|
|
【原创】破解Quick Screen Recorder. [. v. z5 \; d g6 u9 j6 l
【破解作者】 yijun
8 L) o" v7 L/ f: G& j$ t. T【作者邮箱】 [email protected]9 Z( U+ g2 d* u( X& d' ^" T
【使用工具】 OD,PEID; i, w5 N }3 b
【破解平台】 WinXP
7 t+ B) l5 Y R+ x+ J6 [( ~【软件名称】 Quick Screen Recorder
1 S! [2 H/ A8 ]) {; Q' k8 R! a【下载地址】 天空2 o" z5 d1 A( z
【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
8 P; t6 Y: [. M【软件大小】 540K0 R! I- j; o. O* n, Z/ X
【加壳方式】 无
% N- A& K: y" U8 O【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)
+ ~& e+ H8 W& R4 I5 s2 u--------------------------------------------------------------------------------9 ?2 N) T2 z5 h* S }
【破解内容】; r! h Y; d0 p F% H8 x
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:+ d' I- x8 f+ ?: T* ]9 Y* G
00404C69 55 push ebp //在此下断( u5 x+ B; }3 m0 ?* `
00404C6A 56 push esi Z' H$ E( b s+ v o
00404C6B 57 push edi
6 D/ ^3 f# I0 T" e' t! M00404C6C 8BE9 mov ebp,ecx
/ \0 j, p! w ~1 ^& d( q) ~00404C6E 6A 01 push 1# s4 j# H q' [' N x
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
6 _: O- X- _, w' ?00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]4 ^$ R( e8 h* j8 S$ ?+ o1 u6 R l
00404C78 8BCF mov ecx,edi% w i( Z7 I7 D) Y, p4 @8 b
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码: X" z# R" S+ v0 J+ [
00404C7F 8BCF mov ecx,edi# a3 V! i9 w- |* D# f( u
00404C81 E8 A73E0200 call qsr.00428B2D% M4 i/ f, E/ e% T6 x* r
00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]9 [' f( `7 K2 k& p. ?
00404C89 8BCE mov ecx,esi
' @- u; B7 `! l9 b& `( Y00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX
" B$ s. Q) ~5 o& Z! l; w00404C90 8BCE mov ecx,esi% q z$ V. v$ T& a
00404C92 E8 963E0200 call qsr.00428B2D {- T6 P5 ^. ]/ f: d# _
00404C97 8B06 mov eax,dword ptr ds:[esi]! {3 [3 @4 d0 A# ]
00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2' ?- D. x' y' D/ Y( S% D5 \
00404C9D 7D 26 jge short qsr.00404CC5
6 K8 y; n7 Z7 `8 l. z00404C9F 6A 40 push 40) N8 Z7 j! u3 A+ ?2 j) t
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
) ^- w+ Z7 r* y- r# X. s00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."- [/ i! P$ e: I. a* p/ P9 D
00404CAB 8BCD mov ecx,ebp: X) @! C) }6 i! F; B
00404CAD E8 C3840200 call qsr.0042D1751 {% Z0 K9 n7 ^ P
00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
+ e+ D: Z E2 `00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx
( z! o, j7 C) R/ N2 w( h' Z00404CBD 5F pop edi
% u/ R, p& g! e* j0 H1 ^* N; E00404CBE 5E pop esi
( s" A5 G& x6 w5 O- }8 i0 ~9 o00404CBF 5D pop ebp
1 D$ y0 `, A2 W. r3 L* H00404CC0 5B pop ebx% E# y! _. ?# N8 O% _
00404CC1 83C4 18 add esp,18: L6 d. C) v& c( c7 l* G
00404CC4 C3 retn5 c2 }. w, Q/ |. o, y
00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]2 }' e3 W& k) ]' h$ z
00404CC8 84C0 test al,al
2 U+ j* U6 G; ?3 _8 k. q3 B00404CCA 0F85 1C010000 jnz qsr.00404DEC
6 ?/ Y1 z5 S! V, q1 l00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]! |6 a; n: }' Q' p& S& E1 e% s
00404CD4 E8 87E3FFFF call qsr.00403060
4 a0 c% A1 M. `/ Z5 e8 K% {00404CD9 51 push ecx
+ n* K. C m9 L9 e$ X: \- l00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0& A# Z! y$ G) y7 f4 ?
