|
|
|
【原创】破解Quick Screen Recorder1 W" ?: x/ k3 J% Y* e6 k
【破解作者】 yijun" C6 }2 ~+ y F7 _/ A$ l/ L
【作者邮箱】 [email protected]+ |0 a- ]* g. p& c, O7 E5 R4 l
【使用工具】 OD,PEID2 o8 c+ a2 E( Q; |" y
【破解平台】 WinXP& R* w. `' Z. w2 Q
【软件名称】 Quick Screen Recorder! x4 o s1 W% c1 H i/ D
【下载地址】 天空
2 o$ m- F/ M% ^/ G! x5 V【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on. ( J1 M8 @. q4 |: v1 V
【软件大小】 540K
7 V& R! a; m; C# B5 V【加壳方式】 无8 U) }9 H* t+ ^! f: ]
【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)
/ N. r9 F0 U: ]5 t$ i--------------------------------------------------------------------------------" A! q" H3 G8 I
【破解内容】
: w; R- N! V) k* w1 g% B2 {( ^8 L PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
; A6 A4 {: ?, u2 F00404C69 55 push ebp //在此下断
( k$ ?3 e* P5 j3 r. A$ c00404C6A 56 push esi
: e5 f, C4 J; ~# Q% D00404C6B 57 push edi
8 t6 [) A+ W* x7 u1 z0 q# L4 E' h00404C6C 8BE9 mov ebp,ecx6 }+ X. }; S6 L; Y* ]! n& K
00404C6E 6A 01 push 1
$ W! U+ u4 Z5 P. u/ w& j3 H00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
6 x3 @$ P! t- ~' e& ~00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]7 p; W/ A; M+ l8 @ S
00404C78 8BCF mov ecx,edi
# e) H8 L% l/ X; U3 k. C00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码
% }7 I* @( J4 T00404C7F 8BCF mov ecx,edi
& ~) h; e% J+ i) \) b) z00404C81 E8 A73E0200 call qsr.00428B2D6 K" c' U0 o( I U/ j
00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
: ^6 ?. l2 S# b+ N- s! H D1 V: x00404C89 8BCE mov ecx,esi6 e3 S) k' q1 ]9 G' U3 S' E
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX4 C- [3 m; S( A: x1 @
00404C90 8BCE mov ecx,esi, R# h+ u# o1 ]/ V6 w3 o( x
00404C92 E8 963E0200 call qsr.00428B2D
- m' x d# L% {00404C97 8B06 mov eax,dword ptr ds:[esi]3 ~9 b) f1 {" ]4 G1 t7 G
00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
- B6 s0 q8 Z' f$ |) X. K00404C9D 7D 26 jge short qsr.00404CC5
" |, e8 o% D; M4 \/ Q, D4 z00404C9F 6A 40 push 40. d9 U2 q; H" j
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"3 l2 b4 p+ ^' w" x
00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."; ^% N9 M4 c8 d" X4 X
00404CAB 8BCD mov ecx,ebp3 e3 m$ ?- O! I
00404CAD E8 C3840200 call qsr.0042D175! S- X/ @# d; H9 R2 e$ z2 |( O5 |* E
00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
) h3 I* z: Z' @* e! W- b" f' C00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx
2 I* O0 f v# S u o* a. k( W00404CBD 5F pop edi
$ T+ J3 f4 \% v, P# N2 o00404CBE 5E pop esi) v# b# D( P. n2 }+ N
00404CBF 5D pop ebp; E6 s' g3 d0 U/ l7 I+ E! @5 _
00404CC0 5B pop ebx1 e* G9 m) c9 l6 e+ r; i
00404CC1 83C4 18 add esp,18! ?3 Y: v a) F' j9 h
00404CC4 C3 retn
/ s- Y j( ]+ c* p' z- c" C, q00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]) ^: p. V3 @" r5 G$ |
00404CC8 84C0 test al,al
% f! ]& p+ A" g3 d9 c/ n1 i1 b* W00404CCA 0F85 1C010000 jnz qsr.00404DEC
' d7 n" v1 p* O7 Z- [00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
5 L1 O0 e7 P+ ^9 n8 |4 j9 x00404CD4 E8 87E3FFFF call qsr.004030602 d, t! v% B# Y& n
00404CD9 51 push ecx5 G3 Z/ J: H. F# e8 c8 \7 A+ X
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
+ D( n' z5 t+ ^0 d+ Q |00404CE2 8BCC mov ecx,esp
Y2 [4 _7 z8 T y) Z00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
0 _: d1 [$ v% A4 X' N0 \00404CE8 56 push esi ]; {/ }1 Z5 R5 M5 r" Q$ a
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0" J( r9 _* n& x& k3 f/ d
00404CEE 51 push ecx
' J7 I% ~0 H2 K. N7 y t1 O3 j( t00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1
7 \+ ]1 t( a/ P00404CF4 8BCC mov ecx,esp1 J- y7 Z" ?: t
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
