|
|
|
【原创】破解Quick Screen Recorder
) u1 G2 ^; ]0 g: G8 O% K R【破解作者】 yijun
$ r' \3 O9 Y; T H【作者邮箱】 [email protected]; V: G& Z8 I: [3 T6 A
【使用工具】 OD,PEID4 K' `3 l/ u7 i- V3 @+ A
【破解平台】 WinXP
9 H9 {& c$ L5 Y【软件名称】 Quick Screen Recorder
1 c3 d7 P+ O5 U( m, s ~% X【下载地址】 天空
2 P2 A3 P4 F! ` k4 }, \【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on. % h! O! V) a, O# G7 y+ P q
【软件大小】 540K; _% {6 C2 j+ \+ t
【加壳方式】 无
& |7 `; M! w: K【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)5 M. q* x) H0 ]: [" z/ [: b
--------------------------------------------------------------------------------% A( ?: A, o$ r; [6 h' s: s, D8 u N
【破解内容】
g4 }( t1 B, @3 U, t PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:) C+ b+ R: t R7 o% e4 m$ f" H
00404C69 55 push ebp //在此下断
0 ] r, _% P h( z00404C6A 56 push esi* J. D) }4 f# U5 \
00404C6B 57 push edi5 A4 B' w' p1 d! j6 K8 G
00404C6C 8BE9 mov ebp,ecx8 U% W1 Z( M7 T# a* K- A
00404C6E 6A 01 push 1# h4 F& Y. ]. S ~3 R
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名% X0 J/ I' p- N
00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60]
" ~- {" w: `* |! o3 G6 K4 e' b6 e00404C78 8BCF mov ecx,edi
6 c }; \# c8 h; o4 n: o1 C00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码3 X' e" v+ k) W3 n T4 j$ j8 i
00404C7F 8BCF mov ecx,edi
& A0 X' ~9 e2 ^" m I( Z ^3 z00404C81 E8 A73E0200 call qsr.00428B2D
@# {/ ?4 R. w2 ~' |3 U00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
# J6 H+ r9 `+ g2 q0 A) b- E00404C89 8BCE mov ecx,esi
# a5 f; \/ w* g0 u4 { i& g00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX; y" {" }3 m c$ q% a& i( b2 d- _! W
00404C90 8BCE mov ecx,esi
' ~3 F H6 H8 k; O2 P00404C92 E8 963E0200 call qsr.00428B2D9 K0 | P. _/ i# s
00404C97 8B06 mov eax,dword ptr ds:[esi]5 {% d0 K2 u, m! w3 b) b
00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
0 F+ b% O( C" l; ?00404C9D 7D 26 jge short qsr.00404CC50 A) `0 j. G$ \5 ~/ G+ I: z2 P2 Q
00404C9F 6A 40 push 40+ U; h: D7 ^* K. z! Q6 t
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"$ h& ^! M: I9 ~3 b
00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."5 B4 n" d8 n! g9 N5 s, w( s5 P4 H
00404CAB 8BCD mov ecx,ebp
8 j# Z2 d( s- X: N+ L00404CAD E8 C3840200 call qsr.0042D175
0 x9 i* c! O- j6 d00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
: e5 i D: g* J m0 `) W4 q' y00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx. } w. q9 Y. R8 p" @
00404CBD 5F pop edi
# H% h. u1 j5 ^# ?( z0 S$ y+ [00404CBE 5E pop esi4 y1 F- p/ X# l
00404CBF 5D pop ebp4 [/ R0 z/ }) ^* m6 N
00404CC0 5B pop ebx
/ i3 z! {8 g% L& m00404CC1 83C4 18 add esp,18! ]3 C8 K. H1 R
00404CC4 C3 retn3 {& V) Q6 n$ J3 o& R( Z
00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]# g3 t, {2 o4 i+ j8 H( C
00404CC8 84C0 test al,al
1 j+ }4 P4 O( u9 b/ ]4 l00404CCA 0F85 1C010000 jnz qsr.00404DEC
0 H$ h; v3 h$ W1 u% v- I7 ^- Q00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
( O# Q6 {0 C; a/ S00404CD4 E8 87E3FFFF call qsr.004030604 q, G- C! C v& V) p }- B# a
00404CD9 51 push ecx/ d7 j G; p( F8 G3 i- A/ g3 w
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
9 H# y. |8 H4 f6 a! r' {00404CE2 8BCC mov ecx,esp
7 I6 ~. w6 A4 k- E% k00404CE4 896424 14 mov dword ptr ss:[esp+14],esp
5 A8 U+ I* ?9 ~6 u; f& m0 k00404CE8 56 push esi* W% o7 g' M1 n( e3 L A6 q8 g
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
- a" ^0 S- E( U00404CEE 51 push ecx