00404CE2 8BCC mov ecx,esp
# o0 X& t$ y) ?4 g! Z00404CE4 896424 14 mov dword ptr ss:[esp+14],esp" g, B# O, ]; Z0 v$ N5 H4 S
00404CE8 56 push esi
5 K) p/ a( N0 L00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
X' L, u8 i' l; `% q$ [5 G00404CEE 51 push ecx
/ Q( f( L: \" E# ~/ e0 U00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1
" J# E* E. G0 k/ b2 u1 e00404CF4 8BCC mov ecx,esp! w% T$ E1 c+ c7 A
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp9 S j; o2 k! ^' C+ _
00404CFA 57 push edi0 p% W4 g; h( k2 Y, s
00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0: E& q% T! W, ~3 ]6 B, z
00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]- V: e) k9 ~% s7 [
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0! q# ?( O+ q# I2 P4 I8 m
00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~
0 Y7 \+ Q% W" Q1 x5 W00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~
' W$ f) ] a. |8 k1 o5 I$ g9 }8 D00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~# d8 y& S) {! \6 [0 m8 a% s$ E
00404D12 6A 40 push 40
6 t: s5 j$ b) T2 p( j* ^00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
! c) x7 L- V V# G# F00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."& j# P# G' j* M1 g3 C
00404D1E 8BCD mov ecx,ebp
I4 k" U5 d( _$ P00404D20 E8 50840200 call qsr.0042D175
; J* M' z4 H+ ^2 e) [00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]* y' m* F8 b% `4 Q/ E+ i0 c1 n' r8 [
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1" N- P- Q* j- T2 ^' j" d! n
00404D31 E8 5AE3FFFF call qsr.00403090( h7 @ b6 _1 ?
00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
1 J( O/ K" f: @0 T00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
% I/ |" O1 q5 h; j! j00404D41 5F pop edi' Z$ O7 O* G2 W4 E+ K6 R+ G
00404D42 5E pop esi
7 c& k; @5 f [4 _% ]# F00404D43 5D pop ebp
8 a- e% |: P$ C! S# f% V' G00404D44 5B pop ebx
2 `# j7 n" x0 B5 J00404D45 83C4 18 add esp,18. t0 C Z( P9 V/ n6 g. V6 f& U
00404D48 C3 retn
! c* P8 ?! u5 M, w' Y: T9 H: { N*********************************************************************************************************************************************************
K9 k5 u1 l w$ h( B7 H4 d& }跟进00404D09处CALL来到:
8 `+ N8 ]; S$ y# i& ?+ r004030A0 6A FF push -1 //一路F8下去~~~~
9 u Q9 k7 {! l004030A2 68 C88F4400 push qsr.00448FC8
8 @6 f0 D% c* {- S004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
+ {& ^2 ^1 p, R- R004030AD 50 push eax
/ f3 {! Q2 \5 b, }5 q) T3 R4 @004030AE 64:8925 0000000>mov dword ptr fs:[0],esp
) @! n# x/ s) v4 k! z5 t, L004030B5 83EC 24 sub esp,24
* {5 A# X8 p% D) |- g# g- d. M004030B8 53 push ebx
; p' C: A: R1 ]004030B9 55 push ebp
9 p0 i; X5 ] b( V4 o4 k004030BA 56 push esi
# {6 R2 X# [1 B* {: r004030BB 57 push edi
/ }. u5 F/ T- y+ s" x/ w004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"5 N5 t9 L/ B- q9 r
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
: L* {: F( ?. {: i* [004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1
6 _9 c- c- \/ u7 i004030CD E8 27C40200 call qsr.0042F4F9* Y* s6 \% o: y# ]; g! B
004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
7 y5 }9 f! O: Q7 @4 Y6 D004030D7 894424 2C mov dword ptr ss:[esp+2C],eax9 q. O; g6 x7 ~0 w6 |! c8 V
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
7 c/ u+ S+ d% I004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3 A1 e6 {0 [- y
004030E4 E8 905A0200 call qsr.00428B79
/ }$ i6 P g. \9 t5 |& V6 R0 k004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
% J% ?9 s% [0 X6 Z004030ED E8 3B5A0200 call qsr.00428B2D& n+ \! w8 P* k. `/ v2 Z
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]0 g; a! U$ ~% K f" n i- t
004030F6 E8 7E5A0200 call qsr.00428B79: s# G2 J' C2 }! C; _
004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
0 E5 Q/ C1 Q5 s% H004030FF E8 295A0200 call qsr.00428B2D2 B W' g& M; w6 P! t
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]9 \9 g" \4 ^ _/ q% N/ Y
00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]. B3 i/ `; Z3 A5 n8 g
0040310B 83F8 02 cmp eax,2& A' j% n7 T* I/ J* C
0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
& D$ j/ Y* f7 i6 K+ o00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]
9 |' r- r$ c* r. o6 O1 r00403118 837A F8 18 cmp dword ptr ds:[edx-8],18% m- v6 b; q- ?
