|
|
【原创】破解Quick Screen Recorder- r( k! y1 W, M' r
【破解作者】 yijun" \$ S( f& Q. D4 r) c( ~, c
【作者邮箱】 [email protected]
6 q. O& @6 [2 B" D2 V7 m1 j【使用工具】 OD,PEID0 B9 N( s2 `3 B$ x, e
【破解平台】 WinXP8 q/ f! \7 {% ~/ H2 A" [
【软件名称】 Quick Screen Recorder
) F: w0 ?2 d. y( d& o* [2 C( z【下载地址】 天空
1 R' K/ l1 t/ M9 V0 g【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
4 e% ^+ D9 G/ C) u/ Y+ g" V【软件大小】 540K* H( c& z1 w: r' e
【加壳方式】 无6 b; S& |; A0 l9 h4 h. B
【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)' o7 q: [2 j) K, U- O+ K" \
--------------------------------------------------------------------------------
* c$ ?* H" i1 v& ]! f【破解内容】
: O/ _9 V7 `! f PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:4 t7 r7 Z6 Y7 K( C% [
00404C69 55 push ebp //在此下断
$ S$ H4 h$ d' Z9 Q+ Q% s' c00404C6A 56 push esi
% C. o; o/ I* P00404C6B 57 push edi
- z( m- g3 Q( S8 _: v) p00404C6C 8BE9 mov ebp,ecx
5 K8 O# l1 X0 |* H! e/ }' t00404C6E 6A 01 push 1
9 `- h+ K# P+ `6 _: j) b00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名+ c& S$ N* U g4 X& ?9 B
00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]0 w7 G1 W% T4 l. B# {
00404C78 8BCF mov ecx,edi
; ~$ H. _! C( j/ r; f+ i2 G00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码
/ ~: X) d* ]0 l4 \* u E00404C7F 8BCF mov ecx,edi
7 |1 w1 h0 ?4 b% h& v" ^- ~2 M00404C81 E8 A73E0200 call qsr.00428B2D# U) k" R) M% L6 l8 k" _# J! S; n9 I
00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
' _6 C! z0 O- M% D9 t00404C89 8BCE mov ecx,esi& {; n' |; Z+ E& g* F' W, Y
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX
0 i; c( e! N4 C& ?+ }3 a00404C90 8BCE mov ecx,esi r/ A' q5 `1 _( J" s! ]$ b! s9 i1 B2 Q1 G
00404C92 E8 963E0200 call qsr.00428B2D
1 d& Y, l; `$ L. Y+ x# y00404C97 8B06 mov eax,dword ptr ds:[esi]
( i2 M4 N* E) V' E00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
* z5 N6 h( f0 L4 O8 S" H& T! q% x. {00404C9D 7D 26 jge short qsr.00404CC5% i# ?7 R0 M @% i
00404C9F 6A 40 push 40' t8 C e V8 B: R. q+ u
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"" f% h0 `2 F+ [5 m6 F! L7 |
00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."" V N- I) |3 o' ~
00404CAB 8BCD mov ecx,ebp
) f! u" K( x& v3 ]; o9 u" T8 d00404CAD E8 C3840200 call qsr.0042D175
: \, Y" x! y+ k N$ k4 e* J# ~5 @00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
: L8 V5 e# x$ i) \: ^' n00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx
" i" E s) x9 a5 _8 e8 A, U7 Y5 c00404CBD 5F pop edi& ^' h! }* ?! l. M+ x8 {
00404CBE 5E pop esi
& N. q) w& X$ D00404CBF 5D pop ebp" I' R/ z# I$ K6 ~0 s5 b- S4 ~; e
00404CC0 5B pop ebx* F; m8 h) B0 k4 ?2 l3 e
00404CC1 83C4 18 add esp,18
# {6 H9 ~3 l1 K' {! M00404CC4 C3 retn4 s# @" H8 B R2 v1 D( z
00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]: C! F6 J+ m, v: z3 D
00404CC8 84C0 test al,al
4 z3 Q2 _! }! c/ d6 P# K; M$ L00404CCA 0F85 1C010000 jnz qsr.00404DEC" y! w) n4 S0 d! n
00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]: y2 Z' K5 y9 c
00404CD4 E8 87E3FFFF call qsr.00403060
, t1 {# K5 I9 l% P9 W00404CD9 51 push ecx8 L6 ^+ w: ?5 A5 B1 r) T, \
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
7 z6 @% M1 P$ N# S0 z6 @' z5 i7 M00404CE2 8BCC mov ecx,esp# o: K8 ^/ S7 r+ a. |) K
