|
|
【原创】破解Quick Screen Recorder4 X2 p) H3 y# j3 L6 a$ ]! k
【破解作者】 yijun
! Y$ N2 z1 D: |, z3 f3 l/ i【作者邮箱】 [email protected]
# X `, Q1 p! t# E, a, v- \【使用工具】 OD,PEID2 P* [& C) A2 T: J D7 o
【破解平台】 WinXP0 | g L" D% p& `8 }
【软件名称】 Quick Screen Recorder6 Q1 ?1 w) }* ]9 Y0 @( M
【下载地址】 天空
3 V8 x8 g, X, i& ~7 H【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
/ f! g2 l* e. u7 Y4 \* u9 m【软件大小】 540K
- {- A# O. `& @# p. j【加壳方式】 无
+ t0 x, [% Z8 T% F e& T3 ]* B【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)7 w4 g R/ j+ c+ g4 z% T9 o
--------------------------------------------------------------------------------
5 i' S4 p1 \6 u$ t% W, ]9 b6 e; Q- J5 M【破解内容】
5 L# @* k! s9 j u* M PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:* N& H+ _$ |: y7 }
00404C69 55 push ebp //在此下断' I; }/ B' `" R; }4 ?1 T5 z
00404C6A 56 push esi
0 U2 j( P5 d% v1 T8 |1 f00404C6B 57 push edi
5 v/ V3 b' x9 z! V" ]# s+ I00404C6C 8BE9 mov ebp,ecx
( W1 x/ G# A4 o4 x- \6 K# E% \00404C6E 6A 01 push 1
5 W/ s3 A$ M3 I00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名9 k" P7 Y+ v1 Y* ^- ]
00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]
/ C3 l) |( p2 ~00404C78 8BCF mov ecx,edi9 g/ |6 v5 e4 T, d: X
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码
1 x$ ?3 P% b- k* W00404C7F 8BCF mov ecx,edi$ `8 a W( h: i, \
00404C81 E8 A73E0200 call qsr.00428B2D
! f4 t' Y2 R0 @6 u2 ^7 D2 Q6 A6 R, y00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]) `$ {( W: b0 L% {
00404C89 8BCE mov ecx,esi
0 ^7 Q) \8 ~6 R- j7 K# b- d00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX+ u4 m* U4 |3 H4 ^! F
00404C90 8BCE mov ecx,esi
+ }8 W2 U9 a) I3 p+ c! x( H00404C92 E8 963E0200 call qsr.00428B2D8 U9 C. c: G1 ?5 B1 {. n* f
00404C97 8B06 mov eax,dword ptr ds:[esi]
: _8 m2 D/ o+ d8 Y! s00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2: j, y3 W$ k% [ f6 y+ Y! M) {* |* h3 c
00404C9D 7D 26 jge short qsr.00404CC5
, Q9 K( _9 n& U9 s9 V00404C9F 6A 40 push 40" v# D6 }& `' G6 Q9 {9 d; R
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"8 ^ }* Z/ e/ V3 r1 B
00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."
