|
|
|
【原创】破解Quick Screen Recorder. |/ i( n; i O C$ y9 T5 i
【破解作者】 yijun* S# \4 F& I: T) T5 t3 S
【作者邮箱】 [email protected]
, ?4 C4 p8 F0 q1 C& j9 m【使用工具】 OD,PEID
$ j$ {2 y1 V1 C! M" n7 Q【破解平台】 WinXP
" |( e! p9 l$ v' _, }0 w' n- F【软件名称】 Quick Screen Recorder
* m, G/ w* ]3 _8 r% u; `7 S- d【下载地址】 天空
0 B" Z0 t2 n2 z9 q1 \* J( B【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
- U1 ^& \8 z# {8 U8 B, [! [【软件大小】 540K
( v2 P/ C3 l- X* `5 j' Y【加壳方式】 无. \+ L% {3 G6 A8 `- }/ e
【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)8 P G, m4 p0 W" l3 Y
--------------------------------------------------------------------------------& K1 [0 `% o2 E4 w+ Y8 i: h
【破解内容】) ]- }8 I m: S1 C: ^# T7 J' |% Y9 b
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:4 X6 r! n, l7 G t0 E+ D3 O: x3 G, g
00404C69 55 push ebp //在此下断
. U. Y, P, Y/ I4 T8 L( l2 r8 D00404C6A 56 push esi! A8 H2 p4 Z: \. y
00404C6B 57 push edi
* ^) _: j* n& v9 u( x! V. Q8 u1 s! u00404C6C 8BE9 mov ebp,ecx5 N: z) I, Q& I" a. q: m
00404C6E 6A 01 push 16 z S: K2 |3 B! C
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
+ @5 ?; x. G M$ [00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]
7 p( @0 L. {+ l9 ?' J4 h00404C78 8BCF mov ecx,edi
/ Z, k. h: z2 A; a8 F' H00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码+ p( c6 P. |# w7 d- C: i# F; P
00404C7F 8BCF mov ecx,edi
* d$ S5 N2 d7 g/ f5 q& i' z' W00404C81 E8 A73E0200 call qsr.00428B2D. f( m- [: c! Y8 o \7 x
00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]7 P3 P' P3 O1 A' ^
00404C89 8BCE mov ecx,esi. U }' e1 z* }
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX
/ E: Q: u/ p+ I- M, D4 Q00404C90 8BCE mov ecx,esi- D) C) [0 _/ ?. H. |) U p# \
00404C92 E8 963E0200 call qsr.00428B2D W' c, S9 ^: E4 \
00404C97 8B06 mov eax,dword ptr ds:[esi]
6 W2 d: u2 H* n5 n2 t' X! @. ^00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],26 I+ w+ K* l) b) s6 W
00404C9D 7D 26 jge short qsr.00404CC5- w/ o1 b) j) z4 Q
00404C9F 6A 40 push 408 _$ n, n4 q2 K4 ^) I
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"" E% N9 ]) `; M
00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."' l$ S1 A2 G" L- E' B% _
00404CAB 8BCD mov ecx,ebp
: h! n3 d4 g* u4 O* K1 a00404CAD E8 C3840200 call qsr.0042D1757 w$ p3 Y, f& u# h( k* X
00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]3 A1 Q2 M& {0 |
00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx/ r: q, ?! n y8 {1 x
00404CBD 5F pop edi
! z+ g, |& J5 y3 t% O' ^. a4 l7 K00404CBE 5E pop esi
. c: g2 f* f! G9 B9 L00404CBF 5D pop ebp% S: Z( l( A6 l L! S3 T4 W
00404CC0 5B pop ebx
- T" o8 Z. O; S/ J: c) ?00404CC1 83C4 18 add esp,18
3 q8 p1 ?8 P/ l. N: I5 r00404CC4 C3 retn. E) b/ m3 s( j) G3 {* t$ {5 X
00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]4 h$ T! v K0 T. s5 \
00404CC8 84C0 test al,al
- Z/ c- n. r0 A: x1 Q7 N00404CCA 0F85 1C010000 jnz qsr.00404DEC
1 x" l: c" c J G! v2 F) A- }00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]) S! F9 q4 y, v& v* V
