肯请高手帮忙看下这段代码-付费问答-看雪-安全社区|安全招聘|kanxue.com

[旧帖] 肯请高手帮忙看下这段代码 0.00雪花

发表于: 2011-2-22 07:34 4630

[旧帖] 肯请高手帮忙看下这段代码 0.00雪花

陀螺

2011-2-22 07:34

4630

小弟读不懂这段代码，恳请高手帮忙看看

004946E0  /$  55            push    ebp
004946E1  |.  8BEC          mov     ebp, esp
004946E3  |.  B8 0C100000   mov     eax, 100C
004946E8  |.  E8 F3D70000   call    004A1EE0
004946ED  |.  A1 00A64B00   mov     eax, dword ptr [4BA600]
004946F2  |.  8945 F8       mov     dword ptr [ebp-8], eax
004946F5  |.  837D 10 00    cmp     dword ptr [ebp+10], 0
004946F9  |.  75 1B         jnz     short 00494716
004946FB  |.  68 00080000   push    800                              ; /Count = 800 (2048.)
00494700  |.  8D85 F8F7FFFF lea     eax, dword ptr [ebp-808]         ; |
00494706  |.  50            push    eax                              ; |Buffer
00494707  |.  68 C6000000   push    0C6                              ; |RsrcID = STRING "%s"
0049470C  |.  6A 00         push    0                                ; |hInst = NULL
0049470E  |.  FF15 18F44A00 call    dword ptr [<&USER32.LoadStringA>>; \LoadStringA
00494714  |.  EB 18         jmp     short 0049472E
00494716  |>  68 00080000   push    800                              ; /Count = 800 (2048.)
0049471B  |.  8D8D F8F7FFFF lea     ecx, dword ptr [ebp-808]         ; |
00494721  |.  51            push    ecx                              ; |Buffer
00494722  |.  8B55 10       mov     edx, dword ptr [ebp+10]          ; |
00494725  |.  52            push    edx                              ; |RsrcID
00494726  |.  6A 00         push    0                                ; |hInst = NULL
00494728  |.  FF15 18F44A00 call    dword ptr [<&USER32.LoadStringA>>; \LoadStringA
0049472E  |>  8D45 14       lea     eax, dword ptr [ebp+14]
00494731  |.  8945 FC       mov     dword ptr [ebp-4], eax
00494734  |.  8B4D FC       mov     ecx, dword ptr [ebp-4]
00494737  |.  51            push    ecx
00494738  |.  8D95 F8F7FFFF lea     edx, dword ptr [ebp-808]
0049473E  |.  52            push    edx
0049473F  |.  8D85 F8EFFFFF lea     eax, dword ptr [ebp-1008]
00494745  |.  50            push    eax
00494746  |.  E8 50E50000   call    004A2C9B
0049474B  |.  83C4 0C       add     esp, 0C
0049474E  |.  C745 FC 00000>mov     dword ptr [ebp-4], 0
00494755  |.  8B4D 0C       mov     ecx, dword ptr [ebp+C]
00494758  |.  81C9 00200400 or      ecx, 42000
0049475E  |.  894D 0C       mov     dword ptr [ebp+C], ecx
00494761  |.  C745 08 00000>mov     dword ptr [ebp+8], 0
00494768  |.  E8 A3FEFFFF   call    00494610
0049476D  |.  E8 1E11F7FF   call    00405890
00494772  |.  8B55 0C       mov     edx, dword ptr [ebp+C]
00494775  |.  52            push    edx                              ; /Style
00494776  |.  68 3C054B00   push    004B053C                         ; |Title = "StoryBoard Quick"
0049477B  |.  8D85 F8EFFFFF lea     eax, dword ptr [ebp-1008]        ; |
00494781  |.  50            push    eax                              ; |Text
00494782  |.  8B4D 08       mov     ecx, dword ptr [ebp+8]           ; |
00494785  |.  51            push    ecx                              ; |hOwner
00494786  |.  FF15 D0F24A00 call    dword ptr [<&USER32.MessageBoxA>>; \MessageBoxA
0049478C  |.  8985 F4EFFFFF mov     dword ptr [ebp-100C], eax
00494792  |.  E8 5911F7FF   call    004058F0
00494797  |.  8B85 F4EFFFFF mov     eax, dword ptr [ebp-100C]
0049479D  |.  8B4D F8       mov     ecx, dword ptr [ebp-8]
004947A0  |.  E8 29BB0000   call    004A02CE
004947A5  |.  8BE5          mov     esp, ebp
004947A7  |.  5D            pop     ebp
004947A8  \.  C3            retn

