|
|
|
【原创】破解Quick Screen Recorder1 T! T2 H3 l( @, _1 D, R
【破解作者】 yijun
$ ]. l% A, K5 N. r- j7 b0 A【作者邮箱】 [email protected]& ~" t. G ^2 t, c$ ?
【使用工具】 OD,PEID# G( K( o$ C; A# k9 v5 R) F. X) ]4 c
【破解平台】 WinXP
J9 m# E* ~: @5 ~& u: W2 y% f; a【软件名称】 Quick Screen Recorder
3 \) \. E# _. p, {- ^; _, t6 S【下载地址】 天空
/ D; U1 R$ _2 S( e ~2 k7 f# B9 f【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
/ P G5 j+ b+ s7 D) u& `【软件大小】 540K) {/ f' z1 r a+ a4 _
【加壳方式】 无
5 W: p1 r0 ?* m* O, M4 J【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)
7 P# ~' [, c0 j2 r U) o--------------------------------------------------------------------------------
$ w" O. M, \2 b! v9 ~. `【破解内容】( F- X2 |# j% ^2 _
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:! h3 Q1 y& D2 Z- x, p
00404C69 55 push ebp //在此下断0 O$ [7 |3 b6 u2 l- [6 Y4 Z; q& |/ D
00404C6A 56 push esi0 [) O" H: i/ a9 O2 \% L
00404C6B 57 push edi
3 W5 N# D+ H8 G& q& \( g00404C6C 8BE9 mov ebp,ecx
( l. F& i" u& H* A' K- w( i00404C6E 6A 01 push 1
6 @; {" S: `; p! v5 E1 _$ d9 P00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
; J( a) A. \- h, i" q00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]5 T' O# C1 u$ B5 x1 H4 _; |
00404C78 8BCF mov ecx,edi
# ]1 P, L) J& R2 T @* G I00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码% u: [, O% |& ^! X. i1 V
00404C7F 8BCF mov ecx,edi) ?. b# ~" Y1 H+ L, U- }
00404C81 E8 A73E0200 call qsr.00428B2D
1 B0 h) k, e0 P: X b/ M P00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]5 t3 V7 v6 i6 Y, F. u8 w- s( l
00404C89 8BCE mov ecx,esi7 W, f# ], v1 U X5 `/ }
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX( }8 [, d( y" w; z$ H/ g: Y' F
00404C90 8BCE mov ecx,esi
# F, M* n* w% o00404C92 E8 963E0200 call qsr.00428B2D Z1 ]. }- Y! s
00404C97 8B06 mov eax,dword ptr ds:[esi]
- o6 i7 s% f3 Z5 S00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
- w$ K. S% Y7 H" v+ I/ V C00404C9D 7D 26 jge short qsr.00404CC51 H& [7 M, e9 h3 T" D; Y7 p! G) k
00404C9F 6A 40 push 40
7 L+ N- }" ?2 E00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
- |# D0 t q$ i% N00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."$ E. l" T, D3 I4 S
00404CAB 8BCD mov ecx,ebp- f) a7 e h% ?* ~& N/ [
00404CAD E8 C3840200 call qsr.0042D175
. X7 H3 F5 h% o$ {00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]7 D$ q- g" Y: W) O% n! X# M
00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx
o/ _: m: f9 n+ Y00404CBD 5F pop edi
, Z! {$ [0 b Z) Q) a7 d l00404CBE 5E pop esi7 W, W |& w0 e4 m. k4 g7 `
00404CBF 5D pop ebp
0 u k0 Y; H8 H4 `% U& z3 }- T00404CC0 5B pop ebx
* Q& x( _% C' N5 K0 T00404CC1 83C4 18 add esp,18
2 Y( {: ^4 s" l+ R' r00404CC4 C3 retn# x/ `$ C9 K1 j7 o5 r
00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
$ [5 m2 ?4 ~9 K' t' x: p$ x00404CC8 84C0 test al,al
" q9 q/ x c/ R1 A00404CCA 0F85 1C010000 jnz qsr.00404DEC5 ~: M" R K0 R" K& G0 N; q2 S
00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
9 P1 E, K R6 ]- N" \$ l00404CD4 E8 87E3FFFF call qsr.00403060; F5 W5 Y6 S9 {2 I6 B" j: }( h" h0 F
00404CD9 51 push ecx o/ P" i; t& T8 n0 W' t& h