00404CD4 E8 87E3FFFF call qsr.00403060% u, @: E) \) U1 z3 w
00404CD9 51 push ecx; S5 Z/ F4 R$ d/ P8 P1 F. W
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0: o6 y$ j4 X( H# i% ?0 F; Z# Z
00404CE2 8BCC mov ecx,esp
( ~/ P; X' X/ d' A" n3 o3 y) ~00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
: t" D4 h8 s) \' F00404CE8 56 push esi$ y* _! h( N# [# e
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0* \! ?( J, r3 h" ?! H
00404CEE 51 push ecx
+ D* E; F/ b9 A: R0 l8 k4 O2 p00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1
, M4 h% o' h! v: Q. G" d00404CF4 8BCC mov ecx,esp6 |% W7 D% d' W" M E \$ _
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
4 L( `7 [' N0 P* x9 e0 B) C3 K00404CFA 57 push edi, t7 K8 [: Z5 s
00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0
0 |0 L; c& z8 z2 S+ A00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]& L4 \0 S( o8 N
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],06 K" G# q0 x0 @( H2 z# j! g
00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~
+ R* L* C" i. ?6 v1 ^" U/ a00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~7 {7 J6 Y3 F g `- Y* ~
00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
7 Q9 N) v7 ^! V/ z+ r( n. s. P00404D12 6A 40 push 402 ~5 w' j5 X" n
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"! l8 Q: F. _+ q1 B
00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."
\0 R& v' A* M+ w1 X5 Q' m& V00404D1E 8BCD mov ecx,ebp
7 f# k/ w2 o1 z5 g3 E- Y& l00404D20 E8 50840200 call qsr.0042D175
8 X( ~4 h9 [5 X0 C" U* M9 A5 o00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
! J/ I5 T6 @7 h) B4 g3 M00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1
; _3 o. L* X+ [; A. j/ C% B) s00404D31 E8 5AE3FFFF call qsr.00403090
2 D: p9 w- f1 ~) r00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]$ P' A* b% w! z" @5 o* w/ e1 ~
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
& _$ `' ?% D+ F8 e00404D41 5F pop edi# H$ C, |! ]+ Y4 X
00404D42 5E pop esi
; b2 @* X9 {! C k00404D43 5D pop ebp
* l O; x* z6 E1 F* o9 @$ M00404D44 5B pop ebx* {5 S$ G5 {% N) S: |& n
00404D45 83C4 18 add esp,18
7 Y" V! e A) Q+ X00404D48 C3 retn6 A j# [7 g t% q+ S- G- Z
*********************************************************************************************************************************************************, L- s4 C" b& U; q0 ^; j
跟进00404D09处CALL来到:
* J' ~% X- X; Y/ }9 H; N004030A0 6A FF push -1 //一路F8下去~~~~* \( P" k1 L4 p$ C E
004030A2 68 C88F4400 push qsr.00448FC8
# E: k! J, T- b3 ~& `9 M004030A7 64:A1 00000000 mov eax,dword ptr fs:[0] G+ X! s2 V3 i, F" U: l# q
004030AD 50 push eax% C4 c. F) ?5 z; i9 E
004030AE 64:8925 0000000>mov dword ptr fs:[0],esp1 ^1 s8 ]/ A" f. [, H3 U
004030B5 83EC 24 sub esp,24
( r6 F8 X3 T8 g; R004030B8 53 push ebx
1 l: w, Z) ~" q2 q" J/ Z004030B9 55 push ebp
8 P/ r: y% X, w( j6 J+ V: J004030BA 56 push esi
% @/ L+ Z, E w- A) n. S# h# d1 v004030BB 57 push edi
. e7 X6 F% N. e- k) F1 u004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"! [. v! S3 }9 o4 {0 t5 A: k$ q
