|
|
|
【原创】破解Quick Screen Recorder
* c' a) q: \, a N, J- a【破解作者】 yijun
# ^' k y) \1 _/ z7 H【作者邮箱】 [email protected]# l$ N& n; S) r6 D- j! D5 Y
【使用工具】 OD,PEID& k; R' R0 A# e; i! z+ E1 @
【破解平台】 WinXP4 D, T5 A5 F3 j4 N- {3 d
【软件名称】 Quick Screen Recorder
) B( c* M1 U0 O) ]' w$ X【下载地址】 天空) k8 a) }) r. y' N
【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on. & Z# p- u8 c. z9 I0 m3 N
【软件大小】 540K
- Z/ B% F% Z3 \$ s【加壳方式】 无6 A' x& K$ p! x: U
【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)$ T- t, m- C6 ~8 J
--------------------------------------------------------------------------------3 P( ^ H. R4 A; D
【破解内容】
. d w4 a1 y! a# W) R PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
. T8 m- t2 G: O5 t0 O4 @1 R00404C69 55 push ebp //在此下断* w1 I. V5 v7 k1 m0 e( c6 S# R$ {+ d, `3 p
00404C6A 56 push esi
5 D1 J3 ^8 P) r* w2 p5 w00404C6B 57 push edi
+ C3 k& N" [; g' q- d) @00404C6C 8BE9 mov ebp,ecx
' K" j) K* E: `00404C6E 6A 01 push 1( b* F+ O. B# u$ |' J2 B8 k
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名' s1 k) c2 i! H6 X9 {7 t, T+ |7 h
00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]
0 C& c0 u2 y! L( ?: z00404C78 8BCF mov ecx,edi
H' H( {1 o, T00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码3 ?2 v X7 U; L6 |* P
00404C7F 8BCF mov ecx,edi
- o0 c Y; k) N2 A, F00404C81 E8 A73E0200 call qsr.00428B2D7 m( S3 ?3 _5 \5 n
00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
+ @4 _$ V' {; G0 X- g6 c8 ]00404C89 8BCE mov ecx,esi
8 a( p! F+ u1 x7 l: F( D5 k4 h. O00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX
4 }7 Z* R8 h/ m2 s00404C90 8BCE mov ecx,esi
' v4 |. z. _4 a) Z- Y8 _00404C92 E8 963E0200 call qsr.00428B2D
$ r( F4 y" w0 k( Y2 }/ @00404C97 8B06 mov eax,dword ptr ds:[esi]2 @+ ]3 m+ m; X! M3 F& T9 [
00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
) h# f4 t9 W' ?7 l9 ~00404C9D 7D 26 jge short qsr.00404CC5! n- Q" z' O- ~/ ^
00404C9F 6A 40 push 402 L. C. j) M6 d/ T
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"6 o- Y; }5 t8 j2 e1 e! M* g
00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."9 T6 Q \! s7 \4 t' q9 H
00404CAB 8BCD mov ecx,ebp/ E+ E3 L' J+ x( i- v+ T
00404CAD E8 C3840200 call qsr.0042D175) @- F8 q- E6 E6 C
00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
, C3 l$ i/ G' e0 C/ [- K" [00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx& P) P2 z2 V: c' d5 I0 r* x) Z
00404CBD 5F pop edi. l" ?5 F- f: K) E" i. s9 q
00404CBE 5E pop esi
2 f5 t/ w9 p/ ~0 z' j. D7 t% R00404CBF 5D pop ebp3 \4 w3 F9 w. O$ M2 ]! R- P
00404CC0 5B pop ebx( o( _5 f9 X3 U$ T2 e7 L' Y3 b
00404CC1 83C4 18 add esp,18" |& O0 E, O% {; y! i
00404CC4 C3 retn
+ N* X3 R& N# K: f6 q# a3 d1 K6 s00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]9 A) b, V3 q7 {+ t; @& }- z
00404CC8 84C0 test al,al
q) r% `- {4 b% ~" J: P7 ]* P00404CCA 0F85 1C010000 jnz qsr.00404DEC
% v2 D, c/ {- U1 z7 u* E00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]' M4 p0 X H+ L2 T# d+ Y' X1 `4 G* w
00404CD4 E8 87E3FFFF call qsr.00403060
) |9 r( B" p U6 T# B0 I00404CD9 51 push ecx7 d5 E$ V5 ^7 m4 E
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
& u( _2 d O' Q f00404CE2 8BCC mov ecx,esp* }. }: n& h5 u# ?
