|
|
|
【原创】破解Quick Screen Recorder
! P; y# e, @ t: X& l【破解作者】 yijun4 i( V. @ l D
【作者邮箱】 [email protected]
2 f: i6 r3 ^& w( |1 x; \【使用工具】 OD,PEID2 k) W2 M( |8 k/ _
【破解平台】 WinXP
1 ^4 l {9 K/ M% D/ T6 h【软件名称】 Quick Screen Recorder$ N, K% ?9 Z8 r- `
【下载地址】 天空( l5 ~4 D! } X2 o+ g- @4 d
【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on. - l4 @8 _$ \( X) b& U9 i
【软件大小】 540K; R3 m6 {5 Q' h) n# y
【加壳方式】 无
# o; q1 r9 N! _: m1 H【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)
& s* K& ~' _8 i5 T- z0 M( C# T--------------------------------------------------------------------------------4 u8 L) ^5 T9 X: C( \( v
【破解内容】
& _* A* T* E8 ]% V* a7 I b PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
% P9 w6 t; |- t6 R2 _00404C69 55 push ebp //在此下断3 G- {; M& G @" j0 h4 E
00404C6A 56 push esi; m6 }/ o, Q Z
00404C6B 57 push edi& j& J: O+ J2 O/ [4 u
00404C6C 8BE9 mov ebp,ecx8 i+ ^5 ?" E5 W$ i) a7 b3 l
00404C6E 6A 01 push 1
- M2 }9 L+ z2 `/ R, I$ }# F7 T1 v1 n00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
$ m% s( F* M4 F% Q$ f X% P. m( f) H00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]
8 r7 p+ h3 E: a00404C78 8BCF mov ecx,edi
4 y4 P& d6 b' T m' j$ {) R+ o: j' w00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码
5 z1 a$ e2 D9 P8 G) F00404C7F 8BCF mov ecx,edi' R, v7 i* @1 l# `; c) X
00404C81 E8 A73E0200 call qsr.00428B2D
/ I" @. S% t3 j2 t2 k X4 d5 ~" C00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
. I1 ?# U. Z2 s3 `( B0 P& L00404C89 8BCE mov ecx,esi3 ~( Q5 ~5 q- F: a; s B/ ]
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX
' d) I$ @2 N4 N9 e00404C90 8BCE mov ecx,esi' d/ M; {* R% R& s8 u
00404C92 E8 963E0200 call qsr.00428B2D: ~( j1 o9 |! `" c2 {
00404C97 8B06 mov eax,dword ptr ds:[esi]
7 f: Y( Y0 q$ R00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
5 F0 E t4 c4 v00404C9D 7D 26 jge short qsr.00404CC5
" J! B" h8 Y1 I2 ?1 j) u. u00404C9F 6A 40 push 40
! ]" ^3 H4 H1 ^5 R' T+ p: l00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
& P; z1 b2 S5 h0 h( K3 t00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."
! g+ B, M5 ^# y0 y- e, c5 S00404CAB 8BCD mov ecx,ebp/ V |9 W. x3 l4 o, d }" [
00404CAD E8 C3840200 call qsr.0042D1754 m# W# k! d5 d2 c: U3 ?/ i/ E& D
00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]: ~% S" V, R$ H4 J8 W* _
00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx+ H- K' {& i- W9 a% q
00404CBD 5F pop edi2 Z7 z- r, L2 e; f% f
00404CBE 5E pop esi: I6 e/ q8 Q4 e3 @# O0 Y
00404CBF 5D pop ebp
; t j3 ~3 _1 Y3 |2 L; T00404CC0 5B pop ebx- e& N0 h1 j* p( J; f* L
00404CC1 83C4 18 add esp,185 \# o: \+ |0 [4 t
00404CC4 C3 retn
; v/ p2 B' }# q6 e3 x; ~00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]- e5 |; b5 o/ }. N; N" G& Y6 O; y
