|
|
|
【原创】破解Quick Screen Recorder
8 T9 `- Z: r; N) D5 q【破解作者】 yijun
8 r9 [! ?. g; U( W1 Z3 `【作者邮箱】 [email protected]
/ C+ j1 M! ^$ Y( b# F【使用工具】 OD,PEID
" d1 G# ]4 I. g+ w6 c7 [9 l* P【破解平台】 WinXP$ b; R; T$ F8 ]/ w) j( K; ]2 P2 l
【软件名称】 Quick Screen Recorder4 J8 x& u+ A9 _0 `/ \; p3 c
【下载地址】 天空
" I" j+ B+ \0 q! O. @% c【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on. 7 N# x9 p& Y; y+ a1 k% G4 ]
【软件大小】 540K7 X, b; o2 M* F9 x
【加壳方式】 无/ L" m+ f2 ~: v
【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)" D4 ?& s. z: U, h1 V- m0 D, f f
--------------------------------------------------------------------------------- F3 b- Z. v% y0 z! u
【破解内容】9 X6 r% J* m J5 G
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
/ a( r5 Q/ D/ {3 M00404C69 55 push ebp //在此下断
+ Z, U; @. l# t: ^) y00404C6A 56 push esi, Q+ ~- C/ ^! h/ V, n( F, B9 T- E
00404C6B 57 push edi
8 S6 V1 k3 W0 s8 x2 G9 o00404C6C 8BE9 mov ebp,ecx
5 s6 r; c+ f- L00404C6E 6A 01 push 11 U C3 B; J; m0 y' r) v. B( X6 _- K% c
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
* W Q( Z$ j. ?! a/ \; O00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]1 o' N! S! D2 }8 N
00404C78 8BCF mov ecx,edi2 f$ L- L1 N4 Q5 e2 b
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码
3 }; A, n6 U+ |& e7 R8 o00404C7F 8BCF mov ecx,edi# q6 X/ i" a, D3 U& P- E- l: Y
00404C81 E8 A73E0200 call qsr.00428B2D
/ s+ b6 i' t1 G! q00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
0 X: {0 N4 R$ i. I6 @5 U00404C89 8BCE mov ecx,esi
( F I2 T. l' U7 G6 E" o+ F$ |00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX
+ Q& y( |1 e l9 I+ b00404C90 8BCE mov ecx,esi- l0 `4 X6 x6 {8 s
00404C92 E8 963E0200 call qsr.00428B2D
0 r' [' S+ I' f. g( U8 W) m5 n6 i00404C97 8B06 mov eax,dword ptr ds:[esi]
1 r) j7 c6 \" Y0 f* Y00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
' A7 o7 j& N s" n00404C9D 7D 26 jge short qsr.00404CC5
* i7 Q; j& [/ A. `$ r; ^00404C9F 6A 40 push 407 l5 z7 I5 d8 m7 a; Q6 p
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
) ?, k) D: h( t$ Q( D00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."" ^2 u) E0 F1 h( f$ e
00404CAB 8BCD mov ecx,ebp
( T8 J \# z. v00404CAD E8 C3840200 call qsr.0042D175
4 d9 W! u7 [0 Z00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
$ y+ ^- ?5 k# ]0 u1 ~* h00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx
5 [3 H* i2 b; z: w8 h0 y00404CBD 5F pop edi
( w& u4 ~' f. }+ w- u7 V7 i! ~9 \6 ]5 \ R00404CBE 5E pop esi' N& O f; x; ^3 F$ I. n1 t
00404CBF 5D pop ebp( P6 F- r% }1 c3 Q
00404CC0 5B pop ebx
; {- _1 C4 Z2 X) K( ^8 }00404CC1 83C4 18 add esp,18! d" O: C; ^; p) S/ J0 M/ I+ h
00404CC4 C3 retn
8 f9 {, _/ }( F4 ^5 W00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]& Y7 c) \) {: @% f4 z4 ?