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp0 @) M3 r$ H+ g" \! z3 A( J
00404CE8 56 push esi+ a$ B! b9 ~8 `0 r! j
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
. m/ d T' J6 ~! W00404CEE 51 push ecx
) t' A& O: w; Q1 m1 y! }2 H2 Q5 }00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1
6 Y( X$ x- ]* P% l* s9 a+ q0 ~00404CF4 8BCC mov ecx,esp7 Y3 `" D$ T% q# c
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp$ Y) c0 W0 }* r9 Q* G1 `2 n
00404CFA 57 push edi
, ~7 M+ r3 u8 ]+ O4 @0 j00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0
0 h! X/ ~$ x- M, I0 k00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
8 G* h8 i8 h# ?( A$ `! k) m* g1 y00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0
" M+ H; T# H4 I/ d: L00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~" s7 ?9 [# _0 \9 r
00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~
* ~, |/ e C' v+ A& d$ J8 H00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~- R( r* \* |3 k+ s6 V
00404D12 6A 40 push 403 z4 m& N( s) h9 ]
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"- M' s0 _4 F" G$ R
00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."
2 ^0 `$ L2 o- _0 b& O00404D1E 8BCD mov ecx,ebp
. F) }# \6 a2 r; d- a- I1 P6 L00404D20 E8 50840200 call qsr.0042D175
" G% O1 h3 z$ M/ ^( v: U9 f! N/ g00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]5 Q% l0 ]3 ^6 x( B
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1
; R5 R& ^7 T( Q& b: ~00404D31 E8 5AE3FFFF call qsr.00403090
v" T" Y0 t2 `2 B6 n! J8 y0 M) ~0 x00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]( H* s+ u0 l$ h9 b# ]
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
5 q1 ~; f& f2 Y0 f" `5 c0 U00404D41 5F pop edi
! k9 x; W1 o* k% j# c) |$ n. X$ K" d# ^00404D42 5E pop esi
& Z" j/ |; ~4 ^+ z00404D43 5D pop ebp
1 j7 Q; @- y7 t9 n b% I00404D44 5B pop ebx Z4 W0 J! z0 T# Q( J
00404D45 83C4 18 add esp,18( H C( t& _* Z3 \- @9 t
00404D48 C3 retn
6 z8 D# j: x" z# ~, S/ ?*********************************************************************************************************************************************************0 \* h& ?# O1 R1 {" o3 L
跟进00404D09处CALL来到:/ I' \& S8 Y- e( S
004030A0 6A FF push -1 //一路F8下去~~~~4 ^. {* R4 r* S0 }# A8 _- I4 D
004030A2 68 C88F4400 push qsr.00448FC8( s' ?9 J$ ]* F5 v
004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
% [: B9 R. r- Q! l) |004030AD 50 push eax g* M# N3 G; u0 B; ]1 @7 Z
004030AE 64:8925 0000000>mov dword ptr fs:[0],esp5 x# r* p; P, S' m
004030B5 83EC 24 sub esp,24
$ }4 R0 T% D- N! T& `004030B8 53 push ebx# m9 {( n, I* a5 d: Z2 Y. H
004030B9 55 push ebp/ e; C/ q' R8 G6 Y h V0 Z
004030BA 56 push esi
. e. p* ^5 G3 @6 t0 b1 y/ }004030BB 57 push edi1 T% \! n/ C+ r+ u9 z! L* N7 V
004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890", _. S& z6 n" f
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24] A7 G$ ]! ^1 O, S7 V4 C! e+ {
004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1
8 a- X3 E, z3 _; s' O004030CD E8 27C40200 call qsr.0042F4F97 E7 z# n: Q- K+ u. l