; w) x- `. E' F# A00404CAB 8BCD mov ecx,ebp3 r: o" R" z" K2 O2 [+ s
00404CAD E8 C3840200 call qsr.0042D1759 G+ g9 ]8 u0 y
00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]' j8 p s' Q- P, |+ h6 i
00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx0 @9 V5 Z' c4 a% I
00404CBD 5F pop edi
$ _+ M5 ?# ?4 {4 D$ T00404CBE 5E pop esi
+ v0 N4 P! x6 r0 }/ S00404CBF 5D pop ebp- F* v9 N$ J R/ w" u4 _
00404CC0 5B pop ebx: v+ s N6 v) P- x+ P/ l
00404CC1 83C4 18 add esp,18! @* W/ ?+ T# G A. \/ Y6 ~
00404CC4 C3 retn5 F- w2 R8 l! C8 @/ }/ G
00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
/ K) U3 G! g) T8 r+ X& j00404CC8 84C0 test al,al4 l4 [0 Q1 X8 _& t
00404CCA 0F85 1C010000 jnz qsr.00404DEC
0 g. Q+ @4 h4 d- |( F# | R00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
, i# Z, b* x, j3 W$ D* N00404CD4 E8 87E3FFFF call qsr.00403060
! X) H: D: I! ]4 Y9 D7 y( G! ^00404CD9 51 push ecx' ^$ ?! j: F. Y8 D
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
& W' A6 Y! p5 `) W" c00404CE2 8BCC mov ecx,esp, |1 }3 f( V7 W. x
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
+ b* l& y# U- P7 E' S q$ P9 V00404CE8 56 push esi2 N( k0 D/ W/ H& E; v! x
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
. M) J- S# x6 g T0 p00404CEE 51 push ecx
" K& {7 E+ ~% s% T- Y a4 R00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1! z' z9 U6 Q& A2 N# [- Z/ a
00404CF4 8BCC mov ecx,esp" L6 g; k0 E: \& I: ?, o
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
6 }" H, h* g( A% C. f1 G7 {00404CFA 57 push edi( N" C' A* W3 y1 Q5 I
00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0
/ {: L! w6 z. l- o2 b8 p00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
8 m1 v, @3 V8 u6 s; U00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0
! x! H8 E3 j) ^& ^00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~
3 z: n, }# m% P6 ^3 V0 s* P00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~& I$ {5 i, n! \! b( Z5 O
00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~; F" L" r, J/ @ S+ @0 _& s
00404D12 6A 40 push 407 x2 S. V+ b0 ?8 ]
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
& r7 A' j# w4 p, ?! n* I00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."
' U( n1 x; E7 n( F0 j00404D1E 8BCD mov ecx,ebp5 n6 Y) R- \4 U8 ]& }
00404D20 E8 50840200 call qsr.0042D1758 s; X! M% n) y- l- l; I- A
00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14], Z) ?0 b8 o6 B/ ?/ H3 a
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1
5 _3 P8 d7 a* w, Y$ A5 F00404D31 E8 5AE3FFFF call qsr.00403090
" F( Q$ q6 j( J00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]2 t. R1 o+ }* i( s/ R% `# s% J. X: j
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
. q$ y- s6 U/ Z6 H8 w00404D41 5F pop edi+ I/ q p- h( g6 D. i
00404D42 5E pop esi" a# ~8 L' F [! j
00404D43 5D pop ebp
$ B# c! e- t: g( a7 T00404D44 5B pop ebx. L! H. w1 \/ S5 P
00404D45 83C4 18 add esp,189 i8 p* `0 ^/ f4 _1 O4 _2 T) `
00404D48 C3 retn0 ?' y. ^9 O8 |7 g7 A$ X
*********************************************************************************************************************************************************
+ {0 S, G, p9 v4 g2 K跟进00404D09处CALL来到:
% X8 X) O- Y- ?" d/ a* L004030A0 6A FF push -1 //一路F8下去~~~~
9 f' _' _; K* Q4 e- x& A004030A2 68 C88F4400 push qsr.00448FC8# o2 _1 |+ e' T% m
004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]: k( q% p: ]7 e$ i; P. w
004030AD 50 push eax
( @, J$ M8 u' Z5 @. M004030AE 64:8925 0000000>mov dword ptr fs:[0],esp
) \6 d7 b& p' C2 J& @004030B5 83EC 24 sub esp,24
/ g, e4 G) V* a0 V0 T9 v. [2 P. W004030B8 53 push ebx
! `0 ^6 y: D; c6 M/ X004030B9 55 push ebp! O2 t1 h7 y( a$ l' l3 `! {& ~
004030BA 56 push esi A3 l0 W! I% p; s4 y( {
004030BB 57 push edi- E/ \# S _% W
004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"+ @) A0 R0 }0 a7 H- {, {
