|
|
|
【原创】破解Quick Screen Recorder
5 _" {: Y! t4 W$ ~【破解作者】 yijun
7 ~' y$ i& b+ t6 @+ `【作者邮箱】 [email protected]2 N! H, Q. L+ A0 X
【使用工具】 OD,PEID5 w9 V5 B3 f) c& {
【破解平台】 WinXP
- V9 @; k x& s2 Z3 q9 a【软件名称】 Quick Screen Recorder
$ E0 o# a' Y6 e. M# D" x【下载地址】 天空
5 ?5 l0 i2 R# {3 Y% o% y) B! @【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
- L) Q7 `. c1 s0 a' t【软件大小】 540K
* q2 w+ Q* W$ ?% v) J【加壳方式】 无
3 x6 \( q3 S: e: E+ p4 d8 ^% H |【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)& e. a. o7 U4 |: d4 l
--------------------------------------------------------------------------------4 U0 z! o2 ~ Y# H5 v- K
【破解内容】) p2 o8 D; u1 I# M
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
& q+ F) g0 t2 f! }4 K7 v00404C69 55 push ebp //在此下断
1 f$ T7 L: g( |. K00404C6A 56 push esi+ [* S8 l9 e0 a9 m4 @9 U7 o+ }
00404C6B 57 push edi1 N5 d( `- N7 h
00404C6C 8BE9 mov ebp,ecx% M$ m- W- K2 L8 s
00404C6E 6A 01 push 1/ w) T: n. i6 p5 _7 @
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
" e; k! |7 p0 T2 M00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]4 P# t, ]) M( }9 o& Y0 E* _' ]9 u
00404C78 8BCF mov ecx,edi1 I; r W4 \+ ]8 b* N
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码
5 I4 B5 f" Y/ M! e8 v; ^00404C7F 8BCF mov ecx,edi
3 V0 b/ n4 t% r; {! v: x2 x; ?00404C81 E8 A73E0200 call qsr.00428B2D
* A0 P5 o3 i' c9 R00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
8 P0 b/ I) k4 P3 w) s _+ _1 V5 i1 P00404C89 8BCE mov ecx,esi( g5 Y6 l# a: H6 r
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX
. X7 g# ~6 Z1 e00404C90 8BCE mov ecx,esi
8 O0 H5 ~. ^+ i00404C92 E8 963E0200 call qsr.00428B2D _: j8 J* }- w3 h0 `
00404C97 8B06 mov eax,dword ptr ds:[esi]5 w* l7 C1 F5 `
00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],27 y- W8 I2 X3 X2 f5 ?
00404C9D 7D 26 jge short qsr.00404CC54 y1 L+ Q( P [; p
00404C9F 6A 40 push 40
! z( }# ?8 s8 O+ @9 B/ T8 ]0 k00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"% D W6 c( |% y& p$ Y5 N
00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."
# b( N# m2 w# Y2 j) M00404CAB 8BCD mov ecx,ebp; C- l! z) N) N; Y
00404CAD E8 C3840200 call qsr.0042D175
7 o7 L- {; k8 u; o) @2 l" i00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
. T; n. F5 I- Z! R, e00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx3 s: ?# K( f" w4 B% d1 W$ a5 Q) {
00404CBD 5F pop edi& n9 s* n' r3 j" c- i
00404CBE 5E pop esi
3 W0 c0 r! R) V, U00404CBF 5D pop ebp
: M" U. e N$ v+ R, L3 W00404CC0 5B pop ebx
6 R5 |! I( H) e' X8 b00404CC1 83C4 18 add esp,18# b6 ^ D0 u5 ~" R) Z- l
00404CC4 C3 retn# b* J9 ?% O* o3 A8 E" n
00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
+ q! g+ K. s ~. r3 Z$ }9 b00404CC8 84C0 test al,al
: I. t9 |& H' ]00404CCA 0F85 1C010000 jnz qsr.00404DEC- Z! o: C6 i* a# |( o
00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14], t% K4 F% D7 D' L1 `
00404CD4 E8 87E3FFFF call qsr.00403060
' V8 m2 P# `% Y* v0 l0 z% Z a00404CD9 51 push ecx- `+ k0 {, q' m! ?9 I
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],07 F8 H. Q, X0 v8 ]
00404CE2 8BCC mov ecx,esp/ j) Y, G9 D3 A/ B
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp( p4 q, {1 J$ D B( o) H! X7 s9 M+ |
00404CE8 56 push esi, U3 B0 K3 I# t# m. Y. V) l: v6 r
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
* {' }5 c$ r! e" O0 S0 I4 h( r00404CEE 51 push ecx K2 y& R1 J0 X. k& s" B& `
00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1
- D& q; H+ A& O. ^0 s1 J00404CF4 8BCC mov ecx,esp! V) l( K8 q; G
