|
|
|
【原创】破解Quick Screen Recorder
8 i. N- _8 a: X8 W# Q8 c2 K" | p【破解作者】 yijun# F1 j! ^0 Y0 b8 j) W0 c5 k
【作者邮箱】 [email protected]
5 ?7 ^. D# T2 s$ r. W: I* a3 I【使用工具】 OD,PEID6 d7 v3 i7 c1 b- e5 @" |
【破解平台】 WinXP
5 X& U- O: N: G( p* x* Z$ G( v【软件名称】 Quick Screen Recorder
/ G0 c! [: N+ S% y0 W' f8 \1 o【下载地址】 天空" T( ~& k* y5 Q* B8 I6 r2 ^
【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on. " `3 r1 e+ ]8 w/ [3 x
【软件大小】 540K
( z$ t- V6 _2 `+ v+ l5 u【加壳方式】 无- a; \' A* x5 M; B
【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)) y( @3 p% |( M
-------------------------------------------------------------------------------- g+ q2 j/ G( g, L/ Y
【破解内容】
9 ~4 e3 g; P" A5 E6 B PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:/ G6 j2 y. F* w2 O$ q8 O
00404C69 55 push ebp //在此下断
* i! A R/ {5 `' V00404C6A 56 push esi" K O7 }- z! _
00404C6B 57 push edi
- W; u1 B% H" }) L* ?) K* c) [% v' r00404C6C 8BE9 mov ebp,ecx
, ~4 ^* J1 F6 M8 ~8 I00404C6E 6A 01 push 1
6 F# f' ~# X, g" f0 T, f# A0 s00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
' J' o0 g3 z% ]. n7 B) W00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]
, p5 ]3 i" D! z8 C& W" {00404C78 8BCF mov ecx,edi
* E' Y0 e& G4 }# z6 d% K00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码
( j: l9 S7 X7 @) S00404C7F 8BCF mov ecx,edi C' P: y( \7 w' O+ e. D
00404C81 E8 A73E0200 call qsr.00428B2D
& B6 A" S* c5 _; I/ I00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
: a: F( M/ p3 k. L F. q00404C89 8BCE mov ecx,esi& i7 y6 y5 }4 L
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX8 q+ z/ R9 l: j8 \: U% W# ~
00404C90 8BCE mov ecx,esi
, I' ]6 e. V3 G- y+ C5 f00404C92 E8 963E0200 call qsr.00428B2D
8 Z; B' ?/ O# L; A/ {6 B00404C97 8B06 mov eax,dword ptr ds:[esi]5 ~! C. w" b% H
00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2 j" h) p2 I# x/ ~ K
00404C9D 7D 26 jge short qsr.00404CC5
% I6 v- e" h0 ^7 s00404C9F 6A 40 push 40* M- p% ]" @( D, p( r
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
# @& D- K$ p) z/ k& C+ h# f00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."
: K" P9 H- ]0 _2 ^- D8 ]& \0 L) |00404CAB 8BCD mov ecx,ebp
' n5 u/ d3 z( u; f) G G00404CAD E8 C3840200 call qsr.0042D175
8 y) G- R/ |; W: }" `00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]7 V9 R) E. k0 q7 x$ b+ b+ _# H
00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx
' v3 Q: n9 z, U1 u0 r2 z6 [8 q2 }( G00404CBD 5F pop edi5 S/ O' f# j5 ?. H
00404CBE 5E pop esi
( p- y% u* ]" ?) J9 I# |% f! B ]00404CBF 5D pop ebp
' M) W6 z* m, m00404CC0 5B pop ebx
+ e, V- d3 ~- D00404CC1 83C4 18 add esp,18
7 r, q8 N! o+ Z3 N8 I; l00404CC4 C3 retn$ @/ `/ ~* |' W1 B
00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]" X! G' G5 D% i- \, j z* p
00404CC8 84C0 test al,al
Y/ j7 |* {; A" W9 X: @00404CCA 0F85 1C010000 jnz qsr.00404DEC
+ H, m3 J- h8 d00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
8 l7 m0 ?) m7 ?8 E7 ^- J9 |+ g00404CD4 E8 87E3FFFF call qsr.004030605 \% N7 k8 y- p/ R4 [/ d* y
00404CD9 51 push ecx
' [! `6 f+ D0 |& T3 w/ Z5 P00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],02 W- o# x* m- c5 ~% n1 s/ ]
00404CE2 8BCC mov ecx,esp1 Z W, g1 N6 T* e8 ?9 o
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp0 d: P) X4 l& f4 A9 K
00404CE8 56 push esi
1 I5 M" N' { I- T6 Z/ p; o00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是03 W w! j/ o/ v n5 H. E) m( j9 X
00404CEE 51 push ecx
