|
|
【原创】破解Quick Screen Recorder
7 n- m7 M4 [5 l% p【破解作者】 yijun+ `9 M" c7 l% }# Q0 g. J h9 a
【作者邮箱】 [email protected]
g7 x' z& K2 B* _3 L' i% K8 q【使用工具】 OD,PEID! t- m4 q0 J, I2 f" n* B
【破解平台】 WinXP# ^* w/ t" I! P) ~, ^
【软件名称】 Quick Screen Recorder
* u% I- b: |8 Z3 K7 m7 O【下载地址】 天空
' s1 z# b) D; ]& r5 k【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
# r0 q# Z8 g8 e/ }8 m【软件大小】 540K
3 p) I$ b. A9 P1 R【加壳方式】 无
: K' C+ }- k$ a0 U! @0 t【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:); q; W" f- w! A& T& h
--------------------------------------------------------------------------------
' ^% a; ?" d, `+ j" W; ^4 z( y【破解内容】
- z% u" J5 E3 w5 N' G( ~& q8 Y7 [ PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:) @: r r6 ~& \* `5 q! q$ Z
00404C69 55 push ebp //在此下断
1 E+ \6 f z7 O9 k00404C6A 56 push esi- ^( \- G" e1 `. U% o
00404C6B 57 push edi
: [. V! j5 l4 r8 [* v- |00404C6C 8BE9 mov ebp,ecx
- Z9 U% n" b$ c4 b" F00404C6E 6A 01 push 1
1 U% v! U F& v$ ^2 [; e' D00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
- {: N% k1 m3 W! @' J. [( e" c00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]
3 U! @3 I, C2 ]) C2 U! }00404C78 8BCF mov ecx,edi! @9 R: e4 I( o0 l; x
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码% ~7 V B" g3 @ W
00404C7F 8BCF mov ecx,edi
' ]0 o& k0 B( `0 s" N00404C81 E8 A73E0200 call qsr.00428B2D
1 I7 V% I! y7 U% p00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]& D7 o& K; v$ n/ {
00404C89 8BCE mov ecx,esi4 W$ w) H4 h* V' ^5 f" p
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX9 h# o! u$ p& N/ @
00404C90 8BCE mov ecx,esi! r( P% [3 [8 l- H: u7 c+ q: L
00404C92 E8 963E0200 call qsr.00428B2D' S' a! P2 Y- J, g( n9 H) d1 V4 y
00404C97 8B06 mov eax,dword ptr ds:[esi]
' h0 B- D/ c7 ?; @6 ]00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
& M& K7 W( g3 [& c00404C9D 7D 26 jge short qsr.00404CC56 f: R- |7 d0 U+ K$ o7 J, p- F9 U
00404C9F 6A 40 push 40* I, }- [8 B: l" d! ?3 [ F
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"( y$ I- t n" m- z: Q
00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name.") A- C* Z) a# m& a1 L. k0 @( V1 g8 T) M
00404CAB 8BCD mov ecx,ebp' b: C& _! D* e a
00404CAD E8 C3840200 call qsr.0042D175
4 p# W- P( Q# X: E, O, c8 `00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
4 m& _' N0 o' l00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx! }1 E1 s% E; z2 ?/ ]# b4 t; `
00404CBD 5F pop edi# e" P! X! c1 \9 N3 k8 _+ Z
00404CBE 5E pop esi8 g9 D8 F4 B" I2 t
00404CBF 5D pop ebp
1 {$ R8 B( [/ b/ o- ^00404CC0 5B pop ebx
5 [6 y% u& R% s; J00404CC1 83C4 18 add esp,187 F) @, c: z+ _' Z' Q" a1 `: x
00404CC4 C3 retn
4 y" \& r& K& e4 o) \7 d% M' D00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
; F! h- b2 O7 r, i! p00404CC8 84C0 test al,al$ b/ a. w2 i+ U) ~+ y
00404CCA 0F85 1C010000 jnz qsr.00404DEC* O" X/ r" u3 c& ^2 v; K
00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]/ S* u1 x7 @& ^0 D, G- b
00404CD4 E8 87E3FFFF call qsr.004030606 i' ~9 j4 k' B5 C8 v7 V. W8 y ~
00404CD9 51 push ecx% E/ y8 D1 \# a) t& S
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
/ l0 h/ I6 j3 W00404CE2 8BCC mov ecx,esp a$ K, ]8 f9 t
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
$ g' w. e0 w5 y' G: H# S00404CE8 56 push esi0 D) S5 F2 ?6 R L0 A) d% K
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
8 h1 X& }9 U; U00404CEE 51 push ecx
2 ?- ^ j: O! s7 Q! J. p0 h00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1$ j+ R/ J! ] v, c3 N" E. ` Z
00404CF4 8BCC mov ecx,esp# ]1 x/ {" b# h$ \4 d0 y* D6 ]
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
! }9 j9 }, x8 u6 m+ V- Y00404CFA 57 push edi! f. L; |' p0 L' n6 I9 r
00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是03 W4 P3 a0 j! o/ X& d- X% b8 S2 l
00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
: y6 h9 t& G: j0 _' u00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0
: _) @. c; G! o% X00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~6 Z: l* k) H/ j2 ^* l- }
00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~; T5 c1 n4 [( Q( X* o
00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
. K* C8 Y) Z N$ {8 E5 B00404D12 6A 40 push 40# g B8 T. E1 \6 l" n6 Y7 N
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"8 v' I& S$ Y( X2 R9 u7 U. G# u
00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."
