|
|
|
【原创】破解Quick Screen Recorder5 |9 R. f& x4 I5 w( ?# a1 c
【破解作者】 yijun
! m; r) V, t( _8 p【作者邮箱】 [email protected]
0 i8 K( h O6 S; I5 ~' S2 |【使用工具】 OD,PEID
! Q1 d* S* T, W# a; j N4 N9 c【破解平台】 WinXP
% v# w# }3 L+ ^, L) J【软件名称】 Quick Screen Recorder
: `" o$ H) ^7 T. U/ Y【下载地址】 天空* A% C& o1 z/ L+ ]
【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on. 2 W* N. m; v" z) S1 n4 a
【软件大小】 540K g. u0 q- m8 m+ z. X$ u% _
【加壳方式】 无& b: T3 I2 F$ H6 D8 F
【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)
) G7 P7 j5 B* D3 U--------------------------------------------------------------------------------, a3 X! ^0 u" C0 \
【破解内容】# J; ?4 }! G6 s; ^5 n. e% k2 l# \
PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:3 k: n# V. n \% b# r& R5 d
00404C69 55 push ebp //在此下断0 s$ H1 P0 p- k: }) J3 @* ~2 J# O
00404C6A 56 push esi
, ?- u' t& C* n) f6 m; [/ V00404C6B 57 push edi0 j: x# B4 u: y! |/ s S3 R
00404C6C 8BE9 mov ebp,ecx
' H3 w4 t* J& F0 S00404C6E 6A 01 push 1
. v/ ?1 d4 _* N0 E00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名/ y( M+ X2 q$ w& T( _1 W( V
00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]
% W( v! E3 g2 I3 K$ K00404C78 8BCF mov ecx,edi4 S. S, [2 A0 F& [# W$ Q
00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码: i- J0 C' n1 E) L1 Z
00404C7F 8BCF mov ecx,edi
* g7 f2 H4 J# l3 \! C& Y1 B00404C81 E8 A73E0200 call qsr.00428B2D! [/ E0 f( g- [8 [
00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
. }/ u7 ?8 f z9 N a& ?5 B4 l00404C89 8BCE mov ecx,esi
4 M4 X1 m, P& Z1 t/ z) W' F+ w00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX4 H, A6 c4 G) h4 s; N' Z0 C
00404C90 8BCE mov ecx,esi
E/ ~$ W- Q0 w. E00404C92 E8 963E0200 call qsr.00428B2D1 U# V1 Z$ \+ ?. x
00404C97 8B06 mov eax,dword ptr ds:[esi]. c4 v. s; I9 h E8 H
00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
+ @! w( h1 {' v2 g/ I00404C9D 7D 26 jge short qsr.00404CC5
) P: q1 j3 M" L" Z0 L0 ]6 c2 X1 B00404C9F 6A 40 push 40
0 n8 } {3 } D4 A0 r s5 Z7 m; [7 g00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
* ^1 M! |' X$ f: t00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."# V( x H# q7 e/ `
00404CAB 8BCD mov ecx,ebp& I0 L1 }. @5 k" W% G$ G. A |8 I
00404CAD E8 C3840200 call qsr.0042D175
. v1 p! l8 I) x1 L00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]6 j0 ?1 A8 G4 y/ D' D: `% _
00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx
8 X5 }& |5 `4 k) x00404CBD 5F pop edi
% ]1 S. R O* d. x5 `00404CBE 5E pop esi" _0 {/ {' C0 _8 k- [
00404CBF 5D pop ebp
3 i i% g! ^& E8 s$ m3 D# n00404CC0 5B pop ebx8 a6 }, {- {; M
00404CC1 83C4 18 add esp,18
4 X+ s8 e& ^! Z# N, x% y8 Z' F5 P00404CC4 C3 retn
! I) N5 i6 m0 |& H5 i9 I00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]
% {, O8 y1 i- T: |) g00404CC8 84C0 test al,al! f- C( K& f8 Z" @# g: y
00404CCA 0F85 1C010000 jnz qsr.00404DEC7 r9 N2 o9 {1 b; ]+ j) L5 z
00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
, O5 E0 m( I9 i" k' g7 _7 R5 D" @00404CD4 E8 87E3FFFF call qsr.00403060
* E1 S. n4 G, V5 B Q5 J00404CD9 51 push ecx
& P# r4 ~/ c, D5 U7 I+ [00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
; ~9 s' \, Y% b! V4 S% O' q00404CE2 8BCC mov ecx,esp% s/ y" A1 y& M
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp* z6 T* j( _& g; O# W, ? `3 p) h0 ^0 W$ q
00404CE8 56 push esi! P4 [* f$ w2 K( u( E
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
2 f: c/ u$ ^4 O00404CEE 51 push ecx
) I. s' v( Z1 S00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1
2 X* m7 ]* k# f2 N! h00404CF4 8BCC mov ecx,esp# Z/ R! T+ b9 H% }0 o; l) U- K9 S
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp$ y1 J. ]$ O4 {* j
