|
[求助]这是什么壳用sod也不能调试
004017E0 /$ 57 push edi 004017E1 |. E8 91EB1300 call dumped.00540377 004017E6 |. D4 52 aam 0x52 004017E8 |. E8 CE930700 call dumped.0047ABBB 004017ED |. 6A 00 push 0x0 004017EF |. 68 80000000 push 0x80 004017F4 |. 6A 03 push 0x3 004017F6 |. 6A 00 push 0x0 004017F8 |. 6A 03 push 0x3 004017FA |. 68 000000C0 push 0xC0000000 004017FF |. 68 BC584400 push dumped.004458BC ; \\.\SIWVID 00401804 |. FFD7 call edi 00401806 |. 83F8 FF cmp eax,-0x1 00401809 |. 74 0B je short dumped.00401816 0040180B |. 50 push eax 0040180C |. FF15 28504400 call dword ptr ds:[0x445028] ; kernel32.7C809BE7 00401812 |. B0 01 mov al,0x1 00401814 |. 5F pop edi 00401815 |. C3 retn 00401816 |> 56 push esi 00401817 |. 8B35 28504400 mov esi,dword ptr ds:[0x445028] ; kernel32.7C809BE7 0040181D |. 6A FF push -0x1 0040181F |. FFD6 call esi 00401821 |. 6A 00 push 0x0 00401823 |. 68 80000000 push 0x80 00401828 |. 6A 03 push 0x3 0040182A |. 6A 00 push 0x0 0040182C |. 6A 03 push 0x3 0040182E |. 68 000000C0 push 0xC0000000 00401833 |. 68 C8584400 push dumped.004458C8 ; \\.\NTICE 00401838 |. FFD7 call edi 0040183A |. 83F8 FF cmp eax,-0x1 0040183D |. 75 21 jnz short dumped.00401860 0040183F |. 50 push eax 00401840 |. FFD6 call esi 00401842 |. 6A 00 push 0x0 00401844 |. 68 80000000 push 0x80 00401849 |. 6A 03 push 0x3 0040184B |. 6A 00 push 0x0 0040184D |. 6A 03 push 0x3 0040184F |. 68 000000C0 push 0xC0000000 00401854 |. 68 D4584400 push dumped.004458D4 ; \\.\SICE 00401859 |. FFD7 call edi 0040185B |. 83F8 FF cmp eax,-0x1 0040185E |. 74 08 je short dumped.00401868 00401860 |> 50 push eax 00401861 |. FFD6 call esi 00401863 |. 5E pop esi 00401864 |. B0 01 mov al,0x1 00401866 |. 5F pop edi 00401867 |. C3 retn 00401868 |> 53 push ebx 00401869 |. 6A FF push -0x1 0040186B |. FFD6 call esi 0040186D |. 6A 00 push 0x0 0040186F |. 68 80000000 push 0x80 00401874 |. 6A 03 push 0x3 00401876 |. 6A 00 push 0x0 00401878 |. 6A 03 push 0x3 0040187A |. 68 000000C0 push 0xC0000000 0040187F |. 68 E0584400 push dumped.004458E0 ; \\.\SIWDEBUG 00401884 |. FFD7 call edi 00401886 |. 8BD8 mov ebx,eax 00401888 |. FF15 44504400 call dword ptr ds:[0x445044] ; ntdll.RtlGetLastWin32Error 0040188E |. 83F8 32 cmp eax,0x32 00401891 |. 53 push ebx 00401892 |. 0F84 F3000000 je dumped.0040198B 00401898 |. FFD6 call esi 0040189A |. 6A 00 push 0x0 0040189C |. 68 80000000 push 0x80 004018A1 |. 6A 03 push 0x3 004018A3 |. 6A 00 push 0x0 004018A5 |. 6A 03 push 0x3 004018A7 |. 68 000000C0 push 0xC0000000 004018AC |. 68 F0584400 push dumped.004458F0 ; \\.\REGVXD 004018B1 |. FFD7 call edi 004018B3 |. 83F8 FF cmp eax,-0x1 004018B6 |. 0F85 CE000000 jnz dumped.0040198A 004018BC |. 50 push eax 004018BD |. FFD6 call esi 004018BF |. 6A 00 push 0x0 004018C1 |. 68 80000000 push 0x80 004018C6 |. 6A 03 push 0x3 004018C8 |. 6A 00 push 0x0 004018CA |. 6A 03 push 0x3 004018CC |. 68 000000C0 push 0xC0000000 004018D1 |. 68 FC584400 push dumped.004458FC ; \\.\REGVXG 004018D6 |. FFD7 call edi 004018D8 |. 83F8 FF cmp eax,-0x1 004018DB |. 0F85 A9000000 jnz dumped.0040198A 004018E1 |. 50 push eax 004018E2 |. FFD6 call esi 004018E4 |. 6A 00 push 0x0 004018E6 |. 68 80000000 push 0x80 004018EB |. 6A 03 push 0x3 004018ED |. 