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳
9 v U! w! h0 ]; q% O+ e( I00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
# I7 e6 \6 Z! W0 J00403126 6A 01 push 1
1 X4 ~/ l% h: u: A5 b00403128 50 push eax9 E( y0 e- {) [6 {7 S. q
00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
3 v! a8 E, S& C. Z9 G0040312D E8 C4550200 call qsr.004286F6
% P6 ~" T: p ^8 H00403132 8B00 mov eax,dword ptr ds:[eax]
; z" i0 s% a' E: D( f' E" n00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]( G; f; u y) @1 x( H
00403138 50 push eax
$ o- j' F' T& J3 ?: Z1 G00403139 C64424 40 04 mov byte ptr ss:[esp+40],4
0 D$ ~. i, p" {" W0040313E E8 4D560200 call qsr.00428790 X# j% f2 Q! N4 [0 t# Y
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
0 y4 D& [4 |3 c$ q00403147 8BF0 mov esi,eax
+ r$ Y t; }( f* _- T0 t. h" i00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3( m' s; [6 X; } f" K0 R1 S
0040314E E8 38C30200 call qsr.0042F48B1 O' c% `# U) T0 C
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]
a. E( H1 R( U! o0 S0 p: {00403156 B9 3E000000 mov ecx,3E' |# A! j4 I$ `3 i5 k
0040315B 99 cdq5 \% V) m# N; v/ l
0040315C F7F9 idiv ecx0 T S% B5 n. W2 ]1 D
0040315E 6A 01 push 10 o4 v! L" j1 ^& P# A0 K% }
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]# ~5 S& I. J. e; N: }
00403164 8BF2 mov esi,edx5 H1 J: x2 a* _& ]
00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
+ J, M' }9 \8 P0 Z0 E0040316A 52 push edx* i' d2 }3 |5 e _: G/ p: u
0040316B E8 0A550200 call qsr.0042867A
; B2 `# P2 x1 s# D00403170 8B00 mov eax,dword ptr ds:[eax]
4 k3 A8 f J' ` t$ D/ s2 N# b00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]5 g$ K( }2 n/ s+ u
00403176 50 push eax, u* y7 |$ @4 E1 q5 |( ^: K
00403177 C64424 40 05 mov byte ptr ss:[esp+40],5
' A0 [) T+ }7 e- B0040317C E8 0F560200 call qsr.00428790+ B) H$ H7 a" A7 k% v! D0 O6 [5 o
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
1 c- h7 I- L* S( N" o00403185 8BF8 mov edi,eax1 f& V+ W- K3 E% h0 H
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3) ~! K9 M9 u& I% W5 u+ j
0040318C E8 FAC20200 call qsr.0042F48B u% g7 a- Q- e) c! {8 |/ y2 q- h
00403191 8D47 0A lea eax,dword ptr ds:[edi+A]6 L( L% N' Z7 N! \) g; a
00403194 B9 3E000000 mov ecx,3E! C& w' \( P3 y" O& c+ N
00403199 99 cdq
8 K5 F; u0 r4 p: p6 I0040319A F7F9 idiv ecx
4 ]' i3 z9 g- I' r/ h0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]
; b+ {# w, M+ {' @. R \+ O* W004031A1 894424 28 mov dword ptr ss:[esp+28],eax
% k; y- m- N; K% b t, k' y3 S; x004031A5 8BCA mov ecx,edx
7 ~& t+ P3 L+ [004031A7 894424 24 mov dword ptr ss:[esp+24],eax0 a: Z1 G' J6 Y4 w A
004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
7 Y) p z7 Z5 }( y3 G$ n n004031AF 894424 18 mov dword ptr ss:[esp+18],eax" V" ?! K3 k( t5 w' A% W& \
004031B3 894424 14 mov dword ptr ss:[esp+14],eax: {8 c+ c: a; e* r' {( v
004031B7 894424 10 mov dword ptr ss:[esp+10],eax& p- }/ w* Q# Q; ^
004031BB 8BC1 mov eax,ecx7 m9 q# D; v5 S+ n* O
004031BD BF 0A000000 mov edi,0A
. l8 m* e+ |8 q* }9 G004031C2 99 cdq
$ `# V6 Z8 H: s004031C3 F7FF idiv edi
, p0 I/ r3 }7 d& m004031C5 8BC1 mov eax,ecx
2 k0 h( I: r' D. o! k" E004031C7 B3 0B mov bl,0B$ ?( [( a7 I; g4 e j
004031C9 0FAFC1 imul eax,ecx
/ m$ n* h; f4 \+ p004031CC 8BCF mov ecx,edi
. ^3 i8 W0 K B1 {2 D" {8 K004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
( l/ y6 }4 f) R5 o/ c, S$ m' ]; v004031D2 52 push edx