; u9 _% o% B$ c# g7 {" M" D00404CFA 57 push edi, r* ~, g/ Y3 D
00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0
+ m; j9 O$ L5 l% X; Z9 L00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]* _" M+ g6 S/ b5 J9 p7 s) U. G
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0
V: J7 _0 L9 _0 |& a00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~
% ?& L% f+ z% X0 b1 I; E00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~
$ O9 j5 a$ H3 D' ]% r' H% \00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
- E3 n- J4 ?. ~: W* }& b, ^00404D12 6A 40 push 40
3 L1 g, B3 b4 s$ @; N00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
* O9 M& h" t) I- y00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."
# o6 T7 H9 b5 y00404D1E 8BCD mov ecx,ebp% i7 {( X+ I: D: d! E! I: p
00404D20 E8 50840200 call qsr.0042D175" J& H. d- i6 B- R
00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]- S" x4 [* J ~6 g. R
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1+ J/ X3 y. z& f$ p9 e |1 @
00404D31 E8 5AE3FFFF call qsr.00403090
; H: l* P( D+ |00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]' A3 p" ?' p0 V/ X( h4 E
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
1 ~! Y) D% c9 j00404D41 5F pop edi
6 m6 ^: F/ M! [5 W f5 C: E00404D42 5E pop esi8 m V6 E9 S" v
00404D43 5D pop ebp
9 B+ _ n9 V j00404D44 5B pop ebx; i/ C% F( t& i% t2 d7 i6 M
00404D45 83C4 18 add esp,18
: M1 D6 |6 {7 K) a; q00404D48 C3 retn3 s9 Q& B* n* [
*********************************************************************************************************************************************************# x, \) z! ]/ t$ \: s
跟进00404D09处CALL来到:; s; Y) L1 I, @: y; e; @
004030A0 6A FF push -1 //一路F8下去~~~~
9 w0 y8 T' A8 C004030A2 68 C88F4400 push qsr.00448FC8: L" v) A2 u7 C# u' w
004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]( y7 G" u$ l3 @# p( l @
004030AD 50 push eax7 N7 ]0 v* U Z% K$ a' x) o5 c
004030AE 64:8925 0000000>mov dword ptr fs:[0],esp* J$ h7 m& V, \' ?
004030B5 83EC 24 sub esp,248 o4 D7 s- ?* U& {* r$ }$ Q
004030B8 53 push ebx
9 G" H! C7 U" A9 F6 j! w5 [, V$ T004030B9 55 push ebp
' L& O: O# @2 q% d$ u" D0 p$ L004030BA 56 push esi2 D4 o2 z9 m$ R
004030BB 57 push edi
' Y3 ?: O7 T1 o' Z! C' n) a% Z004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"
4 Q$ y( S& O6 g! i3 q! l004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
8 k5 P0 \" f+ }. d' H7 U# H004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],12 q) S, R) f0 x+ l9 C
004030CD E8 27C40200 call qsr.0042F4F9
. {3 [* ^# ?; i1 D+ u004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]2 O, y e& l! A5 P1 t
004030D7 894424 2C mov dword ptr ss:[esp+2C],eax1 A& ]% J! l. B4 P
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]6 G5 Z& b. _' G2 A; k1 a7 I3 ]! d
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],37 ]. U- A; o1 z0 T- {+ ]
004030E4 E8 905A0200 call qsr.00428B79
# k) ]/ C# ?$ h- r) Q/ q4 @004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
, P( c$ @( z8 M# ^2 `004030ED E8 3B5A0200 call qsr.00428B2D9 g( ^( \. V: k" K3 i4 |
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
" K5 i) ?/ x* h1 v4 B: g+ t, c004030F6 E8 7E5A0200 call qsr.00428B798 x2 ^8 W( [; c+ i$ n& T# l+ n
004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
4 S: h# |5 {. O. T$ q0 c004030FF E8 295A0200 call qsr.00428B2D
1 |. Q/ i& \ V7 j. y00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]
% h2 `! P( O1 ~# S3 N% r00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
" s1 d1 \5 l( L4 s0040310B 83F8 02 cmp eax,2( j6 \/ {+ C; S8 A5 ?
