|
|
|
【原创】破解Quick Screen Recorder4 s4 b* g2 \ R9 }
【破解作者】 yijun
' D1 z0 g3 @- i$ K0 U- P【作者邮箱】 [email protected]+ x2 z4 [4 n: `$ {+ }
【使用工具】 OD,PEID6 Q3 ]! Q4 a/ ^" l" g' F6 _+ D, M) |
【破解平台】 WinXP& V# I3 Q, V8 w3 q4 b h8 ~$ P6 D
【软件名称】 Quick Screen Recorder
7 Z$ V+ n5 \0 h- s7 A【下载地址】 天空1 T0 ?6 ?( P; d- y$ I, N9 b( [* S) G
【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
7 \, X" ]. O1 z" h7 b' C& S【软件大小】 540K0 u) s5 ?" r( y, N. p8 u
【加壳方式】 无
" ~0 C4 M# ?0 m4 `* a3 r【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)
; {6 T2 [- V6 }7 i$ E8 P--------------------------------------------------------------------------------
6 x, A7 u2 i& ]/ V5 a4 E- [【破解内容】
) A; E, U4 u3 T& ]& p4 y! o/ T2 U PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
, t% i( @$ t1 R( H* k00404C69 55 push ebp //在此下断" N; P6 n1 Y0 @. H' j" U. R
00404C6A 56 push esi
( G* |# ?, u8 R" M1 K$ B F00404C6B 57 push edi. N. a' N3 H5 q0 J/ i
00404C6C 8BE9 mov ebp,ecx
9 H; U+ {; L; S7 b00404C6E 6A 01 push 1
2 p3 p! N; g3 R2 `5 Y00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
. V- ^3 W1 |' Q, p/ A00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]
% |( z8 z6 E* q7 ~2 K4 r2 a00404C78 8BCF mov ecx,edi
' b9 U( D# a) M00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码
3 I, j" T) W3 v2 ~$ A: {- P3 g2 ^00404C7F 8BCF mov ecx,edi7 a. \, ^' o1 ?% ]( t( z. W% x6 w
00404C81 E8 A73E0200 call qsr.00428B2D
+ P/ m% P" u0 |! Z2 B00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
& Q, ?& @: }4 i n8 f- p00404C89 8BCE mov ecx,esi' `+ ~7 K3 X7 X0 _. J$ H v# R- l
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX
" b B1 E# X' q$ E* ~% m2 g00404C90 8BCE mov ecx,esi
+ K5 L) j$ o) v5 j00404C92 E8 963E0200 call qsr.00428B2D: J F' e) @2 Z3 C1 m
00404C97 8B06 mov eax,dword ptr ds:[esi]6 m1 v, o! Z4 B+ ^
00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
& [3 \$ p' V7 v j00404C9D 7D 26 jge short qsr.00404CC5
1 C* H+ O/ C2 {% w& y4 Q00404C9F 6A 40 push 40
# G7 A& I0 `, G: e2 x9 X. N00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"! U; d3 }( M3 B" U, I; A2 ?2 i6 A; o! w: `
00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."