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]* o: C8 Y6 ~+ _# F0 c$ d: _3 N& v
004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1
2 M, ^4 G# L2 v$ J3 t004030CD E8 27C40200 call qsr.0042F4F9
* g# @- G% S$ b& ]. `+ i004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]0 H1 k; }* b5 V+ p, |
004030D7 894424 2C mov dword ptr ss:[esp+2C],eax
& P# N/ E. F, I8 S7 _004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
' ], D0 |5 D, e6 [6 v* q004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3! T5 g% C% b& \( Z+ _
004030E4 E8 905A0200 call qsr.00428B79
7 R* V0 ? M3 g/ Z5 M004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
9 T7 Q- S- V4 L004030ED E8 3B5A0200 call qsr.00428B2D
2 J5 I l# Z% w# U& [* D3 s004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]& O; l5 m$ X" h( \5 r* D s
004030F6 E8 7E5A0200 call qsr.00428B79
3 ^0 k- n3 L0 A: V6 g1 Z* |, L004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]) f$ f. \+ A% T& a! p
004030FF E8 295A0200 call qsr.00428B2D
& }9 O- B+ a6 a/ y00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]
- ]) S r7 p" _5 L/ K" A00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
2 y k5 v* ~) t/ Z, L4 B* j% E9 O0040310B 83F8 02 cmp eax,23 e. e# |; V' y% W& P7 M) R& i4 P
0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳0 c' M( b3 v6 j; Z+ a
00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]- J) m$ L, y. v+ E/ J% A- l
00403118 837A F8 18 cmp dword ptr ds:[edx-8],18
/ H% x. t" p8 h# E0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳) G; l+ o7 {4 w$ M9 p1 b. |
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]1 s9 Z2 c- x I7 `" ^4 \. V
00403126 6A 01 push 1
1 X5 c% h- m3 G% h x# C00403128 50 push eax
* H3 @2 Q0 J, a( v+ S00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
- V% `5 @* G/ G' k* |" b, f3 o8 \$ p0040312D E8 C4550200 call qsr.004286F6
. x1 s$ \' d, n+ H" r00403132 8B00 mov eax,dword ptr ds:[eax], k$ `; ~8 T; p
00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]3 M$ z" R8 n. G% A3 Q" z
00403138 50 push eax
( W+ y7 v7 }" y. b! S00403139 C64424 40 04 mov byte ptr ss:[esp+40],4
+ ^3 Y- B4 ?/ {! V5 Y3 W0040313E E8 4D560200 call qsr.00428790* f/ {) Y4 @4 {
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]* f$ \! i# g' C {0 M
00403147 8BF0 mov esi,eax0 @+ |$ d3 h" T6 P# e. L
00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3
1 {9 u8 X8 p8 j4 ^% T0040314E E8 38C30200 call qsr.0042F48B2 Z& A# H9 z: h% n) ?/ L
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]
( \0 L" ]% G! r( ~4 ]( ^/ b& w! {00403156 B9 3E000000 mov ecx,3E
r0 W" s6 {" d0 m0040315B 99 cdq* V0 f$ x7 Z6 V2 M
0040315C F7F9 idiv ecx
. {0 ^% \( s3 z0 A2 r0 }# t2 P: b0040315E 6A 01 push 1
/ E* r1 b0 J* I* U4 W00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]
; k4 c# C0 s1 M% y' @( }00403164 8BF2 mov esi,edx$ d1 \# [: M/ x' K% W# t, I+ l1 \
00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
9 l l6 s" w1 R |0040316A 52 push edx% f1 c3 y1 Z6 G
0040316B E8 0A550200 call qsr.0042867A3 a" \& U' K5 y' ]) ?
00403170 8B00 mov eax,dword ptr ds:[eax]
& _6 A! e- s' f0 p- K6 U; v00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
. u; X6 w- @- F4 A# d* {( \00403176 50 push eax
% Z$ U) r' [6 n8 [5 l9 Q% |: `9 M00403177 C64424 40 05 mov byte ptr ss:[esp+40],5- n6 J- _+ D1 T
0040317C E8 0F560200 call qsr.00428790
) P6 M: T7 I6 a* W7 H& ?1 y00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]6 F' t8 |, K2 F) b/ K" @% {8 u
00403185 8BF8 mov edi,eax( X; ?% `# V7 e7 ? F, y
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3
/ L; {7 C5 a( V! e6 e7 `2 j ]- w0040318C E8 FAC20200 call qsr.0042F48B v6 c0 J% Y& q0 h; c6 Q' i. n! [# b
00403191 8D47 0A lea eax,dword ptr ds:[edi+A]
2 g- p2 B1 X4 S- k+ Z1 l9 u00403194 B9 3E000000 mov ecx,3E5 D- O4 |; w; ^9 {: k
00403199 99 cdq1 t N( g2 `8 o* ~* [4 N7 ?