* Z3 D4 W* J; R6 N9 D9 V00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],1- m6 S! _/ s5 L$ k) B+ X2 z
00404CF4 8BCC mov ecx,esp: U; N, S) J+ Z( o/ q" [: z
00404CF6 896424 20 mov dword ptr ss:[esp+20],esp
6 V5 e P$ n% h4 G/ w, E) y00404CFA 57 push edi/ F- H% `* s. f3 S$ U# `- D
00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是0' \3 N0 C. ?2 Q7 _2 |
00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]: r8 w- U, L8 d6 h( I
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0) r% c6 z3 L+ _
00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~/ N2 o" u- z( W+ }9 z
00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~
/ d& J% S- v" |$ m# q7 M00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~
* J- s5 T7 V& z, G5 Q, \00404D12 6A 40 push 40
+ C) d$ t. Q$ K6 ?9 Z K00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
1 d( a/ V+ h0 T! N4 q2 J, C00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again.", Z$ _5 m$ ^6 c% }4 Y `
00404D1E 8BCD mov ecx,ebp7 `; k# K2 ~3 m$ x! Y
00404D20 E8 50840200 call qsr.0042D175
; e- n- ]1 t1 X8 \( S% \/ U00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]6 e$ D2 M" }# l
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1
8 F: I0 R$ w) O00404D31 E8 5AE3FFFF call qsr.00403090& S' W! l# r) J G1 k2 u5 R8 X
00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
3 ~' ~1 d. F; [00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx0 v$ ]) G9 h6 i) n" I8 I0 M
00404D41 5F pop edi4 x: Q- X1 S& e, ~/ G* l
00404D42 5E pop esi) [2 _( v3 b8 f4 Q P6 A
00404D43 5D pop ebp
# I( A7 `- U* `2 W0 s00404D44 5B pop ebx* ^( ^+ ~5 z! P; V* K# P
00404D45 83C4 18 add esp,18
& i( X' W% L. T' H }+ B00404D48 C3 retn
# h( x8 ~. o) L*********************************************************************************************************************************************************
6 u. C8 f& ~# I) W. ^跟进00404D09处CALL来到:
4 j& E* w+ E! j' c9 N. E004030A0 6A FF push -1 //一路F8下去~~~~3 I: |& p$ I' N- i) y" v
004030A2 68 C88F4400 push qsr.00448FC8
$ c8 ?1 ~' q* n% A+ B, g" h" [004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]; r# I, m5 D) x2 I9 h) C
004030AD 50 push eax [# t8 f ]8 l$ X7 u% [; ?3 l
004030AE 64:8925 0000000>mov dword ptr fs:[0],esp
/ w" y3 O% r4 G/ B004030B5 83EC 24 sub esp,24
" Y) z1 q3 |% `$ O004030B8 53 push ebx2 D( g. C; D3 V9 E. N
004030B9 55 push ebp
: B5 R' y7 l. A3 ^6 g! Y2 {004030BA 56 push esi
7 C% g/ |( R+ q5 ]* `004030BB 57 push edi) e1 O% B9 j1 M. y9 q5 i
004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"
5 N6 ]: b5 v' U+ r S; J- q% O004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
8 y/ j' B* \! b004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],1
' Q5 U1 y) b% d0 X004030CD E8 27C40200 call qsr.0042F4F9
( W) t/ G. x S! ^' J4 o004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
, I* s6 N1 a* P' n5 d4 }004030D7 894424 2C mov dword ptr ss:[esp+2C],eax
5 _& x) s- a m I4 R9 Z$ b004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]- k$ u; u- b0 L* {0 A4 E
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3" Z" ]: ]0 b/ L- O
004030E4 E8 905A0200 call qsr.00428B79, L; E& {5 `2 r5 c
004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48], A: a) p, i6 Q3 W m9 E# ^2 ?& p* F
004030ED E8 3B5A0200 call qsr.00428B2D' y8 U/ q5 s Z9 V' y$ j
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
" I/ g; ^5 V6 I# j" |/ ^% h* b004030F6 E8 7E5A0200 call qsr.00428B79 O+ i/ g: t/ a8 B* N9 n2 Y( ~
