|
|
|
【原创】破解Quick Screen Recorder) I7 h8 l& r* v8 d. Q/ A! q# l
【破解作者】 yijun* m# n6 K" w( \2 ^( e
【作者邮箱】 [email protected]
0 N" V. S- D) N1 Q【使用工具】 OD,PEID: m6 C! o; I1 j, |1 z8 f! b
【破解平台】 WinXP
0 c5 b; c! @( g2 t【软件名称】 Quick Screen Recorder: g X3 |0 b4 t5 C! q
【下载地址】 天空
! V/ ^7 w* C* R- v【软件简介】 Etrusoft Quick Screen Recorder is a tool used for recording screen activity into standard AVI video files. If you move the cursor, launch a new program, type some text, click a few buttons, or select some menus -- anything that you see on your screen -- Quick Screen Recorder will be able to record all these and allow you to play them back later on.
) C+ Q, K- k; q4 g2 F. Z【软件大小】 540K
0 {9 O9 j4 D2 V: V+ c# r6 T【加壳方式】 无2 O+ l* n% k/ c2 G; i Q
【破解声明】 我是一只小菜鸟,偶得一点心得,愿与大家分享:)! B' G n) {: `
--------------------------------------------------------------------------------0 V! b; u, Y; Z) h" I3 h* y
【破解内容】
( c4 W# ^0 T; i% _8 f# \6 e PEID查壳知该软件无壳Microsoft Visual C++ 6.0编写。OD载入很容易来到以下地方:
( u- w2 o# f' W+ K$ q8 {; {- [, D. Q00404C69 55 push ebp //在此下断0 j# x1 w. G* F! T+ l/ O
00404C6A 56 push esi( j. r8 f: V$ D3 c0 Q
00404C6B 57 push edi
9 C. R; j) k: [ j1 G00404C6C 8BE9 mov ebp,ecx( H/ B2 b7 o0 y: F s; p8 Y
00404C6E 6A 01 push 1- ~* q3 f3 G8 t7 f/ k
00404C70 E8 7C910200 call qsr.0042DDF1 ; 取用户名
& H9 G& Y2 n4 |7 p3 G00404C75 8D7D 60 lea edi,dword ptr ss:[ebp+60], Y( l) l, o: g) x5 s
00404C78 8BCF mov ecx,edi
3 i' O0 V- ]. O: E M: S00404C7A E8 FA3E0200 call qsr.00428B79 ; 取注册码
; d" j+ w! c1 s' g3 H00404C7F 8BCF mov ecx,edi
( b2 \4 y4 ?0 o4 c; [00404C81 E8 A73E0200 call qsr.00428B2D' B3 V( v- m7 o4 O4 b7 U9 i
00404C86 8D75 64 lea esi,dword ptr ss:[ebp+64]
* n" u L6 X) `5 P' b3 f00404C89 8BCE mov ecx,esi: Q' \ J, k+ Y9 f
00404C8B E8 E93E0200 call qsr.00428B79 ; 用户名送EAX) @ S! s: d4 D3 F' ]: `
00404C90 8BCE mov ecx,esi. n& l n# [3 ^3 o0 K0 l9 ]
00404C92 E8 963E0200 call qsr.00428B2D
# o2 e0 E! [* U, _00404C97 8B06 mov eax,dword ptr ds:[esi]
: }) v! O7 { M$ r9 b [00404C99 8378 F8 02 cmp dword ptr ds:[eax-8],2
$ R& `( D% a( F. o$ x5 Q, H00404C9D 7D 26 jge short qsr.00404CC57 Z" ]# Z3 ?5 N( B
00404C9F 6A 40 push 402 ]* W1 W. v, K5 X" ]1 P% b
00404CA1 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"
4 Z4 k+ n) p. K& c0 q2 |/ G7 K00404CA6 68 24E54500 push qsr.0045E524 ; ASCII "Please input your name."
3 q/ w" k! I r) p00404CAB 8BCD mov ecx,ebp0 I3 d: k" N, F( g# v2 Z5 d
00404CAD E8 C3840200 call qsr.0042D175
, q* r4 }/ u$ p- T. g3 x6 v) s& a00404CB2 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]2 T9 k$ l+ Y3 n* A6 G
00404CB6 64:890D 0000000>mov dword ptr fs:[0],ecx
1 H; z( m* w5 p7 f2 K+ r00404CBD 5F pop edi
6 U' V5 L" L8 I+ {2 e00404CBE 5E pop esi
' H8 ?! S. V2 n: @2 S00404CBF 5D pop ebp
) {( s5 \ H" i00404CC0 5B pop ebx
; ~) _$ N( u" ^( P00404CC1 83C4 18 add esp,18
8 B: ^/ o3 q" ?9 m00404CC4 C3 retn
) }4 s- ]3 h& g, ~( x- X00404CC5 8A45 5C mov al,byte ptr ss:[ebp+5C]5 V, w* v( L( Q. k3 ]* X% U: e5 d
00404CC8 84C0 test al,al
" J0 [) @1 m) a$ i+ F+ f& S00404CCA 0F85 1C010000 jnz qsr.00404DEC
U3 v/ B7 ~% d4 V" D1 {2 d# L00404CD0 8D4C24 14 lea ecx,dword ptr ss:[esp+14]: k8 n7 T7 a% p/ J
00404CD4 E8 87E3FFFF call qsr.00403060
2 @7 S |, t: E! W) Y00404CD9 51 push ecx/ k6 E# W( a/ {1 D7 b1 R
00404CDA C74424 28 00000>mov dword ptr ss:[esp+28],0
2 r7 j( Q) t1 k% ?1 n00404CE2 8BCC mov ecx,esp0 W7 n/ M; s5 f$ b# a0 J7 d8 p
00404CE4 896424 14 mov dword ptr ss:[esp+14],esp# Y- ?9 g' a) K {/ a) W* a
00404CE8 56 push esi1 _- z$ ?2 o/ o% t* J t) a! U7 }5 g
00404CE9 E8 12A50200 call qsr.0042F200 ; 测试用户名是否是0
7 e$ }7 Q8 n, W4 h00404CEE 51 push ecx