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp: D' _) T: O1 _% k8 v% t
00404CFA 57 push edi8 T5 L8 M( N$ p! P9 t; P' ]. L
00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0
6 Z6 ^8 t6 t* i4 v m. T- ]& m' I6 I00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]: n Y1 c6 ^/ u8 Z2 T" m! u
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0
! d1 v, M7 D* r7 f* G00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~' C1 u; L7 m: Y3 r( C. M
00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~
# |+ ?) g2 C: _00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
1 O/ R. K4 q2 u00404D12 6A 40 push 403 [; @7 f( @( w0 L7 P
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
' h& J5 d$ m( J, p0 ]6 | Q00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."1 c1 d3 T* [$ o0 h( m/ B* e
00404D1E 8BCD mov ecx,ebp
! V% k( ?9 Z S( I4 d' }00404D20 E8 50840200 call qsr.0042D175
. h* ?2 ~9 \* z2 w) \00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]# e( m# R0 Z" z1 M+ p7 k+ u
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1
S* F" O. C' j6 q7 K3 Q. {00404D31 E8 5AE3FFFF call qsr.00403090
: l n) P) }" d3 a00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
$ ~! b, K. {/ i00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
/ w+ \+ o4 D1 _( s Q# w00404D41 5F pop edi
; {; D1 s" R3 f" P5 m7 i00404D42 5E pop esi% ?% f" v+ v3 s, Q3 Q5 E6 F2 I
00404D43 5D pop ebp7 Y/ p3 d0 x3 e! y& E
00404D44 5B pop ebx
! |- `5 o6 J- }, L1 Z. u6 R00404D45 83C4 18 add esp,186 d. [. y1 l/ X
00404D48 C3 retn
$ k5 d5 Y1 `8 z8 F+ y*********************************************************************************************************************************************************
6 s& d% V C/ ?+ X跟进00404D09处CALL来到:( k, z8 `: v X1 p2 }9 I! B2 F
004030A0 6A FF push -1 //一路F8下去~~~~
/ F& w9 f: `$ |& p7 u004030A2 68 C88F4400 push qsr.00448FC8+ D7 J: E6 [, b `
004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
9 @; I" ]0 c4 L. R004030AD 50 push eax( j* k9 r* ?9 b
004030AE 64:8925 0000000>mov dword ptr fs:[0],esp& \" D+ m/ J$ A3 Y) o3 ]! V
004030B5 83EC 24 sub esp,24
. y2 [6 ?9 w( \4 F% ^' f0 x# F1 J004030B8 53 push ebx
% H* _8 t9 z9 ]0 f1 @! H, p004030B9 55 push ebp+ A7 i6 b: T. l3 G; p
004030BA 56 push esi, }! V' n) d, y( T4 h r: b! p
004030BB 57 push edi
8 n* d( D& s, T: y004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"/ a6 N+ J3 J& ?6 U" y. f: Z
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
( q# F: M$ y. W" C8 P$ R004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1+ x& X/ U. b. v( o+ B
004030CD E8 27C40200 call qsr.0042F4F9
8 u4 w, e! [# V% b+ @004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]# d. ?! u) A; H; M0 \$ _ z6 q
004030D7 894424 2C mov dword ptr ss:[esp+2C],eax
% e$ f* j8 u7 A& v4 h004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
* I2 T* I% I8 p- d; ]004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],31 M; f: _" ^2 h2 p5 z. b2 A* E$ T
004030E4 E8 905A0200 call qsr.00428B79
. X8 ]2 v3 u# d4 ]6 c% v. A+ ?3 X004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]1 _$ R+ k' M% p- Q
004030ED E8 3B5A0200 call qsr.00428B2D' N8 P# e4 Q/ U! m
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]2 F/ [* }' F4 v4 V7 F; E4 u: \
004030F6 E8 7E5A0200 call qsr.00428B79
' b7 C6 A1 b9 m$ c) N004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]" S6 F6 a( P( h/ V( a4 l F
004030FF E8 295A0200 call qsr.00428B2D
5 _' K! i4 O* P, B7 q7 R8 e* P00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]7 }8 H7 u& q- i4 T) n2 l" K+ t