004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]; X& z2 D8 Z- q* n# _& N+ R+ G7 O
004030FF E8 295A0200 call qsr.00428B2D
% E& x1 L' n7 q7 w% {00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]
4 p1 K% |' [6 a00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]6 G$ Q* l( X- L: N8 S; V, x* x
0040310B 83F8 02 cmp eax,2
. F( r( g& x. z0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳( }: M6 u/ d7 t; H5 j
00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]
& Y# j; f, ^+ H( W00403118 837A F8 18 cmp dword ptr ds:[edx-8],185 O" W1 S" N5 h: B( ] }2 N$ z3 |
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳. d4 j% }4 Y7 K2 A5 ?* B" b
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
& l0 O$ M' M, p2 B* Y00403126 6A 01 push 1, {6 d) t: p" H0 H9 ~
00403128 50 push eax, _" p; w0 a, l& ~1 q6 ]/ @& Z+ d
00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
: E. [/ {0 ]# O$ q* y! ]4 i* r0040312D E8 C4550200 call qsr.004286F6
0 J6 a! O8 ^; x* p X00403132 8B00 mov eax,dword ptr ds:[eax]
( I! C" V, I( W: K00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]# A8 A3 L& w7 q) _* y- T
00403138 50 push eax/ ~$ O' F, k `* I: K7 i) @9 k
00403139 C64424 40 04 mov byte ptr ss:[esp+40],4
. E- y% `/ Q5 \5 x0040313E E8 4D560200 call qsr.00428790; f7 ]. m5 |+ \; W( r2 B1 @0 O9 u" E
00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
# P- `% X! I, ^3 J2 o3 Y00403147 8BF0 mov esi,eax$ ?! Q/ g2 ]1 Y# }" V" X
00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3
6 p; t$ D7 x, H5 z+ e* d& l0040314E E8 38C30200 call qsr.0042F48B+ v* U0 [1 @6 L! c2 q7 }
00403153 8D46 0A lea eax,dword ptr ds:[esi+A] F+ {7 U& Z2 I& o
00403156 B9 3E000000 mov ecx,3E, n& I' J- w+ X; S3 V2 Q# v
0040315B 99 cdq6 }; I: X& Q4 w& i, P; j2 Z% u( i
0040315C F7F9 idiv ecx+ r' ~! M% K! a# x
0040315E 6A 01 push 1
( \* A( h8 |, A% _9 N, [$ p" @9 f00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]% m4 q$ w. f6 m) o, ]- q
00403164 8BF2 mov esi,edx
0 K, N3 U- p" x$ l00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
3 _' s1 Q# ?5 z" y( i. l. T0 @0040316A 52 push edx3 j( _5 a( d$ z" T3 u
0040316B E8 0A550200 call qsr.0042867A) k" j( G' y& N; k3 B
00403170 8B00 mov eax,dword ptr ds:[eax]/ [$ e8 [3 g9 T8 b% n( Q0 Y
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]+ z( f; k) }4 z0 I
00403176 50 push eax' { Z) u& y; p; b, s" v+ j# B/ P$ n
00403177 C64424 40 05 mov byte ptr ss:[esp+40],5
* s& J7 m" U% v6 g7 P0040317C E8 0F560200 call qsr.004287905 H0 F8 J$ ]& k2 H% G
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
$ x0 w4 @" W+ k c00403185 8BF8 mov edi,eax7 r( u4 c* ~1 E; q8 G+ B5 |7 Y
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],3
/ |- D0 Y2 U- l7 y9 [0 q0040318C E8 FAC20200 call qsr.0042F48B5 w. Z9 d: Q. `. R. _3 @9 h, a
00403191 8D47 0A lea eax,dword ptr ds:[edi+A], C+ @$ B) C- w& j4 N
00403194 B9 3E000000 mov ecx,3E' X: s) G2 x0 u3 h0 `3 G
00403199 99 cdq9 Y9 O1 |: |$ b
0040319A F7F9 idiv ecx+ j h5 N9 H* M" ?. I- Z
0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]/ C7 Z8 I1 Q' W5 S
004031A1 894424 28 mov dword ptr ss:[esp+28],eax
* c+ `, F0 v4 k5 J0 F004031A5 8BCA mov ecx,edx
7 @. P l) @5 @9 t" ^004031A7 894424 24 mov dword ptr ss:[esp+24],eax
" |9 u6 M* [# Z/ B- h# O004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
9 \6 ~! I5 |8 {1 E0 C- V004031AF 894424 18 mov dword ptr ss:[esp+18],eax* f7 Y# a/ V% V5 y7 x
