S% m* K4 `+ Z0040336B 50 push eax
, X4 }, f; D* C6 j" ^0 W a7 N5 k% ]0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX
6 s$ N. A% m; e; G5 Z00403371 50 push eax
! @" g8 y3 H, f( a6 x& R5 ?00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX
! A* D4 }1 r- G+ l9 i7 X00403377 8BD8 mov ebx,eax ; EAX送EBX& e" P8 a. s% y! J8 L0 @
00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX4 p3 }- F. u ^* W
0040337D 83C4 04 add esp,4
4 S. B6 l2 {7 w7 ?3 v2 U00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
D. K5 V% J9 M/ y; L00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]
. E& e: F: Y/ m00403387 50 push eax
2 q" b4 o, d( [: J! u4 V00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX6 c0 h7 N# N0 Z5 v
0040338D 50 push eax' m. U2 ^! }0 _0 e" [! E% O
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
5 k; f7 L. \1 ^$ l00403393 83C4 04 add esp,4$ ~" N, P) i/ _6 \; e3 Z% Y
00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
% t/ s# F) v6 |) b; u' M0040339A 8BE8 mov ebp,eax ; EAX送EBP0 P; r, {4 T% P
0040339C 6A FF push -13 `7 a' G3 ~7 q- w# [! k
0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX) Y: L- F* y1 |, M
004033A3 6A FF push -1+ C. \ a0 F- ~* Q" q
004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX. O( k% ^( t7 S# p5 k5 q
004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
& W) I0 m7 f) d2 G$ R004033AE 6A FF push -1
# _% i* A- u' ~3 v004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX. j* U9 I1 y6 f$ h* F
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX6 F; S5 ~! f4 T r& F
004033B9 6A FF push -17 J6 {1 }1 m" i
004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX" _9 n2 O1 K9 N
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX5 m: a# M6 L0 v3 R7 S; z
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
( Z1 m* Q0 q! F9 y" O; x9 ]0 Z004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
+ Z; T2 |, e2 A7 F' Y) s004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX8 r V6 o, z* S5 o
004033D7 D1E0 shl eax,1 ; EAX左移1位+ ]* L h4 U8 a$ a8 C
004033D9 99 cdq ; EAX扩展
0 e6 y R2 O$ M% Y1 N) P2 A. I004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
) Z; W, y2 b Z ], J004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
# a5 M- l# c8 Z& r004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)- S) {! Y1 w/ R" Z3 S) u
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A# I ^ Q0 n1 @/ z/ e
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
; `8 L2 v. U7 [7 r* M1 w9 q- U- l004033E9 EB 2D jmp short qsr.00403418
$ Y: W7 e2 P, ]004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX0 J0 S# z/ x, i
004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2
0 L% p* J8 J! ^$ D( o! K0 ?" l004033F7 99 cdq ; EBX扩展% ]# r1 ]' W2 f$ J
004033F8 33C2 xor eax,edx ; EAX和EDX取异或
% Y3 S' @3 p# ]/ `. ]004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX: ?# N6 J6 R6 Q8 _7 u: K9 a
004033FF 2BC2 sub eax,edx ; EAX减去EDX) ]5 w1 T# y Q) Y9 i- Y
00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]0 R) J6 L1 T) x# L+ G8 q3 P4 Z
00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX) a" d+ h/ a3 L, [" r+ ^" L
00403409 99 cdq1 N4 s% i- h# ]2 N
0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
( }& p: H8 j8 i1 r" U0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX& p& x2 B( ` t: y
00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较
O1 K. l7 {3 g; i00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)
4 O v. s/ s m5 d1 M1 W+ _00403418 E8 6EC00200 call qsr.0042F48B ;
5 F4 H4 E0 E( c. z3 I/ X; S0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]& c' Y q( f/ p' }* \/ n. }
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9; D5 S8 w, M% |8 E9 e
00403426 E8 60C00200 call qsr.0042F48B
0 V! B. l, y* l! H5 e3 S& V0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
- r5 _- ~: g% g$ g8 l0 a' x5 F0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8
4 T( `. o6 n; B8 |; W* H6 X00403434 E8 52C00200 call qsr.0042F48B
3 |+ j; H& @6 o8 u00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
! Z' y$ w8 a( n% J) ^- H0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7
7 i7 c; R" k- @4 m9 `/ E- }; j00403442 E8 44C00200 call qsr.0042F48B$ c! k# i( o& R( J. ~
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
5 c# J& s' e# c2 r1 h0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6* v* Q7 ~) _: ~/ H( A# Q