0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳: ?5 Y. h& h* U2 b- ]0 u/ S+ [
00403114 8B5424 44 mov edx,dword ptr ss:[esp+44] d3 T% I; Q6 e
00403118 837A F8 18 cmp dword ptr ds:[edx-8],184 v5 O" D9 T7 `
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳
9 q7 p5 d: b/ O3 E+ o' e/ M00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
) D9 @9 Q0 x0 F; e" y' |. B3 o00403126 6A 01 push 1: T8 Z; C: E7 |) g
00403128 50 push eax+ M8 u1 x: y& Q. W" Q3 c. A
00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
$ z4 b/ ~! @/ R; ~% A0040312D E8 C4550200 call qsr.004286F6$ Z2 v6 A _2 v _3 B
00403132 8B00 mov eax,dword ptr ds:[eax]
9 [2 c6 |0 J. F! @00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
+ r+ T Y: N2 n0 F5 H" b# d1 C00403138 50 push eax1 M; q' G5 d2 }# c1 d) L
00403139 C64424 40 04 mov byte ptr ss:[esp+40],4
3 U& S* w7 O: Q: o: [ P% {0040313E E8 4D560200 call qsr.00428790
$ i9 h1 e* ?$ f2 j00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
( _1 x6 D" e* w. H5 i00403147 8BF0 mov esi,eax
# b, t( ~, y1 c# y) \00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3; H- v$ ^' O1 Q# f B- d
0040314E E8 38C30200 call qsr.0042F48B
) B' ^7 P* ~: h; h1 I00403153 8D46 0A lea eax,dword ptr ds:[esi+A]+ K( N9 ^' F, `7 A2 w
00403156 B9 3E000000 mov ecx,3E
% V' e5 y9 I; `4 c0040315B 99 cdq
( y- N# z4 k# v! n& E1 z; k }0 D0040315C F7F9 idiv ecx. U* U) N R# |( G( J% C3 u
0040315E 6A 01 push 1
$ h& z3 N# G& @6 O. U3 k00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]& \3 H- i% b7 E+ c: w% `
00403164 8BF2 mov esi,edx7 {8 R1 F) p8 u% R& u* Q4 Y
00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
A. o) |* j/ ]3 @0040316A 52 push edx$ R, K* O" D6 Z/ Z1 _9 a h I* I" j
0040316B E8 0A550200 call qsr.0042867A4 Q5 d" I2 i$ k( b7 L6 U, U \' g
00403170 8B00 mov eax,dword ptr ds:[eax]
1 C% s' }8 ~9 }1 [ V, ^' y00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]& I* h, j" m. L( D6 V" ^
00403176 50 push eax
0 b# H, l2 y4 g! L00403177 C64424 40 05 mov byte ptr ss:[esp+40],5/ _: A5 |$ q* |' N8 _, C
0040317C E8 0F560200 call qsr.00428790/ \% U' s; ?# C X- }" O
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]; o X. x2 ]' T, i( n
00403185 8BF8 mov edi,eax$ h1 g, B) }7 Q9 E; \' n: P
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],36 A" q( O+ e& X. ]- Q
0040318C E8 FAC20200 call qsr.0042F48B
& N: b+ c: x% ^/ k5 Q00403191 8D47 0A lea eax,dword ptr ds:[edi+A]3 d+ ]* l2 i4 i$ a. ^! ^2 b+ y |
00403194 B9 3E000000 mov ecx,3E
4 ?! w2 z S' i8 {# c5 p00403199 99 cdq; n- P+ `- Q) x2 v* z: ]
0040319A F7F9 idiv ecx
, _& Y4 f6 D4 z7 C0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]5 j: P J A) ~2 G" F. J
004031A1 894424 28 mov dword ptr ss:[esp+28],eax( j& U# S7 a1 m
004031A5 8BCA mov ecx,edx
3 Q+ t/ y9 N! ?+ z. v; m& _004031A7 894424 24 mov dword ptr ss:[esp+24],eax
6 x! h2 ?4 |5 X# W. h& G004031AB 894424 1C mov dword ptr ss:[esp+1C],eax* ]+ c# S, f* F$ Y% C
004031AF 894424 18 mov dword ptr ss:[esp+18],eax6 u% A1 o" v6 j1 f& O9 E; A& z. D# ]
004031B3 894424 14 mov dword ptr ss:[esp+14],eax
+ o' d" J$ v! Y+ P004031B7 894424 10 mov dword ptr ss:[esp+10],eax
5 X/ q: R# Y1 o8 B; e5 |3 t004031BB 8BC1 mov eax,ecx% h h) h) I: k
004031BD BF 0A000000 mov edi,0A" Y$ v6 [/ c* X; C! z) t
004031C2 99 cdq
' B7 ]# b2 @+ I4 K. k, t004031C3 F7FF idiv edi: q% Y) U. i8 M" _* z
004031C5 8BC1 mov eax,ecx9 P6 U$ @: Z/ Q) P" H, @% s6 i; X8 N
004031C7 B3 0B mov bl,0B1 A) n7 `. t, N! a* w" {$ B- D0 s