0040319A F7F9 idiv ecx& j* A2 u2 I* n
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]5 Z5 V% M9 A3 M* G Y) D1 d
004031A1 894424 28 mov dword ptr ss:[esp+28],eax+ m, E/ _7 I* |. Z' s5 d
004031A5 8BCA mov ecx,edx
0 ]7 J' f1 h. o! X! Z! Q4 Z004031A7 894424 24 mov dword ptr ss:[esp+24],eax4 L& W% r" u% R t7 ~+ o( G0 E
004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
; ^5 Q0 Y b; Y0 Q# ~004031AF 894424 18 mov dword ptr ss:[esp+18],eax
) w* Y, l% v$ o$ l004031B3 894424 14 mov dword ptr ss:[esp+14],eax; b4 {9 K ]* C- `/ C
004031B7 894424 10 mov dword ptr ss:[esp+10],eax4 w) o2 A: ?2 Q4 I
004031BB 8BC1 mov eax,ecx/ I9 X! E: s9 _8 E9 T4 S
004031BD BF 0A000000 mov edi,0A$ B5 y( D! V+ i5 j u
004031C2 99 cdq
8 a: ~1 m" X5 {7 u& e004031C3 F7FF idiv edi
( b! W. R3 x1 Q, x) x004031C5 8BC1 mov eax,ecx6 E o3 Q. x* ]1 d
004031C7 B3 0B mov bl,0B
$ Y) m, L* S+ R( u, g004031C9 0FAFC1 imul eax,ecx" `! [7 S. v' h- F% [% i4 M
004031CC 8BCF mov ecx,edi
' v% Z1 [: c$ R9 m: D. J004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl/ K) _! i/ c/ A, T4 a: d
004031D2 52 push edx! [, l. M/ L; E" T; T3 V
004031D3 99 cdq) X/ b, ~6 T' j3 j( R/ ?
004031D4 F7F9 idiv ecx
% ?; |, U7 P7 Q) I" Q6 v3 U* ?004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]
" S/ h1 ^9 _% {/ O004031DD 2BC6 sub eax,esi& q8 t# L* k" y# Y" W1 q
004031DF 52 push edx7 g6 O! E, ?2 a
004031E0 99 cdq5 [# O) J) ]( q( W v
004031E1 F7F9 idiv ecx
/ A! ~- t4 f/ a1 n3 p7 v004031E3 8BC6 mov eax,esi7 B" H& x/ `8 ^8 q& F3 |% R) E
004031E5 52 push edx9 U( F( L7 o6 H, s6 F/ a+ l
004031E6 99 cdq
& i8 @6 z0 n* G( V004031E7 F7F9 idiv ecx, d3 Q# {. E \: o) s
004031E9 52 push edx V5 q+ P2 c) Q2 @# G' O; \4 s! l- _% C
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
8 T4 a w' \5 B" r004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"/ R2 N4 w( L8 h! T, d! i: J) G# |
004031F3 52 push edx
" Z' s1 _6 d2 t! F' G, N004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893
& Q6 I7 m2 B. q6 W004031F9 83C4 18 add esp,18
% L. Q# s0 D1 c2 k+ L/ _004031FC 6A 04 push 4' q& i$ U/ a1 r0 ?