[课程]Linux pwn 探索篇！

收藏・0

免费・0

支持

最新回复 (11)
stormxp 雪币： 107 活跃值： (25) 能力值： ( LV4，RANK：50 ) 在线值：发帖 8 回帖 69 粉丝 2 关注私信	stormxp 1 2 楼看了下，稍微加了下注释，许多子函数功能不知道，所以具体功能也无从得知，希望对你有所帮助 004946E0 /$ 55 push ebp 004946E1 \|. 8BEC mov ebp, esp //应该是VC或Dephi的开始标志 004946E3 \|. B8 0C100000 mov eax, 100C 004946E8 \|. E8 F3D70000 call 004A1EE0 //调用一个函数，功能是什么不知道 004946ED \|. A1 00A64B00 mov eax, dword ptr [4BA600] 004946F2 \|. 8945 F8 mov dword ptr [ebp-8], eax //上两句把一个全局变量放在一个局部变量里 004946F5 \|. 837D 10 00 cmp dword ptr [ebp+10], 0 //函数第四个参数与0进行比较 004946F9 \|. 75 1B jnz short 00494716 //不相等跳转，与下面结合就相当于一个if else语句 //如果不等于0调用下面一个LoadStringA，等于0调用上面一个 004946FB \|. 68 00080000 push 800 ; /Count = 800 (2048.) 00494700 \|. 8D85 F8F7FFFF lea eax, dword ptr [ebp-808] ; \| 00494706 \|. 50 push eax ; \|Buffer 00494707 \|. 68 C6000000 push 0C6 ; \|RsrcID = STRING "%s" 0049470C \|. 6A 00 push 0 ; \|hInst = NULL 0049470E \|. FF15 18F44A00 call dword ptr [<&USER32.LoadStringA>>; \LoadStringA 00494714 \|. EB 18 jmp short 0049472E 00494716 \|> 68 00080000 push 800 ; /Count = 800 (2048.) 0049471B \|. 8D8D F8F7FFFF lea ecx, dword ptr [ebp-808] ; \| 00494721 \|. 51 push ecx ; \|Buffer 00494722 \|. 8B55 10 mov edx, dword ptr [ebp+10] ; \| 00494725 \|. 52 push edx ; \|RsrcID 00494726 \|. 6A 00 push 0 ; \|hInst = NULL 00494728 \|. FF15 18F44A00 call dword ptr [<&USER32.LoadStringA>>; \LoadStringA 0049472E \|> 8D45 14 lea eax, dword ptr [ebp+14] 00494731 \|. 8945 FC mov dword ptr [ebp-4], eax //函数第五个参数放在第一个局部变量里 00494734 \|. 8B4D FC mov ecx, dword ptr [ebp-4] 00494737 \|. 51 push ecx 00494738 \|. 8D95 F8F7FFFF lea edx, dword ptr [ebp-808] 0049473E \|. 52 push edx 0049473F \|. 8D85 F8EFFFFF lea eax, dword ptr [ebp-1008] 00494745 \|. 50 push eax 00494746 \|. E8 50E50000 call 004A2C9B //调用函数，参数有三：本函数第五个参数，ebp-808，ebp-1008 0049474B \|. 83C4 0C add esp, 0C //恢复堆栈 0049474E \|. C745 FC 00000>mov dword ptr [ebp-4], 0 //第一个局部变量清0 00494755 \|. 8B4D 0C mov ecx, dword ptr [ebp+C] //函数第三个参数放在ecx中 00494758 \|. 81C9 00200400 or ecx, 42000 //与42000进行或操作 0049475E \|. 894D 0C mov dword ptr [ebp+C], ecx //再放回去 00494761 \|. C745 08 00000>mov dword ptr [ebp+8], 0 //本函数第二个参数清0 00494768 \|. E8 A3FEFFFF call 00494610 //调用两个子函数 0049476D \|. E8 1E11F7FF call 00405890 00494772 \|. 8B55 0C mov edx, dword ptr [ebp+C] 00494775 \|. 52 push edx ; /Style 00494776 \|. 68 3C054B00 push 004B053C ; \|Title = "StoryBoard Quick" 0049477B \|. 