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
, t* F4 L, n, G( X* C004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1
1 ^2 Z0 I8 v: i" R8 i004030CD E8 27C40200 call qsr.0042F4F9" m# A/ E" F# r. \5 v
004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
; w, _9 }" G5 [& |9 L0 y004030D7 894424 2C mov dword ptr ss:[esp+2C],eax
6 r" j2 A! Z k% T! y% v004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
6 |( l* [4 ]5 B2 Z004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],39 m9 f; k* }, h1 @
004030E4 E8 905A0200 call qsr.00428B79! @/ R2 Y$ L/ w% s" I4 f
004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
: V7 w8 e$ q. C( A. a" D004030ED E8 3B5A0200 call qsr.00428B2D# U, g/ n. z, s* b
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
5 u0 P! ?. b" I004030F6 E8 7E5A0200 call qsr.00428B79
! k3 A3 C- T9 h* g; x7 M: W; k8 G( h004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
* n+ F: {+ g! U2 D# K004030FF E8 295A0200 call qsr.00428B2D0 C% n0 b2 ?/ g' x
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]& ~1 L: Q# L' x' X* f- }
00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
! {# ~4 L' \+ i7 r1 \0040310B 83F8 02 cmp eax,2
4 M! s9 V5 R2 U8 l- l0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
8 s( ~0 _6 F$ G9 L( f6 h. k00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]
% W7 @3 M/ D# p. Q00403118 837A F8 18 cmp dword ptr ds:[edx-8],18) H* C( P4 }9 j7 Z$ a
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳
* `0 Z3 Y/ ?* b7 d3 O9 E00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]; l, E; p* q9 ?0 [5 ]5 z! e
00403126 6A 01 push 1. M" c- H( p: {
00403128 50 push eax
7 I: Y% D8 M8 \6 u" y00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
+ Y2 Q0 t2 V& S4 O2 Q9 s8 _# N, s0040312D E8 C4550200 call qsr.004286F6
. W7 I: I# e! f& r( p) h* R$ X% d2 n00403132 8B00 mov eax,dword ptr ds:[eax]
3 R/ a6 T& Y1 f# S6 R00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
9 {9 A" q8 T0 {00403138 50 push eax
. U! U" g0 L; t: P4 L- ]00403139 C64424 40 04 mov byte ptr ss:[esp+40],4
! E0 Q7 ]% s( Z( o8 r# d0040313E E8 4D560200 call qsr.00428790/ j% l' V( e( Y L/ w
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
1 c4 }) o5 y9 j00403147 8BF0 mov esi,eax
) m5 R) [3 W2 f; L00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3, [8 o5 |! W$ i
0040314E E8 38C30200 call qsr.0042F48B! s+ ?1 f7 {* s
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]6 t" |3 x1 K" w+ V1 L- [
00403156 B9 3E000000 mov ecx,3E
( w, a5 ~% p/ g3 N0040315B 99 cdq. {4 S, y6 L( ]6 q P1 ^) m, w
0040315C F7F9 idiv ecx
& _ V4 @. \5 X9 C7 V K' N0040315E 6A 01 push 1
8 V6 d% p: Q. @3 ^$ f2 z+ s00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]
0 O; x4 w0 y$ J/ a8 U00403164 8BF2 mov esi,edx
3 u% [/ y8 `0 v# B& }! t00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]5 q7 r5 w- `, k+ b& c2 L, {
0040316A 52 push edx; b5 x6 j [9 e! ~8 a+ r# C