00404CFA 57 push edi
$ \% T' [' F- `% `0 r* @5 i2 K; R00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是07 C7 q% o+ G/ J: Q
00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
, {/ t8 p& r9 ~; t/ R: `6 x00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],09 K: k& r. e s6 r" U9 m H3 L
00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~! Z8 ^4 J, P! V$ N* D8 x. j
00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~% Q$ z5 X: E- p/ a7 X% {
00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
2 I! P4 g- t8 W, \5 x3 N2 K. R00404D12 6A 40 push 40( D# V, G/ y6 |) f
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
2 V2 M- x, y) O, ~00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."
; x" w+ w* x4 R X; K7 @0 c00404D1E 8BCD mov ecx,ebp# ^! R3 M2 A7 @/ N1 F9 V# I" Z
00404D20 E8 50840200 call qsr.0042D1751 M1 g1 `! M3 j: Y9 I. y
00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
, U/ k6 M+ C7 B) R00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-12 O2 ]% a1 W2 B' o4 Z
00404D31 E8 5AE3FFFF call qsr.00403090
/ _8 ]3 D2 \+ V2 i00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
: G: R4 c! }& b% @& G6 [00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx
y! c! C3 \) @ U2 _) ~" c1 h' ~00404D41 5F pop edi7 Q* L2 Z1 t# Q- C0 P0 H4 X s/ F5 q+ `
00404D42 5E pop esi1 i$ V% ^" j4 M
00404D43 5D pop ebp# O1 t; q/ ]9 {: A% S6 U2 i
00404D44 5B pop ebx
' u- I! e. S. N6 \( v00404D45 83C4 18 add esp,18. ~0 a* h7 _) L! v' y+ }
00404D48 C3 retn# O, T5 d4 r+ f5 T/ ?& S5 \" M7 J
*********************************************************************************************************************************************************: S% f d% J/ Z" L+ L( L" w
跟进00404D09处CALL来到:
: y5 ~- a1 r9 V0 Q- @004030A0 6A FF push -1 //一路F8下去~~~~
+ r1 L# K! [, N004030A2 68 C88F4400 push qsr.00448FC8
7 _* F0 m) E8 ]- Z+ E' c7 s @004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
4 E9 W( H! P1 g7 |* e004030AD 50 push eax/ m, I8 s9 O( I4 Z- K5 D9 G0 u) ^2 A
004030AE 64:8925 0000000>mov dword ptr fs:[0],esp0 @2 ]" B: ^3 ?; @, D1 _& ]# n% G
004030B5 83EC 24 sub esp,24
) x2 y- Z5 ]1 b3 f$ {004030B8 53 push ebx
; U: n. t& F0 @$ }9 S' [004030B9 55 push ebp
1 u9 p* W0 T/ ^7 z. g004030BA 56 push esi' @( l$ _& L [ [- P& a3 Y5 i: t
004030BB 57 push edi
0 N: L5 N5 t( M004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"6 R9 j' q1 ^' X' n* b; p
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
6 F$ B7 v0 _ y( c- T004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1
8 |+ m4 H) y% x4 j$ X004030CD E8 27C40200 call qsr.0042F4F9
0 a9 ^. r, o) w0 P8 A) S- d4 ~004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
0 H, Z& D2 R! D' j- |004030D7 894424 2C mov dword ptr ss:[esp+2C],eax r" r, A* l5 y; i& j9 ]' K! D
004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
4 C+ A6 O: D) N' C/ `3 P, J& ~! M; S004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3% w6 z8 P/ j# U6 c0 y: ]; H9 t
004030E4 E8 905A0200 call qsr.00428B79
+ ~: {- X! m7 P. R7 K004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
* R+ g( U$ A8 g+ ^) ]" M. i& I004030ED E8 3B5A0200 call qsr.00428B2D
' z5 F( m2 b: n' J004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]) u2 _/ N. }2 |: p& B4 i. Q
004030F6 E8 7E5A0200 call qsr.00428B79
8 y/ T5 a$ J% d; o) H* ^, ]004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]) k1 p8 M! P6 o" I- d! [% |6 K; K
004030FF E8 295A0200 call qsr.00428B2D
; _0 d' ~9 }2 A, k00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]
( [8 L! g; B5 @3 w6 q9 q/ s00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]5 C1 b4 A; E' s! ?
