|
|
|
【原创】破解Quick Screen Recorder; [& l1 k2 S. r# P
【破解作者】 yijun
0 ]8 e9 E+ a$ c: y" c【作者邮箱】 [email protected]
5 o8 t; ~/ ?( K. x9 Z【使用工具】 OD,PEID; o* j) t2 g! f0 n$ }4 G) {$ n
【破解平台】 WinXP
1 e: f5 Y f/ M6 d! N" P【软件名称】 Quick Screen Recorder
+ X* _1 K. c9 T# v* J9 F9 `【下载地址】 天空
+ B. v5 `( g$ W' S! J5 T【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
* b! B& `* \7 R3 L% N【软件大小】 540K
! M! X5 c% o& ? I【加壳方式】 无) {# f8 [, n1 M0 n) c6 p2 e
【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:), x8 ]' ^$ T: R2 `7 E" M& [
--------------------------------------------------------------------------------/ h( s6 B& L7 N2 T
【破解内容】
5 n0 d# \/ p6 @ PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
G) R1 Z( H3 N2 h3 Y) L9 V00404C69 55 push ebp //在此下断
, }' U' y- d" W) n1 w, J/ P00404C6A 56 push esi! U8 z% c! h* ^, i% h% x
00404C6B 57 push edi
4 u# ~/ @8 l4 a4 B4 v00404C6C 8BE9 mov ebp,ecx
& i- Z. f8 V) n; `9 e3 O00404C6E 6A 01 push 1! S$ K. s; i9 o5 N8 `8 L( K, A0 b
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名9 |/ ]. }! t) I9 j
00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]
) F8 ^, ?) u# R9 I4 B00404C78 8BCF mov ecx,edi8 z# Z+ ]# V) z
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码
* S/ t! j1 k. J% o: ?2 u1 v00404C7F 8BCF mov ecx,edi" m3 l. a8 O9 z
00404C81 E8 A73E0200 call qsr.00428B2D; P+ v2 T4 z( e3 U8 y7 N9 @
00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]( o! H1 h/ C+ R8 s
00404C89 8BCE mov ecx,esi4 ]) n; n8 Q5 T% }- `3 }0 z# V
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX6 E0 A# \2 F M" L$ |, p5 [
00404C90 8BCE mov ecx,esi
1 j. z8 D' D9 `00404C92 E8 963E0200 call qsr.00428B2D
* }; |9 ^- E( N- O; q3 |" M00404C97 8B06 mov eax,dword ptr ds:[esi]: S' V, g c. R) C8 U% C: e- D
00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
. Y! W3 ?! \( Y( O% ~00404C9D 7D 26 jge short qsr.00404CC5: S2 V! m( Z6 _! y
00404C9F 6A 40 push 40+ r9 m9 l) W* m7 G3 X4 N9 S
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
; Q& k! |9 h+ b2 H00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name.") \3 q- } @( b; }5 e6 ?' e
00404CAB 8BCD mov ecx,ebp( h- s( m/ }1 l" l; X) d
00404CAD E8 C3840200 call qsr.0042D175) c7 z" j6 l% }8 }2 h
00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]; t) s+ b) [# \7 M( v9 F _
00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx0 P5 ~ m6 j5 s- [7 [+ c" l
00404CBD 5F pop edi
- Z6 }; j, }% s. t7 V00404CBE 5E pop esi
/ @ B, l2 _& Q5 T0 ~, {00404CBF 5D pop ebp- {4 z5 `/ s6 q$ q* V+ @% e# p
00404CC0 5B pop ebx
. D |: f( ^5 S9 n, d, c00404CC1 83C4 18 add esp,18! j4 X( k( L, R5 P0 h( p i
00404CC4 C3 retn3 R/ E, Y8 ^) o9 Z9 m7 p
00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
4 M" q: |" |& h$ P( I& x00404CC8 84C0 test al,al
5 b# B' G% X6 n, t3 R00404CCA 0F85 1C010000 jnz qsr.00404DEC
4 A `4 m9 G8 b& t& B Z, ]00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
9 w$ ~ |# `) `! O2 D; [* z7 F00404CD4 E8 87E3FFFF call qsr.00403060
" M9 a6 f& U- ], I4 E00404CD9 51 push ecx
7 U' }0 L# n) F2 k0 G K+ X00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0% k: i1 r1 K. x" C+ l/ _/ Q9 x0 h
