|
|
|
【原创】破解Quick Screen Recorder5 J5 O/ d1 o2 _2 y/ u3 j$ p
【破解作者】 yijun
/ ]3 y% i$ _( \6 ~" Z: v6 |【作者邮箱】 [email protected]) K7 i9 @) [) @6 ~. ~ ?6 _
【使用工具】 OD,PEID
4 b( o' }" a: n6 r【破解平台】 WinXP
" [8 G+ j) O3 z& T: g/ y; i【软件名称】 Quick Screen Recorder
( a$ i* X+ R2 L! K! H【下载地址】 天空
3 R/ i4 K) I$ S5 r- a" b【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on. ! ^5 Y* n6 M8 j7 |9 x6 ?+ Y; D
【软件大小】 540K' J! a8 O# y7 `2 N4 z: q' {/ g
【加壳方式】 无
% T' g4 u8 \$ O【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)2 h) L+ {; f& ^
--------------------------------------------------------------------------------
. J! b- [8 t0 B" E7 j3 h6 Y【破解内容】3 `7 ^6 x, A1 {6 I# E
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
4 M. n5 f' ^$ M& S% h. L; L00404C69 55 push ebp //在此下断
$ S& {1 c5 N6 B5 |5 }, j! a" Y0 D00404C6A 56 push esi8 Y0 f- O* q8 h0 l; S
00404C6B 57 push edi+ Y7 h9 b' w; I8 N6 [9 t
00404C6C 8BE9 mov ebp,ecx' ^1 B+ p! U! Q0 S3 ]1 l* w
00404C6E 6A 01 push 16 B6 I' h& \$ c9 Q/ A V9 P _
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
7 l7 A/ u) C1 I/ n+ e00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]' e4 S% f% |0 C$ q7 N
00404C78 8BCF mov ecx,edi
. v0 o+ \. D% b0 _6 A00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码. c8 [9 j) L/ p9 ^5 Q/ `
00404C7F 8BCF mov ecx,edi
5 E ]; V) I) g3 W8 Q3 q2 W' M00404C81 E8 A73E0200 call qsr.00428B2D% `0 ?9 A' u: R$ ^! M5 ~3 O% P
00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]' o4 F8 Q. p& K( i
00404C89 8BCE mov ecx,esi4 ]+ J* w/ M$ X4 T
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX
, S0 ?" G% b9 Q0 J1 c, K7 U00404C90 8BCE mov ecx,esi! S, {2 u/ F* k4 W6 R2 ]6 M4 e
00404C92 E8 963E0200 call qsr.00428B2D
! ^/ `! M+ H$ w! v- w8 Q00404C97 8B06 mov eax,dword ptr ds:[esi]
& \5 U6 T7 N! d, D6 [- I3 S, K% H00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2' t4 K3 q7 O' b. T
00404C9D 7D 26 jge short qsr.00404CC5% I5 e9 P: k W% k" i1 D+ ^7 m
00404C9F 6A 40 push 400 B( ^6 n( y1 W* h7 O
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"3 j' M1 W2 I9 ?8 L3 @# A/ E, t
00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."