00404CC8 84C0 test al,al
N ?, J7 w$ m: ?00404CCA 0F85 1C010000 jnz qsr.00404DEC
6 b$ B8 F+ {/ ]8 ~/ p00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]0 w z7 |1 C7 h/ @) p" {. a6 y
00404CD4 E8 87E3FFFF call qsr.00403060
! W5 o6 ^9 C+ R6 B0 \4 v$ _00404CD9 51 push ecx
, ~, E$ a" L' q00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0* l- G. \$ ^, K
00404CE2 8BCC mov ecx,esp
/ H% w) j% o; J2 s2 a) B00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
9 `: _ l& L' ]5 H1 ^$ i* Y00404CE8 56 push esi
$ c- }8 c% a& N) Z# q+ O0 |00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0+ Z" c; ~4 O, u8 c% o7 L
00404CEE 51 push ecx
. e0 i* H) M- e3 |; T5 V00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1; a9 E, `6 U2 |2 O2 }4 r
00404CF4 8BCC mov ecx,esp
5 J7 }( T5 r/ ~; Q" ?3 Y00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
9 p! O3 J T5 m. ~/ W: h+ o; t/ `- J" T* S00404CFA 57 push edi
. l+ L: X# o" A6 D1 J& o2 [00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0+ _3 f" R" H' q7 [3 ^
00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
4 X7 n. k* r0 s! M$ t00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0! m9 q/ E3 T1 b) ]1 l% B% L
00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~7 ~9 T8 H, q6 o9 D6 W4 t4 D
00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~
; w# @) T% [+ t& }00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~/ S/ M' v |0 F% g6 z
00404D12 6A 40 push 40
7 T; m; [7 p& [; z: M00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"9 E; i+ G# O4 G" K0 H; Y
00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."7 k, x F a7 c7 }% z4 u1 ?- ]
00404D1E 8BCD mov ecx,ebp# ]1 O) g7 s2 w: X6 r7 P* h& t
00404D20 E8 50840200 call qsr.0042D175
5 s* s4 V H7 b; ~- i5 y00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]0 V' W* C3 q5 R, F
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1
. U$ s% C6 r% C$ Z, u u' R00404D31 E8 5AE3FFFF call qsr.00403090# Q* |+ ~, B( R1 M3 G& W M, Z
00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]* g! V! H ?0 N2 C
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
' U9 C" T5 c. o; x00404D41 5F pop edi1 A. q5 R6 F, B
00404D42 5E pop esi
) V- \: m6 r2 p, ?2 B9 y00404D43 5D pop ebp; Z6 A! w' S/ I3 M3 \% x0 e. T
00404D44 5B pop ebx) f* i0 ~9 n6 ^0 p- a
00404D45 83C4 18 add esp,18# I7 A) w6 K' h9 q# z# A- }
00404D48 C3 retn& l$ g5 ]# m- G8 B& P2 {
*********************************************************************************************************************************************************
8 @. K! h6 z n( |; M6 n跟进00404D09处CALL来到:5 u5 a P v+ ^, O
004030A0 6A FF push -1 //一路F8下去~~~~
: m t1 `3 ]; g004030A2 68 C88F4400 push qsr.00448FC87 f! }% Y4 g7 @. n+ o
004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
+ C9 E! R9 q! f5 H004030AD 50 push eax
. N' X, A2 s5 }, `: s004030AE 64:8925 0000000>mov dword ptr fs:[0],esp0 y! |! k X5 I5 c+ S
004030B5 83EC 24 sub esp,24( x& u4 U9 H* ]& e
004030B8 53 push ebx
) B. f7 B9 |, r) J' c% b004030B9 55 push ebp: n* g& l1 D. i9 W7 [2 B l& o, k
004030BA 56 push esi
; M; o4 Y. t! T& ^1 A1 o! K004030BB 57 push edi- u# ?) E& H) ]) @) j
004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"
$ [, F' D0 W% z5 E3 T3 H4 P3 Y5 e) {004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
; t- N* _, B9 a- b5 @4 |7 f004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],13 F7 |3 @& b7 x+ y8 R7 B
004030CD E8 27C40200 call qsr.0042F4F9
^. ]* V' q- E/ f0 J8 W004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
: K+ t5 D+ W2 W' d- b7 S% l; T; W004030D7 894424 2C mov dword ptr ss:[esp+2C],eax: l5 s e9 x! T. g# F0 W
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]6 Z/ e; ~: ?! d2 V/ _ ?
