|
|
|
【原创】破解Quick Screen Recorder
* ~/ `8 b( D! @【破解作者】 yijun
. S. q/ C9 P1 I {6 [# k( F" X) p【作者邮箱】 [email protected]
( h+ H( d% I/ f【使用工具】 OD,PEID( ~; t5 o3 ?! O+ a' A5 A P
【破解平台】 WinXP1 q9 M* E# |, g# N( E
【软件名称】 Quick Screen Recorder0 r; k8 x5 @6 @$ [; R. {
【下载地址】 天空7 x0 S# B m; G8 H% h) c' N1 t2 z
【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
4 K: V6 m! c7 u6 s. X" ~【软件大小】 540K
! h% v% t9 `% H! G7 H. h9 p【加壳方式】 无. a2 [. `; P' t! u
【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)
. |6 f3 k& r. z9 k3 s0 I--------------------------------------------------------------------------------
9 T- T' o h4 E% ?+ X【破解内容】
/ c3 p! W8 E2 M4 Y3 _0 D PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:( {; H4 F$ P0 @- F; A
00404C69 55 push ebp //在此下断2 V0 w/ V, t8 a1 q2 Y. n+ s
00404C6A 56 push esi8 e/ P0 X- t" S- M& E- u0 y
00404C6B 57 push edi ?# |1 U; C, t# I; `8 ]3 ?
00404C6C 8BE9 mov ebp,ecx
( @" @& V6 L5 W; H/ ~$ r00404C6E 6A 01 push 1
! o" z; f$ D7 }, X00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名# x4 Z9 o4 @+ B" B# K
00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]+ @/ P" P' ~) [3 }7 Q \8 N. F6 L u' A
00404C78 8BCF mov ecx,edi- ?) e4 f# p. a `5 c
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码# ^, U+ z: n/ V, p L
00404C7F 8BCF mov ecx,edi7 k. V; I! ]; b
00404C81 E8 A73E0200 call qsr.00428B2D1 T0 e/ F7 P$ [/ A C5 y% \- _
00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
. U& G6 t/ A" }: B2 \00404C89 8BCE mov ecx,esi P4 I) K; j& _3 E3 L- i& }, e* h" [
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX m6 O! S- z/ @) m+ l
00404C90 8BCE mov ecx,esi& r ?9 U8 e8 i* y* z
00404C92 E8 963E0200 call qsr.00428B2D
. R" }' I' x1 }( x( L# s& R00404C97 8B06 mov eax,dword ptr ds:[esi]
" j5 i% @: l; X- T00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
; |1 \, K6 m& C, X9 I a. ~00404C9D 7D 26 jge short qsr.00404CC5; @; U; f1 p& }) i' A; P! n
00404C9F 6A 40 push 40 {& m4 _0 m0 d! k H
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
8 j/ Z7 t$ d; Z* U( W( [2 ]00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."" G5 `9 M1 [4 W
00404CAB 8BCD mov ecx,ebp6 O, Q$ N3 W( O! w" V
00404CAD E8 C3840200 call qsr.0042D175
. _7 r- z( E1 @" y) D7 l& O0 s00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
8 E0 W2 V2 ?8 n1 y9 M00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx7 _- D9 E) X# c) W$ r
00404CBD 5F pop edi
/ T f+ J( j: Y* K! h4 @00404CBE 5E pop esi" W9 [1 W O) M3 O
00404CBF 5D pop ebp
% y3 S- J- A7 x4 x0 ~# j2 l00404CC0 5B pop ebx: n( Y; b* n0 G
00404CC1 83C4 18 add esp,18
8 c: y5 L/ A+ s' r$ ], G00404CC4 C3 retn
9 A5 `/ |+ U4 S/ g00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
5 H$ u/ r9 V" P0 S7 G9 [3 e7 g00404CC8 84C0 test al,al
% N9 B! ~( q7 y F8 k4 L00404CCA 0F85 1C010000 jnz qsr.00404DEC( b" t# v) P* p. O( H! |! m# ]
00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]" D( m3 ^# E9 Q! T7 c4 t* {
00404CD4 E8 87E3FFFF call qsr.00403060& ^$ Z! j$ h6 I
00404CD9 51 push ecx. M! X+ T& y& a6 k$ P
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],04 a9 l6 J7 f$ C5 ?, M
00404CE2 8BCC mov ecx,esp \, S' B. j% N/ P
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp) P' f7 I: u" j; k2 i0 q2 i5 m: k