9 i: b. Y0 W8 [6 B0 X! S00404CAB 8BCD mov ecx,ebp
7 {* ^' C! P. o/ S" \1 U/ z. Q/ f2 y, r00404CAD E8 C3840200 call qsr.0042D175
( V+ S n$ ? f3 k! ?00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]' y+ N! Q4 v# j9 n+ M4 R
00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx
, d* z; \9 C- G: i00404CBD 5F pop edi
5 ~0 e$ Y' _: p00404CBE 5E pop esi# P+ H7 j+ P3 ~9 D
00404CBF 5D pop ebp
! q+ n; w* [8 y4 ^! N& D# E; [+ S, @00404CC0 5B pop ebx2 n1 s: J& o' }* Q+ I
00404CC1 83C4 18 add esp,18# r; N/ ~6 z: V
00404CC4 C3 retn
5 `. H& I) [2 J& `/ R00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
, C( P X* G7 ~. n* N' D+ d00404CC8 84C0 test al,al
% J! \3 Q8 ]( v3 |) z00404CCA 0F85 1C010000 jnz qsr.00404DEC! p Y6 k0 R# V5 k: F. I! I/ F
00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
8 z6 F( a( ]3 }# f0 u9 C/ S- H% d* C S00404CD4 E8 87E3FFFF call qsr.004030601 u5 I$ z% V9 x, }) J3 g
00404CD9 51 push ecx
$ k4 @$ Z. R1 |8 T00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
5 e0 x; D0 L5 P `$ `, ]8 n8 H" z; k00404CE2 8BCC mov ecx,esp" L3 k; ^+ o2 Z2 k
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
7 k& r( J1 m4 k4 S2 D00404CE8 56 push esi: U( P7 H" g, D1 U0 [5 Y, j
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
" U* z! T# D4 K( |00404CEE 51 push ecx6 ^- ~) m* y7 Y
00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1
9 H/ g4 H& B) N. m, F Q00404CF4 8BCC mov ecx,esp5 J$ ~3 K+ c. D( I5 {
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp: }( n$ \. V! r2 Q Z, @6 }6 c
00404CFA 57 push edi
( T* I U- Z4 K" [1 [# x00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0
& }, o3 E) d; s" l0 g# g6 W00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]: w" r3 e9 Q4 r2 T$ J" g
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0
y( X! N4 g4 O5 U' Q) F. C00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~" o$ ~1 |" w2 q7 T
00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~
$ p& k% e8 }; D2 U00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
5 y! ]* m4 G _0 D00404D12 6A 40 push 401 j+ ~' w$ c/ k3 `' Q# R
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
8 e+ Y6 C' z" Z0 @; i00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."
+ L( g9 O' F4 I% {3 T( u W00404D1E 8BCD mov ecx,ebp
8 X8 [4 f# Z+ L0 l5 ~4 Y00404D20 E8 50840200 call qsr.0042D175
8 a$ ~% [) C* i5 C) M( V% e00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]# y+ R6 t3 m5 C! @; q. I
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1
, f3 }7 c- P2 r2 O" {0 h* o" Y! V00404D31 E8 5AE3FFFF call qsr.00403090
. Q& ]0 P+ d. q6 M+ l00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]9 M& _# _$ x$ l+ b
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx9 S$ c" k- K$ \9 Q* r
00404D41 5F pop edi
3 k* j. M: y" j1 G00404D42 5E pop esi* O5 `& `+ T! V- b
00404D43 5D pop ebp1 O/ k1 [ I: C* L
00404D44 5B pop ebx. m0 L6 i m3 d$ i% E$ |! |6 y
00404D45 83C4 18 add esp,18
1 @- _* E7 n0 r9 w: ^; e6 J00404D48 C3 retn! V0 S' E- \8 F6 ]: h: G9 `$ c" A8 [8 w
*********************************************************************************************************************************************************
& M( ?% _1 e9 y4 X跟进00404D09处CALL来到:2 S4 E! W9 w- _3 z# ]# J
004030A0 6A FF push -1 //一路F8下去~~~~' T- w2 Y* T+ g" u- E
004030A2 68 C88F4400 push qsr.00448FC82 O$ H$ X! v1 k0 B8 j
004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
: m, W+ S* }' T% b( p& r2 A9 C004030AD 50 push eax
+ P5 N: p" x) `. Y/ V004030AE 64:8925 0000000>mov dword ptr fs:[0],esp- J/ k' |) Q* ~" p$ a# f" F3 ?
004030B5 83EC 24 sub esp,24
( G8 G( T5 `! |) ^* f+ X004030B8 53 push ebx( Z+ h/ u. V" d( z @
004030B9 55 push ebp7 v" N e) T0 b2 i
004030BA 56 push esi* t2 D, k: O8 y _
004030BB 57 push edi$ k% E0 G, h! s6 _( A6 Q
004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"9 e3 i& d/ Z( Y
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]0 a; r9 P2 q! Y* H
004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1! q: Q" \, \ F5 ?
004030CD E8 27C40200 call qsr.0042F4F9
$ a' Q, r2 e2 N: i6 J" D7 q1 a004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
2 {- k _& Q* ?4 e9 b004030D7 894424 2C mov dword ptr ss:[esp+2C],eax
; o" ?, ~; V: y! s0 ], K004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]" i, C, g# p! Z
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3; P4 E9 ?& W) {3 g$ ?