004031B3 894424 14 mov dword ptr ss:[esp+14],eax
# ^. F& G5 r2 B) J0 X004031B7 894424 10 mov dword ptr ss:[esp+10],eax
$ m y7 D) i4 ]' o; L4 @004031BB 8BC1 mov eax,ecx6 ^2 ?9 [$ W: L+ K- q' p
004031BD BF 0A000000 mov edi,0A
^) S" h7 F( n# j y) X004031C2 99 cdq
0 n% c9 K' f9 M. L) }3 K5 _8 V004031C3 F7FF idiv edi3 Y w I, I9 A. N
004031C5 8BC1 mov eax,ecx, F( w) z1 t# ~) s
004031C7 B3 0B mov bl,0B
" X% Z4 E5 o, Q( R# c) X& b004031C9 0FAFC1 imul eax,ecx( B8 ]6 U0 p( M" I* N/ f X
004031CC 8BCF mov ecx,edi
& J F; d- l4 R9 x! T004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl( V `" l4 \: g" ~. i) z8 j% O; `
004031D2 52 push edx
* Z6 l4 V2 }9 c, D3 ~9 H004031D3 99 cdq/ x$ {$ ?8 M2 s' e9 O1 ]( D2 N
004031D4 F7F9 idiv ecx7 w, T$ G& }% Q' x0 v
004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]
# x& a& A6 F% Y. U1 g004031DD 2BC6 sub eax,esi9 ~ q/ ^5 O0 I& `5 l0 B
004031DF 52 push edx
1 y7 e$ w: Y$ I004031E0 99 cdq9 ?6 }0 \0 J; u) o S3 [/ e
004031E1 F7F9 idiv ecx
" u9 F. V. @; l3 `: M9 Z! d. s- J004031E3 8BC6 mov eax,esi
4 i& s' @% E( c1 F) }* i# N4 J004031E5 52 push edx$ H# g* C& r! H- m. @) P
004031E6 99 cdq
+ \5 Q) _# H1 x2 A! E1 ^, \8 p004031E7 F7F9 idiv ecx
: T- [+ B- G4 r6 t! }$ y004031E9 52 push edx# s# {. z% m; f; m" e
004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
+ C; v2 Q7 S# T& H! z1 m0 _% F# n3 S004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
# w V& W' n) M& L( e) q& y004031F3 52 push edx
1 r; C1 K# m! }5 O0 W004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是48934 p! I* j, F) W# W0 I/ N; U2 E
004031F9 83C4 18 add esp,18
# E- @, H+ ~- }: t004031FC 6A 04 push 4+ l8 ^! w% d! Q; ^
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]
. z, u5 Z# U6 F" f00403202 6A 00 push 03 ?- m; z& X2 N* D
00403204 50 push eax/ f4 c1 {/ r! i0 ]0 X4 h
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]: u: [# w" Q4 z" p
00403209 E8 D6530200 call qsr.004285E4( K. D* ~* V5 [4 \; k+ S, {
0040320E 50 push eax) k6 p6 k2 F* A0 F8 } b8 C
0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
6 m! \ z/ P- s% G2 L: B00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C
$ U; V: F/ r/ B i2 C00403218 E8 A7C30200 call qsr.0042F5C4
5 H) s( m! P0 u9 h9 K" \8 K0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
* |0 ~* x9 x6 N5 v00403221 885C24 3C mov byte ptr ss:[esp+3C],bl3 X* ^& G) O4 N) R
00403225 E8 61C20200 call qsr.0042F48B0 F! A4 B; _% h0 b+ l
0040322A 6A 04 push 40 a2 |; ~( L4 ^# ~2 D* ^2 P; |
0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]' q. u7 M9 R+ I
00403230 6A 05 push 57 `( S2 T1 `5 `) B' q, b5 e
00403232 51 push ecx
7 ]$ x/ K+ u% U" s8 F00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
. O5 Y4 u. o: l00403237 E8 A8530200 call qsr.004285E4( g$ j% l0 ?( A/ G G3 Y
0040323C 50 push eax m# o/ F7 G" n9 P( h# s
0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]" d j' \$ a5 T. b) p5 Y
00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D3 m& N. P0 z: m0 G: u( Q" \
00403246 E8 79C30200 call qsr.0042F5C4* ?# e; E" T. ]2 l2 G& C z+ H
0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
% G1 v2 S4 C: f$ k3 R3 q' T2 M! {0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl$ _+ Z# L; b' Q" e( b8 b
00403253 E8 33C20200 call qsr.0042F48B
% q. F t$ n) h5 _00403258 6A 04 push 4
( {% K/ r7 X Y# H9 m" U2 `. H0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]3 c& c4 u: a' v. ~( w% n; y