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
; p( r7 O8 L* i. Y% T004030E4 E8 905A0200 call qsr.00428B79
" G; z/ e/ R3 D- Z9 z6 s004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]9 U* N: F7 T$ ?9 d0 H5 `1 F% N$ i
004030ED E8 3B5A0200 call qsr.00428B2D0 j5 I, t( u. U; H+ t
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]$ {' i' `$ l; c: q5 X. P: c
004030F6 E8 7E5A0200 call qsr.00428B79 G M+ X( \; O v3 `! ]
004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]6 s+ W$ B! L, d; A' T( C0 G
004030FF E8 295A0200 call qsr.00428B2D, H' X# ?, | x& f
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]
! h. b8 @/ y( x M00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
9 V! F& m+ c4 |4 Q; F. v: Z2 i$ P0040310B 83F8 02 cmp eax,23 O5 D5 K2 ?# v' T: d
0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳- {% d. N/ i- Z6 b) l
00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]6 n3 w5 m8 [* h) q
00403118 837A F8 18 cmp dword ptr ds:[edx-8],188 T Y/ n$ t: |
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳# ~1 i2 f! _2 |* s' w" s2 C+ F& V
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
9 [1 B6 @* `6 T0 O00403126 6A 01 push 1$ V. v1 B8 v. C3 g
00403128 50 push eax* K# c0 C6 j* N) Y+ ~
00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50], {4 ]* q' K0 F
0040312D E8 C4550200 call qsr.004286F6% _+ M2 b2 d o) y* \: |
00403132 8B00 mov eax,dword ptr ds:[eax]
' p" g8 C, T9 Z7 z) z' W3 A+ y00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
' k5 l2 H. ^! j, k* W9 x) I+ t% K00403138 50 push eax
0 W( e0 j& X' f4 w$ \ C: {# ^00403139 C64424 40 04 mov byte ptr ss:[esp+40],4" |4 d& s* K4 Y v( w* Y
0040313E E8 4D560200 call qsr.00428790
# _$ ^( N! V, h p& Y, W3 k00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]2 H" j. N8 O1 ?# t
00403147 8BF0 mov esi,eax
7 Y7 M5 @9 s$ i) E/ ]9 ]! `00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3
' y& s( h0 f$ b M7 E0040314E E8 38C30200 call qsr.0042F48B
7 W/ E) H0 q7 }00403153 8D46 0A lea eax,dword ptr ds:[esi+A]
# e/ k1 C6 p) u& W! N6 L00403156 B9 3E000000 mov ecx,3E8 n: q2 n+ @2 v
0040315B 99 cdq
0 L$ d u, X2 j& b2 K0040315C F7F9 idiv ecx
6 b. @: X; c- X3 f6 c4 Q0040315E 6A 01 push 19 |) d7 c7 |, b& {* M# E$ p6 s2 Q, p
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]
% g' R+ x3 A7 `/ O- L: Y+ g00403164 8BF2 mov esi,edx4 N' I0 \- C1 h8 s6 Z& `; _
00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
1 S. O' F( J1 F' c/ x* T$ |0040316A 52 push edx
$ N3 |. C$ A1 t5 Z3 W0040316B E8 0A550200 call qsr.0042867A
0 d' u# e0 ]' m' p& ^* P: l: `00403170 8B00 mov eax,dword ptr ds:[eax]
0 L6 [- p4 }' n9 O! J4 f! B5 t6 _00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]+ Z V* w. o. p/ l% ]. s, h
00403176 50 push eax$ m Z0 G7 N$ X/ @8 d& J
00403177 C64424 40 05 mov byte ptr ss:[esp+40],5
9 x6 n2 Y$ O7 ?/ i" m) A0040317C E8 0F560200 call qsr.00428790; D" U3 @3 X. p+ n* C
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]; ?$ y8 S q) o
00403185 8BF8 mov edi,eax' Z* \) i- |; I" L- u5 b2 G: g4 r
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3
( C3 T$ q4 d8 ^7 d0 K; _" W0040318C E8 FAC20200 call qsr.0042F48B
" {6 f2 t! Y% A, [$ U, D00403191 8D47 0A lea eax,dword ptr ds:[edi+A]
; F; \: q- J% c9 H8 R00403194 B9 3E000000 mov ecx,3E
* C' w7 _% `7 c: }$ S00403199 99 cdq
9 z3 w: _4 k1 [. z' e+ y6 z0040319A F7F9 idiv ecx' P- Q, S ^& X& e: m+ w
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]
$ D5 ?, I" f+ E6 B5 {1 S( l0 m004031A1 894424 28 mov dword ptr ss:[esp+28],eax# Q& K. Z+ ~+ u