00404CE2 8BCC mov ecx,esp0 e( z8 P, e4 y# U
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp! Z* \; l! k0 }4 U; _0 S
00404CE8 56 push esi
/ q0 o, Q0 E& P00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
7 e! S/ H/ j; l1 d! N- P00404CEE 51 push ecx, H# _! i; e, x/ J+ n9 P7 k* t
00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1' P8 \& _/ M" C5 Y% }! {/ d1 b
00404CF4 8BCC mov ecx,esp
! S4 ~) I9 l3 U: L4 x00404CF6 896424 20 mov dword ptr ss:[esp+20],esp4 a: \4 r0 r/ Y+ |
00404CFA 57 push edi
8 t" Q" l- y6 Q" V/ P0 v$ n9 u00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0; K+ o6 S8 T% [: k Y8 \
00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]( @8 V5 p7 s$ t' V
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0, [5 `5 k' ?0 B) C. k
00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~
' J; h; B$ x. l2 z% h$ n0 s- O00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~. ?; h. V, Z) {; ~+ ]0 w' R
00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~7 X. }3 c7 s6 m% u
00404D12 6A 40 push 40
* H/ ], b2 B1 d& h/ H( X00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
l8 u. N( Y% m- m/ R% x00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."
8 p6 Y q( _# ^00404D1E 8BCD mov ecx,ebp2 K" k7 O J4 d Z
00404D20 E8 50840200 call qsr.0042D175" o& r& {7 Z% n, X3 S3 L# |
00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]& c- h; I" E( h
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1! L5 Y( E/ M0 o2 V' z' }% J( h
00404D31 E8 5AE3FFFF call qsr.00403090
9 w; C) ]0 Q4 @, \0 r00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]& [7 Z' T! Z7 }$ l- l1 F; z
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx5 F5 O- P/ O6 ]1 {
00404D41 5F pop edi o& M' v. D# z7 ]+ ]
00404D42 5E pop esi6 ?2 k; B) V$ h' p) i1 V- P! ^
00404D43 5D pop ebp
$ T# x- v' s+ j- N" @/ i00404D44 5B pop ebx2 X1 y. M6 R; P. r% M2 N
00404D45 83C4 18 add esp,18
% n8 F2 o: V; L: L6 D00404D48 C3 retn
u* V `+ s8 o$ ]4 t9 h X4 w*********************************************************************************************************************************************************! M/ K# z4 t& p2 E8 t' A4 w
跟进00404D09处CALL来到:
k0 v* X9 o9 P2 L& o( o004030A0 6A FF push -1 //一路F8下去~~~~
, f. @0 Z2 Y9 h! l) r" x5 c1 a004030A2 68 C88F4400 push qsr.00448FC8
+ P' o- ] w% f4 Y4 K004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]# H2 F& J" I+ r+ V* X
004030AD 50 push eax
P0 m! I+ ^. d: j6 @004030AE 64:8925 0000000>mov dword ptr fs:[0],esp& n9 O$ B/ T: r, h5 ^! f
004030B5 83EC 24 sub esp,24) \1 t: p2 L5 ], K8 `* p* l; B
004030B8 53 push ebx
) h9 D m0 Y: g5 r. Y4 P004030B9 55 push ebp
& k8 b4 Y0 T* G' g4 _2 L004030BA 56 push esi) }/ C$ h9 y" `$ p5 A$ E
004030BB 57 push edi; i: j. ~. A; _2 I2 ?0 ?- S# Q
004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"
$ \! g1 u: G$ B8 O004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]) _1 {) c+ q$ X# x* D1 o
004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],14 }0 v9 ^( f3 n9 T, |4 w
004030CD E8 27C40200 call qsr.0042F4F97 a. t8 d* h7 O/ O3 t8 f