r! x; z) B# l9 d00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1
+ k3 u" l+ @7 e/ A# @. u) k3 {00404CF4 8BCC mov ecx,esp
n- Y, q# G' v% ~3 m' }% Q00404CF6 896424 20 mov dword ptr ss:[esp+20],esp2 `( v, P2 {- p! u7 t# e
00404CFA 57 push edi3 n& a3 M- T7 c4 D ^+ o0 ^1 C
00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是05 c6 Z' Y* N& O9 U* i# V8 J
00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
$ r. j( Y: u4 b- v/ D9 E( o00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],01 M4 [) y# c! {1 p, @ h
00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~
6 y" H z* V0 E. q00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~
& N8 R6 s9 X. E. I, r/ |00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~3 m2 ]# a& {- \" i# V; W
00404D12 6A 40 push 40
3 C, K& D4 K7 a$ X/ L00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
( f' ?0 V& i6 D$ c# Z7 Q00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."
o; X. }5 E, |9 p00404D1E 8BCD mov ecx,ebp
! x/ F9 a: ]% o00404D20 E8 50840200 call qsr.0042D175# O( f/ E& m' {* [8 L ~3 ]
00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
/ L! B8 c0 S+ J. `; x/ P( j00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1
8 D1 }7 X2 a4 a00404D31 E8 5AE3FFFF call qsr.00403090+ l7 ?7 N" f k- g. S" F
00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] Q' j* O- v4 @) q5 X; H( j
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
6 Z/ v* {2 ?6 h/ w% f00404D41 5F pop edi2 K8 \4 c. G+ h# Z0 c9 p
00404D42 5E pop esi1 B7 q( x8 R4 D; z' A8 [. O: A
00404D43 5D pop ebp9 j8 t! f1 z: B7 Z* R0 F
00404D44 5B pop ebx
' ?2 Y* U d! v2 j( D00404D45 83C4 18 add esp,18; s# {6 y: k! N- ?# a* P
00404D48 C3 retn
, U( c4 f% e3 l/ d+ O; |*********************************************************************************************************************************************************
" a+ X- }) w. {* h跟进00404D09处CALL来到:: K% F6 W6 u) W, j ]7 I0 {
004030A0 6A FF push -1 //一路F8下去~~~~6 Z" C0 B3 H; ^0 T8 y
004030A2 68 C88F4400 push qsr.00448FC8
2 P, u1 v' p9 X& a5 n004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]" W' b2 }# J/ p. m0 y7 k& j
004030AD 50 push eax6 f' l6 E# v# s6 t
004030AE 64:8925 0000000>mov dword ptr fs:[0],esp
/ L9 c! v2 a/ T004030B5 83EC 24 sub esp,24+ _- L: E ~' Y% X
004030B8 53 push ebx
- a$ s" |. J/ P- S* R& z" h004030B9 55 push ebp
( {( }0 v6 v" R004030BA 56 push esi
; A9 s) g0 j3 ~0 I004030BB 57 push edi9 m/ o2 M* {8 h9 K, B
004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"
( L1 H( F' e' u1 @004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]$ N( t( l5 g" [1 D& G+ X% G5 o
004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1. a7 o$ r4 F7 \ S5 O! R C [( l
004030CD E8 27C40200 call qsr.0042F4F93 u" [5 f& A% h9 c$ k0 A
004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
4 v# p! B8 n$ D1 \1 S004030D7 894424 2C mov dword ptr ss:[esp+2C],eax) l2 A9 R- T9 c' j2 d2 a8 x
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]2 P, B" d+ S8 n! V8 p; z
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3% [# N8 [( X( T) s& p# N
004030E4 E8 905A0200 call qsr.00428B794 |9 w+ K; \- B; W$ C
004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]+ M J0 N! q3 T# L
004030ED E8 3B5A0200 call qsr.00428B2D2 \6 H3 a* Q1 f4 w" z
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]5 t6 \+ |3 M. F" a% f# r, s% m
004030F6 E8 7E5A0200 call qsr.00428B79