004031C9 0FAFC1 imul eax,ecx
- u6 H: ?, K' H: K& }9 |, d& H$ s004031CC 8BCF mov ecx,edi8 `$ v9 e3 z0 I. Z& F9 ~
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
1 @: h2 x5 b8 A1 k1 U4 L3 ~004031D2 52 push edx
' V$ l' t% [& [/ I004031D3 99 cdq# A3 X+ A: u8 K. @6 ?
004031D4 F7F9 idiv ecx
8 w- E' E( b7 |# X, u004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]
7 d& D5 U. J7 _$ S" F0 j004031DD 2BC6 sub eax,esi
; I, r2 F* ?1 j N' K4 | ^* J004031DF 52 push edx
- s! ]( ^- a3 K% n$ a0 B004031E0 99 cdq
0 `; U0 o" b0 {6 e4 p: v& S004031E1 F7F9 idiv ecx9 A) F/ {% p2 G0 _# P+ X0 l: l
004031E3 8BC6 mov eax,esi
" C& t, C+ G# R004031E5 52 push edx, v) Q0 G; w1 w. W* x
004031E6 99 cdq4 w& _, f# I' t( d* S0 O
004031E7 F7F9 idiv ecx4 A: j! Z/ D/ Z. W' I
004031E9 52 push edx3 q+ U0 T4 V9 F# W9 Y
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]6 S5 z2 o, g( \$ n- O+ a8 a
004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"2 ~* w4 \1 ]2 `9 _( U# P
004031F3 52 push edx o7 @3 C. Q% @
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是48939 W: M$ X& R" M; q V
004031F9 83C4 18 add esp,18
3 j( a( B3 ]6 f# |004031FC 6A 04 push 40 E3 d) _ ?* o& w
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]+ B/ G# z; v0 r T
00403202 6A 00 push 0
' N0 q8 E$ w+ P5 p; Q& h0 O# Z00403204 50 push eax
* d4 P8 w% V6 N00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]3 t9 \6 X4 k+ ~
00403209 E8 D6530200 call qsr.004285E4' X# J; A2 L0 ^; j, c4 [% [
0040320E 50 push eax
/ T8 Q" D! [9 Q: R( i Z- a' S0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
$ a' b: Z1 l1 O% j5 g00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C
- U% g% ?' x4 l& u$ N00403218 E8 A7C30200 call qsr.0042F5C4
( i: b( s' D2 X! A0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]1 S0 J, C4 Z1 J. N
00403221 885C24 3C mov byte ptr ss:[esp+3C],bl- q3 I# R3 H H+ Z: R+ H
00403225 E8 61C20200 call qsr.0042F48B
# r5 [3 Y# s, @' Q1 t0040322A 6A 04 push 4& ~* {+ y4 |/ a# o5 U. |
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]& X) w4 R) V# p' `9 w
00403230 6A 05 push 5
, W4 g7 m8 H+ @* B& W00403232 51 push ecx- b& J# ?) F% }# B
00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
3 } T7 H0 \3 m' A00403237 E8 A8530200 call qsr.004285E4% Y9 h2 ^3 D( @* o( D1 \0 r
0040323C 50 push eax
& L0 d {% y! \ G! n0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
F V! {2 U7 ~& W. N00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D# ?; p5 w2 s- x7 A
00403246 E8 79C30200 call qsr.0042F5C48 _- t; r& n h/ f8 F$ S
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]8 K; ~( ^+ G! _' t8 W; O+ t
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl
3 U, B: s/ O6 v6 J' | h00403253 E8 33C20200 call qsr.0042F48B$ ?5 q4 _+ E5 A) A. D; o" _
00403258 6A 04 push 4
: @- T+ I1 W+ ]( v" f0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]' J( y1 b+ } |9 N( M" c, {
0040325E 57 push edi3 d' G% | r* W$ E" X, s" I1 g2 C2 g
0040325F 52 push edx2 W: q/ s) P; V2 K2 j+ N' X" X0 ^
00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
' k2 ^8 n1 z' Z5 H4 Z Y: X, a00403264 E8 7B530200 call qsr.004285E4
; T$ I8 j9 \( ?* n: M00403269 50 push eax) }0 e4 o, R* L' W& m
0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]. M* R: s% V6 S( n Z7 z
0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
& H' s3 w" K. n; w6 P+ D00403273 E8 4CC30200 call qsr.0042F5C40 d) `1 s, ]6 ^6 M
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]4 |! c# i% b( v. |% Y0 ?