004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]- J1 X* C' O! k" ?# o5 i4 b
004030D7 894424 2C mov dword ptr ss:[esp+2C],eax
& e# c3 p+ Y# c* p004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]& r% i2 |) p* ]8 s7 P7 b
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
9 b6 ?5 z8 ~; q' q* x' _$ k004030E4 E8 905A0200 call qsr.00428B79
, Z3 Q+ S: g; w0 P* P004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]$ Y; c# |+ ^* m/ ?1 e8 Q% W( v
004030ED E8 3B5A0200 call qsr.00428B2D
0 Q6 {3 Q' S: w9 h3 }004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]# K! K$ j. a1 |
004030F6 E8 7E5A0200 call qsr.00428B799 P9 D* S0 x1 u1 J# Y0 @9 ]! S
004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
0 R1 O5 l2 O& |2 N- @& t004030FF E8 295A0200 call qsr.00428B2D
8 r' ~2 n u1 X2 H/ d00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]& X8 b. K" d- [ J5 o- u A
00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
( N/ h& A' h& [5 [7 N0040310B 83F8 02 cmp eax,2- P4 W+ r* ]4 I- ^- D# r5 {
0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
+ i V) D2 i# A8 w8 R! }$ C00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]
) S: B/ r6 t: i( z: G7 L, L5 L00403118 837A F8 18 cmp dword ptr ds:[edx-8],189 I. a+ E. ]( O L. j, N3 G
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳) v0 `. u$ Y/ p* q% F) g
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]! y0 s2 s/ A+ Y, t8 o7 |- f
00403126 6A 01 push 1: B" t& `) `* I
00403128 50 push eax
/ h; f! {7 A1 P8 ]& l7 o/ L# j; S( Y9 h00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
2 W3 ~) q8 C8 T' m. F6 m0040312D E8 C4550200 call qsr.004286F6# I1 J$ E3 [9 ?3 `" X3 B- C+ ]4 J
00403132 8B00 mov eax,dword ptr ds:[eax]
3 o I+ L+ b9 @" z# t00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
' K% r, W/ [. o# i+ q" q00403138 50 push eax
, f- K9 V7 R9 N5 {00403139 C64424 40 04 mov byte ptr ss:[esp+40],41 g( G& _7 c+ Y$ Z* ~" r
0040313E E8 4D560200 call qsr.00428790
8 ?* t& H6 d6 _& a/ n! |7 Z00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
2 e! ^1 z6 d" w00403147 8BF0 mov esi,eax' A: s3 Q; {2 h7 w" z! T
00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3
, r! M! D; r0 P/ K" `4 x+ F. ^0040314E E8 38C30200 call qsr.0042F48B) T0 \$ ^# A0 K" v
00403153 8D46 0A lea eax,dword ptr ds:[esi+A], ?( u3 w) v- l' Y" I- d
00403156 B9 3E000000 mov ecx,3E" |0 C) m/ S' z0 r2 k2 i
0040315B 99 cdq$ X; T7 e8 v* C% S5 }
0040315C F7F9 idiv ecx8 O }- B F. v
0040315E 6A 01 push 19 S3 r7 h k5 q! X t
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]
1 v y) u4 j% q" p00403164 8BF2 mov esi,edx* \6 `% t* B# l/ r: C
00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
& N) a4 @9 n) d. c% v; o* f9 D7 L& n4 {4 h0040316A 52 push edx
_3 l0 d2 a' _6 @, m0040316B E8 0A550200 call qsr.0042867A
9 u8 y- c: {4 t( E: U: o& b00403170 8B00 mov eax,dword ptr ds:[eax]) I# C9 F0 o+ B, n& p! O1 G- O8 a
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]5 `, T& Y# i1 k6 w
00403176 50 push eax
1 B! i3 v2 Z0 i9 g' z3 S! {' ~00403177 C64424 40 05 mov byte ptr ss:[esp+40],53 Q" o9 A* `- p