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
% R- C* a# K# V( p9 ^$ c00404CE8 56 push esi
7 J# V1 m" k- h: h00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
0 y% O2 `: f; `0 h' c00404CEE 51 push ecx$ f7 b- y- d" `3 @
00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],17 {: u) j2 r5 i* V
00404CF4 8BCC mov ecx,esp
/ \; H) r0 ] B$ R2 Y: ?- l2 \00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
' K$ b' F0 a: r1 ^1 v00404CFA 57 push edi
7 ~0 B+ U0 D% T7 ]$ M& l$ Q5 D3 y; a2 J00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0
8 }* U# J& g9 u00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]( I5 j7 \' [( y* ]; ~) {
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0
/ A9 C( H) O1 ` x; g00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~
, {6 p K+ n2 j( K# s% ?3 z00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~: e, X u' _" A5 r! h7 m; q
00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~1 e6 y1 x& b+ v! q$ k5 ^0 D
00404D12 6A 40 push 40
2 Y" }. G, g, a; X6 v) ~00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
7 J# h, x) Y+ n00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."
3 W s0 c* t0 i00404D1E 8BCD mov ecx,ebp u w' l! X# m* s/ t
00404D20 E8 50840200 call qsr.0042D175% @$ A( C2 m( ?. E( R1 `* t
00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14] @4 a2 C! a% M1 {' F" r, h
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1
: a+ Q. w4 B" x- p, ~6 X7 ~2 y00404D31 E8 5AE3FFFF call qsr.00403090! O+ g3 v% s, }9 V7 J# |( v; z
00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]0 u* H# C. u/ ?' @8 v8 _7 L
00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx x. v( E: s$ P& I. J0 I
00404D41 5F pop edi
' Z/ k- K% U1 @00404D42 5E pop esi
% s( U) `4 @6 B8 W5 u; p( f00404D43 5D pop ebp* Y, D" y3 O+ X& g( y+ ~+ }
00404D44 5B pop ebx6 _ M! {: i+ B) {, C) o/ Z1 {
00404D45 83C4 18 add esp,18' Z7 A! Q7 b: f. U0 h
00404D48 C3 retn' b5 U# V* ^7 H" X
*********************************************************************************************************************************************************
' |" {& i( T/ H7 [* Y* w- `跟进00404D09处CALL来到:
5 Q# r" V9 Q! O004030A0 6A FF push -1 //一路F8下去~~~~* l( N* d/ r5 M
004030A2 68 C88F4400 push qsr.00448FC8
7 y* [, p) y2 Y' z: K+ V: D004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
( o3 w1 y2 \* q004030AD 50 push eax# C! I0 z& ?4 B$ n y& {
004030AE 64:8925 0000000>mov dword ptr fs:[0],esp. {0 H4 u9 L8 Y, E0 K
004030B5 83EC 24 sub esp,24. [8 h" F7 S; i* P: y: Q k! K
004030B8 53 push ebx
{1 N, L! r& v. D3 N: L( F004030B9 55 push ebp
2 h! v3 `8 z V( }+ W7 o+ y- D004030BA 56 push esi
- K9 f5 P/ `9 |7 v' }4 n004030BB 57 push edi
/ Z) R( |6 I6 T O$ h004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"" z6 b7 v( R- i2 F; G8 L* q
004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
3 q2 C Z; ^* j004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1
4 {4 I- X2 c+ i8 b d# w$ e004030CD E8 27C40200 call qsr.0042F4F9
2 D, W3 f% U* y8 z! H004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
. Q4 w6 r5 i' Z* g1 t8 t1 Z% R, {004030D7 894424 2C mov dword ptr ss:[esp+2C],eax
1 ]6 F, h3 P( G% x8 T1 r; e004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]( s C! ]8 O8 w6 O) A. S
