|
|
【原创】破解Quick Screen Recorder2 \& F& Z; ]) {5 l$ D/ M
【破解作者】 yijun
. W# }& {. d3 Z【作者邮箱】 [email protected]- ~8 B' a; k/ h3 Y4 [0 F, f8 t
【使用工具】 OD,PEID
- k v- }2 x( J" B& M【破解平台】 WinXP
- o' l2 ]5 T& y: K+ A( w【软件名称】 Quick Screen Recorder+ W$ ]2 R7 ^7 @4 S; r5 A1 L
【下载地址】 天空
+ B0 P/ h6 n9 \3 z+ R【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on. 0 g: S7 T/ Z8 W8 v
【软件大小】 540K8 `( [( N4 n: F
【加壳方式】 无# ?* B; D0 e. {; B( c J$ ]
【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)
3 t" Y5 D- R1 W" S# t( \--------------------------------------------------------------------------------1 k% {% D C+ f* M: K
【破解内容】
; f5 i0 [$ ~% B7 {; y PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
, c, ^+ F, K! x+ f" \! N( m- ^00404C69 55 push ebp //在此下断5 R# T) K' y! N" q. [
00404C6A 56 push esi
7 h; F7 u# t v1 d) V00404C6B 57 push edi1 L( f6 i) [2 T( V6 V. h0 G w
00404C6C 8BE9 mov ebp,ecx9 e+ ~( Q4 d& `3 Z+ W
00404C6E 6A 01 push 1
, Y: u/ g) F ^9 m: y00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名, h% S3 N3 [6 d/ G) C
00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]
3 c; k; c/ J9 \; o* s00404C78 8BCF mov ecx,edi. ~# X& T* U" ?7 h6 U' h
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码
3 W, p% W3 p4 n; O/ F00404C7F 8BCF mov ecx,edi* d/ t2 B% h+ F; S% F
00404C81 E8 A73E0200 call qsr.00428B2D
2 O# {% h' |9 r" v; G' Z00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
. X+ r3 `0 J- {- b7 ]/ h00404C89 8BCE mov ecx,esi! q$ e: | e& _& q6 Y
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX
) p( C2 {* V$ m, {( ~00404C90 8BCE mov ecx,esi
' k, T. [$ E+ U. c( s00404C92 E8 963E0200 call qsr.00428B2D
5 U. x$ d) L9 Z/ B8 b2 e% {2 T00404C97 8B06 mov eax,dword ptr ds:[esi]
+ Q9 i& q Z( B9 Y* M2 `. I9 H00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2- j$ i2 f& k6 E) J
00404C9D 7D 26 jge short qsr.00404CC5
2 f8 H& X* l& l00404C9F 6A 40 push 40$ b9 [; g2 `" X1 }' E: V( s! ^: t
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
5 |5 {" w6 T) K' z! U) X00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."! i& _& B- g6 W( G$ L
00404CAB 8BCD mov ecx,ebp
6 W+ V$ h6 G7 {' ]00404CAD E8 C3840200 call qsr.0042D175
' E, [' f. t! |1 }4 w00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]/ [" W) s& x3 R& F
00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx
% {3 V, x% u) i00404CBD 5F pop edi
# X1 [9 F: K& Z5 h00404CBE 5E pop esi0 b/ n9 ]9 V+ B3 J0 @; Q
00404CBF 5D pop ebp
7 p4 \: p! w' m* m) A8 S1 e0 ]8 y00404CC0 5B pop ebx) w, D4 \( `# d( K/ N% Q
00404CC1 83C4 18 add esp,18, f0 o- y" Y6 ?- Z
00404CC4 C3 retn: r- O( a* t' E
00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
& d6 Y3 o9 B" r. D& X00404CC8 84C0 test al,al( V8 q$ {; p7 |- R5 J* W
00404CCA 0F85 1C010000 jnz qsr.00404DEC
# x7 }9 L& ]2 F2 k$ ^00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
/ V2 w6 s# o6 f0 I$ T00404CD4 E8 87E3FFFF call qsr.00403060
5 M: g) }9 \) F5 e' G00404CD9 51 push ecx
/ z6 w. d7 [) R& |) B# ~2 o" H00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
5 M- Z" ^5 S# N5 h& q q00404CE2 8BCC mov ecx,esp
# T/ i8 g4 ?5 W6 B00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
) ?" E8 |; y" V( l) ~00404CE8 56 push esi" v$ j* u- _6 }7 K! h1 r" q6 ]
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
% g% p# C7 x6 y8 @% `: E5 C1 w2 Z" D00404CEE 51 push ecx
9 ~& W" p$ P4 T00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1; T: A& o$ Y ?! A* p$ ~2 ~; ~5 I) a8 u
00404CF4 8BCC mov ecx,esp9 @0 ~) G) z( s: ^2 j
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp, b" T) e! e8 e) G& h& b
00404CFA 57 push edi; T* {! W, t% P8 a G
00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0
- u' M9 ?$ R" r+ t0 ?/ y& i00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
' O, V3 p- p1 v: S00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0
6 M( a1 S. f. K2 e* |00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~0 K: D' y A: `' R+ K
00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~: F+ q; \0 d( ~5 T
00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
, c9 V7 E! C$ G' f) ^5 Z5 k00404D12 6A 40 push 40
+ V% u, B+ i1 J* l2 D00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"; B& }9 n5 b" j6 }1 G7 s: ?