0040317C E8 0F560200 call qsr.00428790+ v+ k& m: |0 J9 M0 ^8 o L
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]' ~. I! r" q" \# c' m
00403185 8BF8 mov edi,eax9 E# I1 G$ o: ^# h
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3
" p+ }! w8 b6 M: t% g0040318C E8 FAC20200 call qsr.0042F48B8 A6 a, `$ H, p8 `! M
00403191 8D47 0A lea eax,dword ptr ds:[edi+A]
4 x6 @) A' _% n$ }9 c5 p00403194 B9 3E000000 mov ecx,3E* C# e* M1 l: W# d7 W0 b
00403199 99 cdq
2 }* [5 y9 Z2 r: y0040319A F7F9 idiv ecx
S( e8 f p& g, K9 P7 O3 x0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]7 x6 _; Q) s) y, W& W! ^
004031A1 894424 28 mov dword ptr ss:[esp+28],eax
/ N( u8 W+ u& u1 h* J( }+ t7 ?004031A5 8BCA mov ecx,edx
$ R9 u# ~; x6 M0 i- f1 ]/ |% D m) T1 }004031A7 894424 24 mov dword ptr ss:[esp+24],eax
( ?" b5 E$ \/ A# V7 e004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
6 Y) n( E- z( e% s0 F8 h9 ^004031AF 894424 18 mov dword ptr ss:[esp+18],eax# n, o+ _( e. i) C& F& S
004031B3 894424 14 mov dword ptr ss:[esp+14],eax
1 h$ a5 k& c. v% U% h, B004031B7 894424 10 mov dword ptr ss:[esp+10],eax
3 D+ j9 O7 [& d5 V* i004031BB 8BC1 mov eax,ecx
- i6 R: h# ?- r- b% I) \004031BD BF 0A000000 mov edi,0A
8 G/ e5 H% K G) B2 z+ w1 Y004031C2 99 cdq4 K+ d+ J7 b, }: J3 d. u- _- B
004031C3 F7FF idiv edi
9 R. K1 G; \6 U004031C5 8BC1 mov eax,ecx! E+ L) D8 ]7 J4 j4 J7 l
004031C7 B3 0B mov bl,0B
+ a2 b' a Y. b004031C9 0FAFC1 imul eax,ecx0 ?" c6 L0 C# x
004031CC 8BCF mov ecx,edi
) l; E, o m% F004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
8 ]/ B5 B2 f! x( ^8 _" s8 l004031D2 52 push edx
. c, ?5 e8 P6 o1 W! T# J7 v004031D3 99 cdq
# V% I R. e5 U# `004031D4 F7F9 idiv ecx
$ M6 C, X, s1 K4 J: l8 _4 p) d+ d- F004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]
, O. k8 z% d; ^ y" G# v/ ]004031DD 2BC6 sub eax,esi
: w8 v* _* A0 ~, @6 f0 ]0 T004031DF 52 push edx a% H0 W; K" @- d
004031E0 99 cdq" O q5 y D _8 _3 ~! ]3 B
004031E1 F7F9 idiv ecx2 g) [/ L- I9 s& f. C
004031E3 8BC6 mov eax,esi
' w A) L# M ^2 [, [. o* Q! |# q* ? p004031E5 52 push edx
% N' O, ]2 \) `004031E6 99 cdq
: S9 c% A, K* W M004031E7 F7F9 idiv ecx# U+ S6 J+ f; D
004031E9 52 push edx/ ^ q4 d2 j: L% f3 U& d: R. b
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
" p6 ?" \" z/ Q/ d( E! E004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
* Q$ x9 L" j; l9 ^# r004031F3 52 push edx6 T5 u7 ]3 G6 f1 n
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893" R; S& D$ ?2 V- E6 k
004031F9 83C4 18 add esp,18
, l; e0 T7 q. J/ [2 h( ?# W004031FC 6A 04 push 4
; t8 ^/ w: C- L9 b. b004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]/ _' ] w: ]( L" u8 u
00403202 6A 00 push 07 ]* H. a. S: Q% s, V `+ a5 q D1 }
00403204 50 push eax6 I( m1 ]" o8 x/ _4 j/ e1 |
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]+ ~" {: u7 w. m
00403209 E8 D6530200 call qsr.004285E4$ w) c& i; z3 V
0040320E 50 push eax
8 c* j" W. X: Y2 q0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
8 Q/ D$ J. U6 _2 i" g00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C$ F+ i# |" q z3 a1 `; Q! w
00403218 E8 A7C30200 call qsr.0042F5C4