0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl1 Q+ o- v4 D+ y. M/ P6 ^! b
00403280 E8 06C20200 call qsr.0042F48B
- P7 l, z# V, ^# g% |00403285 6A 04 push 46 w) d& j' r2 R2 r
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
7 g; C( L/ P( b; y m+ d0040328B 6A 0F push 0F& _" U0 F' Z5 Q6 X+ `
0040328D 50 push eax
0 @- n/ w% @5 d: }0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
7 H) f1 V" i1 E }% n00403292 E8 4D530200 call qsr.004285E4
# C8 N9 m! Q$ w: o! V- a+ e2 L00403297 50 push eax" P7 w8 N# n* ?- b
00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]6 u) I# O2 ?1 g$ x5 k' G' \
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
" @+ g5 d' w* a$ E: X004032A1 E8 1EC30200 call qsr.0042F5C47 \ ]+ {- E/ [: D5 o# q
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]/ i% l" J1 y" ~
004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl
% z; V6 t) w! S% B004032AE E8 D8C10200 call qsr.0042F48B1 J5 p/ D, P4 Z+ T
004032B3 6A 04 push 4
7 X8 \; H# M$ m004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
' N6 O) o% D( B004032B9 6A 14 push 14 ~/ Y& W2 E8 O& b' o
004032BB 51 push ecx. s; r: L! m- x. K0 E- ~$ g) w! C
004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
% C4 X% R2 H$ M: }6 p! n) i004032C0 E8 1F530200 call qsr.004285E4
' H1 `* d' Z2 Z$ F; I# P004032C5 50 push eax
) M6 C% P& b" }2 R# p' c+ z004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14], M9 Q) P. o5 ] K5 t4 p
004032CA C64424 40 10 mov byte ptr ss:[esp+40],107 e; e+ o* ~3 d
004032CF E8 F0C20200 call qsr.0042F5C4
+ S- a7 M+ Y# |' {$ s' |004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]' \. S! g, H. S' I
004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl, a) Q- }$ ]7 M" N/ O1 p* M% R# p
004032DC E8 AAC10200 call qsr.0042F48B# t' \4 P/ m0 b6 u: U- C# T
004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
7 P* f; g8 y3 F/ |9 X004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
4 r/ H ?* ?" k. c0 K+ |004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL7 K3 m, B" n; L) p
004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL
: ?& |1 l, ?" H5 Y004032ED 8ACA mov cl,dl ; DL送CL3 Z3 v1 ~# k3 K' x, Y- d3 }
004032EF 3AD3 cmp dl,bl ; DL和BL比较; Y) E; C. M }; j% K0 p
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
( F' L" D3 Z% k& \ o9 n0 u004032F3 84C9 test cl,cl
+ `- o, f, h4 t( B. ?004032F5 74 16 je short qsr.0040330D
% H8 K7 d' N/ K9 _004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL# i" ]3 {- C b3 [$ d7 E+ L; d
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL
6 \, }. X- R( g* R4 c* r004032FD 8ACA mov cl,dl9 ?' H6 m# k* Q, R( k) |
004032FF 3AD3 cmp dl,bl ; DL和BL比较
& Z4 z+ H; B, i" W3 a00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
1 y3 P- U$ m/ u: H00403303 83C0 02 add eax,2 ; EAX加2
& U3 m& I! `, [- n, Y: s8 |) ^00403306 83C6 02 add esi,2 ; ESI加2* q& w+ A" s+ y7 \, @
00403309 84C9 test cl,cl
2 O# a* X/ Q* O4 Q' K0040330B ^ 75 DC jnz short qsr.004032E9
, {. R" c6 h4 O5 Q+ s) @0040330D 33C0 xor eax,eax% u: C4 q$ O( E1 R; O# R7 o
0040330F EB 05 jmp short qsr.00403316
3 S) v% q" C3 B1 g3 N6 b00403311 1BC0 sbb eax,eax! C7 Q% w% _7 v
00403313 83D8 FF sbb eax,-11 k: h) z. p/ {& j, K4 l) R5 {; ]
00403316 85C0 test eax,eax
' D2 s: L# ]% A0 \+ }00403318 74 0E je short qsr.00403328
4 a& H2 m( M6 E0 M# w( K1 {% W0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
4 c2 w$ { |" K9 U2 \! W: P ]0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