0040316B E8 0A550200 call qsr.0042867A
0 ]# H# ]8 b2 X1 R00403170 8B00 mov eax,dword ptr ds:[eax]7 D4 C* D# _& F
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]9 O5 i. e% @* {* i
00403176 50 push eax
; M( O/ O0 B: ^, s7 i: f00403177 C64424 40 05 mov byte ptr ss:[esp+40],5/ t e) t, t& U
0040317C E8 0F560200 call qsr.00428790+ Y9 N6 Q, F1 N) w6 V+ G9 a
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]: T! _* N. a4 o" W; m6 u7 {
00403185 8BF8 mov edi,eax Y8 E, n7 a8 g' m5 R2 b; @
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3( G, ?3 H# G; f$ {/ g
0040318C E8 FAC20200 call qsr.0042F48B
1 Y6 G+ B9 G1 j5 a( O- Y$ M8 s00403191 8D47 0A lea eax,dword ptr ds:[edi+A]: A3 w) F% f$ H( M
00403194 B9 3E000000 mov ecx,3E+ j& D* |) Z& W1 E
00403199 99 cdq; `% S3 y* y! N' _ S
0040319A F7F9 idiv ecx6 A, v0 F$ y1 [4 ~. j
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]
0 [# S8 S2 u. Q ~" w004031A1 894424 28 mov dword ptr ss:[esp+28],eax
6 h( @/ ]* Y+ P3 y$ P, { f004031A5 8BCA mov ecx,edx* j/ `, t. \; {0 p. f- D
004031A7 894424 24 mov dword ptr ss:[esp+24],eax7 X/ p" ]! j" {' q
004031AB 894424 1C mov dword ptr ss:[esp+1C],eax/ h$ L( @% u$ G% K! }9 @0 p
004031AF 894424 18 mov dword ptr ss:[esp+18],eax
: o. b# X' H- w/ [) b# A3 H% z004031B3 894424 14 mov dword ptr ss:[esp+14],eax
I- E4 E( |* Y; w8 H004031B7 894424 10 mov dword ptr ss:[esp+10],eax
8 y" y8 k+ E' j5 Q3 o% y004031BB 8BC1 mov eax,ecx/ x9 k$ k* ?7 l/ O8 J2 `
004031BD BF 0A000000 mov edi,0A
0 v- m9 D6 d1 V8 k9 d# {8 o004031C2 99 cdq5 ^# f3 d2 ^) Q& F) y& b
004031C3 F7FF idiv edi
; k# C. }" V! @004031C5 8BC1 mov eax,ecx
, s2 H* l v* |2 X004031C7 B3 0B mov bl,0B
8 H! t5 V9 a0 Z# f) k$ Y2 B004031C9 0FAFC1 imul eax,ecx; u; T% M7 t) ?( b5 q& Y3 {, o. t
004031CC 8BCF mov ecx,edi( ]3 v$ e: C9 u# [0 s/ g1 Y
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
; _: G' L4 d- V: {004031D2 52 push edx$ k- m: N7 H- q5 U; P6 W, b
004031D3 99 cdq* I; V& _9 K' e+ P8 ~
004031D4 F7F9 idiv ecx2 {4 S( `3 |# o. `! {9 m
004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]% V* B' { I" n
004031DD 2BC6 sub eax,esi L+ C4 @% M7 D
004031DF 52 push edx& f4 N. ^6 Z/ h# W8 ^6 m# k
004031E0 99 cdq
- G/ i* \, S: ~: k3 Y$ S/ H004031E1 F7F9 idiv ecx
9 W0 ^( e# i+ V# r: \5 F5 M004031E3 8BC6 mov eax,esi
# t4 {) P0 c& p1 G" }" o004031E5 52 push edx' b9 @. K. I0 S: m0 a
004031E6 99 cdq. x* k: k# C, f. D d" x
004031E7 F7F9 idiv ecx
" X# s) @7 X' l: G/ }& Z004031E9 52 push edx
Q) v: m* `3 ]) `004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]0 Z% I i( h0 y
004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"9 S& @9 c7 w9 `; \9 ^( y5 Z4 s
004031F3 52 push edx2 @) t& L- P, A& D/ o1 d3 T
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893/ z0 x. }5 o! u8 {. k! l. k2 X
004031F9 83C4 18 add esp,18 H; A& X9 }; E2 @3 ]; T( }
004031FC 6A 04 push 4# N+ p) w! r3 g! w9 {
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]3 l9 X$ Z+ R8 c1 u: c0 x
00403202 6A 00 push 0! U" W* a* a( T7 Z0 f z' X8 o) ?