00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]
2 `% m" }# T. Q& R+ R; \0040310B 83F8 02 cmp eax,2& w! A$ b) f: ]8 |
0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
/ K3 c5 S3 _2 Z! i N" i00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]: ~; P, z7 P* T" S
00403118 837A F8 18 cmp dword ptr ds:[edx-8],18
: j+ `1 I7 ]* s1 w$ H' [! B+ X0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳) G) k8 z S( q/ n
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
, O! ]- C$ Q6 _00403126 6A 01 push 17 l3 i9 b0 k4 y# y# b- U" h; L
00403128 50 push eax
8 e) i0 F/ k. K: w0 ~. \5 J00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
& I" X/ [! T0 e* |4 ]4 c( t2 P' v0040312D E8 C4550200 call qsr.004286F6. e2 @7 q( k% s
00403132 8B00 mov eax,dword ptr ds:[eax]
4 c9 r- L* p; n6 k0 d B' |) ?00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
4 }# T1 F2 o, `' x4 E0 ?00403138 50 push eax( g9 s6 Z! C+ U
00403139 C64424 40 04 mov byte ptr ss:[esp+40],4
, _7 `$ s! ?5 a6 ?9 `0040313E E8 4D560200 call qsr.004287902 ? S/ {0 E4 ~7 r4 O
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
, ?6 P2 F* e. y% `00403147 8BF0 mov esi,eax
; R* _. O( J) \* T* J+ p00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3% K2 N$ y% m$ i$ ], P
0040314E E8 38C30200 call qsr.0042F48B5 y# W) a- Q5 H( y% I: t8 l
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]
* r" U( P. R" q00403156 B9 3E000000 mov ecx,3E# }) Z; m- v: s. b: l% |
0040315B 99 cdq3 X. `6 Q! z- Z& r8 {( I
0040315C F7F9 idiv ecx2 H$ [. W3 ^; r w% a
0040315E 6A 01 push 1
) O6 K& V. E, D4 Z2 }- d2 E00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]
3 Z% G9 I. L5 S00403164 8BF2 mov esi,edx
% @! x+ Y# U E) y0 t00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
1 z8 E( b. c" q0 x0 d0040316A 52 push edx
W. M9 ?5 E) G+ a9 w9 R0040316B E8 0A550200 call qsr.0042867A
1 c. G4 [8 n" s2 |) @% S, }00403170 8B00 mov eax,dword ptr ds:[eax]
; I0 A" n: _/ q ?! q00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
# `( O7 m8 p% z: I/ L3 Z8 S00403176 50 push eax ?8 \1 P7 J9 `- `4 O) J
00403177 C64424 40 05 mov byte ptr ss:[esp+40],5' Y5 H6 A5 r, @( F5 t
0040317C E8 0F560200 call qsr.00428790- {" u, Z& L' V/ _! N ]6 E
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
% k8 f4 {5 }5 K; R00403185 8BF8 mov edi,eax
" }+ }- i7 r+ D: K00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3
. K7 j! P3 \ K4 H' a0040318C E8 FAC20200 call qsr.0042F48B
0 V6 a- w) x4 I2 L( m! f00403191 8D47 0A lea eax,dword ptr ds:[edi+A]! L: Z6 G4 y8 x! Y
00403194 B9 3E000000 mov ecx,3E
y3 R/ K- n# c* c2 a00403199 99 cdq. \6 T/ `, H7 I; X
0040319A F7F9 idiv ecx
5 F7 M, r l$ V0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]- Z) [5 }/ n/ ^8 e4 j+ G* `
004031A1 894424 28 mov dword ptr ss:[esp+28],eax0 O4 v3 G* \; y& U
004031A5 8BCA mov ecx,edx% k6 O* P/ h) D( y) {
004031A7 894424 24 mov dword ptr ss:[esp+24],eax
# G `4 H; y) |! ]: Y+ s004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
; P8 O! B" ^- q+ {+ S2 P( y004031AF 894424 18 mov dword ptr ss:[esp+18],eax! ^0 X1 O- f5 S, G8 e
004031B3 894424 14 mov dword ptr ss:[esp+14],eax% J3 h$ n0 }( q! B9 M( ~
004031B7 894424 10 mov dword ptr ss:[esp+10],eax
) V* }6 ? T0 t4 G004031BB 8BC1 mov eax,ecx% a7 _) C" C1 j% x$ U# \
004031BD BF 0A000000 mov edi,0A/ y7 Q! p7 n* I' R7 q
004031C2 99 cdq7 P9 U( l% B0 C0 t- {: M; F. b
004031C3 F7FF idiv edi! V% S8 m9 P5 g/ A8 ?# E) h
004031C5 8BC1 mov eax,ecx
- S0 ~; t$ c P$ G0 I: k004031C7 B3 0B mov bl,0B