: ^: e; _5 F5 F7 |2 p& v004031D3 99 cdq
: X4 U$ Y9 v* E# E1 L$ @% m004031D4 F7F9 idiv ecx+ t* s; I$ S& {
004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]4 x' F$ [+ |0 I- I3 W% Z) d Q
004031DD 2BC6 sub eax,esi2 j* j7 r$ E9 Z9 V
004031DF 52 push edx
7 ^$ n9 F1 r0 g% f7 w. |1 g$ d004031E0 99 cdq
+ I, ?8 x9 J) a004031E1 F7F9 idiv ecx) [/ Y" b( u$ x# z, U
004031E3 8BC6 mov eax,esi: n8 Q6 z( @$ D& i
004031E5 52 push edx9 B1 }/ K; `1 V8 [; N7 d1 a2 d
004031E6 99 cdq
; {/ o7 J% q8 N" l004031E7 F7F9 idiv ecx
/ J. W; u# h) w; p% B" k004031E9 52 push edx
- ~# ~4 V. n5 K004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]9 i/ v9 A U2 R" s/ }
004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
5 `$ T! B; E; q4 v( d- s8 D004031F3 52 push edx1 a0 j7 y$ V2 b. Y: y6 w x
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893
. A) M# |7 G1 X( F004031F9 83C4 18 add esp,18! p% ^6 n- m0 A! m. F
004031FC 6A 04 push 45 e% k* B4 D3 \7 K' e' m
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]% j" ?+ r5 ~4 @; c
00403202 6A 00 push 0
8 p; \ G2 ` W2 X. X00403204 50 push eax
+ A4 {+ i+ I$ Y$ X5 z00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]6 ]3 z6 d1 c0 v
00403209 E8 D6530200 call qsr.004285E4
# G8 s- h* w' D( T& N1 D8 D _6 g0040320E 50 push eax
9 A. F" s& _9 R4 W" z+ g0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
4 w+ \; ?3 z: [00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C) t0 b/ @; h$ {; C+ u" I ?( M
00403218 E8 A7C30200 call qsr.0042F5C4/ L+ y! j9 T5 ~, e: E
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
7 N, A9 w2 t# h00403221 885C24 3C mov byte ptr ss:[esp+3C],bl& _, j$ i6 x5 ~# W2 ]
00403225 E8 61C20200 call qsr.0042F48B% p" _" O" ?" x. t* e( F
0040322A 6A 04 push 44 ` X* p; C2 g
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]4 }9 q2 i. X7 w/ U$ a; t
00403230 6A 05 push 5! i6 Y2 d3 o8 f/ S
00403232 51 push ecx
$ w, f& r2 E% q$ W4 x+ w00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]0 t6 F2 @0 W3 P8 T
00403237 E8 A8530200 call qsr.004285E4
3 X! U. l8 n4 @! X0040323C 50 push eax. j _! \1 Z& Q. C
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]% P8 ^$ U4 N, v) W( T
00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D8 _4 Z# C; S0 N" u
00403246 E8 79C30200 call qsr.0042F5C4) ?$ V4 ]+ w0 n0 Z! [& B/ P+ V
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
, U! s! }' q& ]7 E6 d% [$ O1 f0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl4 g$ e; d9 f$ F
00403253 E8 33C20200 call qsr.0042F48B' z, n7 Z3 F! G# E- i/ H
00403258 6A 04 push 4/ V2 f/ N- q9 Z" [7 {) y
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]
& t8 U( V5 C4 t- D' D" a u: z0040325E 57 push edi0 ?1 ~% _' Q* X: t) M% D0 h
0040325F 52 push edx
% Y0 G3 ^, R( B3 @( w0 s00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]4 M* @: @8 A9 z3 _& [5 y" e" P
00403264 E8 7B530200 call qsr.004285E41 E, X! E3 l+ T( A6 Y
00403269 50 push eax
# n h E" v5 w5 s. W0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
0 B1 F' x9 y3 @6 @* w4 R0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E1 X' p1 Z' N* H5 Y1 w: ~9 J. c
00403273 E8 4CC30200 call qsr.0042F5C4
% z4 U4 `0 g! J. {/ A8 j00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30] F8 O! C( J2 b$ G6 I& M5 l$ T
0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl s' c5 {) m0 D5 \
00403280 E8 06C20200 call qsr.0042F48B