# E, j! M5 q+ @00404D1E 8BCD mov ecx,ebp- y. @2 _4 j0 M2 _$ E3 T: G
00404D20 E8 50840200 call qsr.0042D175
0 m, Q) j6 z& d, Z; r9 b! N00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]( Y( s8 U0 N3 Z: E6 _
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1. Q8 D2 [2 W$ ]3 m% C1 O) I
00404D31 E8 5AE3FFFF call qsr.00403090
6 _2 f! c" {5 i" P% v' f# v; [, d00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
; J" i- H0 p4 Q3 C00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx! O6 H2 D, P+ D$ u1 v
00404D41 5F pop edi
, Q1 i) C: g s1 H I% E00404D42 5E pop esi
' ?5 I- x( V* o1 C2 \00404D43 5D pop ebp
2 C& c! ^' f- B. R00404D44 5B pop ebx+ M: _% o. p! H% K
00404D45 83C4 18 add esp,18
+ S! O$ z0 C) x00404D48 C3 retn
0 J9 C% {8 T5 k3 K6 \6 ^*********************************************************************************************************************************************************
8 m3 V! z! }7 J9 b+ ]0 {7 i跟进00404D09处CALL来到:
' Z, d O0 E3 ?1 a+ Q4 ~004030A0 6A FF push -1 //一路F8下去~~~~
( W4 n; C# I9 R( J: N4 H004030A2 68 C88F4400 push qsr.00448FC8) J! e. }; p6 i; Q
004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]; D6 ~ s% m: M+ b
004030AD 50 push eax( R9 d" ?& z! W: J" u
004030AE 64:8925 0000000>mov dword ptr fs:[0],esp
. s ^4 W& G# L9 p9 C' ^004030B5 83EC 24 sub esp,24
) s; N* B/ h M004030B8 53 push ebx% O) }/ `* e0 i3 D/ i
004030B9 55 push ebp2 ~ O- w, G5 d2 ]" x4 v
004030BA 56 push esi' e: s! a& y2 C4 C
004030BB 57 push edi
9 A( y/ l0 B9 t- A. M `" g0 Y004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890". ^3 B( L( d; n& e2 n) ~8 a
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]! F: e& k& x- ~# E- z) c% o8 H. N
004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1
* a* f9 _5 m; f% a: r# M004030CD E8 27C40200 call qsr.0042F4F9
: j3 e- _" v* A0 E ~# e004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]5 |8 G7 C/ b. |: W
004030D7 894424 2C mov dword ptr ss:[esp+2C],eax" t: i6 j* q" o$ }
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]3 g* S1 M) Y0 ]/ R
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],33 A2 X; `5 L% O6 k$ O) j# m1 N
004030E4 E8 905A0200 call qsr.00428B79" t7 p# i6 C8 P1 [$ a: y% f: R9 k
004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
. ^# @) y' Q% L# s: [" f004030ED E8 3B5A0200 call qsr.00428B2D
1 j/ G! g% t' @. f9 l004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
' t, q3 [! Z# q+ t004030F6 E8 7E5A0200 call qsr.00428B791 ~5 C; o8 [3 l
004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
. T: e( @6 j5 Z; m. a: v2 n# t m, ]004030FF E8 295A0200 call qsr.00428B2D
I% M* H# L e( k00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]1 c; \0 w" B d4 M$ s, e) C
00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
6 C$ E3 B; u. Q1 Y# t5 V0040310B 83F8 02 cmp eax,2
: Z; Y. ^% `! a" v: V+ M; C9 b0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
9 d( ?7 h: g' ?+ I. c3 C5 v1 Q00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]
( k* a/ B3 j+ {% Y* N% }' v: x00403118 837A F8 18 cmp dword ptr ds:[edx-8],18
1 B8 K4 S$ y2 Q2 G2 V4 q# Y x% P" p0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳
u+ ^$ J. r: _" V; ?0 u: y' k' E$ M00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]" ?4 x' K, e: q3 P# f
00403126 6A 01 push 1
% w! p: U y8 r' T00403128 50 push eax9 l j2 [: Q$ b4 t* w) |% [. u" i+ m