00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."4 a# l. j( h8 ~, c7 N5 s# V
00404D1E 8BCD mov ecx,ebp
. n& h' l; {0 m( L00404D20 E8 50840200 call qsr.0042D175
) f: q. `* Y; {6 i00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]9 b1 |# s3 U" o" c$ F; j2 ~& c
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1
: v4 X5 \$ d9 m3 a" J* W. V5 V00404D31 E8 5AE3FFFF call qsr.004030907 b' u6 `; X% [% P
00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
$ F- ^9 |# \6 j& [% t00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx# c+ b- m. J& V0 o2 ~* R/ a
00404D41 5F pop edi/ m- s" u7 k" ?0 n
00404D42 5E pop esi
3 U6 f9 ^0 W( f6 r$ q9 Z00404D43 5D pop ebp
* W3 [* y! e; r" g; K00404D44 5B pop ebx
0 d; [* p; z( Z7 p00404D45 83C4 18 add esp,18
; T" w7 ^. w- x& H- ^& T! M2 P00404D48 C3 retn
/ A9 ~; n& O9 Y6 Q# a*********************************************************************************************************************************************************' }* b, {, V0 y! e6 @
跟进00404D09处CALL来到:
1 t t. x& }" E2 Q# e004030A0 6A FF push -1 //一路F8下去~~~~# b+ M0 n6 Q6 Z+ x" V: c
004030A2 68 C88F4400 push qsr.00448FC8* n% x( u( {0 t5 ` w% V3 u
004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
" I8 E- w9 q6 K! t/ t, u2 W004030AD 50 push eax
3 S0 {: C9 i6 l004030AE 64:8925 0000000>mov dword ptr fs:[0],esp
9 T9 u9 s& `$ V3 p, E6 ]' I+ w' ]004030B5 83EC 24 sub esp,24) m5 c( ~2 d+ p
004030B8 53 push ebx4 `7 a/ Q; [8 x" J# S+ J; |
004030B9 55 push ebp& O1 F7 M/ r; S) s5 R
004030BA 56 push esi
- \9 q3 T) e9 {004030BB 57 push edi
1 Y O* s$ l' |; f) A+ R7 d004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"
# q' J% `+ w' r1 m! n004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]" `* L% b! L6 a6 F# d
004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1& ~# |5 ?' \- l e! H2 c- N r
004030CD E8 27C40200 call qsr.0042F4F9
" R& w+ m% y' |$ ?9 B/ J1 k. O004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
& u3 ] b5 K& U004030D7 894424 2C mov dword ptr ss:[esp+2C],eax
6 R9 i# d% }, n8 R, ?' u004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]2 J: o7 w) c2 J' `
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
# ?* t# m H* O/ b004030E4 E8 905A0200 call qsr.00428B791 P+ F/ K2 X) s% A% t t
004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
$ I% n' {" U7 ~# B5 g2 ]2 t004030ED E8 3B5A0200 call qsr.00428B2D* w6 | c% U) P8 q" l; c
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
3 I2 _: ?7 v* r004030F6 E8 7E5A0200 call qsr.00428B79, Q* \) i, C, [
004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
3 [7 S" g# z) C1 ~004030FF E8 295A0200 call qsr.00428B2D1 ^, n I# U- }1 ^% A) k/ t
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]$ I% a3 b# T0 u& o( u( z
00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]" _( e/ N# b, E' O
0040310B 83F8 02 cmp eax,21 t* {3 ~( L; _1 S
0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
7 B0 @" {( L! F* C5 e! |% ^0 c3 o00403114 8B5424 44 mov edx,dword ptr ss:[esp+44], Z$ Z ~" ]/ T" O+ y