00404CE8 56 push esi/ D3 T# J2 K* B% G2 l! N+ w
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0- f+ u8 ~& A T: `9 m
00404CEE 51 push ecx
% ]* H1 t3 O ]9 I, `' ]/ Z: `3 R2 l) G00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1" m7 u$ I( M9 `% b
00404CF4 8BCC mov ecx,esp
1 T$ u% Y- i) m4 B- ` W00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
( D/ q& U0 K4 ~5 R5 g& \" |- w00404CFA 57 push edi* v4 {& J; Z0 M6 Q" D8 j
00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是01 Q p0 N. z* h0 J# F
00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]. }$ W+ x. m/ m
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0
, X- b9 m- w4 b6 q1 r/ }00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~
1 r3 a) ^9 `% ^1 X! A( {' y+ ^00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~
1 J/ y) `0 v% X( ?* R% x4 J00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~* d0 S E! h, I( o
00404D12 6A 40 push 40, D, Y5 `4 O, w
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
/ W7 m3 {/ O( @: f' K00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."; y* Y+ w5 |! w
00404D1E 8BCD mov ecx,ebp0 [, h& q/ ^# L: _
00404D20 E8 50840200 call qsr.0042D175
' F9 W2 I- s* ?1 d00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
# K" P. j$ q' E# @$ W00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1 _0 F) n! W, ?5 m; m7 J
00404D31 E8 5AE3FFFF call qsr.00403090& t6 v1 c- J8 o
00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]* x6 i W7 S! A0 v
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx( a# B# O' a- R: ^! ?& w, ^
00404D41 5F pop edi
) l+ j/ G" }2 y) s8 m! l00404D42 5E pop esi
! ?2 U3 f& Q, J6 J) Y" o, |! ~# i00404D43 5D pop ebp0 e0 x l( q% @; g$ {
00404D44 5B pop ebx0 `) @4 S7 {1 e; W/ B% H: [( K7 p6 Y
00404D45 83C4 18 add esp,187 L% q% n$ y7 Y+ @% L1 j' y) k- C
00404D48 C3 retn
) ` R: k* i5 I$ f" N- P; G8 h*********************************************************************************************************************************************************
# g- H4 |, N" I. F/ C) t跟进00404D09处CALL来到:1 G# n% @& b% r
004030A0 6A FF push -1 //一路F8下去~~~~
, K. K' ]* C0 ?1 e- w6 o1 ~: O# I2 r004030A2 68 C88F4400 push qsr.00448FC8
( K1 a3 [. p! ]: H9 w" p" Y0 p$ N$ b004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
* Z& D5 y+ i3 X0 C, G2 M0 s# ]1 U004030AD 50 push eax
, J' K# a* s! o2 y7 e1 @0 c1 \004030AE 64:8925 0000000>mov dword ptr fs:[0],esp! {9 ~8 @5 f) h
004030B5 83EC 24 sub esp,24
5 i5 D) n& T1 G, V004030B8 53 push ebx
" B( V, g0 A, L* z$ d0 P004030B9 55 push ebp4 ~- y1 f8 f# t9 w4 ?" L
004030BA 56 push esi# C9 m; T. {7 F" r% s
004030BB 57 push edi! D# {+ j' D! E; v/ g. B
004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"
. j A* [. A- } f1 Y/ r004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
0 C1 G9 m$ h4 }8 P" W004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],16 I9 D" Z( y6 f4 f8 C4 D' b* _
004030CD E8 27C40200 call qsr.0042F4F9
8 e' L6 b1 b, G: v8 w8 {4 H004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]2 S; T& ^! ^0 n3 A* p% y; H
004030D7 894424 2C mov dword ptr ss:[esp+2C],eax0 d6 b% x$ q- Q$ W