/ `7 E4 H& j+ L$ t5 g) d00404CAB 8BCD mov ecx,ebp
/ [0 \6 Y) V4 d# g00404CAD E8 C3840200 call qsr.0042D175" Y/ g7 t1 z; Z( Z$ q8 C
00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
- c% _: b3 Z. r+ j00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx
. z( y! R' {8 }5 S6 Z00404CBD 5F pop edi
5 m0 ` I# N' U00404CBE 5E pop esi
- d6 H$ G* [; \- S00404CBF 5D pop ebp
1 N! u6 O3 n( {( A3 m$ f00404CC0 5B pop ebx$ J' v9 o( F# S3 g
00404CC1 83C4 18 add esp,18! M. ?/ p& n1 U4 l) v
00404CC4 C3 retn$ A) D8 q3 I7 }) a* ]9 K. Q) @3 z4 n
00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
; w* n' E9 t7 m" `$ m, H6 J. ~00404CC8 84C0 test al,al
" }+ V2 Y, f3 K% Q* N00404CCA 0F85 1C010000 jnz qsr.00404DEC! I N5 U' ~2 T1 [8 o
00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]* D! A& r, u X2 I+ s" l
00404CD4 E8 87E3FFFF call qsr.00403060
0 M- v; z+ c! a( U00404CD9 51 push ecx
" G! x4 E) K9 ~# E" y00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0+ B/ H% d4 X$ `+ I" F. \ p7 F3 J$ w
00404CE2 8BCC mov ecx,esp
: B0 o6 M6 F u' @00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
4 i1 ]- ]: r, Z1 M! j. u00404CE8 56 push esi
- Y6 \+ {& Y' J4 j0 K00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0$ {7 ~6 a, j; r4 U( i1 M7 T. ~
00404CEE 51 push ecx
/ R/ s& b- h0 x( \* p' s( X6 z00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1
r8 X- E. j2 w( z7 F: C7 n( H00404CF4 8BCC mov ecx,esp' ]- O. B' K, @& B
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
) Z7 i& s+ Z( q0 I+ w00404CFA 57 push edi
' e, H3 _" `! r8 l00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是01 m! F9 w6 @* h7 z7 ^4 |
00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C], o7 g# `+ j2 R' o& C- c
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0' d" f- o6 ?2 K0 I
00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~
/ F4 p# t, j' E9 ^4 X3 B. b00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~
7 i! k# v% p) ^ i8 | @* n5 W00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
3 H5 v# o" p: i2 o7 J; G00404D12 6A 40 push 40, m2 I1 r1 ]% o; L* A/ ?( l- o
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"8 h0 h" y- p3 u3 _
00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."; G! J/ G2 T, ~6 R3 J
00404D1E 8BCD mov ecx,ebp
2 y& n a. F* b3 a) H7 v; g6 _8 M' q( [00404D20 E8 50840200 call qsr.0042D175
, w4 l. u" G1 j" }. y( i00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]5 Y+ a9 {9 Q3 p+ O- ]- ^
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-18 m6 p% f3 d8 B2 ~" H" v
00404D31 E8 5AE3FFFF call qsr.00403090
" o; D1 I) }9 e4 G2 f00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
) r2 o9 [- A2 x00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx) U+ v) m, P' `$ m$ b
00404D41 5F pop edi% | O' Y. c/ S# e$ s( c$ n" ^; n
00404D42 5E pop esi
' n) F" Y& W: @+ A- L00404D43 5D pop ebp
4 e! X0 H7 U) L, I7 P2 h6 e00404D44 5B pop ebx
* u5 Z! z& A5 S2 z- [9 R7 U00404D45 83C4 18 add esp,181 B" `$ ^" K# |- [8 [3 J
00404D48 C3 retn- V# F; I1 `$ L; d" l5 {8 ~
*********************************************************************************************************************************************************0 P# s5 N! o# h& g: Y3 W# b0 u! V3 M
跟进00404D09处CALL来到:, ~: s3 Y- V0 |) O8 C