00404CC8 84C0 test al,al
) `5 ?/ ?) z7 l9 m00404CCA 0F85 1C010000 jnz qsr.00404DEC
# ^2 V% k: L. a& m# B* S00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]- ]3 c" Q8 B/ d; h
00404CD4 E8 87E3FFFF call qsr.00403060
2 N* T( u- `. C4 c" ]! l1 G00404CD9 51 push ecx6 w {! a) Y3 ]2 v2 p) L& @0 S
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0/ O5 R7 G, J+ e: o/ C. y
00404CE2 8BCC mov ecx,esp; `7 W x/ Y9 B! w* J( M) m
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
4 d, T! e; [1 L00404CE8 56 push esi
% ?0 `. X7 D3 D00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
: }* h+ h: \2 Y9 ~* x4 G00404CEE 51 push ecx
1 J7 R8 r; v, Z2 N& G00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1: G% e" M b ~9 C. _1 ?
00404CF4 8BCC mov ecx,esp
- ^0 p B8 ?. d8 _7 d00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
) L- l3 m7 w# l00404CFA 57 push edi5 }; k( }7 U6 T7 N8 m# u6 i
00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0" v/ ?9 @) z" {" e7 k' t
00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]; |" k/ T C! Z4 C" S* L, U* ~
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0
4 V& a! y, p' F8 @00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~
1 Q0 |5 g, A. m) f00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~
9 m6 i5 s, |' \4 z; `7 J3 A00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
- i9 @: R4 T* X! d. A* s00404D12 6A 40 push 40
# }. H( }4 X7 x# f# T00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
% u2 ~4 N: R m4 j3 D9 F- a- T00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."9 ^+ T* g1 q' M b1 K1 ?7 U
00404D1E 8BCD mov ecx,ebp- h6 a( f5 \: \2 p
00404D20 E8 50840200 call qsr.0042D175) X( I6 f. g7 K. { @9 y5 D
00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]1 A, U, D0 l9 \2 F7 u
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-15 I! W6 f' \0 G6 U; e/ {
00404D31 E8 5AE3FFFF call qsr.00403090
; _) _! d7 G8 h00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
0 V: L0 j0 f& g- _! Q00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
+ \# p7 E! a* g8 i' @5 _' t, h! W; F( I00404D41 5F pop edi
1 A( W' s' U2 ]00404D42 5E pop esi
/ n' I, c2 I/ i: Q6 V00404D43 5D pop ebp, k+ |- l( J. L% A$ j* w& S w
00404D44 5B pop ebx- R) t4 `) z% a
00404D45 83C4 18 add esp,18. v7 o, W. T0 Q4 F @
00404D48 C3 retn
6 r8 o& ~) Y8 ?- f9 A*********************************************************************************************************************************************************
|2 U6 \! _2 |8 V! G ^7 ?4 j跟进00404D09处CALL来到:
, ^. V1 j: q2 C$ W004030A0 6A FF push -1 //一路F8下去~~~~
4 I+ o! W w7 S q$ [+ y004030A2 68 C88F4400 push qsr.00448FC8
. D6 e% {/ W8 Y004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
# M4 ]3 h2 V: }2 ^004030AD 50 push eax
( n( n+ a! T( k r1 j- S8 b004030AE 64:8925 0000000>mov dword ptr fs:[0],esp
4 c1 |' c8 @4 }004030B5 83EC 24 sub esp,24
* M+ a0 j) ~/ s% i004030B8 53 push ebx/ `5 b$ @+ }. w% u7 F( }! l
004030B9 55 push ebp" q+ J1 Z9 U& a U! b
004030BA 56 push esi% f% i3 Z7 K; X
004030BB 57 push edi
+ [% S, ^% ^1 B) f+ y004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890" S0 v$ D3 _9 N0 ]0 n% m
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]1 }" S; y- n; m" Z, o
004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1* Q5 Z& l3 j9 F
004030CD E8 27C40200 call qsr.0042F4F9+ W+ C. x! q# b1 {) g
004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]* k K* L6 I( K% P1 M4 Y7 n