1 R* _' M) M; u6 W V1 R004031C9 0FAFC1 imul eax,ecx
/ L' G. T, l. X004031CC 8BCF mov ecx,edi
1 m1 Y8 ]; @. g004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
6 b _% ^ G& i6 d. K* R+ ~004031D2 52 push edx
) X& Z, s0 o& i+ K/ U) n1 w3 c004031D3 99 cdq. |' g+ Y2 s, ^3 k1 j
004031D4 F7F9 idiv ecx& P3 v, v2 ?, ?6 u4 U
004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]$ J8 e$ W4 a1 s7 j
004031DD 2BC6 sub eax,esi* g. I1 F6 D- K: ?( F9 e
004031DF 52 push edx! f2 e/ z: P! M l* m" f/ G
004031E0 99 cdq% ?9 S& V c1 l; s- m; P3 J
004031E1 F7F9 idiv ecx- j7 G8 g# Y$ L1 f) x. c
004031E3 8BC6 mov eax,esi
0 ^' L% n1 m2 C5 M( F3 U004031E5 52 push edx: T; } C9 F: T* B/ M/ [
004031E6 99 cdq
1 i) q9 p* S3 u, A$ m004031E7 F7F9 idiv ecx% H; ^ e9 m+ B* Y, Z
004031E9 52 push edx
7 s7 l9 q5 |5 S& i; b: s004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38], B8 ?/ e" E( l, C7 D, ]
004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d" `7 s( f8 N/ u) m8 u+ G3 m
004031F3 52 push edx, d: `7 R7 Q; j2 m3 W
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893# M' d' q$ [7 L% y2 d
004031F9 83C4 18 add esp,185 b. `7 W, E4 `
004031FC 6A 04 push 4
0 _4 s4 }4 w1 e* D6 u0 _3 d r. k004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]2 H% k5 ~4 Y2 h: Y5 y) U) `5 [
00403202 6A 00 push 0
9 H& w" Z) I" x" V00403204 50 push eax( y/ B, L/ B5 _1 G9 Z
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]: Z8 c3 ^9 n6 l) n9 D
00403209 E8 D6530200 call qsr.004285E47 M( A; l3 I% K8 r2 k, x5 Q
0040320E 50 push eax, S4 F4 y* v' @2 \1 _# r5 w: d, Y
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
# [# E3 X W" C& [) U. C3 N00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C& ^+ W5 z$ N$ l5 Y* n3 B
00403218 E8 A7C30200 call qsr.0042F5C4
7 i8 M$ h3 g+ B g8 ?+ J0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
0 S6 f: ?: M9 _4 C00403221 885C24 3C mov byte ptr ss:[esp+3C],bl8 U: `1 z/ q+ H- O3 C1 Q7 g9 a
00403225 E8 61C20200 call qsr.0042F48B
& S1 { |* {- S3 k3 F \0040322A 6A 04 push 41 |- N1 t% ?- X4 E5 R
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]( U2 s9 Z5 U7 t" g
00403230 6A 05 push 5$ E x& ~0 p" K
00403232 51 push ecx
) u* y# a, B$ y Q+ {. n! i00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]' K+ d, m6 e9 y
00403237 E8 A8530200 call qsr.004285E45 v9 b4 T, L* W) D' O2 q
0040323C 50 push eax1 S3 X; w( H$ e6 k
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
% c- f$ p8 t- ~/ d- l00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D2 @2 q) E9 E6 k5 E3 s
00403246 E8 79C30200 call qsr.0042F5C4- c( g3 p9 q$ }; o1 {$ S
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]1 K/ l3 x. W0 K
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl
0 f" O2 e8 o' a0 P p% a00403253 E8 33C20200 call qsr.0042F48B2 P+ ]4 u) r9 G" ]- P
00403258 6A 04 push 42 k# A1 d6 K9 {- e! b
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]9 f/ l: u8 r3 j* w$ ^. ]8 T- W
0040325E 57 push edi
9 w- s8 S* `% F# i0040325F 52 push edx8 @4 a3 \8 h7 Z& G, u! K
00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
, g8 T- t7 Z g7 N% f00403264 E8 7B530200 call qsr.004285E4
7 v! v( K5 v$ Q00403269 50 push eax" l, I. Z* [4 }8 c
0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
- O% L9 p3 H' h: B5 t5 {" n0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
9 V2 L2 h" j1 z1 \' F00403273 E8 4CC30200 call qsr.0042F5C4
! ~9 Y4 G G3 g& P9 W00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]; x0 M5 |8 B" H1 p' s
0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl& z o1 J: f3 G* j# b; x2 ?