& q0 g& L9 B; T' J00403285 6A 04 push 4, q* ^* A0 D" e9 t/ p* P
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
3 F+ k/ b7 C2 \2 O- Q& d# q0040328B 6A 0F push 0F o* ?& a! R# @9 @# C
0040328D 50 push eax/ N, X% s( u1 E
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
: ?) U( m. v2 w- j6 v3 u2 T00403292 E8 4D530200 call qsr.004285E4
3 i; @2 H9 n* f5 t4 r3 z8 {, p00403297 50 push eax
4 x0 W5 [& N/ J$ h* h00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
2 O8 v' a0 E5 z0 O+ D6 {0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
) @2 W& J( o- m: z004032A1 E8 1EC30200 call qsr.0042F5C4* j) `+ X; P( H% i. k
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
0 M. }' T. E7 q8 X8 T9 |004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl
+ B: d( T3 i- c; M6 d6 O) O; V004032AE E8 D8C10200 call qsr.0042F48B& a. g, j" K4 L+ R& V
004032B3 6A 04 push 4
* m) g) ^, H X/ }* O004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]9 A, U' g* b3 h+ ]6 v5 Y" E
004032B9 6A 14 push 146 r2 P0 c& L0 l# C! u4 j, o
004032BB 51 push ecx
7 b6 r; ?1 f1 Q# n004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50], d |1 r1 l& U0 i, y; a z `
004032C0 E8 1F530200 call qsr.004285E40 }$ z4 a* R" G! R' a7 v- [
004032C5 50 push eax
! }4 k1 k$ j$ {6 `7 y; B7 N% i004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
8 g1 U( D+ D3 b* ?5 E004032CA C64424 40 10 mov byte ptr ss:[esp+40],10
# k$ u9 D! L% A004032CF E8 F0C20200 call qsr.0042F5C4- u) I# S# w. X! l$ E( k& J4 |
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]# k+ Y6 K1 O# y( ?5 y1 h j
004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl
/ n# G5 q5 r1 A004032DC E8 AAC10200 call qsr.0042F48B) L1 G9 p& n# P6 @# w/ x& |. F
004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI$ ]4 U2 V2 j6 |5 s9 k" |0 I
004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
6 t2 j( S6 q% _8 }& [9 ~9 e6 o$ C004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
0 E+ T% }- }% M) c7 w/ X% q004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL/ H. }" L/ p1 {/ S( v4 V
004032ED 8ACA mov cl,dl ; DL送CL
8 k" X; g- A3 r: n7 G0 t004032EF 3AD3 cmp dl,bl ; DL和BL比较
2 K( w, ^! T' ]# M: s3 e004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
- r1 s- m, z# ^* k5 w004032F3 84C9 test cl,cl; `( U$ Q0 t# T* r
004032F5 74 16 je short qsr.0040330D
: O9 c) y* Z$ _8 K% L004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL3 Q7 F1 R- G+ L* {
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL
6 |. M( {$ S( m1 [004032FD 8ACA mov cl,dl# h( r# _1 E9 `4 X6 g1 {
004032FF 3AD3 cmp dl,bl ; DL和BL比较
/ C) h, Y% L- `. W) I00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)) M0 R" t; i( p7 j1 [
00403303 83C0 02 add eax,2 ; EAX加24 ^' E9 v" x) W/ G
00403306 83C6 02 add esi,2 ; ESI加29 }' E7 Q7 R! A, m0 A
00403309 84C9 test cl,cl
4 U; }$ [& u9 q) C! s, n0040330B ^ 75 DC jnz short qsr.004032E9% O' y' {% ^/ Q2 t" m- R. f0 E
0040330D 33C0 xor eax,eax, X e' ~3 o0 S& w- M8 T. W
0040330F EB 05 jmp short qsr.00403316' j6 p* M0 n& C5 B! r
00403311 1BC0 sbb eax,eax
. t3 P2 \4 j% _( \8 C00403313 83D8 FF sbb eax,-1
# `5 e/ R" b8 \# U00403316 85C0 test eax,eax- w! g8 u/ z0 z3 ^; C% p9 O
00403318 74 0E je short qsr.00403328: T! k) Z% \1 U
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
! I$ h7 Z- ~* t7 _: M5 _' [0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]+ B- E [/ L& h
00403323 E9 F0000000 jmp qsr.00403418