004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]6 b x" V7 x& ]. X) a
004030D7 894424 2C mov dword ptr ss:[esp+2C],eax
8 b& [5 v# f# Z) k( V) c$ P8 m004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
/ t( Y& e: M# M ]% j2 b* X, g004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
+ q) h! ?4 F# F0 r/ k. n004030E4 E8 905A0200 call qsr.00428B795 E/ q+ w, h* `( y x
004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
6 F( @ F# s0 N/ R004030ED E8 3B5A0200 call qsr.00428B2D* p% o2 e; a+ A9 ?0 q
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]+ ?7 C# z M% \: H
004030F6 E8 7E5A0200 call qsr.00428B79
9 @8 j8 v& [& c004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]/ F! z$ f I' i5 [/ J
004030FF E8 295A0200 call qsr.00428B2D! S3 ?& l" e& F; K
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]
2 d1 D Z3 O, l! p0 X00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
- k- ^$ J! F( ?9 U; d6 K7 P0040310B 83F8 02 cmp eax,2
3 s- q# G9 z" Q% j0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
/ x* L1 z* R7 f7 X* n- j00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]7 _' o2 Z, D% t! i
00403118 837A F8 18 cmp dword ptr ds:[edx-8],181 W& O. H9 _4 z
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳
% K) z) H5 F- w4 O& J$ ?00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
0 f: [* p+ h. z( W. I00403126 6A 01 push 1& {% A. l9 m& }
00403128 50 push eax
) A0 ?0 I0 }" E+ l% |. n3 M00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]1 i0 H: X/ R* d0 R
0040312D E8 C4550200 call qsr.004286F6
P: x5 G% d0 _- E! B00403132 8B00 mov eax,dword ptr ds:[eax]
( C$ _! Y/ n* i4 I, Z& Z7 c00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]( R" ?( y4 D7 z
00403138 50 push eax
+ H; ^* g; a6 W- J00403139 C64424 40 04 mov byte ptr ss:[esp+40],4) r1 ?! S8 Z) y. z0 Y
0040313E E8 4D560200 call qsr.00428790
5 K: w: M, ^+ ]00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]( d. _1 z! `/ X$ h6 M2 m( K; ~9 q+ @
00403147 8BF0 mov esi,eax: ?5 V! p9 \( M* n. X$ h' ^
00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3
4 s! ~3 A- p2 | F% U7 N: h0040314E E8 38C30200 call qsr.0042F48B
" b% G" n! g) f0 F: A00403153 8D46 0A lea eax,dword ptr ds:[esi+A]7 b; ]: j7 E( Z+ `7 B3 [+ v
00403156 B9 3E000000 mov ecx,3E' }! \# M$ Q& r0 V$ v
0040315B 99 cdq1 }* `8 D1 V3 B/ M8 b
0040315C F7F9 idiv ecx3 G7 @4 U4 o* M- e+ ?% n
0040315E 6A 01 push 1
, S- n- n+ e0 u/ \00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]
. Z/ c) A/ X- G- `' o& ^$ P- u3 Y; J00403164 8BF2 mov esi,edx7 x6 P; h4 k- ]* l
00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]/ O( q3 {6 b/ {1 J/ Q
0040316A 52 push edx! t! i- J, i2 D! k) B
0040316B E8 0A550200 call qsr.0042867A
' X% U l' L; R00403170 8B00 mov eax,dword ptr ds:[eax]3 ~2 _- [& b( k, p& I5 k! i6 e
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]8 ]7 w4 w2 n2 |* c2 r4 n% u; t
00403176 50 push eax; p6 ]8 s2 B7 ~" X) r: y
00403177 C64424 40 05 mov byte ptr ss:[esp+40],5
2 |5 v8 @6 ]2 j" N; g0040317C E8 0F560200 call qsr.00428790