004030E4 E8 905A0200 call qsr.00428B79
2 d! N0 H5 t$ G% r004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]8 W3 {* W- S4 J+ _# M
004030ED E8 3B5A0200 call qsr.00428B2D( Z' A! ~- d6 @3 b
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44], `2 y. i$ P v# b. `: c" E0 I
004030F6 E8 7E5A0200 call qsr.00428B79
/ R; q8 W( o$ x- c8 c& H9 a004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]2 y1 Q; @# }" ~' d1 C& u7 ^" M8 _1 j
004030FF E8 295A0200 call qsr.00428B2D! l2 w, Q8 F: O4 p2 n
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]2 N. ^, G' ?, X" R8 ]3 d
00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
4 r& h- J& h, S+ t3 P3 _! U2 @0040310B 83F8 02 cmp eax,2
2 X/ k1 ]8 A$ [ E' H% S N0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
8 \. \$ `8 X) S( {0 K00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]
?3 g4 y+ n6 ?/ E" w" R0 g9 \00403118 837A F8 18 cmp dword ptr ds:[edx-8],18+ T I& C6 J; S# \
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳
R6 p. {& K5 C" u% a00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]1 t; K+ G1 Q: i2 l7 ?( w: P' M7 |2 R
00403126 6A 01 push 12 O) M3 M* @+ V/ @7 O
00403128 50 push eax
- j3 G6 }4 c. f4 j1 e( o00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
( S) q _. u7 [7 h" I Y0040312D E8 C4550200 call qsr.004286F6
4 a8 ^* x' L0 M7 h% D00403132 8B00 mov eax,dword ptr ds:[eax]+ H0 N5 T8 J0 p' U# h
00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
4 P/ u1 ?! g# G4 Y00403138 50 push eax5 q6 D' J+ C! ~# B' c
00403139 C64424 40 04 mov byte ptr ss:[esp+40],4
/ {) H% W2 r y8 d/ @0040313E E8 4D560200 call qsr.00428790
) q9 Y) u. C# R; Y: R4 y00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
# G9 S% ~+ P" U' i( ]( ~00403147 8BF0 mov esi,eax
3 d" k' F# I- C6 s9 A' ~00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3
# b+ n. D& I3 M# R' E0040314E E8 38C30200 call qsr.0042F48B
0 ]$ @! }9 g4 j$ Z" L00403153 8D46 0A lea eax,dword ptr ds:[esi+A]% N, Y+ H. q' ]% y
00403156 B9 3E000000 mov ecx,3E
) u- c, k9 w5 B" P8 q# k% J% g0040315B 99 cdq
/ _0 |- {) ~- m( l5 e8 U. c! T0040315C F7F9 idiv ecx* l# w8 [" y% i: w9 ^: _
0040315E 6A 01 push 1
1 [4 \7 A2 ?6 ~; q) [3 W6 @00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]0 |9 [+ C& l( Z8 }# f$ I
00403164 8BF2 mov esi,edx
$ y( ~$ \* Q, Z' Z" g5 T: p7 H2 X00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]9 ~! J" b0 W8 |
0040316A 52 push edx
; i/ x, v8 o* w) o2 ~% X0040316B E8 0A550200 call qsr.0042867A
1 t; }: a, r7 A& D; U00403170 8B00 mov eax,dword ptr ds:[eax] J) i/ a0 E# c" V0 o' O/ g, s
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20] y! @+ X& e3 v' p/ L; a% `% p7 w; f
00403176 50 push eax! i* x. r. h1 J0 l
00403177 C64424 40 05 mov byte ptr ss:[esp+40],5
2 ]% n1 f0 ^) A( M. @0040317C E8 0F560200 call qsr.004287906 ~7 m# t: L4 J2 t2 _
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]* K. C! K) `4 }2 E; w2 O
00403185 8BF8 mov edi,eax7 A+ ~3 z/ n# D) c) \8 O
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3! T0 v) E# G2 r7 |
0040318C E8 FAC20200 call qsr.0042F48B
8 F$ p% b0 F# B& D5 s2 v00403191 8D47 0A lea eax,dword ptr ds:[edi+A]3 s: O0 |8 ~9 X5 E
00403194 B9 3E000000 mov ecx,3E9 W6 g$ a, n, Y J: H2 C) D
00403199 99 cdq% l' Q' {$ c9 K3 V( {
0040319A F7F9 idiv ecx
& ^/ o P% l& v1 x0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]
) x5 J+ Q- _, t |, p$ V004031A1 894424 28 mov dword ptr ss:[esp+28],eax9 p$ p; H- F4 a/ S
004031A5 8BCA mov ecx,edx
" I2 l0 k. L* v- l( R004031A7 894424 24 mov dword ptr ss:[esp+24],eax