0 E& A" s2 g: z0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]1 y2 T- N7 ]7 ?7 d7 J, l j
00403221 885C24 3C mov byte ptr ss:[esp+3C],bl% o" d/ d y/ G4 W8 ?3 D+ A
00403225 E8 61C20200 call qsr.0042F48B
' u9 v9 @% M/ c$ }8 _# x; V0040322A 6A 04 push 4
! O6 U, g$ d2 p! C. a. G2 s3 b7 v7 v0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]+ [( D- i2 W6 p4 @$ \" U
00403230 6A 05 push 52 p& T' F, M6 U2 E4 B+ c
00403232 51 push ecx
; e8 G7 L8 v* m7 H5 F+ \; @$ g* B00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
0 a, v4 ?" z. g+ {) T% Z00403237 E8 A8530200 call qsr.004285E4
5 W7 K" T* }' M7 A7 |8 Q* l0040323C 50 push eax6 B( g, T7 ?; r, m3 G
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
4 X% z1 e3 u8 w. j5 O5 z+ F& J; s$ v00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D) X( H8 O2 {; E* R9 R7 y
00403246 E8 79C30200 call qsr.0042F5C4
$ R2 e. U8 O+ B v# d' [) J7 A0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]. @$ g) ~6 x7 J8 U% r3 m
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl
+ `0 |5 \/ r" l3 ]; L, \1 q00403253 E8 33C20200 call qsr.0042F48B- [9 p! c! H" D. _6 P
00403258 6A 04 push 4: W9 \" B! A; ~- _# s
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]
& }+ v. \, y5 u( \0040325E 57 push edi8 B$ u$ ?0 d3 o# g5 V
0040325F 52 push edx" `7 v* H7 t) _, y) {1 u
00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]- N# f+ v( O& G* |2 I7 |- `
00403264 E8 7B530200 call qsr.004285E4& _- g H. O: }0 d2 L
00403269 50 push eax5 p7 B {+ J' E+ X9 _
0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
) M' |! p, `8 O Y2 {6 ]0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E' i1 l' X' t8 |* U' o0 C1 e2 Q. V
00403273 E8 4CC30200 call qsr.0042F5C4
7 ^- \) @7 m2 B. `00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]9 `) d# B; n& _0 C& V
0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl
' l7 v5 h0 V2 |. L, D( o00403280 E8 06C20200 call qsr.0042F48B4 C) G0 H# n- s6 C$ i
00403285 6A 04 push 4" L# }# @$ o9 s) ]6 w) g
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]+ n: |9 G# w' X( p; ]+ g
0040328B 6A 0F push 0F
3 {2 [$ X$ f) r/ U0 n h0040328D 50 push eax3 L% }* c5 F9 B: Z8 R( d
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]0 F2 I4 J( x2 y. }8 z; M6 d
00403292 E8 4D530200 call qsr.004285E46 r& h& L0 N7 _. k) [: O4 G# T
00403297 50 push eax
7 N J9 E) V6 a" l00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]" c6 R+ e H% P9 y/ A4 ~# D5 _
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
' `4 z0 M' \' Q0 i g004032A1 E8 1EC30200 call qsr.0042F5C42 `' v p) I" F: L
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
$ P2 J1 W9 \" M- x/ s3 n( T$ m004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl$ l, P( n' h4 o) W$ T7 J, ^* P
004032AE E8 D8C10200 call qsr.0042F48B
- e, v6 t3 \% L7 b% J6 F7 A T# i004032B3 6A 04 push 4: |( }# i' p0 c `* d0 y
004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
' o8 F* \- l7 G2 h7 E* A. P0 b004032B9 6A 14 push 14
( i& u9 e( J) T, P8 j3 G004032BB 51 push ecx! `) A( h; _; z/ X) [
004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]3 T c$ |) w% W; j; ?