00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]: T/ B. [* X. i. y
0040312D E8 C4550200 call qsr.004286F6
, ^5 t+ ?/ j$ N* E4 j0 q( w" \00403132 8B00 mov eax,dword ptr ds:[eax]1 x$ V1 e/ |) @2 Q( Y
00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
# t% Q8 N' j6 A6 _+ S! H' M8 b. C- a5 i9 A00403138 50 push eax# ^7 R) r, s/ Q7 [7 u, p. w) E
00403139 C64424 40 04 mov byte ptr ss:[esp+40],4
2 b$ |0 ?: H6 V# ?+ s6 [7 x0040313E E8 4D560200 call qsr.00428790
/ g8 G( P, S* A+ J0 Z, G00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
$ M% l6 I0 Z# a$ w6 F00403147 8BF0 mov esi,eax
) l i2 p& F) M }! e00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3! _$ t1 y0 e( K) s7 S. n0 w
0040314E E8 38C30200 call qsr.0042F48B$ Z0 L: r$ q1 L- L ]! b1 Y' f) t9 _6 }
00403153 8D46 0A lea eax,dword ptr ds:[esi+A] Z9 K8 J' j. A! m1 q5 A
00403156 B9 3E000000 mov ecx,3E9 N# A+ A/ w) V" t9 f# y
0040315B 99 cdq
3 [, M2 v E3 a3 @0040315C F7F9 idiv ecx4 ?$ ~, _6 ^) c( A
0040315E 6A 01 push 1
* f6 w/ s7 m- N6 i00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]
$ G6 _, @# g4 [/ ?& V00403164 8BF2 mov esi,edx4 Y/ v0 R- X8 ]7 l
00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
9 @$ M. H: D+ P0 {3 X1 R) M5 H0040316A 52 push edx
0 ~$ t( P9 i! p; X, S2 n ?) H9 m8 J0040316B E8 0A550200 call qsr.0042867A
! x) P8 q. C0 |% a2 N00403170 8B00 mov eax,dword ptr ds:[eax]6 j+ p. X. Y+ m) ^7 T
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
- a9 H+ T& r! ?& y00403176 50 push eax4 S0 R$ ~* m5 @5 l. ?7 F7 |
00403177 C64424 40 05 mov byte ptr ss:[esp+40],5
" S1 o) ]6 J) z5 g0040317C E8 0F560200 call qsr.00428790, [( ^/ i' T! j$ r
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
, l! e4 V! l1 i00403185 8BF8 mov edi,eax! v. a8 S/ Y$ q& T- ^
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3
% Z7 |3 W% @8 H' u% E9 {0040318C E8 FAC20200 call qsr.0042F48B6 U1 _- e9 Z8 q! `+ W1 `5 w
00403191 8D47 0A lea eax,dword ptr ds:[edi+A]( M" B$ O2 d: J
00403194 B9 3E000000 mov ecx,3E
% Y1 Q" @9 j9 V6 x1 U00403199 99 cdq
1 w) I: e, U) i1 Y8 [0040319A F7F9 idiv ecx, S/ D/ J* ?7 Q$ a3 W! r' ]
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]
+ E6 W2 b: n( m004031A1 894424 28 mov dword ptr ss:[esp+28],eax
9 `6 ^0 k4 L v' i+ a: p" N: D004031A5 8BCA mov ecx,edx
5 M' A3 l5 ?/ @4 V" W004031A7 894424 24 mov dword ptr ss:[esp+24],eax
6 ^3 {2 @* y# _4 y& N004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
# |7 e# G; ~7 m004031AF 894424 18 mov dword ptr ss:[esp+18],eax
$ j3 _0 H) I, ~004031B3 894424 14 mov dword ptr ss:[esp+14],eax
! m4 ~ r5 e* a/ G5 ?3 k004031B7 894424 10 mov dword ptr ss:[esp+10],eax
# U1 l% X5 j! P4 N004031BB 8BC1 mov eax,ecx6 y8 q: J! b7 G1 j/ a1 h- Q( k V
004031BD BF 0A000000 mov edi,0A! j* `# j2 Y' j) a1 \! m
004031C2 99 cdq2 Y" o' \: \+ F- J8 ^
004031C3 F7FF idiv edi7 o2 q& D- [( Q8 b
004031C5 8BC1 mov eax,ecx
* F# Z2 N' |% `3 p( C* E+ ]004031C7 B3 0B mov bl,0B$ W ?# Y, Q7 C* R w# w' f: I/ W
004031C9 0FAFC1 imul eax,ecx% ^* i, j3 b0 W" u8 H8 X
004031CC 8BCF mov ecx,edi
. X: Q# n7 W7 B# h3 O004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
5 [ J) i2 {' b" J* Z004031D2 52 push edx8 |1 Z ~/ ~6 }) o: D: h6 ]: L
004031D3 99 cdq
& v& B, R0 s% O! T# C8 q9 ]* ~8 z004031D4 F7F9 idiv ecx
9 G. o8 c1 d+ F' d6 n004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]
6 h- f3 b# a9 Y: S; T004031DD 2BC6 sub eax,esi
% u9 ~ m5 D& k% a4 K* P004031DF 52 push edx