9 Y) F8 c1 [( y/ Z% @- @6 U* K' f004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
, Z% i5 _8 M! I004031AF 894424 18 mov dword ptr ss:[esp+18],eax( k* u$ A/ @( v; J: Z) A5 G
004031B3 894424 14 mov dword ptr ss:[esp+14],eax, g0 d4 P; s( x
004031B7 894424 10 mov dword ptr ss:[esp+10],eax+ u3 z/ N& ~, R; ]0 [+ V
004031BB 8BC1 mov eax,ecx; ^/ c3 T: k( _% v0 K/ I
004031BD BF 0A000000 mov edi,0A
3 R4 t( i7 ^- \- t7 z7 a004031C2 99 cdq+ R3 x( I* y# y1 P1 N s
004031C3 F7FF idiv edi9 {, o) l# P1 \1 Q4 |% O0 ]
004031C5 8BC1 mov eax,ecx
5 ]! y7 q5 v/ ~& n6 b004031C7 B3 0B mov bl,0B
7 v4 s: X1 a+ ~ s004031C9 0FAFC1 imul eax,ecx4 S. P2 e/ X; P8 @! {
004031CC 8BCF mov ecx,edi2 h# q8 _1 r7 p/ L% V5 M" {* {+ w9 E
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
$ |) u$ U p6 F& e+ |004031D2 52 push edx
2 o1 d" }7 O, S- ?/ B004031D3 99 cdq( J& ?9 m& Z: U' k% w4 n5 L( J
004031D4 F7F9 idiv ecx
c" J. Z$ Q, R004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]
/ d! [' y) j8 X0 m/ Y5 ]004031DD 2BC6 sub eax,esi
! E+ f2 L( h( H5 O, H004031DF 52 push edx" B, Y/ u# V, I w6 p4 O
004031E0 99 cdq
) e; e4 e5 `' J2 p004031E1 F7F9 idiv ecx
5 l- S6 d# \2 I8 O; F% q/ g$ z' k004031E3 8BC6 mov eax,esi* a1 N }5 l7 H# G. P
004031E5 52 push edx
& Y' `7 [. i" P3 s004031E6 99 cdq
; _' ? Z& V6 U E$ b6 Y" }004031E7 F7F9 idiv ecx
5 q J/ P3 ?) Y& q004031E9 52 push edx
( S9 z" S) I8 d004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
/ \5 F* g+ u; p004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
. R0 U3 d3 R8 [$ `& M: ?004031F3 52 push edx- v* T/ P* Z: P# W/ {& q5 _, D
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893- R3 Y& Z' ?2 g9 _
004031F9 83C4 18 add esp,18
' G7 s' @* s. Z& y4 B004031FC 6A 04 push 4
! a# d( w5 k7 Q* @004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]
- D0 {0 ]1 @% _) r2 a0 a00403202 6A 00 push 0
! r3 N- A" [' j$ p+ f+ v2 w00403204 50 push eax( t/ _8 F( z" @" q
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
t' W1 @( f. } j" D h00403209 E8 D6530200 call qsr.004285E4! I7 z) U* F9 _% U1 U# r
0040320E 50 push eax( z' t& E3 [& B# D# I! `
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]5 [1 T, ^. m2 ]+ ^# x+ w3 ^- C( X
00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C4 L; A8 z1 h; s p6 m# E9 p
00403218 E8 A7C30200 call qsr.0042F5C4! H j6 K, S3 \2 b
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]' h0 c; Z3 ?! @: Q8 [
00403221 885C24 3C mov byte ptr ss:[esp+3C],bl
% w! R3 L! t; ^$ ~5 \0 F; ]$ \00403225 E8 61C20200 call qsr.0042F48B
' Y# R4 K. x+ A( n6 }0040322A 6A 04 push 4) N% M l0 z8 \, S. s' G
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]0 P1 h3 D: Q) K6 {: `7 H1 N1 e4 y$ z+ \
00403230 6A 05 push 5
; j% f3 \& _6 \4 |7 `2 M, W00403232 51 push ecx
/ t& b# A* m* N8 N6 r/ w! ?2 G00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
; l' F9 v5 g& }: T00403237 E8 A8530200 call qsr.004285E4
) U* A% h% \' z: g5 m5 _* L0 h0040323C 50 push eax( Y# q3 c+ j: \" l9 i
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]& `% P& h8 | P1 K) m/ d' W6 l
00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D
& ]/ L) j: r5 U2 H! f& A1 c00403246 E8 79C30200 call qsr.0042F5C4
& Y7 a0 f4 K0 y+ { N0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]9 }8 J4 n5 H; c( f; X) y; s- x
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl! x6 c4 ~2 @& n* k; ^: F) v* C
00403253 E8 33C20200 call qsr.0042F48B
$ B! t1 {3 b t0 l# e* d00403258 6A 04 push 44 l0 C G/ O4 y, d& t w* {* `
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]. o4 }2 ]- F7 C& b
0040325E 57 push edi