004031A5 8BCA mov ecx,edx
2 {2 g6 o4 X }' p5 m004031A7 894424 24 mov dword ptr ss:[esp+24],eax
0 G6 v! L' }& [7 `& D0 S) F; ^004031AB 894424 1C mov dword ptr ss:[esp+1C],eax8 @6 Q' v' o n2 ?
004031AF 894424 18 mov dword ptr ss:[esp+18],eax/ I( r: [, d, K4 Z9 t1 F0 S
004031B3 894424 14 mov dword ptr ss:[esp+14],eax e5 _. K0 Y( q
004031B7 894424 10 mov dword ptr ss:[esp+10],eax+ x U. E! [' z) b0 c0 i2 C
004031BB 8BC1 mov eax,ecx) Q- u" u3 E( j
004031BD BF 0A000000 mov edi,0A
( k8 [# f& @3 Q- r) i; O004031C2 99 cdq' V- f1 I0 o& Z3 T$ u
004031C3 F7FF idiv edi
* _1 H& y4 `) C% K0 K004031C5 8BC1 mov eax,ecx1 ]6 {3 A2 o& i8 h7 ~
004031C7 B3 0B mov bl,0B
1 l* l G; u g( a004031C9 0FAFC1 imul eax,ecx
1 u$ \8 s6 T' `004031CC 8BCF mov ecx,edi+ K$ h$ ?; I/ W3 t' Q) k
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
0 h; A; u8 W3 M+ J- T004031D2 52 push edx9 @, L- \: _5 E( V$ |7 h
004031D3 99 cdq( X4 h$ Z* E4 F# P7 b) w3 P
004031D4 F7F9 idiv ecx
2 {, x$ D6 A8 F. Z# X+ \9 |004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]5 n: s3 i% o; S" y7 D
004031DD 2BC6 sub eax,esi
g" B' x+ t+ ~' {, ]$ y* I004031DF 52 push edx
# F# w3 ]. t& Q4 D$ y1 p. x/ ?004031E0 99 cdq5 b4 `, e& v2 R- m+ h4 x
004031E1 F7F9 idiv ecx; x% i; S$ D3 v8 F' ]$ G2 H" @
004031E3 8BC6 mov eax,esi
- _5 u' `5 Y" T1 F+ a3 t& T0 H004031E5 52 push edx3 F6 a4 \. T9 [2 q$ d1 a( Z/ B3 R
004031E6 99 cdq
- D7 x7 Q& y$ g+ |004031E7 F7F9 idiv ecx4 q+ Q) S" l# e# p; h* O
004031E9 52 push edx2 J0 U8 Y! \2 n0 T X8 `5 i
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]6 {/ c0 r% o( N h8 |
004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
% i e& r; f$ r- i% P) S004031F3 52 push edx& a# j6 O) q( u; v$ \
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是48935 u# M# D" q( S7 j
004031F9 83C4 18 add esp,18) _7 ~( J2 R0 ?8 r
004031FC 6A 04 push 4
" ^) i! n. E0 g+ i) e; |) ^004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]- \: _# }& F3 R
00403202 6A 00 push 0
: I A2 Z. M2 x6 z D" o00403204 50 push eax! E" B" `+ s8 [* o4 ~4 u/ f
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
/ k8 ?; {/ @9 s7 O8 p00403209 E8 D6530200 call qsr.004285E4
" g' P* D W& d5 K0040320E 50 push eax
# T6 l3 Q* O/ z) c0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]- k' ?8 A* }! E" h z( F
00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C/ j! G3 q" B& G- a9 G# C( h
00403218 E8 A7C30200 call qsr.0042F5C4
8 {1 ^& p' o2 T7 v4 o9 q0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]" j8 j5 k& ?8 B* L* `
00403221 885C24 3C mov byte ptr ss:[esp+3C],bl
- \9 j, U6 @ R4 V/ m; R# h00403225 E8 61C20200 call qsr.0042F48B
2 Y+ e' I/ o7 P6 M- Z% \0040322A 6A 04 push 4
, {" Y6 P6 D# U4 U1 y0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
. X$ f! C* v; Z$ D5 b; K00403230 6A 05 push 5
' B8 T, |. ?+ h# [" g/ L00403232 51 push ecx- z0 g* s! K v- w7 d8 ~% L( M
00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]( l7 Z2 n/ X' p& S# Z* J S
00403237 E8 A8530200 call qsr.004285E4& U7 z$ i4 N0 G* f" e2 {& P
0040323C 50 push eax/ `/ @0 R, t4 P
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
& i6 k" M" R1 X8 N/ B) @00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D: G# |% }1 z$ m2 K9 t. s
00403246 E8 79C30200 call qsr.0042F5C4: e, f1 @5 `) J- ]! u
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]+ t% b/ I0 I/ {& {# [0 A, f
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl
6 M/ b+ p' @5 L8 ]9 L u( s00403253 E8 33C20200 call qsr.0042F48B
# i1 w3 q! u6 C: [3 v) A1 o00403258 6A 04 push 45 F# C" b/ N1 r) Q0 _" n
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]+ _' S8 W; W# b1 }