00403118 837A F8 18 cmp dword ptr ds:[edx-8],182 y/ J, ^9 K" A3 k8 s( Q
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳
6 R$ R9 i, I" ~2 b' E2 Q6 N1 g& t00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
# {4 C; L6 k( d00403126 6A 01 push 1+ ]0 y- x% k$ E( g! v
00403128 50 push eax
' \- E, j+ `6 a8 {00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]" I* w4 f; ~' G9 Z
0040312D E8 C4550200 call qsr.004286F63 x' K7 x! I8 {
00403132 8B00 mov eax,dword ptr ds:[eax]
; J a/ `9 M1 D! w/ a00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]# S) |! r4 O! d. w. G; Z
00403138 50 push eax* ?) R# A- }0 F+ Q5 ]1 b
00403139 C64424 40 04 mov byte ptr ss:[esp+40],4
5 p ]/ J: `% w6 n- G0040313E E8 4D560200 call qsr.00428790
2 b% K6 a" U1 w% X+ ~; R00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
8 A; Z S% T! a00403147 8BF0 mov esi,eax" C3 F& ~& k6 E( M/ b+ @; a
00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3+ Q% t* H6 D4 V$ z
0040314E E8 38C30200 call qsr.0042F48B
^5 Y/ n$ u8 i00403153 8D46 0A lea eax,dword ptr ds:[esi+A]
+ E) }: L" h% _! h5 p4 E00403156 B9 3E000000 mov ecx,3E
6 \% p' N, @& W9 _' A; e0040315B 99 cdq
- J: U3 j* u5 I" F6 ]6 H! s) M/ n0040315C F7F9 idiv ecx
5 U" C- e6 b: t- s7 V0040315E 6A 01 push 12 J K# E) _" ?& \. b9 i
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]
- h w7 I" H- v$ [+ ^/ v6 M9 r00403164 8BF2 mov esi,edx
0 z: |0 |( ^) @0 m8 _. q6 R. G00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]( m P& e5 K3 E
0040316A 52 push edx9 w8 c! G4 L4 |6 g- k
0040316B E8 0A550200 call qsr.0042867A6 k: ?/ e( I6 _, p& h! g
00403170 8B00 mov eax,dword ptr ds:[eax]
6 U9 K. j& @; ?+ ~ E1 w# ~ ~00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
_( |( }8 s5 H/ U) P) {00403176 50 push eax
" v0 ]9 N$ Z; R# l! m5 m5 C0 c! I4 q00403177 C64424 40 05 mov byte ptr ss:[esp+40],5
2 q1 v9 Q- \* W' s* y. b0040317C E8 0F560200 call qsr.004287906 \8 t7 j3 B3 V
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
2 [+ n9 w4 ]. U3 K00403185 8BF8 mov edi,eax2 ^& ^* _- u5 H. N- a7 s
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],31 e3 ^9 k" ^( T
0040318C E8 FAC20200 call qsr.0042F48B- l* x, ~' V7 J% l4 V. p+ k u
00403191 8D47 0A lea eax,dword ptr ds:[edi+A]# b* n1 y/ c" C+ b1 l; ?% u
00403194 B9 3E000000 mov ecx,3E
. m/ l3 G& M8 n. F5 D00403199 99 cdq* s5 S! n ~1 A( e" n, `* H; L! S
0040319A F7F9 idiv ecx0 |0 D' z3 I& |5 [$ a
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]6 {2 l0 R1 k5 \1 \4 D' y9 D# U
004031A1 894424 28 mov dword ptr ss:[esp+28],eax; R( K& I Y2 N. a
004031A5 8BCA mov ecx,edx
0 t' J$ M, R" }7 b! z. L004031A7 894424 24 mov dword ptr ss:[esp+24],eax( T: r* O0 p }5 B0 {' P
004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
$ s% f; @+ L# p9 h004031AF 894424 18 mov dword ptr ss:[esp+18],eax
. A! g, ?8 O, Z: _8 @004031B3 894424 14 mov dword ptr ss:[esp+14],eax
( U" m3 U( k: H2 p, F& T004031B7 894424 10 mov dword ptr ss:[esp+10],eax }2 k$ @2 v/ M( ?! y