2 W. Y! h; {2 Q ]" F! N, _0040325F 52 push edx
2 R* I$ i S5 T00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]. W$ P! R. M% {! }( A
00403264 E8 7B530200 call qsr.004285E4
, ?: Y. e' n/ w6 }00403269 50 push eax
/ n+ I. i7 Y; f, ]# P0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
# K( s4 @; h, Y/ h/ u: W0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
% e8 T2 N5 x( U3 u! g00403273 E8 4CC30200 call qsr.0042F5C4
3 N3 u* f) f7 W. [2 r. d& I$ t7 _00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
( _& Z( n& F9 A3 T! a4 y1 ^1 k) X; w0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl
' c( ]+ }6 J' y d: P3 s' \00403280 E8 06C20200 call qsr.0042F48B( Q- \9 y2 R) K. R; W2 j
00403285 6A 04 push 4
1 J) q" C7 [' K. H7 D00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
; J4 ^3 k3 _7 p: g. q0040328B 6A 0F push 0F3 ~5 S. X3 b n& B$ g% g
0040328D 50 push eax
9 m3 K+ W# C) x/ ~/ {% u0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
' ?! W% Z( y3 H3 e00403292 E8 4D530200 call qsr.004285E4
% R( }1 V& ?0 }* g00403297 50 push eax+ B; Y9 G1 A' C& Z! ]2 o7 C0 G% T
00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
$ p- m% |6 v* f7 t0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
+ s+ e* e' C- T6 [6 U004032A1 E8 1EC30200 call qsr.0042F5C4( Q, D! z$ Q1 j) x, ^
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
8 J- c6 m0 _5 L004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl
, r& u% p2 M6 V004032AE E8 D8C10200 call qsr.0042F48B# B( H1 W+ B2 h+ V! R" v% B* b! I
004032B3 6A 04 push 4
, n- t# V) n5 [3 v" M004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
9 J# f- x5 m" H% o$ k j3 T. T1 }+ ^004032B9 6A 14 push 14
0 H$ ^ h% f* L" R. o$ y0 x004032BB 51 push ecx' T/ ]- E' s0 D+ ~. b4 e( C
004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]$ g! E/ S$ n; n1 {/ p; |4 e
004032C0 E8 1F530200 call qsr.004285E48 E- |0 ^' q# c; o, x% M' @
004032C5 50 push eax
( y6 }% c/ D7 S. h004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
0 \3 J3 O5 O! e; y: |! L; M0 l) `004032CA C64424 40 10 mov byte ptr ss:[esp+40],10) j( H7 E! ? ^% [; c+ J; E
004032CF E8 F0C20200 call qsr.0042F5C4
3 V1 v( @; X* c" q7 a004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
) \+ i$ Q K, E( u2 z1 K004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl. X( h+ }- `) T4 y ]! b
004032DC E8 AAC10200 call qsr.0042F48B
' R. ]5 _* u f: c8 \1 c4 b004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
6 S3 ~8 i1 h5 [3 a! N$ C004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX. X& |3 g0 r! d* k, ?- p) {5 W
004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL1 G: s& M+ {6 R
004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL7 n7 [; U9 f; F# M. m$ I
004032ED 8ACA mov cl,dl ; DL送CL
* y3 w; T% Z* ]: O5 |: l8 e$ |004032EF 3AD3 cmp dl,bl ; DL和BL比较0 x% J2 E X4 @
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
+ b8 N! V8 z/ K& r004032F3 84C9 test cl,cl
6 c, F- u7 p: o9 \004032F5 74 16 je short qsr.0040330D
' e, Y' n4 Q- P: U( D4 d7 a004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL" ^( @# k$ W- c! B$ x
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL$ H' ?4 ~+ k! g6 b* r
004032FD 8ACA mov cl,dl
( f+ w! W* b9 d, L7 E004032FF 3AD3 cmp dl,bl ; DL和BL比较; D7 U& J, G, d" x, o; }
00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
) }5 A x/ G# C00403303 83C0 02 add eax,2 ; EAX加2
9 N6 D/ S4 b1 ^4 G/ M# u00403306 83C6 02 add esi,2 ; ESI加2; W+ J' h% I, E$ g2 l( X1 R; ^
00403309 84C9 test cl,cl w3 U9 K" ]+ |8 Y
0040330B ^ 75 DC jnz short qsr.004032E9' v9 y' x1 y, `3 l2 \
0040330D 33C0 xor eax,eax