/ X8 k, p9 L/ M, T9 [2 k: U004031E0 99 cdq% Z; z0 E% \( c% A: O5 y) U( j
004031E1 F7F9 idiv ecx3 h# l; K2 X) |, `8 B0 g1 Y+ {# p
004031E3 8BC6 mov eax,esi
% I9 J0 S M- R4 |: o c8 Z004031E5 52 push edx6 c i. C" n' ^' l: X6 Q, v, f
004031E6 99 cdq
% Y! n: f/ Y: D. b1 M/ |004031E7 F7F9 idiv ecx6 a) o U' f& y; ~& z
004031E9 52 push edx. x0 x: Z+ @+ l8 ^' @" j
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
7 M3 Y C# e8 _004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d" J/ y$ @" ^ r
004031F3 52 push edx; \& l' J* o: ~
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893
% H! h# B# y( g, ~2 y004031F9 83C4 18 add esp,18
) S4 @) A" d3 v1 |$ X004031FC 6A 04 push 4* p7 G8 Z( k, t1 x% ]
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]
' I% n( n" C$ V5 L/ C# K# s4 N) r00403202 6A 00 push 0
" d* x* R# D9 o: j( ]+ m4 d2 }5 Y00403204 50 push eax, j6 P8 D x' q
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
7 m+ c% a4 N# o: @) K3 K00403209 E8 D6530200 call qsr.004285E4
5 a7 l1 ~+ V, t0040320E 50 push eax
* W8 d& U. Z) Y0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]: |7 D$ I% D7 c; }3 I, p
00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C
1 C3 W2 v o/ z# E2 R00403218 E8 A7C30200 call qsr.0042F5C4
2 h6 n) R$ {2 @0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
! B Y( |5 [ X& a& v4 m* S00403221 885C24 3C mov byte ptr ss:[esp+3C],bl
& i# O! _" W. w00403225 E8 61C20200 call qsr.0042F48B
2 c" ?6 i* ~% L0040322A 6A 04 push 4 p9 t7 U7 n/ s5 J$ g
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
# c* B" c& b$ z( @# q4 S% Z00403230 6A 05 push 5- y# Q) l8 y7 @& S/ U4 P
00403232 51 push ecx
7 G+ o, ^- L- F, e0 D- M00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]% X' g( e0 l8 n) K' f. c
00403237 E8 A8530200 call qsr.004285E4% F" X; A8 F1 U4 S9 s" \7 p, \
0040323C 50 push eax* [1 x% B, b* Q5 ~! z# Q
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]0 V5 q& A; H5 {' M
00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D
9 A- `5 l7 C) J5 k: j1 {00403246 E8 79C30200 call qsr.0042F5C4
$ g# m$ H# H7 I) A( E% ~* Y! q0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]$ y. G, T" m" C. R8 d u
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl2 s. S' Z: G! z" B
00403253 E8 33C20200 call qsr.0042F48B
. p# ~2 N+ l; W: o+ Y, a00403258 6A 04 push 4
+ O: c8 r& O* _. `3 Q" |0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]- {5 {: ?: x6 }4 H
0040325E 57 push edi
+ ~% u- [1 I; n0040325F 52 push edx
9 k; H3 G0 B! m; `; }6 Y6 h00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
0 w7 z" i4 l0 ]* ]+ j: p00403264 E8 7B530200 call qsr.004285E4
) V, ~, C" z# j4 o5 V7 S00403269 50 push eax
! o0 D. C+ o9 v" t+ b0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
0 T, p I/ V# j. D6 c7 |& J0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E' r6 d5 l. p) y- Z; h
00403273 E8 4CC30200 call qsr.0042F5C4/ {! ]$ \) W/ }5 }7 P
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]- t4 ~ [ l7 L- T% T
0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl
4 J! p9 |/ Z2 m% Y00403280 E8 06C20200 call qsr.0042F48B& w9 v$ F( t+ n! ]. f
00403285 6A 04 push 4
) W9 q2 ~0 p( X+ t8 S00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
. h2 N$ w: D" J; c; @0040328B 6A 0F push 0F+ m+ V( h, }& ^" z
0040328D 50 push eax% c) C7 Y8 O- E6 E; | M