7 y5 d! q5 N0 o1 L6 }# [00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
2 D9 s* x4 z* g" ?+ M00403185 8BF8 mov edi,eax! \8 N: R7 B5 r# [: M. j
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3
, [+ v, m. N9 {- x* G3 z% V, i0040318C E8 FAC20200 call qsr.0042F48B
- W; p3 _5 n9 p00403191 8D47 0A lea eax,dword ptr ds:[edi+A]
" i8 R% z7 ^: ~2 g2 m00403194 B9 3E000000 mov ecx,3E
' b5 E( F# v- ?% f00403199 99 cdq
- B( p4 h! B/ l0040319A F7F9 idiv ecx: ?+ {" b% X- B" r
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]
2 T" `. `2 w' z" [2 V& b004031A1 894424 28 mov dword ptr ss:[esp+28],eax
7 M3 [6 h& V: D- D {+ W004031A5 8BCA mov ecx,edx
7 t' _- G$ C% L/ I1 e! Z; [004031A7 894424 24 mov dword ptr ss:[esp+24],eax
6 ]1 U6 `& I" [004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
: z2 X" J, r7 D E) W! I# k0 M004031AF 894424 18 mov dword ptr ss:[esp+18],eax
2 z4 V, k6 F* F% s+ U004031B3 894424 14 mov dword ptr ss:[esp+14],eax( t* T9 V6 |! k
004031B7 894424 10 mov dword ptr ss:[esp+10],eax
) B; V$ U/ L& L8 U+ ]1 r1 \004031BB 8BC1 mov eax,ecx
: v! x5 n D) q9 @004031BD BF 0A000000 mov edi,0A
6 f9 s7 H7 |; V# ?8 t004031C2 99 cdq# X# t' R+ _2 ?& |5 e
004031C3 F7FF idiv edi
1 \7 @# k! E4 f004031C5 8BC1 mov eax,ecx
6 _# y* c; Q5 h* m- B0 x2 ~' G004031C7 B3 0B mov bl,0B; L% R: a2 w5 Q1 m
004031C9 0FAFC1 imul eax,ecx- H) _, k& w8 i. E: N4 c
004031CC 8BCF mov ecx,edi. ^' b9 n+ g; v; {. B- o, i0 T
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
& K* P5 u# o3 |004031D2 52 push edx6 @2 d5 j- \% w
004031D3 99 cdq* s0 ?3 z0 \. ~- M2 W& o' V: Z" \
004031D4 F7F9 idiv ecx! `8 C1 Q7 `5 v7 r3 j( ]
004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]
2 d2 _/ h# h1 X' u; L004031DD 2BC6 sub eax,esi
7 ]0 {; [+ k; }004031DF 52 push edx! d, _9 u9 j/ _: @4 L A
004031E0 99 cdq: A: S% B. o: j, ]! t
004031E1 F7F9 idiv ecx" h C) ~0 ` W) |: D# S
004031E3 8BC6 mov eax,esi) i/ n% E0 w& P9 _8 d5 a
004031E5 52 push edx# q0 V! B3 e1 X& v& w
004031E6 99 cdq& }9 B+ S! y$ ]0 u* ~6 g" B# u
004031E7 F7F9 idiv ecx
" n% K! p/ e0 M6 R* {6 Y' n+ r004031E9 52 push edx1 {' Q: a, @$ R( T3 Z
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]% O5 {! H- y7 _# i7 k
004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
/ g& ~4 O8 S c8 `004031F3 52 push edx
& d0 A7 ~- f5 Y; v% W# M3 |- z004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是48938 k/ r; G b8 p# c, q
004031F9 83C4 18 add esp,18
' `" u! A+ R6 f$ l' x( D7 T004031FC 6A 04 push 48 ~0 p5 k# G8 \9 \6 j$ T
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]. D- g% S8 K2 A/ x" I& z1 `# N
00403202 6A 00 push 06 g( E4 i3 ?: ~4 A2 v' V0 b
00403204 50 push eax
( K! ]8 @) ]0 ?, E: B- ~0 h% Y00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
/ @0 E/ g2 ?6 W( ?( C+ ?00403209 E8 D6530200 call qsr.004285E4
: Y* {* B, m3 b" h" c5 t0 \0040320E 50 push eax
5 w+ Q! L7 W* O# x+ V+ u0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]6 p4 L$ o# u) H4 ?- r
00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C6 h* n, ?( |7 R
00403218 E8 A7C30200 call qsr.0042F5C4