0040310B 83F8 02 cmp eax,2
x' m$ j9 V6 v1 W9 [0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
; I% K4 g' [9 Z8 Y. V. M. {( L. |00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]
% ~) w6 N' A& ~' M. m0 d5 o4 u00403118 837A F8 18 cmp dword ptr ds:[edx-8],180 e5 p9 E7 ]! x
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳
- U- m$ B! U- s8 E- W00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]$ h7 X' E l! [0 S0 Q% N) l0 O5 M
00403126 6A 01 push 1! K. } S* y; H4 O' A3 T3 U
00403128 50 push eax& b4 ^, ]: C! X9 [ ?+ J) ^% H$ G
00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]# B" z3 m9 T( L! X# \6 N. z
0040312D E8 C4550200 call qsr.004286F6
- V1 U; v* V* T% g+ G, L+ h% u) ?00403132 8B00 mov eax,dword ptr ds:[eax]
9 l/ {8 _7 o$ \00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
- Q0 h$ _' F f+ a! U% l, a8 f00403138 50 push eax
" ^5 b6 P: I5 Y% l6 ]! w- o* F9 R00403139 C64424 40 04 mov byte ptr ss:[esp+40],4
# A1 J U! Q0 V$ Q: v4 l0040313E E8 4D560200 call qsr.00428790. E, x; q% b( j6 p
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]3 D7 i5 H- R# I* V1 x( ~
00403147 8BF0 mov esi,eax6 _7 o0 s8 B' j- n" U! A/ a6 h
00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3/ K+ r) t7 v/ c, D
0040314E E8 38C30200 call qsr.0042F48B2 }& {0 g9 L$ P7 \7 p9 v& q
00403153 8D46 0A lea eax,dword ptr ds:[esi+A]* T6 X- B; t( I" Y+ o
00403156 B9 3E000000 mov ecx,3E: x- U; |/ N8 z$ m
0040315B 99 cdq" {% p8 U- I/ Z% |8 Z' N( {+ j
0040315C F7F9 idiv ecx+ E1 F: |& \7 Z
0040315E 6A 01 push 11 u1 o- D! X4 K* c5 ^6 @1 {
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]# [# d6 _# a0 F" B5 u9 |
00403164 8BF2 mov esi,edx7 u4 V: V. r% N% c) y' y% Q0 v
00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
7 ]+ q4 `$ z5 B B% W$ A5 R% K& [0040316A 52 push edx( ^' X, d9 B: z2 r" D
0040316B E8 0A550200 call qsr.0042867A) P6 n2 I g V* y
00403170 8B00 mov eax,dword ptr ds:[eax]) k# g5 C9 v5 v" j2 v0 Q. ^/ ` G
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
$ E! t) i6 ~3 C* ~- q/ C00403176 50 push eax ^5 h1 U4 S4 w/ c- @ R
00403177 C64424 40 05 mov byte ptr ss:[esp+40],5
8 W/ @ o$ T0 `) T! e4 i1 ]8 g0040317C E8 0F560200 call qsr.004287906 |, F9 h* w) I( I3 p; q
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]5 g$ p+ ?5 I" F1 _+ F% |
00403185 8BF8 mov edi,eax8 @$ e1 ~! L0 _& I0 u
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3& ~% |9 W5 G' h& J/ P# _
0040318C E8 FAC20200 call qsr.0042F48B
" i& n, |2 l7 j; U9 B# ?3 Z/ a00403191 8D47 0A lea eax,dword ptr ds:[edi+A], \. T" W/ V% c- {
00403194 B9 3E000000 mov ecx,3E
' s, j, C" n, w2 t: p. ]00403199 99 cdq9 v$ J6 K$ r2 R2 Y
0040319A F7F9 idiv ecx. ]$ C( p# q. t0 S/ e: Y/ O* m9 b
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438], E$ ?( ~8 U- Z
004031A1 894424 28 mov dword ptr ss:[esp+28],eax
" h! o( h! u- ]$ U# K' z004031A5 8BCA mov ecx,edx
& c9 K# V/ V2 j- m004031A7 894424 24 mov dword ptr ss:[esp+24],eax
8 X: S1 w8 p: X# M# x004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
, K( \/ G7 _: Z3 V5 o5 U004031AF 894424 18 mov dword ptr ss:[esp+18],eax
! }+ F2 x9 O7 ?. o8 D% l. t004031B3 894424 14 mov dword ptr ss:[esp+14],eax
' G& d! q0 C: _% Y4 \# Z, P004031B7 894424 10 mov dword ptr ss:[esp+10],eax
+ j }) R) u( z* O004031BB 8BC1 mov eax,ecx& @" ? n, H. y
004031BD BF 0A000000 mov edi,0A) ~# M8 l' i2 M
004031C2 99 cdq
. ?4 {4 D n' S; `" a" m% j004031C3 F7FF idiv edi
# k; a: V7 X$ m; @% l004031C5 8BC1 mov eax,ecx
6 l" p2 P* B4 B004031C7 B3 0B mov bl,0B. {4 n/ ^+ L0 e9 I- I( L
004031C9 0FAFC1 imul eax,ecx7 X* Z2 G$ j7 Q5 X% M! Q
004031CC 8BCF mov ecx,edi2 d8 T( q* }- |. L, E& Q* K5 \