* ]+ f/ }6 x' t# T& E4 c00404CEF C64424 2C 01 mov byte ptr ss:[esp+2C],14 H, }( a# m& _3 G9 ]3 g
00404CF4 8BCC mov ecx,esp
" j; g. n/ ?0 ~# h0 P00404CF6 896424 20 mov dword ptr ss:[esp+20],esp/ N7 f8 O# F% B) y/ n. c' P
00404CFA 57 push edi
3 h( z* D* r0 l5 L0 b00404CFB E8 00A50200 call qsr.0042F200 ; 测试注册码是否是00 b/ h* f' V. ^0 N' `: d! C k
00404D00 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]% R$ @! i5 _0 B5 @7 w
00404D04 C64424 2C 00 mov byte ptr ss:[esp+2C],0, ~& }& k0 x0 _' D
00404D09 E8 92E3FFFF call qsr.004030A0 ; 关键CALL,跟进~~~~~~~~~~~4 d9 g+ p+ W3 c' t* h
00404D0E 84C0 test al,al ; 刚才那两处都等就注册成功,此时AL=1~~~0 {( h1 F% D2 p; B5 }8 V) |3 G
00404D10 75 37 jnz short qsr.00404D49 ; AL=1就注册成功~~~~' l* t( G0 O: J8 u \# _4 ]
00404D12 6A 40 push 40 L6 _5 ]4 I: c5 J
00404D14 68 3CE54500 push qsr.0045E53C ; ASCII "Quick Screen Recorder"& ?$ I0 ^( t8 N( \* e5 w/ B9 ^
00404D19 68 DCE44500 push qsr.0045E4DC ; ASCII "Sorry, your registration key is wrong. Please check it and try again."6 K& O* n& v% @# D3 b
00404D1E 8BCD mov ecx,ebp
" |2 a4 A8 |- |3 |/ W00404D20 E8 50840200 call qsr.0042D175* g: |* |' S W6 h& P1 e, `
00404D25 8D4C24 14 lea ecx,dword ptr ss:[esp+14]% Z' z4 g' X' }9 i1 h: n9 w5 o
00404D29 C74424 24 FFFFF>mov dword ptr ss:[esp+24],-1" Y7 @5 r. U# c/ C: j
00404D31 E8 5AE3FFFF call qsr.00403090; ?; l* @0 o! C1 I* m
00404D36 8B4C24 1C mov ecx,dword ptr ss:[esp+1C]
/ w3 w v: Y' V9 b00404D3A 64:890D 0000000>mov dword ptr fs:[0],ecx9 [8 @( Y" j, m! K: B
00404D41 5F pop edi1 Z. Z% |- d. I6 x
00404D42 5E pop esi
0 W& t7 @/ h( u; s: z3 A+ [00404D43 5D pop ebp4 t$ k" b( ^1 h: o6 A2 N
00404D44 5B pop ebx
/ \6 [+ X5 o8 k00404D45 83C4 18 add esp,18
1 u: Q+ d: _+ L* a3 d00404D48 C3 retn5 W) p! k7 F/ n
*********************************************************************************************************************************************************1 B) K, `% E) u; q9 V, S" N, e
跟进00404D09处CALL来到:
3 ^) i3 ^" v0 ?3 u004030A0 6A FF push -1 //一路F8下去~~~~
2 P) {! i- ^) Q. D( v. g004030A2 68 C88F4400 push qsr.00448FC87 E) {! V+ j# o+ L& L3 W5 p
004030A7 64:A1 00000000 mov eax,dword ptr fs:[0]
* ] j& [$ ~: g& P! I004030AD 50 push eax6 U7 U7 x+ w% i3 |
004030AE 64:8925 0000000>mov dword ptr fs:[0],esp
% Y& A% s+ p3 k% p3 r004030B5 83EC 24 sub esp,24
+ p" v3 }) u* t2 B5 F( v" T004030B8 53 push ebx
l1 c+ Q# i& z6 o( V; k004030B9 55 push ebp7 s( f3 b7 v" w$ ~9 x
004030BA 56 push esi& K l' t7 \( B
004030BB 57 push edi
2 k) h1 r7 I5 m" ^% Y6 ?1 |8 ]004030BC 68 28E24500 push qsr.0045E228 ; ASCII "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"
. W/ k1 T$ K) u004030C1 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
6 X& x; i" c7 Y004030C5 C74424 40 01000>mov dword ptr ss:[esp+40],15 m) D" u! S4 | r7 R* K" q
004030CD E8 27C40200 call qsr.0042F4F9
% y- C2 U0 n! Y* u2 i; h004030D2 A1 38F44500 mov eax,dword ptr ds:[45F438]
2 a. K0 x3 z6 F- A004030D7 894424 2C mov dword ptr ss:[esp+2C],eax
& K& x. I+ i w" `+ m004030DB 8D4C24 48 lea ecx,dword ptr ss:[esp+48]; C; K+ w' J* L) f& G+ t6 s
004030DF C64424 3C 03 mov byte ptr ss:[esp+3C],3
# m* x' S, N, ]2 V& J004030E4 E8 905A0200 call qsr.00428B79
: ]1 v. i2 P9 A2 I& d$ ^004030E9 8D4C24 48 lea ecx,dword ptr ss:[esp+48]! j( T7 E8 i! V- o( I8 E3 t2 y
004030ED E8 3B5A0200 call qsr.00428B2D/ C; P1 |8 `9 K+ {! ^% f
004030F2 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
' ^. |' R# e2 S3 v% [004030F6 E8 7E5A0200 call qsr.00428B79
* B- u5 u4 d/ K7 V) x004030FB 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
+ U4 r7 D# @0 Y7 t, q- K( r004030FF E8 295A0200 call qsr.00428B2D