6A 00 push 0x0 004018EF |. 6A 03 push 0x3 004018F1 |. 68 000000C0 push 0xC0000000 004018F6 |. 68 08594400 push dumped.00445908 ; \\.\REGSYS 004018FB |. FFD7 call edi 004018FD |. 83F8 FF cmp eax,-0x1 00401900 |. 0F85 84000000 jnz dumped.0040198A 00401906 |. 50 push eax 00401907 |. FFD6 call esi 00401909 |. 6A 00 push 0x0 0040190B |. 68 80000000 push 0x80 00401910 |. 6A 03 push 0x3 00401912 |. 6A 00 push 0x0 00401914 |. 6A 03 push 0x3 00401916 |. 68 000000C0 push 0xC0000000 0040191B |. 68 14594400 push dumped.00445914 ; \\.\FILEVXG\\.\FILEM 00401920 |. FFD7 call edi 00401922 |. 83F8 FF cmp eax,-0x1 00401925 |. 75 63 jnz short dumped.0040198A 00401927 |. 50 push eax 00401928 |. FFD6 call esi 0040192A |. 6A 00 push 0x0 0040192C |. 68 80000000 push 0x80 00401931 |. 6A 03 push 0x3 00401933 |. 6A 00 push 0x0 00401935 |. 6A 03 push 0x3 00401937 |. 68 000000C0 push 0xC0000000 0040193C |. 68 20594400 push dumped.00445920 ; \\.\FILEM 00401941 |. FFD7 call edi 00401943 |. 83F8 FF cmp eax,-0x1 00401946 |. 75 42 jnz short dumped.0040198A 00401948 |. 50 push eax 00401949 |. FFD6 call esi 0040194B |. 6A 00 push 0x0 0040194D |. 68 80000000 push 0x80 00401952 |. 6A 03 push 0x3 00401954 |. 6A 00 push 0x0 00401956 |. 6A 03 push 0x3 00401958 |. 68 000000C0 push 0xC0000000 0040195D |. 68 2C594400 push dumped.0044592C ; \\.\TRW\\.\ICEEXT 00401962 |. FFD7 call edi 00401964 |. 83F8 FF cmp eax,-0x1 00401967 |. 75 21 jnz short dumped.0040198A 00401969 |. 50 push eax 0040196A |. FFD6 call esi 0040196C |. 6A 00 push 0x0 0040196E |. 68 80000000 push 0x80 00401973 |. 6A 03 push 0x3 00401975 |. 6A 00 push 0x0 00401977 |. 6A 03 push 0x3 00401979 |. 68 000000C0 push 0xC0000000 0040197E |. 68 34594400 push dumped.00445934 ; \\.\ICEEXT 00401983 |. FFD7 call edi 00401985 |. 83F8 FF cmp eax,-0x1 00401988 |. 74 09 je short dumped.00401993 0040198A |> 50 push eax 0040198B |> FFD6 call esi 0040198D |. 5B pop ebx 0040198E |. 5E pop esi 0040198F |. B0 01 mov al,0x1 00401991 |. 5F pop edi 00401992 |. C3 retn 00401993 |> 6A FF push -0x1 00401995 |. FFD6 call esi 00401997 |. 5B pop ebx 00401998 |. 5E pop esi 00401999 |. 32C0 xor al,al 0040199B |. 5F pop edi 0040199C \. C3 retn |
|
[原创]Safengine Shielden 2.1.3.0 GetHWID全面分析
硬盘ID直接硬改就方便了 |
|
[讨论]发个加域天壳的记事本大家研究下
好马配好鞍,好壳配好狗! |
|
[求助]一个未知壳启动双进程OD不能调试
非常感谢!确实是那个壳 |
|
[求助]反编译一个DES类的算法时发现个 OFSUB 指令?
楼上对IDA真够精通的! // overflow flag of subtraction (x-y) template<class T, class U> int8 __OFSUB__(T x, U y) { if ( sizeof(T) < sizeof(U) ) { U x2 = x; int8 sx = __SETS__(x2); return (sx ^ __SETS__(y)) & (sx ^ __SETS__(x2-y)); } else { T y2 = y; int8 sx = __SETS__(x); return (sx ^ __SETS__(y2)) & (sx ^ __SETS__(x-y2)); } } |
|
[求助]反编译一个DES类的算法时发现个 OFSUB 指令?
从汇编看来是要执行一个cmp 比较的命令 |
|
怎样exel中数据修改后变色?
类似activatecells.font.color = (255.255.0) |
|
[分享]芯片的硬件破解资料
没弄过,下载来学习一下 |
|
[求助]Xenocode 2010 怎么用
谢谢,PETools是可以dump出要的内容,但是名字都是乱码,下一步要用什么工具纠正呢 |
操作理由
RANk
{{ user_info.golds == '' ? 0 : user_info.golds }}
雪币
{{ experience }}
课程经验
{{ score }}
学习收益
{{study_duration_fmt}}
学习时长
基本信息
荣誉称号:
{{ honorary_title }}
能力排名:
No.{{ rank_num }}
等 级:
LV{{ rank_lv-100 }}
活跃值:
在线值:
浏览人数:{{ visits }}
最近活跃:{{ last_active_time }}
注册时间:{{ user_info.create_date_jsonfmt }}
勋章
兑换勋章
证书
证书查询 >
能力值