-
-
[旧帖] [求助]请问我应该从何开始 0.00雪花
-
发表于: 2008-2-27 19:52
-
请问我应该从何开始 OD查到问题在00411D20
如果我要加入新的数组,如150,158杂办?
从哪加杂加 ?加入后其效果和以有的139....159一样就OK了。。哪位高人可否指点一二小弟不胜感激。。
00411D1B B9 07000000 mov ecx,7
00411D20 BE 30514300 mov esi,call.00435130 ; 134,135,136,137,138,139,159
00411D25 8DBC24 B40100>lea edi,dword ptr ss:[esp+1B4]
00411D2C 6A 2C push 2C
00411D2E 8D8424 B80100>lea eax,dword ptr ss:[esp+1B8]
00411D35 52 push edx
00411D36 50 push eax
00411D37 F3:A5 rep movs dword ptr es:[edi],dword >
00411D39 C605 7C054E00>mov byte ptr ds:[4E057C],0
00411D40 C605 51064E00>mov byte ptr ds:[4E0651],0
00411D47 892D 4C064E00 mov dword ptr ds:[4E064C],ebp
00411D4D 892D 44064E00 mov dword ptr ds:[4E0644],ebp
00411D53 892D 9C7F8600 mov dword ptr ds:[867F9C],ebp
00411D59 892D 2C064E00 mov dword ptr ds:[4E062C],ebp
00411D5F 892D 30064E00 mov dword ptr ds:[4E0630],ebp
00411D65 892D 34064E00 mov dword ptr ds:[4E0634],ebp
00411D6B 892D 44054E00 mov dword ptr ds:[4E0544],ebp
00411D71 892D 38054E00 mov dword ptr ds:[4E0538],ebp
00411D77 892D 2C054E00 mov dword ptr ds:[4E052C],ebp
00411D7D C705 9C314300>mov dword ptr ds:[43319C],4
00411D87 892D 3C064E00 mov dword ptr ds:[4E063C],ebp
00411D8D E8 DEFDFEFF call call.00401B70
00411D92 83C4 10 add esp,10
00411D95 3BC5 cmp eax,ebp
00411D97 A3 B0739E00 mov dword ptr ds:[9E73B0],eax
00411D9C 7E 3D jle short call.00411DDB
00411D9E BB 20609F00 mov ebx,call.009F6020
00411DA3 8D5424 1C lea edx,dword ptr ss:[esp+1C]
00411DA7 894424 10 mov dword ptr ss:[esp+10],eax
00411DAB 8BFA mov edi,edx
00411DAD 83C9 FF or ecx,FFFFFFFF
00411DB0 33C0 xor eax,eax
00411DB2 83C2 14 add edx,14
00411DB5 F2:AE repne scas byte ptr es:[edi]
00411DB7 F7D1 not ecx
00411DB9 2BF9 sub edi,ecx
00411DBB 8BC1 mov eax,ecx
00411DBD 8BF7 mov esi,edi
00411DBF 8BFB mov edi,ebx
00411DC1 83C3 04 add ebx,4
00411DC4 C1E9 02 shr ecx,2
00411DC7 F3:A5 rep movs dword ptr es:[edi],dword >
00411DC9 8BC8 mov ecx,eax
00411DCB 8B4424 10 mov eax,dword ptr ss:[esp+10]
00411DCF 83E1 03 and ecx,3
00411DD2 48 dec eax
00411DD3 F3:A4 rep movs byte ptr es:[edi],byte pt>
00411DD5 894424 10 mov dword ptr ss:[esp+10],eax
00411DD9 ^ 75 D0 jnz short call.00411DAB
00411DDB B9 05000000 mov ecx,5
00411DE0 BE 1C514300 mov esi,call.0043511C ; 130,131,132,133,153
00411DE5 8DBC24 B00100>lea edi,dword ptr ss:[esp+1B0]
00411DEC 6A 14 push 14
00411DEE F3:A5 rep movs dword ptr es:[edi],dword >
00411DF0 8D4C24 20 lea ecx,dword ptr ss:[esp+20]
00411DF4 6A 2C push 2C
00411DF6 8D9424 B80100>lea edx,dword ptr ss:[esp+1B8]
00411DFD 51 push ecx
00411DFE 52 push edx
00411DFF E8 6CFDFEFF call call.00401B70
00411E04 83C4 10 add esp,10
00411E07 3BC5 cmp eax,ebp
00411E09 A3 D85E5A00 mov dword ptr ds:[5A5ED8],eax
00411E0E 7E 3D jle short call.00411E4D
00411E10 BB 80739E00 mov ebx,call.009E7380
00411E15 8D5424 1C lea edx,dword ptr ss:[esp+1C]
00411E19 894424 10 mov dword ptr ss:[esp+10],eax
00411E1D 8BFA mov edi,edx
00411E1F 83C9 FF or ecx,FFFFFFFF
00411E22 33C0 xor eax,eax
00411E24 83C2 14 add edx,14
00411E27 F2:AE repne scas byte ptr es:[edi]
00411E29 F7D1 not ecx
00411E2B 2BF9 sub edi,ecx
00411E2D 8BC1 mov eax,ecx
00411E2F 8BF7 mov esi,edi
00411E31 8BFB mov edi,ebx
00411E33 83C3 04 add ebx,4
00411E36 C1E9 02 shr ecx,2
00411E39 F3:A5 rep movs dword ptr es:[edi],dword >
00411E3B 8BC8 mov ecx,eax
00411E3D 8B4424 10 mov eax,dword ptr ss:[esp+10]
00411E41 83E1 03 and ecx,3
00411E44 48 dec eax
00411E45 F3:A4 rep movs byte ptr es:[edi],byte pt>
00411E47 894424 10 mov dword ptr ss:[esp+10],eax
[培训]内核驱动高级班,冲击BAT一流互联网大厂工作,每周日13:00-18:00直播授课
|
|
|---|---|
|
|
|
|
|
能说的详细点吗
 我是初学找到 00435130怎么作呢00435130 3133 xor dword ptr ds:[ebx],esi 00435132 34 2C xor al,2C 00435134 3133 xor dword ptr ds:[ebx],esi 00435136 35 2C313336 xor eax,3633312C 0043513B 2C 31 sub al,31 0043513D 3337 xor esi,dword ptr ds:[edi] 0043513F 2C 31 sub al,31 00435141 3338 xor edi,dword ptr ds:[eax] 00435143 2C 31 sub al,31 00435145 3339 xor edi,dword ptr ds:[ecx] 00435147 2C 31 sub al,31 00435149 35 39003132 xor eax,32310039 0043514E 333435 36000052 xor esi,dword ptr ds:[esi+52000036> 00435155 65:61 popad 00435157 64:4D dec ebp 00435159 73 69 jnb short 004351C4 0043515B 0043 68 add byte ptr ds:[ebx+68],al 0043515E 61 popad 0043515F 6E outs dx,byte ptr es:[edi] 00435160 6E outs dx,byte ptr es:[edi] 00435161 43 inc ebx 00435162 6F outs dx,dword ptr es:[edi] 00435163 6E outs dx,byte ptr es:[edi] 00435164 6E outs dx,byte ptr es:[edi] |
|
|
我该杂办呀大哥们帮我说详细点好吗
|
|
|
没人帮我看下吗
|