00403204 50 push eax/ D, T+ q O" }+ G' {
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50] R U# g1 z7 j. D/ b
00403209 E8 D6530200 call qsr.004285E46 u% c3 ~2 k* M. r
0040320E 50 push eax w& m! q# |2 V; M6 i9 _: O( ^' x
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
2 m% k4 t3 C6 Y) e/ o o$ V" w00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C
G# N- e) ?& \9 \4 |7 w00403218 E8 A7C30200 call qsr.0042F5C4
/ g) z4 t* ]: p4 a. O0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
$ b7 h! V8 u5 h0 w" B- o& Z00403221 885C24 3C mov byte ptr ss:[esp+3C],bl
+ T9 _. }0 ] T: N0 d4 B0 D00403225 E8 61C20200 call qsr.0042F48B
- _" ?3 F6 F. }0040322A 6A 04 push 4
) K# e8 |; _3 ^& q: V u: c0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34] n3 x$ A0 c' T) `1 g
00403230 6A 05 push 5+ R; `3 n2 d) `0 i
00403232 51 push ecx
0 ]1 \$ a; c* J; B% a0 ]/ s00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]! Z/ y! Y2 N! i) Y
00403237 E8 A8530200 call qsr.004285E4
9 E q V) v$ D' U1 N/ O0040323C 50 push eax( M1 d% S" w3 U# I0 Q% O
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
- u5 Q4 l: M. U8 Z00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D
! E N* o0 O& D8 e00403246 E8 79C30200 call qsr.0042F5C4
# o1 h5 J8 _ n" S* F" t0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]( E) |1 V9 q2 P! I2 i/ }0 r. y( _; n% H
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl+ T8 z3 z2 ^3 q0 o7 R$ B
00403253 E8 33C20200 call qsr.0042F48B
' a7 C$ z8 g& o- i- z/ |9 B00403258 6A 04 push 4
. E$ w, ~( [) m# r; o. `0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]
" B" D( `& [' Z' D+ J0040325E 57 push edi& f1 z* F. D4 O
0040325F 52 push edx
/ |- k' l- ~1 O4 b5 C* R00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]: t" W: U0 t3 }$ v4 M$ {2 A
00403264 E8 7B530200 call qsr.004285E4
2 J! N- h6 D9 q00403269 50 push eax
. o0 B: @6 L' _2 A# ~3 l0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]: D7 A+ J9 Y6 V
0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E6 n; ?/ C! q1 y8 E8 L! a- m: p" ]
00403273 E8 4CC30200 call qsr.0042F5C42 e$ k p* i* q2 `% W
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
3 `" D( q8 ?% ?* r1 w( Y. q0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl
+ ^2 @( a# z, i N7 }1 Q* i00403280 E8 06C20200 call qsr.0042F48B
6 e* {6 Z' \0 q# ^00403285 6A 04 push 4
# Y, K6 F$ ~4 ^* R+ P00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
& k5 B" t6 y# f0 R3 E9 m7 I0040328B 6A 0F push 0F8 F: y9 {* r' e! y# D
0040328D 50 push eax
8 q4 k6 w- k$ i2 C2 \- C0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]% b) s+ O7 e+ W o2 m( r
00403292 E8 4D530200 call qsr.004285E4
/ w' Q9 }4 |. m; W00403297 50 push eax
9 x& l0 ~' @) H+ ` `, L00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
7 B1 y$ I- |: g; e; i0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F k/ z0 e# u5 y
004032A1 E8 1EC30200 call qsr.0042F5C4
- o% j# @. r7 a( X+ P004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]# i! ?4 _" M1 N* t6 k
004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl
% I5 q- j* p# _; e( K, w' i/ s! }2 C1 ?004032AE E8 D8C10200 call qsr.0042F48B
0 Z g+ b. Q# s. A+ Y004032B3 6A 04 push 4 J9 {9 M7 O$ j9 M2 v) S# E7 G
004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]. S, U& ~) C; P- |9 x ?
004032B9 6A 14 push 14
" r8 C! r- r) S% k& D+ z. O004032BB 51 push ecx
& l/ E1 m1 z3 K! \1 \. r4 u004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]0 c, |* f* M6 |- H# n
004032C0 E8 1F530200 call qsr.004285E4
% L6 u5 C% T3 L e3 f6 [1 q) c5 C004032C5 50 push eax