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]; W0 x" e/ h9 u# d/ w" ?1 Q" H' g
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
4 r; l6 g: `) V004030E4 E8 905A0200 call qsr.00428B79
7 |" ]' ~, ?- h0 W/ E+ {! x$ `004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
$ k- p, Z, ]# ]/ C. h7 O) o004030ED E8 3B5A0200 call qsr.00428B2D
% z4 P$ Z. l: x004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]- i9 Z# I9 e8 t! J
004030F6 E8 7E5A0200 call qsr.00428B79
$ u+ E& D+ Q' o$ k004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
! U/ y+ |5 w2 B' b004030FF E8 295A0200 call qsr.00428B2D) S& o4 |& @( b0 S7 R
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]8 w6 C! v, ^1 Z, q+ J& c; B
00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
+ w; Z' K5 b+ f0 t3 o- N0040310B 83F8 02 cmp eax,2% X! I N, I5 c5 k9 e
0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳 P" F% j z: C; {
00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]
3 E# Z1 n* z3 M+ W% B% U00403118 837A F8 18 cmp dword ptr ds:[edx-8],18
# n( {3 i* M1 ]- E% z3 p0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳
( u6 A: `( Q% {& r00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
( `; X* p* q# m00403126 6A 01 push 1
+ V. v1 J X9 [) u00403128 50 push eax
- n) e2 I, P& L* b: s1 [5 }& G- A! l3 r* L00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]: [5 J; t! h6 d. ^) t
0040312D E8 C4550200 call qsr.004286F6& I, @, W2 v* L8 [" D2 D
00403132 8B00 mov eax,dword ptr ds:[eax]
7 r9 }$ v0 `' k. A9 m( v00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]$ T! B9 ~7 [! f% s) X$ g1 A) ~- ^
00403138 50 push eax! G1 O& O% @( H0 O) D/ l9 K
00403139 C64424 40 04 mov byte ptr ss:[esp+40],46 S& N- q1 V$ g+ q- e! h) A+ T
0040313E E8 4D560200 call qsr.00428790
. e$ m7 G% o- ]9 v00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
1 j& V$ r3 `- h/ S00403147 8BF0 mov esi,eax
6 W6 n! R2 R! W, r00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3
" b+ n, y. ~! g# r, h% S, k' E4 K0040314E E8 38C30200 call qsr.0042F48B
( N: K9 q5 A, C* `7 u. W M00403153 8D46 0A lea eax,dword ptr ds:[esi+A]
3 _; u4 n/ [. e2 Z8 g00403156 B9 3E000000 mov ecx,3E
6 G6 g0 X& L% m3 V0040315B 99 cdq& f- [; \/ q0 L4 x4 _% Q
0040315C F7F9 idiv ecx8 o, O3 I/ ]$ @/ n! ` W, ?
0040315E 6A 01 push 1
- }$ \+ ?/ `* A& U00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]6 Y) T# ^- r% u* }% V" W
00403164 8BF2 mov esi,edx
. e: L- h1 j! V+ d5 m00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
0 E# K# ?+ f6 p; ^* d n8 E0040316A 52 push edx
& ]7 Q4 i4 o' M* q0040316B E8 0A550200 call qsr.0042867A
8 ^/ S j% [0 k00403170 8B00 mov eax,dword ptr ds:[eax]; F9 Y2 [, O4 d) v
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]6 p8 k9 `: N0 m$ E' N6 C; g
00403176 50 push eax
, n2 ~/ N) K$ F0 L" \00403177 C64424 40 05 mov byte ptr ss:[esp+40],5
. ^* m* h( g6 g0040317C E8 0F560200 call qsr.00428790 x, d, P7 }: `3 l: k! ~
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
2 A: ?- l+ M; K00403185 8BF8 mov edi,eax
0 R* z' O4 X: t3 \) E$ h! N1 Y00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],37 z# }* q; m( I1 [$ s( m0 V
0040318C E8 FAC20200 call qsr.0042F48B) F- ]0 @) W: @6 g& b" k