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
" n3 |0 p1 V# K+ m00404CE2 8BCC mov ecx,esp5 m$ [' C# X' N$ U2 }6 w
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
Z' [) Q9 a0 @# j( x. N3 ?00404CE8 56 push esi
% k0 j3 q& j4 ]6 B# J q00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
, |* U# I, {, Q00404CEE 51 push ecx
& P- S- \3 U) }7 }; ?! A00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1
3 |( r$ d5 t$ O- W00404CF4 8BCC mov ecx,esp. v: `# _+ l ?; z% Q6 d0 F
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
& W* a0 N' d# r0 ?' L C00404CFA 57 push edi
# p3 f" P% R; x00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0
4 G( u/ U2 _4 k! H. V a. A9 \) Z. ^9 m00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
5 ?) z4 l- Y! ]00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0. c/ W. J0 u! }& e
00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~
% [. H# {4 b2 o4 L# @00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~
3 Z1 c4 c9 f% ~* B5 G00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
! X6 [) k( O. s+ w8 G% r( N7 V) k00404D12 6A 40 push 409 a7 r5 g0 A0 Z! I2 S" A, ], D
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
, X e/ d: S# ^+ H6 j# g4 j' T( W00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."
! {, i. q% W8 k2 I2 T00404D1E 8BCD mov ecx,ebp* k9 T1 A( `6 Y* g c- O% I
00404D20 E8 50840200 call qsr.0042D1753 C4 } D* Q# @% `! s4 S, x
00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]4 q7 X' A3 R% `
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1
" N" ]- h- G* [1 M00404D31 E8 5AE3FFFF call qsr.004030905 g- f8 v7 z3 |3 P( V3 T/ w) f
00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
8 R5 }2 H' T& K8 t5 Q00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
; L: c# {: N% R00404D41 5F pop edi! [. M4 f3 \$ q0 N0 w: ^
00404D42 5E pop esi
3 \# Q9 f& i/ l00404D43 5D pop ebp
" F1 X" R0 p% {00404D44 5B pop ebx
6 X; `4 ?. ?3 g3 A2 ]00404D45 83C4 18 add esp,18
9 @4 E' Q' I1 t' @( ?( {00404D48 C3 retn
, A* P; D" o6 C+ u8 w! T/ p*********************************************************************************************************************************************************
: ~- v0 _% T2 W% \& B跟进00404D09处CALL来到:$ v! k' a3 p- ~4 C( i+ W' d
004030A0 6A FF push -1 //一路F8下去~~~~9 r5 C y3 F8 o8 i. d6 A2 z
004030A2 68 C88F4400 push qsr.00448FC8
" {- G' g5 z$ n004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
# ]# T7 e4 y2 f* x2 [: o& e004030AD 50 push eax
. v. F9 M9 {" T Q: D, z004030AE 64:8925 0000000>mov dword ptr fs:[0],esp8 @8 q1 V6 O5 k1 t6 y. |" a
004030B5 83EC 24 sub esp,24
" `! G( f! [- h8 a4 g$ N004030B8 53 push ebx
: t8 F- S8 o& x+ p1 l3 A) ^4 |# G004030B9 55 push ebp
7 \2 t5 K9 q" [& r004030BA 56 push esi5 H E9 p/ N" Q0 r6 e
004030BB 57 push edi
; `% F. M$ t- I3 R* J004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"! z: V4 r; F- v' R$ `
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]# P2 V1 t# R. Z8 @+ n7 h
004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1! e) o- E5 O0 M5 N, B) x( L