00403450 E8 36C00200 call qsr.0042F48B1 a/ K: P1 w, N P- Q, b( ^
00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]% c- e4 c! I/ k
00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],30 G' q: b, o2 i0 v1 }4 L; j9 E3 m
0040345E E8 28C00200 call qsr.0042F48B
% ?) D* J" }, H8 t+ c& z00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
7 y' {3 a6 v- z, V# h' ^00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
: B( f0 {! j% ]6 V0040346C E8 1AC00200 call qsr.0042F48B3 s. M. U- A7 Z& R# W
00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
! L/ R4 T. I5 M; Z: h00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],13 i: b/ d$ y: z- o3 C X
0040347A E8 0CC00200 call qsr.0042F48B6 K$ }! o9 E4 u6 v
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]! x# v6 R& ~4 V Y
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0, F* G7 `/ } p) o
00403488 E8 FEBF0200 call qsr.0042F48B
: P1 m# d( j F! q6 t0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]3 c( e# J4 { [/ C# y- M
00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
6 }$ G3 a7 }; k- }' U00403499 E8 EDBF0200 call qsr.0042F48B5 Z7 W, Z2 s/ ?8 D' e% c8 u
0040349E 32C0 xor al,al ; AL清0
5 x6 W0 G' M2 b004034A0 E9 88000000 jmp qsr.0040352D* e( f8 H! ]5 m
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~
! r: O, z- Y4 A o$ H004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
$ K' \5 f, o' I% F% M, H% V004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9' D& Y" s" N' p8 s; P
004034B3 E8 D3BF0200 call qsr.0042F48B" u, U# n/ b* B
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
8 N' e* s" F8 [/ |& A8 A004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
. e. J2 L- q l* g4 y" R004034C1 E8 C5BF0200 call qsr.0042F48B
! V. t+ j g* ]* l8 C' G8 |: Z004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
! h+ d. v$ I6 P004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7$ v* ^2 i- b0 }" e J. t$ e( l% R' d; s# Z
004034CF E8 B7BF0200 call qsr.0042F48B* q# }6 Y6 R* s+ f) l! B
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24] j# u( c. a- \4 R
004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6. L1 f9 |# ^- h
004034DD E8 A9BF0200 call qsr.0042F48B4 {8 Q6 v, D0 W- o5 z
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
" x( Y' l; n$ \: Z5 B% l004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],34 g6 \# j- _8 D6 [) j/ k6 A
004034EB E8 9BBF0200 call qsr.0042F48B
1 ?' Y7 |, R8 m% |004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
i% x0 o* s: n. M004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2
+ e) r v' X& ^6 \* q7 ^! p- a004034F9 E8 8DBF0200 call qsr.0042F48B
% k1 V5 h' @6 v6 s: `004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]/ \9 J4 U6 o, @
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1; h5 @, b2 E/ [5 U$ M
00403507 E8 7FBF0200 call qsr.0042F48B3 }5 {3 F8 k7 b4 B
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
- g0 \8 u' b; e. j: m' ?: Z00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0. \7 K5 H) {* m1 B9 x
00403515 E8 71BF0200 call qsr.0042F48B/ G$ F' B/ N) M) a3 ~3 A4 s
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
$ c c; k( n* [0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
1 r) i& U: R, [& O* _) S' q2 p" j9 W00403526 E8 60BF0200 call qsr.0042F48B
) l. |) }4 u8 b @+ z$ [" Y. G2 T0040352B B0 01 mov al,13 B H: C5 n3 t7 E5 E/ {5 x
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34], n# s2 {5 V! ?) Z5 c9 J) y& z1 o7 c
00403531 5F pop edi5 w; E2 Y% G: g# }
00403532 5E pop esi
, I0 v! \; `7 ^: f4 \2 y" v, T00403533 5D pop ebp
0 V+ a4 x9 d% p7 g4 x* z9 M6 x00403534 5B pop ebx
, B9 N2 e3 x C7 q7 h00403535 64:890D 0000000>mov dword ptr fs:[0],ecx
" z. }$ a ^4 Q8 M0040353C 83C4 30 add esp,30
0 a; k ]1 A ~: c$ `* s0040353F C2 0800 retn 8
8 \5 p1 S5 F( ~6 N--------------------------------------------------------------------------------
t7 z J1 v" F3 P$ K$ n- m R【破解总结】1 b& _2 c3 q; [1 g- N- w" l
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^7 Y) B9 n/ ^3 A; I+ r
用户名:yijun
- c6 D2 e5 J' Q& \, m r; q注册码:4893*7777*3726*7777*0529( w7 [2 K8 z$ P6 m- Z
--------------------------------------------------------------------------------
5 y- m8 O2 N! N2 ~0 ]4 Q( \【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