004030D7 894424 2C mov dword ptr ss:[esp+2C],eax( r" x' B6 }& S
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
, m e+ a- q( D c( E004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
3 @# }1 |% l5 y, ]004030E4 E8 905A0200 call qsr.00428B791 i0 p0 c, O1 }4 f4 n
004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
5 a8 \; s, T {+ x B w004030ED E8 3B5A0200 call qsr.00428B2D
! M! l) R R# ?! M4 Y( A004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]! [( r) i6 j' t9 B
004030F6 E8 7E5A0200 call qsr.00428B79
' k6 ^0 R" q; I. A- x. P {! w, u004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
, p! K f$ c. d% ~9 m7 M+ U8 m% |' y004030FF E8 295A0200 call qsr.00428B2D9 s4 f2 y, V9 P9 C+ M+ O
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]. b* ~! F: k& K$ ` a8 x: U
00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]; u$ h, o" l, ?) |
0040310B 83F8 02 cmp eax,2
7 M2 M1 O1 }% D5 ]0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
4 B; y7 f1 {! v( e00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]
6 F8 f6 k; M \: D& C8 j2 f00403118 837A F8 18 cmp dword ptr ds:[edx-8],184 A& E4 q* G. a$ I7 n, B
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳( v* }8 S4 f5 J9 W9 [( U: q
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
' f: T; F2 c# S! U00403126 6A 01 push 1; }3 s) ^ l+ S; X) J* T" K+ c! ^" N
00403128 50 push eax/ s& v% C2 @+ k# @$ s7 _
00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]6 y1 a. A9 [4 G
0040312D E8 C4550200 call qsr.004286F6# l1 U: {" V6 j% }
00403132 8B00 mov eax,dword ptr ds:[eax]
4 C7 H2 ?, I8 {0 T# N# k7 ~00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]* C7 Y4 c0 T; d: _% ] l; e
00403138 50 push eax1 `) y2 P" Q5 A; s$ D. T
00403139 C64424 40 04 mov byte ptr ss:[esp+40],4* B* P% F: o. U
0040313E E8 4D560200 call qsr.00428790+ y* W7 L7 E* G4 |. @# }
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
; D! g5 c6 h& M00403147 8BF0 mov esi,eax7 i! W# Q# h( k- i7 h) z1 V) t( j$ B
00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3
* ~& b) {! m% F4 X$ P4 |0040314E E8 38C30200 call qsr.0042F48B) \4 K6 P a* U6 E8 n r& I
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]
+ i5 F! }6 T& c/ f9 J00403156 B9 3E000000 mov ecx,3E
8 J b* G1 _9 I$ a+ O G0040315B 99 cdq
* @7 \- s! M. G6 E: `, f0040315C F7F9 idiv ecx
" E _) Z e, r" t$ T0 _0040315E 6A 01 push 14 ]- h8 [' h- x+ \# d& y( N5 G
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]
2 X2 \, O( K( F# s00403164 8BF2 mov esi,edx6 _3 ]# G* J/ ?+ j, B5 d% |, n) w
00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
" X5 i5 f8 g5 | @. J0040316A 52 push edx$ y3 N# q9 {; m4 t+ }1 {
0040316B E8 0A550200 call qsr.0042867A
4 q, a9 j$ L0 L/ c% `# `% c00403170 8B00 mov eax,dword ptr ds:[eax]
: C- P1 g5 G# Y8 o, J00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
4 a: E) d( z$ N/ a6 r00403176 50 push eax, w% r% A/ }8 ~# t) ?7 e4 B
00403177 C64424 40 05 mov byte ptr ss:[esp+40],5
0 T( o" x, j* Y$ Q: N" f; ^% b* c0040317C E8 0F560200 call qsr.00428790. M6 L1 j( J9 u; A. J$ n
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
7 l6 w1 w9 {5 i. n7 U0 r00403185 8BF8 mov edi,eax
, w1 O' D* x3 _( s3 }$ R& O/ ]1 j00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3, ?8 I: D' e; J) X
0040318C E8 FAC20200 call qsr.0042F48B
2 L1 z& W2 @/ e00403191 8D47 0A lea eax,dword ptr ds:[edi+A]+ ]7 \' I; p2 V8 W' F$ P5 K& {% n/ F
00403194 B9 3E000000 mov ecx,3E G4 T9 V3 w: H. p! T