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]; P- M4 h: ~' x% o( D
00403202 6A 00 push 0, |% [- S' y- X2 p4 }3 }
00403204 50 push eax) p A; o2 R0 G _ J
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
% ^. b A7 C4 o4 Z" G; F G4 q00403209 E8 D6530200 call qsr.004285E4
" y( A1 I7 _2 G( ~4 {/ e0040320E 50 push eax
& v0 l6 k# h) L7 \! ]0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
' ~9 x2 H& q$ P( x0 V! s/ `( h00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C
F H9 {+ m7 T: U z00403218 E8 A7C30200 call qsr.0042F5C4# f9 Z& A/ k- J ? N/ A- J) M) O
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
& s! e* N1 {! o$ c9 i3 H00403221 885C24 3C mov byte ptr ss:[esp+3C],bl
3 [; W" F5 Q% r1 A+ ?5 \, l00403225 E8 61C20200 call qsr.0042F48B/ h z5 |; T7 E5 G- p* D0 J
0040322A 6A 04 push 4
# r8 i8 L0 c- {* {. H G* X0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
4 d$ l' L0 z% G' ~" V T00403230 6A 05 push 5' Z' B% P, [# N& ? C6 v( D8 M
00403232 51 push ecx
, ~4 y; d0 D+ V& ?: U' w" y# h0 y1 R00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
! I* W; }( U, B6 ^; M4 J0 B00403237 E8 A8530200 call qsr.004285E4
4 t7 {. T& G: e7 J0040323C 50 push eax: O& ^/ c4 _4 P! K% `
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]( ~/ Z, \: |, W2 ^& L0 \
00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D, M; M& p* {% y* Q' N
00403246 E8 79C30200 call qsr.0042F5C4" S' l8 A3 b7 `+ p$ I
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]" j! m: s- u. f8 V N& W
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl
! J U1 A- ]. H00403253 E8 33C20200 call qsr.0042F48B
1 m) u3 x$ Z6 D* J4 k) J00403258 6A 04 push 4
2 z: u u' M3 W0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]) e5 i7 s& D& |/ ]$ j; Z a
0040325E 57 push edi
4 u* @( g' Z% s) e, g0040325F 52 push edx2 k2 w# G* h# L
00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
. @1 H5 i8 J0 A$ ~9 c) e00403264 E8 7B530200 call qsr.004285E40 }% \2 S3 r K t$ ? {/ t( Q
00403269 50 push eax) s. \4 T4 N% I- B
0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
, k: |2 {. }9 Y7 ~4 ]/ ^0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E/ x9 a- i3 q5 D1 P1 s% V
00403273 E8 4CC30200 call qsr.0042F5C4
# S) Q5 t+ K6 H# Q: F00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
0 O9 G* O3 U6 \% Y0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl; z ?, |* p( g% ^# M
00403280 E8 06C20200 call qsr.0042F48B
. G- N/ u7 P6 h/ b00403285 6A 04 push 4% `" a$ P! ^; G% B2 ?
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
, y" [* y+ C1 d% C$ W+ H7 N0040328B 6A 0F push 0F
; L! l6 c! g$ O& z& y- d' I' N* k0040328D 50 push eax3 v- } H* K4 S4 H: \6 G' B
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
' E& u t+ x1 Z00403292 E8 4D530200 call qsr.004285E4 [6 P8 p+ P$ f9 A: S) G$ P) ~
00403297 50 push eax
& q/ M9 h. A( _7 N$ s# r00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
3 L6 @$ ^. m# b2 p V, s& G0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
/ T! C8 g( u) I, u004032A1 E8 1EC30200 call qsr.0042F5C4
/ ~, X4 U/ @% K2 u004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]2 n! K f$ F* g6 E2 R% x2 U
004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl
9 V$ Y/ T- R+ x) y/ t004032AE E8 D8C10200 call qsr.0042F48B
6 F7 l4 I3 n% X! X4 p8 \004032B3 6A 04 push 43 V: m: {6 z- R4 V
004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
& e3 p: p5 l9 N0 X. @( m/ j004032B9 6A 14 push 14
& n7 T/ b- o0 e004032BB 51 push ecx, x: x6 e% C% L$ Y5 O9 M& y. h
004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
9 M' O4 X9 N% ]9 L7 ^3 x2 A004032C0 E8 1F530200 call qsr.004285E46 o9 l M+ \8 j6 _% |; K8 g
004032C5 50 push eax
2 i/ z b/ G w9 N% s7 ^0 n5 o8 ~004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]7 y5 l! }' [/ _1 Q x4 z5 A F
004032CA C64424 40 10 mov byte ptr ss:[esp+40],10) N' Y* V- }# ?! W0 n' g
004032CF E8 F0C20200 call qsr.0042F5C4
& b# }, M$ W: r# L, `& T" B$ W004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]: a* G( o& p4 i