" `! w1 S) w" p1 n$ i00403104 8B4C24 48 mov ecx,dword ptr ss:[esp+48]
8 M4 q( X7 c5 P3 v00403108 8B41 F8 mov eax,dword ptr ds:[ecx-8]' W- w' ]6 b. r4 K( `* {$ ^
0040310B 83F8 02 cmp eax,2
0 _) n v3 f; T# S, Z0040310E 0F8C 4F030000 jl qsr.00403463 ; 用户名小于2就跳0 ^) Q3 i8 z( {9 m7 c; |
00403114 8B5424 44 mov edx,dword ptr ss:[esp+44]+ ^! d6 S; v. m' M
00403118 837A F8 18 cmp dword ptr ds:[edx-8],18/ B4 d8 u8 R! P
0040311C 0F85 41030000 jnz qsr.00403463 ; 注册码不等于18(16进制)就跳* b9 Y2 y4 |; A+ H. F& t* I: i
00403122 8D4424 30 lea eax,dword ptr ss:[esp+30]
( \+ W( a! r- D0 Z3 q4 M00403126 6A 01 push 17 ^3 j( f% K- k+ B: T9 j8 e
00403128 50 push eax
; g+ j) e$ N! F# p0 I' Z4 q8 L00403129 8D4C24 50 lea ecx,dword ptr ss:[esp+50]$ T+ l" ~& l2 x$ O/ S5 H
0040312D E8 C4550200 call qsr.004286F6* n( T5 v! s/ I5 t% O1 A% \
00403132 8B00 mov eax,dword ptr ds:[eax]
; J: E" \& x- D& w* _% x00403134 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
% f& ^) L, A# w3 d00403138 50 push eax* v% ?5 K* J$ P8 ^: \3 j9 y# W
00403139 C64424 40 04 mov byte ptr ss:[esp+40],40 C7 |9 b* U% r q2 t0 G
0040313E E8 4D560200 call qsr.00428790
0 l! m" x! X3 s00403143 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
' f9 L" t! H, p7 c: ~9 J* v00403147 8BF0 mov esi,eax/ j3 t/ |5 h m" H: ]
00403149 C64424 3C 03 mov byte ptr ss:[esp+3C],3. X+ ?% [$ H ^! e
0040314E E8 38C30200 call qsr.0042F48B
( a& I! ~; }* J/ G9 y5 ?5 K9 @00403153 8D46 0A lea eax,dword ptr ds:[esi+A]! ~" U! J" D2 b0 b3 m
00403156 B9 3E000000 mov ecx,3E
+ X# B6 ]6 ~2 y7 s! r. Y0040315B 99 cdq- K) s. k4 B7 X2 R
0040315C F7F9 idiv ecx& ~; m0 S3 d. z% J) l
0040315E 6A 01 push 1
8 D! L) w6 M% d, r4 a00403160 8D4C24 4C lea ecx,dword ptr ss:[esp+4C]
2 U' N r! o0 {0 a00403164 8BF2 mov esi,edx
# C! z6 I, E: k, _. N! E6 s+ G00403166 8D5424 34 lea edx,dword ptr ss:[esp+34]
& W9 M6 o4 Y! A" H9 M: a2 S0040316A 52 push edx5 K' d& A' v+ S; `# ~
0040316B E8 0A550200 call qsr.0042867A. N1 w0 t" E4 k9 s2 a; y( Z0 J
00403170 8B00 mov eax,dword ptr ds:[eax]1 U( E4 s x& ]8 |+ n6 y1 m. g8 @5 s
00403172 8D4C24 20 lea ecx,dword ptr ss:[esp+20]. _* t4 ? q7 e2 b3 O! c+ L
00403176 50 push eax' J& P4 q1 q3 H/ W. o F( s
00403177 C64424 40 05 mov byte ptr ss:[esp+40],5
5 C7 F! t1 A G- w0040317C E8 0F560200 call qsr.004287909 o! M$ K2 O" D
00403181 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
2 z' B' Q( v5 S00403185 8BF8 mov edi,eax5 f5 T5 W9 t2 p Q$ ?
00403187 C64424 3C 03 mov byte ptr ss:[esp+3C],37 ~% ] g% A0 Y4 b( Z
0040318C E8 FAC20200 call qsr.0042F48B4 W8 M( ]/ o4 f4 @
00403191 8D47 0A lea eax,dword ptr ds:[edi+A]: h5 T7 v! C) b# h
00403194 B9 3E000000 mov ecx,3E
M/ Q- s. k; j, f. G! }- ?00403199 99 cdq
) O! v" N. x8 U0 U3 j0040319A F7F9 idiv ecx
6 s G; t% }0 H O' L0040319C A1 38F44500 mov eax,dword ptr ds:[45F438]9 c/ C9 y7 p$ k# |* h3 r4 S! w: e3 W& A
004031A1 894424 28 mov dword ptr ss:[esp+28],eax7 `( e5 J9 `3 d/ k
004031A5 8BCA mov ecx,edx
8 T/ Z+ m9 I* R: ~004031A7 894424 24 mov dword ptr ss:[esp+24],eax* m( j# x3 Z% [% a7 s. O! m
004031AB 894424 1C mov dword ptr ss:[esp+1C],eax
: `$ O2 J- \: T0 W/ N& d004031AF 894424 18 mov dword ptr ss:[esp+18],eax8 a$ z" X3 v6 ?3 k: U+ l( }; c
004031B3 894424 14 mov dword ptr ss:[esp+14],eax
% ?* g+ n$ k8 S# D: S% c* z! e004031B7 894424 10 mov dword ptr ss:[esp+10],eax! B {8 n: x& D& k+ \1 |
004031BB 8BC1 mov eax,ecx
, U2 q9 L% A5 U9 a0 R% {004031BD BF 0A000000 mov edi,0A
* [1 W2 E9 a9 ]. ~% s004031C2 99 cdq
1 Q/ H& B3 T8 P/ c/ ?004031C3 F7FF idiv edi) Z; m, ?! Y x, R' m; |/ X# t3 d
004031C5 8BC1 mov eax,ecx
: j- @7 @* V4 H004031C7 B3 0B mov bl,0B
# ~2 M" K/ G! a7 ^004031C9 0FAFC1 imul eax,ecx. S. J) \0 e a* f
004031CC 8BCF mov ecx,edi