004030CD E8 27C40200 call qsr.0042F4F9' e' U- a( j( {* c, c1 y
004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
6 P' P# ]- v( {3 n004030D7 894424 2C mov dword ptr ss:[esp+2C],eax
* W/ F0 A7 b% M# i: p5 m" C4 ~004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
' e& l! a4 [4 O2 L004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
! U( i( O0 t* e) _" r9 {" c1 Y004030E4 E8 905A0200 call qsr.00428B79
# K' H3 x- ~' z, a I7 d004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
) v \9 a7 Y$ y4 [* O0 M5 Z' a4 V004030ED E8 3B5A0200 call qsr.00428B2D2 j# v [8 T0 K- t& Q# O, d5 I
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
7 y3 T% C$ q0 @: g* v- d4 v* M004030F6 E8 7E5A0200 call qsr.00428B79
( ?+ n5 E: \$ q# \: _004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]+ R' ^: L5 t# L- P9 g
004030FF E8 295A0200 call qsr.00428B2D4 f" [* d( M- p$ S% j
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]
5 u) D9 z3 P t, p3 v& `! Y3 Y00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]7 \( K8 Y6 _! g+ b8 N7 e
0040310B 83F8 02 cmp eax,2
9 h2 X/ A/ _+ L' B' Q0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
2 _0 ]( g1 L2 {( [: n00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]
2 T/ E C* D1 y$ i" Y9 {00403118 837A F8 18 cmp dword ptr ds:[edx-8],18" ^$ }; n0 S1 Q0 N8 C
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳: r9 L3 Y: i7 s4 [* {& u$ Q
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
$ u# M' v3 V0 S" g00403126 6A 01 push 1; ?) v, e. x! H( @; I2 ^& j
00403128 50 push eax
V9 P# ^6 L5 d/ I: I0 i' y$ W00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
) K% H! n/ |9 L3 \ F0040312D E8 C4550200 call qsr.004286F6
) ~4 D( t& e% [ v( ? D3 I9 f00403132 8B00 mov eax,dword ptr ds:[eax]
. x- Y) h' Q+ |# m8 t* l; d00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
2 I' i5 Q6 U3 k( i& F5 L00403138 50 push eax" V- v2 N; m9 C, Z$ ?" }. o
00403139 C64424 40 04 mov byte ptr ss:[esp+40],4
) P" J: M; W, b# x0040313E E8 4D560200 call qsr.004287900 s5 i$ R( Y: Z
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]' ] G v w' L3 B" I; Y6 B
00403147 8BF0 mov esi,eax2 l& N0 U4 ~3 I; |% }
00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3
% \" L. T/ w! I3 b. n0040314E E8 38C30200 call qsr.0042F48B3 o; x- {; ?8 A
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]
# m8 \% b$ k5 n/ N' f4 }/ N00403156 B9 3E000000 mov ecx,3E6 N3 X! R. n; b3 B
0040315B 99 cdq0 Z0 ^8 j1 l, {: y0 L; d; i7 I
0040315C F7F9 idiv ecx
: l! r. r, |# S; `0040315E 6A 01 push 1) Z. h1 O% G1 H+ |
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]
7 }" m! V* {# o& [* N6 B00403164 8BF2 mov esi,edx
! T: A4 v5 A1 Y( F) Q0 z00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
: Y/ W3 I) i. F' [0040316A 52 push edx5 H' _ S1 T `7 B' [) s3 C! Y
0040316B E8 0A550200 call qsr.0042867A5 s0 W f% B3 `0 E
00403170 8B00 mov eax,dword ptr ds:[eax]. T9 ~3 s9 E8 x3 r9 h
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]( E: e! c# p. G9 _% ]4 P! X
00403176 50 push eax" {) Z; I& q/ u3 R! ?