00403191 8D47 0A lea eax,dword ptr ds:[edi+A]
" W0 r) @# k$ _% Y$ Y* z5 y8 D. B00403194 B9 3E000000 mov ecx,3E& K2 p' E0 B4 G% g* [
00403199 99 cdq
+ j! c* k" Z4 m; U- |7 D; c$ e0040319A F7F9 idiv ecx2 w; m) f* {* R& {" _- n1 @' Z* D6 b
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]
! w/ ? Z4 o( R7 ~% f004031A1 894424 28 mov dword ptr ss:[esp+28],eax
; `5 M2 v3 p7 c, x) S8 ]1 A8 z004031A5 8BCA mov ecx,edx
# _( f5 r, ^5 [5 {6 q1 W4 [% X' V( a004031A7 894424 24 mov dword ptr ss:[esp+24],eax
- a5 C: P }6 J8 }' L$ I$ w004031AB 894424 1C mov dword ptr ss:[esp+1C],eax h4 x: Z. \7 x! c% u( x3 z
004031AF 894424 18 mov dword ptr ss:[esp+18],eax
( i2 ~$ ~$ R3 E* _ r4 l004031B3 894424 14 mov dword ptr ss:[esp+14],eax
5 U2 z9 e7 l y3 j" ~* I004031B7 894424 10 mov dword ptr ss:[esp+10],eax5 `6 p& D5 g; _$ C+ l4 H
004031BB 8BC1 mov eax,ecx
' w- Q1 V& `( D; e3 n- s, p3 ^' v004031BD BF 0A000000 mov edi,0A
0 y3 {4 W# v( `: N, U004031C2 99 cdq, B7 J+ d+ B& r# M @! @& A/ p, y
004031C3 F7FF idiv edi
/ @6 S w, c7 Y004031C5 8BC1 mov eax,ecx
# `1 ~ }1 x; r$ Q004031C7 B3 0B mov bl,0B% k3 ]# O3 `5 `
004031C9 0FAFC1 imul eax,ecx8 z' G e4 C. q4 u1 n
004031CC 8BCF mov ecx,edi2 {9 j6 \! Z+ c3 W T
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl2 i! Z, y' \7 o
004031D2 52 push edx
; B4 v' B% f$ a$ ]9 n004031D3 99 cdq
- m1 J7 S1 k _/ l* X004031D4 F7F9 idiv ecx3 ^6 B0 m1 p& R' P: v
004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]
2 T! I, D7 p4 J) p* l004031DD 2BC6 sub eax,esi
7 r4 F% m* G" \% E' |; Q004031DF 52 push edx4 R8 w$ V4 k2 R' s$ }% e
004031E0 99 cdq) x& H! I* v; o) P+ |8 Q1 i, `
004031E1 F7F9 idiv ecx) J2 j6 i; s" G( s6 J4 S) ^" R, a
004031E3 8BC6 mov eax,esi( x1 l5 }" D$ \& `7 k1 t
004031E5 52 push edx/ t, d0 h# l7 \' N
004031E6 99 cdq
) {$ |9 @. [ [004031E7 F7F9 idiv ecx
% c* \! ?: F9 ]' }4 v# a004031E9 52 push edx$ a. `0 }: W4 |; T' e/ q* I
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]. f. P; p! U3 U, f2 B
004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"* p- l# ~1 E& _% V6 J# j
004031F3 52 push edx5 X/ F# L( G; f8 O" e! H
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893/ [0 e6 _ A5 t2 H( x: J! ^9 O
004031F9 83C4 18 add esp,18
# q Z- g! Y' ]004031FC 6A 04 push 42 M, w' M5 H( t6 @. |2 k. A
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]8 p, J: b6 x. H# T% |! G, o0 k0 L7 B- A4 w
00403202 6A 00 push 0
, q; X4 P5 b& D8 K% E4 J4 l5 t. i00403204 50 push eax
' x6 x. w$ \. U; p: b5 n00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
1 ~0 B' P- u2 G9 w3 N, y* u" p9 `00403209 E8 D6530200 call qsr.004285E41 i9 @+ ^- e* w$ x; b0 z B$ ^
0040320E 50 push eax$ L2 E; h M2 Y @3 J
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]; }' r; v" z% P' T8 j1 O. B; ~
00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C
$ A1 i2 a# D+ [$ g1 t0 k00403218 E8 A7C30200 call qsr.0042F5C4) A& \+ X& [ ]6 a( Q5 x; D
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
. h, q$ x, a0 S; h- K6 }9 {! F00403221 885C24 3C mov byte ptr ss:[esp+3C],bl- A* ^" J7 v0 Q& d, s
00403225 E8 61C20200 call qsr.0042F48B
3 f' v7 |$ s# V5 e) x- f" h ]0040322A 6A 04 push 4' x3 _" s5 v) _
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