$ Q9 s: a, B" H3 ~$ i, J004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
( z( I- I0 H# v3 M/ y8 a6 m+ r004030FF E8 295A0200 call qsr.00428B2D
e- \/ y; M0 k' g/ m00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]
% M7 a: D$ Y4 D3 l4 o00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
0 c a1 W& l5 X0 ~# E2 ^0040310B 83F8 02 cmp eax,2
* {- c: j0 k1 c/ h3 _6 u. Y0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
2 a3 K- }. f8 u2 W( @00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]8 L# B3 K# S! |$ K; b. s/ M2 K0 \
00403118 837A F8 18 cmp dword ptr ds:[edx-8],18
0 h b0 \0 A7 T- {0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳
3 q, d0 B, e) x* p00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]: {& T: W$ T& G* P( m( n
00403126 6A 01 push 1' l& L2 d0 e F$ q: U2 E
00403128 50 push eax
1 f+ y/ J2 a/ U) Z5 c; J c) }) ~00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]% _+ S2 s. g, u. ^. X- i
0040312D E8 C4550200 call qsr.004286F6" c# X" ?4 o' W" T+ D( a$ |
00403132 8B00 mov eax,dword ptr ds:[eax]
4 B$ G0 ?2 D4 ~00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]1 a2 F; G+ b6 _1 U& Y6 f
00403138 50 push eax
* ]8 I8 O* n( S( c1 J9 @$ v$ ~00403139 C64424 40 04 mov byte ptr ss:[esp+40],4
2 ^% i2 `* ?+ @% G0040313E E8 4D560200 call qsr.00428790
! ?! i4 p4 B% m+ F' ]00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
% c2 ?" c- Q' E( z% l2 q/ P00403147 8BF0 mov esi,eax0 B; x: ^ z# ? |
00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],38 `5 V5 Y# ~ ~% d' u7 D# H+ P' u
0040314E E8 38C30200 call qsr.0042F48B
/ J( `+ |! ?* c8 }; {00403153 8D46 0A lea eax,dword ptr ds:[esi+A]" G% K" @& f4 ~% P( U! x) j
00403156 B9 3E000000 mov ecx,3E
( N. q; N- b X, O5 S/ q: l1 W0040315B 99 cdq6 k |2 x) l' h+ }, I
0040315C F7F9 idiv ecx8 m" J# y2 b( ~2 H* k
0040315E 6A 01 push 1# X# s7 U" }# @& b
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]" T6 w% F" e# b0 R
00403164 8BF2 mov esi,edx
0 @% ~6 R4 Y( v) k$ M00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]" ] o+ }; o1 \. ~6 S. W5 D. u
0040316A 52 push edx/ j8 m5 m1 |" Z: j" z! F! A
0040316B E8 0A550200 call qsr.0042867A
" @, c4 Q3 T1 s00403170 8B00 mov eax,dword ptr ds:[eax]
+ j5 f" ]4 U0 |& [8 g) J00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]% S6 L$ g. N; |5 [! A( g, X, K
00403176 50 push eax+ N( T" [0 Z( O9 |, }" D
00403177 C64424 40 05 mov byte ptr ss:[esp+40],55 ?6 o ~; ~5 ~& T* t, N
0040317C E8 0F560200 call qsr.00428790" ~" t. C- _) A; \0 O5 h8 b% q
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
- |) p# e8 U- E' S& Z00403185 8BF8 mov edi,eax, t+ W! q5 e3 C* H7 k9 f
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3
. h; @+ W$ O' E8 r6 t* N0040318C E8 FAC20200 call qsr.0042F48B
6 g1 ]' O8 b0 ]. Y* C7 y, |00403191 8D47 0A lea eax,dword ptr ds:[edi+A]+ D1 t9 U! D* c% q
00403194 B9 3E000000 mov ecx,3E
+ B1 j8 v/ V S6 W. W00403199 99 cdq$ _' S& \; ?' m/ l& Q! O9 @
0040319A F7F9 idiv ecx
7 N, x8 r. A5 r# w" e f1 U6 ~6 n0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]
' y; G$ D/ C2 k1 |; I" Y' F% l004031A1 894424 28 mov dword ptr ss:[esp+28],eax4 T1 E# ]- o* K% O
004031A5 8BCA mov ecx,edx) O/ n: W1 h& ~6 C' F
004031A7 894424 24 mov dword ptr ss:[esp+24],eax J" F9 o+ _8 n( ^4 q
004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
( {. O+ B$ Q' \" d9 @' @004031AF 894424 18 mov dword ptr ss:[esp+18],eax+ T2 M+ z+ w, d# C