004031BB 8BC1 mov eax,ecx: ~/ u$ k4 i; v: B$ r/ i7 {: T# n. Q( X
004031BD BF 0A000000 mov edi,0A
0 Z- k, M, q( W: l! V8 F004031C2 99 cdq6 C% e$ v! s) {* k) [) ?0 L' x3 U
004031C3 F7FF idiv edi- l* I( c6 ?7 L" H+ H% ?' C3 {
004031C5 8BC1 mov eax,ecx) K+ e! m- P8 |
004031C7 B3 0B mov bl,0B
9 _2 J8 e ~& G) d004031C9 0FAFC1 imul eax,ecx
* w9 {9 D) K3 I( ]( Q* B004031CC 8BCF mov ecx,edi1 D: V8 R9 f4 h2 g" R8 T
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl) {- }' d4 I" @) y9 H& S
004031D2 52 push edx& B* x P) {7 Q* X2 e" ^% s, ?
004031D3 99 cdq
3 N, M9 r3 H& f- a- T0 C004031D4 F7F9 idiv ecx% I7 e% J- ]7 L, ^1 m4 S
004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]! X, x- K. A2 o: j3 ^, N2 }0 V
004031DD 2BC6 sub eax,esi2 M+ y; V# Q4 G0 I
004031DF 52 push edx
" L+ e: z% N1 `( `4 j004031E0 99 cdq
8 x: c4 ]# y; C2 N% D004031E1 F7F9 idiv ecx
1 a) s' z5 f- J" p004031E3 8BC6 mov eax,esi
& e! R% K& }- N! ^! w w) v004031E5 52 push edx5 S/ b6 h7 A4 R% c" f
004031E6 99 cdq
! Y% Q! N9 f1 E, F) U1 O004031E7 F7F9 idiv ecx5 u, D5 h% E M; p& r$ \* m( u
004031E9 52 push edx9 u5 m6 g* K; x1 V* v( Z9 Q4 F7 h
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
- Y* I; I# m* M& @ r004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"5 G4 q! i: t. K2 d
004031F3 52 push edx
) C6 E8 o( _6 a1 }7 K |$ T004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893* i2 x, c& U# G8 I9 v* P0 O! T7 @
004031F9 83C4 18 add esp,18: `7 u; j0 l- x$ Y
004031FC 6A 04 push 4" h( e- z0 s8 A$ i# T
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]
/ H' p3 R& b' f' \) Y' ]00403202 6A 00 push 07 O/ Y/ {5 F D2 G3 @% m- j
00403204 50 push eax$ N n% g9 K. ?9 P; E1 X+ V8 R
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
5 f6 b' O! h; b3 V5 a0 G00403209 E8 D6530200 call qsr.004285E4
/ V, t3 G" M" s4 B$ L' X( d2 q0040320E 50 push eax
8 w. j5 _- q0 u/ V8 L4 S0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
7 F& B# D7 r. C8 T+ x4 c$ {00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C! B# q- h+ j- [) a
00403218 E8 A7C30200 call qsr.0042F5C4! j) M) d! f: Z6 d" }: I- K
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]4 i1 X4 W" M% P1 J" w8 z1 t8 D3 L* q* a
00403221 885C24 3C mov byte ptr ss:[esp+3C],bl
- h7 T7 A" K+ y0 p00403225 E8 61C20200 call qsr.0042F48B
( i, r) g1 D; ^0040322A 6A 04 push 4' P+ G" o% }3 B
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34], U# o7 t V! q" b
00403230 6A 05 push 5
5 M3 Q: S" [0 Z00403232 51 push ecx. ]) {! e. k u4 y/ j# j
00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
- X7 e8 y3 X s8 t6 x0 ^& ~4 P00403237 E8 A8530200 call qsr.004285E48 M; {) n/ {- m2 S
0040323C 50 push eax; r, ?+ C9 i+ U" e. y8 ^# q
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
7 J, Q0 g2 `3 R5 A1 @00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D
% D& ~" `9 p6 }3 B( N- z9 ]00403246 E8 79C30200 call qsr.0042F5C4! Q# e& i/ l5 _4 ~( n9 L
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]* J" j5 m& h7 F% `7 f' l" C