7 m- A# b; C( V; r004031CE 885C24 3C mov byte ptr ss:[esp+3C],bl6 V, R( e8 S8 B# p
004031D2 52 push edx' k4 Z% i7 I+ Y' z
004031D3 99 cdq
, K- D. T3 s7 ?1 X004031D4 F7F9 idiv ecx
' L. e: l+ T7 Z) {+ E& m2 `004031D6 8D04F5 00000000 lea eax,dword ptr ds:[esi*8]6 s6 l2 j) Z& N
004031DD 2BC6 sub eax,esi
5 L8 I9 e3 O& |" H# {; s* c" N# a004031DF 52 push edx" ~# Y* u3 V3 d( m
004031E0 99 cdq
3 V3 O$ }$ d3 y0 Y$ H6 o7 \$ z004031E1 F7F9 idiv ecx* d9 E+ A- O! T J# Y. S
004031E3 8BC6 mov eax,esi! s$ l1 ]6 P3 @* K* q# d
004031E5 52 push edx
: u: ? H- q; s% C004031E6 99 cdq$ k/ C! A. f; K J
004031E7 F7F9 idiv ecx2 k& G' U' ]$ a1 ^- m3 x! J
004031E9 52 push edx
9 s/ Z' Z$ ]. `7 B( a- h' k004031EA 8D5424 38 lea edx,dword ptr ss:[esp+38]
: J6 O+ P6 T3 h l, b& g. T7 P" R004031EE 68 1CE24500 push qsr.0045E21C ; ASCII "%d%d%d%d"
+ ^# {( F) O& M004031F3 52 push edx( o2 [$ m7 {/ c2 C3 {' m
004031F4 E8 D8580200 call qsr.00428AD1 //由我们的用户名得到一个4位数,我的是48938 S! d2 n3 @8 z1 N# R
004031F9 83C4 18 add esp,18
( D9 e5 v( Y4 {004031FC 6A 04 push 4+ ?7 U8 f& i3 l% Y L# C6 `
004031FE 8D4424 34 lea eax,dword ptr ss:[esp+34]5 X7 @5 v+ E* n9 A+ t, T' Z7 E
00403202 6A 00 push 0 ]! R, x( [4 s0 H" k
00403204 50 push eax3 O9 u3 e! D' Z' ]3 Q8 Z" v6 C. s
00403205 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
9 W7 I9 p5 r8 m7 R00403209 E8 D6530200 call qsr.004285E4* R2 L, C. v$ y$ L8 B( ?
0040320E 50 push eax
: c4 F. x9 P( y5 c0040320F 8D4C24 28 lea ecx,dword ptr ss:[esp+28]/ @7 K2 j/ L h
00403213 C64424 40 0C mov byte ptr ss:[esp+40],0C# t* D) x) j4 R6 H3 j' ?
00403218 E8 A7C30200 call qsr.0042F5C4
3 i3 H4 @7 Z! L) g# q- P0040321D 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
* ?) _' t( w% J: a5 t00403221 885C24 3C mov byte ptr ss:[esp+3C],bl
* m' U/ R8 A/ g# ~+ i3 K00403225 E8 61C20200 call qsr.0042F48B8 y8 ^7 g/ L' }% V6 i3 s
0040322A 6A 04 push 4
1 m! {6 u" t* J O0040322C 8D4C24 34 lea ecx,dword ptr ss:[esp+34]& g. Z% ?. q) z- K3 B: Q
00403230 6A 05 push 5; E4 e2 r- Z- v. Y# F) \
00403232 51 push ecx
# [1 z1 z6 w, G5 c00403233 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
# T% f \0 P# v8 G7 X9 N8 d2 C( K00403237 E8 A8530200 call qsr.004285E4
\8 [4 N% G) s% n, s' n( h2 H0040323C 50 push eax
2 W: {: a$ p: i/ c9 m" W. n6 k0040323D 8D4C24 20 lea ecx,dword ptr ss:[esp+20]$ y3 }" a9 ~! z' B1 I( J
00403241 C64424 40 0D mov byte ptr ss:[esp+40],0D
8 t0 X5 B0 V" {4 J: Z00403246 E8 79C30200 call qsr.0042F5C4
, R' c3 v+ Y- P8 ?% r2 `" \# ?0040324B 8D4C24 30 lea ecx,dword ptr ss:[esp+30]) R7 ~' i, W$ @, o+ _0 N( i! E4 L
0040324F 885C24 3C mov byte ptr ss:[esp+3C],bl
) l8 y- k# n3 V. e4 X0 ~00403253 E8 33C20200 call qsr.0042F48B" n0 p4 q R' G8 E# H
00403258 6A 04 push 4
! q/ | u8 v/ o: N6 V% Z0040325A 8D5424 34 lea edx,dword ptr ss:[esp+34]
2 Z1 X% K' H3 Z ?: U" J! q& O1 [0040325E 57 push edi
; `) ?5 b% V3 p3 }0040325F 52 push edx$ u+ M6 q4 y( B% m) L% G
00403260 8D4C24 50 lea ecx,dword ptr ss:[esp+50]
( n. W% q# \- l; r" y00403264 E8 7B530200 call qsr.004285E4
+ y* F. }, M' Z) V00403269 50 push eax0 B. t) V0 @7 `: H
0040326A 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]8 e( y- r8 O* p* r% p- a& b6 m
0040326E C64424 40 0E mov byte ptr ss:[esp+40],0E; A+ R' J6 A7 a
00403273 E8 4CC30200 call qsr.0042F5C40 X1 u& S8 k$ H) R3 L; }/ d
00403278 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
( u( {% T _% U0040327C 885C24 3C mov byte ptr ss:[esp+3C],bl
# ?, p! D2 l$ K t+ Z* J00403280 E8 06C20200 call qsr.0042F48B
4 ]% D' z. p( H6 L& U5 q1 Z; J ~00403285 6A 04 push 4
~6 ?/ y" ~( K5 |( N00403287 8D4424 34 lea eax,dword ptr ss:[esp+34]