8D85 F8EFFFFF lea eax, dword ptr [ebp-1008] ; \| 00494781 \|. 50 push eax ; \|Text 00494782 \|. 8B4D 08 mov ecx, dword ptr [ebp+8] ; \| 00494785 \|. 51 push ecx ; \|hOwner 00494786 \|. FF15 D0F24A00 call dword ptr [<&USER32.MessageBoxA>>; \MessageBoxA //以上为传参数，调用MessageBox 0049478C \|. 8985 F4EFFFFF mov dword ptr [ebp-100C], eax //返回值放在[ebp-100C]中 00494792 \|. E8 5911F7FF call 004058F0 //调用子函数 00494797 \|. 8B85 F4EFFFFF mov eax, dword ptr [ebp-100C] 0049479D \|. 8B4D F8 mov ecx, dword ptr [ebp-8] 004947A0 \|. E8 29BB0000 call 004A02CE //寄存器传参，调用子函数 004947A5 \|. 8BE5 mov esp, ebp 004947A7 \|. 5D pop ebp 004947A8 \. C3 retn 2011-2-22 12:14 0
陀螺雪币： 172 活跃值： (10) 能力值： ( LV2，RANK：10 ) 在线值：发帖 1 回帖 12 粉丝 0 关注私信	陀螺 3 楼谢谢，剩下的代码在这，能再帮忙看看哪里可以跳过对话框 004A1EE0 /$ 3D 00100000 cmp eax, 1000 004A1EE5 \|. 73 0E jnb short 004A1EF5 004A1EE7 \|. F7D8 neg eax 004A1EE9 \|. 03C4 add eax, esp 004A1EEB \|. 83C0 04 add eax, 4 004A1EEE \|. 8500 test dword ptr [eax], eax 004A1EF0 \|. 94 xchg eax, esp 004A1EF1 \|. 8B00 mov eax, dword ptr [eax] 004A1EF3 \|. 50 push eax 004A1EF4 \|. C3 retn 004A1EF5 \|> 51 push ecx 004A1EF6 \|. 8D4C24 08 lea ecx, dword ptr [esp+8] 004A1EFA \|> 81E9 00100000 sub ecx, 1000 004A1F00 \|. 2D 00100000 sub eax, 1000 004A1F05 \|. 8501 test dword ptr [ecx], eax 004A1F07 \|. 3D 00100000 cmp eax, 1000 004A1F0C \|.^ 73 EC jnb short 004A1EFA 004A1F0E \|. 2BC8 sub ecx, eax 004A1F10 \|. 8BC4 mov eax, esp 004A1F12 \|. 8501 test dword ptr [ecx], eax 004A1F14 \|. 8BE1 mov esp, ecx 004A1F16 \|. 8B08 mov ecx, dword ptr [eax] 004A1F18 \|. 8B40 04 mov eax, dword ptr [eax+4] 004A1F1B \|. 50 push eax 004A1F1C \. C3 retn 77D2C908 > 8BFF mov edi, edi 77D2C90A 55 push ebp 77D2C90B 8BEC mov ebp, esp 77D2C90D 53 push ebx 77D2C90E 57 push edi 77D2C90F 33DB xor ebx, ebx 77D2C911 53 push ebx 77D2C912 53 push ebx 77D2C913 8D45 0C lea eax, dword ptr [ebp+C] 77D2C916 50 push eax 77D2C917 FF75 0C push dword ptr [ebp+C] 77D2C91A 33FF xor edi, edi 77D2C91C FF75 08 push dword ptr [ebp+8] 77D2C91F E8 69D4FEFF call 77D19D8D 77D2C924 3BC3 cmp eax, ebx 77D2C926 74 20 je short 77D2C948 77D2C928 56 push esi 77D2C929 8B75 14 mov esi, dword ptr [ebp+14] 77D2C92C 53 push ebx 77D2C92D 4E dec esi 77D2C92E 56 push esi 77D2C92F 8D4D 10 lea ecx, dword ptr [ebp+10] 77D2C932 51 push ecx 77D2C933 50 push eax 77D2C934 FF75 0C push dword ptr [ebp+C] 77D2C937 