004030A0 6A FF push -1 //一路F8下去~~~~ j3 V3 K$ x0 G& d5 b8 i) Z/ ^6 w
004030A2 68 C88F4400 push qsr.00448FC8/ ~. W! @6 t' F; j1 ]- r
004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
0 C- ?+ V p2 l8 e S004030AD 50 push eax
/ Z% D' X" ^9 N2 R+ K* s004030AE 64:8925 0000000>mov dword ptr fs:[0],esp7 i& r# V: X9 g( H. J6 [9 K$ M
004030B5 83EC 24 sub esp,249 X, i# ~3 h# D9 m. t" j
004030B8 53 push ebx
! n: F+ r" X/ A" n# X) m9 o U004030B9 55 push ebp
- b. ^' U' R9 P3 m% ?# ?) E j004030BA 56 push esi
# e& F3 q: t' N! L$ M004030BB 57 push edi/ d- s/ }6 ~* F2 q
004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"' u% \8 D. I, e3 { ?6 n! g9 n/ I
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
# Y' K' ~- Z; ]$ a( S; S004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1
1 j! T" r- r- }8 T004030CD E8 27C40200 call qsr.0042F4F9
a& D4 h/ n4 Y: F% s004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
) B6 O0 }( G: i; R9 X. u1 e. C004030D7 894424 2C mov dword ptr ss:[esp+2C],eax& y, B6 {7 p/ p/ y" f8 I
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]3 {0 {" t! {+ [
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
+ J, s" g6 X8 }. T( T+ V+ a- T004030E4 E8 905A0200 call qsr.00428B79( [ A, K1 A% G9 A3 E$ U
004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
8 y. K' i2 s1 Z' O/ Y004030ED E8 3B5A0200 call qsr.00428B2D
4 Y* Z8 g: L. K' v004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]) R- M" f/ v, B* R) ~ d
004030F6 E8 7E5A0200 call qsr.00428B79
5 ?" R8 x1 {: L: _; l004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
; q: j. [: y; \* V: S% z2 }004030FF E8 295A0200 call qsr.00428B2D3 i: I9 E0 K% n/ D$ G
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]
* G) x: b1 y" F! \) {8 g00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]' f0 b/ y& H1 k
0040310B 83F8 02 cmp eax,2
1 A4 W8 H, y0 U' e7 ^" y0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳7 I( N! U. E* t
00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]
- x- \* G* \: U& Z0 I- K6 d00403118 837A F8 18 cmp dword ptr ds:[edx-8],183 Z, ~$ X* c6 B: L
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳% }! e$ ?2 A: f& U2 o, N
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]1 j- y+ j" b9 N" X
00403126 6A 01 push 19 i! G# I8 j$ M, r
00403128 50 push eax! k# q8 e& x. l& t4 ?% D9 N
00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
9 \% W0 v: S& v# q' n1 q) B0 \0040312D E8 C4550200 call qsr.004286F6
& t' g$ Z3 F9 U: f1 a6 Z1 J( X, d, s00403132 8B00 mov eax,dword ptr ds:[eax]
- I; S U% @3 z" a00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
8 a. P: O! K2 J! H7 p Y" f00403138 50 push eax
1 a6 D% G7 Y3 {; q5 K3 B" [( C00403139 C64424 40 04 mov byte ptr ss:[esp+40],4
7 Q, ]+ w1 A2 V" R0040313E E8 4D560200 call qsr.00428790; C7 i( g3 q. T! @& ]
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]! K6 C, P0 t% B0 }
00403147 8BF0 mov esi,eax
+ A5 _4 x3 m+ u+ H) D00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3/ g' i) V0 r( a$ ?
0040314E E8 38C30200 call qsr.0042F48B: H5 Y) u, } X2 C
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]! y" k- ~5 l- l" _0 V5 a
00403156 B9 3E000000 mov ecx,3E* A% p" }8 a3 m. j, D2 T- b
0040315B 99 cdq
6 q& v8 G4 c. w: e1 N% R2 z+ C0040315C F7F9 idiv ecx