9 U, W- U/ G# m1 w6 w$ i/ F3 e2 s+ x& z0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
k8 U3 d& C8 t( P00403221 885C24 3C mov byte ptr ss:[esp+3C],bl
% }. X) ~, ]5 }7 g7 M( V& d00403225 E8 61C20200 call qsr.0042F48B
. b2 l9 M0 V9 z& Z0040322A 6A 04 push 4
5 ~) m- K* E! S7 {# Z0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
6 B* n+ q4 M. ? B" Z5 U" ^: _6 m00403230 6A 05 push 5$ z' g/ i, T3 b$ G( O& `$ t
00403232 51 push ecx
, f" z# g* r6 q6 D0 ]00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
. R" ?; V, ~5 s, {( l! t0 B; B4 k00403237 E8 A8530200 call qsr.004285E4
: m7 a- Z1 ^. H$ t( o8 d- y+ h0040323C 50 push eax8 {5 R! \1 f. q3 A% P
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
0 `3 m5 d. V% {$ h2 n4 ?00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D
: k& J. `8 G0 _00403246 E8 79C30200 call qsr.0042F5C4
$ f" p+ G z$ Q* v8 A0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
4 w$ V# N+ h3 H+ g0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl1 ]) E- \) }% u% U/ Q
00403253 E8 33C20200 call qsr.0042F48B, Y' S1 i2 D5 {' U
00403258 6A 04 push 47 a% b9 _: T+ g% v9 u6 l
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]5 L7 J: p* z9 h; S) Z# ?* x
0040325E 57 push edi
( [8 ^- k7 w1 B5 K0 M8 m+ X0040325F 52 push edx) u; ^$ I( t# Q, e+ I
00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
! C0 E4 N" V7 }) ~, \4 Y- C00403264 E8 7B530200 call qsr.004285E4
; D2 ]9 k, m Y$ A0 S3 z5 ]9 C. ~. {00403269 50 push eax% V) m# k( b/ _2 C+ R+ W2 k
0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]$ p: F1 r- }: M6 C. l" l# r6 a& o
0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
3 a% v8 q: j# B4 m2 y00403273 E8 4CC30200 call qsr.0042F5C4
: U1 T7 e5 [; P' d' {% e00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
1 k+ C7 v; e, \6 [7 \ ?0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl( u2 Y- L9 }7 L; Y; R$ M- @
00403280 E8 06C20200 call qsr.0042F48B
z* U; V3 {7 F00403285 6A 04 push 44 J0 w8 a" f+ H' T
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
) z" ^- @8 P$ }- s8 U9 p0040328B 6A 0F push 0F3 g; }7 y. b$ E1 L1 x
0040328D 50 push eax
G8 h" N2 ^8 F8 I0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
5 B7 C$ A+ u' v1 m8 v' ^00403292 E8 4D530200 call qsr.004285E4
l3 r7 g$ G! M0 ?7 ]( x0 D00403297 50 push eax. I8 K$ u5 f4 ]- V! e
00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]2 q0 F6 H( [# U4 w; t3 @% E1 l* m
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F* X& C3 S. u5 q9 ~, P
004032A1 E8 1EC30200 call qsr.0042F5C4
$ f( A* t1 H( @, M004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
; }4 x6 H" b9 v9 ^5 X# Q004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl
" G! B0 @, @& j# D1 p# R004032AE E8 D8C10200 call qsr.0042F48B* K5 B. H G( Z& R, D/ w
004032B3 6A 04 push 42 P, F! a# d: @" N+ e& d/ q2 p" H; l
004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34], w/ i2 ]+ I. ~& M. I5 w
004032B9 6A 14 push 14- F, h/ X8 `& ?8 F
004032BB 51 push ecx
$ s' E& S' G V( O004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]( i7 v. `0 P& f- L# ?