00403177 C64424 40 05 mov byte ptr ss:[esp+40],5! R8 Y9 @ n, [: q8 D
0040317C E8 0F560200 call qsr.004287901 m9 b( d. N; r0 I
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]/ H6 _8 T- @5 G$ [
00403185 8BF8 mov edi,eax
( M! R& Q: q8 S( b9 g! F2 {& j00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3 D+ N! L E. [( |5 |
0040318C E8 FAC20200 call qsr.0042F48B
' |. a p& |2 x" a6 M00403191 8D47 0A lea eax,dword ptr ds:[edi+A]
' _% o8 @. F# B00403194 B9 3E000000 mov ecx,3E' o w. i% _; ?4 i7 l4 q
00403199 99 cdq
4 m9 M+ b& s! S7 }8 ^0040319A F7F9 idiv ecx) x$ d3 ^( H* a" y
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]
1 s$ i4 g! g/ v0 a( G004031A1 894424 28 mov dword ptr ss:[esp+28],eax! ^; }) |1 F4 S
004031A5 8BCA mov ecx,edx9 I: n4 M4 D) X+ c; a* g( M
004031A7 894424 24 mov dword ptr ss:[esp+24],eax
! W, |/ h2 H1 H% o" `8 n7 J004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
4 b: e. b$ F3 g( l1 g004031AF 894424 18 mov dword ptr ss:[esp+18],eax: m: r/ W" i+ \; R
004031B3 894424 14 mov dword ptr ss:[esp+14],eax p* |) |3 P2 B
004031B7 894424 10 mov dword ptr ss:[esp+10],eax
6 Z2 z' Y. @; A: K004031BB 8BC1 mov eax,ecx' f# V3 L" z0 H6 r, P' H- p7 i
004031BD BF 0A000000 mov edi,0A
* W% E6 ]0 ]9 C4 J. [6 H004031C2 99 cdq( ^1 Y m% y7 \0 w* d/ ]; T
004031C3 F7FF idiv edi
. U, D' _: N) F" x. H( R" B7 U004031C5 8BC1 mov eax,ecx
$ r/ [. r# }2 E: M004031C7 B3 0B mov bl,0B' I! W& e. [+ D$ z2 B
004031C9 0FAFC1 imul eax,ecx) p+ V: t) W* j$ L' x: b
004031CC 8BCF mov ecx,edi8 H' E3 X1 ?! C& ~; b C9 H+ d
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl& r1 u7 f- ^/ H- p
004031D2 52 push edx; q6 ?1 V" z) e {* e( A
004031D3 99 cdq0 Z; k/ `( @1 F2 d3 r
004031D4 F7F9 idiv ecx
4 m8 }% e9 [- f) E, f/ Q+ _- q' y9 \& A004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]; L- R* S- n3 ?
004031DD 2BC6 sub eax,esi
- @0 u8 t- K3 S, K/ i& r7 t, v004031DF 52 push edx4 t* C7 t6 M2 M2 Z+ u8 w4 ]
004031E0 99 cdq) w6 v4 k7 q: |6 }+ o
004031E1 F7F9 idiv ecx: D: x l3 T9 c5 J9 v: ^8 B5 p s
004031E3 8BC6 mov eax,esi0 }5 V, |2 |( K" H" }! ?' c
004031E5 52 push edx- J! f8 T4 K% c$ }+ ~
004031E6 99 cdq
5 L# @7 |3 z' g, t! b7 j4 @# Q004031E7 F7F9 idiv ecx% ^/ V0 D2 f7 D! { I- t/ p
004031E9 52 push edx8 \% D- ^; Z8 `6 t7 U$ n4 W
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]/ ?5 g! B Q9 R
004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
' p! h, r! _( V3 |( y- B0 n: o* A004031F3 52 push edx) d" x. m$ h, A# s! i' _6 a* G
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893
# P _/ W; R j004031F9 83C4 18 add esp,18( j0 S9 ?4 z: O: D+ G; m+ R6 @
004031FC 6A 04 push 4
3 z2 Q7 f4 w% B1 F. t' Q004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]$ \+ h( Z7 D: W7 v
00403202 6A 00 push 0
* F+ _% a- |5 J. p; z& B00403204 50 push eax
! m+ P, E' f, D; x! J' u, G6 O+ c8 A00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
$ C& P: O+ t) I2 q {) A3 M1 V00403209 E8 D6530200 call qsr.004285E4
) Z5 N9 A1 u( p0040320E 50 push eax
' F: D& \" p1 r1 M% c9 v0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
Z) V% {& O- [) k- s w1 p9 Y00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C- z9 L- \+ s9 b( F& ]
00403218 E8 A7C30200 call qsr.0042F5C4
. n5 x0 I7 z$ b) k o+ F0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
$ p; {3 C: d/ R00403221 885C24 3C mov byte ptr ss:[esp+3C],bl- A7 c$ F* f( L# E9 z! ^
00403225 E8 61C20200 call qsr.0042F48B
3 G% w( K0 L) W' A2 }1 v0040322A 6A 04 push 4
" ~8 ]7 ~( F9 H- f2 Y2 T0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]" I1 u7 `7 t0 U! U5 i0 X+ I
00403230 6A 05 push 5
$ ]! N6 |" r! R4 t( [) |8 B00403232 51 push ecx
! ^$ U& n: A u4 N' V% Y00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]/ e8 c) r/ j8 A6 w- i! e