53 push ebx 77D2C938 E8 090B0000 call WCSToMBEx 77D2C93D 8BF8 mov edi, eax 77D2C93F 3BFE cmp edi, esi 77D2C941 0F8D BD6D0100 jge 77D43704 77D2C947 5E pop esi 77D2C948 8B45 10 mov eax, dword ptr [ebp+10] 77D2C94B 881C07 mov byte ptr [edi+eax], bl 77D2C94E 8BC7 mov eax, edi 77D2C950 5F pop edi 77D2C951 5B pop ebx 77D2C952 5D pop ebp 77D2C953 C2 1000 retn 10 004A2C9B /$ 55 push ebp 004A2C9C \|. 8BEC mov ebp, esp 004A2C9E \|. 83EC 20 sub esp, 20 004A2CA1 \|. 56 push esi 004A2CA2 \|. 8B75 08 mov esi, dword ptr [ebp+8] 004A2CA5 \|. 57 push edi 004A2CA6 \|. FF75 10 push dword ptr [ebp+10] 004A2CA9 \|. 8D45 E0 lea eax, dword ptr [ebp-20] 004A2CAC \|. FF75 0C push dword ptr [ebp+C] 004A2CAF \|. C745 E4 FFFFF>mov dword ptr [ebp-1C], 7FFFFFFF 004A2CB6 \|. 50 push eax 004A2CB7 \|. C745 EC 42000>mov dword ptr [ebp-14], 42 004A2CBE \|. 8975 E8 mov dword ptr [ebp-18], esi 004A2CC1 \|. 8975 E0 mov dword ptr [ebp-20], esi 004A2CC4 \|. E8 611B0000 call 004A482A 004A2CC9 \|. 83C4 0C add esp, 0C 004A2CCC \|. 85F6 test esi, esi 004A2CCE \|. 8BF8 mov edi, eax 004A2CD0 \|. 74 1A je short 004A2CEC 004A2CD2 \|. FF4D E4 dec dword ptr [ebp-1C] 004A2CD5 \|. 78 08 js short 004A2CDF 004A2CD7 \|. 8B45 E0 mov eax, dword ptr [ebp-20] 004A2CDA \|. C600 00 mov byte ptr [eax], 0 004A2CDD \|. EB 0D jmp short 004A2CEC 004A2CDF \|> 8D45 E0 lea eax, dword ptr [ebp-20] 004A2CE2 \|. 50 push eax 004A2CE3 \|. 6A 00 push 0 004A2CE5 \|. E8 99190000 call 004A4683 004A2CEA \|. 59 pop ecx 004A2CEB \|. 59 pop ecx 004A2CEC \|> 8BC7 mov eax, edi 004A2CEE \|. 5F pop edi 004A2CEF \|. 5E pop esi 004A2CF0 \|. C9 leave 004A2CF1 \. C3 retn 00494610 /$ 55 push ebp 00494611 \|. 8BEC mov ebp, esp 00494613 \|. 51 push ecx 00494614 \|. 6A 00 push 0 00494616 \|. 6A 00 push 0 00494618 \|. E8 03350000 call 00497B20 0049461D \|. 83C4 08 add esp, 8 00494620 \|. 8945 FC mov dword ptr [ebp-4], eax 00494623 \|. 837D FC 00 cmp dword ptr [ebp-4], 0 00494627 \|. 74 21 je short 0049464A 00494629 \|. 8B45 FC mov eax, dword ptr [ebp-4] 0049462C \|. 50 push eax ; /hWnd 0049462D \|. FF15 C0F24A00 call dword ptr [<&USER32.IsWindow>] ; \IsWindow 00494633 \|. 85C0 test eax, eax 00494635 \|. 74 13 je short 0049464A 00494637 \|. 6A 00 push 0 ; /lParam = 0 00494639 \|. 6A 00 push 0 ; \|wParam = 0 0049463B \|. 68 05800000 push 8005 ; \|Message = MSG(8005) 00494640 \|. 8B4D FC mov ecx, dword ptr [ebp-4] ; \| 00494643 \|. 