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3! A- C$ A& ?& v% B8 N) C
004030E4 E8 905A0200 call qsr.00428B79. i: o9 K' o: Q5 p) d, m* R. G8 x
004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
6 q) A5 X) w" I' x+ j) s004030ED E8 3B5A0200 call qsr.00428B2D
6 x9 I, C a) Q% v a2 w004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]: Y1 H S: @. I6 Y. T$ ^" O
004030F6 E8 7E5A0200 call qsr.00428B795 p( i* X# Q+ n/ H4 V' E
004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]3 l+ C( J9 _- j! f3 Y/ u6 r
004030FF E8 295A0200 call qsr.00428B2D! ], E+ P5 L! r5 E5 v! N
00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]
6 G' Q7 c& o+ ~& G7 t& `00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]: x4 |9 L' G5 J) a$ L3 z7 X
0040310B 83F8 02 cmp eax,2
- d' r) A" Y, L0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳
$ b: _- Q% K. O: Y00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]- D. A2 O6 C2 i4 G! b
00403118 837A F8 18 cmp dword ptr ds:[edx-8],18
7 [" T: a- X2 _/ I: K3 J, h0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳
) V- B8 [+ H- C1 Z% I00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
9 K* o0 B, L M" k7 r0 Y8 u00403126 6A 01 push 1
6 h4 \0 Q0 ]. A3 R2 d& |00403128 50 push eax
- ~& a$ e6 }2 w/ ^00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]) n* r; ?% a2 J9 g
0040312D E8 C4550200 call qsr.004286F6
7 Q. x6 P9 r6 e/ P00403132 8B00 mov eax,dword ptr ds:[eax]! q9 O+ ?) W0 k: h7 d" v8 S+ M
00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20] {% D: I6 v7 ]
00403138 50 push eax
9 H: J+ ?$ g& j2 T% j# l+ p00403139 C64424 40 04 mov byte ptr ss:[esp+40],4
: R) \ A+ E. z+ c) J& ]' I0040313E E8 4D560200 call qsr.00428790
) z% l* `! N7 l4 e- X F$ ^00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
4 b$ }! L* @3 e0 j) c00403147 8BF0 mov esi,eax; g: n, ~0 o- M! q* o0 r
00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3
' {1 y% D# ]4 Q0040314E E8 38C30200 call qsr.0042F48B
' R3 G1 K9 t$ }00403153 8D46 0A lea eax,dword ptr ds:[esi+A]
6 C1 t& t5 O. U# Z+ u" V' d9 I00403156 B9 3E000000 mov ecx,3E& r. ]6 c1 ]2 N7 o
0040315B 99 cdq- l% E# `1 X. @8 y9 b% X
0040315C F7F9 idiv ecx# m" S/ J) f3 \) T' c. u5 }. ^
0040315E 6A 01 push 1* k. i' @- ~; t7 y( O' {1 m4 x
00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]
5 p: N; ^: V# B* e5 Y2 S) a00403164 8BF2 mov esi,edx
7 b3 M; A( X6 E3 @ u00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
+ ^) C/ i! j; k- W4 @1 R0040316A 52 push edx) Y+ o0 M$ s. @) E1 e0 L
0040316B E8 0A550200 call qsr.0042867A
/ a* a3 D. t' ~! D00403170 8B00 mov eax,dword ptr ds:[eax]
& A9 t2 k g! g0 y, P3 R00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]) h) g4 J/ g$ i! B7 Y' H9 H
00403176 50 push eax2 E! g& }/ {* j% J
00403177 C64424 40 05 mov byte ptr ss:[esp+40],5; }7 [% V% i, e! V
0040317C E8 0F560200 call qsr.00428790
; W5 J6 `( K d, _# H) {9 R00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
4 T* l l8 h% v00403185 8BF8 mov edi,eax
) J) w% o, C6 I8 Y) {00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],38 t2 t8 N9 V" A. k( U/ R
0040318C E8 FAC20200 call qsr.0042F48B9 S& U0 ~# d8 T" v. A* D) T
00403191 8D47 0A lea eax,dword ptr ds:[edi+A]0 I& R5 _' X0 P/ ?6 J1 M