P, X+ j) u: f7 u0040328B 6A 0F push 0F
$ k5 K& y5 i l0040328D 50 push eax- P- M" n2 T( C3 L7 d
0040328E 8D4C24 50 lea ecx,dword ptr ss:[esp+50]0 u6 v# l3 L' z( F
00403292 E8 4D530200 call qsr.004285E4' O& f8 |5 k" \) I5 t" }
00403297 50 push eax
( O4 }; ^3 L- ^. t) m00403298 8D4C24 18 lea ecx,dword ptr ss:[esp+18]7 P9 t0 t* }$ n
0040329C C64424 40 0F mov byte ptr ss:[esp+40],0F
1 \( n2 ~) t8 M; ?: O" F004032A1 E8 1EC30200 call qsr.0042F5C45 E8 b8 _5 A2 l# m
004032A6 8D4C24 30 lea ecx,dword ptr ss:[esp+30]
* d T; F& g/ Z004032AA 885C24 3C mov byte ptr ss:[esp+3C],bl
% p8 e1 f) @3 g# P- n004032AE E8 D8C10200 call qsr.0042F48B
2 U3 t0 Z. n+ d. m004032B3 6A 04 push 41 o6 m( @( n" X) y- U+ s1 _# E
004032B5 8D4C24 34 lea ecx,dword ptr ss:[esp+34]
1 m" c* M9 x/ D5 J: I8 _3 Q004032B9 6A 14 push 146 G# K" G* l, Y
004032BB 51 push ecx) v% S8 v- h& j: X5 o
004032BC 8D4C24 50 lea ecx,dword ptr ss:[esp+50], z" K, q: b q# i$ t
004032C0 E8 1F530200 call qsr.004285E4
; b$ c. b7 O6 M3 O004032C5 50 push eax4 i. d4 e3 M. _+ t
004032C6 8D4C24 14 lea ecx,dword ptr ss:[esp+14]8 g' g- @6 ~3 b' O5 H Q
004032CA C64424 40 10 mov byte ptr ss:[esp+40],10( C% P3 w K1 m/ G) J, C8 {
004032CF E8 F0C20200 call qsr.0042F5C4+ V& n3 q0 h2 [9 A* t- g( F9 {
004032D4 8D4C24 30 lea ecx,dword ptr ss:[esp+30]+ j) m0 j+ z: ^( `/ u% P$ l8 Y
004032D8 885C24 3C mov byte ptr ss:[esp+3C],bl
% t0 u5 @$ G8 q3 @004032DC E8 AAC10200 call qsr.0042F48B
+ y. D5 P3 t5 t4 J- W6 ^* B004032E1 8B7424 24 mov esi,dword ptr ss:[esp+24] ; 注册码1到4位送ESI
% q& D+ k. h- B1 B- |# X/ m2 w004032E5 8B4424 28 mov eax,dword ptr ss:[esp+28] ; 4893送EAX% o3 [* g }! ], j
004032E9 8A10 mov dl,byte ptr ds:[eax] ; [eax]送DL0 O4 y& l5 P2 N" z4 {* E, s( d
004032EB 8A1E mov bl,byte ptr ds:[esi] ; [ESI]送BL, K6 g) |2 L) e
004032ED 8ACA mov cl,dl ; DL送CL: v( a, E3 b" g/ U% C
004032EF 3AD3 cmp dl,bl ; DL和BL比较' W1 T$ e7 O7 V+ _ i
004032F1 75 1E jnz short qsr.00403311 ; 不等就跳(不能跳)+ |3 [' Y0 }2 y2 [ _# W
004032F3 84C9 test cl,cl; J3 U: i. i8 n$ M- _
004032F5 74 16 je short qsr.0040330D
. x: \4 t1 R( i1 {/ G% i4 t& r004032F7 8A50 01 mov dl,byte ptr ds:[eax+1] ; [eax+1]送DL
* c9 e, r, n# E! }3 e004032FA 8A5E 01 mov bl,byte ptr ds:[esi+1] ; [esi+1]送BL
4 K5 B3 \! }9 K004032FD 8ACA mov cl,dl; B$ ^5 @* _) X9 Q7 i, b
004032FF 3AD3 cmp dl,bl ; DL和BL比较
+ s; K) N4 R0 x7 L& [- [00403301 75 0E jnz short qsr.00403311 ; 不等就跳(不能跳)5 \" g, o/ Y" a, B, a
00403303 83C0 02 add eax,2 ; EAX加2
' n& y$ q. A9 G: S00403306 83C6 02 add esi,2 ; ESI加2) p! M; u; E' P: A) q7 d; E) Y
00403309 84C9 test cl,cl
& H; ~* T' c# h: ]- z0040330B ^ 75 DC jnz short qsr.004032E9
6 c2 Y4 S. ~% g. X. d s0040330D 33C0 xor eax,eax8 j# e% N1 G: L# L0 M4 y
0040330F EB 05 jmp short qsr.00403316
4 P; W$ ^! w- Q: f2 M4 d00403311 1BC0 sbb eax,eax
& L# f1 B+ j3 q6 N8 R6 q" T8 \( A00403313 83D8 FF sbb eax,-1
0 {7 ]" h# @7 F6 U( Q9 f5 T00403316 85C0 test eax,eax# Y" @% S! g1 q( W3 \
00403318 74 0E je short qsr.004033289 E; @9 n7 S3 O
0040331A C64424 3C 0A mov byte ptr ss:[esp+3C],0A2 x! m% x) v" Q! c6 i
0040331F 8D4C24 10 lea ecx,dword ptr ss:[esp+10]6 x* I' x2 v; d# y5 b: z! e
00403323 E9 F0000000 jmp qsr.00403418
% C; e, l( G7 n" }0 a7 B' ^+ O00403328 8B4424 1C mov eax,dword ptr ss:[esp+1C] ; 注册码6到9位送EAX. A8 h- o; \4 f
0040332C 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]5 `+ A: }$ X& E! c1 g; ~ h
00403330 8B40 F8 mov eax,dword ptr ds:[eax-8]
1 C' t# _1 v1 p: g4 d0 e2 p2 R00403333 50 push eax
; j0 C: W* z$ Q% m5 z: f5 d) [00403334 E8 82C50200 call qsr.0042F8BB ; 注册码6到9位送EAX
% P0 ~; F! s, n+ ^7 |00403339 50 push eax