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl
+ f7 q* r! H: t00403253 E8 33C20200 call qsr.0042F48B
% V8 [7 S- S0 n0 y! E5 D00403258 6A 04 push 4. l7 U$ X& O9 h+ c) P1 Y7 a
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]+ @% ^0 S6 J% k, j9 ^ [
0040325E 57 push edi- Z" M2 I% l" e, Z; z8 V
0040325F 52 push edx
( K2 f. q6 p+ }2 ]! Z' F, D00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]* [. P: }2 F+ q, k
00403264 E8 7B530200 call qsr.004285E4! L, M0 s0 x" p% S" h& y2 {' m
00403269 50 push eax/ Y$ q. s9 f8 t
0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
2 L: a% C+ ^3 `8 t P4 \$ }0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
; ~% p/ b& U* k4 e: _00403273 E8 4CC30200 call qsr.0042F5C4
* G3 p K- v7 j0 [. Y! c" T% j00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]6 v X: a' v( o0 _, n5 {
0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl
* K, `! q+ u$ E! _( Z# B00403280 E8 06C20200 call qsr.0042F48B
2 [: I2 h9 d) J( i/ h: B) {' a00403285 6A 04 push 4
# V, P8 E6 b$ F; x( a& w1 }00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
, e3 B4 @- x+ s5 i0040328B 6A 0F push 0F. a+ o# \1 c" e9 X+ ~/ a
0040328D 50 push eax6 L/ [9 {' \& O" k: K* ]
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]6 t0 [! d }5 p% b: _! ]
00403292 E8 4D530200 call qsr.004285E4
" y3 b' \, ^# C I' a5 l0 A00403297 50 push eax6 S A0 B" M$ `3 o0 [$ }$ R
00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
$ X8 Z$ l" ~4 Z4 j0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
' p8 F" }% d7 n$ Z( L8 x" q004032A1 E8 1EC30200 call qsr.0042F5C4
- y1 n, ^2 g# H( w @3 i004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]( c. U0 ^ w/ w5 T4 z9 V2 C
004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl
# p' @. K( g' L1 O004032AE E8 D8C10200 call qsr.0042F48B+ c% }3 q5 d; m1 L4 P, Y- v
004032B3 6A 04 push 4 i6 k% ~- i4 u
004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
# ^+ p8 k! E r004032B9 6A 14 push 14( b ?: D8 }8 P D& ~2 F: d% g
004032BB 51 push ecx
; f4 P/ C i* i" t" E# @' T& S004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
$ [$ e+ [+ p! V- V) l# i$ @004032C0 E8 1F530200 call qsr.004285E4
1 h" }0 t9 O' U( w9 b" i. C3 g4 J004032C5 50 push eax: L9 h; c7 {+ B* a% z
004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
5 G( W$ W: t9 X5 Z004032CA C64424 40 10 mov byte ptr ss:[esp+40],10( y8 h( I# o% P3 B$ |5 A2 e% x
004032CF E8 F0C20200 call qsr.0042F5C4( H$ X, q i7 M( b2 V7 l3 a
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
9 y9 P: g5 {2 u- I% e0 |; l2 ?004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl
]* W/ {% w3 f. Y1 ?: i' [004032DC E8 AAC10200 call qsr.0042F48B+ [2 J4 h- t1 a) l/ H
004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
9 j4 ?* b1 s( b, @- S) V5 [004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX7 |, n4 H2 Q. z/ [. |" k% l0 E7 A
004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL* r8 A3 f Y _9 q
004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL1 m' T8 g! ~" o$ o5 ]