51 push ecx ; \|hWnd 00494644 \|. FF15 10F44A00 call dword ptr [<&USER32.SendMessageA>; \SendMessageA 0049464A \|> 8BE5 mov esp, ebp 0049464C \|. 5D pop ebp 0049464D \. C3 retn 00405890 /$ 55 push ebp 00405891 \|. 8BEC mov ebp, esp 00405893 \|. 6A 10 push 10 00405895 \|. 6A FF push -1 00405897 \|. 68 05800000 push 8005 0040589C \|. 6A 00 push 0 0040589E \|. E8 CDB40100 call 00420D70 004058A3 \|. 83C4 10 add esp, 10 004058A6 \|. 5D pop ebp 004058A7 \. C3 retn 77D507EA > 8BFF mov edi, edi 77D507EC 55 push ebp 77D507ED 8BEC mov ebp, esp 77D507EF 833D BC14D777 0>cmp dword ptr [77D714BC], 0 77D507F6 74 24 je short 77D5081C 77D507F8 64:A1 18000000 mov eax, dword ptr fs:[18] 77D507FE 6A 00 push 0 77D50800 FF70 24 push dword ptr [eax+24] 77D50803 68 241BD777 push 77D71B24 77D50808 FF15 C412D177 call dword ptr [<&KERNEL32.Interlocke>; kernel32.InterlockedCompareExchange 77D5080E 85C0 test eax, eax 77D50810 75 0A jnz short 77D5081C 77D50812 C705 201BD777 0>mov dword ptr [77D71B20], 1 77D5081C 6A 00 push 0 77D5081E FF75 14 push dword ptr [ebp+14] 77D50821 FF75 10 push dword ptr [ebp+10] 77D50824 FF75 0C push dword ptr [ebp+C] 77D50827 FF75 08 push dword ptr [ebp+8] 77D5082A E8 2D000000 call MessageBoxExA ///调用对话框Please enter your registration code. 77D5082F 5D pop ebp 77D50830 C2 1000 retn 10 004058F0 /$ 55 push ebp 004058F1 \|. 8BEC mov ebp, esp 004058F3 \|. 6A 20 push 20 004058F5 \|. 6A FF push -1 004058F7 \|. 68 05800000 push 8005 004058FC \|. 6A 00 push 0 004058FE \|. E8 6DB40100 call 00420D70 00405903 \|. 83C4 10 add esp, 10 00405906 \|. 5D pop ebp 00405907 \. C3 retn 004A02CE $ 3B0D 00A64B00 cmp ecx, dword ptr [4BA600] 004A02D4 . 75 01 jnz short 004A02D7 004A02D6 . C3 retn 2011-2-23 22:06 0
stormxp 雪币： 107 活跃值： (25) 能力值： ( LV4，RANK：50 ) 在线值：发帖 8 回帖 69 粉丝 2 关注私信	stormxp 1 4 楼我晕了，把源文件给我吧，有源文件就好分析了，这样没法看 2011-2-24 13:24 0
广海混沌雪币： 220 活跃值： (15) 能力值： ( LV2，RANK：10 ) 在线值：发帖 7 回帖 272 粉丝 1 关注私信	广海混沌 5 楼哈哈，确实让人有些无奈。 2011-2-24 13:40 0
陀螺雪币： 172 活跃值： (10) 能力值： ( LV2，RANK：10 ) 在线值：发帖 1 回帖 12 粉丝 0 关注私信	陀螺 6 楼行，但是怎样才能发给你呢 2011-2-25 06:40 0