00403199 99 cdq: L" g! ~/ \8 ~/ r# Q. _9 m
0040319A F7F9 idiv ecx
. l1 w' I4 R4 F G; ~& \0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]
W# F# ]0 P# w% f004031A1 894424 28 mov dword ptr ss:[esp+28],eax8 ~+ \. P* Y* E6 j
004031A5 8BCA mov ecx,edx( y6 G/ r5 n' t+ i- `. w
004031A7 894424 24 mov dword ptr ss:[esp+24],eax
7 a! d6 ?1 W r( w/ s004031AB 894424 1C mov dword ptr ss:[esp+1C],eax- p1 t* g I. a" r( V; a/ n$ o- c; V
004031AF 894424 18 mov dword ptr ss:[esp+18],eax/ `; y1 E* _% W. M/ f( u3 n, H5 r& G
004031B3 894424 14 mov dword ptr ss:[esp+14],eax
4 o# \& t7 c/ F/ }3 P% }" m/ h9 N004031B7 894424 10 mov dword ptr ss:[esp+10],eax& E4 [) l1 {2 @) `+ y% j; \
004031BB 8BC1 mov eax,ecx* F9 \! Z- l. @2 c: T
004031BD BF 0A000000 mov edi,0A
5 a) `4 W) a2 L1 M, }* c004031C2 99 cdq
- d; N5 R- Q7 Q0 ]; z004031C3 F7FF idiv edi A* I$ g% m! ^
004031C5 8BC1 mov eax,ecx
: X6 Z, N9 c3 h2 b5 w$ K! N4 f" o004031C7 B3 0B mov bl,0B
. y9 \& [& ?2 R" r9 u004031C9 0FAFC1 imul eax,ecx4 j' ~% O0 Y9 l3 z. J
004031CC 8BCF mov ecx,edi8 T7 T1 p' H. O* O% Y
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl6 e8 ]3 A: e# a# Z7 |0 J) y
004031D2 52 push edx. [+ _, a, g+ t4 t# `
004031D3 99 cdq
* Q1 l# r' R1 h/ J004031D4 F7F9 idiv ecx. Y* d# p; d4 E
004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]4 K1 D6 i3 V' U7 X4 y' `: [
004031DD 2BC6 sub eax,esi
; M$ i, U1 i( D* J1 K9 \" T004031DF 52 push edx& X2 W6 k8 U T" ]/ c; v
004031E0 99 cdq
[: ~! }; F8 ]1 V+ w004031E1 F7F9 idiv ecx
1 ^3 T# q4 P9 r2 t004031E3 8BC6 mov eax,esi
' H3 y7 Z9 }* ^" S1 f. K4 D+ Q004031E5 52 push edx5 [* q9 f1 r/ m
004031E6 99 cdq6 n- r/ |3 s' z: J1 a
004031E7 F7F9 idiv ecx
; M+ Y5 |" N. N5 D3 f004031E9 52 push edx; I/ \; S0 j# { f: m; R
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
3 Z5 \3 f: F) c7 W; ?3 v004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
1 q' Y6 g$ u- o004031F3 52 push edx: z0 c# R6 t! @- \: o+ x
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893
9 j- _/ w8 y& {4 H" {: a+ n004031F9 83C4 18 add esp,18# T! f7 `+ s' ^0 M% P
004031FC 6A 04 push 4
8 @8 S- Z+ `1 @+ e004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]& s5 C5 P ]2 W. r5 Q& M
00403202 6A 00 push 0. v9 P( P7 L. ?9 L
00403204 50 push eax/ N8 u8 g( |, H4 N) c% z$ y
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]; o+ p& G% v; O1 t# f
00403209 E8 D6530200 call qsr.004285E4
0 Z1 @4 c$ R* Z) m* @0040320E 50 push eax0 E) |! f2 \ P$ p, d! a" e
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]& g+ M1 p0 G1 d$ Y" v/ D
00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C) ]- w5 I) @2 j" R, ~6 |
00403218 E8 A7C30200 call qsr.0042F5C4, u3 C& p7 W! h8 t2 r) x6 a- d9 D
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]+ v/ F5 n% A5 I2 H- u- n3 D6 t: b5 }/ ^
00403221 885C24 3C mov byte ptr ss:[esp+3C],bl$ i2 t K# ^' u2 R5 J) f7 c
00403225 E8 61C20200 call qsr.0042F48B# [3 e+ a" N5 z
0040322A 6A 04 push 4 S+ V- L3 a8 I
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
7 S, X* T8 K" Y00403230 6A 05 push 5
+ j( n, _. K# I; ?6 _2 }/ H00403232 51 push ecx
# u5 f, U5 _4 o8 Y8 B6 [00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]; i6 Y, x' \3 P3 b0 n) c1 D
00403237 E8 A8530200 call qsr.004285E4$ l3 l# L/ O3 |# N- ^0 d
0040323C 50 push eax6 H- x0 H( a) L4 Y& R! t0 X
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
$ B' Y# r. d1 ?00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D