00403194 B9 3E000000 mov ecx,3E/ s& v" a3 ?% y3 A/ a0 v. s
00403199 99 cdq
2 @- ], ~6 Q+ _3 e! @* {* z# s, \0040319A F7F9 idiv ecx* D( @, d" _* [6 x6 I
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]
: b4 x0 Y9 `+ g; k/ C004031A1 894424 28 mov dword ptr ss:[esp+28],eax
# c' a9 G' y. H004031A5 8BCA mov ecx,edx# J1 a; x6 r% z; Z5 M7 G
004031A7 894424 24 mov dword ptr ss:[esp+24],eax
' l6 h/ ~& I1 n5 F$ Q004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
' v: F% p; \, f" n004031AF 894424 18 mov dword ptr ss:[esp+18],eax
+ H8 [* q/ S$ R( |8 f, |+ \004031B3 894424 14 mov dword ptr ss:[esp+14],eax
$ O0 R: D# p2 Z, t) L/ {' q' O s004031B7 894424 10 mov dword ptr ss:[esp+10],eax
" v1 b" j5 A/ n+ H _8 ^5 G004031BB 8BC1 mov eax,ecx
2 j4 _- e! F2 ~/ |2 t004031BD BF 0A000000 mov edi,0A
' V/ I) L6 C% J" B3 r6 V004031C2 99 cdq. U! Z, g" y9 r3 C6 Y3 F D9 x
004031C3 F7FF idiv edi
$ b$ C* t( T( a2 V x! M004031C5 8BC1 mov eax,ecx
' |: R+ B4 a- w6 f- _. F! s- s2 v004031C7 B3 0B mov bl,0B
. t- o, z- Z: P; H/ A004031C9 0FAFC1 imul eax,ecx
/ J O8 l* V7 A7 b# z004031CC 8BCF mov ecx,edi
6 r" g4 q' c1 e0 v- E8 s! o N2 ]004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl
' z9 g4 Q# A8 k, n) `3 y004031D2 52 push edx
5 d2 U% o' H& q: k. g# m& F, q# ?7 ?004031D3 99 cdq
( ~6 S0 O9 r% q% p# f3 _2 S# b004031D4 F7F9 idiv ecx7 \' n% D, b# S' N }; U9 O
004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]
7 u4 [" C+ L: @4 k6 g! ?: q M" `2 C! }004031DD 2BC6 sub eax,esi
- B+ }' B3 M- c' h% k4 g004031DF 52 push edx
2 N' x8 j; ^6 i$ L004031E0 99 cdq3 N! r; F7 y( C2 X! D
004031E1 F7F9 idiv ecx
* Z2 X0 B3 O! d004031E3 8BC6 mov eax,esi
& D+ |& W4 t+ V3 X5 S) L- Q3 E004031E5 52 push edx! m2 Q. j" W6 |
004031E6 99 cdq
3 j/ z0 w# }0 p6 o004031E7 F7F9 idiv ecx9 c2 |2 ]/ [# L" V; M
004031E9 52 push edx
' F! G4 Q. E9 G2 l+ F0 v004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
6 [: ]9 i! q! K: v9 b; G5 X; ~- B004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"* x: |7 H+ ?. ~: F" f8 G! e
004031F3 52 push edx! e, E! p! P3 Y( s# l
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是4893
$ d+ l; i! q6 P% S; G9 @2 h C" U004031F9 83C4 18 add esp,18
. b5 D3 Q$ ]% q k004031FC 6A 04 push 4& P$ B' k) K7 s f: k! _, I9 H, j
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]
8 J# J3 |% i1 T2 X; {$ ~00403202 6A 00 push 04 u2 Z# C2 {, x! o3 S5 V
00403204 50 push eax
; V# ~5 e5 b/ w0 ~00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50] s* A: i- O- q: a# H4 m
00403209 E8 D6530200 call qsr.004285E42 @- {! e- d: Y, A- L2 Y+ A
0040320E 50 push eax- H( ^; Q! b8 z, i: U7 P% v, P
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
% m0 h0 H1 ~$ a" D8 u( i00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C
6 Z: l, Y3 \% Z) g; Q00403218 E8 A7C30200 call qsr.0042F5C4
s5 ] D" ^) G! A; X$ c0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
% \+ P* U' a6 W2 m00403221 885C24 3C mov byte ptr ss:[esp+3C],bl. h1 K6 n# }0 S
00403225 E8 61C20200 call qsr.0042F48B
; z1 w5 K9 ]5 E3 W& o0040322A 6A 04 push 4
9 V# K9 x( [; r8 y/ R4 ~$ ]0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34] v3 G/ U. s% \# U8 O7 l2 L9 h
00403230 6A 05 push 5% Q& `( \; P+ n5 y% l2 u
00403232 51 push ecx