004032C0 E8 1F530200 call qsr.004285E4) o) M3 S; N, I0 s9 X
004032C5 50 push eax# a/ ?, Q2 T" y% z* {5 N1 j
004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]7 t- t+ @3 E9 W9 Z- e7 y
004032CA C64424 40 10 mov byte ptr ss:[esp+40],10
7 z+ K- r6 @- P9 ~004032CF E8 F0C20200 call qsr.0042F5C4
& i% p& j# l( ~2 H8 p004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]! ]# `9 D, |. Y1 N
004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl
5 ~' i( p) g& d$ e0 f9 H004032DC E8 AAC10200 call qsr.0042F48B* B+ Y/ c/ X7 ?- g" z8 j. {2 {. G
004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI9 ^* e/ {- z2 p7 _, M, {, D
004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
2 v% ^" `+ S% F0 h004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
) ~1 m; d# z! V! V004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL- N! G% l/ M7 W0 k8 a" H0 o( y% J
004032ED 8ACA mov cl,dl ; DL送CL
9 @1 c% e3 S3 U6 l$ Q004032EF 3AD3 cmp dl,bl ; DL和BL比较, _) e8 @1 K# o. D" R, |0 X: |
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)* A% `: N4 X( z: o( l2 U
004032F3 84C9 test cl,cl/ ~$ N- A3 a% h7 t8 g, M4 F
004032F5 74 16 je short qsr.0040330D5 u0 C+ w) O/ c M4 S
004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL7 H9 X. I2 E" d, M7 U6 ~) o+ Z, c
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL
# s# f& S- j% j! @/ y8 E004032FD 8ACA mov cl,dl& j4 t: n# P6 a
004032FF 3AD3 cmp dl,bl ; DL和BL比较
2 g' U% H, }9 F- @00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)$ d' y- u3 Z7 u) B M* b" i
00403303 83C0 02 add eax,2 ; EAX加21 y4 E2 S7 A$ e$ v
00403306 83C6 02 add esi,2 ; ESI加2
, {- ?) ~4 T4 |/ R00403309 84C9 test cl,cl: `/ v0 [9 O. k/ I: N; I
0040330B ^ 75 DC jnz short qsr.004032E9
h- T+ o9 ^% Y0 `, G: U0040330D 33C0 xor eax,eax
8 E3 c# E7 [) D$ R# j* o. k4 K) u0040330F EB 05 jmp short qsr.00403316
) J% t; u0 c8 d; J& J3 C, a00403311 1BC0 sbb eax,eax
6 u! X: T) Z) g+ A! P" n4 |00403313 83D8 FF sbb eax,-1# W2 J9 G- }1 q3 U
00403316 85C0 test eax,eax
9 I! L, Q; e3 L' Y9 @0 f00403318 74 0E je short qsr.004033283 E0 n% V" D- E% v p
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
1 W* F$ \2 O- ]! p' ?7 I9 s3 w" c0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]8 S2 A4 P1 S; _7 ?% t2 b4 q
00403323 E9 F0000000 jmp qsr.00403418
( W6 t. s( }6 F6 h+ H00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
, [3 V" X$ ?1 S: _* l {0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
. n/ E5 h4 J/ T) ^. B00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]9 n! n# S: I; y q. j& @# W, {% J3 z5 p- N
00403333 50 push eax( v4 a7 @) Q: P! Y! R, W0 w
00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX7 Z3 E2 j8 ~0 D
00403339 50 push eax
, A$ j! k. {8 c7 m9 \0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX ~: D. r: b o& }3 ~
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
: k" q0 Y1 h& ~- t$ L/ s00403343 83C4 04 add esp,4* i( ~ ^9 ]) \! A4 x& L- V0 N! c" I. s
00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI
& N3 G- |4 f# H% G- ?00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]; M. H* M8 U8 f L
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
% X# ~2 `. V9 p: f: T$ a+ d% C0040334F 50 push eax' h1 A( `% g9 r
00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX/ F b* s. p8 T& W& }& P9 S
00403355 50 push eax! j( _+ k5 c$ Z5 q6 `. i
00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX
3 ]) H* o% P9 S' \3 q- v0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
2 r. ]- k$ q% @- K! a( M% T0040335F 83C4 04 add esp,4
: [$ E" s3 p; d' t00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI
+ e9 p. z, j% \) s [! w00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
& h; _5 e' {+ d- o, f$ e, ~5 C# f4 O8 `00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]
% R g4 o6 E! {) r6 i0040336B 50 push eax
# f1 K8 T! l1 n! B, t7 `0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX
' h9 m$ u0 e# z; q* e" m00403371 50 push eax
+ R7 G! o2 O# L" i" m9 `00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX
/ B2 E% m1 L D00403377 8BD8 mov ebx,eax ; EAX送EBX
: W- [1 @4 @9 y. |# h' ]5 C9 R- ]7 X00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX5 N. N" p( h. \( X# Y
