-
-
[讨论]不是吧....网站未备案
-
发表于: 2007-1-23 09:50
-
我用百度搜的。.
再问下.
用Stripper 2.11 RC2
脱Version: ASProtect 1.31 build 05.18 RC
脱掉后不能运行
脱壳日志..
stripper v2.11 rc2..
(c) by syd, 2002-2004..
21:52:30 - open vey.exe..
21:52:31 - starting d:\vey.exe..
Victim ImageBase - 00400000
Victim EntryPoint - 00001000
21:52:31 - unhandled break at 00ecc111..
21:52:32 - asprotect detected..
21:52:32 - loading modules..
21:52:32 - hooking modules..
0x00e80000 - module kernel32.dll export hooked..
0x00e90000 - module msvbvm60.dll export hooked..
0x00ea0000 - module user32.dll export hooked..
0x01130000 - module gdi32.dll export hooked..
0x01140000 - module advapi32.dll export hooked..
0x01150000 - module rpcrt4.dll export hooked..
0x01160000 - module ole32.dll export hooked..
0x01170000 - module msvcrt.dll export hooked..
0x01180000 - module oleaut32.dll export hooked..
0x01190000 - module imm32.dll export hooked..
0x011a0000 - module lpk.dll export hooked..
0x011b0000 - module usp10.dll export hooked..
0x011c0000 - module version.dll export hooked..
0x011d0000 - module wsock32.dll export hooked..
0x011e0000 - module ws2_32.dll export hooked..
0x011f0000 - module ws2help.dll export hooked..
0x01200000 - module uxtheme.dll export hooked..
21:52:32 - unhandled break at 00ecc111..
21:52:32 - unhandled break at 00ecc173..
21:52:32 - tracing..
21:52:32 - processing relocation..
21:52:32 - processing import..
Unrecognized function at address: 00ec3fbc
21:52:33 - comparing sections..
Difference at RVA: 000010e8 (.text), unpacked - 19 a0 00 66
Difference at RVA: 000010e8 (.text), presented - bc 3f ec 00
Original EntryPoint :00002520
21:52:33 - saving D:\_vey.exe..
21:52:33 - done..
听论坛里的skylly说
还有..
但。.具体怎么操作呢...
可不可以说的清楚点~~~.
我是个新手..不太懂.
再问下.
用Stripper 2.11 RC2
脱Version: ASProtect 1.31 build 05.18 RC
脱掉后不能运行
脱壳日志..
stripper v2.11 rc2..
(c) by syd, 2002-2004..
21:52:30 - open vey.exe..
21:52:31 - starting d:\vey.exe..
Victim ImageBase - 00400000
Victim EntryPoint - 00001000
21:52:31 - unhandled break at 00ecc111..
21:52:32 - asprotect detected..
21:52:32 - loading modules..
21:52:32 - hooking modules..
0x00e80000 - module kernel32.dll export hooked..
0x00e90000 - module msvbvm60.dll export hooked..
0x00ea0000 - module user32.dll export hooked..
0x01130000 - module gdi32.dll export hooked..
0x01140000 - module advapi32.dll export hooked..
0x01150000 - module rpcrt4.dll export hooked..
0x01160000 - module ole32.dll export hooked..
0x01170000 - module msvcrt.dll export hooked..
0x01180000 - module oleaut32.dll export hooked..
0x01190000 - module imm32.dll export hooked..
0x011a0000 - module lpk.dll export hooked..
0x011b0000 - module usp10.dll export hooked..
0x011c0000 - module version.dll export hooked..
0x011d0000 - module wsock32.dll export hooked..
0x011e0000 - module ws2_32.dll export hooked..
0x011f0000 - module ws2help.dll export hooked..
0x01200000 - module uxtheme.dll export hooked..
21:52:32 - unhandled break at 00ecc111..
21:52:32 - unhandled break at 00ecc173..
21:52:32 - tracing..
21:52:32 - processing relocation..
21:52:32 - processing import..
Unrecognized function at address: 00ec3fbc
21:52:33 - comparing sections..
Difference at RVA: 000010e8 (.text), unpacked - 19 a0 00 66
Difference at RVA: 000010e8 (.text), presented - bc 3f ec 00
Original EntryPoint :00002520
21:52:33 - saving D:\_vey.exe..
21:52:33 - done..
听论坛里的skylly说
把RVA 10E8处改一下就可以了。
还有..
最初由 笨笨雄 发布
自己调试。。。。
改RVA可以用WINHEX。。
但。.具体怎么操作呢...
可不可以说的清楚点~~~.
我是个新手..不太懂.
[培训]内核驱动高级班,冲击BAT一流互联网大厂工作,每周日13:00-18:00直播授课