004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl& A R" c4 L: C Z* j
004032DC E8 AAC10200 call qsr.0042F48B
" m& ?, u/ {# B& P3 `, F, c004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
1 Q# W5 w7 w4 l7 t) r) m004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
) H, E- v. K8 e' a2 Q M004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL: G. I' U' d8 t
004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL
$ L& ]0 \" x; M: a; E H004032ED 8ACA mov cl,dl ; DL送CL+ _6 Z6 e: i0 c8 R1 [3 I
004032EF 3AD3 cmp dl,bl ; DL和BL比较
! A* Y% h9 N; n004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳): `' X; {, r3 a! T: e$ Z9 o/ A; ~1 r
004032F3 84C9 test cl,cl: W& B% M9 w( X1 h" g/ }3 N5 D$ K
004032F5 74 16 je short qsr.0040330D+ K8 Q7 N' K9 w4 Q, E; @7 ~$ {
004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL+ e) M# Z4 A; i( M% \. `1 w
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL
/ ~6 q0 a# i( v0 o004032FD 8ACA mov cl,dl
* q( f1 N( q2 P2 j004032FF 3AD3 cmp dl,bl ; DL和BL比较
# K5 X6 I! P' ^00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)" U) ]& I5 u+ d- D. o d
00403303 83C0 02 add eax,2 ; EAX加2" E+ W. N. o X
00403306 83C6 02 add esi,2 ; ESI加2
. o6 a2 P7 N5 [* \% o00403309 84C9 test cl,cl
/ E& U' q6 Z; ?: \) c0040330B ^ 75 DC jnz short qsr.004032E98 e' c( F; r) ~- S
0040330D 33C0 xor eax,eax
4 f8 h; C7 N0 H3 x$ ?7 l0040330F EB 05 jmp short qsr.00403316
3 L/ ^+ Y8 y: M4 m+ Y! v9 O$ a2 ]00403311 1BC0 sbb eax,eax) A& K- Y/ F- E( M8 D
00403313 83D8 FF sbb eax,-1+ m0 s5 S9 E0 {. }: s, r* _+ x
00403316 85C0 test eax,eax) I4 `# J% t- f- e" }5 I' C
00403318 74 0E je short qsr.00403328
! S }! M8 J# Q2 @0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A2 D9 r$ x) j4 P1 {
0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
7 z: ~# t- ~* v) A00403323 E9 F0000000 jmp qsr.00403418$ z" |0 Z: l! Y* u
00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
) I5 a6 s# b. q0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]" x4 u6 |" a$ p
00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]
5 C, F/ l: t; S5 |' [$ m! J" ]6 `00403333 50 push eax& {- _; C' a6 ~. [8 r6 {
00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX
8 ?, J# R" _, ^* M E00403339 50 push eax- @8 H8 {( _6 u
0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX9 T7 J: D; l, G
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
q1 y* T0 ?6 x* p& E7 ]) a2 E00403343 83C4 04 add esp,4' t) b4 Y- {7 _* F
00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI2 O# `1 B6 W' m
00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]$ M- z9 \+ L3 K) B/ V1 w( M$ n
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
& n5 H! o' R5 o6 T1 L0040334F 50 push eax
. I" O, c9 K: X0 A6 \- h& G! z00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
' f. Q8 R2 f6 g! r3 h% } I) C00403355 50 push eax
) p- ^ ?, x# Q, y- X/ ] k00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX' I. \# v1 H: A: \# B
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX( {8 x- o ^% z( {6 S. @6 L) y- f
0040335F 83C4 04 add esp,4
( U4 p; ]. Z S00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI
/ q0 J7 H! u* f. O9 j( Q00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]! b, n" e- C$ |4 r
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]4 ^. t+ m; [% T/ h0 r
0040336B 50 push eax
6 |. ^# u9 }2 L8 r0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX1 w- g2 o/ y: N- e+ ~2 j4 G
00403371 50 push eax/ C5 |- ^1 C+ y6 S# D
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX) |+ }9 V' m$ V
00403377 8BD8 mov ebx,eax ; EAX送EBX
4 D" B" d7 E! x: b# ~, Z" K$ y# l00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX
0 `5 _" @8 J1 j; }! S* s% G$ h0040337D 83C4 04 add esp,4
( q3 c9 |/ M! @& ?: L4 j3 W- q# h$ m00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
: \" k4 e; b) e' d00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]8 z7 b0 x7 ~! ^2 W0 a
00403387 50 push eax5 D$ `9 L& T8 Y% _) @5 h