00403280 E8 06C20200 call qsr.0042F48B
5 R: O1 x$ ~- ]. q" o! @# I00403285 6A 04 push 4
' I4 v' j: u5 R. X1 b" @00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
4 J! q+ Q1 ?1 f+ C2 E0040328B 6A 0F push 0F
* ^' ^" p1 e9 o' L0040328D 50 push eax
( j; }/ n7 U6 ?7 {0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]2 X- P" O! f$ m" o
00403292 E8 4D530200 call qsr.004285E46 p9 @" f) J$ d( _
00403297 50 push eax- V i: G- |: F0 F: i
00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
4 V$ |) ^4 x4 O k4 |0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
5 h, w5 o/ d5 s/ m004032A1 E8 1EC30200 call qsr.0042F5C44 K; k+ L3 n- F/ a
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
5 S- v0 J7 o) b3 ]5 }" _004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl
0 S7 d3 Y" Q6 O& |( G+ Q8 I8 n004032AE E8 D8C10200 call qsr.0042F48B& Z& ] d3 ?/ K$ c$ p
004032B3 6A 04 push 4
# M' O# S/ U6 |; X004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]- C4 w% v( ?# H) o$ }! b
004032B9 6A 14 push 14
1 U$ g" i( b% ^& j$ Y. Z1 g004032BB 51 push ecx
( ]9 X. o8 A4 K+ O; |" m% B; @004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
+ c% s% s7 q. g- M9 Z004032C0 E8 1F530200 call qsr.004285E4
9 Y: }9 s& ^% a+ m- r) ?004032C5 50 push eax
% e2 c$ E! R4 {: |" \7 J004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]/ T w. B9 B& n% e7 j' X' b1 E
004032CA C64424 40 10 mov byte ptr ss:[esp+40],10( U* _& n, H: x1 i2 x
004032CF E8 F0C20200 call qsr.0042F5C4 n2 k" Y5 J4 W- L
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
- I- ]# v3 U2 g1 P7 U1 f* c+ p004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl$ k! } P: t/ |- h& F' r
004032DC E8 AAC10200 call qsr.0042F48B
2 L/ t) ^+ s9 q: \+ u3 p7 E004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI1 O! {0 Z9 d( G
004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
3 I, L% W6 d, m6 m% T004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
9 b {3 L, \) [9 j- C/ i004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL. i4 @7 h- o- u; D) x# H0 n
004032ED 8ACA mov cl,dl ; DL送CL) I. m: I, O Q1 ?% G0 D: Q
004032EF 3AD3 cmp dl,bl ; DL和BL比较- ~8 v G$ K6 O
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳): F/ Y2 ` p. v5 m; y
004032F3 84C9 test cl,cl
4 G3 I& {) _# ^+ f% ]* z$ I004032F5 74 16 je short qsr.0040330D( z7 g$ r, Q( }) ~8 ]8 r
004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL
6 H0 [4 L6 }& e2 x004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL
( w! ?: s. v9 ^004032FD 8ACA mov cl,dl7 q0 |: L( y/ G- l# z5 o) T- i
004032FF 3AD3 cmp dl,bl ; DL和BL比较
/ O5 _" E: o4 z& B7 k2 E00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)
9 M" X* ?# r y00403303 83C0 02 add eax,2 ; EAX加2
) i: o& A4 _) P$ _00403306 83C6 02 add esi,2 ; ESI加2# e( l9 f5 Y i/ j* D
00403309 84C9 test cl,cl
/ M3 S7 B1 Q, a: f+ K0040330B ^ 75 DC jnz short qsr.004032E90 L, G% V5 N. t& d
0040330D 33C0 xor eax,eax
, H$ l( h! w5 U$ N% T% Y0 [8 Q0040330F EB 05 jmp short qsr.004033162 z2 ]9 N, S; m
00403311 1BC0 sbb eax,eax
/ b+ l2 [2 U6 ~. F( ~$ j) R00403313 83D8 FF sbb eax,-1" ~' l1 F- u( E* e$ ]1 M
00403316 85C0 test eax,eax
4 q3 |! t/ o$ s2 t( r( F00403318 74 0E je short qsr.00403328# @/ R* ?* v0 I9 E# P/ M3 T2 U
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
' I) F E9 E' p) c0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]/ Z* z. y& t4 y; M
00403323 E9 F0000000 jmp qsr.00403418. p, n# A$ \ r/ D
00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