004032C0 E8 1F530200 call qsr.004285E4* g( G' L6 d& f4 R5 ?4 K
004032C5 50 push eax/ n$ Q# A) q N
004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
: Z2 z z) J7 {004032CA C64424 40 10 mov byte ptr ss:[esp+40],10
, e+ i5 E9 o. D' o0 g# h004032CF E8 F0C20200 call qsr.0042F5C4: @5 \8 m8 T! H
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]1 ]& f* W" Y- l9 k4 V. ~
004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl
$ G) T3 }/ g# ^1 M0 C9 J# p( I! S5 y* o004032DC E8 AAC10200 call qsr.0042F48B
5 a' h @2 M& N7 x2 L& w004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI- C: R7 p6 l4 ~, R
004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX" R& K- L5 c; r2 }9 c T B
004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
+ _% C' l& C1 s2 m004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL
1 Y) F. c1 `9 f5 j9 [ T004032ED 8ACA mov cl,dl ; DL送CL
5 r- x! j( |" Z) L# K9 r% |004032EF 3AD3 cmp dl,bl ; DL和BL比较, u5 k" ~; b' `0 ?+ I }" C, A
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)) |! {* \0 Q$ r: `
004032F3 84C9 test cl,cl( f1 a1 t4 [% K) @% |3 `! M$ M
004032F5 74 16 je short qsr.0040330D/ o$ V' ]" g$ u- k+ ^
004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL7 D) i, w4 o* [/ s& m, i
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL
) \9 o8 R7 `# G( ^6 C& i* m& I& k004032FD 8ACA mov cl,dl
" D j* l2 |( V6 i4 ]& v004032FF 3AD3 cmp dl,bl ; DL和BL比较9 E. [% e. T/ u, e# u
00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳), r$ ]2 ]9 O& |8 p) f
00403303 83C0 02 add eax,2 ; EAX加2' J4 t: ?/ T2 j# f% j
00403306 83C6 02 add esi,2 ; ESI加2
& S# q4 t1 }- ?2 n/ M00403309 84C9 test cl,cl! i3 C* L. I9 C# ^- v# V+ U
0040330B ^ 75 DC jnz short qsr.004032E9
4 P- R7 g: @/ ?9 Z. [8 O0040330D 33C0 xor eax,eax7 G7 n* n4 b H+ i6 S ~9 n( R
0040330F EB 05 jmp short qsr.00403316
H" g+ m* d8 l$ P4 K6 N* {! c00403311 1BC0 sbb eax,eax
! T! O# q% g' f: O V00403313 83D8 FF sbb eax,-13 a2 c/ s, B* ?4 m3 ^1 H7 ?
00403316 85C0 test eax,eax) Q, ^3 [$ \6 k- p+ s* y' o9 M
00403318 74 0E je short qsr.00403328( Y; r' [& i+ H2 n
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
& g2 m4 W* n! v7 a( j- g0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10] l+ @# Z) }! S2 z
00403323 E9 F0000000 jmp qsr.00403418
5 [2 t+ ? g% Z0 g00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX, O7 |) C0 h7 z! L2 l- H
0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]; G" X E$ t/ l# {
00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]/ E+ F) _ ~' d( v" O7 O/ }( a; E
00403333 50 push eax% [( e' u5 E* G! a9 ~7 \
00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX- ?- {+ d3 i# C
00403339 50 push eax8 X( c' o% I9 u
0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX% r( b0 e& J- h: H' p
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX& s4 w! H1 ~) }" d
00403343 83C4 04 add esp,4
% W: z/ `, [' J4 g) L) N5 ]00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI& O8 O) I1 u7 p' T& {" B, I6 ]* P
00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]% t7 t7 ^3 q# p! h$ e, B; [) W
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
- @0 V) W! s6 V0 ]/ P( ] G0040334F 50 push eax
1 y9 j# t# \; t00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
0 K+ H4 _1 K! [+ h+ {' {00403355 50 push eax
/ o% N# @' T: G8 W00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX3 b0 [# u3 x4 u+ m; `: @
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
, H% k* W4 U7 S: L. u0040335F 83C4 04 add esp,4
+ D' t2 R( K3 r" r00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI
. J( d J. i% X00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]& [$ D' j/ ^) D1 F7 l* H
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]
- L# I4 |- B0 o4 `0040336B 50 push eax
2 `! y R2 E% }$ }2 v" T0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX
: w) j+ `, y$ ?- ~( _ y00403371 50 push eax3 F, K/ d- s6 y! X% r8 Q
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX% F" L3 f5 U. } a O* n/ P
00403377 8BD8 mov ebx,eax ; EAX送EBX/ V4 q0 I1 x4 j7 M* F
00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX
. ?% W) E+ x% M5 L0040337D 83C4 04 add esp,4- J6 P- s. ?; x% l7 s, H( S9 ?