# l' u7 R% C! H( x! S5 F00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
' \" j. B1 L) M, v+ M) e0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
/ {1 R! z5 i) \1 L( T00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]6 B, v3 X8 F7 d" z; v' p7 Y4 s( c
00403333 50 push eax' m7 v; @) |( n* e: i
00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX
8 u1 }) K: S/ ^" `. k7 P' S00403339 50 push eax
3 H7 a, l) V7 c1 Y+ ~2 }8 z+ s0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX
+ ]/ }; O7 e* A" Z5 p0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
) n- Z8 v# L3 F% W5 c00403343 83C4 04 add esp,4 P$ e5 V) o8 `/ E! n
00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI
4 z6 X8 e9 Y# T6 _00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]. V( Y9 H* p8 H2 K9 H P* B
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
) \2 Q& B% Z0 B V% H0040334F 50 push eax
' T/ x4 ]8 r: }0 N# m00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
% Z1 y# |- S, t% @/ D+ E00403355 50 push eax
- G$ Z" K7 R! C00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX2 v* Z. m7 K( b F
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX8 L& e0 D( r6 o9 W% t4 p" w8 w
0040335F 83C4 04 add esp,4 I8 g# M1 G7 A) t( Q& c, g
00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI# p5 A# a$ }% Y0 A$ s, ^8 O r
00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
* U7 n; K# a7 r- I2 l: q00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]8 }3 @6 ^9 ^) t% r( L/ \
0040336B 50 push eax1 P }0 {9 A- X0 H
0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX
( O! G2 {0 q4 b, ]00403371 50 push eax. o6 Z; E6 {% t4 B3 w, e
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX6 ~8 |* B% r& t# W$ z; T: R
00403377 8BD8 mov ebx,eax ; EAX送EBX! {( M" o7 u1 {4 A+ x8 U
00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX
( u7 i- l4 O2 N" C, Q9 {! d0040337D 83C4 04 add esp,45 w2 S% N) j+ f0 j. b- V
00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]# z: c0 x/ e5 J/ k3 O( ]
00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]
. n% m& c2 s2 `* e- t- f1 f7 D6 l# {3 B00403387 50 push eax
/ H5 |% I) u/ `6 O+ m00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX, d- K" l+ A! u6 |+ w k6 N3 U
0040338D 50 push eax
8 [) @: Z2 c5 L& Y0 I0 Y8 y0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX7 V: f: x. h7 w& \" o# _
00403393 83C4 04 add esp,4; m$ s$ t9 V$ |! H i
00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
' Q* @- {3 a" u! n$ h; k0040339A 8BE8 mov ebp,eax ; EAX送EBP
; g2 T" d* R1 y! A* G0040339C 6A FF push -1
" ^1 G) j2 @2 A" h2 q0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX* X6 c" I0 O8 y4 ~+ z3 D
004033A3 6A FF push -1. |, P- [& P8 ]9 y4 z
004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
' }" p8 p I# d `004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
% ?4 ]+ G) c. H' i- j004033AE 6A FF push -1# i; F' U `8 n/ z" U
004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX( H' R3 j0 z( J5 t" |' ?$ K$ d
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX3 x- W1 |0 N! y2 B# K
004033B9 6A FF push -1+ X3 J, b, y; w% R. |
004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX
1 d0 f* ?7 I) v: r004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX
; K5 ?; n A8 x R% s5 \004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
8 U1 ?; q# Z: D2 j+ [% x004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX: Z: L8 e1 D7 l