004031B3 894424 14 mov dword ptr ss:[esp+14],eax6 r# Y: l4 `; ^3 F) k4 K/ b- f
004031B7 894424 10 mov dword ptr ss:[esp+10],eax" r% d& k- A V$ ^, z2 d9 G! R
004031BB 8BC1 mov eax,ecx
9 O9 W; S2 Z1 I1 }( ]7 {0 _004031BD BF 0A000000 mov edi,0A9 _* q2 V$ g8 s0 ?
004031C2 99 cdq! K/ t" ]" @& {5 ~
004031C3 F7FF idiv edi1 y* Y, H [- F1 I7 L( Z& ^) U
004031C5 8BC1 mov eax,ecx# G' w! h& d/ ]: b# n' {, |
004031C7 B3 0B mov bl,0B
4 b: @5 Y' ^3 J7 l, U# I004031C9 0FAFC1 imul eax,ecx2 A, ]" ^( \% M4 r
004031CC 8BCF mov ecx,edi
: t1 h+ F% b/ s004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl) e! `: B% N4 e6 u; O) e( `
004031D2 52 push edx. d j# [/ R3 g* G& l4 x, ~8 o( k' x) a0 q
004031D3 99 cdq+ Z- l7 Q8 q# s- ^, t% I- f& ^1 @
004031D4 F7F9 idiv ecx
" y# a) c9 R2 G& E5 M6 |+ ^; a/ \, f004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]
. Z6 I* x8 ~ Y6 j" e c004031DD 2BC6 sub eax,esi* b$ ~+ }$ j+ [- b
004031DF 52 push edx$ \" o* D4 z. e l
004031E0 99 cdq& [- T! T1 L9 L
004031E1 F7F9 idiv ecx
) o( T& J* u9 b) S004031E3 8BC6 mov eax,esi
* I C6 ^8 [3 ]+ X/ e; [004031E5 52 push edx
' Z' s. h6 P9 z1 K8 o0 T0 p' h004031E6 99 cdq
6 N, T0 I4 F. O1 [2 R1 h004031E7 F7F9 idiv ecx/ a; T! e# Y, k. I2 m: a4 v. i
004031E9 52 push edx
( K' F8 j8 `/ ~1 X, Z0 ], B004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]' y# v4 H" ]$ j( }7 f
004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"# z4 R4 t/ }9 S/ M* A
004031F3 52 push edx* G' b: x* Y1 p% x0 C8 K
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893( D: g8 g5 p8 g, y
004031F9 83C4 18 add esp,18
0 S- j6 P2 w( q3 |7 t004031FC 6A 04 push 4
3 d$ d. W, K: Z004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]
+ i$ Z, a; }! ~00403202 6A 00 push 0
, u4 W% K8 e$ G+ N6 T00403204 50 push eax% o! L: c* [7 O- V8 [! D3 R4 N/ ~
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
/ g6 d% C. B8 x% h00403209 E8 D6530200 call qsr.004285E4, `5 g) z, X+ T9 g; u% n0 G
0040320E 50 push eax
5 l0 X' V& W& U4 M: k" d, t0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]* s2 z7 l5 V$ p1 @) ?