3 L( u6 M& z5 q& F00403323 E9 F0000000 jmp qsr.00403418
. ]+ @! p1 a. D6 K3 t/ V7 A00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
4 }8 l, ]+ r( R0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
5 U1 w% n+ Z0 @: Y00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]
/ Q* q0 o0 |- e% y7 w5 v, M00403333 50 push eax
# `9 R9 G/ h$ k/ w. u- @00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX- Y; \; S' h) }0 o+ H2 M
00403339 50 push eax$ F" ^* W3 E$ o& v, M
0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX; S- Z8 }, E' o) [- Q4 q! G
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX6 Z9 l% L4 J9 a3 N# \
00403343 83C4 04 add esp,4
d) r% {8 b( K00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI( v7 ~5 `2 V T- s; w
00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8] B) e {. I1 k- }4 Q& J8 ^* X! I
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
. f1 U6 y4 N' o, f, y5 h/ Z. s( M0040334F 50 push eax. e9 a r( c8 w8 |
00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX+ G$ n+ r" F! \ }) n
00403355 50 push eax9 _+ s6 p5 P3 R. c. ^
00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX
; n$ g& a) F$ u/ l0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX9 z6 X5 B* Y+ [8 `
0040335F 83C4 04 add esp,4
+ d1 M8 j% ?" [4 a1 Y7 T00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI x3 n; A9 B$ J- r) | ~8 n$ S! E
00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
4 v- m* h/ K: J6 J2 t1 r00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]
( q+ {% `9 N ^0040336B 50 push eax2 i& O* P- `% h* N
0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX
" q1 s+ D; `/ c) Q$ B00403371 50 push eax
+ p* }8 h8 L$ j4 |+ M0 i00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX
: y, u8 B- G! y) {00403377 8BD8 mov ebx,eax ; EAX送EBX
6 ^- Z$ h O! K0 d% B00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX
& ~; t+ S1 [% I6 y, B0040337D 83C4 04 add esp,4" F; y4 W* \5 \& B
00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
/ [, B. M7 N& f8 \8 O00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]; b3 @, k L! k
00403387 50 push eax. o" u! F; \/ V# F( ]
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX
' @( }- F. ^; o& p0040338D 50 push eax, p9 O9 Z: u% j: r
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX7 S3 E/ W2 l0 D6 R, V5 `
00403393 83C4 04 add esp,4
! v1 h4 [. M; w+ S6 B00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]3 j1 J' b+ Z/ ~- F9 p- U/ Q+ ?, l
0040339A 8BE8 mov ebp,eax ; EAX送EBP( g: p: @) i0 Y- F
0040339C 6A FF push -1" Q0 V+ E% w" d ]7 {
0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX9 f: M- {0 |7 L/ n" U
004033A3 6A FF push -1. D( l' g+ X. H: A5 M) K
004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
- ~4 f: o( V! o+ A8 H* }004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
2 V2 `4 F1 K6 U9 C% [. j004033AE 6A FF push -1, ~& O& H/ n; u, V. V G
004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX
, d% g4 x2 b% O/ _8 Q9 `' g X004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX1 m" Y6 y1 j9 P% ]* `* h/ \- k
004033B9 6A FF push -1
. M& p5 R! q! G$ O Q& f0 s- m& r$ d004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX
: g B( p3 Q" l7 v. i" V5 g$ Y9 _004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX
' B4 J* t2 B. T3 A: p004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
9 K9 F- z4 X# Y004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