0040325E 57 push edi. U* n. P: U% q M ]3 @: J
0040325F 52 push edx
/ ^" d5 U5 O& J, S# }00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
0 ? X" d: f3 p( I; ]00403264 E8 7B530200 call qsr.004285E4
, }4 E6 e) k4 H+ B00403269 50 push eax/ A( K% s; U1 X6 c: C
0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]' S3 j! V' I2 [0 f% `0 \1 w$ e) S
0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E' v5 g# Y& N6 L! L. I3 D( m5 j Y
00403273 E8 4CC30200 call qsr.0042F5C4 c' ~, p' A8 y) u9 q
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]3 V( \ j" A" A6 F
0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl3 a0 D- K& p+ `7 I- |: I4 c- {( t2 l1 w
00403280 E8 06C20200 call qsr.0042F48B
6 j6 U, b# m3 J8 G00403285 6A 04 push 4
7 g, g8 F: u% e9 R( G- [& H, w( F00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]; P# Q: s1 g& o5 o. |7 H5 w
0040328B 6A 0F push 0F
) [! ^! N2 l/ z6 e: O% `0040328D 50 push eax
! x$ n4 P3 y4 ]$ f2 q0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
0 V8 P \; _' G3 p3 p1 t00403292 E8 4D530200 call qsr.004285E4; ]; r' u' C% L
00403297 50 push eax
: g( x: T" R$ \00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]( F$ b; R% J; l1 `; @
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F$ F& L0 K5 r5 t. Y) ^
004032A1 E8 1EC30200 call qsr.0042F5C4
' ?$ n& f5 ]" |3 G( c( `004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]! Z: A0 S# G4 s, X! [# i `; x
004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl
. n4 C3 [7 b" k+ @1 r' X004032AE E8 D8C10200 call qsr.0042F48B6 `- X1 E7 C6 A- ]6 ~1 |3 O" g
004032B3 6A 04 push 44 S; {* k9 Q6 F3 f' O
004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]" V9 g. d# C8 l& Y0 R" H4 [
004032B9 6A 14 push 14
1 W0 D! o4 a# k. K* T004032BB 51 push ecx
0 e( x; X+ d G+ L1 `" L: `004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
6 s: {" B' t" ]# H004032C0 E8 1F530200 call qsr.004285E4
: {+ J7 G. O4 X; t1 v1 ]4 ?" z0 w004032C5 50 push eax
6 \* |, X( j5 r+ v& S, U. K004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]! a7 C6 F. O) f9 h9 U
004032CA C64424 40 10 mov byte ptr ss:[esp+40],10( z2 R! _" L9 E R
004032CF E8 F0C20200 call qsr.0042F5C45 d. d8 ^+ y! U
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
9 k p: l6 y# {/ {1 R* L4 c1 D004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl6 s4 f8 A* ^0 a2 V) C: E7 l
004032DC E8 AAC10200 call qsr.0042F48B
3 D- X- Z5 J, w# ^7 _004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI% [" q% k4 m2 f$ E3 _
004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX
" M3 V& C/ K$ {! Q004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL
6 R, }$ o0 X" C/ ?) f' y- n004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL
$ n2 f( o: U9 O% i. I004032ED 8ACA mov cl,dl ; DL送CL
8 Q$ Y Y2 @9 k" R3 |004032EF 3AD3 cmp dl,bl ; DL和BL比较
# H2 p- \" Z' q/ J004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)
+ t* X' F N9 |004032F3 84C9 test cl,cl
; V0 T. B, {: _, }3 H0 J004032F5 74 16 je short qsr.0040330D, i1 L3 K# }5 p, c! P
004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL
4 U/ C! s% A: \, A/ p' }004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL5 V( W# g, }$ c
004032FD 8ACA mov cl,dl
% M( m* E: _3 Y: R004032FF 3AD3 cmp dl,bl ; DL和BL比较
* Z1 U/ t9 ?& p00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳) I8 }- I5 n1 U+ U" t