% J* I" U- c) `4 X# C0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
' ?4 K" x8 _, c" i$ |/ P, `* I# R+ B00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]0 Z' I3 f) c+ D5 b
00403333 50 push eax3 E5 s" l9 s4 d5 i J H
00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX
1 U+ P) Z6 h# S5 w- i) F/ s* Y2 L! ?00403339 50 push eax
! c4 G" i# i, W' B% ^8 j. { T0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX
% d$ ]' [& V& D9 _8 y7 O0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX% u2 b/ U( z- d" m/ n( p
00403343 83C4 04 add esp,4
H& k' {* ~3 F4 X) l8 P. t2 G00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI
3 q, W7 E$ _7 \1 {2 Y) L# B: K00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8], y( d& B- p: b, V
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]; M* M/ W6 n2 d4 n" w0 R
0040334F 50 push eax
" e( d8 @8 N: ]00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX! W E0 X; X% j. j$ X2 Q' {
00403355 50 push eax
. u. @6 x9 M+ V00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX$ m9 Z0 o* b# h! j( x
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX) V- U. e5 k9 \( }# w+ F" h
0040335F 83C4 04 add esp,4
; H* P0 z- ?: @2 ~00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI
# l- s& ?; P4 ]' ^' l* F00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
" p& E* I' i# N' ]" L9 A; l00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]$ r" {1 Z* O) V5 ~0 F
0040336B 50 push eax
2 x: [" R, E* D, b0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX
4 y; o4 I4 v1 s7 F& B00403371 50 push eax
' A& ?' T' s8 h( [" Y00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX% L1 ~1 M, @, E" [) J
00403377 8BD8 mov ebx,eax ; EAX送EBX
# V* s* ~2 z" O% c- u00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX
* j2 r& H1 Y8 m5 M( l0040337D 83C4 04 add esp,4
7 C1 n% O- D: z1 F9 u/ H. g00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
0 }! [4 m! C9 j) d# T& R00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]% R) k! |- r p4 S% f& G3 G
00403387 50 push eax
0 q g0 S( V$ f" {00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX
3 ~+ l, `! P1 i8 I* C0040338D 50 push eax
* j. i; z% T8 u& B6 }' ]0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
/ U4 d" |. p" q8 I. A00403393 83C4 04 add esp,4) C% t# [' F, {" O* e/ X
00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]: x# z7 `) @$ ~5 b L/ ^; _
0040339A 8BE8 mov ebp,eax ; EAX送EBP
" c9 [0 }' z. m! E0040339C 6A FF push -1
8 ~* k: b* a3 J8 N& O- o# g0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX' U# j" w$ [# ~) `% q
004033A3 6A FF push -1* l1 z* N0 E+ V. ^0 p
004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
% ~2 C8 {- I! u% [# ?% a004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
7 W1 X- q( V p004033AE 6A FF push -1
! A4 j9 V6 H& u0 N004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX' ]: Z9 v# Y+ B2 n# Y& h6 e# e. |& W% r# u
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX$ G! M% |- i& H N) |' l9 E
004033B9 6A FF push -1
p9 |/ F" D' E; I! Y004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX
, I. @; w t! i A: _004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX
# r" y8 V- @: V0 t# G' r1 k0 n004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
: z) F+ v0 u9 A! T+ z7 t7 z004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
9 M9 Y' C* a5 Z9 q" P, B004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
$ y% `+ r( E' p8 K/ J5 \: u s004033D7 D1E0 shl eax,1 ; EAX左移1位, M8 S9 h/ _/ T+ I5 j5 r