004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
9 A; Z1 N9 A2 x/ P, W% `- R004031D2 52 push edx9 H) M$ l- w7 b# _
004031D3 99 cdq" p% x& h* \$ \2 X9 N P2 o3 A
004031D4 F7F9 idiv ecx
) d/ u6 P) i+ n' V004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]
" O1 _* O9 t& ^6 N; Z) G' ^004031DD 2BC6 sub eax,esi
8 ] I& Q7 J: v2 w7 e9 T" y+ N004031DF 52 push edx* B; B' R2 @: U/ {; _
004031E0 99 cdq6 v, h, ^* ^' h, B8 f
004031E1 F7F9 idiv ecx) e& A7 h2 Z: O
004031E3 8BC6 mov eax,esi
) H/ M2 N2 I1 `4 y2 c004031E5 52 push edx* S# K. Q0 I7 W( Q5 v2 h- M
004031E6 99 cdq/ \0 u6 D6 ~4 Z% D) x+ g! b" M0 B4 N1 i
004031E7 F7F9 idiv ecx0 }& O3 |- a8 |5 V" m
004031E9 52 push edx
6 b- y4 r% ^- n2 ]8 B004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
0 {: R; v( F; C004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
( @2 k$ k) m" }+ f) H; W5 r; v004031F3 52 push edx4 P7 j8 q: L+ R4 v0 p9 a5 `: G
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是48939 n0 S/ O( A5 i3 v; {" y/ w' X
004031F9 83C4 18 add esp,18 q7 r# N* v/ K3 j- r R8 k( e
004031FC 6A 04 push 4
5 B# o# K+ {/ ?# V% |$ F5 T3 ?004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]
, d' d+ y& l) n00403202 6A 00 push 07 M Y4 w5 q9 ~" Z' C9 {
00403204 50 push eax' ~/ d0 C7 C \' y3 n1 s9 [0 L: r" d
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
9 j* W7 U6 A# p: T& K, }00403209 E8 D6530200 call qsr.004285E4/ l. N8 _8 |' v1 x% B _9 r
0040320E 50 push eax
- b7 i, ?; g3 x1 i9 s9 l0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
+ X, |! _3 I* a/ o+ f00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C& Q6 j4 T2 v. |; \4 c
00403218 E8 A7C30200 call qsr.0042F5C4' P6 s5 X) e% d" r
0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]' F! s, b% j. S, R
00403221 885C24 3C mov byte ptr ss:[esp+3C],bl" m6 X0 ~' |# m# |! B% y5 @& O
00403225 E8 61C20200 call qsr.0042F48B' e9 } h- ~8 {) a
0040322A 6A 04 push 4' A" K& S8 E. L. z7 r8 H( d" x
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]) B* A+ M' b# F7 a0 B7 Y7 _8 |
00403230 6A 05 push 5! ~& o5 v. o+ j( }) F$ S
00403232 51 push ecx( _) N- `( V6 z7 |4 W. s
00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
) _9 w% N) q8 ?6 \00403237 E8 A8530200 call qsr.004285E4
/ F9 k. s; p& J* P, A0040323C 50 push eax! j( p: F$ x# y. V3 G! k% T3 t
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
) j. J4 W- c& X5 \1 e) A) C00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D
+ {9 H! |# t# e5 p6 ]! D00403246 E8 79C30200 call qsr.0042F5C48 k+ E: u, L% h. ]* f$ ^
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
) A; Z3 L# M1 L Y* \* V0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl' y+ U% J/ \4 b6 l' T
00403253 E8 33C20200 call qsr.0042F48B
7 K% r6 W3 E2 ~; _, @: J00403258 6A 04 push 46 [* `- M& a2 V+ D& r
0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]
" G5 N h; a' A0040325E 57 push edi. l+ V: d8 t3 C8 M o+ [4 k( l
0040325F 52 push edx
/ W, k Z6 [6 w- u00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]6 _9 f) R h) J0 q0 d5 r' ?
00403264 E8 7B530200 call qsr.004285E4
( C, o: Z- y0 J+ f$ E4 j00403269 50 push eax
5 ~( f5 C" p- j A0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]) ?$ e7 g1 z7 W, N6 V' w" a
0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E( g: h: y% H2 v/ P
00403273 E8 4CC30200 call qsr.0042F5C4# u+ S# M3 f: Y4 o! O, S
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]. Q3 Y) X V3 W- H+ h
0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl
5 e4 S, F0 _" Q: M) u7 ]4 W00403280 E8 06C20200 call qsr.0042F48B! Q& |7 X9 u2 g
00403285 6A 04 push 49 w. M& |* s) l# z9 l# I% ~