4 X4 P" k1 H; q; e5 }/ Q1 S0040330F EB 05 jmp short qsr.00403316& h0 s+ v ^# x. J8 ^: z
00403311 1BC0 sbb eax,eax# _& B7 U$ t$ q: q6 I+ K6 J+ k) ~, r, U
00403313 83D8 FF sbb eax,-1
) [; _5 a+ f2 K! q' j+ C1 v00403316 85C0 test eax,eax" X$ B" G6 f6 @- s: [
00403318 74 0E je short qsr.004033288 B4 A! s* S3 I: }
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A1 d7 M- n/ q' D$ V* u. f
0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]: m! U0 ^; J- d
00403323 E9 F0000000 jmp qsr.00403418
& f) M/ [: a5 E# W- s; ?00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX! d/ _8 u0 `+ s
0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
- S8 M4 X, ^2 c/ l; s' R! Z- q00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]
+ ~ q0 M8 T/ j4 `. T( g r" |( M00403333 50 push eax7 p2 {# h2 j H$ z3 c& l
00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX
. o8 o2 a9 d; g3 F3 S6 B00403339 50 push eax
& v% X7 c" m8 ~- `( N0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX
8 R' g, A o% K+ Z& K0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX3 J& c% P0 }/ K
00403343 83C4 04 add esp,4
3 b# _0 P' ]3 [, c% K' u00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI$ b) @! Z1 U3 Z( u8 ~) s
00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]
+ G" j+ x$ u+ ^+ \0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
! Y; h# b. d- j8 E8 ^0 c, I, h0040334F 50 push eax" L9 n6 X& E0 ?5 k2 ~; D: ]
00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
" j" K& _" B+ F& ~8 d( P00403355 50 push eax' U4 v2 F! k0 m b! M) v
00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX
6 f& j7 y$ l) i( ]) c) \- M& ]8 g0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX7 p4 X: F" T, I3 U4 a) [
0040335F 83C4 04 add esp,4
" x) h( y, v' W: J# q& Y+ e! L00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI, k( c1 M! y0 f K6 N, E
00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]: X# \- L9 i O" [8 k: p
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]
: d; y- u( U3 S q- R$ b0040336B 50 push eax& R0 e8 j/ G0 Q
0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX
" e5 p9 o) P( m' q: i+ U( j6 x00403371 50 push eax3 M& \" e& x! O$ j6 _; F3 O2 `2 r
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX
1 D2 \4 k- I2 I8 i00403377 8BD8 mov ebx,eax ; EAX送EBX
' z8 y2 E7 ]1 g' h5 B00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX n. F7 p3 \! k& U+ Z! q
0040337D 83C4 04 add esp,4
. l% x4 a5 c( q6 q# C00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
1 i j8 a; e Z6 @00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]7 j. @, M+ ?- b, p- n
00403387 50 push eax" O. z- s a$ B) q1 l8 Z) @
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX
- C* i) @2 h0 `4 Z: d) @0040338D 50 push eax9 Z9 h$ ^- L7 u9 R8 s5 M$ d
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
; _0 P9 _/ x1 z00403393 83C4 04 add esp,4
" k0 |8 W+ k" b, O1 v00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]+ h- b$ t3 Z/ d; @
0040339A 8BE8 mov ebp,eax ; EAX送EBP
' L0 h$ x/ m9 u7 Y5 v- B* b" f3 \0040339C 6A FF push -1( z( r# U) J: ~! J/ X
0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX
3 V- ]+ e* y' } M! [) n% b004033A3 6A FF push -1
8 g9 M# N8 k- d1 Q004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX5 o+ v# r* u1 {. B
004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
# ]& T* V' G+ L" L' z4 E; B004033AE 6A FF push -1) S+ y, W- H2 _
004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX
" e5 t3 w9 s* X) F1 {" ~2 o% C6 {2 P% L004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX8 y6 N7 }" C E0 u; }, n+ C8 Q" U