00403237 E8 A8530200 call qsr.004285E4
0 j) z# u n# Q: a$ {/ I2 Y0040323C 50 push eax7 a% d5 o( h+ P5 B& V; e8 I
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
# k" x2 B9 h0 b: ^7 B; a. G00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D9 t5 m" d! S) V8 ?. X, L
00403246 E8 79C30200 call qsr.0042F5C4% y# c2 Y, M' Y6 f+ j7 p) m) [, f3 w
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]- |5 G2 X0 b5 z
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl
6 i" k" Q8 ^* u$ x, s00403253 E8 33C20200 call qsr.0042F48B4 l& [& b: F& O, ]7 N. U+ k
00403258 6A 04 push 4/ `: ?( U, J9 F
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]
$ U+ @; t( A+ G/ R) J& H( `9 r0040325E 57 push edi
) X+ Y6 r5 _$ \+ ?: I0040325F 52 push edx' M4 c( n$ t! z0 }, Z
00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]1 Z% i4 l$ [* O$ J
00403264 E8 7B530200 call qsr.004285E4% c0 K! j, {. P
00403269 50 push eax" U+ _/ i4 m) i. D0 w! x8 D
0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]1 ^& R) L+ N' }6 J
0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
7 W' ~( ]5 u T1 y" x00403273 E8 4CC30200 call qsr.0042F5C4
. L& u- h1 U( {; `! b0 @; \00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
% ~8 u5 E0 N, z9 H/ s0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl
6 F* X8 a) T: p- k1 L( w00403280 E8 06C20200 call qsr.0042F48B( R @. p/ D# O7 C# S1 c1 d" w7 H
00403285 6A 04 push 4& p: Q$ @: ~& R" S) P/ X
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]& @" b8 c, U# [
0040328B 6A 0F push 0F
) ?( K+ O; Q7 R- K* \0040328D 50 push eax
+ I6 Z3 J! K% G( ~3 g0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
/ d) {9 x/ p' c; ^' `$ `00403292 E8 4D530200 call qsr.004285E4
! z' m! \5 y. Q0 J6 F00403297 50 push eax
5 U0 `& P0 A0 N9 B/ h4 Y00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]( Q. D, y. M h2 `1 X" Q% I( @
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F0 o5 b; j/ s- ?0 i9 W
004032A1 E8 1EC30200 call qsr.0042F5C4. B) A( _" b, Y l( y; {/ ~: K
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]; g: c' I, {0 s7 R9 J1 c
004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl
' x' ?$ c" a2 @0 u. T004032AE E8 D8C10200 call qsr.0042F48B# {, H; x% O. ]; g
004032B3 6A 04 push 4
/ V- b8 X( A" v6 _1 z004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
2 F7 F( q. q. O$ Y* ?9 x004032B9 6A 14 push 14. H' D" O4 W$ \1 x4 E9 r& ]
004032BB 51 push ecx
+ |1 v; x: i" i' D* S" u9 S004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]3 M, O/ v) k: V; W' m
004032C0 E8 1F530200 call qsr.004285E43 o# g) T( F; T P! F l
004032C5 50 push eax
- [6 L: ?! P Z$ o% r# Z0 k004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]; T( H% f; Z! k- j
004032CA C64424 40 10 mov byte ptr ss:[esp+40],10 C& g- j4 H$ w& x( z- Q$ }
004032CF E8 F0C20200 call qsr.0042F5C4+ T! F2 i) U2 M5 K
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
2 S B1 M8 ~5 @5 f( n* z004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl
4 g0 x2 B! l5 s$ a( k004032DC E8 AAC10200 call qsr.0042F48B
, h% |( n% A) l+ B+ n* R004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
/ O& r1 `3 L' ~1 `7 I ^; g004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX( a/ g! ^1 H. A9 _- ]# p
004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL |' [# B7 w/ i
004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL" P. {" r2 @, b) U+ F$ A
004032ED 8ACA mov cl,dl ; DL送CL
4 e i* w2 m8 m004032EF 3AD3 cmp dl,bl ; DL和BL比较- }+ Q9 `* w- p# {
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
: b1 a4 D$ H, n2 R, G1 Y% C9 T+ ~004032F3 84C9 test cl,cl
' C5 p' ]+ h( @1 L/ D004032F5 74 16 je short qsr.0040330D n4 h9 b5 B+ i; z/ o/ u( v
004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL
7 w" n( L( J6 [; Y004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL: u& G5 C9 }- f; l* P% |
004032FD 8ACA mov cl,dl% d I1 Q4 Y4 l( T E; {
004032FF 3AD3 cmp dl,bl ; DL和BL比较
6 B/ c5 {7 T! W0 x: ~00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)1 G7 y2 Q* L! S, @; S' W
00403303 83C0 02 add eax,2 ; EAX加2
6 {: {8 x* G* t6 R' Z00403306 83C6 02 add esi,2 ; ESI加2% v# ^8 Z- t: [* `
00403309 84C9 test cl,cl
+ o: A, N9 x% G$ d* [9 Q0040330B ^ 75 DC jnz short qsr.004032E99 y, g. B; R4 ~1 ]( O
0040330D 33C0 xor eax,eax* y; M1 |# j/ E7 r" K
0040330F EB 05 jmp short qsr.004033160 c2 s8 V4 X5 _: U7 J
00403311 1BC0 sbb eax,eax
! v' w- |2 ? }1 \: ]) S: N; U5 ~00403313 83D8 FF sbb eax,-1
/ _7 F$ u+ Q8 }00403316 85C0 test eax,eax' v5 z' h5 C3 v8 H8 e
00403318 74 0E je short qsr.00403328- V+ f D) y0 N/ @1 F8 ]/ t9 R" @
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A% N: e; H; M5 I1 G. c" @0 n
0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]' _+ l& l+ g$ h% o
00403323 E9 F0000000 jmp qsr.004034189 z8 I4 [2 @1 Y7 @5 c7 `+ P& D: L
00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX6 e) u: w& |' `) D* C: b
0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]/ d) F# V& @) {/ d- |
00403330 8B40 F8 mov eax,dword ptr ds:[eax-8] |( ] Z: B# Q: {% U% I9 x% Z
00403333 50 push eax
+ I& U1 ~1 B3 R* p6 L00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX8 D- O4 w$ F/ e* z
00403339 50 push eax: ^9 A2 t* K4 M
0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX
A& R8 s, J- E; z4 T0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
7 x1 [* m3 K: A" r00403343 83C4 04 add esp,48 t) K' w" t" w7 g+ U
00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI
& ^+ a8 y# K0 J6 s. n& f00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]1 C `( m3 q# C0 @3 M) v/ D
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
" D% K; g: B+ {$ N# G7 v' W0040334F 50 push eax
2 l: q; B8 o# b; }00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
! Q0 R5 B; ~/ j$ O* P( U00403355 50 push eax
& ~' l# t+ f5 j00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX. B8 e7 K2 r* V) U( M- S* ?: g$ R+ e
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
7 z' D: n# }1 M" C5 I2 d6 N5 G0040335F 83C4 04 add esp,42 E3 r2 f; G: e8 d! b/ ^ F
00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI
' h. S+ A* [- O. l00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
3 r# P& u" Z) E' m* b! W8 Z; w00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]- y% Q( G& w9 ]; n/ S+ t+ I' p
0040336B 50 push eax
4 Z- S; G: v* s' ^ J0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX
& \) w7 ~- ]8 b' b" ~* @* I& B00403371 50 push eax8 M& P* X" |. @
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX/ m$ Q% h% n0 }; X, ]
00403377 8BD8 mov ebx,eax ; EAX送EBX
8 G- @ e% l4 d" b0 J. a+ I00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX9 l* t, V2 n' I G% e' W, `
0040337D 83C4 04 add esp,4
5 I/ ^, q( l) _1 M% F) D O00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]( U$ |5 K6 Q7 F& n$ d# O8 q3 S
00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]
0 b4 c+ j7 `- q: q: R00403387 50 push eax( {+ Y6 J6 Z8 D: k
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX
( ~3 w2 g: [7 N# q1 G0040338D 50 push eax; n8 C( w3 H& @0 Q$ l0 I
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
, U5 S9 A4 N5 Y) z* ^* L00403393 83C4 04 add esp,41 } L9 w S& Y2 V* l
00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
. O8 {) t- P1 ]0 o6 ]( B0040339A 8BE8 mov ebp,eax ; EAX送EBP3 K: u* \0 J( A3 v7 Z2 l; d, R3 @
0040339C 6A FF push -1& i! c/ U% T3 h( Q( H% j b
0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX3 g6 Y* Z3 T G* V6 S5 ~, Q) W, M" Q
004033A3 6A FF push -1( q8 z0 T9 r" r! w6 k @$ O- \