, _5 R3 \- F8 `" L# c6 q0040315E 6A 01 push 1
& v4 i! V0 M- v- V: T00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]
8 D, a' S5 `9 n# ?$ k, z% J; F00403164 8BF2 mov esi,edx2 h: k& E$ ~8 O1 M
00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
/ r& u8 `8 K7 o- }6 X0040316A 52 push edx
) H8 `& \+ q8 ^$ C! w0040316B E8 0A550200 call qsr.0042867A' Q" ~' V$ H! z
00403170 8B00 mov eax,dword ptr ds:[eax]$ `6 l$ i: p) m, e5 i6 H' B/ g/ b& j
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
% x2 @1 F( f) W0 q0 C/ Y00403176 50 push eax/ t3 w* `& S8 M) K- R
00403177 C64424 40 05 mov byte ptr ss:[esp+40],5
3 @* Y6 D, @* e, b4 k0040317C E8 0F560200 call qsr.00428790
% ^; _2 \( v' R1 N00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
/ [8 n) F! A7 a% a5 j6 ?00403185 8BF8 mov edi,eax0 W4 q' S, s# y- {6 e' T- U3 J
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3
6 Y4 T; e n) y$ w+ g5 ^9 A0040318C E8 FAC20200 call qsr.0042F48B
; b0 Y2 y s2 c: ?( _9 t% U; N00403191 8D47 0A lea eax,dword ptr ds:[edi+A]8 ]+ t% L, z: V- {' G8 s
00403194 B9 3E000000 mov ecx,3E
3 n0 E) \" B2 g6 O0 r00403199 99 cdq+ K7 z: Z6 Y* q
0040319A F7F9 idiv ecx
$ I) @: u F! u, I( ]0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]
. R- m$ Q2 W4 P$ f, ?" L004031A1 894424 28 mov dword ptr ss:[esp+28],eax
b9 m- Q! K$ t) I/ n004031A5 8BCA mov ecx,edx
+ Y" J8 j$ {0 @8 k" O: V004031A7 894424 24 mov dword ptr ss:[esp+24],eax
" k( W1 ?% [4 a0 p' E3 `" {. n5 |# x004031AB 894424 1C mov dword ptr ss:[esp+1C],eax0 l) l" V: J+ G, U* n/ }+ T( B
004031AF 894424 18 mov dword ptr ss:[esp+18],eax |/ o% a- l) a3 E4 j! N
004031B3 894424 14 mov dword ptr ss:[esp+14],eax7 g. b( z# F! c/ y9 H
004031B7 894424 10 mov dword ptr ss:[esp+10],eax
: G% h6 t/ P# w+ I004031BB 8BC1 mov eax,ecx
* ] v( N. `! b) {8 b+ i004031BD BF 0A000000 mov edi,0A
/ E$ h9 O( Q, L- N004031C2 99 cdq
- `* m2 y8 F) _) G004031C3 F7FF idiv edi( c# X) L" U/ O2 e' |' s
004031C5 8BC1 mov eax,ecx5 a. g1 q K2 Y0 l+ f1 Q4 ~' G O( d
004031C7 B3 0B mov bl,0B3 Q, I6 W- d3 h6 H
004031C9 0FAFC1 imul eax,ecx
, ^6 u' c% o9 e. A6 b004031CC 8BCF mov ecx,edi1 K# S2 Q! P8 o# P3 _" B. x
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
) @# M/ B$ Y' O$ V7 C004031D2 52 push edx1 B; [% p( H2 o1 j2 Q/ A
004031D3 99 cdq
: i2 H( e; F' l9 f" E5 A004031D4 F7F9 idiv ecx9 w* r& n" i0 }
004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]- M, q5 a* `5 ^ \
004031DD 2BC6 sub eax,esi* o% j( h; ^- }- ?! s/ T4 J2 s
004031DF 52 push edx* ?! Y! ]7 T3 U" i9 Z. `
004031E0 99 cdq
j6 |7 ^% F9 w9 g) [6 \" u r004031E1 F7F9 idiv ecx
- Q4 G4 \4 s* \! \% p5 g004031E3 8BC6 mov eax,esi1 n" t0 H ~# t
004031E5 52 push edx; c! z; d8 W7 a U! A$ `
004031E6 99 cdq9 }3 Y! Q( h2 u( j w
004031E7 F7F9 idiv ecx
7 O h$ g7 N- n! ?, T" ?3 x. V0 v) Q004031E9 52 push edx* v% b2 p# _: O' p- ~; O0 F
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]' i$ z- M# d% x2 g& `
004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
4 s$ y/ o1 w* R- J( @004031F3 52 push edx1 e6 V, N9 ~0 R. r0 A* w
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893
0 C! Y: K' i8 Y! P) L004031F9 83C4 18 add esp,18+ t w; u z6 B+ I: F% e' r6 s
004031FC 6A 04 push 48 z' e7 M1 r# v/ C1 _( k
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]% ?! A% |) x, r2 g+ a9 ?