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]9 r; B5 M' y& y; Y
00403292 E8 4D530200 call qsr.004285E4
4 z$ I/ ^, J: a/ U; S, m3 j2 _00403297 50 push eax
- M% r" n l% h. Y. {4 y00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
# Y# M Y; B2 Y* Q$ {7 y0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
( _9 B$ b) f: T' Y: c/ ?, M/ N004032A1 E8 1EC30200 call qsr.0042F5C4- q8 B) C1 `9 q8 j
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
4 X* H! v/ S7 J! V1 A" F004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl k5 _- Y p3 p
004032AE E8 D8C10200 call qsr.0042F48B
4 q% @7 e0 i0 N& Y( a( _004032B3 6A 04 push 45 X% h+ I- S5 v
004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
9 ~$ I% X) j& B5 y1 A004032B9 6A 14 push 14
0 ~5 m& K! u* ~$ R004032BB 51 push ecx
+ |* p7 u; |. H: {1 n/ e) p004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]" q/ D: |4 ]: C
004032C0 E8 1F530200 call qsr.004285E4$ z: ]2 @6 W2 t* f: t3 }* B4 c
004032C5 50 push eax8 t" T$ G$ c0 D- w; m
004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
: N, ]1 C0 y4 j* v4 P# O0 y9 q004032CA C64424 40 10 mov byte ptr ss:[esp+40],10
: h+ a( J; v, b, l004032CF E8 F0C20200 call qsr.0042F5C4
) G/ Y# H8 \: l, j2 [' B4 W0 _004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
1 ^9 h) Z+ [, z3 ~+ C6 S1 R: \004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl
- Q' f% L$ o3 \5 s* P. `004032DC E8 AAC10200 call qsr.0042F48B
1 F9 h% V! {7 P7 e0 t" v004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI: \3 X, b, Q; u" U3 T& h J
004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
& B6 t% M" X8 c3 K+ O: v004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
+ c; m# a8 K* ~: T- G, f3 H% v004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL7 E1 S; L6 ^; ^3 q5 F
004032ED 8ACA mov cl,dl ; DL送CL! ~# b1 n7 o5 V5 T R0 \
004032EF 3AD3 cmp dl,bl ; DL和BL比较
% O) v$ A5 J6 A; }004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)+ o% w% N8 r/ \0 Z7 O0 t \
004032F3 84C9 test cl,cl! O/ c1 D; g' d9 @* I- r$ E% J, Y
004032F5 74 16 je short qsr.0040330D
# G. J% K; D/ \) v; o7 l, z004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL' R7 i x" g! g3 g
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL4 Z$ X0 c O4 s! f- f3 e
004032FD 8ACA mov cl,dl2 l( V) g3 C' D) |+ J* a9 L4 W
004032FF 3AD3 cmp dl,bl ; DL和BL比较
0 ]9 b3 T% f* T: \" G# U0 P3 Q9 Y/ V00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳); b: i B" R% m# t
00403303 83C0 02 add eax,2 ; EAX加2/ m' e' i0 l- x5 g, Z* }
00403306 83C6 02 add esi,2 ; ESI加2
( D. S- h6 B% ^! |2 m" M. D: I: G00403309 84C9 test cl,cl
- |- ~7 V5 Y$ P- h. t4 x* z+ O0040330B ^ 75 DC jnz short qsr.004032E9$ I }2 O" _" F5 o9 ~
0040330D 33C0 xor eax,eax
& ^$ _! b5 q+ _8 E0040330F EB 05 jmp short qsr.00403316
. x7 C3 A0 R( o) L00403311 1BC0 sbb eax,eax
8 S! b8 E$ h# Z2 V' b9 p- g4 Z1 O00403313 83D8 FF sbb eax,-1+ ~* B, ?2 h% F2 g% l$ Q$ L
00403316 85C0 test eax,eax
2 l4 s0 l0 ^5 K) h! k9 Y00403318 74 0E je short qsr.00403328# T, E) b1 H+ {
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A6 M7 m! g0 n. ^2 f- F3 }6 f6 E
0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]6 i/ D6 N4 s! r. n+ A( o
00403323 E9 F0000000 jmp qsr.00403418
9 M0 p2 y1 A; N# A- ~5 ~+ x00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX. M: t6 Q$ z" b9 i* _
0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]1 i5 t# N: }+ w5 Z, V0 @! R