0040325E 57 push edi
5 y( ]) x6 f% M: M* Z/ Z0040325F 52 push edx
& Y5 M- L# P z% K4 p3 W00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]+ J2 t. g3 r# ]8 D6 ~
00403264 E8 7B530200 call qsr.004285E4! M$ W: k' Z# H7 A; m; n1 m5 [
00403269 50 push eax5 r$ m& Z5 e9 ]4 W
0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]- z ]; F8 ], d3 s7 c0 c: Z
0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
& f/ T" F% J1 b' P00403273 E8 4CC30200 call qsr.0042F5C4( @. _: X7 s: q* E5 R, F* z O# e
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]# `+ s Y+ a4 b n9 b! w
0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl* Q, G* N) @# o% d6 A. e
00403280 E8 06C20200 call qsr.0042F48B
9 G/ V$ U7 L% }( j00403285 6A 04 push 45 V& | q. m# {, |2 f/ a0 ?+ s w
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]/ z* X2 {& v& b% K4 a/ r
0040328B 6A 0F push 0F
' p- A9 n* V% R5 w( T0040328D 50 push eax
9 x7 A: s" r5 ~0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
6 ?1 t2 V/ X0 ~+ i& O8 O00403292 E8 4D530200 call qsr.004285E48 M3 }% Y3 h( v( ^! V# x6 f+ N
00403297 50 push eax0 Q% x& Z( p& h
00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]" P0 ~1 [& A1 E
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
/ S# V% {0 l1 Q* K6 v004032A1 E8 1EC30200 call qsr.0042F5C47 d6 |$ j& K @" A+ p" w
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
, g ^) m' C+ l$ |$ t004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl
, Z u( b6 _& M0 @004032AE E8 D8C10200 call qsr.0042F48B
, I8 D6 C) B- E9 g& n& Y7 q4 G004032B3 6A 04 push 43 e7 Z# Q% q0 P5 y
004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]* c5 b, [( V1 d
004032B9 6A 14 push 14$ ]- U4 Q& r+ t( M% q
004032BB 51 push ecx
9 N' y, K# U! H3 K$ B* q004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
; P) c% a; E$ c004032C0 E8 1F530200 call qsr.004285E4
7 x) P, A( s8 l# f4 \004032C5 50 push eax
1 U0 I, P7 L9 ~) ^8 ^/ S# A( h! l004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]; _6 [5 y/ S6 N2 S0 |$ b
004032CA C64424 40 10 mov byte ptr ss:[esp+40],10
/ [; e# g# \8 n2 f, \# t' ]+ R5 r004032CF E8 F0C20200 call qsr.0042F5C4
! Q( V1 ]; ], _" i" n8 \4 S0 Q9 ?% J' C004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]+ I3 l) E N# M% ?: G/ B
004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl: M7 k% b1 E, {# k( O @
004032DC E8 AAC10200 call qsr.0042F48B
% U7 U, Q5 `6 e2 B004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI5 N3 z2 ?7 h6 ^, h" i+ v
004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX3 i- R/ r5 H. Q1 P# C9 h
004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
1 o S6 h9 L4 W/ _004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL
5 w8 H' N7 p; I004032ED 8ACA mov cl,dl ; DL送CL- `! {3 @1 }2 B
004032EF 3AD3 cmp dl,bl ; DL和BL比较3 `9 g) v3 N' j( H* A
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)3 `( M" P! s, y7 F% q$ }2 c) P* v
004032F3 84C9 test cl,cl3 L" u0 F$ N* P- T; d* X1 {( h
004032F5 74 16 je short qsr.0040330D% V( u4 v1 U% {" v+ b8 M
004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL$ ~- K5 e8 i G+ G3 l* @
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL8 `+ @9 z$ O- s9 p8 e. b! Y
004032FD 8ACA mov cl,dl
+ e. m+ ` t, u8 }* V) o6 w& q9 Z004032FF 3AD3 cmp dl,bl ; DL和BL比较
$ n; m, A; @5 w' `8 G00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
7 Q- F0 f6 |6 G! C00403303 83C0 02 add eax,2 ; EAX加2
" W N2 `9 H, c w' D00403306 83C6 02 add esi,2 ; ESI加2
1 ~# S. C6 _, K5 b/ Y3 I00403309 84C9 test cl,cl