$ }) R4 D3 t. B- u6 e) W, v3 Z00403230 6A 05 push 5
# X! ]: h1 e* v- P) H& D00403232 51 push ecx/ d0 H# J4 S" B v
00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
$ Y: A% R+ Z$ j$ @+ h1 {00403237 E8 A8530200 call qsr.004285E4
# ^. q& x; G4 s" j$ ~0040323C 50 push eax
# \# i5 ^/ b+ a* b0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
! D4 N7 C$ v$ p7 F. S00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D
8 T1 o2 D8 F4 W, t B& u2 @00403246 E8 79C30200 call qsr.0042F5C48 H* T1 ^* f# S( d- g- c( I# P
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]' t K# q% r4 _7 v
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl! [( \1 T( f! \, C3 q+ T, V$ R
00403253 E8 33C20200 call qsr.0042F48B* e) p, D6 @8 [2 Q3 E r
00403258 6A 04 push 42 { @; b% P% t9 n
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]
6 l* j6 D8 T. h+ a0040325E 57 push edi* a5 z* K% g3 Q b) @. c
0040325F 52 push edx9 t& B' r6 b7 N+ O! j# i8 M7 i( P6 E
00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]. S4 Q+ A; E& R* W& Z* E
00403264 E8 7B530200 call qsr.004285E4
+ O8 b& R2 k/ S3 R00403269 50 push eax
& N1 ]4 ^7 d' o! X% t0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]! w+ F7 H. [$ R% F0 C
0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E& }& D% P% c+ o$ U8 a7 F
00403273 E8 4CC30200 call qsr.0042F5C44 P# B! N1 A" L4 {
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
, Z! O4 l; d- F/ P" v* F3 Q0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl% p ^) O; k+ k7 V$ o5 }1 U
00403280 E8 06C20200 call qsr.0042F48B
- L d1 `# p7 x' l) d00403285 6A 04 push 41 e7 S) [3 r" `/ {$ d
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]8 P5 c, g# P$ S( K4 |6 v4 ~
0040328B 6A 0F push 0F5 @8 d8 {# z z4 l
0040328D 50 push eax! H% w! @# I- Q
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]" ?5 f8 O* _. g* j2 T+ @. d
00403292 E8 4D530200 call qsr.004285E4/ S/ f3 y* L7 D5 D) q1 x! u8 l
00403297 50 push eax
! Y3 Z5 I: v2 F- P00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]$ q" S2 x$ @0 b/ H3 U
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
, z; e& ^6 Y7 w7 E2 i% D _004032A1 E8 1EC30200 call qsr.0042F5C4
( y/ t0 | q3 F( b5 k: J4 A004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]$ x7 L# c0 j) }3 V: c4 t. G0 [) {
004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl
1 [ N+ b9 d. A* ?) V2 J004032AE E8 D8C10200 call qsr.0042F48B
0 ?$ H# F' z! _' R4 `! k# s% {+ Q004032B3 6A 04 push 4
, v7 V" g# j9 V* @004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]6 Q$ u2 z% ^. H; M G
004032B9 6A 14 push 14( a" h' r% r# V$ U' S( j
004032BB 51 push ecx
5 y4 s8 e0 h m3 Z. U$ q" k6 f/ j# S! N004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
* L' }2 o/ ]+ J" ]6 x0 h' S. K004032C0 E8 1F530200 call qsr.004285E4
1 N1 ?' i# D' h: q- o( G004032C5 50 push eax
9 G/ Q3 N' z5 X6 p! J& H4 i004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]6 e: w4 X* d! Y5 u% P1 Y3 n, l
004032CA C64424 40 10 mov byte ptr ss:[esp+40],10 T' j" `: q, y% T9 \% ~; J8 g2 I
004032CF E8 F0C20200 call qsr.0042F5C48 ~/ x2 X& l& m9 s# _4 R
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]. X1 t% c& I0 W/ }: S9 ?