0040337D 83C4 04 add esp,4
^5 \; t4 Q) ^" k! f00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]' t8 E- M- d. Z4 ]& t- }
00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]
3 I7 i2 W( ]& c4 t7 u" n$ e) v00403387 50 push eax
7 D( D5 B/ q8 z. h6 z00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX4 ^ {* m; I) v% G8 K, S
0040338D 50 push eax
2 b0 w7 b- r2 ^& Q, \* A0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
! U, V# w; w$ J' d5 {# Z# d00403393 83C4 04 add esp,4* ]; B' G& `$ a& v& E
00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
( S+ }7 c- y0 i3 c. Q1 b" x' i& H0040339A 8BE8 mov ebp,eax ; EAX送EBP
: t. T3 \7 Z2 s0040339C 6A FF push -1
5 {* i" z4 A6 N* V% g5 K" p3 {9 J0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX
+ k' t4 P( A4 ^; i+ G& F004033A3 6A FF push -1
. t% ]- d/ t* C# p e% Q& C6 ?004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
9 F6 Q1 L3 l/ ^, p% O8 R+ z004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX, b5 w x$ x2 O' A
004033AE 6A FF push -1
1 {9 b6 L( H- @. ?, @! T' x004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX5 _& R+ p+ B. }8 c
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX; h$ O5 }& n: W
004033B9 6A FF push -1" q8 d5 C$ `' p, L5 d: H2 s
004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX
) d2 @3 _) R2 I" K4 Q) {/ F004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX
b1 e6 G' B# v004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
% A0 V! @7 F3 v004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
, |" c" _6 V k& ]( b. T: B: \3 {; H* O' i004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX6 N* \; z: p) d+ x3 ~5 U
004033D7 D1E0 shl eax,1 ; EAX左移1位
- F* r! E% K+ Q+ |. v004033D9 99 cdq ; EAX扩展
# H; i, K2 g) ~- S004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
# D* `' T6 l6 S6 U004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
$ r* I; r! _) ^/ S# j* K004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)
, f8 R5 w0 b( W/ l5 {004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A6 `. g% i8 X& M% i# w; V& U
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
1 j2 j- A2 N- K9 F; |4 |6 D, q004033E9 EB 2D jmp short qsr.00403418, |) _4 V) W+ @. j
004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX
r# `' ~: |7 d& E5 `) n0 X004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E29 S/ s8 j- j* u5 w
004033F7 99 cdq ; EBX扩展
( c8 L" Y: g; C% i; |5 `004033F8 33C2 xor eax,edx ; EAX和EDX取异或 K6 y4 U5 w( Z. k$ u$ d. N
004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX8 b- G/ O7 g$ N/ C7 ?! M
004033FF 2BC2 sub eax,edx ; EAX减去EDX9 @2 L$ L! B# |5 @$ P
00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]2 |9 u" ]' p, f5 R! ?
00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX# v' \# `/ {2 B; e) ~: N8 H5 g7 k, T
00403409 99 cdq
3 u5 p. T7 S; I7 T" x# U0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
1 r, v3 X" K4 e6 _- h; d# `2 S0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX0 O9 t& H6 k# H- g$ H1 }1 [
00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较" h5 a% S# ]7 Q ~. U. `# A# l( h
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)$ r: c$ s2 u/ d2 Z' u
00403418 E8 6EC00200 call qsr.0042F48B ; ) E5 K* [8 q J. ~/ \
0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]: c2 i0 ` o; V r) {2 H( _
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9$ V/ \- f5 W* ^" K, J& v
00403426 E8 60C00200 call qsr.0042F48B" j: _, u4 f' [
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
4 d2 c* W- s3 t- p8 ?1 B& h0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],83 k* D5 Z; s3 ?# m; A
00403434 E8 52C00200 call qsr.0042F48B1 d, x O1 L! c G5 i
00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]6 E# ^& P0 k7 @+ o0 Y u: {
0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7
. w6 M" T2 ]4 ~00403442 E8 44C00200 call qsr.0042F48B$ o3 D$ s+ O; t
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]0 X/ H `. N( T$ \. v: @
0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],66 g4 |& s7 B7 q
00403450 E8 36C00200 call qsr.0042F48B
% F( m$ l6 q3 x9 S3 r00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]' n$ d/ k3 ] v2 K: V* Q2 E9 V! o