" |& X5 n, w% }' d A+ d+ K; P0040330B ^ 75 DC jnz short qsr.004032E9
% |) ~$ \: n2 w0040330D 33C0 xor eax,eax( Z' o$ t7 M/ x
0040330F EB 05 jmp short qsr.00403316. j8 ~( E1 T1 p' a- x& ?
00403311 1BC0 sbb eax,eax
3 P7 E& x8 @5 K, _2 `- C00403313 83D8 FF sbb eax,-11 `& v, k; q7 t+ v
00403316 85C0 test eax,eax. y7 I; F; Q& H; }! ~8 y- _
00403318 74 0E je short qsr.00403328
" U) F7 ~! W9 o ~% O& s2 o0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
, U- V8 j7 F2 x0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
. }( L( X8 X- h4 I00403323 E9 F0000000 jmp qsr.00403418
6 r% b7 ^; ?: U. I" d- B00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
2 s% m1 {9 N- J* y8 i0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
3 X6 G4 q6 u4 J1 o6 e& v' g00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]
5 p R' u. h% G00403333 50 push eax
: x8 l9 ]" s4 ]/ E. U3 p00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX
7 R; h6 `) C% k" _* \00403339 50 push eax
! S X- Y3 z3 {& N0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX1 c- z% p2 k3 \
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
& \ }; @7 m) k6 i: V( T00403343 83C4 04 add esp,4
* K0 a' @* o( g00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI6 E& m }+ a0 o: I8 t3 [
00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]
# M" Q$ {5 O1 @& l' S, ]! A) E0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]' i3 s+ A8 V0 D! F7 h* `9 n) C! D
0040334F 50 push eax
2 t. s" u# h9 T, Y; I00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
1 x5 W7 e5 y& S+ ^7 {( C00403355 50 push eax
) s, H) z% l& g! I# _- K00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX
/ x8 z( A7 G# E& S0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
% J. l4 q5 i+ }, T+ Y0040335F 83C4 04 add esp,4
. D' V0 y( K# I00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI5 i& X" ]0 D9 W
00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
6 R9 }2 z% C; v% o00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]
7 W# P( u9 l7 I0 c3 D0040336B 50 push eax
8 n- a2 y c8 r1 [0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX: G" |5 ]# X. v o
00403371 50 push eax
% [' ?" W* B) {* [, v. I00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX
$ U! f; N3 C' ^3 I00403377 8BD8 mov ebx,eax ; EAX送EBX
, E( z' v1 t5 |. j- t6 ^3 g4 k00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX/ L$ d2 {; X' M+ a4 V7 r
0040337D 83C4 04 add esp,4
& q# {& i% M: h7 v) T( @# [+ Y00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
# X: M% z2 |; l- @$ h0 ~! }00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]
# L5 n$ B/ J/ q( Y00403387 50 push eax
. W- c+ c. l: T4 m6 x00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX. i$ `! Y; e7 s% ~
0040338D 50 push eax
; x' A8 Q# s7 N0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
+ p$ s$ j, m% F4 X! p00403393 83C4 04 add esp,4
. q* X4 e7 b, V# L1 |00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
+ _- W1 p* g; v0040339A 8BE8 mov ebp,eax ; EAX送EBP2 f. R5 S0 g( s) g% Y! q
0040339C 6A FF push -1( T0 k2 O! r% Y$ U" H
0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX
; |( p9 X7 A& A) e+ N# A4 \% G) d004033A3 6A FF push -1
- t' |6 ~0 j2 G; W004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX+ m* M/ t2 n. U+ B7 h2 Q
004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX: X9 c( B6 t$ v Q2 r6 L6 A% r
004033AE 6A FF push -1
! |' P$ \: F/ N1 D004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX
5 Q( Y# x- N8 J8 n; L! x004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX5 o' w8 w% i: s& M% E* f2 y