* y# `0 I9 e0 x! N! n0 z004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX9 f0 v3 W m: N: { D e
004033D7 D1E0 shl eax,1 ; EAX左移1位; m5 _* u4 F+ C
004033D9 99 cdq ; EAX扩展
! C% I$ E9 u5 T& r8 L& R, ]004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中 s! T$ H. b) o6 j
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
0 F8 r+ S2 c6 q" d" D" T004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)& n! F- U6 I; d$ q! j
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A
/ E: F# V2 o; c' f! ]* L8 |004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
' y& m$ w% T6 b# X0 T004033E9 EB 2D jmp short qsr.00403418
8 K0 A9 |5 I6 O# ^- l0 \# i+ L |004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX* I- u, x3 Y/ C2 P! u: Z* q
004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2
5 Q3 N# S6 y; A) ^' c# R004033F7 99 cdq ; EBX扩展
4 @! `. {' Q; k: I% A' Z1 z3 s004033F8 33C2 xor eax,edx ; EAX和EDX取异或
, ?+ |2 b# q' v( d' Q004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX2 H! x S" D% y7 E! P% r
004033FF 2BC2 sub eax,edx ; EAX减去EDX
$ F: {# g% v. O2 w# V; F00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]! @: h2 j5 y4 B {
00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
' M l) N0 W2 U1 A' `00403409 99 cdq: \: V+ O) y. n2 M6 k
0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
' q3 a' N) ]+ K& H @+ p8 b, j0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX
# h! ^- i4 |2 V0 v& C3 G |' K00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较
: H" ?1 t2 r. s1 ?00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)
* n9 X/ A4 D; |( a00403418 E8 6EC00200 call qsr.0042F48B ; 9 V( e( ~, O5 k. e
0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
: p& ~- b U* R' e: p$ X00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9( ?8 O2 q4 i. g6 i0 D6 U9 \# d, S" B
00403426 E8 60C00200 call qsr.0042F48B& k+ h$ F& S9 B" b6 Y
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]6 w i8 I2 W. F( {5 q8 T" B
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8
% f4 Y- j% o9 M7 u& Q/ R00403434 E8 52C00200 call qsr.0042F48B
8 h, C* X+ A, F' E4 @! s5 t00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
# B* ^% A. X. H9 J- Q/ k6 J0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7! m/ y( S4 P7 |2 u, ?, H
00403442 E8 44C00200 call qsr.0042F48B
5 F- d9 }2 F, a+ Z9 o00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
/ d6 o# `7 Q+ U+ Q) A0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
2 t* s- K' B- P00403450 E8 36C00200 call qsr.0042F48B
) O# y: U, t3 ?4 `: Q. p00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
9 c% I* b e+ u, [: A" A00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],36 D* j! e2 H d; B. d
0040345E E8 28C00200 call qsr.0042F48B) C2 v3 z' u* P9 P" @
00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]% R& E* ^- O% h9 J5 q
00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2$ k+ \2 f: X4 O( {0 h0 A5 R
0040346C E8 1AC00200 call qsr.0042F48B
. @& D; W# s- n0 L00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
; G- \) e7 o! P5 ~ {# M00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1
4 Q9 P- G9 y+ f8 W3 `0040347A E8 0CC00200 call qsr.0042F48B" Q8 m" j; G v8 `) N& `* @
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
3 n8 p0 z- ^6 n00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
; T6 j! ?, m. i4 D# ] f00403488 E8 FEBF0200 call qsr.0042F48B; I- a9 U3 ^& }' S& I/ X2 I- g0 d! ?