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX
4 y1 A1 z# `! \# {8 W0040338D 50 push eax
2 H$ F5 J8 H; `1 h7 ^0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX! p' z# i3 h( s! X# ?2 q0 s/ `+ W
00403393 83C4 04 add esp,4+ j2 p# m) e2 J( J/ \/ y
00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
% y: U* X9 \1 X$ D& h8 [0040339A 8BE8 mov ebp,eax ; EAX送EBP: b5 l3 e' O, N1 Q/ T
0040339C 6A FF push -1/ X1 W9 b" {- t
0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX- ~* k8 h, Z) R1 f- J
004033A3 6A FF push -1, x; q7 S3 k6 m* d, M- s
004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX& P+ Q5 a6 j! O* ^6 S# A
004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
! Y* h8 A4 Y% } b: C2 ]( ]004033AE 6A FF push -1
]' r8 w+ l; O% {! _004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX3 Y) T* e: L6 D5 t6 E* H
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX
3 V' v9 i2 O) x0 y7 K004033B9 6A FF push -1
# c; X& B) ` \* R004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX, Q7 @2 j& l; g* t
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX
$ K, j! k t2 n2 u2 {004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
2 z \% o$ r6 M5 e2 n, H004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
4 u# r- o: H' L004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX* J( u* C& ^- x
004033D7 D1E0 shl eax,1 ; EAX左移1位% v" X. F1 l2 f% V7 `
004033D9 99 cdq ; EAX扩展& z) S! Z0 P% c3 l/ E! K$ i( j
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
! M5 I1 [- c5 r. G+ Z- N* e004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
- ] j3 Q+ [7 Y4 z, i004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)# M3 l: R- A5 @" p3 U0 \
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A% ^4 L' l R4 q9 E {; ~
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]" \! G" [% h, i
004033E9 EB 2D jmp short qsr.00403418
' m& s5 m0 }* X3 e004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX
( T# o7 d: e( u7 m004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2& {0 x5 A2 H i+ |" j r) s0 \
004033F7 99 cdq ; EBX扩展" a) e0 F: P/ ~6 } N8 E2 }
004033F8 33C2 xor eax,edx ; EAX和EDX取异或7 O6 ]4 r" V3 J( }9 o
004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
# ?1 _) l0 h9 s004033FF 2BC2 sub eax,edx ; EAX减去EDX
2 z" N/ m; }- S) Q- P00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]
8 {. o+ F0 E6 S8 |; n* \ F" K00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
" Q( C% s, e. P* r6 n8 j00403409 99 cdq% ^6 i' a) c3 S0 G' n) E
0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
& W, J/ ~4 L2 d# s. @; e. p0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX
8 q$ p/ ]/ _1 }* q; |00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较1 X% c9 ^& t' p: R% o5 h/ E
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)* g4 u& L# l6 p' ]7 P
00403418 E8 6EC00200 call qsr.0042F48B ; " x8 v5 x/ F+ D$ w. g) P! I) V
0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]+ a1 Q4 B; z% \0 l4 j
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9
4 O' v5 k8 Z: A/ s C/ Y00403426 E8 60C00200 call qsr.0042F48B
u; X$ c# p& R0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]1 Q/ a( s: |2 ]8 s3 d
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8( K2 t% B& ]3 Z/ w8 E6 N
00403434 E8 52C00200 call qsr.0042F48B) n& N' W. T- B8 e$ p, E
00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]0 _$ y( ]$ h* M
0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],71 d9 w3 H1 t, Z% B3 M* Q4 x: p
00403442 E8 44C00200 call qsr.0042F48B p; u; ~; D' V% ^% N* ?' p0 f8 H
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
9 \: U7 n4 ^; `$ K4 u' J6 M& s0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
) G1 b3 G+ s, M Z5 {% @7 \; Q00403450 E8 36C00200 call qsr.0042F48B
( V" k) T8 {* k$ ? ]00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
/ c( g8 N6 B' y/ v, S00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],33 E+ h: T/ {2 B" Y) d' E% _$ b
0040345E E8 28C00200 call qsr.0042F48B