7 I+ r: |! X# F" V7 x' _! R3 r1 \0040333A E8 466D0100 call qsr.0041A085 ; 注册码6到9位转换成16进制送EAX
* g u( j/ {6 h/ G5 `0040333F 8B4C24 1C mov ecx,dword ptr ss:[esp+1C] ; 注册码11到14位送ECX0 `- |9 q& T+ Y) y: ^. Z
00403343 83C4 04 add esp,4( s1 R* V' n- X* b0 R: o& a# P
00403346 8BF0 mov esi,eax ; 注册码6到9位的16进制送ESI% m6 \3 s1 [4 O! Q& t6 X% H- |& j
00403348 8B41 F8 mov eax,dword ptr ds:[ecx-8]
+ J+ Q) D1 t8 A6 c! s, Y0 C0040334B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]! V2 k& ~) f. s, S- V9 P* [
0040334F 50 push eax
$ i# `# [/ o& T9 |0 M( j% P00403350 E8 66C50200 call qsr.0042F8BB ; 注册码11到14位送ECX
' p- J7 Q+ |: d00403355 50 push eax
2 z( z2 ]3 }. W# }% a00403356 E8 2A6D0100 call qsr.0041A085 ; 注册码11到14位转换为16进制送EAX* L0 S' W% q+ |
0040335B 8B5424 18 mov edx,dword ptr ss:[esp+18] ; 注册码16到19位送EDX
' l* O: ?+ F z: r0 A8 Q; w8 K0040335F 83C4 04 add esp,4% f- s6 [% G0 B/ W0 w9 |
00403362 8BF8 mov edi,eax ; 注册码11到14位的16进制送EDI. N1 E- Y7 S" D6 _- A9 g
00403364 8D4C24 14 lea ecx,dword ptr ss:[esp+14]
8 m9 S0 E3 G, r4 `6 ]00403368 8B42 F8 mov eax,dword ptr ds:[edx-8]7 U# L6 R. z' N% t+ W$ }
0040336B 50 push eax J) Y8 A3 O. Y: z. N5 ~: A
0040336C E8 4AC50200 call qsr.0042F8BB ; 注册码16到19位送EDX
# A1 o. Z7 j6 L s& G00403371 50 push eax
+ e0 c2 l8 [4 p) ?. j2 s00403372 E8 0E6D0100 call qsr.0041A085 ; 注册码16到19位转换成16进制送EAX l' v; J/ `7 Q
00403377 8BD8 mov ebx,eax ; EAX送EBX" E9 Q2 ~) T2 K: D/ R# Z$ d
00403379 8B4424 14 mov eax,dword ptr ss:[esp+14] ; 注册码21到24位送EAX% f; K& ?; \% A# |
0040337D 83C4 04 add esp,4. }' Y3 R# G! \0 G1 A+ f& }4 W+ o$ L
00403380 8D4C24 10 lea ecx,dword ptr ss:[esp+10]" C* h) N8 a, M S( r/ v$ Z' @5 g
00403384 8B40 F8 mov eax,dword ptr ds:[eax-8]: A" M. S; ?% _5 g
00403387 50 push eax$ O. P: b9 w; G7 l& g1 ~$ f9 ~
00403388 E8 2EC50200 call qsr.0042F8BB ; 注册码21到24位送EAX
' z7 I& t" Z6 C, P* G- U0040338D 50 push eax
9 a) t | G) [) W7 j3 N0040338E E8 F26C0100 call qsr.0041A085 ; 注册码21到24位转换成16进制送EAX
- N9 @9 N# D$ g00403393 83C4 04 add esp,4
! b" P$ i" A. O6 _0 _* z00403396 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]
# a+ {2 O9 f2 \* _3 |4 s% O8 G- \0040339A 8BE8 mov ebp,eax ; EAX送EBP3 B' ?; B: A$ [: K0 J5 @! N$ f3 G0 S
0040339C 6A FF push -1
1 X `4 v, M. n) E: F; S0040339E E8 67C50200 call qsr.0042F90A ; 注册码6到9位送ECX,长度送EAX
) ?( C0 M* G. r004033A3 6A FF push -1
" }; z% b/ e" \1 Z( L$ j004033A5 8D4C24 1C lea ecx,dword ptr ss:[esp+1C] ; [esp+1C]送ECX
2 F: N0 L0 G9 ~004033A9 E8 5CC50200 call qsr.0042F90A ; 注册码11到14位送ECX,长度送EAX
1 ~ A: E/ ^3 K# D( `7 D004033AE 6A FF push -12 U, F3 K O1 P2 o0 K
004033B0 8D4C24 18 lea ecx,dword ptr ss:[esp+18] ; [esp+18]送ECX. X2 {0 ]7 y+ r& h
004033B4 E8 51C50200 call qsr.0042F90A ; 注册码16到19位送ECX,长度送EAX! \2 c4 y) ^$ L% r2 R
004033B9 6A FF push -1
6 N4 ~+ P. v) y0 y8 o' v3 E004033BB 8D4C24 14 lea ecx,dword ptr ss:[esp+14] ; [esp+14]送ECX
$ d+ w; g. e8 Y0 y004033BF E8 46C50200 call qsr.0042F90A ; 注册码21到24位送ECX,长度送EAX8 O# C" a7 X7 g1 d
004033C4 8D8CB6 04AB0000 lea ecx,dword ptr ds:[esi+esi*4+AB04] ; [esi+esi*4+AB04]送ECX8 \' s+ ?' O# p0 L8 w2 k
004033CB 8D844E 34220000 lea eax,dword ptr ds:[esi+ecx*2+2234] ; [esi+ecx*2+2234]送EAX
# M* q+ F$ Y2 U+ L. m004033D2 B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX2 z3 N E+ F8 p2 Q$ D
004033D7 D1E0 shl eax,1 ; EAX左移1位. O7 {. K7 U7 l2 a3 o S
004033D9 99 cdq ; EAX扩展2 x% a8 k& A9 D: Z
004033DA F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
6 W3 E& G* M+ C- }! D8 R* S004033DC 3BFA cmp edi,edx ; EDX和注册码11到14位的16进制比较
6 t& u6 j0 }5 ^2 H* _" [' Y* R, l4 R004033DE 74 0B je short qsr.004033EB ; 相等就跳(必须跳)
3 l1 _: p* |1 X: i* X004033E0 C64424 3C 0A mov byte ptr ss:[esp+3C],0A+ c: C6 b; D2 ]( d$ ?