004033B9 6A FF push -1
" O# k. W8 x7 \+ E- T; v, U004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX9 i' k0 M- H- k
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX
: a4 v. ~& g# z8 i) R! Q+ l004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
& \+ `. k4 D$ G/ T/ d4 H' I2 R004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
0 [! b1 O, z- k, Q004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
1 Z0 x. @- @# ]* }: L8 {004033D7 D1E0 shl eax,1 ; EAX左移1位2 F" H/ i& q! r: G. s0 k
004033D9 99 cdq ; EAX扩展$ z- |: }% q( w7 N4 M! I( i
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
* Q( \% V0 V/ K& Y" F4 z/ F; D004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较4 j9 ]+ e: K2 d: w+ D
004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)
2 x! @" W6 B- y4 i004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A
: F& ^* }( l/ B4 p" l, u) H( E7 Z, y004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10], O/ i0 t' z' e+ Y
004033E9 EB 2D jmp short qsr.00403418; |2 Y9 w/ \9 d. j
004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX) i1 p, m* q; L4 s1 }
004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2
5 r. _) q$ y8 w/ [8 F8 [6 N0 {004033F7 99 cdq ; EBX扩展2 r: l5 j1 l+ G
004033F8 33C2 xor eax,edx ; EAX和EDX取异或" W3 h* m( X% a& S
004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
7 D3 B9 ?3 D! E- U- i1 D. j004033FF 2BC2 sub eax,edx ; EAX减去EDX
& e/ M6 A0 M5 Z6 C# m$ b% v5 V$ o4 `1 _4 y00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]
/ P% r* w! g& U g( t. b00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
s" `8 P# C, U' G00403409 99 cdq, f$ J- d G0 G
0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中0 J* L. [/ Z; ^' c3 n
0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX
+ k) }" ?$ g: ]- _" d A3 d6 t! a00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较, k2 } N- K0 Z, I
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)
9 b0 D! w* @; i00403418 E8 6EC00200 call qsr.0042F48B ;
+ s' s' P3 E7 Y- U: u0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
& A8 P8 h" D. U% S7 J- c00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9( |; ~$ D7 Q; U1 H& Y# A
00403426 E8 60C00200 call qsr.0042F48B$ M7 k7 x8 D o# j9 A, g- {
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]3 V/ }3 G7 p' J+ Y2 e0 m
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8
6 J0 s. C2 N/ m; U/ f, S( Q00403434 E8 52C00200 call qsr.0042F48B
/ ]! h5 x% c" M2 s4 x! B00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]3 y, p2 W6 C3 k7 \$ |1 W+ l
0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],78 B9 |& F& H* N7 C- k- o1 J
00403442 E8 44C00200 call qsr.0042F48B
_: b& A/ i( L7 G00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
5 m9 y" s) \2 i0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
+ j3 X- h/ L3 S3 u2 e00403450 E8 36C00200 call qsr.0042F48B
, I) v% j" y, a- _% _, G- G! d00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]$ V: Y- `/ X! G, \
00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],34 ?- ^$ ]& B d4 ]$ D. O
0040345E E8 28C00200 call qsr.0042F48B+ j8 [! _6 h' V$ J+ z1 C& }
00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]2 _% D7 g; n: y
00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],29 C% O( n% W6 B3 T
0040346C E8 1AC00200 call qsr.0042F48B! W& n" I: K: X( H: t( z% X
00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]2 g1 d9 e# i# z- G/ ~' j% n
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1
; e! B) }/ q3 S0 q( @, o" _0040347A E8 0CC00200 call qsr.0042F48B+ C v$ D7 P. L- D0 o$ x, l- y