00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C- e) V- s e3 K: a
00403218 E8 A7C30200 call qsr.0042F5C4& D6 |4 [6 Y- l) y. I S$ w# t7 A
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
: a! K* s7 R' `00403221 885C24 3C mov byte ptr ss:[esp+3C],bl8 v* k6 z% Y) O( Z. V; W# \
00403225 E8 61C20200 call qsr.0042F48B
% y9 L( O5 {2 [: I2 J# ^! l! V0040322A 6A 04 push 43 G; g7 t O% z+ d
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]6 g3 v6 h2 w% p9 U
00403230 6A 05 push 5 H0 @& L' @" i/ o
00403232 51 push ecx
/ Q2 y( o7 ~, X; i! ?' a00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
# a' r* e& t4 I: U4 E2 C00403237 E8 A8530200 call qsr.004285E4
( ]$ O5 L) ?2 v+ ?& q; [# G0040323C 50 push eax/ S; G4 W4 W' n- i, a6 K9 Q
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
4 |: G7 m5 I9 h; X1 h( c4 K3 A! `00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D
7 Y' w7 B" X: O. k& h/ m00403246 E8 79C30200 call qsr.0042F5C45 Z* \# Q P o
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
, @; @0 j! W# @. Q0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl6 A6 O2 { y& T! Y1 z4 O+ I
00403253 E8 33C20200 call qsr.0042F48B
7 S# `# ^0 y" ?' j00403258 6A 04 push 4$ G* A( J6 S h5 _) S4 j. n
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]) A2 j) f2 [8 Y$ l; B
0040325E 57 push edi
! D5 c' V7 a# N" X' Z b$ Q- d0040325F 52 push edx
0 |$ ]( b' e2 Z( x2 d00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]( ~: A2 M u6 q& r
00403264 E8 7B530200 call qsr.004285E4
* r1 y# D+ B0 O, | ~0 T00403269 50 push eax
. x* c) ?2 G3 c0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]6 f1 R9 L/ i* l. y. {2 ?8 @* p+ U
0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
1 w4 D' V, ? P! l8 O: J" B6 K00403273 E8 4CC30200 call qsr.0042F5C4
1 C; v1 |( a% B2 E00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]$ w+ \* ]0 b2 [- ^9 Y- F
0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl
" r1 D4 N& t) H8 V+ E00403280 E8 06C20200 call qsr.0042F48B9 H* ?* S& ]" c1 Q- c2 Q
00403285 6A 04 push 4
$ V" P* W" x2 f& l) h5 j7 u00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
+ s: ~1 d. E. q* R, F. V. L1 e0040328B 6A 0F push 0F8 N0 b4 `2 D2 f
0040328D 50 push eax
m" C L# p% z7 C0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]' p% C# e+ V/ D) [4 @' P$ _
00403292 E8 4D530200 call qsr.004285E4
, @ b& Z) w8 _7 m6 ^00403297 50 push eax
5 N0 j- T* R1 d8 d% q8 n00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]/ i; z9 P& u& t& T) J' |
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
- q, D, t* d+ o- N004032A1 E8 1EC30200 call qsr.0042F5C4! i8 k9 x3 g# j' J) Y! [
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]. i% g; r W4 L( s X
004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl) O1 U |, H' X& N
004032AE E8 D8C10200 call qsr.0042F48B6 Q2 d/ `3 I# C2 @2 t
004032B3 6A 04 push 4* G3 H$ Z& i; o# @# f9 Y# @
004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
8 ~# {& M/ J! I3 y X3 Y004032B9 6A 14 push 14
" Z1 y. I3 ~; J5 `& E% B004032BB 51 push ecx. T3 |6 _9 M- n
004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
4 ~3 {7 x! }: w1 U( j: r2 u004032C0 E8 1F530200 call qsr.004285E4
+ z$ ] G c3 Y ]004032C5 50 push eax* f% D4 V# X* j, z4 [* o/ l' a
004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]' ~* @% y' |- T, W) | D% e
004032CA C64424 40 10 mov byte ptr ss:[esp+40],10
5 [& u$ l9 a4 f$ W7 J3 A004032CF E8 F0C20200 call qsr.0042F5C4
- ^* C0 M/ V+ f/ X. ^) l- E) i004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
4 @9 `% f! W" W* q P/ o' G6 L0 @" S004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl6 J! C& T, g/ ~# C) f8 f6 U
004032DC E8 AAC10200 call qsr.0042F48B8 N, \5 b6 w$ | K! V# F