004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl
0 U" y( Y( B: u9 q7 P. H- d004032DC E8 AAC10200 call qsr.0042F48B
* t0 G" j/ k5 O% [* J004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
% A9 N9 \/ R' I, k, h004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX) a+ D; }" ` F/ m/ `0 e
004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
. F* q& i, e4 R5 ?1 m% ?+ c$ K5 E004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL. o; w Y% F e; Y
004032ED 8ACA mov cl,dl ; DL送CL
! I/ b, d( m- x6 ]1 ~6 ]/ ^004032EF 3AD3 cmp dl,bl ; DL和BL比较1 @2 I5 W) l: b
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)* x# }* Z* H, B0 s% ] W7 ]$ K
004032F3 84C9 test cl,cl& d( }$ Y" F: J L5 p" e* W
004032F5 74 16 je short qsr.0040330D
7 g. v+ r+ |0 H004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL* E: y( c, ~$ \3 g6 {8 {
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL1 s- x r* Y5 w. w+ a
004032FD 8ACA mov cl,dl5 _2 Z# H/ _ G1 b
004032FF 3AD3 cmp dl,bl ; DL和BL比较: H$ i; @- i( D7 H# y
00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
$ i0 k2 C! w) m2 n3 x00403303 83C0 02 add eax,2 ; EAX加2) y; A4 A+ J" S6 g2 B
00403306 83C6 02 add esi,2 ; ESI加26 O1 e1 L C; g+ e
00403309 84C9 test cl,cl
9 ^9 n; x0 b" g0040330B ^ 75 DC jnz short qsr.004032E9
- j9 u0 Z, b- @" K0040330D 33C0 xor eax,eax( e- L$ l9 P0 A8 W
0040330F EB 05 jmp short qsr.00403316
# M6 y& I; N$ A, R! E" ^9 e00403311 1BC0 sbb eax,eax7 ]* ]2 K8 |" B0 s9 g
00403313 83D8 FF sbb eax,-1$ N7 K! I4 ?; Q6 K) V
00403316 85C0 test eax,eax
1 j+ z$ s: I/ W00403318 74 0E je short qsr.00403328, ^0 z9 k8 A- I' B5 U7 S
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A3 ~1 b6 i/ {: A% d+ I3 Z3 R3 D4 p2 F
0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10], ~' e8 K# J6 ?4 B) h
00403323 E9 F0000000 jmp qsr.00403418
; `) C3 ^2 _1 x& k7 n, ]00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX2 `6 ?8 s: T0 [" f
0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]* n" i% ^/ J/ Z% i0 P3 l4 \
00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]: q6 v# O7 _5 E+ P# C9 ]
00403333 50 push eax
( r, ?& E. C8 y) z/ _: r# F+ h. W00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX
5 R L$ \& j y6 D+ Z. s00403339 50 push eax
- ^; |, F7 P4 g1 p* a7 m. I# q0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX" W! V& `; e% [; y: |* l% n
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
1 h, @+ N0 Z3 T- B00403343 83C4 04 add esp,44 z& {6 H0 ^ B3 v; F4 O, x
00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI
* m4 A( c2 Q' U' B; H/ S M00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8], F! w, N! F+ Z( v3 q' @
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
: m' @4 I2 R# Z4 H0040334F 50 push eax5 o- H) N3 [& r1 m5 @* S
00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
/ J( S" l) p% s: o% l) d00403355 50 push eax7 G4 O- q! L" u# f
00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX
5 ^* @! H! S% f4 Y9 R0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX- b" D2 Y! |6 f6 Z6 D
0040335F 83C4 04 add esp,4
2 ~" a- Q7 v7 p3 K4 A00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI( G3 T% l* q) p0 V9 X( l, u- P
00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
6 u$ z$ v0 t: K. i& w& |4 V7 F: f0 P3 C00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]/ h! l, r9 M1 A0 f. W
0040336B 50 push eax- u6 F X0 T$ Q; Z# ] G- N
0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX: r8 C8 `+ F" Z) B. ]. X: R$ c) `
00403371 50 push eax
4 b* E4 d% k* M2 ~00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX
% H. j! D" _+ W6 n8 B. @* I& F00403377 8BD8 mov ebx,eax ; EAX送EBX
, L; ]( K. f+ @3 q: }% C# d3 o00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX
$ O2 K* `, X4 t% Z( A: [0040337D 83C4 04 add esp,4' l3 j! p7 J* b3 y+ N' r* e
00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
/ n0 G$ D' x8 T1 S8 N00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]( t9 H$ f. Y1 e
00403387 50 push eax. P& D) {7 V2 z4 e