00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
6 w2 U6 Y, _; R( ^# y00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]
4 Y& ~' @9 P6 g( \6 \( i00403387 50 push eax
2 ~9 Y' l% D4 r$ l$ a+ \+ f00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX- y) C( U+ H3 e+ L3 F4 T
0040338D 50 push eax/ Q( M- t d( ^5 R- G1 o4 Z
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
$ E! F6 p: L, o" `$ C k$ \: `00403393 83C4 04 add esp,4
& ]/ h& M; Y z- v00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]5 c" _% @* H) r! }- j1 Y
0040339A 8BE8 mov ebp,eax ; EAX送EBP0 s1 I0 f0 A2 t5 h
0040339C 6A FF push -1
' x7 Q/ j+ `, }7 F4 d2 @0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX
- L5 }. _9 B. `9 }004033A3 6A FF push -1
. F& j6 V4 s ^004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
0 p G3 d) r$ Y! x004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX2 G! b& z+ W% y
004033AE 6A FF push -1
7 t0 V* r& U/ |2 P004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX& ~$ c4 x- H S; {- z& R2 S
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX
' i2 {& F- p' u. o004033B9 6A FF push -1
& D" e/ v* ?/ U004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX
! K1 b* z' ~1 J004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX' j$ X; c, H; k2 ~. n" n* j0 Y* |
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
' v$ J& O& h4 i2 }2 L004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
3 y b, N% ~2 W8 B( g004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
% j! U+ P# Q8 }# W2 c; {004033D7 D1E0 shl eax,1 ; EAX左移1位. i0 l3 F: ~- k
004033D9 99 cdq ; EAX扩展
# E; v; y& @' o. g, \004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
$ t2 |" H6 Z$ d4 u004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较. v8 ~6 Q$ s/ P$ F) O8 x
004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳); C( Z; I! i& |; b! X+ N) T
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A
3 j2 L4 }/ f0 |6 L2 }) o004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
4 h- B! ?+ u% ~; D$ B& T004033E9 EB 2D jmp short qsr.00403418" m# H' l% }* X7 t5 K$ N
004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX
4 \; F/ j. ?9 \/ W1 X004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E27 I9 j5 Z/ s( j* u
004033F7 99 cdq ; EBX扩展
2 }5 q, l" T0 P004033F8 33C2 xor eax,edx ; EAX和EDX取异或
) I/ O, Q R, M8 V004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX, a, r% P1 f9 @
004033FF 2BC2 sub eax,edx ; EAX减去EDX
- ?2 H2 f9 ?6 Q) X' l% P6 H00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]
, o9 w! l8 \2 G9 A4 B ^6 {00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
5 l5 f `+ J+ t1 ?00403409 99 cdq
. R' N4 t3 G7 j$ R4 T- f' c. [0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
! g" f) C8 Z& t" ]0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX; N- z# {9 P4 i8 I
00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较, L& a7 x7 P; d. B3 `" ~: P
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)
) Q4 b2 w5 U. ?5 _9 ~/ h: X00403418 E8 6EC00200 call qsr.0042F48B ; . q2 w+ i! u' |1 b# s0 Y
0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
$ f5 x! V" k3 n$ T5 O- @$ O00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],94 o+ s3 V/ k o; X' Y) e' O C0 d
00403426 E8 60C00200 call qsr.0042F48B
7 L5 r8 [9 o: g Y9 I w0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
9 ]8 s2 I7 a: r; l. O* j0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8
! A i! C6 x" L7 y3 t! D0 P1 D00403434 E8 52C00200 call qsr.0042F48B0 d8 L6 M. @/ m) A/ y* K7 ^
00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
) r! C8 {9 h$ @6 b- c, w% T, S0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7
9 m2 n' [5 N u; S$ G h2 y5 b00403442 E8 44C00200 call qsr.0042F48B4 j# q3 J! F5 Q% q9 o6 E
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24], T' d' s0 a, H" o/ Q% [. |* @
0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6" w7 v9 V" z: W$ [, v+ q
00403450 E8 36C00200 call qsr.0042F48B& Y: v) S; w7 h/ J& D: s- |0 _9 C
00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