( T3 Q6 R2 O5 K" \00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
. G+ s& G& ?5 b6 I9 {00403237 E8 A8530200 call qsr.004285E4
" v6 k; w3 }' X0040323C 50 push eax
1 i- j3 I! n. x, _2 a5 e0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]3 X# i* U, t' Q& a$ V
00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D" e' z( ?# |& o- w0 c- P8 V
00403246 E8 79C30200 call qsr.0042F5C43 S. W+ K2 l5 q8 s# E
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
2 k0 Z& M; ?9 b% V2 _0 Q3 }2 ~! k$ T0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl7 p+ n- L$ j( ?7 ]' S1 j. t
00403253 E8 33C20200 call qsr.0042F48B
( M5 F5 K1 G3 M, I" z; z00403258 6A 04 push 4
& u: @, _6 F1 z5 L0 W) P8 N0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]
: i+ [. S+ X2 S0040325E 57 push edi
1 k* y; i) V0 t- R( Y5 K0040325F 52 push edx0 V8 K- X% X5 j* i: R& o, N
00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]6 s- a3 f g' Q8 y+ {/ s9 I
00403264 E8 7B530200 call qsr.004285E48 r3 q' J4 z7 ~% n/ D5 }" c9 c
00403269 50 push eax9 X& g) j: R% p" L
0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]# z( e7 l. Z( s' j. j$ Z: ?
0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E
' H* {. s$ w+ D3 |00403273 E8 4CC30200 call qsr.0042F5C4
4 f# r2 J+ c8 T# j00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
0 t* p2 t' _/ g7 q/ e% t' l0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl6 \# C3 U0 V" _1 W- W
00403280 E8 06C20200 call qsr.0042F48B
! D, Z" l+ Y3 V9 X8 W00403285 6A 04 push 4
0 e4 r; k/ f- z! I6 l00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
8 |! B; k3 K' R7 H2 c+ t' n4 x# y0040328B 6A 0F push 0F, T7 `# D; [/ T% s" z
0040328D 50 push eax6 P% k* {4 u8 p
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]/ B* J2 Q- i' Z
00403292 E8 4D530200 call qsr.004285E4
8 R X3 f5 t# e00403297 50 push eax# c' {5 [9 U' ]: G
00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
" H7 `3 w2 f/ E( [4 P0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F! O. F% W+ c. @4 y# R
004032A1 E8 1EC30200 call qsr.0042F5C4' \4 d4 M! `5 f: C, t. h
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]8 a8 w$ Q* M+ M y! X7 @) a
004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl+ ~. ]- q% g, M9 [( W2 Q% }& a' Z
004032AE E8 D8C10200 call qsr.0042F48B
: {) b6 ~( o* X. D6 Q, T1 A004032B3 6A 04 push 43 s7 O! f/ P3 ]( x
004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
& G" u$ }; F0 v! w) u& d$ G7 P5 m$ @3 B004032B9 6A 14 push 14; K8 ~3 r, {4 n7 i- J) I' V. [. O
004032BB 51 push ecx
$ Z2 K: `6 J4 q& r7 a& k004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]3 ]. m& F* x: ~ V% L" ]# F
004032C0 E8 1F530200 call qsr.004285E4, @* M% |" ?$ Y3 N4 c( e
004032C5 50 push eax* C6 y, j+ P+ \3 {2 n2 K
004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
0 T' g" r8 v* j+ |004032CA C64424 40 10 mov byte ptr ss:[esp+40],10
5 [9 D- u' E; t' w1 p5 u1 R" ?9 d004032CF E8 F0C20200 call qsr.0042F5C4
+ m0 @1 E0 `4 p& l& `# G004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
6 O5 p; v8 N8 L004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl2 O1 p) t s0 ?5 ~! z
004032DC E8 AAC10200 call qsr.0042F48B
' H! t& h# H, `8 P( @1 i6 Y$ [2 B004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI* o1 a6 \8 l, b" p2 l