004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX0 U% ^1 F& j3 F) n0 K% _' N- t# G( o
004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX: F1 k5 d7 k. l/ ^
004033AE 6A FF push -1
( J0 S0 V5 J* B004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX
A- ^ K* b# J8 ^+ [004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX
" ^1 a6 ?; X+ Y- g8 j/ W004033B9 6A FF push -1
7 k* o7 C' h' i" H2 F: D& V004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX
4 D+ k) p% s- T, x" V8 y! }004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX
5 S& Y0 G) U1 U004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
6 i$ A, y! C! \/ [6 }7 {# \004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
2 K" g6 K, o- ~) F004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX! Y6 X6 C1 K K- X
004033D7 D1E0 shl eax,1 ; EAX左移1位' |8 X8 O$ f6 z# j5 J3 k9 m) j
004033D9 99 cdq ; EAX扩展
/ z( A' Y5 k v: O7 u% C004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中 U8 `! T, d3 n! `+ w6 }
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
! l" W7 q' A2 Z3 n" ?7 S004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)/ f& z9 q# A. r. s
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A$ n. {$ q; R @% n z
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
! Q9 m8 W5 A8 Q- X& D4 D3 r0 H& o% @004033E9 EB 2D jmp short qsr.00403418
5 }" m0 h( X# I$ B2 ?0 o004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX3 q1 [ @/ P) Q% e
004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2% B" G' W; D& G1 {
004033F7 99 cdq ; EBX扩展- l5 Q4 J, j; d8 f2 u
004033F8 33C2 xor eax,edx ; EAX和EDX取异或
. b* l8 I: u! L004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX, g6 O' w& W1 w L4 K
004033FF 2BC2 sub eax,edx ; EAX减去EDX# e$ d$ y" Z' M) C8 B8 \ ^/ m
00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]1 {/ p* U9 U. [! [6 z: r8 V
00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX+ u& q# j; [0 f& A$ V9 r
00403409 99 cdq" E: O9 o4 w: K# m: S0 H1 b
0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
, k2 D, i- ]' y/ d$ p0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX/ {0 g8 I* L% T
00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较. K7 V6 p( a( i! W( m6 e/ F
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)
& q$ \; }, L" u% ]00403418 E8 6EC00200 call qsr.0042F48B ; " z3 V& j3 q$ D. k! ]
0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
% r6 { F7 b. N2 I& L/ N- i00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],99 ~9 z, g& J* c, q5 ]( X% h8 P
00403426 E8 60C00200 call qsr.0042F48B
, q/ Z- U6 t! K/ Z6 H( ~1 N5 P0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]. l& p r y$ R7 }5 g1 m. `
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],83 m; v1 p+ U, V) {) @2 K
00403434 E8 52C00200 call qsr.0042F48B O! ]. v9 d+ z$ @: V& ?; d
00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
% T: {6 v G2 D# g" b$ d0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7
, _9 [: _* I0 [) w- r. Y00403442 E8 44C00200 call qsr.0042F48B! Y: ~ v# `. j) C
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]( a U8 u, O; |2 Q$ a
0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
" X5 W" ~: D, b7 Z# J00403450 E8 36C00200 call qsr.0042F48B
0 n+ Q* z# |/ `3 o. @00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
' C+ U6 z. ?1 d5 {. \" @$ S- q00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3: r" h4 r1 ]6 M$ H$ i) ]3 I# M
0040345E E8 28C00200 call qsr.0042F48B
% @# w. Y* q1 U: M) F00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
, G8 |4 s, M& n- C: ]00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
( W9 K8 f. R- l& d ]0040346C E8 1AC00200 call qsr.0042F48B% K; [3 {, o/ h* I p# M& m
00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]6 a* s! U4 z8 O; M