00403303 83C0 02 add eax,2 ; EAX加2 N) n! z; B! N
00403306 83C6 02 add esi,2 ; ESI加2
) V1 g4 l- R' \' G S- w9 V- U T00403309 84C9 test cl,cl; {4 Z6 z4 l, K) H- D
0040330B ^ 75 DC jnz short qsr.004032E9( p, b5 M6 u! l, A1 f. m
0040330D 33C0 xor eax,eax4 Q1 }; v+ K4 e# m
0040330F EB 05 jmp short qsr.00403316
0 R i& r/ u5 `& \% q6 N00403311 1BC0 sbb eax,eax
, e. b4 w. p9 `6 U5 Y9 i00403313 83D8 FF sbb eax,-1
7 F0 g& Z! @, p5 b+ i, F00403316 85C0 test eax,eax
, y2 N$ x% o' c% N8 `, x' B3 t00403318 74 0E je short qsr.00403328, \) g/ X, F6 X0 u
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A" D+ I1 N" y& G
0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]+ w5 Q6 Q& s) L7 @& ^
00403323 E9 F0000000 jmp qsr.00403418# B+ `0 E, E& ^! E2 ~: G& t+ L' k
00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX
3 F+ \: n9 f% q" W4 z& E0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
# M* Y; Q6 z5 t' e. l00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]- v- f, Z1 } ~4 {' F+ B4 j9 {
00403333 50 push eax1 e, u. K1 N$ ^; g! s+ t5 [. D1 m h
00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX! V1 b* v& \" b+ i: O- r0 q: \/ P
00403339 50 push eax7 J; u" @+ {+ d' w5 a$ s- p1 R% i
0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX
! M e; Q) {, e1 d0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX- m, [8 g5 H* ]( S- ^% j# |+ t
00403343 83C4 04 add esp,4) C, Z' c8 v* \ Y. q
00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI2 g: J3 G+ }5 W9 L& \: ?8 s
00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]
/ a4 y! q, {3 U; F0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]# l/ N8 z% n$ ]) n5 r
0040334F 50 push eax3 W. D9 k3 A9 {, h) N
00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX1 F( B, M: Y& |0 `$ D) v0 w
00403355 50 push eax
5 p, d- X7 u, L5 g' L00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX
! R, c9 N* L$ U' G% |$ s `0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
/ G+ L" ]4 k: H& z+ Q6 E0040335F 83C4 04 add esp,4
, i1 s l. J2 x; g) e6 e" m00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI
* X" s- L- |7 W8 t00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]" P- t; L, ~3 R; p: j" E
00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]
* [4 ^6 o/ D( g6 W( W0040336B 50 push eax
. `7 p5 h, \1 Z6 g0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX) j I! O0 G* E d* H9 B
00403371 50 push eax4 O7 f# c: N4 U7 o8 E9 h
00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX
4 `/ S/ P( Y. N5 J00403377 8BD8 mov ebx,eax ; EAX送EBX
/ I$ C6 Y2 T) v3 Z' v00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX+ t5 R& Y' ]+ ?2 l1 t6 q& e
0040337D 83C4 04 add esp,4& ?5 N& V8 X F8 m' h- j5 s. r
00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]4 }1 J1 Q( E; }7 a, p' |
00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]; U5 V8 ]; z# T; o
00403387 50 push eax
2 {* `" }1 y3 l7 d4 r00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX
0 I$ z. Q+ h& ~/ p k0040338D 50 push eax* {, L7 X; o. o/ L- \3 B# Z
0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
- @/ w9 T @9 ?) d, F) R00403393 83C4 04 add esp,4
+ c$ V6 w* ]( E+ n4 c00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
; x: i: o+ ^3 O7 c: q0040339A 8BE8 mov ebp,eax ; EAX送EBP
+ g# U* o- x7 {0040339C 6A FF push -11 L U- S8 F$ a* n1 G* g
0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX& h" h" \+ C( ?