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX1 Q0 i: E) ]4 [. [4 ?: w
0040338D 50 push eax
2 g; E# z# x L% C& ^9 }0 N) h0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX, Q0 z$ ~ n: v* G. N3 W
00403393 83C4 04 add esp,4
& m, b1 l! H+ ?8 T00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
! R2 a+ j5 v. ^# x1 g& X0 }0040339A 8BE8 mov ebp,eax ; EAX送EBP* m: c) U5 R$ S6 z# |3 a0 \
0040339C 6A FF push -1
. l" E" t" \2 F9 R- ~0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX5 }' J% e1 i' K3 T& q( k
004033A3 6A FF push -1! d6 Q# O. W8 N- t# s
004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
$ s( F) v7 {& u% L) j# V004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
, c' y! Q: z j& N% Q& _$ H3 a' R004033AE 6A FF push -1
$ ~2 _! N0 }8 |+ I004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX, r, e* `9 j7 P0 b0 ^
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX+ J0 L* n. D+ n# l2 u
004033B9 6A FF push -1) X; l6 H! P( ~; B4 D
004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX
% A1 D8 s9 c- u" V) Y( R' a+ D. D4 J004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX% u) G7 }0 m: t/ d/ ^2 w) j s
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX2 @4 C4 d$ z4 K2 Y
004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX& c1 E( Z/ @3 @% q5 O
004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX! Y: q5 J$ @: K& p
004033D7 D1E0 shl eax,1 ; EAX左移1位
( `; c$ ~1 r+ s H6 ]004033D9 99 cdq ; EAX扩展
+ P: k1 T- |. {4 R6 `: n004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中2 F) n! [2 r r6 U
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较' [$ G5 ]9 N" h# A3 \
004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)
9 b+ @1 s' k$ p4 U8 r+ w: |3 ^004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A9 Y4 i+ L" d. @, I2 G& x
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
( @" {* g ^3 V004033E9 EB 2D jmp short qsr.00403418
5 s% L! N: R0 a2 i! @# L; H( w004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX
) N9 E+ T5 G' O& B+ @ g% H7 F004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2
9 Q# m9 G0 F5 Q8 e2 S004033F7 99 cdq ; EBX扩展8 N2 T P- m+ U2 c
004033F8 33C2 xor eax,edx ; EAX和EDX取异或' B. b$ g% r' ~" V' s2 N2 k
004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
# |8 K" {( {" E1 [004033FF 2BC2 sub eax,edx ; EAX减去EDX
3 @3 E% I2 R7 l r- `; m00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]. O6 n, J+ ^3 q8 W5 M" o
00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX% C8 ^, I$ x. _4 N
00403409 99 cdq
* N* \+ `: X' D R# v0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
- G9 k( e3 a1 T5 b0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX
# K8 s, ~/ \* L, a, t00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较% g* e$ z, P/ a
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)
# T3 R% q. \+ q( b% ]4 L8 s00403418 E8 6EC00200 call qsr.0042F48B ;
% A4 u; j- l' a; a# r/ b. ^0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]/ H3 ?7 |# ~; A) z3 ?2 E7 S' F
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9 w: z; B: K! C- D- v
00403426 E8 60C00200 call qsr.0042F48B
' [5 c. k$ P9 d/ @8 h8 Y8 R2 K* F0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]6 s% U6 j ]# m! R
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8
" \- T7 ?. {& w% g: a00403434 E8 52C00200 call qsr.0042F48B
6 A. I3 G0 ]* V6 |' x' ^00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]+ z% |5 J* J+ K. G4 C
0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],79 Y* h4 k8 {( b' n R9 J* }$ e; ` {
00403442 E8 44C00200 call qsr.0042F48B9 d7 |% M4 g1 j; d2 l
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
3 Q# R/ e4 V% e! h5 L0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6& p* B0 S! [- T* {
00403450 E8 36C00200 call qsr.0042F48B- d' j. J1 t& K+ d+ b
00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]) a! O+ T+ s; @8 l O
00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],36 b* O" S7 E: [8 a
0040345E E8 28C00200 call qsr.0042F48B