004032ED 8ACA mov cl,dl ; DL送CL7 G3 Y' v ?0 I$ Q3 I3 c
004032EF 3AD3 cmp dl,bl ; DL和BL比较
4 Y. `/ G# q# C4 D/ i004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳). R) {- Y [6 y- G2 G
004032F3 84C9 test cl,cl
0 H9 Q* F- [* {) _' I004032F5 74 16 je short qsr.0040330D7 M0 d" X# M) c& ?
004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL, R& G0 t4 U/ \$ f2 B
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL6 C: }% |0 Q: ]. x/ B/ w: K
004032FD 8ACA mov cl,dl
8 n( G k4 U! I) J8 v/ r1 d004032FF 3AD3 cmp dl,bl ; DL和BL比较
5 d5 U" W5 [; T% w00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)3 @% k' _4 Y4 `. R
00403303 83C0 02 add eax,2 ; EAX加2; d f8 x5 k: ]) i/ ]3 O" y
00403306 83C6 02 add esi,2 ; ESI加2
5 V. D2 q' {- y* f0 t) M: q T00403309 84C9 test cl,cl$ i2 c# u. W& M9 [1 |# c
0040330B ^ 75 DC jnz short qsr.004032E9' Z( G+ X& B$ s j' W. l
0040330D 33C0 xor eax,eax
" W1 M$ g; ~. A2 n, z$ ^6 n0040330F EB 05 jmp short qsr.00403316
8 c) ^0 q+ V, o/ Z5 ]00403311 1BC0 sbb eax,eax4 f. |6 F, p6 m2 Q8 E
00403313 83D8 FF sbb eax,-1
3 B# T T5 B& {- K! F% F9 H00403316 85C0 test eax,eax
0 I; n: t1 _4 c8 v0 X& {# l00403318 74 0E je short qsr.00403328
% h! p6 ]9 M8 p0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
: s% Y* p& @6 [2 U" E+ i0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]$ f L: l5 W: `1 m s+ `
00403323 E9 F0000000 jmp qsr.004034180 @# \( V6 H ^% j" ?! Y+ ~
00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
7 a2 C* a5 u2 `, D7 J. `7 W2 S- O3 |0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]8 C5 m- y* C4 I
00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]! G4 j# i! @# g2 W4 u
00403333 50 push eax
- ?' s$ G, ~0 L" Z/ Y3 y+ u00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX
' j8 A; i2 a. ~0 k# @8 A00403339 50 push eax
/ O0 q0 {7 f7 `1 t4 w8 V$ j" G0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX
5 a% n: }% T8 M4 G* G& T0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
5 b+ r# Q+ U3 Z* |" }00403343 83C4 04 add esp,4
8 Z5 r4 q' z) [7 F00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI
( G- C* L& q; j. [; n% S00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]! y: V8 l6 k# \6 g( w7 i& @* w
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]4 b/ H+ T s" F2 M; a+ S. V
0040334F 50 push eax
a( g* W: w( W) T; t- t$ M00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
8 R" l8 w$ l, ~8 K7 {00403355 50 push eax
& S& O/ q7 P$ X1 {% [00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX: K& g* ~5 N: Q# D& A* V& w
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
2 X' u% g0 I* A* Y0040335F 83C4 04 add esp,4
7 d L( r% T& j: l: L$ q) A00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI% n' {, \ |1 v* e# l! V
00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]5 L8 G% C7 l. w3 S' |( H
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]
' u, M1 P8 T% J& R6 t+ m" d0040336B 50 push eax- E! _- Y0 ]5 B$ k# v: I! i
0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX3 q' _+ F# i: R- E4 p# {' v
00403371 50 push eax4 K- V4 ]$ s& t; m$ u+ M
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX6 ^% R1 w& i& ~1 x% x! C- Z
00403377 8BD8 mov ebx,eax ; EAX送EBX/ }7 {% _, ?3 C& N# d
00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX e7 j5 {- H7 T1 g _
0040337D 83C4 04 add esp,4
2 E& @& F9 a D$ H# j- A5 l00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
9 v1 v: _; j! k$ Z: k00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]
* F. }3 z! s3 T; {8 [9 J00403387 50 push eax/ q0 |6 s, W7 i) B, Q r6 [/ C. Y
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX
2 }) ]/ }+ ^! ^0040338D 50 push eax* P- @1 \# a9 c( o: X$ S, }
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
# S/ s+ x' `% N( p/ K( |00403393 83C4 04 add esp,4
" X$ o# W' ~8 b& ~* f* T00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]' m. L% o* h2 d3 T; U
0040339A 8BE8 mov ebp,eax ; EAX送EBP