00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
4 R6 S0 Y" [/ S' I( U9 _6 M/ E1 _8 X0 P0040328B 6A 0F push 0F
8 U8 g1 r1 v4 E* h0040328D 50 push eax2 z" n* V8 ^, f: P9 `8 g
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
% [0 h5 d1 o/ H5 S00403292 E8 4D530200 call qsr.004285E4
3 t) S7 A# x( k9 x/ f2 @1 C1 O+ S00403297 50 push eax! k& Y- r0 @- G8 U$ U6 a$ X' A
00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
7 T6 t- V C: l! ^ E Q% U+ l0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F8 g1 B' t- G& d$ {. w) W
004032A1 E8 1EC30200 call qsr.0042F5C4
G6 p1 X U& a004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
: b; j% c* t" Z004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl0 F5 B7 o/ {# R0 l, @
004032AE E8 D8C10200 call qsr.0042F48B
9 |1 y5 W! K. f. X/ w/ _004032B3 6A 04 push 4/ s2 N* F; W* J: J
004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]( S3 T' a/ \4 Q8 i! `
004032B9 6A 14 push 14* o. Y* J2 g5 O& C9 A# H
004032BB 51 push ecx
3 |' k% q9 H# a; B) `004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
4 Z9 r, K4 A' o004032C0 E8 1F530200 call qsr.004285E4
% e: b2 Z/ S3 R: k$ v004032C5 50 push eax
0 [3 k& M7 S* ^2 }! n+ }004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]* j, S: U" t0 x' }, h
004032CA C64424 40 10 mov byte ptr ss:[esp+40],10! z2 @, m7 l- F8 o; n6 K, Z
004032CF E8 F0C20200 call qsr.0042F5C4
- o1 d2 J3 I: R3 T" u* d/ F" T7 k004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
* y2 `4 Y1 O/ `004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl
/ ?1 X- y* u1 x- c: U, O" p2 b004032DC E8 AAC10200 call qsr.0042F48B
. Y6 X8 i3 i; Z# F/ P004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI) w! P6 u# x8 R
004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX3 }& C$ q! H" u& |8 m- r) H
004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
5 ?% g& X; u0 [& U) { B# `004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL ? y0 v, X0 D3 t
004032ED 8ACA mov cl,dl ; DL送CL
" x3 K6 N( Q+ V: I" _7 F( N004032EF 3AD3 cmp dl,bl ; DL和BL比较5 S& w4 }4 G% i
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
7 y4 p' A9 a# q2 Z% \4 [004032F3 84C9 test cl,cl
: V8 |5 u* Q, Z( D3 W004032F5 74 16 je short qsr.0040330D" [/ ]/ Z3 j& U$ Y) h0 t
004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL. N5 n$ o' j3 }5 i, k" G# b* V a
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL. a, h8 E2 _8 ]
004032FD 8ACA mov cl,dl
! R% a$ L" ~( _& b9 N& K5 x004032FF 3AD3 cmp dl,bl ; DL和BL比较
+ l+ _. q8 K) E# n9 P! S7 P2 d00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)# {. Q6 L, i6 i$ {
00403303 83C0 02 add eax,2 ; EAX加2
2 S* m* D$ O- m* P0 q00403306 83C6 02 add esi,2 ; ESI加2
7 k2 M; v4 }& l) B; E, {00403309 84C9 test cl,cl& L+ v0 P# I. S7 J
0040330B ^ 75 DC jnz short qsr.004032E9
7 e" [, p3 `$ B2 E0040330D 33C0 xor eax,eax
8 N, V+ v" Z9 U) W2 n `) h0040330F EB 05 jmp short qsr.00403316
# U$ _: B x" g* }00403311 1BC0 sbb eax,eax; @' O1 h9 O" ?- H* H0 g4 C
00403313 83D8 FF sbb eax,-1
1 V. J4 h% V) j$ U: o5 z00403316 85C0 test eax,eax: V% N! {7 U- |; K
00403318 74 0E je short qsr.00403328
. _: g* b0 b0 }0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A# ?3 j1 ~. Y6 @% P
0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
- k0 |$ p: K+ T6 s4 i$ g" a5 w00403323 E9 F0000000 jmp qsr.00403418
- e$ t* B% x S" S2 g00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX) i$ E; ~/ E: t! X( U% }5 b2 p- M. b* a
0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]. x- {0 ]9 r7 p( ?2 Q4 o! h+ T
00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]; y+ O3 B& z+ e6 O5 l0 G