: V+ _: u3 r* [( |: {( [; C00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
! }: @* d. V. q3 p* t7 V) @00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],29 d; ~7 U& g3 a% ? Z5 j) S
0040346C E8 1AC00200 call qsr.0042F48B' E' z5 x- w- d9 f' y: d g# V w
00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20], P7 O5 z1 g P" w# K+ M# ^
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1
$ j' M, a( D% o+ A( ?( O; s0040347A E8 0CC00200 call qsr.0042F48B1 r; ]5 v( I2 W/ v" g5 l6 \
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
: Z+ ]1 k5 c7 |: z00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
" X/ V- b1 R: t1 |. f00403488 E8 FEBF0200 call qsr.0042F48B
, u1 F& q" J5 @7 o# u0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]2 G" N' R4 e6 \. X% y
00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1& b% ]& ~: Y5 v( [' }7 G
00403499 E8 EDBF0200 call qsr.0042F48B
! ~+ z$ b/ C1 ?& j8 Z" J1 L0040349E 32C0 xor al,al ; AL清04 L# K( C/ [! u+ ?. i* t* Z- u
004034A0 E9 88000000 jmp qsr.0040352D
S% j, _4 r) h004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~
d" B+ O6 \# o$ z1 ?4 g4 z004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]0 l5 @- J1 ?+ D. w1 `3 P
004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9
$ M7 j. p8 ]% }! }7 D004034B3 E8 D3BF0200 call qsr.0042F48B% L: `3 `) R: Q0 C2 ]; i: k: S9 H J
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
/ @; w9 ~' q) D6 {004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
6 F! l& l/ O* m( P" {0 f004034C1 E8 C5BF0200 call qsr.0042F48B
5 Z: P; w8 v. a1 E f8 V: V004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
2 z: T6 n4 f, d004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7- t! ~7 j7 w5 _( S& R
004034CF E8 B7BF0200 call qsr.0042F48B, z; D) ]$ A0 \) P
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]3 [, a% h) ]' O' H" A
004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6
& S5 i: V9 r9 q% Y- V9 s: E004034DD E8 A9BF0200 call qsr.0042F48B, `0 i) `3 R6 _( C, ?
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
2 S+ ^: l. v' g C* b5 _3 ?004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3. o" N- R* B7 \2 u' v
004034EB E8 9BBF0200 call qsr.0042F48B
# O2 s) s7 e% i/ j* L004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C], |5 c, S8 j% P8 c5 u
004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],20 ^; F# l" Y( ~1 s2 l
004034F9 E8 8DBF0200 call qsr.0042F48B7 Q0 u( U" j! v( y$ z) @
004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
, e5 m& p, i9 @00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],17 l& k. v1 ^/ g
00403507 E8 7FBF0200 call qsr.0042F48B
, @$ p3 n$ a6 X7 t0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]3 W& k) h$ @9 B2 i- T
00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0( B: I1 f; }& s5 a( q# s
00403515 E8 71BF0200 call qsr.0042F48B. W) u6 A; J* Z* h4 _" m( z8 g) A, j
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]* c+ P3 ]6 Y8 i5 m, j0 l
0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
" {, U9 @; Y1 U7 E00403526 E8 60BF0200 call qsr.0042F48B6 @- }: {1 k# s
0040352B B0 01 mov al,1" C& \ E: U' P- r+ `, o0 M2 e- d! {
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
+ g# U1 ]- v$ V7 }1 G* n$ I$ c* W00403531 5F pop edi
/ N" @+ j" E" u0 m00403532 5E pop esi
1 b8 y; G8 {" X/ |4 B00403533 5D pop ebp! Y& ?; L$ m+ ?# c
00403534 5B pop ebx
$ C4 W* L. c0 | S7 p% k4 G00403535 64:890D 0000000>mov dword ptr fs:[0],ecx; W9 A7 H* L. F3 _2 K
0040353C 83C4 30 add esp,30# D# ` M' E: B2 e R& M% S
0040353F C2 0800 retn 8
% F; S8 X% u& l8 P$ C--------------------------------------------------------------------------------
- [" O* H+ m! d( I; O【破解总结】
7 ^- c; A [# D. h 用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^& J0 L) c' j* h$ I/ z9 r
用户名:yijun6 i( i5 i+ L7 M7 L% o& k
注册码:4893*7777*3726*7777*0529; j3 E+ @8 G) Z7 B2 u3 R# L
--------------------------------------------------------------------------------! I5 L! v3 [7 ]4 G
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