" ^( f$ x8 d E I# M0040339C 6A FF push -1' R3 q3 g$ ^ ] c
0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX
' l" Q7 Q! F/ ?$ Q5 H2 |004033A3 6A FF push -1
! m3 ~5 S- o, @0 C" P& ~004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX i1 _1 g$ B- r# D/ v! s# O
004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
8 j* B# G+ y2 `6 a0 u2 P3 g) N F004033AE 6A FF push -12 Q% x3 L+ m r" b' O {# Y
004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX: x7 | E/ h0 ]" R
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX% K' B+ `$ i/ ]# o
004033B9 6A FF push -10 v3 T( y; J# m1 k
004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX
- L; C+ v, \1 k8 O. c0 _004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX+ ~4 C" F+ Q; _/ r% n# Y- G
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX. ^2 L& c5 @. Y; u
004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
, O) T" C& d4 A) U6 h004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX, Q( I6 ?: ~; A/ e2 R3 A& O
004033D7 D1E0 shl eax,1 ; EAX左移1位
1 b: f1 F1 b4 }: l4 F' {- u$ u004033D9 99 cdq ; EAX扩展( U- e+ M# k7 k' H& R; K4 v
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中1 n+ J/ a2 L7 }$ ?/ ^, A
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
- Q+ ~# V# |0 x004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)9 X8 b& M5 z0 R: y+ H
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A
" `" f" r4 A* l( n! l004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]9 ^, }1 I* o y9 p$ D/ v
004033E9 EB 2D jmp short qsr.00403418
) c- M. t2 {8 M+ s: a9 `# H5 c004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX3 L" f; a, R2 q4 P2 g; A
004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2
. \: ^* p9 }& f/ n004033F7 99 cdq ; EBX扩展
( Z, f( [6 K6 \+ ]7 a9 w9 O. z9 a004033F8 33C2 xor eax,edx ; EAX和EDX取异或5 B# B% ]* Q$ c4 w; V+ m1 @- V0 N& ~
004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX- E9 Z1 ^+ Y5 v" e9 j
004033FF 2BC2 sub eax,edx ; EAX减去EDX
3 V9 \4 O7 W% j( U( J) I9 D! P. C00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]
& w: V& j: A5 K1 B00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX( O0 |1 O3 F5 }; ^0 I4 |0 a6 \9 O q
00403409 99 cdq
' |4 Z7 Z% n; S0 I0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中3 r0 B$ K# F' ]7 {; k
0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX' V/ w0 k- x" o6 N) a, k0 |
00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较; b6 z6 r8 r$ d) _( ~% y$ _2 l( A2 ?
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)
% E4 w% k$ v9 W00403418 E8 6EC00200 call qsr.0042F48B ;
" C& e1 `; Z; I( g7 z0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
/ ]; {( \% C1 b$ p% ?0 @* I00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9
2 w) W$ X& A% r% v) n1 c* B00403426 E8 60C00200 call qsr.0042F48B1 t" [3 T1 P+ p c3 }! `6 T
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
- G7 P" h2 y7 }9 u2 r1 x* {7 y3 q$ O0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8) k$ f; w; t# X, o- i! F# m2 p. a
00403434 E8 52C00200 call qsr.0042F48B
8 k- M9 k5 z3 b1 ^3 H00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
9 e% M: q( C; j2 R5 V' c9 {( {4 P0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7
7 E1 R. O& y* |" P! R+ ?00403442 E8 44C00200 call qsr.0042F48B
/ _. p7 ~/ @) ~+ q, W/ \! l00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
: } {' t3 m1 ^$ A6 [* q' A2 P0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6- k; X8 |! r/ W- V3 a, M
00403450 E8 36C00200 call qsr.0042F48B
, b- u- W# I, T1 l3 T, n' ?00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
|, C0 W6 b' `! W( l5 O00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3
2 S( l- \" Q& k" w$ O c0040345E E8 28C00200 call qsr.0042F48B
/ d1 C0 W0 A. E6 `00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]; S: n, y% [) Y0 B$ m/ z" q
00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