004033E5 8D4C24 10 lea ecx,dword ptr ss:[esp+10]" n! I. g- w+ I u3 ]8 A
004033E9 EB 2D jmp short qsr.00403418
1 C4 g1 K9 ]+ p; f& [4 D004033EB 8D83 CAEAFFFF lea eax,dword ptr ds:[ebx-1536] ; [ebx-1536]送EAX" _; _! `; ~" h/ b8 I; D! S5 M7 H: R
004033F1 81C3 E2090000 add ebx,9E2 ; 16到19位注册码16进制加9E2
; a/ R- S; d* w004033F7 99 cdq ; EBX扩展
9 g# l% B$ e5 x) r" x) X& s& p004033F8 33C2 xor eax,edx ; EAX和EDX取异或
?, v# X4 t) M004033FA B9 10270000 mov ecx,2710 ; 2710(10进制的10000)送ECX) q3 c0 w# D) x8 ~( P; U$ ]
004033FF 2BC2 sub eax,edx ; EAX减去EDX
5 Q1 p/ a% W" g0 x3 A% R+ W1 d$ V00403401 C64424 3C 0A mov byte ptr ss:[esp+3C],0A ; 0A送[esp+3C]
0 m9 X2 u/ M) x& l! ~5 V00403406 0FAFC3 imul eax,ebx ; EAX乘以EBX# X( n Q+ O J0 S9 \- Z
00403409 99 cdq
! W$ s- R( P; J) s8 ^0040340A F7F9 idiv ecx ; EAX除以ECX,商在EAX中,余数在EDX中
J* I. U- P6 u8 X! ?( x0040340C 8D4C24 10 lea ecx,dword ptr ss:[esp+10] ; [esp+10]送ECX
4 k+ ~2 d8 f. I) e00403410 3BEA cmp ebp,edx ; 注册码最后4位和EDX比较
6 C! C# J! W8 R00403412 0F84 8D000000 je qsr.004034A5 ; 等就跳(必须跳); H! x( C4 ]( ?0 n t
00403418 E8 6EC00200 call qsr.0042F48B ;
, V: y, O! Z6 [- ?' W; J0040341D 8D4C24 14 lea ecx,dword ptr ss:[esp+14]$ I" f1 Q3 ^, d4 b: ]
00403421 C64424 3C 09 mov byte ptr ss:[esp+3C],9
/ S7 |8 s4 [5 ]1 `* _. p00403426 E8 60C00200 call qsr.0042F48B
4 W4 N# P4 |, X& m7 i0040342B 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
4 ~9 k( z o; t$ g0040342F C64424 3C 08 mov byte ptr ss:[esp+3C],8
+ c! ?0 P/ Z9 j) J5 s00403434 E8 52C00200 call qsr.0042F48B
" i9 n6 G' D( p5 c$ j00403439 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]! [% D. x$ w2 { k
0040343D C64424 3C 07 mov byte ptr ss:[esp+3C],70 ^' Y% v+ m2 i3 I( n, w0 J& ^& |
00403442 E8 44C00200 call qsr.0042F48B# Q% L0 R* Z2 `0 b- H- v; f
00403447 8D4C24 24 lea ecx,dword ptr ss:[esp+24]+ N7 P( T/ M% K9 x; G" g
0040344B C64424 3C 06 mov byte ptr ss:[esp+3C],6
' ^ T$ x# [0 `9 m00403450 E8 36C00200 call qsr.0042F48B* O7 n$ Q% S7 u u3 M
00403455 8D4C24 28 lea ecx,dword ptr ss:[esp+28]0 Z& w4 I) a2 g0 _: C! H b
00403459 C64424 3C 03 mov byte ptr ss:[esp+3C],38 @& O0 }2 o. R# X8 v
0040345E E8 28C00200 call qsr.0042F48B
+ U) A: x5 ~( B% B00403463 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
; v9 l% T$ J. s8 L+ \ P+ T" E/ O00403467 C64424 3C 02 mov byte ptr ss:[esp+3C],2
' P# `& i1 t6 l: B# C- I0040346C E8 1AC00200 call qsr.0042F48B
. V- N$ N3 |: l& q; P4 ?3 Y00403471 8D4C24 20 lea ecx,dword ptr ss:[esp+20]* a- L( c) }9 C: D( b' E- T
00403475 C64424 3C 01 mov byte ptr ss:[esp+3C],1
/ ]* {# P+ [3 ^0040347A E8 0CC00200 call qsr.0042F48B, D. i0 G, K0 o1 M$ r* w: ^% \4 R
0040347F 8D4C24 44 lea ecx,dword ptr ss:[esp+44]) [! |" e3 O' ~* W2 c
00403483 C64424 3C 00 mov byte ptr ss:[esp+3C],0
3 Z3 ^( E8 E1 G: n q6 V00403488 E8 FEBF0200 call qsr.0042F48B7 i) |. f! _3 [3 Y N' O. T7 x
0040348D 8D4C24 48 lea ecx,dword ptr ss:[esp+48]
* {3 Z- L4 [( A# ]1 D' q00403491 C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
4 a" V5 K( Z, ?00403499 E8 EDBF0200 call qsr.0042F48B
( ]4 D6 s# w5 U$ A* V- B+ }0040349E 32C0 xor al,al ; AL清09 W/ ]% B; p5 z* g9 C1 r/ n