00403202 6A 00 push 0
1 [) j+ d6 G/ w4 N: Z0 k5 O) u& a00403204 50 push eax* {/ Q8 G% O- n; D! [5 `
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
" \5 _; ~) |0 d' v& g00403209 E8 D6530200 call qsr.004285E4# c, I7 F+ Y' J( Z# A
0040320E 50 push eax# H% k. X4 O3 _
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
g: o& U7 h- Q* l8 R00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C3 h& ]. `* c/ k: a: v. z
00403218 E8 A7C30200 call qsr.0042F5C4% S3 H/ B, f1 U
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]" w2 o( [5 O; E' d; ^) J2 V
00403221 885C24 3C mov byte ptr ss:[esp+3C],bl
4 J' x' c( A# Y, W* }3 z& g" y* @00403225 E8 61C20200 call qsr.0042F48B" B8 g$ Z/ ^. V" b) w
0040322A 6A 04 push 4
; z& i) d& ~. V' r0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
& v) \9 w7 S6 [$ t7 Z; p00403230 6A 05 push 5
5 |& j/ Z7 |% A% E00403232 51 push ecx. z2 f7 I$ j0 U- t' \
00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
0 B- K t! z+ |) g6 L! P* ^* R00403237 E8 A8530200 call qsr.004285E44 o1 E j; Q2 M0 i
0040323C 50 push eax
1 [. [ z. ^$ j5 H2 d" M; ^0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]: K& I% B R& p8 t; w8 l
00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D4 [' a8 e; W+ N
00403246 E8 79C30200 call qsr.0042F5C4
9 I* J0 _7 U9 e% Z% S* L6 U6 W& R0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]2 K" [. H) X0 f5 i( x
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl9 j9 v7 \4 v! T9 E
00403253 E8 33C20200 call qsr.0042F48B9 g0 C& t3 D2 t- _- }9 T
00403258 6A 04 push 4
" m' ~4 B: Z" g. N# C, q$ H+ [1 b0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]
8 T0 k2 {; z& V' k% @0040325E 57 push edi
) D2 ~& v9 ^) i: E# w0 [4 V) k. C5 I0040325F 52 push edx9 B" |; m9 l9 |. [' C+ S# m
00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
$ M, S- J; A! ~4 x& U00403264 E8 7B530200 call qsr.004285E4# [- F7 z8 t" }/ d
00403269 50 push eax
7 i* `! M! T K. f1 Y) ?% c0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]2 r3 r9 ]' z% L7 ^; ~9 S
0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
" U- O1 ]4 ]( q' _9 m; \+ z00403273 E8 4CC30200 call qsr.0042F5C4
/ p( H" B- A8 f2 L" A00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
# A3 l/ _& G4 d- E$ s9 o0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl- I# k/ {; L8 X+ {
00403280 E8 06C20200 call qsr.0042F48B3 `5 \ c' X6 B$ z1 i
00403285 6A 04 push 4
9 s" B B; r3 E1 N! s% r% e% a5 y00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]) O& `/ _( B q; Z7 @8 F% }
0040328B 6A 0F push 0F5 _2 u0 I5 [1 _! K
0040328D 50 push eax7 `+ Z2 S/ V6 @$ l
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
' n' V2 ^: i8 y+ k, Y; X: v8 f00403292 E8 4D530200 call qsr.004285E41 r( r5 Z& V) n) |3 Z0 v
00403297 50 push eax
7 G! s3 X d7 z, \2 b' c. e00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
5 }' a7 E3 _ T' _. b0 A$ X0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
" T P9 D; p6 ~" w! e004032A1 E8 1EC30200 call qsr.0042F5C4
; C& n! E# i8 @9 H& b2 I& G6 E2 @004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]) S- i, I2 T M: h1 {$ i9 T
004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl4 T9 o+ m2 A# j( d9 c' k. a: F
004032AE E8 D8C10200 call qsr.0042F48B
- ]2 n! Y. M6 |2 [4 G- V004032B3 6A 04 push 4
8 V. w( z! ]) y: l! `3 q7 S' r004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]. ~& Z) o$ z+ [9 c5 c2 ^. s% |
004032B9 6A 14 push 14
0 G5 B( ?! q% n$ D7 [004032BB 51 push ecx
, e) t$ L% v; N004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]6 m! N% M- X5 }4 ?