00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]& [5 L" L1 g: [# j X
00403333 50 push eax
# a" V) y& ^& n$ M00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX
, C0 T- F- f$ ~9 ]" T. ]% y6 y/ R00403339 50 push eax0 Y0 a9 u7 ]" T& v8 K! D
0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX$ n7 H8 q3 m+ Y' ]
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX- O4 e# N! a. s& @5 E' v: k
00403343 83C4 04 add esp,4
& i3 `2 G0 O+ C" J) R& Y, f00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI% [, @9 f w6 g v6 j* _% G
00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]
5 D6 M. Q8 q2 t& E% U$ B! M0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]8 r( k3 I% K) \0 ~1 \! ]7 ^) K6 M
0040334F 50 push eax4 W/ \' C R, [$ W" U# A# \* f! w
00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX6 t d. F; ?8 g9 q2 u- n. v( u* C1 X
00403355 50 push eax
! d: M* p: S' @+ f! U( Y00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX; s3 H6 n, W! Q+ {, a, l8 E6 A
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX3 W8 ^9 [* I2 Z7 h" u1 k9 |7 `0 K
0040335F 83C4 04 add esp,4& O# \2 j- O2 S9 e$ w
00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI
& k1 _0 a$ v8 T. `) o) B7 r" Y00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]. h5 X7 ?; P/ F7 ^/ u* H6 P, ^
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]; n! m. {' d, k3 @0 e; @) M( t
0040336B 50 push eax) |: ^* x# Z5 s1 A$ J- a/ _
0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX, M# @; j6 Y% ]* j+ n6 t3 y
00403371 50 push eax
! R5 `, e6 Q# L8 A' X00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX
9 C$ {: r/ L- w1 k: k4 V5 r00403377 8BD8 mov ebx,eax ; EAX送EBX
+ R" {& ]$ f# r. P00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX
' K) f7 c3 @7 n# |3 _9 c/ d0040337D 83C4 04 add esp,4
- }& S) \ ?0 { v. \7 Q [. F- |00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
( L! A# z0 A. F2 V1 n1 d00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]
3 g5 h: `/ s0 l( }00403387 50 push eax0 P8 c' F* ^. g" E- O( H( ]) Z- }
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX
& ~5 n5 a1 w2 ]" y, { E6 M( C& i9 o0040338D 50 push eax+ T7 n5 E) [, u2 m0 C4 l
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX7 f4 [7 f8 J1 t% o! U
00403393 83C4 04 add esp,47 t; d- \8 c y K, G" P" |
00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]( Z( r3 b) C% V* L
0040339A 8BE8 mov ebp,eax ; EAX送EBP
, Z# b9 M8 t* |0040339C 6A FF push -1
, l" {0 ~) b X+ T4 a2 g0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX
' \/ d* O* e- w: g- }004033A3 6A FF push -11 ^" O5 b- A: j, r3 r8 v
004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
; a6 V' ?8 r* A/ n004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX) V0 k( v q* \" {* U7 R# ~
004033AE 6A FF push -1
" E' k' P$ d6 f. R! a+ `004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX
4 n! @' C f: V- Z6 Q004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX
2 d! o- e+ R6 ^' M/ L004033B9 6A FF push -1
) `+ s$ W; I+ e$ `5 a# e, w004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX, N" B4 Y' W- |; N
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX
9 ^; q/ j6 J7 c" t' A3 A004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX; c$ {' a7 x& {) y1 u
004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX! c: Z- Z' {+ u8 [5 K, p
004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX: B ]2 {0 s; Z