3 h% o5 V$ e3 K; B9 `' v004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
" \' d9 O) l3 \4 S; |7 g8 o/ o, p004032CA C64424 40 10 mov byte ptr ss:[esp+40],10
6 f L F& n! W( V0 ~004032CF E8 F0C20200 call qsr.0042F5C48 l2 M _1 y& F: t
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]) J1 Y) h% ]: Z& E$ u
004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl) r, G$ Z+ I h1 ^' D# T' p: Z/ {* N
004032DC E8 AAC10200 call qsr.0042F48B
* q9 w5 M* E4 \1 b9 ~. s1 \' r004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
/ W# ~/ W- k8 i004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
/ ~# R8 `' a4 i# ^004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
' c" v' b" B2 d( ^' d004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL
; Q s- z& f7 ^8 L6 Y6 j004032ED 8ACA mov cl,dl ; DL送CL
. L; M Q7 u7 C8 H3 _$ M( ^004032EF 3AD3 cmp dl,bl ; DL和BL比较
; B3 Q( n" r4 k, l" k004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
* q+ _9 T& z' G004032F3 84C9 test cl,cl4 u5 B; G7 b0 u! h5 o, G
004032F5 74 16 je short qsr.0040330D- x3 b+ B4 Z! m& Q' L
004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL* q- _* E ?9 r& p; P0 S
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL
0 D3 X5 q5 \% s# W9 D; v004032FD 8ACA mov cl,dl
* m4 k2 D4 x8 L) Z& J' z004032FF 3AD3 cmp dl,bl ; DL和BL比较, F: Q( l0 w0 ~5 @0 X
00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
$ t0 v3 ~, X$ h( L0 E00403303 83C0 02 add eax,2 ; EAX加2
6 q. W N# T4 f# g" |% H3 Z00403306 83C6 02 add esi,2 ; ESI加2( r" ` S7 p, u/ J" G% K
00403309 84C9 test cl,cl
& e- K7 h1 z% h' P1 T& O ?/ g0040330B ^ 75 DC jnz short qsr.004032E93 B5 Y1 z8 f% E. ]; R
0040330D 33C0 xor eax,eax
# M' E s8 u% \6 k* W2 T0040330F EB 05 jmp short qsr.00403316+ r6 `7 s X/ B5 ^/ |# R
00403311 1BC0 sbb eax,eax- {9 M* f, d/ M
00403313 83D8 FF sbb eax,-1
7 N' u, n% l+ q0 b$ k00403316 85C0 test eax,eax
. V6 Y) L) C- A( o! l d00403318 74 0E je short qsr.00403328 x; b% u+ ^& g1 S4 ]
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A! e( _" ?# x! ^% z
0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
- q: ?) e) {" m. }/ R7 v* F$ I. {00403323 E9 F0000000 jmp qsr.00403418
9 B. w- S* N: g3 H8 r7 v00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX+ E& p- @& _0 z2 u* |5 l
0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
, g0 L/ }: r. c9 j% B( H3 E1 _' e00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]
3 o3 P2 \. V, \5 |3 W00403333 50 push eax$ T' t9 d% D: h+ x# J/ N; {
00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX
2 W- |, g0 [' B$ n; J7 C00403339 50 push eax
( b2 E$ j) M) ~; k4 _0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX# t) Y4 o& t, s8 X3 n$ f! A. @5 C
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
" Q+ @2 G; ^" w00403343 83C4 04 add esp,4
( d1 _0 }4 r$ i00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI
8 t; P" c, I2 N* m# ~2 K00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]
7 s2 l; ~" }" H0 n; n% t! {# X0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
9 d0 u% n3 U& q. g$ o2 r0040334F 50 push eax
3 P) B( G2 k* }( D! ]/ T00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
6 }( B" @; x- P6 C+ V6 ~- \$ Z00403355 50 push eax* W. t: x2 C3 }8 Q+ g$ L( [
00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX
+ r& c: ^* Z4 c( G! C/ A# j6 [8 c0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
$ G. N, h: v% ?( }4 O& Q0040335F 83C4 04 add esp,4
! {' g) y- S, d* ], j1 t8 c00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI" B% [6 l7 w8 ?