004032C0 E8 1F530200 call qsr.004285E41 A9 x- u5 D$ h- Y! E2 N3 T
004032C5 50 push eax
6 _1 K+ J/ `- c0 _6 [6 \004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
, m: s2 g2 P& m' ^' p+ E004032CA C64424 40 10 mov byte ptr ss:[esp+40],105 g: y" E% H3 E% |" Y
004032CF E8 F0C20200 call qsr.0042F5C41 c' C# A6 Y& C4 o8 e+ y
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
2 G. ~" `& A- h004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl
2 E' D* Z) Z& N" V# z+ O004032DC E8 AAC10200 call qsr.0042F48B
$ W1 ~/ ~) `+ [) o( b4 _004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI* ?4 ~* p6 G5 [
004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
3 T" p9 w, I) I& ?/ R8 [3 G$ c, T004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL; z2 |* f' u6 u' h
004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL
- F7 ?6 h! A6 {* Y0 |004032ED 8ACA mov cl,dl ; DL送CL/ ?3 S& N9 P2 Y, _
004032EF 3AD3 cmp dl,bl ; DL和BL比较! e! @/ T" @! |3 ~. g# D$ R# c) R. V
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
. r- A1 v& P6 n6 L" k004032F3 84C9 test cl,cl
; g* @) @- k, L+ j004032F5 74 16 je short qsr.0040330D
V" n) a" M. _004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL
8 b/ l; P L& @# |; U004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL
. C( f. O5 L/ |% g E; x2 f. a004032FD 8ACA mov cl,dl8 ^1 l2 E' y: p$ l& u8 A9 O
004032FF 3AD3 cmp dl,bl ; DL和BL比较8 j. I' W) i6 X# u
00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
0 `/ B* T+ e# w0 T8 W0 ]5 x00403303 83C0 02 add eax,2 ; EAX加2
8 y1 h/ t! ]1 N0 m) j00403306 83C6 02 add esi,2 ; ESI加2$ K: v! |! ]- B8 e/ x7 |+ ^* ^
00403309 84C9 test cl,cl4 w- b+ r+ g! M( c
0040330B ^ 75 DC jnz short qsr.004032E99 W$ @: ~2 v+ W7 R1 t, @* X* T0 f! E' A$ t
0040330D 33C0 xor eax,eax5 l9 M7 S1 a+ a, M! x/ ^
0040330F EB 05 jmp short qsr.00403316* B5 I$ W8 Q7 P2 D# B0 o
00403311 1BC0 sbb eax,eax
5 F5 e1 Y( R: i9 i w00403313 83D8 FF sbb eax,-1
5 K) P- V3 c; J) z7 K00403316 85C0 test eax,eax
( k2 X5 Q& _# O5 d# E, s00403318 74 0E je short qsr.00403328
% ^- S: R* v( V% s2 [0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A0 F" R5 W$ E5 w7 v, T5 }
0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]2 @. ~3 H. C1 R& U. v; R7 [7 _8 |) \
00403323 E9 F0000000 jmp qsr.00403418
; S9 U; T+ t9 T; C9 X( y9 G" H00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX3 h2 ?5 E f, w6 X% s, A5 X
0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]' M* n7 e9 F$ k! Y. @. l9 J m( @
00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]* E* j! v j+ V1 |. s
00403333 50 push eax! N" M6 T1 T: {+ R, k; N
00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX
% d4 Y5 |- ?0 a& w1 V) _# F, i00403339 50 push eax
! b3 {6 v! F; p# d/ D: O4 Z0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX
9 O, E2 D# Z2 a# F" M0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX* `( ?& c0 k$ M' \6 o: T! q
00403343 83C4 04 add esp,45 O, V% s/ R4 ^2 d- Y
00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI5 B: w9 O% a6 z; r1 k7 }
00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]* {+ u; u3 @1 _5 h6 B" C; R9 Y/ y
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
5 |4 a) F& e" c4 `: Z0040334F 50 push eax
1 x4 \) ^. ^7 Q% k, u. d00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX1 [8 B/ Y5 H* R% [ }
00403355 50 push eax
$ D2 O$ P+ L+ |/ A00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX' _7 ^ ] v e+ t4 {
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
% @% Z8 n6 X8 d# f2 S0040335F 83C4 04 add esp,4
4 ?# e! ^1 H1 V00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI W4 N" Y8 e# y+ G- U
00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]/ r+ W6 l( W# P* e
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]+ @) a1 U+ \" U0 J* r6 R% ~9 _
0040336B 50 push eax
: b- ^. P; L& ~4 a0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX
( I0 @/ x9 t9 P; V5 x00403371 50 push eax6 F* _ R! I( }
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX7 z1 b+ l+ v+ T; j: W
00403377 8BD8 mov ebx,eax ; EAX送EBX R1 ]1 c5 Z3 u. |% K
00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX* H0 R9 g2 m7 T% O9 r$ ^7 X1 @
0040337D 83C4 04 add esp,4" x( S% m5 J: l