7 i, n/ t {/ x- I* z2 ]00403246 E8 79C30200 call qsr.0042F5C4
- O+ U0 H( z; o0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
$ t" S( J$ ?3 s* V0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl+ s% w8 w) U' A8 ^/ Z( ?" [
00403253 E8 33C20200 call qsr.0042F48B
" Z/ b3 g& J1 O; _2 x7 G% X3 d00403258 6A 04 push 4& _- S; r* w: _9 T
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]
9 }$ X8 w# c0 P: B- C* a+ O0040325E 57 push edi, b* x2 P. ]$ ~) X6 [% d: z
0040325F 52 push edx- d& a) \8 _" |8 T
00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
, _1 B: [, g! G. L7 Y00403264 E8 7B530200 call qsr.004285E4" O# y% H3 `- c' n* n/ s$ K4 B( _4 g
00403269 50 push eax! L( d% o( |8 o5 j- Z% u* K; B1 l
0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
( l) \4 K: T" ]6 D$ Q$ Q( p/ ]) o0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
6 c0 H1 s0 A) C0 |% u( X) x3 ?00403273 E8 4CC30200 call qsr.0042F5C4* t5 b6 q$ f0 F& t: Q( b
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]- U2 m* [: K( L6 k
0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl3 ?. p0 `& c: `7 G1 R
00403280 E8 06C20200 call qsr.0042F48B
+ v4 N5 U0 u8 ~$ A7 q00403285 6A 04 push 4, t0 k$ X: O4 I0 t; P" X
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
" N% @9 z* E6 Z9 t* M3 X9 }0040328B 6A 0F push 0F( O( }- L3 \! V2 I, o5 b
0040328D 50 push eax8 m, x% B E6 Q3 q7 z- \
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]$ U9 ~2 |' P( W; O* t' Y
00403292 E8 4D530200 call qsr.004285E4
" v7 u- z2 l( ]$ G* q- N- |9 V _00403297 50 push eax
+ l w7 v n8 r1 S5 R00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
, s, _6 O1 u8 `6 a T# W% O0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F7 n$ d9 N0 N" n6 M
004032A1 E8 1EC30200 call qsr.0042F5C4
3 X6 o9 _0 P9 ?( a9 @' c( S7 U004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
+ }7 E' L* S$ k004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl
3 R- f& B5 M; k' f004032AE E8 D8C10200 call qsr.0042F48B
" J& n {' A( r7 q4 l( e# C004032B3 6A 04 push 4: A0 i2 z) C/ Z( j% `$ x
004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
4 F s6 l0 h# C+ ^5 K# q004032B9 6A 14 push 143 E1 F6 H% Q" g8 k" g- q, @5 t& Y
004032BB 51 push ecx
+ s$ x' [. o; m# F6 N$ ~004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50], E1 T9 B4 ?8 @$ d3 p, y
004032C0 E8 1F530200 call qsr.004285E4& e0 _1 Q) d$ w! @' X* |8 B, y
004032C5 50 push eax
% [. g0 L/ q/ F: h8 o004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]- G& x0 D' Z! C- U: l' j7 `' x3 r
004032CA C64424 40 10 mov byte ptr ss:[esp+40],10
! a0 y1 g8 x0 c% X004032CF E8 F0C20200 call qsr.0042F5C4. h( b3 B- E }$ D. H$ V$ u4 r
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
3 Q/ t8 S0 N, i9 V/ ?% {5 K1 I004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl
9 Y1 u V( n9 P( Y; x004032DC E8 AAC10200 call qsr.0042F48B
7 E$ i9 A6 q0 n/ _004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI1 h T$ q. }: b, m( j* i& D$ J( m
004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
2 E1 \. ^# n1 R/ ~ J2 v004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL+ S( @# n9 e5 R7 M1 [
004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL1 q% P1 J4 Q7 i% F( Q$ u
004032ED 8ACA mov cl,dl ; DL送CL2 y4 K- K! R( a! o* I4 D, f
004032EF 3AD3 cmp dl,bl ; DL和BL比较
, a% J' e3 P6 J2 w) g3 o) m004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)/ w- D, q# c$ n! S- u* v
004032F3 84C9 test cl,cl( p) c+ d2 \7 w3 J; r# x2 V' ?