004033D7 D1E0 shl eax,1 ; EAX左移1位- o; a4 h) _8 T: u% e& ^3 w
004033D9 99 cdq ; EAX扩展- }* G" w& Z+ ^6 ~& s7 A5 E7 F
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中- }3 p7 ^ h4 ]3 |5 ?$ W
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
$ V) \7 j7 \6 Y# l6 H: u/ _, o- f; n004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳); R- T# u/ k. B) q% S. S# c
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A5 R0 L* c9 ~( `1 R) Y5 R5 F
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
0 D5 n/ A* M) ~7 e5 N: V2 c, a004033E9 EB 2D jmp short qsr.00403418/ L$ V2 ^8 |: l! C$ a" [( e* W1 q
004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX
" y- \* m/ `; f( ^/ c1 u; m004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2" A2 k3 b5 s* \: g; S# ]- ]
004033F7 99 cdq ; EBX扩展
7 {- J" K- v" B; H0 _# }4 o# Y004033F8 33C2 xor eax,edx ; EAX和EDX取异或
& q) P! \3 U: p, Z8 {- `004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
, F) L1 ]: K# N0 D8 Q: O004033FF 2BC2 sub eax,edx ; EAX减去EDX
- H3 ~" z' u: E9 t5 S. Z. e00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]
1 |* V) J6 O5 l00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
4 \4 V7 J6 F0 p3 e# U: A00403409 99 cdq
) D" v- `3 g5 F5 N N8 H2 f0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
- v5 t" F5 U7 f0 B+ v/ S0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX
X- {! D, L( f* G' E- n& t00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较
) g3 X+ `7 R3 d5 P r6 L00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳), T! y% v5 k- G
00403418 E8 6EC00200 call qsr.0042F48B ; * n6 D7 u$ u' W7 j) g
0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]0 `7 \, e; o! Z4 }
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9
- K. O2 K+ Y$ k. e00403426 E8 60C00200 call qsr.0042F48B0 \1 S1 U/ m4 I' F; ~ f$ W
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]3 E# ]9 Y& @$ [6 \* v* F
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8
9 W& x# D) a0 } ?6 ?, E- @9 W% S00403434 E8 52C00200 call qsr.0042F48B# p/ @: A% K4 U2 t4 K0 r3 g" m
00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]3 p$ Y: g& F- P
0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7( e! q. i0 E) |. v; _
00403442 E8 44C00200 call qsr.0042F48B3 |. g5 Y5 q9 G) Z6 |! j* [
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]- A" ^. _5 d3 {( R+ k! x
0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
4 H8 \5 |) c8 X! _' s3 K00403450 E8 36C00200 call qsr.0042F48B
5 ]" N2 x7 P Z. ~1 F9 f00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]* m2 P0 o6 R) L% |& i
00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3; K. [0 ^0 I0 @9 q/ T [
0040345E E8 28C00200 call qsr.0042F48B
; v8 r& t+ [* Q u0 K00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
0 H" ~; A$ v0 J ]7 Y6 r00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],29 ]2 p/ m8 p7 D3 K" U) Y
0040346C E8 1AC00200 call qsr.0042F48B% T, O/ c3 p3 ?' p3 `: `! N+ c
00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]9 g. {( I7 T* `7 z+ ^/ ]
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1& f# p z8 N" @! e9 c
0040347A E8 0CC00200 call qsr.0042F48B
u9 ]2 L: Y$ t0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
9 ]: M: ~2 T0 _00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
0 ~; j$ L) j. H, B' j00403488 E8 FEBF0200 call qsr.0042F48B