00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]' n9 T- G7 `7 i9 N O4 m! S
00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]
; K, K- c6 u% ?00403387 50 push eax& v6 @9 J+ v5 {5 s. T: T+ ]* W4 B
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX! I6 M. s) q0 ]* F* e5 F
0040338D 50 push eax
3 S: r2 J* U$ }, g* G1 O0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
; K0 D0 t# Q0 s5 }00403393 83C4 04 add esp,4
B& n: g/ f- V% E00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]% o& u# O2 m1 @7 T( i5 J
0040339A 8BE8 mov ebp,eax ; EAX送EBP# W( x% u8 c5 W* p7 r
0040339C 6A FF push -1
( r0 Z) X% A8 H' U! N4 G' t; C& a# u% B0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX6 @ x4 {; @/ ~' {9 N) r
004033A3 6A FF push -15 \+ n' a! {1 h/ x+ o
004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
; r, d! e! w4 [( a' F4 D1 p2 n004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
& r$ z- b) n& S: C" a004033AE 6A FF push -1
" B; w; P3 C C E1 Y y O004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX, d; ~8 R' F0 ?6 X+ ~, l% n5 g
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX
: ~% k8 B7 T$ Y' `& ^; r( L004033B9 6A FF push -18 }# X2 i8 X/ w$ ]. }2 I
004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX+ {' n# q! L) m+ c! M; `
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX
/ h+ p# ?3 o& [0 S004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
0 Z8 _: I+ K# F# s; M: U! w004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
: J3 R: x# ~( h4 s% U' l004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
" p( B z6 b. N+ Y: A- a004033D7 D1E0 shl eax,1 ; EAX左移1位$ c( ?8 c; F% {8 S9 y2 ~
004033D9 99 cdq ; EAX扩展
- y) _7 M1 C4 e: ]' ]3 I1 ?004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中( d5 @; M7 w+ u
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较9 r d4 p5 G+ W* r9 u
004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)+ t9 `$ ^4 I# O$ E X# T
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A/ s$ ?5 t. P+ \
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10] F, e F. z3 J+ T
004033E9 EB 2D jmp short qsr.00403418! \- p: S3 q- d2 ?
004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX
& G1 |3 X- ?7 m# d0 U4 w004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2
' a3 F G# w7 J) l0 @004033F7 99 cdq ; EBX扩展& y" o9 Z9 ?9 v; X
004033F8 33C2 xor eax,edx ; EAX和EDX取异或) X1 o! C, ~: I; J4 f6 z. z
004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX3 j, [- K5 e) v7 x7 a
004033FF 2BC2 sub eax,edx ; EAX减去EDX
2 N$ a, g1 V2 h9 {00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C] o/ m7 F) K, h7 p* e
00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
2 n+ d/ E- G) k& j# g- A00403409 99 cdq! I% k/ g( q- K, W& g+ e
0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中( i2 J8 @6 }, U0 i1 b! }7 u
0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX
2 o7 F: w2 Q& G) z3 [00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较
?( a& I; A7 T v& C4 H4 w7 f00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)
" ^$ n& {# J4 A( z00403418 E8 6EC00200 call qsr.0042F48B ;
. _* Q( E7 C C1 ?) E0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14], S: L& O% e, }" S; f
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],95 c0 K( [! ~& d- A j5 O
00403426 E8 60C00200 call qsr.0042F48B6 ?* a1 e9 R7 ]/ T
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]0 s3 u2 ^1 R: u; V+ ?: ^9 I& {
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8) P: z* x$ u4 N" b$ l
00403434 E8 52C00200 call qsr.0042F48B
& j: x, J: B* ]! n' m* K! P$ }- t00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
4 P& B& U- O6 p( ~& Q% d1 p0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7
6 d$ ?+ ]1 {7 m00403442 E8 44C00200 call qsr.0042F48B1 u# c! D5 g* x1 F& t# \' C( e
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]. Y; b) b! J% j6 {4 D7 a* V0 ^
0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6 @1 M2 F. z. o* X+ I: r
00403450 E8 36C00200 call qsr.0042F48B
2 K' R4 Y; B2 m* ]# X1 b# r00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
" T9 k0 Q8 C# K00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3; X; o. _) T: k* I( t+ d