004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
9 Y5 ^* E y4 T6 F3 V0 [ n004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL4 f# }& ]8 y: k& M" j9 D$ m& o( ?
004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL
0 L" ^2 ?/ N* r8 J0 |004032ED 8ACA mov cl,dl ; DL送CL$ F% @. u) I$ a$ O/ j
004032EF 3AD3 cmp dl,bl ; DL和BL比较7 ~8 ?' A9 o! r' a- p# B, B
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
2 W- D* Y- t W- ^. k8 A l* [) E& L004032F3 84C9 test cl,cl5 Z% l4 m' a+ ^; s% t; p
004032F5 74 16 je short qsr.0040330D
& j" |& [0 v' y004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL" l( f9 n9 r$ @/ U5 ]" e3 u. d" t% o% _
004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL! g% R# i" R8 i* \
004032FD 8ACA mov cl,dl- B+ _. l( y0 I4 i9 G9 S- ?" l2 v
004032FF 3AD3 cmp dl,bl ; DL和BL比较: W7 Q% m1 K3 V- ]; ]) m+ p; p
00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳) I3 g& p& Z; X6 G# C
00403303 83C0 02 add eax,2 ; EAX加2
' | b$ l% G% p: i6 q5 U+ a00403306 83C6 02 add esi,2 ; ESI加2
9 @& n0 l' t, W4 u% {) _00403309 84C9 test cl,cl
: h; S; I( j, z. R; T; `6 x0040330B ^ 75 DC jnz short qsr.004032E9: j \" H# m; Z# \2 S! U
0040330D 33C0 xor eax,eax0 d- z" b9 U2 N" y _ V
0040330F EB 05 jmp short qsr.00403316 V- A( M8 a& [3 g$ ]
00403311 1BC0 sbb eax,eax- Q- j1 w& U+ R5 ~+ W
00403313 83D8 FF sbb eax,-1
6 g' d& R5 h$ j' f/ ]00403316 85C0 test eax,eax
# V: g0 u' N$ k& T: i00403318 74 0E je short qsr.00403328, T, F- L) H5 U r0 d8 Q; b
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A
I% ^) c5 z' H) P8 c1 b0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]+ P, `3 S$ ~' Z
00403323 E9 F0000000 jmp qsr.004034188 a4 A" L3 A& A9 V$ ]& H- l
00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX4 ^3 w( O. e4 z$ h- X
0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
4 i: |. d" Q' W! t8 k00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]; D0 y; ]% R0 f7 _ F" c7 K2 r/ q
00403333 50 push eax$ ?, X: k/ u% O+ O
00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX
8 X: N4 r' |0 c00403339 50 push eax
- n* N+ v; L) q+ e/ A0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX' P, n9 w t Y0 N4 i7 B
0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX
]. ]. }: O8 |& ^% s* p5 o00403343 83C4 04 add esp,4
- M4 `" U; ]! l! ^8 L00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI2 I0 b8 o4 B8 ^+ R2 | H8 u
00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]
' O, Y# A; O6 u0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]# y: T) ]: [) J- Y
0040334F 50 push eax
6 |# G \# j' @% H/ U, C1 M- w00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX! H% j; E8 G. o) l$ c+ Q* \
00403355 50 push eax
' u9 V) ^; n# \" N0 x00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX- y2 L; F- B4 }! d9 T: [; U9 k& p
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
* w+ D" n [9 N V. k: w* i! f r0040335F 83C4 04 add esp,4, h( l6 p3 `' |
00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI+ |* V% ?; @* S* N# r% @
00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]/ _4 B) `: w0 ]( _
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]/ R/ ?$ U5 g3 \- O( S# T
0040336B 50 push eax
: }' _$ U. `, M, r e o0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX6 `/ w3 }+ R! h2 O8 d0 |) ~3 D' @7 F+ t9 w
00403371 50 push eax7 ~( Q1 \) s, c t9 F
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX- T7 G$ p7 s' H7 g" l
00403377 8BD8 mov ebx,eax ; EAX送EBX/ g* n1 l3 l8 B+ o; L1 K
00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX! H" `; `0 E! M# |: q: s
0040337D 83C4 04 add esp,41 ~; r Z$ T( P
00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
. U' l, x8 M# t3 H* R2 q1 e00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]
$ I' T7 C% a9 j' d4 u5 c00403387 50 push eax
1 D( S6 e+ G5 m4 X& @0 D00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX, i* u2 I% p8 X* P
0040338D 50 push eax* H0 z7 x, c$ Y3 |1 i9 s( F