004033D9 99 cdq ; EAX扩展$ m+ z% s5 M& _, r' Q6 [5 J* ^
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
3 Z m+ F4 M1 x. C004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较' B2 r. e3 Y2 W. V, J. K7 d- G. T, ?
004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)
" c4 S2 u+ e; i, z004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A0 z H, K4 B. Z" t7 {: x
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
% d# H% D: u' v) v5 I) o004033E9 EB 2D jmp short qsr.00403418
0 k" |/ h4 V4 d$ m2 o* ^0 r, Z004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX4 k7 \6 p3 u/ E O2 I& F" H3 t4 x
004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2
8 ~8 I% j# Y! d2 ^004033F7 99 cdq ; EBX扩展
$ T/ H% w, W" _3 v8 q6 S004033F8 33C2 xor eax,edx ; EAX和EDX取异或* m8 B# Q* `# _# e- B% v* J" e/ K
004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX1 ^* b1 E; [3 L/ A" J6 B
004033FF 2BC2 sub eax,edx ; EAX减去EDX
/ P' e" A; u+ F00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]: c2 J8 u' P0 q& I. V, K) w
00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX: n" ]) ?% o8 Z/ l
00403409 99 cdq
}, V z. T; ]' Y# C0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中* l" p# w% Q# ]( Z
0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX
- e* Q) d" T5 V6 B" |3 T# m00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较) p1 S' j8 |$ i2 v/ O
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)
% i4 S( X3 S V4 R& Z00403418 E8 6EC00200 call qsr.0042F48B ; @( n! I2 G% ?# }$ ?' a
0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]6 j8 C# c- _: m2 `, t/ @
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9& U- b& I/ C% o' V# b; I
00403426 E8 60C00200 call qsr.0042F48B7 s; r, G2 R" b" B2 |
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
7 W- m5 r+ H. e% ?: E5 J2 L0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],83 i m0 X L% F: a. I/ k+ ?5 ?
00403434 E8 52C00200 call qsr.0042F48B. \9 R; S" ~ X. T2 V5 D' J4 y5 d& v
00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]3 C5 M' {# {; A3 {0 l
0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7
5 A3 w6 Q) g: N$ {# u. N, S00403442 E8 44C00200 call qsr.0042F48B1 z$ i& T8 h8 j/ s
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]- G) ?6 x% i) g& s1 A
0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],62 j" x" m9 ^( ^. @9 Y, k
00403450 E8 36C00200 call qsr.0042F48B
4 u; q5 r8 }4 B: y3 G" T* s/ U00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
$ m! f# h$ R( C# g" J: r: G00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3
# o( O) v8 @7 R0040345E E8 28C00200 call qsr.0042F48B/ H4 A# M) K: G# k7 }
00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]; T( m5 y" X$ ^7 \- d* x
00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],23 [: S8 a, ~! A& W. G- D! l
0040346C E8 1AC00200 call qsr.0042F48B! I- `4 D5 |& x5 x, T' N" S
00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
2 l" v( U* f" ^9 l+ K& I/ {" v00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],16 F$ m+ [( z0 J0 q: k! |9 g) N
0040347A E8 0CC00200 call qsr.0042F48B4 s8 m9 \& k/ x, H
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]3 e v; b6 z5 ~+ ]" _" C% z
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0! R3 N# J7 z0 B4 r$ `
00403488 E8 FEBF0200 call qsr.0042F48B0 B. g P# q6 ^% K& w
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