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1
: S7 V8 v* c" e9 e0040347A E8 0CC00200 call qsr.0042F48B: O, [8 B7 j" Y) P# f9 [
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
/ S3 X# F- E7 |, ]6 x00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0! D0 {& b; f6 F: M1 v, M
00403488 E8 FEBF0200 call qsr.0042F48B: j' [4 y/ D8 K: z- G; D
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
6 j5 W9 H( c8 I% d8 M2 ?0 d) [) {00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-19 B# P' b! Q; o v# Z5 T2 g6 q3 c4 U
00403499 E8 EDBF0200 call qsr.0042F48B3 T" ~7 P+ V6 U# J1 j% F1 ^" y
0040349E 32C0 xor al,al ; AL清0* q+ v2 f/ p, s6 { A
004034A0 E9 88000000 jmp qsr.0040352D
1 X* S. q9 Z z+ N004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~( z- s% @4 }1 _ i m
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]- L, j7 i5 L% ~
004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9% O, {& L9 e, O! @& r P g
004034B3 E8 D3BF0200 call qsr.0042F48B: C! X5 R$ ^5 u x; V' [
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
1 ~( B5 G6 E1 G! y" H004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8* o$ G' u5 h. x8 D( p0 ~
004034C1 E8 C5BF0200 call qsr.0042F48B4 w2 \3 ?' H3 |( s- {. F; @! k
004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]3 ]9 d3 j y% Y- u4 C5 d
004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
$ S$ u2 r" K! }, P3 P3 y004034CF E8 B7BF0200 call qsr.0042F48B
2 J' u8 N4 e- c6 z8 j) @004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
. ^7 U' Q1 c/ m( m7 W6 D9 ]$ n004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6
# B$ U- M; ]9 f004034DD E8 A9BF0200 call qsr.0042F48B( U* q9 ~$ k! @) O0 j8 u. R @
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]( U* U$ Z/ z7 n3 N; w3 \
004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3$ S' V* w( e5 E2 ]3 ^* t0 {" A L$ _
004034EB E8 9BBF0200 call qsr.0042F48B
+ [7 _9 i! q& M& q [004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]& g" f8 Z: H- s; m
004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2
3 a4 V' X, u, o* u004034F9 E8 8DBF0200 call qsr.0042F48B- t+ u. J3 U5 P2 w2 F# ^, V6 l
004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
+ w* F. {9 j$ V# x7 F1 @00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],10 Q' y) Z8 z. o
00403507 E8 7FBF0200 call qsr.0042F48B' u" U$ s$ O: R: b1 ^: l2 m Q
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]- D6 {9 [# O6 M. K$ z4 }; K
00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0
) I8 P: e; h; A00403515 E8 71BF0200 call qsr.0042F48B
2 D: v( i1 Z$ `7 t u; S) @+ V' ~0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]8 t+ h5 E1 M) s$ c& p, i
0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
, B5 z- R4 b, V3 ~+ T5 n$ J: o00403526 E8 60BF0200 call qsr.0042F48B2 S% K% ~7 l2 b% |
0040352B B0 01 mov al,1& L; y% E* |4 D. ?
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
, }# a4 E! c* o& ?" t8 M1 ^00403531 5F pop edi
/ M1 s6 f' b0 E/ }* K- n00403532 5E pop esi
2 A, j/ [1 O1 D00403533 5D pop ebp
5 r% s; F) q" C9 V: [3 O. b00403534 5B pop ebx! k; B: n. X- @' e, N
00403535 64:890D 0000000>mov dword ptr fs:[0],ecx5 Q7 u# \2 T0 S6 n
0040353C 83C4 30 add esp,30/ C. ?# [3 H" p# t$ Z+ ]
0040353F C2 0800 retn 8
6 z% t4 h* K/ R, j& |--------------------------------------------------------------------------------
q/ d. A2 T: m6 \1 _5 l# d V! I. U【破解总结】) v/ c& H8 b& d1 G$ n# f
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^6 b* l4 ?' _- m9 b3 L# y
用户名:yijun: Z' [- @5 t+ n- B: {
注册码:4893*7777*3726*7777*0529# m$ u" _7 c: _$ W( U. k1 N
--------------------------------------------------------------------------------3 U% a9 l: i. G& K( y2 a
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