00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]. z6 H" V" H1 Q; e. g ^ q
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]
: @ V2 k. K6 b4 b9 Z% C; R0040336B 50 push eax
- w4 \8 G+ n! D% F2 L4 [0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX! Q- G7 N1 x1 ^6 ?- c3 t
00403371 50 push eax
7 Z/ T! S* x8 B4 g00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX
3 q! N! I" \; _# v: {1 h+ |6 `+ J00403377 8BD8 mov ebx,eax ; EAX送EBX
2 D; g+ s3 F- U4 u4 z9 ?+ @00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX
& u$ C5 e" ~; R, N2 n0040337D 83C4 04 add esp,4
. u5 W8 l7 V# O |00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
0 ]3 y9 z' V. @) [) l0 J2 g00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]1 i# r9 X' ~) Q& \4 P6 g
00403387 50 push eax# k5 |' ~- s+ K V1 @7 j
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX
5 X' K+ b0 ^% S0040338D 50 push eax& _( x1 G# d2 E8 K( i
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
3 {( i" U& L U# A! N8 {3 f1 e6 ?0 {00403393 83C4 04 add esp,4+ \3 \+ F- u# n1 [
00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
: [! j7 g* }7 m0040339A 8BE8 mov ebp,eax ; EAX送EBP0 @+ |/ L" R3 i4 O
0040339C 6A FF push -1 h3 v. b2 l, t, Q+ E
0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX) b" n' x& Z! J4 ]
004033A3 6A FF push -1
8 R: [! F: D; |5 N- W4 N004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX5 t& b: N2 q7 ]1 t. [+ V( |
004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX; m" g: R; z" c0 S2 L Q
004033AE 6A FF push -1
) O6 x+ U: z& K3 j" N& q004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX
7 v; n* @2 t3 G: y9 }) D004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX1 {8 {+ ]! n" _. n
004033B9 6A FF push -1
7 j1 n0 }' w- ?004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX
8 h( o: L! I4 W5 R P7 O" d004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX
' n4 c0 c- B, l! p004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX% @* ~% H6 [6 C+ ?2 e% p
004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX' [* O+ }4 [. r! f2 G; u \% A# d& a
004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
$ d1 A% ~' p2 v( b: M004033D7 D1E0 shl eax,1 ; EAX左移1位
+ c. ~7 @: ^/ w4 z004033D9 99 cdq ; EAX扩展6 t# R+ l9 j+ u3 ]' L U2 h
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中& D* d! L1 I8 b) c. s2 S8 D
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较2 v( _- _" [9 M: m6 B; N' r1 C2 R
004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)* W8 o- F) o+ c' ~- W
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A9 a Z' m/ b& [ R: V: o* \& z9 }
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]% Z' f# K! u/ P6 @- G
004033E9 EB 2D jmp short qsr.00403418
% G6 I8 g2 O& L6 ~6 N: {004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX: T* m/ f& f8 ~) v' j' b; Z" I
004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E26 p5 f3 T: b; a
004033F7 99 cdq ; EBX扩展
* q+ B$ ?7 w5 V* w& x; \004033F8 33C2 xor eax,edx ; EAX和EDX取异或
- |/ j0 _% O* h! F+ `" R" d004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX, f) B& |! L' q) x
004033FF 2BC2 sub eax,edx ; EAX减去EDX
# `$ g: R. U% I; B5 v0 P$ V* [7 E* J+ Y00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]
& U4 v9 R. W. y( p00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX( T3 b1 N7 Z* S# X& P
00403409 99 cdq
# o# I8 c3 n, q; J+ w. N, X0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中# E1 Z1 _' R6 m8 u( h
0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX
% Z: A' x3 P9 g- ?00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较, }2 Z% }' H& U
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳) F' w6 N, e1 m* C; ]' X9 S
00403418 E8 6EC00200 call qsr.0042F48B ;
7 I1 l4 L) ` c, g0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]$ ~( d: j6 U6 t# ?- [& d
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9( X+ G3 [$ ^# g" G
00403426 E8 60C00200 call qsr.0042F48B L$ Q$ K0 A+ p
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
) U, a. Y. y& \& ^% A0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8
7 M' ^; U' v1 J! X+ u$ J7 i. ~00403434 E8 52C00200 call qsr.0042F48B
" N1 \5 ^, |; f: z! w00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]- D) k& {0 Z& I4 |- f8 `) ]
0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7
; g' ~7 M( A( i00403442 E8 44C00200 call qsr.0042F48B
) Y: k# C2 ~: {00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]6 \* U5 ?9 j: l7 G( L
0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],61 T% I" n9 }( b1 O
00403450 E8 36C00200 call qsr.0042F48B
) V# Z2 f& v! G: @/ L8 A00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
: [( i( \+ `7 m6 J/ V% h/ c% u, M00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3& Q2 {; n4 V& E7 G" M3 c
0040345E E8 28C00200 call qsr.0042F48B
* h) Z1 Y- |. E, ^. o9 G$ g00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]: T% w$ P8 @4 b4 U/ O: x
00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
/ E6 B6 X: C* d6 C/ G9 M0040346C E8 1AC00200 call qsr.0042F48B& M4 p+ g' |+ i3 l$ U
00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]& O' x- x% y s/ o9 x
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1+ {2 S- L" ]- X# H0 b& u- {
0040347A E8 0CC00200 call qsr.0042F48B
9 O$ h1 _% W+ o: K0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
" [) ?( n, z7 V1 L9 \7 G' ]00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],05 u6 o l5 n: X/ a2 W4 c5 L& W
00403488 E8 FEBF0200 call qsr.0042F48B+ x& ]; q* D- p- H; i/ @/ f! v
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]$ k' I/ u! F1 ^; \% q/ b' g
00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
" c& V' {3 l8 w# N) e00403499 E8 EDBF0200 call qsr.0042F48B0 s$ ^; E% t* a
0040349E 32C0 xor al,al ; AL清0
: C/ x5 ~* |; d/ b, r9 h& C004034A0 E9 88000000 jmp qsr.0040352D6 L+ Y9 R/ [" h% k
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~
( h/ G& R" h7 q+ z i; c004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
- `# {* ?1 T) n004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],91 f7 u9 N: l; f7 y+ h0 _5 |
004034B3 E8 D3BF0200 call qsr.0042F48B
7 c6 _2 Z7 s& W% j+ t" L7 E" V004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18], F* r7 w; x3 |$ u- ~; \; A