00403333 50 push eax
' |4 E) W" ~1 C3 x0 H+ z+ W00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX0 o9 p+ W9 U$ A6 g0 I8 F
00403339 50 push eax
. }: x, l) j- t3 g8 x! z* Z% B: `% C0 F0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX
_. _% w8 n& K0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX9 E& f- J6 H6 m8 Y. T
00403343 83C4 04 add esp,4
8 O* V$ H) P5 n! _8 p" K0 x2 E00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI
! p8 @/ |: Q$ p6 j00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]% C* E, z! H7 A5 S% J3 u& c x5 J
0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
% E4 ~+ l) A1 x+ Z( j3 t0040334F 50 push eax W) y7 @( Q X* D# T
00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX# q* _4 g! S* c) \
00403355 50 push eax' G1 e; }6 S s, I
00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX+ Q9 t; W1 r7 { e- i% t
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX# M2 ~7 T4 e/ g2 s' S$ y
0040335F 83C4 04 add esp,4: x* o' x7 M% \6 H9 E: Z
00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI9 _1 L4 J6 h. {1 J$ d
00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
1 R+ U" b; U6 V00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]
, M0 f/ M/ e5 | I; m, l1 N0040336B 50 push eax
$ q* ?" `7 r* h- {' d+ T0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX. O0 M) K/ W) w' \/ l
00403371 50 push eax; D8 d* r; B5 k% g
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX
7 p+ b: V# D1 ?9 h7 @2 O, D00403377 8BD8 mov ebx,eax ; EAX送EBX
8 ?9 j7 p+ }- L; b# \4 j00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX$ [% w. K. E* V8 \
0040337D 83C4 04 add esp,4
/ Z' o4 e7 m4 Y, Z7 u r00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]/ \/ \& L( b8 ~1 k1 U7 i" Y
00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]
: _% a4 G2 r( Y3 d" H) g00403387 50 push eax
2 ?7 z7 I, @& n; d" T9 c- v% ?00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX! w6 Q2 y7 B u# r
0040338D 50 push eax/ w% n+ W# h; z2 I2 k) ^
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
* Z" u6 v* w! v8 N& n00403393 83C4 04 add esp,4
7 M7 b6 K$ L* u" n6 S& _00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
( W2 ]# @( X: | [- w0 k0040339A 8BE8 mov ebp,eax ; EAX送EBP
" p3 Z8 D8 r) Z" z3 ^' B0040339C 6A FF push -18 {( w, O7 W! [7 |
0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX
6 \2 k+ {4 s% o. I004033A3 6A FF push -10 n% T+ i+ F0 ?7 Q4 n
004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
$ n) f* {0 Z2 f- {( Y: [. b. x004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX, W, _' i$ }+ w+ X9 U: U8 |4 }. ~/ d f
004033AE 6A FF push -1
2 h% y6 |8 Z+ N004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX" G; `; E1 P# o
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX4 ^$ e0 c: @( A$ W
004033B9 6A FF push -1
. r: r- k8 h1 p" }7 z004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX
* p ~! }0 P+ s004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX" [" \/ n6 L8 d2 Y. D4 B
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
( r2 e3 w4 m+ R3 ^004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
0 F j- t. v+ {3 i4 r; d- u004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX1 x) M3 [, m% D; G
004033D7 D1E0 shl eax,1 ; EAX左移1位
* [8 D' e" l# I3 H8 x004033D9 99 cdq ; EAX扩展7 D2 K+ A) d l5 L- O$ n
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中) o+ [; x8 T6 D* G; n( i
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较* e0 f5 K: k; f/ l6 O
004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)
! e: F2 E2 G, V. Q) L' X' l8 v004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A