0040345E E8 28C00200 call qsr.0042F48B
! B+ @: M4 R& u; p8 A00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]7 M5 a" ~9 P9 L1 @: i; o& t( F
00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
& P% K8 \" e; t; k) N% n: ]# ]0040346C E8 1AC00200 call qsr.0042F48B' j7 _. T) h0 I$ n7 e* j2 q; a# k
00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]& v; {- n! e$ V% j" r0 Q# }
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1# N- Q. o9 ^; X
0040347A E8 0CC00200 call qsr.0042F48B7 e1 X9 Z6 ~! w/ }. p" s5 W; ~+ c
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]8 o5 f2 P k# q* D9 \4 r% m
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
9 ^# m4 U( k9 g3 w2 j( N5 j00403488 E8 FEBF0200 call qsr.0042F48B
' ]: t* Z7 R( p0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
4 _7 W1 O: t# B: A) ^+ t% v00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1- Q- O5 q9 l9 n8 }9 Q" F# `% J5 F" P
00403499 E8 EDBF0200 call qsr.0042F48B
# {. a- g& |: {* U. _2 L) C, v0040349E 32C0 xor al,al ; AL清0
2 D1 _5 e8 p- ?+ a004034A0 E9 88000000 jmp qsr.0040352D
' K/ x0 G! A, V2 |7 |( j+ m0 E004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~/ r+ z7 X- t. w
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
, E9 r- A( G6 H% k# f* B) H3 n004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],92 q. u: M1 U% X. _5 A- A9 b" E
004034B3 E8 D3BF0200 call qsr.0042F48B
$ M) u& ], x m004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]0 ~2 T6 _, @( _+ i T7 q9 n
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
, x/ K+ y p1 {3 @, K004034C1 E8 C5BF0200 call qsr.0042F48B
* j& c; b+ B* q6 p2 g: T1 Z004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
; B( s# N) T; a* @ _! y: |004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
X1 C6 V' C! P6 E6 y9 D004034CF E8 B7BF0200 call qsr.0042F48B
/ W: d0 ]1 S4 ~+ P2 u, ]004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]3 I# P6 f5 R, _8 O
004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6; W0 K9 ~% H; a6 r& w+ ^
004034DD E8 A9BF0200 call qsr.0042F48B Q5 B6 K8 ]0 N& b. Q
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
+ E1 O2 j; M5 R# P$ p004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
1 S- z4 b" v2 N+ G, D. y004034EB E8 9BBF0200 call qsr.0042F48B: M, q3 }/ C0 w( q( [- f
004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]5 A( q. c9 R0 E
004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2- u' m+ ?3 S+ r& T7 L7 [
004034F9 E8 8DBF0200 call qsr.0042F48B
) ]8 U) K' i2 P: R9 }004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
. W6 h) z2 F0 |00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1
- Z- K. r& Q; R) T/ T00403507 E8 7FBF0200 call qsr.0042F48B
0 {2 t( H- U! b) ~+ C" g0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]7 G4 Z$ k% p2 V& h2 w
00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0( K* L4 } [/ q! W
00403515 E8 71BF0200 call qsr.0042F48B5 E1 Q* W, l3 H3 @# u9 Q) z' I
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
5 A/ S" U: _0 h, ~# |) U0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
( g! B2 Y* Y' @0 |4 _+ m. R00403526 E8 60BF0200 call qsr.0042F48B% I& g; y v9 [3 C/ O: N7 K* ?$ {
0040352B B0 01 mov al,1
, x) ?+ q3 C: l! \0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]$ u9 b, ?9 b5 O2 T$ i0 ]
00403531 5F pop edi! A- j4 K/ _- B8 P, `$ X% Y& s9 P
00403532 5E pop esi% M1 G& m6 S0 M4 r4 v+ v8 s9 n3 M6 ~3 R
00403533 5D pop ebp8 _9 q9 f d7 m( ?& N+ Q7 G. n# [3 D
00403534 5B pop ebx
1 z, W0 B4 g+ R# A/ C) J* Z00403535 64:890D 0000000>mov dword ptr fs:[0],ecx7 Q8 y) B3 O, E" H- l+ V
0040353C 83C4 30 add esp,30
+ L- ^4 F, z% ~0040353F C2 0800 retn 8
& D. v! H5 F1 y( d& d, N3 A--------------------------------------------------------------------------------* F1 L) s* o: V- y" c: g% R
【破解总结】# n) V4 I! W' E e6 t! G
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
* O& Q& Y2 Z6 W( E用户名:yijun: [ D3 y+ G$ t, I# i) \
注册码:4893*7777*3726*7777*05297 Z+ z- u9 g G4 @: l: K+ B! p, R5 O
--------------------------------------------------------------------------------
[! }/ ]! d, ]8 E% q7 p/ j) c【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