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
: P$ T6 p+ n5 h0 J) }/ E00403393 83C4 04 add esp,4* F* |2 p3 c+ v4 k! j
00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
# e, O: R. Y* v* }) \0040339A 8BE8 mov ebp,eax ; EAX送EBP9 m1 @! b! e1 c- U- t
0040339C 6A FF push -1
# `( d) q, ?. [$ J7 a# D0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX* L+ p: z+ Q6 H& P! W- H9 `
004033A3 6A FF push -1+ ?- C1 F5 u) D- h9 ^) N
004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
2 Z% P8 O: F9 R. [004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX, l5 Y) W" H/ K& g2 n
004033AE 6A FF push -1
4 l$ N- a# ~7 o3 }; c6 Y' B004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX
w7 o& N$ d# T. ^! O004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX; G! F* g* q: n( C
004033B9 6A FF push -12 z4 Y6 R. O$ \% `# h
004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX2 M, x# ?% g4 w4 z- c
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX) ^1 _7 K6 Q( f6 j
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX) W9 S8 e( b+ M
004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
# L o3 A. H& Y/ C" B004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
% q* q. d, e! l1 \, m004033D7 D1E0 shl eax,1 ; EAX左移1位4 S) B! O! S0 H- z8 J5 r
004033D9 99 cdq ; EAX扩展2 \: ~' j6 M. a% ]
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中3 B' D; c K) s' @
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较8 o: O/ m3 |2 |3 q5 y3 a$ ?7 K
004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)/ j- N. E3 ]5 {: c' m7 C0 u* @
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A
2 s& [: H: a( C( s004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
# s0 G0 h# h! D: m8 n! O004033E9 EB 2D jmp short qsr.00403418: q" p' O* u7 S5 b1 v! d
004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX
$ j4 z9 J& D1 A( g: h4 E" T004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2
# P8 T$ D& a7 U5 m004033F7 99 cdq ; EBX扩展
1 B' a3 m0 B, x$ f9 F004033F8 33C2 xor eax,edx ; EAX和EDX取异或
, g! m. }9 E4 @* s- \4 @004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX5 t v" m3 }6 }0 M
004033FF 2BC2 sub eax,edx ; EAX减去EDX
4 a# e8 z& h1 e00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]* I, q: L6 g8 R) h3 K5 F
00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX; @2 o, Y9 K3 W( I
00403409 99 cdq0 |6 \% I& x& A
0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
' r+ |/ B1 l4 @" t! S1 F0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX
( Z0 L! S. W; r00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较1 z, d. E6 z+ s' _
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)
- ]+ y9 ]: `4 u/ C/ U00403418 E8 6EC00200 call qsr.0042F48B ;
6 P5 O! `; Z# J0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]" x3 u' U0 S2 i' {6 p6 i0 ^
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9/ F- J4 m7 u) u* h
00403426 E8 60C00200 call qsr.0042F48B. n1 ~$ j2 l, _* u5 H! F
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
- h0 w) q' x h0 @& m: Q; @0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8
0 I9 ]# z: z" P9 V00403434 E8 52C00200 call qsr.0042F48B
0 B4 R8 ]7 W4 Z2 \00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]! @9 o- d' i5 v7 f, b2 b
0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],79 x. w7 c: i: o' m8 a
00403442 E8 44C00200 call qsr.0042F48B
' X, R% g- H* D( z. k% Y00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
5 s$ U- N/ m) l) r- N! c- S0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
2 N0 a" _0 T+ s* L' A* z; `: t& i00403450 E8 36C00200 call qsr.0042F48B
; x/ a J* B0 p4 u0 C; h/ V00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
, |( n; n. n2 p4 h( R00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],3! V' ^; W3 |) C' r% Y
0040345E E8 28C00200 call qsr.0042F48B
- A9 q, F, P+ T0 b: _; s/ U' u/ K8 C) n00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