00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3
5 ?0 H) z# _* u0040345E E8 28C00200 call qsr.0042F48B5 n1 C$ I3 m8 D1 v. Z8 V; p
00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
6 H* L- B, T8 W00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
+ d3 |1 S! R E3 `1 i0040346C E8 1AC00200 call qsr.0042F48B
$ b( ]/ _* @8 n0 G00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
/ |8 }0 G* n; q) s1 c. H5 F$ z. p* w. \9 D00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],11 j" O. _" C; a% u: R
0040347A E8 0CC00200 call qsr.0042F48B/ N& Y( s: A [; f+ |; B* u2 v
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
6 V p# g7 M# W5 R' ]; N3 a00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
9 ~# l+ }. c# `* `+ f" E00403488 E8 FEBF0200 call qsr.0042F48B) W3 }9 X+ R; f3 s6 ~ Z
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]: Q) B3 j4 `, C6 a/ @/ Y9 R
00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1- F8 \, H. U1 }6 j# `0 u3 X q
00403499 E8 EDBF0200 call qsr.0042F48B
3 A" l6 `; |2 {, E9 v! v/ [6 T( S0040349E 32C0 xor al,al ; AL清00 Q) B# I& z8 [, q
004034A0 E9 88000000 jmp qsr.0040352D) b$ S9 m2 m/ D0 S8 W9 A5 k+ x
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~& R4 A6 v: S6 B# @
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
: V# n8 V2 u% ]$ `004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],91 h/ L9 U& G" h! a
004034B3 E8 D3BF0200 call qsr.0042F48B0 r/ _) |6 j$ m2 |$ S. G$ a% F
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]0 s3 ?/ |* t' }6 B7 B8 g: K' U
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
5 |4 s: ^: ^' r004034C1 E8 C5BF0200 call qsr.0042F48B
' m5 \3 n V9 ?: h004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
2 p2 P% n& Z8 L, b8 A004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
7 ]& V6 S4 |1 E004034CF E8 B7BF0200 call qsr.0042F48B$ v$ r1 h! L4 E/ Z# ~1 X) G
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
9 C* y7 j) t# u6 |: o: M% i$ F5 y004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6/ u" C& ]2 F- K8 P/ U
004034DD E8 A9BF0200 call qsr.0042F48B
" A3 j8 G% [& [004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
6 Y# M" Y6 k7 z0 [004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3$ W3 @# f8 e) G' E
004034EB E8 9BBF0200 call qsr.0042F48B
% c5 P; l% @; W2 c; K' F6 A* c0 K004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]0 G. p- l: s" k7 D4 v Y
004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2
! P& @! j1 P5 f9 }) o2 W- ?7 a: k004034F9 E8 8DBF0200 call qsr.0042F48B
2 y+ w2 j8 T( U1 r004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
9 q+ b9 s" e; c- a$ H7 ^00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1
/ C* w" f- O, T5 F; w; F00403507 E8 7FBF0200 call qsr.0042F48B
3 a# ]3 r* \' R, ~% w" j: s$ [0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]9 r9 j4 L" S- A: u" M: n
00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],07 c; ~% O7 ?5 }& ^( q- i
00403515 E8 71BF0200 call qsr.0042F48B1 U/ u% H( Y; h3 O% C/ v$ K
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]( T/ K9 v, K2 {( ]9 r/ C" N
0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-19 F! A E+ J* t+ _2 v' f( r8 B3 \* C
00403526 E8 60BF0200 call qsr.0042F48B
2 V' K! M/ d6 Z+ @0040352B B0 01 mov al,18 |, B2 s' S; S, p! K
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
0 C) T' a7 ^0 q" n00403531 5F pop edi
+ Q1 L) h! ]0 P00403532 5E pop esi" o/ j8 E- u& S# L) D
00403533 5D pop ebp, v S' U) g" k! s+ K5 k* y" }7 _3 i
00403534 5B pop ebx) |! E; d0 s* |/ |0 C2 S
00403535 64:890D 0000000>mov dword ptr fs:[0],ecx
; _4 m' F- R% [, r; @1 X& _0 T9 _0040353C 83C4 30 add esp,308 D6 j, ~& K: z
0040353F C2 0800 retn 81 l+ k* b+ [0 T
--------------------------------------------------------------------------------/ g2 b6 p4 k7 Q. L# I
【破解总结】8 Z2 C& ?* X: f9 [
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
* A) J. Y! e) c; G用户名:yijun
{, {6 ?% `5 T" r$ I9 @* V注册码:4893*7777*3726*7777*05295 d$ a* J0 Z2 \3 c* p \- U* ~9 d
--------------------------------------------------------------------------------
1 F X5 S: @5 p" ^9 f【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