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
- x! c3 b5 @6 t5 P- ?, v00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
; ?* B; O2 j! ^! o- t9 ^% o3 `( F00403499 E8 EDBF0200 call qsr.0042F48B- K* a% _; z* Z$ t9 \3 M, L
0040349E 32C0 xor al,al ; AL清0
( s5 e* w N- y& k6 t6 E& ~004034A0 E9 88000000 jmp qsr.0040352D/ |* b$ N; ?0 E1 z
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~
( f' F$ `7 l) \& `& l004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
% E0 w5 r# g$ r9 ]: Z004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9% r" @% X0 T9 E- g D
004034B3 E8 D3BF0200 call qsr.0042F48B
1 m- W3 B: {% ]' C' p& }( q9 s& D004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
' `3 i, D8 t' j7 t% a004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
7 K4 ~7 H7 Q _3 t. z004034C1 E8 C5BF0200 call qsr.0042F48B
7 b0 ^' d6 S% B. \# i9 A( |6 s004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]2 t/ `1 g" i; ?5 ^: N* p
004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
) z, I0 R* Z6 {3 k3 u004034CF E8 B7BF0200 call qsr.0042F48B9 J1 n* m7 H4 S9 e$ p8 X
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]+ u( \* b& Z M' ~, }5 _
004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6( s: J* [1 M: S5 `) Z
004034DD E8 A9BF0200 call qsr.0042F48B
# K o v8 N! N$ A! Z3 ?( F004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]8 D! E7 t. o: _' _! i
004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
/ |1 q# o5 N# r: f004034EB E8 9BBF0200 call qsr.0042F48B# l& C0 b h: S. I
004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
8 ~' L4 ?4 @# }& o7 j/ \004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2
: G6 h1 c$ B1 i2 S004034F9 E8 8DBF0200 call qsr.0042F48B9 f, b& h* E' R8 T- N3 b+ N. v
004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]2 {- n/ ?* z- S/ z5 Y
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1: M% o9 R0 } V0 q: V2 I
00403507 E8 7FBF0200 call qsr.0042F48B
) x. L" m( R6 A- K# L) I# e. _0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]6 s% {' Z9 }; m. h! @" p2 M: j
00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0
1 `' U. e, M" i& {00403515 E8 71BF0200 call qsr.0042F48B. f5 w9 g: }$ J1 C
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]% O$ f3 q/ } e6 M e4 |
0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
% \2 a7 V# @! @+ f00403526 E8 60BF0200 call qsr.0042F48B
" o% j0 a9 h6 S D& F0040352B B0 01 mov al,1) [, q5 [* P. D4 d3 n; t
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
" C* A( \3 a2 ?" g00403531 5F pop edi' T% B+ u* H# v. d, J0 `
00403532 5E pop esi2 g6 {8 ~+ {( D" P8 A
00403533 5D pop ebp
4 Z* @- o, q, x! X% P) M00403534 5B pop ebx5 |- Q6 L3 F% P
00403535 64:890D 0000000>mov dword ptr fs:[0],ecx2 I# m& Z% n; v6 O8 G! {
0040353C 83C4 30 add esp,30
# W& \% T+ d& ~6 U1 N% w0040353F C2 0800 retn 8
) N9 e, i7 Q6 r p" Q$ f--------------------------------------------------------------------------------5 m% W0 I6 G0 A$ T0 j; e4 K5 t
【破解总结】
7 q7 Q- }) s. R @ 用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^+ ^1 O* [. q4 H# S9 l! a
用户名:yijun& y' X( G" I( B8 A
注册码:4893*7777*3726*7777*0529
% j, i2 p& G [9 r! v, a, O% a--------------------------------------------------------------------------------
) E$ s2 ]) c4 H: e& I x; l【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