+ G7 S& W6 l. v" K6 c00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
) N% f; q& W) Q; l$ g0040346C E8 1AC00200 call qsr.0042F48B
1 j3 }) ?5 O4 w8 L5 B5 i00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]6 y9 F% l9 N" { J+ U p( }/ v$ c
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],17 C9 Y2 k5 d0 W
0040347A E8 0CC00200 call qsr.0042F48B$ ^! B, }/ c+ \! K
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]1 F5 j1 p* J" |6 T2 |" J0 Z
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],00 C- j- L1 j$ `
00403488 E8 FEBF0200 call qsr.0042F48B7 T/ g: m( z* Q, M- q
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
5 M; k9 w4 C% g% N' C00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
, V) c3 @- Z3 ]& j00403499 E8 EDBF0200 call qsr.0042F48B' P" Z4 J* Z6 `( U, ^. n
0040349E 32C0 xor al,al ; AL清0 {$ e6 k) W7 M. T
004034A0 E9 88000000 jmp qsr.0040352D2 L/ t8 N1 S( [* R
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~, Y! W# m6 J& a8 H* o% C
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
6 W, {: j6 W/ j4 k M; U004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9# A* m; t! Q2 _6 P5 f
004034B3 E8 D3BF0200 call qsr.0042F48B# T, f1 ]! j2 o& z" R5 L9 O
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]% q0 o$ N4 x( I6 I
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8! U+ W& |7 ~9 }7 Z4 |9 N$ I6 E
004034C1 E8 C5BF0200 call qsr.0042F48B. s5 T- N4 ~' R6 v+ J8 p
004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
2 v: p) E7 f( s5 d- {/ V; F8 }4 x @004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7% e3 b( v9 V. u; w0 L1 A9 a0 S
004034CF E8 B7BF0200 call qsr.0042F48B0 G. T, b6 Y0 O2 I. w
004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]9 r, r5 v1 p6 m( m$ N
004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6
- b+ Z2 S* G( `1 P$ k* y' R) p004034DD E8 A9BF0200 call qsr.0042F48B/ f& u+ V9 R( v! [" b2 d4 i- m
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]8 N+ p5 K* I: E) \7 T6 T8 a
004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],38 h- F; d6 X$ v; {8 X
004034EB E8 9BBF0200 call qsr.0042F48B
* I& e) F3 R6 m2 {/ { X' w004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]( ~9 a" Q3 J3 x+ c& i$ G
004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2
+ z* V9 V0 @/ h5 |* U004034F9 E8 8DBF0200 call qsr.0042F48B# ]7 h& q# z) N5 U0 i4 e4 g
004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]; X6 J' H ], n6 D- I3 n6 Z6 H
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1) F" F, z7 P- [9 v
00403507 E8 7FBF0200 call qsr.0042F48B
8 p, w. s% Y+ u$ V8 F0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
. A8 h0 c; q( p1 Q: |5 _3 f! t00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0
& |5 O* K6 A9 i A00403515 E8 71BF0200 call qsr.0042F48B
( e- f8 S- M' W2 Z% @0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
$ z7 M% k5 ]" Y- q8 {& B0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
4 Z( F% l) w7 ` K00403526 E8 60BF0200 call qsr.0042F48B
: F8 o& E1 W) e( ~3 M0040352B B0 01 mov al,1, Y7 L! K; g" \0 \# x9 Z" R
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
2 B5 S" B, Y; l8 V00403531 5F pop edi, a- A6 P5 i8 M
00403532 5E pop esi
: S7 h, z1 t5 d. @6 K# v+ s00403533 5D pop ebp
6 w; v, ] O( e+ S; b3 H' }) m00403534 5B pop ebx
+ o8 L. ^) w* u0 \& {+ K- N7 W00403535 64:890D 0000000>mov dword ptr fs:[0],ecx' z, x: u; c7 S" T% s9 T% w1 a
0040353C 83C4 30 add esp,30" e; p9 ~/ g# K4 f3 q$ r& L
0040353F C2 0800 retn 8
1 X" b8 e7 E% _0 r--------------------------------------------------------------------------------
" Y; K6 L! f" a; S【破解总结】1 _. c% C! E* ^* H! x
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^' T4 r, ~. H4 v5 M/ R
用户名:yijun
) [+ m, Q7 `2 {7 J注册码:4893*7777*3726*7777*0529+ |3 j+ b; N* B3 m4 B
--------------------------------------------------------------------------------
: ~0 |6 z, A: l1 Y. `( A$ |; p$ y【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