004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX/ a7 w3 j6 ^, p% A4 X: ]1 ^6 ~1 D
004033D7 D1E0 shl eax,1 ; EAX左移1位$ W8 ?( ?+ `0 |6 D" F0 `
004033D9 99 cdq ; EAX扩展5 I( L2 `3 e8 ]! ~
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中5 w( Z( j2 p: g* D& n/ U
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较8 p$ C, Y! b3 z6 A
004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)
4 q7 k( G2 H7 b; e5 ^& O2 n% O% E004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A6 W* g7 z4 u# u
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
( J5 Y6 D9 I3 i004033E9 EB 2D jmp short qsr.00403418
' v% {/ d# }; c/ w004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX
% b$ T: Y, w( m/ n4 }3 _2 L7 z7 E004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2' a" [4 n9 |- p% R& z
004033F7 99 cdq ; EBX扩展2 t9 J9 H, K" t o: Q8 {5 {" o
004033F8 33C2 xor eax,edx ; EAX和EDX取异或
4 \- p5 v2 t) `5 G004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX3 j/ [2 n. g9 ?1 @
004033FF 2BC2 sub eax,edx ; EAX减去EDX% k( v; \$ ?$ q$ S" \1 C
00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]4 {4 _: ?3 v' _6 c
00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
; i" c" l! P0 q" Z2 F8 Z7 F0 z00403409 99 cdq
7 J3 `$ C, K$ g0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
/ e% n7 g! u8 J' k) E% X) B0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX) E/ j- a7 B. v1 d! o5 L
00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较
: U: B9 }( N7 i9 I* K- R00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)
$ G4 I s3 t* W/ `7 |2 `00403418 E8 6EC00200 call qsr.0042F48B ;
P' t. q) i* J0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]5 ]! C3 p' k2 y1 p1 T$ |
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9% e* Q! w5 o& V7 h, `
00403426 E8 60C00200 call qsr.0042F48B; j- s4 z8 ]' J( l. V
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]1 Q. C* j' Q1 i9 z2 k' h4 z
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8
% u4 }& e& {4 r. F) m0 K8 r( `00403434 E8 52C00200 call qsr.0042F48B( {; ?$ |0 T/ b3 P2 P
00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]! _+ b# L" }6 H' F! [% [
0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7
* Y" a9 T3 Y: v# q0 t& H. P00403442 E8 44C00200 call qsr.0042F48B
; L9 z! L/ U: ^" _1 D8 h00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]. n3 A1 F$ N; C
0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
# _, Q& Q0 k4 {: f; M6 U4 A- Y7 y0 T00403450 E8 36C00200 call qsr.0042F48B
/ r4 N& I5 s8 r% n. w00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]/ q Q: G' @3 G' s; p$ n* H5 T
00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],30 v' m; { ^& p/ \9 F0 i
0040345E E8 28C00200 call qsr.0042F48B
6 `: w7 a3 l& U4 m# C00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]5 [) l0 T- j; S @
00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
& W4 k9 @3 |3 |: o- @8 \0040346C E8 1AC00200 call qsr.0042F48B+ C) v) X1 ]& _
00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]; n: ^# S7 b* R# w1 W4 ?6 _
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1
( x- x7 j% S {& I# W- |4 Z& |+ L0040347A E8 0CC00200 call qsr.0042F48B& @, _8 {3 r( i
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]& n( y% n; h. V
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
* G0 S$ y/ |+ Z" X. r% D/ _00403488 E8 FEBF0200 call qsr.0042F48B