004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
. h5 K z4 e$ i8 I004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
, J J7 z) u7 A) [004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
& ~$ U( Y7 | [- u) z004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL ~- Q0 C* _9 L1 @! C
004032ED 8ACA mov cl,dl ; DL送CL
& p. q. q9 B% y) r) P* c1 G004032EF 3AD3 cmp dl,bl ; DL和BL比较$ y0 _! v g" d
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
" `* x+ F- v0 z0 H) x' [& N1 N$ `004032F3 84C9 test cl,cl. M# W$ x& N" {6 I' [4 V: v* h' y
004032F5 74 16 je short qsr.0040330D$ W% [7 q4 ^2 E- x, i
004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL ^6 T* b5 I2 B0 C
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL
, z9 Z2 V5 @; M% i1 h004032FD 8ACA mov cl,dl' I& ^8 h0 _5 `* s2 u, K1 y, k$ k
004032FF 3AD3 cmp dl,bl ; DL和BL比较
9 ` d) j$ T9 h" C1 N. s6 T00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
9 V& V% r6 H2 n! t# }+ {00403303 83C0 02 add eax,2 ; EAX加2$ v# x7 Y# z; [3 r% h
00403306 83C6 02 add esi,2 ; ESI加23 Y+ _ j2 C7 i+ i- w
00403309 84C9 test cl,cl
9 F; ^. x" X* X. u8 H/ W p. r+ R0040330B ^ 75 DC jnz short qsr.004032E9/ N7 X+ p3 a. J4 z+ X" A
0040330D 33C0 xor eax,eax
0 L( a5 g/ W" d$ u4 i0040330F EB 05 jmp short qsr.00403316
6 T4 T& A* F. J: y( X, {00403311 1BC0 sbb eax,eax+ R8 z D2 z/ t# O5 w0 k
00403313 83D8 FF sbb eax,-1
4 [6 G; ]3 E. u+ s2 l00403316 85C0 test eax,eax V E/ I% ~) D( U+ `! ^+ a
00403318 74 0E je short qsr.004033282 [( e! r! @1 ]# \+ y; R3 `) S9 r4 f t. e
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
[ [. W3 q! u0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]+ F d) ]1 ^2 `: _9 }: X
00403323 E9 F0000000 jmp qsr.00403418. I8 K3 D {) J4 I3 z* u$ K
00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
$ @# R s+ u, [# Q7 u8 m% q1 ]0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]" O* X' S3 e U
00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]
+ X0 ^+ B) q$ i$ U( `) z00403333 50 push eax
( Y9 x: R+ v' t q7 W; q00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX
9 A" N; d \ ~2 B- f00403339 50 push eax
: U+ ~) c# T; r5 j0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX( ]5 R: @' t6 u3 g! A
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
( ^" W4 ?* K8 i0 @: Q% M* P00403343 83C4 04 add esp,4
8 m8 n' C Y% I2 l00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI
' W. S* v/ K9 l) _# v* c00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]& @9 G# e6 t/ \% Y1 r% q$ e% G
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
) e$ h# }% v9 n5 P! T) h; M- ~0040334F 50 push eax
# L; U. D8 `( p: L00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
* u) G) Z2 v/ ^. H) k8 u5 t \00403355 50 push eax
# s& v' p5 |& q- S- {' Q7 H$ h00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX7 P& s6 P: ^# U% R
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX* ^0 C1 @. K5 c6 a4 i: R- T
0040335F 83C4 04 add esp,4& U8 i5 e- k1 W! v, Q7 \
00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI
8 e9 X, I/ h" [6 s4 z; }00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]* T' x& m& q5 f* r; m, \- H# ^
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]
, {% `) B4 }1 _5 n% q0 R0040336B 50 push eax/ x7 x* a; h* W8 E3 V- s) c! i
0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX/ o: ~* E: f( U k
00403371 50 push eax2 H. n9 K+ q/ N) R6 U
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX
& U! n# Q1 t$ Y/ H00403377 8BD8 mov ebx,eax ; EAX送EBX
1 i u# j( p" `5 ], d! e& Y00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX
" l0 t8 m" f# |" v0040337D 83C4 04 add esp,4, z3 I; \5 K: X' a. d8 }7 l: K
00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