% x/ _ M( `) ^4 x/ ^7 \+ K00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
$ l7 X4 H8 \ @00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2* V% s7 m7 ~, a3 b
0040346C E8 1AC00200 call qsr.0042F48B
8 D. b6 j1 Y2 y W$ M00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]3 ~+ S% S8 O9 Z
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1
6 Y# H8 B, n! H0040347A E8 0CC00200 call qsr.0042F48B) g$ P& l- w8 \3 M. a' ~
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]# H- ^/ Q0 w) \% q0 L8 n( G: X
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
2 K4 J4 S( S9 z/ A" K00403488 E8 FEBF0200 call qsr.0042F48B- k* r' Z$ i! N
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]7 j7 c# Y& n/ M8 G7 M4 }
00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
8 b- b) S; y, v! k$ r00403499 E8 EDBF0200 call qsr.0042F48B6 [5 W w7 Q6 Y( X) m3 l$ U
0040349E 32C0 xor al,al ; AL清02 V; [7 p' U4 q
004034A0 E9 88000000 jmp qsr.0040352D$ V0 m+ G t$ R* f
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~
4 l; ]# M! B s# q# U004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
5 I4 i" j3 K0 ^' J6 t4 ]" k. `004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9$ s# |% l6 z0 o- \) `" `8 N
004034B3 E8 D3BF0200 call qsr.0042F48B
; F! J4 {- d5 a, `( b6 i* M004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]" A4 e; r y! H$ g9 Q9 k e
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8# u6 l$ m6 `9 N1 E# c+ K9 }
004034C1 E8 C5BF0200 call qsr.0042F48B; {. Q0 K% u% {
004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]9 s' b; e7 g' \7 {1 V3 t$ y
004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
! J& l- O" g% N x004034CF E8 B7BF0200 call qsr.0042F48B
" L1 H) T+ B) N" |004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
7 c/ I+ L9 f5 J& G7 S004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],64 L. j' O1 Q( y$ z
004034DD E8 A9BF0200 call qsr.0042F48B% }. j ^7 v& S/ k: |% r
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
H; w* V" U% R" t, p5 c+ n8 n$ z3 h004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],39 ?( o! o' d1 q% ~/ X6 Q
004034EB E8 9BBF0200 call qsr.0042F48B7 ~7 f9 ^) X% b# ~
004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]: g. a S$ C9 Y; k4 B: p* Q1 d$ z8 e
004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2
. ]; z; z$ T4 Q; |004034F9 E8 8DBF0200 call qsr.0042F48B0 @- H6 S% V: f
004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]2 |( T Y2 B' C! F' u, @! ^9 `- {% l) z
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1. Q6 M ?; v/ O7 L' w
00403507 E8 7FBF0200 call qsr.0042F48B8 t% z8 P9 ~4 ~- C# [8 g
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
6 C3 x' e! j8 t5 k6 \0 O4 C8 Q00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0
- B# E: Y3 d6 S: M- P00403515 E8 71BF0200 call qsr.0042F48B6 @# Y6 o; {' f* G
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
2 q, ^( E: W( T. w0 c0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
' }; O4 [) @6 J( L( F00403526 E8 60BF0200 call qsr.0042F48B8 _" i( N I9 o6 J, [6 z5 X
0040352B B0 01 mov al,1
{0 J* B- L6 ]5 [( }4 `0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
6 ~7 k. [9 v" U1 E& U" t00403531 5F pop edi9 h9 g3 T* k" z
00403532 5E pop esi8 I' Z1 e1 w0 L3 B+ N" Y% u
00403533 5D pop ebp
: j+ d- `- V3 ~00403534 5B pop ebx7 q) z! e. h. f5 o9 X
00403535 64:890D 0000000>mov dword ptr fs:[0],ecx
0 B9 G( Z6 _* i3 t* z1 E8 G: W0040353C 83C4 30 add esp,30
5 o4 X/ X, o) d( d# K0040353F C2 0800 retn 89 @& m' s9 L5 p& h$ A9 f
--------------------------------------------------------------------------------. B [: f) k! ~, o$ m+ r
【破解总结】
5 L) f. s ^& I& J 用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^4 m5 |* h$ m) \ A" N6 M
用户名:yijun
* \, e3 f- ]7 D; i9 U' X# h8 v注册码:4893*7777*3726*7777*0529
! Z: h; R; Q: j" r2 v; E--------------------------------------------------------------------------------; h5 ?9 \$ a) }7 D
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