* I! w: _3 W, Y+ {3 {& M0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48], E9 |, V* h8 c4 e5 o5 P
00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-17 z8 q1 U0 T4 v
00403499 E8 EDBF0200 call qsr.0042F48B# G. C; ~. n4 X Y8 A9 P
0040349E 32C0 xor al,al ; AL清0; j4 n2 d( O) ?% Y
004034A0 E9 88000000 jmp qsr.0040352D& k0 X2 ~! |' a0 m+ J( {
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~8 C: y0 B/ R5 ~$ @; ~6 M
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]1 J$ U# e3 d8 u) a' i& K$ `
004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],94 ~* n) j) |* e8 g. ~4 I+ l) I
004034B3 E8 D3BF0200 call qsr.0042F48B
+ p. c, N$ R9 H' u004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
) c6 x: T) r, S004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
& Q: G5 O% n0 d! @$ i004034C1 E8 C5BF0200 call qsr.0042F48B
0 o& o" I( Q: R' i004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
& Y! w k0 `" C004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
3 C6 v% w) n8 z" b$ g004034CF E8 B7BF0200 call qsr.0042F48B H& o& B9 M1 |, q: h0 l' J
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
% D- v9 c- q# ?0 ]. U7 }004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6
, {) M. G& j( D0 M004034DD E8 A9BF0200 call qsr.0042F48B0 M) y; L. U" {8 L
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]. ~/ g6 ?; b1 c: p, [
004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
4 Q4 K: _) T2 z5 v/ b- ^. s; x004034EB E8 9BBF0200 call qsr.0042F48B
1 I) G* ?" B+ @$ D" J: R: m( i004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
2 q1 h/ K0 U2 |+ d/ s1 V8 p0 X004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2/ w; K6 j3 C$ Z" z) O: v" {, U R) w
004034F9 E8 8DBF0200 call qsr.0042F48B! Q$ v3 ~; I4 _& N1 G: W$ t; D' ?
004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]$ A+ m5 x* D: V3 _6 f- ?
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1: w1 d, q0 I* I3 Z* |
00403507 E8 7FBF0200 call qsr.0042F48B2 ~' G/ M, }/ r3 X% b n: ]
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]) J+ ?8 B( {* F
00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0+ a( o9 `# U/ M) I( @9 @! S: h
00403515 E8 71BF0200 call qsr.0042F48B
2 n! o4 J# r4 y0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]$ L4 A! v1 L' v- y' T- v
0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
( J; d4 S2 l4 i- I3 E/ S00403526 E8 60BF0200 call qsr.0042F48B' {- ^9 w4 I Y- p) C. p
0040352B B0 01 mov al,1
% C) ?7 f0 k s* t0 A5 y0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
9 J" o& _* T+ L# ]! P00403531 5F pop edi
1 A8 m/ e1 z" v) o3 ]/ G00403532 5E pop esi9 f: R( ]( }6 z
00403533 5D pop ebp; h. ~2 E! A7 ]" Z
00403534 5B pop ebx
4 k- G0 f6 E' {- `4 f! D; U& j4 s$ k00403535 64:890D 0000000>mov dword ptr fs:[0],ecx
: D! ]" b( V! R9 f1 u0040353C 83C4 30 add esp,30- g% A& y7 w( H; `0 {+ ]( N
0040353F C2 0800 retn 8
2 k9 k/ b4 z3 Y* g' Z* M6 f" @--------------------------------------------------------------------------------
3 b5 f3 g" l, t+ P$ E【破解总结】; q8 @* @5 C: S6 N: N3 f0 l- U' k
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^! o/ A& P! y2 C6 e( ]3 f" Y
用户名:yijun# t2 j1 a; u! `4 g. J9 {5 @
注册码:4893*7777*3726*7777*0529 S" G) v( {& g
--------------------------------------------------------------------------------; `% p( A% t6 ]2 q1 A9 [7 R
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