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
6 F" e1 K5 V. `7 @% e004034C1 E8 C5BF0200 call qsr.0042F48B# i1 c4 y% ~! e% ?
004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]8 `/ `( D( k i/ ]5 x# A, O0 |/ n
004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
# d0 x1 t2 U7 @" K004034CF E8 B7BF0200 call qsr.0042F48B N1 ?6 y# R1 v) p+ V0 j
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]+ h& _/ x* g U+ q! {6 l7 {
004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6
. z4 D$ u- U( S/ L T+ c. E004034DD E8 A9BF0200 call qsr.0042F48B
( O! G2 @9 r1 Z' n+ O% q5 S004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
3 J# A) M6 Q* O/ ]2 I+ E" |004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],31 \* b' A: u3 w3 S- `' `/ X
004034EB E8 9BBF0200 call qsr.0042F48B
! Z8 S9 B7 h5 c& o' M004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
! E( K" w$ U+ F ~1 i: f004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2! H: e& n6 x% |$ f
004034F9 E8 8DBF0200 call qsr.0042F48B7 s5 _5 Y5 h& ?" r7 l( f
004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
" o% }2 U- M0 g, Y8 O00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],18 ?) t: ^) b1 ^& d0 C6 m
00403507 E8 7FBF0200 call qsr.0042F48B/ K) u" c) i' {% n
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
- o( O; v6 j, b4 d: U6 t00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],09 W) B( P6 ?& \9 y1 i% t. }( J. ^2 X
00403515 E8 71BF0200 call qsr.0042F48B
9 I% h4 ~$ R1 g: Z; ^0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
( K1 d2 g6 Y8 t3 s. b0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-10 s- u6 P5 D0 F6 }+ ^
00403526 E8 60BF0200 call qsr.0042F48B
, F9 F6 G& |% s0040352B B0 01 mov al,1
! ^2 B3 y" m+ [4 g' e1 @0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
2 T3 N! B! t3 G( A0 N* d" ]00403531 5F pop edi0 f; ]$ D" e. d. W- ]- N$ Y
00403532 5E pop esi
0 M3 O' d+ ?, \/ n00403533 5D pop ebp
, @: a, S' V7 d7 R00403534 5B pop ebx) ^) c' R: t# Q+ K& P
00403535 64:890D 0000000>mov dword ptr fs:[0],ecx
8 C3 v7 O( S/ f- V3 b9 c5 g8 k/ v0040353C 83C4 30 add esp,30) ^+ }( z& R; v+ v i# V. D! E
0040353F C2 0800 retn 8
2 r; s+ M- B# x( G( t$ f--------------------------------------------------------------------------------
- s7 o7 \+ Y, a1 F, v/ K【破解总结】
' ]0 L4 R6 u3 `! D- A* z' E$ _* r- w 用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^. [1 Y. J3 k( j. ^1 c U1 C% M
用户名:yijun' d' ?) k9 z9 r* m" e. u$ j7 {3 O
注册码:4893*7777*3726*7777*0529
0 N _! a+ J7 G+ O2 V, t) i8 h7 C! G--------------------------------------------------------------------------------
$ T" c) M5 e) {9 B( f【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