1 t+ ?' I! F+ R1 g0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
7 T1 Y% x t/ @& X% b( E+ P; \00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1' w3 x1 ^* V) X$ w2 |( {
00403499 E8 EDBF0200 call qsr.0042F48B
4 d6 P& d% t/ \/ H9 o' f0040349E 32C0 xor al,al ; AL清0
% W2 Z+ R( E: z0 s' H004034A0 E9 88000000 jmp qsr.0040352D
0 g* R9 p* e2 Y% f3 m, [) A004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~ c& |) T7 J, L! J+ u& |0 g( _
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
! R2 b! h, A: j( ^" n f- o004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9
0 M0 n, n$ \5 q* V+ A" K0 {004034B3 E8 D3BF0200 call qsr.0042F48B& E' b/ c! \5 H; z' `* o
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
/ |' A6 R# [+ q! e8 j/ |3 F004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8; P. x& g, }9 I; O, `' ~1 j) T
004034C1 E8 C5BF0200 call qsr.0042F48B
/ c: w: q/ I! d5 t: v2 D& |004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
: L" e2 |; ^) D1 t! s004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
" V) Q3 v" D1 s2 p% R004034CF E8 B7BF0200 call qsr.0042F48B; v+ S0 E C1 D
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
* l7 F; ~: v: B' P1 f, F004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6
: z5 ^ k' Q6 b5 A" ~( e004034DD E8 A9BF0200 call qsr.0042F48B
; O% B1 X5 [8 k3 i004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]; d: E* J# z- h' l) o
004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
% X& y6 [. ~4 G8 Z* r( z! s+ ]004034EB E8 9BBF0200 call qsr.0042F48B
6 G8 _5 O/ ^$ F$ h' g* J! K004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
, Z) f8 K% b, F7 v) i6 \& y004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2
2 I2 h3 ?* e9 X+ z004034F9 E8 8DBF0200 call qsr.0042F48B. y( F8 V2 w! I, t
004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
+ I1 [$ G* ]8 X, _; d" A00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1" Y$ g* z; f4 x: L( M# B; f0 A
00403507 E8 7FBF0200 call qsr.0042F48B5 _9 S# J& H0 l
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]* S5 V3 V8 g9 }2 ~, a; n4 E$ l9 ?" i
00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0
7 M/ u- W O2 _0 E9 n/ c, y00403515 E8 71BF0200 call qsr.0042F48B. Y0 V/ f2 a+ ^
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]3 k* `! h0 R! G' k8 i
0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
0 V% V* u* @& b" }6 x0 Z, X! {00403526 E8 60BF0200 call qsr.0042F48B
7 ^" a" v3 ]/ E% b0040352B B0 01 mov al,1
1 _3 f9 [7 ~$ U2 |6 A: z0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
" e9 n; \4 R, l5 X00403531 5F pop edi
2 {" J7 _; h! R9 b; I. H' T- T/ U; m2 `00403532 5E pop esi
) \) I( C. P6 `. T. y, J: k, c I00403533 5D pop ebp# @' q! x4 K5 H; g8 Z
00403534 5B pop ebx
( L E. `* K1 Q4 m* G' K* Z00403535 64:890D 0000000>mov dword ptr fs:[0],ecx
- {* c' v% j2 Y. V s3 y0040353C 83C4 30 add esp,30
' p) J" L) @" t# |) Z' Y0040353F C2 0800 retn 81 j8 M0 q0 Z- [3 h. [; E
--------------------------------------------------------------------------------" p3 n# L) S4 ^8 {* d
【破解总结】% j/ R- [' i5 n& ?
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
+ j" R# Y' q' C" v& T u用户名:yijun
8 Z/ I0 U7 a& _注册码:4893*7777*3726*7777*0529( L) `! S' }. {# w% _
--------------------------------------------------------------------------------2 r2 M$ I( y$ Q& Q" m, U( j p
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