# Z& [9 j8 n; x# @9 Z2 S, f! t00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1) [1 |+ d$ t- Q0 f) b4 N, Q2 V
00403499 E8 EDBF0200 call qsr.0042F48B
4 f2 [( B. _& ~5 }; p/ r0040349E 32C0 xor al,al ; AL清0
) l, k2 \* O; h+ f/ Q1 G7 n004034A0 E9 88000000 jmp qsr.0040352D* h" X r- p2 Q0 y% D: k: p
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~7 H( E3 [1 ^- Q4 ]
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14], A$ e. x$ V: N( o: F
004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9/ B) w1 B. _, c/ Y7 Z
004034B3 E8 D3BF0200 call qsr.0042F48B
, j0 p0 K! S9 G2 b; w! ^004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18], z x5 x% d. C* ]5 [/ V
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8 i7 `9 U' R5 B. K+ W" T# i6 m
004034C1 E8 C5BF0200 call qsr.0042F48B) @% ~" F- T# m S) F! _
004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]5 }4 N% F* U) g- S4 U" U
004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
8 G! [" `) G1 w9 r3 A004034CF E8 B7BF0200 call qsr.0042F48B
0 `8 [2 S6 {/ C- \- f* z004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24] }7 N% F6 m. D. C2 M) r1 G
004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],63 T$ ~4 k& w& }1 R9 g
004034DD E8 A9BF0200 call qsr.0042F48B6 M2 t+ g" Y' K: T3 @0 j7 T
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
5 ?# r; ]. o. d; ?- t+ L- [ ^004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
% Z4 F# ^" ?) j& S" H7 k7 n004034EB E8 9BBF0200 call qsr.0042F48B
# m' I2 {/ T4 H8 q2 U$ @004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
1 `. S9 s7 \% _3 }. k- ?: Q+ O004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2% l9 l' ^& u) u7 F1 k' B
004034F9 E8 8DBF0200 call qsr.0042F48B& J1 t3 B! _+ ?1 ]" I
004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
4 i7 ?- ^ e, ?& l. ]4 f, g00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1% P$ H! {' ]$ `
00403507 E8 7FBF0200 call qsr.0042F48B
% ` t: x" b0 k' `- Z' z; F( z0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]* n! N0 Y$ `. y5 w% [) u" e
00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0
$ G; _, B) n" V2 S: T$ O00403515 E8 71BF0200 call qsr.0042F48B( t) C3 s( L- J
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]% J- N ^$ ]3 ^9 i% R
0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1" [% t* T) c2 ?' J1 K$ r. o6 G0 ~& L
00403526 E8 60BF0200 call qsr.0042F48B
; [, ^& Q: w' C) I* S: N- \0040352B B0 01 mov al,1
- R8 w) {& B; {1 O7 r3 j# u) X0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]$ S4 P, n0 ~0 p, |. b; Z$ b& a
00403531 5F pop edi8 |- s/ h' l; V( w9 W
00403532 5E pop esi% R7 u8 X# j* \0 h" y& n6 k* \
00403533 5D pop ebp/ L2 o' _% X% X0 w: m! h, i6 r
00403534 5B pop ebx4 f% H) p) o9 E7 n2 S
00403535 64:890D 0000000>mov dword ptr fs:[0],ecx5 k. y3 r2 C0 e! a! s- ~' F
0040353C 83C4 30 add esp,30
/ X3 k' d; ~* F9 M t9 Y2 q# Q0040353F C2 0800 retn 8
M0 r; ]0 ?- I0 m$ e4 V--------------------------------------------------------------------------------
" g8 W$ [ s0 u& f【破解总结】
6 h+ f: j' y" |! d4 t2 l9 x 用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
2 P/ f i/ |) \# i用户名:yijun8 @ _7 k6 A2 m) [8 E
注册码:4893*7777*3726*7777*0529& @5 s2 y; P% n. ^! N) |$ t D) u
--------------------------------------------------------------------------------
& c$ w3 W9 E) l5 F, v- i+ p【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