004032F5 74 16 je short qsr.0040330D
* \, b8 }1 n6 @4 u, {004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL3 h: X5 E+ [8 _; d8 G, {
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL
5 T* ~+ H; [! ]# s" I& @" R# }6 K004032FD 8ACA mov cl,dl
5 D) k; x9 {* e+ n0 y0 v004032FF 3AD3 cmp dl,bl ; DL和BL比较
6 @4 z1 D! i2 U4 `' T' W00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
6 O& }. q- C. e* o0 X00403303 83C0 02 add eax,2 ; EAX加2 R$ [& I+ b3 W
00403306 83C6 02 add esi,2 ; ESI加2
2 O4 H y1 d. {7 X' } C6 K00403309 84C9 test cl,cl
% e) I) X# d5 u, O; X0 S0040330B ^ 75 DC jnz short qsr.004032E9
v' D J; l: m0040330D 33C0 xor eax,eax. L$ }* Z @0 x6 s
0040330F EB 05 jmp short qsr.00403316( c% F, |6 E( o9 v* c
00403311 1BC0 sbb eax,eax
. a( y& T: z8 W2 s- g* E4 p' V00403313 83D8 FF sbb eax,-1
* e" A1 B% K: Q/ R9 ^00403316 85C0 test eax,eax
]! ~/ }+ p9 G/ c+ X' {00403318 74 0E je short qsr.00403328- A* Z* l" m/ y m; c
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A0 |7 S4 |2 w+ h/ W2 L, m
0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
$ \ W0 H! [! o/ B7 w$ @' p00403323 E9 F0000000 jmp qsr.00403418' A* V1 g4 C/ [1 U/ M
00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX' c. M6 i! Z/ R! b& D8 P
0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
# x; R- m7 @5 @00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]7 P, w9 @& ~+ o2 M- D7 W Y c1 y
00403333 50 push eax
: q. b/ B% ?4 e( `" v00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX* I; K9 G6 n, T0 C9 H
00403339 50 push eax3 ~) o+ l1 a- c; ]& r, z
0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX
2 f2 l. [! i" S0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX& {7 l$ z/ ]3 d3 M( K
00403343 83C4 04 add esp,4
0 {% T2 l( C/ T* A+ @1 \4 Y+ q00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI* }% f, I) t2 J3 ?. K8 [: z, e
00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]* ^( Y5 I/ y( g. r& @, @
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]7 C8 v R! I! D4 r2 A7 A6 F1 T
0040334F 50 push eax
% l% ~1 |) X& @- V/ \00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
( V7 g1 |) K, K" ^00403355 50 push eax
' ~7 V w9 H( G( ?# d, {: [& B00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX: D. |. r$ Y+ r) e% c: A7 I
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
$ j1 @! ]5 s+ E( K5 r& h2 C" Q' l0040335F 83C4 04 add esp,4. S5 K; u. O, J0 R6 n# f$ m
00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI' O- f3 |" c: N4 y! K
00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]; ?, y0 c; Y8 ?- i
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]
( T% m# `; d% n$ m5 J0040336B 50 push eax( m( _) p. u2 g; R
0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX4 ]7 Y2 u0 }% k/ U, z% w5 H
00403371 50 push eax* d i0 E/ u' e% _
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX P6 u2 o: r& s; X# o" _$ s$ s
00403377 8BD8 mov ebx,eax ; EAX送EBX
: I# w6 P3 R! A4 {( X" R00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX' N' j& a% v( p3 w3 x7 H! T0 V
0040337D 83C4 04 add esp,4. S' P+ t! @$ G1 q) g: q! y& W
00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]8 A) B& V! _' N2 `% v0 S
00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]3 K9 v z6 k1 b9 K( r! @/ D% e6 D
00403387 50 push eax
7 B3 i9 V' ?# s1 Z00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX
. g* k; o+ a3 w6 U9 D0040338D 50 push eax
) `6 u6 G( w8 f( ^) j) T0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
) }4 h0 y) \+ C3 `00403393 83C4 04 add esp,4
3 M1 C8 [: o) K4 v4 ~5 `& ?. C- S+ `00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]/ ]$ l/ s; a9 D& s0 r
0040339A 8BE8 mov ebp,eax ; EAX送EBP
; _2 G" y9 I) {0040339C 6A FF push -1: n4 u* c$ Y$ L8 q5 v
0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX
" i! n1 |% k. |3 Q. Q4 J, F004033A3 6A FF push -1
+ u; @3 {, [# k+ Y% w004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
# O. E- E6 C3 k3 I004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX% C& J( I+ C1 g6 p; D: V
004033AE 6A FF push -17 L6 ^. j% ]1 x0 a
004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX5 @4 F) \0 h) O" p d& }" y* J
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX" O* m3 n) d% J- i O& Y5 l
004033B9 6A FF push -1" g V. M! L9 T" E7 j0 L0 z* H
004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX
+ A- `3 D0 l5 L2 t/ {6 B004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX4 R, J" t0 W) M0 |3 `
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX; ^6 |& f, L2 M& T6 E& \
004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
# ~: `4 ?$ T" }3 v. o2 w004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
2 n* M1 t% r* o7 }1 i7 P0 l* N004033D7 D1E0 shl eax,1 ; EAX左移1位0 Z, O- ]; |. t1 l5 `. e5 v! l
004033D9 99 cdq ; EAX扩展/ H8 [* a( n4 _3 V Z$ S% n
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
- y4 v! ]/ s* p* e# A3 ^5 T004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较* k3 Q8 O$ l; M* H
004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)6 F1 l. p4 K# j3 x+ p' h/ o5 \
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A
6 y5 u) r0 v6 V) y5 k0 W004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
- X" h0 _, [0 b004033E9 EB 2D jmp short qsr.00403418
0 T+ c1 L) e7 ` C$ u004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX
8 I; F# X6 i& ^5 K+ H004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2. I2 H- m+ x7 F3 }1 M
004033F7 99 cdq ; EBX扩展
5 O: c* I$ {0 T) Y* I# q004033F8 33C2 xor eax,edx ; EAX和EDX取异或
+ W' e1 ?" p9 s2 R* G' u% O; K2 `004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
* M/ U5 Q: T% H: I1 c4 u' E9 v& b3 `004033FF 2BC2 sub eax,edx ; EAX减去EDX- I, r* \% }' Y4 G& O8 V
00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]
4 s+ v+ w0 t+ r% d# P, c7 M00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX: ~$ [2 }$ l: l+ p; ]
00403409 99 cdq
7 ?; D) h6 ], v0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中" ^5 W' s" I# {6 R! M8 R! I
0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX6 D9 X* }* B* p( i* H" W u
00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较
) S( A% U- ?- }5 H: [3 P00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)
; z/ {, ^9 x d00403418 E8 6EC00200 call qsr.0042F48B ; 5 F3 V" @6 N% @7 m. k
0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14], X; i4 g3 y( Q! Q. K; W
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9; A% s5 s Z& M& F9 l" S! S
00403426 E8 60C00200 call qsr.0042F48B6 f' Q( Q, y: H: i8 d
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]4 j0 O5 F2 t- H: y u
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8
& t+ ~/ q+ U' I+ G1 g' d& I8 f5 G: U00403434 E8 52C00200 call qsr.0042F48B# a. |* w/ w+ l
00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]: P4 X- v, K8 G0 S. n+ Y
0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7& N/ J7 d7 T- I; P9 z
00403442 E8 44C00200 call qsr.0042F48B
" n) Z8 f9 j0 ^# R00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]' F5 ?$ t0 U$ r
0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6* A0 B, g( V9 b5 w% s9 g4 v
00403450 E8 36C00200 call qsr.0042F48B* U1 s9 T& A9 ^& h
00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]4 f1 }5 l) U9 ~2 g, `
00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3+ ^3 f2 S) X1 k! v% C
0040345E E8 28C00200 call qsr.0042F48B
' @ u3 J2 |, k) i9 j5 X00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]5 T5 X& b$ |8 A
00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2" n! R4 z* Y; t" [2 P* e
0040346C E8 1AC00200 call qsr.0042F48B4 z M7 J. d* i% ^7 i# @