004033A3 6A FF push -12 ?6 I" r, q& C2 a, i F* r' |
004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
6 X e4 Q% {, q9 \" `: ^) H+ ]% d* X004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
" a1 w w9 H, n2 r* G( z004033AE 6A FF push -1
& Y7 Q5 T5 g( F* ]! C/ R004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX: R' P( n5 Y6 T$ s& {) { w y3 v; x
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX
' I2 |' b, X( p7 @004033B9 6A FF push -1
7 W0 h$ B) `' y9 u004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX; R ]% @. s# y& i5 a
004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX
{$ K/ m c* c: k: w004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX
8 [, p; U% R6 F* u7 ~- q/ [004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
7 E4 D% X, c: y004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX% v( b9 h% P9 M4 A/ O p; @
004033D7 D1E0 shl eax,1 ; EAX左移1位
0 ]# E4 W( Y+ P" z004033D9 99 cdq ; EAX扩展5 [9 }8 i0 {# @' E
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中+ u! H2 k6 M) g; H3 B2 z8 ~2 E
004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
( W1 m: s; W+ S% Z4 `: x( f& m7 ]$ {004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳): Y8 Z% Z# l' q% q/ b
004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A
( s4 G0 f: ^* y; u1 c5 @* _004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]
& O: h) u1 N! U5 o! Y' n4 p004033E9 EB 2D jmp short qsr.004034187 Y$ d" c+ Z+ r9 ^1 A
004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX4 F0 ~/ \! v, F9 I- h
004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E27 l7 p% H o. S: t8 f9 _1 k
004033F7 99 cdq ; EBX扩展
1 x& C3 D/ M6 e2 {! d004033F8 33C2 xor eax,edx ; EAX和EDX取异或
9 a4 o# H. l9 p1 O% W* G$ _1 |% l004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX
0 N3 k! p$ {& R, U004033FF 2BC2 sub eax,edx ; EAX减去EDX
& Q/ a! S8 k3 O5 V00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]
3 C! G2 e! u, v3 Z3 L$ a' A. G00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX
# ], j! x# {# l- u00403409 99 cdq
0 N' e( B/ \; ~$ z# l5 o- F0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
V/ e& m* o; V$ h' w0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX% @% n& I1 L9 w. S
00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较/ k3 h' O* F, ~6 W& ?
00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳)! E* _/ }6 q+ h( @$ P1 ]
00403418 E8 6EC00200 call qsr.0042F48B ; 5 J6 G }7 j. B0 T: \
0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]0 q. F4 s: q9 d: W, `+ e
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],98 V+ T" ]8 R, a. ]1 e( G
00403426 E8 60C00200 call qsr.0042F48B5 A5 @0 ?; U7 k! U I2 S2 N2 u
0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]# o; W$ S+ g8 v
0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8
9 ]* G- n @2 L* P# [2 N9 A00403434 E8 52C00200 call qsr.0042F48B
. x6 E3 a% {$ M6 ~6 \0 u2 o00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]5 v9 D& R) K r! _" q
0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],7
& ^. b) h! o i+ K x. a" w8 R) w00403442 E8 44C00200 call qsr.0042F48B
6 s' E. [8 Y+ K' K00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]) ^5 t; F& i1 I, M
0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6: W/ i! u% C1 h+ Q/ ]7 t# q
00403450 E8 36C00200 call qsr.0042F48B# M$ B0 I; @; d- M4 Y
00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]9 L$ D, O. T* p/ c
00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],38 y% I1 n& g0 a+ S& n
0040345E E8 28C00200 call qsr.0042F48B
8 H! Z" F/ V' v' @00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
( T5 y M: r5 X S00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
5 ^4 \- P- Y5 Q- O7 @$ l0040346C E8 1AC00200 call qsr.0042F48B
5 n6 Y8 l c- }7 d" } i: H00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]) B3 r" U r$ J5 u5 \/ V8 }9 H6 h