9 d1 D9 R% ^; k, W- d8 [004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
, c5 Z& k7 s" _ D" M5 r$ D& j" @4 e004033E9 EB 2D jmp short qsr.00403418+ o; c1 N$ q3 @" \) S
004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX
0 L1 K! ^1 a. @8 m' K004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2
8 |) k0 [. Z: V. }004033F7 99 cdq ; EBX扩展4 t) |: l2 c K2 X! E% ? Y0 m
004033F8 33C2 xor eax,edx ; EAX和EDX取异或
# h- q( z$ P5 F& O7 B0 t! o( G; u, s004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX9 N$ N$ v* d! a2 `
004033FF 2BC2 sub eax,edx ; EAX减去EDX
0 w4 ^5 d# `$ M( ~, g1 |: W00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]1 J& j' T: ?- z, m. D: p' p' j, H
00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX3 ^, j5 k& t: T
00403409 99 cdq
3 ]0 E% h8 g, b* s3 C: ^* c! j0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中; m" ~- J9 N* W$ G4 U1 z* }$ k5 w
0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX
2 Q6 W0 ~1 q4 Q0 U Z4 d# w- i00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较" s$ K W8 e- U7 J) ]3 X
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)
" h5 w% Y1 u$ h* r$ B6 A: E9 ?& S00403418 E8 6EC00200 call qsr.0042F48B ; 4 n' V% V& [) L4 V
0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
* g: n {! M" V1 x( g5 w( @00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9
) Q: d! L0 S, {/ u$ K0 X00403426 E8 60C00200 call qsr.0042F48B6 ` I1 ?0 I. y0 g; W
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]+ _% r* ?: j) i7 u- C( u, Z
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8
0 Q( z' W, x6 g$ g& K00403434 E8 52C00200 call qsr.0042F48B
+ B7 m7 X) R6 U: y( d9 C00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]* a3 M2 Q& a; L7 S. u% @
0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7
$ Y9 o6 Q8 W; V00403442 E8 44C00200 call qsr.0042F48B2 d" v" i5 l' Y, Z2 }
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]. X% }& v o2 {! D G% r4 t
0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6# }: R% f' w, K: R' X: m, o* s
00403450 E8 36C00200 call qsr.0042F48B; i0 |# n& |& R I
00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]1 F c0 k$ ~( e$ B/ t/ P
00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3" G: m) `5 n. y( J {! k9 A$ l
0040345E E8 28C00200 call qsr.0042F48B
( Y/ d3 ~0 A% U( Q! @. ?- H00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]8 K1 l. p5 t* ]6 f
00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2! Q# t! }1 V; p. Z- {4 X% @+ Y
0040346C E8 1AC00200 call qsr.0042F48B
# s0 Y6 `- b# m* \: \ ^00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
) t7 `: l* b( {0 D" Y$ w! v00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1; ]) A) @. }8 G o) \
0040347A E8 0CC00200 call qsr.0042F48B
R2 r" O$ @" X+ D5 {) A* z* @0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
5 V7 \* L2 p. u8 A$ m00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
+ r2 [+ I+ E+ c$ L- A% Y; P00403488 E8 FEBF0200 call qsr.0042F48B F+ C V8 m1 m; W! n- d
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
/ s- H m) S2 ?4 P+ Q00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-14 Q; I4 Q* @( e5 h- z/ c4 z: b3 P
00403499 E8 EDBF0200 call qsr.0042F48B
, c) ^; i" r2 n0040349E 32C0 xor al,al ; AL清0; y+ w, t) u4 J4 u# Z
004034A0 E9 88000000 jmp qsr.0040352D7 R% _& o/ E. B8 P" I* d
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~, m5 O4 c0 Y: v8 z; F
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
! ^$ |. {8 h5 L& \1 t+ |. E2 L004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9
, ?, H8 ?' e2 n004034B3 E8 D3BF0200 call qsr.0042F48B2 T- W# w, i$ l1 ?