004034A0 E9 88000000 jmp qsr.0040352D7 o! K N$ a, r. S( O; l8 _( x6 i
004034A5 E8 E1BF0200 call qsr.0042F48B //以上两处均跳则来到这里,F8下去~~~~~~~~/ W$ ?! Y) ~9 P) _# R4 P) ^. T
004034AA 8D4C24 14 lea ecx,dword ptr ss:[esp+14]/ n1 C: I8 o: p# i3 G/ ~
004034AE C64424 3C 09 mov byte ptr ss:[esp+3C],9
+ v( f9 m6 \0 v* w4 |004034B3 E8 D3BF0200 call qsr.0042F48B
& \- M0 t' h. p" i4 i' J004034B8 8D4C24 18 lea ecx,dword ptr ss:[esp+18]
4 [! l/ X0 Y5 P' E004034BC C64424 3C 08 mov byte ptr ss:[esp+3C],87 H2 W; \& m" l$ R, {- f8 O# L
004034C1 E8 C5BF0200 call qsr.0042F48B
4 K" x9 p1 ]1 c# g* S004034C6 8D4C24 1C lea ecx,dword ptr ss:[esp+1C]- O% r. u' e7 U9 s/ l5 A9 a" Y" L5 `1 H( A
004034CA C64424 3C 07 mov byte ptr ss:[esp+3C],7
( z% C, _/ U G3 d1 D* V004034CF E8 B7BF0200 call qsr.0042F48B
2 S) c, h c6 i# T; K1 k J004034D4 8D4C24 24 lea ecx,dword ptr ss:[esp+24]
& @/ F3 E! v/ t5 G004034D8 C64424 3C 06 mov byte ptr ss:[esp+3C],6
( c Y$ p+ {3 x1 L3 s8 x004034DD E8 A9BF0200 call qsr.0042F48B! m1 f$ \9 T* h0 z/ s9 V' x
004034E2 8D4C24 28 lea ecx,dword ptr ss:[esp+28]
! ^/ f. f2 n* u* W- x7 r! R! j# A004034E6 C64424 3C 03 mov byte ptr ss:[esp+3C],3; L! }3 }+ D' l/ X9 G7 _
004034EB E8 9BBF0200 call qsr.0042F48B' I9 I+ J1 E% r9 [
004034F0 8D4C24 2C lea ecx,dword ptr ss:[esp+2C]
- v D. S/ ?( F5 n004034F4 C64424 3C 02 mov byte ptr ss:[esp+3C],2
0 J* b; Y& R6 h" ~6 X004034F9 E8 8DBF0200 call qsr.0042F48B$ o1 ^ n' C( U- R" Z; ]- M, t
004034FE 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
" |' d7 e/ O/ q3 G- W8 r$ z7 b00403502 C64424 3C 01 mov byte ptr ss:[esp+3C],1
# N0 S# S/ b* ]2 e+ \- T00403507 E8 7FBF0200 call qsr.0042F48B
( f# w% H% V% ~: \5 ^$ l) Z0040350C 8D4C24 44 lea ecx,dword ptr ss:[esp+44]
! x. D- o8 f# `5 ^00403510 C64424 3C 00 mov byte ptr ss:[esp+3C],0
: [8 l+ n; r1 | e( @" w00403515 E8 71BF0200 call qsr.0042F48B
q7 f7 W7 h0 C8 ~0040351A 8D4C24 48 lea ecx,dword ptr ss:[esp+48]5 [# x8 N9 b+ ~( W- j7 l
0040351E C74424 3C FFFFF>mov dword ptr ss:[esp+3C],-1
4 [0 C2 U/ s5 Y& {9 G; [00403526 E8 60BF0200 call qsr.0042F48B
+ V$ p. t1 E6 C. O5 m% ?7 B8 g1 P" H0040352B B0 01 mov al,1
9 K1 p7 I; a5 t! [0040352D 8B4C24 34 mov ecx,dword ptr ss:[esp+34]
" s) K& o. T3 y9 b0 z00403531 5F pop edi
[) L7 f5 N* d. u* _( _00403532 5E pop esi
- m' l7 E" A/ k, u' L5 {00403533 5D pop ebp. |. l7 t, |8 \" w) p# B1 Q: l
00403534 5B pop ebx
- T5 h% j. s4 C' f00403535 64:890D 0000000>mov dword ptr fs:[0],ecx- V" t$ p" v) P' i5 L
0040353C 83C4 30 add esp,306 r3 e/ U0 \9 [! R/ S2 M
0040353F C2 0800 retn 8
. `& M2 _4 U5 b, [: _9 i& f" o2 q6 @--------------------------------------------------------------------------------
, j3 Q) G T! F4 G【破解总结】- j2 A1 _! W7 s- d) E" _7 V
用户名必须大于2,注册码必须为24位。注册码前4位由用户名决定,11到14位由6到9位决定,21到24由16到19位决定,5,10,15,20任意^-^
+ L; z% e+ U; x! m8 V+ K: L用户名:yijun
6 ?7 R, ]" \, g/ Y9 C3 n注册码:4893*7777*3726*7777*0529
' ]0 q% A$ r! n; w% V+ X5 d--------------------------------------------------------------------------------5 k/ }% f+ _- B; w0 d
【版权声明】 本文纯属技术交流, 转载请注明作者并保持文章的完整, 谢谢! |
|
狗仔卡
发表于 2006-8-28 11:03:29
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
抢沙发
显身卡