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],19 R0 y" F: m* u8 Q3 K2 ~
0040347A E8 0CC00200 call qsr.0042F48B8 q$ r5 h3 @. W b
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]3 @. Y" {8 a$ L$ C6 D
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
& _1 ?: b4 ^$ L8 P5 A; N00403488 E8 FEBF0200 call qsr.0042F48B5 o k0 g l/ w* y3 `; p; m
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]7 J# j2 W* \8 D2 {5 B$ r9 W% D. n
00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
: f: \" {7 D, z) n2 d3 z4 i) p# _00403499 E8 EDBF0200 call qsr.0042F48B% j/ |* j% P% N% n. ~' W; Z
0040349E 32C0 xor al,al ; AL清0, i4 u4 S$ E* o( N2 W
004034A0 E9 88000000 jmp qsr.0040352D( n7 M( _7 X f) S2 T4 @ q
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~
) a) I8 d( H s: y( F9 m& r004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
2 Q: E1 V) m" X004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9
6 K4 O+ b! i6 G! u- h- i, D004034B3 E8 D3BF0200 call qsr.0042F48B q6 m# d" N7 N9 Y
004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]9 M0 `8 u$ n7 w/ u% n: y
004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],8
# J. `4 F( x" f: F9 p' `004034C1 E8 C5BF0200 call qsr.0042F48B. X/ |9 _0 [! ~' ^9 b
004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
& {% }8 E( b5 x3 y$ u; }004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7* M. A7 F2 p( G7 v, j3 H8 f* M+ D
004034CF E8 B7BF0200 call qsr.0042F48B
* q- w6 V C, R1 ?! w3 P, {1 A004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]3 f% l* l$ t# X- B# c8 Z) z8 \
004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6
: H: X: [- c" R4 j004034DD E8 A9BF0200 call qsr.0042F48B1 P K9 r, K5 B' z+ V
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
2 e4 n% G4 e' [* \3 N+ N004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3
; T' H+ c9 j) f. Z4 w( l+ F2 M004034EB E8 9BBF0200 call qsr.0042F48B
4 h/ A7 m2 j( ~$ ~004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
, ?1 M4 r) v" X3 |# d( z004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2
2 T/ @. S! O; ^004034F9 E8 8DBF0200 call qsr.0042F48B
5 j; Z3 Z" {1 B5 N, O# ~004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]$ I6 m" j- a$ h {' T0 A, W5 D
00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1) m+ H. I) b+ y; @$ g+ d% g4 i
00403507 E8 7FBF0200 call qsr.0042F48B3 u; a9 _. B/ Z& P. C% b1 t4 j
0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]! [ i7 ?5 M: D0 h4 p! E. f
00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0
. o j; }* g' D00403515 E8 71BF0200 call qsr.0042F48B2 W* V! J* d1 U# h+ y- ?* e# a# o
0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
7 q1 I$ H" i$ Q( j6 r0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
8 F3 ?% d$ c U& q# W00403526 E8 60BF0200 call qsr.0042F48B) \/ B. d M- `7 _+ c' i) m# q6 `
0040352B B0 01 mov al,1" t2 o' u- |4 N
0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
' o1 K2 A* R/ R7 R6 F00403531 5F pop edi( K2 d: [( L# \. C9 F4 `2 V: ?
00403532 5E pop esi
! ~) K9 E+ y0 V, J8 @ i0 J; G; Y00403533 5D pop ebp( g/ o7 r9 t! S! I2 F, U
00403534 5B pop ebx5 o" w4 F( M- M3 e0 R
00403535 64:890D 0000000>mov dword ptr fs:[0],ecx
* N6 J! n5 V H) m0 k, u" I& W+ H/ D0040353C 83C4 30 add esp,30
/ A* d% j% p4 _8 V0040353F C2 0800 retn 8
6 Y6 a1 Y" K8 }/ @2 P7 G. F--------------------------------------------------------------------------------& J1 t' f! f. [3 Q' z, r( e7 C+ m# L
【破解总结】
/ j4 Z- E% O$ f, H* W/ r 用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
' f. e% r0 }# r w用户名:yijun8 r( G, g1 z' K, J ~4 y4 V/ e
注册码:4893*7777*3726*7777*05291 n4 ^" B5 Y$ M% g- M
--------------------------------------------------------------------------------7 m/ p( U1 X- w# g3 P
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