( X$ P$ l5 E! n! _% V/ g00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]. Q2 F4 ?0 K" s
00403387 50 push eax
5 d% h0 ]/ C, \# ~: H00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX# [ O' j1 X' X5 d1 S: E
0040338D 50 push eax4 v/ h: G! ^9 }& j! t: V) U( P. O+ c
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX; l1 c1 U+ l8 l8 q
00403393 83C4 04 add esp,4& D4 _* K" p& r$ E4 b* t$ o
00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
+ t$ o( b' [2 J& z% q0040339A 8BE8 mov ebp,eax ; EAX送EBP
! u% q( p- E+ ^; ~0040339C 6A FF push -1, g! q. X0 f; B7 B! ]7 Q! j( T
0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX
7 T) ~! i* z* S: Y2 J- L004033A3 6A FF push -1
5 x0 k, t! K8 F# h2 |6 f004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX# j0 c+ o1 I5 g+ o8 B. p( B' g6 T
004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
. ]; W( I" x- L4 G2 }2 L- [004033AE 6A FF push -1
/ a! N6 u( g6 q( ^0 {7 ^004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX
7 ]$ D3 S- t9 `% M3 L" D v& Q004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX- G$ N' B& J: \
004033B9 6A FF push -1. K1 c% d* `- [
004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX7 a$ `: T( e( @( O" M& H" d
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX
$ g( Z# [6 Q4 I2 p% `) T9 b004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
9 y. L/ x' s' `1 R+ Z, K& V004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX- r% ^; |- d* m7 D! G( E! I0 @
004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX! ~4 x; ]' Y2 ~/ n
004033D7 D1E0 shl eax,1 ; EAX左移1位
* X+ h) }9 q. a c+ X, Q004033D9 99 cdq ; EAX扩展' s8 _* [" C' k
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中/ a) N0 \9 s7 K: _
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
9 q) a/ z* B$ c3 H0 w- q4 s004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)
/ l9 F$ ?" q* Q& w5 R ~004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A
. t" } B/ e, c. ]* ]004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
0 y5 {" B. C- [; x j& e& `6 U" e004033E9 EB 2D jmp short qsr.00403418
& R! ?! y1 O y+ r; E4 a004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX
' X" Y5 h! n! B2 p9 c004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2# C3 T4 u- P" N* z
004033F7 99 cdq ; EBX扩展8 ~ Q) L1 ]# U3 Q- Q0 C
004033F8 33C2 xor eax,edx ; EAX和EDX取异或* ^8 `: r& P7 x, Z5 x4 X
004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX1 S# i4 q. o/ X) G+ ~8 x! a
004033FF 2BC2 sub eax,edx ; EAX减去EDX
2 O$ m/ u3 K9 c- v+ L00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]
x* C) T6 t+ g" o6 l( R. h( q00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
j. ]9 w" g3 o4 s9 D) |4 _00403409 99 cdq
4 h/ R( _0 R# o3 k& R4 m. e \0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中7 H' v5 p6 c; Q# G; I- [3 `
0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX* W9 r% G- ^* N* E
00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较
9 Q2 I+ z% @, v, q& X. }00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)' f' ?3 m% Z# L+ r8 u9 z
00403418 E8 6EC00200 call qsr.0042F48B ;
3 h" h: _% O0 M3 ^0 \$ w( a0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]6 x3 Q- Z7 Z. M6 J! s
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9% {) l$ r A) ]# k( o) o% L
00403426 E8 60C00200 call qsr.0042F48B N/ K. L: F/ }; O
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
% s5 h+ n2 h4 Q3 G# s0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],84 L4 s5 e" c+ i: \# R0 h8 S7 M. ]
00403434 E8 52C00200 call qsr.0042F48B
' X1 r. y% W! E" C00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]! `$ g5 b: ?9 X& T
0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7/ N2 t. T# E% t7 T ?