00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
' Q C- d7 j' x00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1
" y C( Y+ }# A- k0 @/ l0040347A E8 0CC00200 call qsr.0042F48B
1 h: ]! M9 N9 W! F V0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]% V" J8 S4 D5 h0 L- ]# {: c& W
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0( H, z+ f9 E6 J- X% \! F% m
00403488 E8 FEBF0200 call qsr.0042F48B
$ G, u2 C! o! k; f6 e4 y0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]# e* P/ x0 u+ @8 h% O7 K1 H
00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
/ M Q4 Z/ m: [0 n# _/ |/ X0 g00403499 E8 EDBF0200 call qsr.0042F48B2 c5 _7 v2 e9 W6 H3 I" K. s
0040349E 32C0 xor al,al ; AL清00 B' i8 _0 `( t% y4 l& U
004034A0 E9 88000000 jmp qsr.0040352D& b) |* ~% ?& g
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~: \! d: @# j, q5 x' y* n, n- k7 S
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
1 l4 a5 F+ g R0 |9 I004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9
/ p" p) _' @2 R6 b# k6 ^; W' q004034B3 E8 D3BF0200 call qsr.0042F48B4 x& N% ^# r. k& ]1 L3 @6 d
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]2 p. f, O$ U* W2 y7 N
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
U4 ?$ h: p7 I9 f004034C1 E8 C5BF0200 call qsr.0042F48B
+ W! h% k3 k- t+ A004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
$ O; ^# R9 F2 `$ z a7 ]004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7+ C c; ^- R d% t
004034CF E8 B7BF0200 call qsr.0042F48B/ p- E" \' u. v. n; s
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
7 c( y6 U2 [0 n8 v$ [$ _004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6
" G4 e k$ i6 L' ?) R M004034DD E8 A9BF0200 call qsr.0042F48B
% s) D3 W* U. a2 w004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]( W! T' S8 L- _0 M- [6 h
004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
1 [% g* e$ B$ b) _$ Q6 @8 s004034EB E8 9BBF0200 call qsr.0042F48B
/ j0 L0 M4 S* t1 c$ L* S004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
" L6 ]* W( g4 O+ x004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2: T% c0 ^, r5 i7 @# h# I
004034F9 E8 8DBF0200 call qsr.0042F48B
# E4 i- _6 \+ n' o004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]! A. o, C, S& d* |/ @* N* H
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1) |$ D8 a U: v9 w; u' m5 y0 |! x
00403507 E8 7FBF0200 call qsr.0042F48B. V- G5 l. P, ^9 A9 e
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
) p& Z8 ]* z" H0 T4 \5 V3 ?, `00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0- ]& i( t: M/ S& Y9 \7 H
00403515 E8 71BF0200 call qsr.0042F48B" X2 d2 l7 J; \' Y. u
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]# U. v$ h( I* P$ f7 I: g0 J! [
0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1; C% e( |2 c# `$ `. ]' u/ V
00403526 E8 60BF0200 call qsr.0042F48B' j$ _% J: y K! ?
0040352B B0 01 mov al,1
1 X( V C/ _3 K5 J0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]* ]; k3 w! M( j0 X6 x6 I2 t
00403531 5F pop edi/ j& Y$ K. Z5 F' \# V
00403532 5E pop esi, W' q) H, `7 _! {9 b
00403533 5D pop ebp
5 Z/ @" q5 }+ F* ]00403534 5B pop ebx
6 m0 o- U/ n; D9 N00403535 64:890D 0000000>mov dword ptr fs:[0],ecx: s( }4 S$ J5 a' P* K; Q( K; \
0040353C 83C4 30 add esp,30$ y# g" S2 s* \1 f, v1 a
0040353F C2 0800 retn 8
2 }1 c% \9 h- \' m7 b--------------------------------------------------------------------------------
$ |/ D' ~4 J, { M【破解总结】6 X% M2 e" C( ~
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
9 f, T" ]) M7 u, g& s, z9 S用户名:yijun5 \1 {/ O: {( X
注册码:4893*7777*3726*7777*0529. k0 K8 G8 C/ g: ^& }3 r. h0 ~2 }& M
--------------------------------------------------------------------------------. {6 j9 M! f4 A2 [
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