004033B9 6A FF push -1) d4 \! @5 T& F: ^+ b" o! e) r
004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX
4 c$ K& c% ~7 v! h b% q! X3 l7 D004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX
, H0 V0 A) E. r9 g1 o004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
' n w6 p. a; L) _5 k004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
' p! r0 j6 D; \* X2 f004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX, m# d, O! `1 U* D1 C1 b
004033D7 D1E0 shl eax,1 ; EAX左移1位% b; T5 c; E7 o9 S# x
004033D9 99 cdq ; EAX扩展
- A6 E9 _; s- l, {& y004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中" l8 ^8 d* [. I* K9 N
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较# y8 U$ r7 i4 R# m0 y. B& b
004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)" X. T# Q8 c3 z( m5 P; B, l7 k
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A
: |8 D* X, o; ~' w: c+ k- O8 D004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
: H- }& ^9 Q& R9 k004033E9 EB 2D jmp short qsr.004034182 g! ^' ^! m4 Z# _- j6 P0 B, ]% e
004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX7 R1 G+ b! G, s9 X+ ^
004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2# w/ U# e& O# S! V0 o) Y' o2 o
004033F7 99 cdq ; EBX扩展/ H1 K* d$ \- L
004033F8 33C2 xor eax,edx ; EAX和EDX取异或
+ ]4 Y" r J0 r" [$ `1 u' _# l2 j3 b004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX2 t, U0 P/ K" {* w
004033FF 2BC2 sub eax,edx ; EAX减去EDX y/ D$ V" e9 p
00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]
2 A+ o+ P0 U8 C# D/ c9 y00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
4 s$ N( F" M( ~* ]00403409 99 cdq, T: p; v9 N3 q! T0 h9 k# W. t
0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
% U4 K* ?' I+ ~7 T3 M! [0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX$ _$ @0 Q5 M. X6 h
00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较" Z7 ]$ G4 H' m. [2 [
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)% s1 Q! V) Q1 j( x& |
00403418 E8 6EC00200 call qsr.0042F48B ; 1 b# d- N: x. i g+ O; V6 y5 @! l& q7 g
0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]. w8 |! o9 R- q' x! B6 I& g
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9
4 c2 W" t. [, v# O) c00403426 E8 60C00200 call qsr.0042F48B
& ~4 y" ]% u8 E0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]+ @5 I. {; l+ X6 | x
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8, s7 X, P/ I: b5 D% O% |0 x3 J0 C
00403434 E8 52C00200 call qsr.0042F48B
& T8 A: l% D X* F5 M00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
: I! r: g2 {6 E- N1 e4 y0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7
, I$ `5 ^; C& l0 K7 W2 I00403442 E8 44C00200 call qsr.0042F48B, j2 t# f& Y+ u
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]; a4 c+ R" b% Q3 d5 r
0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
8 g \ @$ T9 s3 |6 h7 O00403450 E8 36C00200 call qsr.0042F48B
) n3 y) A! A0 e. e# i; k00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
3 \+ O& h. p4 b5 a00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3+ [9 p. ^# U& W9 L4 s% Z
0040345E E8 28C00200 call qsr.0042F48B- I w `. M/ F! i& \
00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]3 e; k. d E$ h- g( G
00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2" q& O1 r& U3 i5 q
0040346C E8 1AC00200 call qsr.0042F48B( ]1 X8 k) S' n7 g
00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]+ p4 C" r0 }, @1 J* f
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1: ^$ j# _, C' q8 J3 x/ M) f! c" l
0040347A E8 0CC00200 call qsr.0042F48B