00403442 E8 44C00200 call qsr.0042F48B& `2 W) E h* d8 ?: B8 Q* b
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]% E, \. n! b, [: s
0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
6 L+ p) W4 R {) [+ @00403450 E8 36C00200 call qsr.0042F48B
' p ~% c: }$ T. ?00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
M( ^) J+ s6 ?& H9 }% }% y00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3
0 F2 F8 X+ X4 ]4 C1 i0040345E E8 28C00200 call qsr.0042F48B4 J: i. r. |; _( E \7 w4 ^
00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]. @5 J+ ?$ h- K
00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
+ C1 u9 I5 L. H a0040346C E8 1AC00200 call qsr.0042F48B9 q6 ]2 e6 t; L3 Y8 |4 I" w6 Y
00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
" x! Z# q# I" `) v; b" Q$ G00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1- r$ t7 I2 k/ V% g
0040347A E8 0CC00200 call qsr.0042F48B+ e/ Z+ N# ?0 Y7 O' o* j
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]- k1 l' Q2 X& ~0 V. {) f) ?; \. d( O
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
' h! j1 P: `9 w4 l2 a00403488 E8 FEBF0200 call qsr.0042F48B
! }3 u: I9 w& C0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]4 e/ }( A$ _, n% r8 s9 v" e
00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
* D) P' }& c0 Q00403499 E8 EDBF0200 call qsr.0042F48B
3 G$ n, d1 h* C( \6 ~0040349E 32C0 xor al,al ; AL清0
5 a* c: w2 p5 M" K0 l/ S) n004034A0 E9 88000000 jmp qsr.0040352D
' N1 l" |2 W' m004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~
0 }0 t& W6 I! j5 Y; x! r004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]8 q% D6 m% d4 k4 t
004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9
* T2 b' }$ Y2 i, q& _004034B3 E8 D3BF0200 call qsr.0042F48B/ P: j5 k+ b, R& b
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]. O! D! a$ m* F: q% W. q; K! [" p* k
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],84 J& z. W! T c' v0 C* a( }
004034C1 E8 C5BF0200 call qsr.0042F48B
5 _/ O8 X4 s y$ N; r( L# @004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]# m; |' w+ l8 ^) F( y
004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7; Z- t% ]: U. |+ v
004034CF E8 B7BF0200 call qsr.0042F48B
4 E- ^: M1 a7 D0 n+ k. R- J004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]8 v( @+ K+ S0 P7 ]5 `
004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6$ j' D2 _- ?7 X
004034DD E8 A9BF0200 call qsr.0042F48B
% g5 }' g C! C$ F9 b6 s% K004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
( W# m( z$ @" q2 l* G004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],33 u0 |/ s x, s. u) `0 X
004034EB E8 9BBF0200 call qsr.0042F48B
( z$ U; f$ G6 U* B3 T: T0 ?+ B0 i7 o004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]; ]5 X; c4 A2 S& w5 m' I% F
004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2
$ u8 ?8 Y/ k0 `6 i1 o! ?4 U004034F9 E8 8DBF0200 call qsr.0042F48B8 g! S+ z' D" F$ H1 L! t5 }
004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]! z/ F- x% T4 r) G9 p
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1( Z# i3 Q. M. ~# L; ]" O7 o
00403507 E8 7FBF0200 call qsr.0042F48B
' r: j7 x0 f! N9 G0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]7 r6 l8 H: n, x$ O: v% p8 K
00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0
$ m2 n7 L5 ~8 Y1 g1 d9 ~00403515 E8 71BF0200 call qsr.0042F48B0 m$ u7 O' N& [4 g4 O/ h
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
3 Z U0 L6 L, \# Y! [0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-15 L- b( H6 V" ?6 s
00403526 E8 60BF0200 call qsr.0042F48B' Z$ N7 A7 a8 L a; N* U `% [
0040352B B0 01 mov al,1/ N1 H2 {- ~+ p+ X$ F' E
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
) c2 i0 W0 m: a' F. L# c; W7 g8 w00403531 5F pop edi
8 L; L! e5 S7 V5 t8 k3 k00403532 5E pop esi4 l# h4 }% s' U+ ?9 a
00403533 5D pop ebp! G" r" w) G2 i0 n8 G) c0 R
00403534 5B pop ebx+ r1 U7 l9 \% h& }! \* B! z/ t
00403535 64:890D 0000000>mov dword ptr fs:[0],ecx
3 c2 u4 C. n7 Z* b2 Z" [0040353C 83C4 30 add esp,30
2 P- ^" r# u" G, D* O0040353F C2 0800 retn 8
0 Y+ `; A3 K5 \) ]--------------------------------------------------------------------------------
H+ `9 i0 v# r【破解总结】/ N$ G; q" r( x- D9 }0 Z- Q3 F( P
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
# r+ ^+ D/ V/ y' k5 G8 R9 k用户名:yijun
8 a& t. ?; F0 O6 T+ ~注册码:4893*7777*3726*7777*0529
6 z$ L3 u) [0 W& J! z9 o--------------------------------------------------------------------------------7 ~$ F! s. |8 i2 p& V
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