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]! J& P2 b( N1 f/ R0 Y. F* ^; w
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
/ Z7 _) D# g: c% v3 ]& l" h004034C1 E8 C5BF0200 call qsr.0042F48B
4 O o1 _. x, @2 S$ v% @! I004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
# D# z( w/ f7 [1 ?004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
! O2 X! U/ Q4 [) @004034CF E8 B7BF0200 call qsr.0042F48B
. X3 K6 B9 T, K5 u$ N3 U1 C) \004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
% p6 R. O1 ~* j5 S$ S004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6
' d3 v7 `# X) \8 \# ~/ L( Q004034DD E8 A9BF0200 call qsr.0042F48B7 _* H7 N- E* V# V7 b: x
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]" D- W/ i! j) H+ s. m
004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
( U+ y. p" W* L% n- ?/ r004034EB E8 9BBF0200 call qsr.0042F48B: e" H# ^# V8 m
004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
8 y3 t; A7 N2 | r7 f4 z004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],29 E/ }, P2 K4 [! @
004034F9 E8 8DBF0200 call qsr.0042F48B0 g3 T! ~3 m2 [5 \6 G; T
004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
$ i4 V/ @$ T- K5 G! f% A00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1
5 c; ^) }. @ W00403507 E8 7FBF0200 call qsr.0042F48B
f/ C; H" I9 m* O& z: s0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
! U$ Z6 Z( X3 {9 V0 S3 [00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0
- l! V# x) `5 ~00403515 E8 71BF0200 call qsr.0042F48B/ u" ?" ?4 F+ l F8 x; E
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
! y; ?9 Y! R0 W' |1 Y0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1" s6 O) |1 S; N0 n
00403526 E8 60BF0200 call qsr.0042F48B. M" g. B' d1 S( I- d8 T- D
0040352B B0 01 mov al,17 M4 q. [/ i' T: H7 q
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
g5 n' g0 ~( |2 O% w0 s00403531 5F pop edi
, e4 p+ C) X2 ^! C) v& `( \0 Y00403532 5E pop esi
/ A) c4 `3 y4 y) h9 t" ?0 Y00403533 5D pop ebp2 r/ q8 [3 j: I
00403534 5B pop ebx
5 a8 k: P0 p( y* D/ J7 [4 \00403535 64:890D 0000000>mov dword ptr fs:[0],ecx
. g! e' d" `' O2 i" _0040353C 83C4 30 add esp,30
k$ J6 O S4 J# ?0040353F C2 0800 retn 8/ ^- R, |- k4 M9 \/ u! j: Z
--------------------------------------------------------------------------------
, N4 @% R0 t) m1 a9 r【破解总结】
+ c) a- a C9 H9 @ 用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
( D* l4 x* h b1 c3 A- a$ Z: U用户名:yijun6 Z% l1 H" n* Y
注册码:4893*7777*3726*7777*0529
0 b; v; e% p$ y' B z4 Y" j& p--------------------------------------------------------------------------------
. G: {- I6 Y {7 @' l, Q: l【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