. U4 n; h0 z" D& y& S l) @; f0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
. B( N& Z4 D' H& x$ G5 C1 O) h" d00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
0 o7 G. \1 X9 Y2 j; N v, S00403488 E8 FEBF0200 call qsr.0042F48B6 H" g7 \$ Q/ C _0 }' E( o
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]# C9 Y: _8 B) z( i
00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
7 C9 O. X# E# X" B# {00403499 E8 EDBF0200 call qsr.0042F48B6 H6 P P8 m% c2 A e' K! N# F5 _
0040349E 32C0 xor al,al ; AL清0! C; L" v' ]: e
004034A0 E9 88000000 jmp qsr.0040352D
. @" u1 Y9 |+ j5 a004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~
W! v( p! H$ j2 L9 F" j. `004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
- g* G4 G- \+ X' W7 V3 e004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9
" q( }, ^, K8 X4 e' l/ q004034B3 E8 D3BF0200 call qsr.0042F48B
$ A8 k% V3 F: ]; Q. K0 F9 @004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
) p2 p5 t8 f9 ~# o004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],88 y* P$ j/ a5 H9 [3 b' G) h
004034C1 E8 C5BF0200 call qsr.0042F48B
$ Z. j g/ l& r1 _" {) p/ K004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]" V( b" i' C0 o& J+ V. y
004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7; N/ [, n' R. Z( @" i
004034CF E8 B7BF0200 call qsr.0042F48B
* ?' p" X5 \+ m8 w004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
0 B6 m9 U7 B E004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6
; x: X3 O! M; c* L3 _+ ^& A004034DD E8 A9BF0200 call qsr.0042F48B
X7 X( l9 R+ z9 b$ N4 P004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]* ` b* o& P# C
004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3+ Y; S, G1 P; Y& W
004034EB E8 9BBF0200 call qsr.0042F48B
0 P* r) a6 M r3 y: ?* Y- {+ L8 g- x( c004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
+ ?6 I6 n) {, g, s, i$ ~9 l0 R004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2* e8 B1 G6 V5 D. a
004034F9 E8 8DBF0200 call qsr.0042F48B
& |# f+ w' Z. G' v004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]( U# @: T+ E5 P
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1
i* i$ v& a6 p" q, E+ b3 Q00403507 E8 7FBF0200 call qsr.0042F48B0 ]+ |* J0 W9 g$ `& N) t/ ?* |
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
# E7 M' J8 l/ Z- \& Y( i. d00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],08 g, n+ L3 c6 e2 X1 X; W3 D
00403515 E8 71BF0200 call qsr.0042F48B8 E3 J: r$ \! [: M
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]' ~5 G. q" w7 _# {3 B0 z) G
0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
% Z3 Y: t a: T( S( L8 B$ x7 \7 {00403526 E8 60BF0200 call qsr.0042F48B
# L9 R$ S" T* l/ k( c' B0040352B B0 01 mov al,19 g) _: R+ j/ u
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]( d8 L! I* O7 r4 y; {
00403531 5F pop edi
6 H+ T! i- t8 y1 a00403532 5E pop esi0 }3 i& A7 b9 V1 ~+ ~
00403533 5D pop ebp
+ m( g" N) }, X00403534 5B pop ebx
" l' y& s- R# N0 U. l7 C, o00403535 64:890D 0000000>mov dword ptr fs:[0],ecx' b0 N# ] r5 F
0040353C 83C4 30 add esp,30
$ n; g3 b6 A' I; T" [0040353F C2 0800 retn 8, c7 ]. u3 v4 j5 s2 ]' f
--------------------------------------------------------------------------------
; y7 }8 ?1 O; Z【破解总结】
3 V% i5 q9 E; i( b. a! q7 g, F 用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^/ q$ D: V k0 a! D: @ O/ ~* C( h
用户名:yijun# S j* |8 h0 a' G5 O! M
注册码:4893*7777*3726*7777*0529
8 a3 a" w: x) D--------------------------------------------------------------------------------- m( b/ Y8 W6 @3 j6 ~
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