$ l0 v6 n/ @+ r0 j5 Z# H, S0040346C E8 1AC00200 call qsr.0042F48B5 h$ C- J) F$ `$ c0 g+ \
00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]9 _ }" A+ c; f5 m
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1- s- t% y1 X) z" C
0040347A E8 0CC00200 call qsr.0042F48B3 G/ q9 _6 t2 i" y6 h2 {
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]1 q7 f5 E2 K$ ]* {
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0+ M" Q9 G: F$ `6 s8 \ [8 }9 c+ k
00403488 E8 FEBF0200 call qsr.0042F48B# F Y. O! ?) J$ w+ \/ s
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]5 _$ \4 t8 r# B; T) Q3 q
00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-16 S( J3 {4 t) i* _* A" y
00403499 E8 EDBF0200 call qsr.0042F48B" z" {2 q' S9 N; t& }: t
0040349E 32C0 xor al,al ; AL清0
. P; g' W4 }0 c$ }7 `5 W6 S004034A0 E9 88000000 jmp qsr.0040352D, {) s) g. T! e. R9 L" R
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~' ?; l% c$ d; Y% l: t* {
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]0 ^7 W) _9 _/ x9 E
004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9/ M3 {0 j$ I e/ n
004034B3 E8 D3BF0200 call qsr.0042F48B" o6 b5 J2 Z. d$ D8 X0 W7 s
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]' S; y4 j, H; C4 S7 h( E# X
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
$ o7 F# v, k* z# B' J; @004034C1 E8 C5BF0200 call qsr.0042F48B
/ v( Q# _4 r2 I004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]3 S/ _& F( Z! Q. \5 a+ l: H2 C# Z( D
004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
1 P. ]/ B, O: Y3 n8 ^4 s) @, w004034CF E8 B7BF0200 call qsr.0042F48B
5 \8 [' Q7 {' o% u- }004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]2 K8 D, z& B% z8 u
004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],68 ^* ?7 z! E6 O; [1 y! d
004034DD E8 A9BF0200 call qsr.0042F48B$ ^4 R+ Q2 z" ^0 {3 F: l v
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]$ o: w0 B% _7 O0 D# h; o. L
004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
$ F% G1 K2 b/ {7 |004034EB E8 9BBF0200 call qsr.0042F48B; F3 n- g3 k3 d& r; y' N p7 s2 j% S
004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]) i, A- Y6 T: b t- I
004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2( c9 G6 e) k6 H. w' a2 j
004034F9 E8 8DBF0200 call qsr.0042F48B
" k0 R% q+ ]( U9 d0 S6 n004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
; f0 p) R; N" b" F$ H$ ~+ L% f00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1
' t8 c; P# C9 U" F" w) E+ e. J& o( ?00403507 E8 7FBF0200 call qsr.0042F48B9 r6 [* V. o4 i
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]: `$ J. n0 w( q& ?& i7 F% {
00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0% g5 g0 s: @* U6 g; @/ x8 ]. q( Q
00403515 E8 71BF0200 call qsr.0042F48B* u& o2 o5 \! M/ |7 v' s
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
7 L. |0 G5 {' {: C8 k0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1) p6 r' i. B: t; C- Z
00403526 E8 60BF0200 call qsr.0042F48B
7 g8 j& Q% v; z1 {1 D6 S/ C0040352B B0 01 mov al,1/ m& l8 U( k4 U7 H
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
, p+ s6 V: e+ v/ I6 F( L. @00403531 5F pop edi( T; l* K3 z( D' V5 [
00403532 5E pop esi
. S- Q, N% _! b; J( T& U00403533 5D pop ebp1 X r6 ]! X( b
00403534 5B pop ebx
# P, w+ m/ j: n/ e; r8 r00403535 64:890D 0000000>mov dword ptr fs:[0],ecx! L3 o$ h: m. V
0040353C 83C4 30 add esp,30- O3 }" g& `8 c% y9 n
0040353F C2 0800 retn 8- e6 s1 Z, _) X+ o7 i2 n5 n; t' f
--------------------------------------------------------------------------------
+ K2 Q- W* k) L* U0 Y, A* z, t【破解总结】) _0 L) l) r& i0 }! m
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
5 J, e0 A4 q( @$ P { h3 e用户名:yijun
' T% b& ?+ @7 H# l. b0 W注册码:4893*7777*3726*7777*0529
5 ?" J' C9 c6 V--------------------------------------------------------------------------------1 L$ w4 Z) |3 f. x6 T( ^
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