/ n/ H8 D" a2 Z7 L6 o0 ]00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3
* q" g9 z( }( G! k: Z0040345E E8 28C00200 call qsr.0042F48B5 N T" L& `2 Y. I K; J# b
00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
" H, G& w7 {/ S6 X/ O: K00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2# N& Y# [% i ~, B: z& w9 p8 @
0040346C E8 1AC00200 call qsr.0042F48B
, \) r K' o, O: i00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
' n: l; M4 Q. c) k) w U00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],19 F! j* a9 U; [3 _$ A8 ]8 T
0040347A E8 0CC00200 call qsr.0042F48B
' x, q7 _5 d" j. R# R0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
. Y# K: a+ m0 y00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0$ A9 k$ d* S; O' Z4 t4 N
00403488 E8 FEBF0200 call qsr.0042F48B
0 Y/ \% Q/ N5 Q0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]6 r/ }5 P& ]3 z P+ v7 [
00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-16 V$ N$ h' n6 |) O
00403499 E8 EDBF0200 call qsr.0042F48B
+ Q) Z; e+ @! r# m7 p) \- N0040349E 32C0 xor al,al ; AL清0, E: g% U) d: c/ }- O, y( i( }& B
004034A0 E9 88000000 jmp qsr.0040352D# e5 y- F# z7 P# [
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~4 H; g$ o% U* x" m1 ~4 w: r
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ^" @/ |! p" o1 `: O* F- ~
004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9: i. m9 G2 h3 V& T' G
004034B3 E8 D3BF0200 call qsr.0042F48B1 R7 x. w6 G$ q" ` i `
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
8 _% T! n; K9 e) v& A004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
( E3 a3 h' l6 H: r& ~% j: Q$ l004034C1 E8 C5BF0200 call qsr.0042F48B- S9 y8 F2 i5 z
004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]- i y7 ~5 y% k+ { M0 I
004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],71 t0 O9 E0 X! B3 s
004034CF E8 B7BF0200 call qsr.0042F48B0 t: \9 D) a, `# E. {
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
& _! J/ {& i( @2 j @- l004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],67 `0 E" r! X) D" o! q
004034DD E8 A9BF0200 call qsr.0042F48B# k V: _" e4 i1 q$ u# ~
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]4 Z2 @; O# O9 y+ @
004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
$ u+ b9 P- o0 z* ]6 S004034EB E8 9BBF0200 call qsr.0042F48B/ k: N0 n9 X# m; Y0 S+ `
004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
1 [- G: w( c$ [) E8 y) a( u004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2/ B$ X. }/ E% Q
004034F9 E8 8DBF0200 call qsr.0042F48B
( ]7 ^" w# O% F4 p7 H [004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
) X" V4 b3 M C00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1# T! I6 y0 i' S k+ A
00403507 E8 7FBF0200 call qsr.0042F48B# i6 ^ v* q5 X# W4 f
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]# j+ a7 l7 I9 o# _+ O- s
00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0
! Z; R' w) K% J00403515 E8 71BF0200 call qsr.0042F48B& R4 _) r3 P$ n; q& \7 p
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]2 \" O/ m b. s' ~3 c
0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1+ z4 M8 T; f! }) I. E5 g
00403526 E8 60BF0200 call qsr.0042F48B
: r, V1 o# ?( b! x1 p0040352B B0 01 mov al,17 V: n6 r" K3 ], M( i8 o) S
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
" }- n: C1 m' O$ \4 v* f00403531 5F pop edi
# \, G( c6 R; @5 N- N9 M& ?00403532 5E pop esi
9 } E9 v+ E( d# `( V00403533 5D pop ebp( L9 @ v* u/ G/ e
00403534 5B pop ebx) ^( C; w3 |4 [5 R9 \) }( L+ j
00403535 64:890D 0000000>mov dword ptr fs:[0],ecx6 W( n& e9 C; A3 ^3 X
0040353C 83C4 30 add esp,301 U2 E3 P+ a% C
0040353F C2 0800 retn 8
* G# E0 `# J7 x6 S- [+ l9 y--------------------------------------------------------------------------------
4 x8 d5 D' n7 t9 I! S! @【破解总结】* d& G7 s( d: D
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
0 ^: S' ^, A* A q用户名:yijun
& j* ~3 C7 k, h; q; T# Q. V注册码:4893*7777*3726*7777*05296 _# r0 ~" ^4 q% b5 r8 z" J: h
--------------------------------------------------------------------------------) j; V0 ~5 {$ B
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