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]3 T+ }$ e- D- [ C; W& Z# F
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
* m& N: b/ v* Q00403488 E8 FEBF0200 call qsr.0042F48B. U1 L- z& e, J) l1 |
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
0 m! f6 V0 B0 N1 O i00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1/ E- e( V U! L
00403499 E8 EDBF0200 call qsr.0042F48B
( c: U: {) K& q8 x0040349E 32C0 xor al,al ; AL清01 b* b9 W. w1 N" c+ f; z
004034A0 E9 88000000 jmp qsr.0040352D
! g6 K/ k4 y Q! w004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~
" s- U- ]+ u# l6 w. D# t004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
& V* k" k9 d) B004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],94 ?8 Y4 ^1 k2 a, j; x3 J- @
004034B3 E8 D3BF0200 call qsr.0042F48B& S/ S4 X9 R, V& i
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]! S1 o% `1 B3 A% I' Q
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
$ A' T% e; H6 n* `7 p5 f1 ?004034C1 E8 C5BF0200 call qsr.0042F48B
) Z, B# M. c! s, Y- c) @# M- M' D004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
' A- O I5 _8 r, k004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
- S. r# a; Z$ p004034CF E8 B7BF0200 call qsr.0042F48B
( z/ K- h+ \9 G8 A1 j* ?" {8 Z6 [004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]9 w" A" V! ~, D" X
004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6
: s- R4 a- b& ?: _% C004034DD E8 A9BF0200 call qsr.0042F48B4 l z3 e& m& U# Z$ @
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
1 F9 I" W F- `; F4 Y5 ~004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],39 d7 Z3 Q. L6 p( d4 b I
004034EB E8 9BBF0200 call qsr.0042F48B, K# W' D- B9 Z( ]0 u
004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]; l6 ~. {# Q+ q: G- Z
004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2
& `9 ^" A# Z1 s; O. B5 _004034F9 E8 8DBF0200 call qsr.0042F48B. y/ `7 Q) B6 J
004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
1 Q7 A& }# w* k0 b3 Z: ?00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1
4 g- f% D" B$ f. _! a- O6 t00403507 E8 7FBF0200 call qsr.0042F48B$ S- s) X4 n6 M3 P
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
- O9 H; o" r% D7 Z g' y3 ^- W00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0
* v8 p3 E+ ?' J0 H, g; z( |00403515 E8 71BF0200 call qsr.0042F48B
3 G) ^: I6 |8 B9 d4 A0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
' m0 C5 D# I, y0 ?" \$ n! d0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1! o' }8 G- r% M5 \' S( X
00403526 E8 60BF0200 call qsr.0042F48B
$ N) o7 i# D- l& r, j* L0040352B B0 01 mov al,1
) ~6 Z1 I) s; I6 F. _. S# s+ r0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]3 \& x2 q( p( K( T
00403531 5F pop edi) H0 ^: M, \- B# a, I) L1 q
00403532 5E pop esi
4 h$ w8 O; i" F2 K$ W00403533 5D pop ebp, v! c1 \$ I3 i8 z, j+ M
00403534 5B pop ebx, Z B8 z* d, {9 j8 \( s" l
00403535 64:890D 0000000>mov dword ptr fs:[0],ecx4 `5 {; g- F% y+ l% K/ g4 _; f
0040353C 83C4 30 add esp,30: _0 {% Q4 G, m! k! B
0040353F C2 0800 retn 87 c I, f) Q, e1 Z
--------------------------------------------------------------------------------, L s0 M% o E- h
【破解总结】" K) p5 h* F9 }( W; _* B
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
% f5 D0 E8 Z0 W$ G+ C1 V& B0 c. `用户名:yijun9 q( A% M, N+ T1 P% L% y8 j2 q. w) v
注册码:4893*7777*3726*7777*0529
& M/ R: ]6 D9 Q+ g9 n--------------------------------------------------------------------------------' T2 \3 C2 H+ w1 t1 t
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