陀螺雪币： 172 活跃值： (10) 能力值： ( LV2，RANK：10 ) 在线值：发帖 1 回帖 12 粉丝 0 关注私信	陀螺 7 楼这次我把断点放在注册框出来的前面了， 0046B370 /$ 55 push ebp 0046B371 \|. 8BEC mov ebp, esp 0046B373 \|. 83EC 30 sub esp, 30 0046B376 \|. C745 D0 00000>mov dword ptr [ebp-30], 0 0046B37D \|. C745 F4 00000>mov dword ptr [ebp-C], 0 0046B384 \|. C745 FC 00000>mov dword ptr [ebp-4], 0 0046B38B \|. C745 F8 00000>mov dword ptr [ebp-8], 0 0046B392 \|. 6A 01 push 1 0046B394 \|. FF15 68F44A00 call dword ptr [<&WINMM.timeBeginPeri>; WINMM.timeBeginPeriod 0046B39A \|. 68 93000000 push 93 ; /TableName = 93 0046B39F \|. 8B45 08 mov eax, dword ptr [ebp+8] ; \| 0046B3A2 \|. 50 push eax ; \|hInst 0046B3A3 \|. FF15 9CF34A00 call dword ptr [<&USER32.LoadAccelera>; \LoadAcceleratorsA 0046B3A9 \|. 8945 FC mov dword ptr [ebp-4], eax 0046B3AC \|. E8 6F0B0000 call 0046BF20 0046B3B1 \|. 8945 F4 mov dword ptr [ebp-C], eax 0046B3B4 \|. E8 770B0000 call 0046BF30 0046B3B9 \|. 8945 D0 mov dword ptr [ebp-30], eax 0046B3BC \|> 6A 00 /push 0 ; /MsgFilterMax = 0 0046B3BE \|. 6A 00 \|push 0 ; \|MsgFilterMin = 0 0046B3C0 \|. 6A 00 \|push 0 ; \|hWnd = NULL 0046B3C2 \|. 8D4D D8 \|lea ecx, dword ptr [ebp-28] ; \| 0046B3C5 \|. 51 \|push ecx ; \|pMsg 0046B3C6 \|. FF15 98F34A00 \|call dword ptr [<&USER32.GetMessageA>; \GetMessageA 0046B3CC \|. 8945 D4 \|mov dword ptr [ebp-2C], eax 0046B3CF \|. 837D D4 FF \|cmp dword ptr [ebp-2C], -1 0046B3D3 75 43 \|jnz short 0046B418 ; 跳了 0046B3D5 \|. 6A 00 \|push 0 ; /Arguments = NULL 0046B3D7 \|. 6A 00 \|push 0 ; \|BufSize = 0 0046B3D9 \|. 8D55 F8 \|lea edx, dword ptr [ebp-8] ; \| 0046B3DC \|. 52 \|push edx ; \|Buffer 0046B3DD \|. 68 00040000 \|push 400 ; \|LanguageId = 400 (LANG_NEUTRAL) 0046B3E2 \|. FF15 58F14A00 \|call dword ptr [<&KERNEL32.GetLastEr>; \|[GetLastError 0046B3E8 \|. 50 \|push eax ; \|MessageId 0046B3E9 \|. 6A 00 \|push 0 ; \|pSource = NULL 0046B3EB \|. 68 00130000 \|push 1300 ; \|Flags = ALLOCATE_BUFFER\|IGNORE_INSERTS\|FROM_SYSTEM\|0 0046B3F0 \|. FF15 80F14A00 \|call dword ptr [<&KERNEL32.FormatMes>; \FormatMessageA 0046B3F6 \|. 8945 D4 \|mov dword ptr [ebp-2C], eax 0046B3F9 \|. 837D D4 00 \|cmp dword ptr [ebp-2C], 0 0046B3FD \|. 74 17 \|je short 0046B416 0046B3FF \|. 837D F8 00 \|cmp dword ptr [ebp-8], 0 0046B403 \|. 74 11 \|je short 0046B416 0046B405 \|. 8B45 F8 \|mov eax, dword ptr [ebp-8] 0046B408 \|. 50 \|push eax ; /hMemory 0046B409 \|. FF15 C8F14A00 \|call dword ptr [<&KERNEL32.LocalFree>; \LocalFree 0046B40F \|. C745 F8 00000>\|mov dword ptr [ebp-8], 0 0046B416 \|> EB 42 \|jmp short 0046B45A 0046B418 \|> 837D D4 00 \|cmp dword ptr [ebp-2C], 0 0046B41C \|. 74 3C \|je short 0046B45A 0046B41E \|. 8D4D D8 \|lea ecx, dword ptr [ebp-28] 0046B421 \|. 51 \|push ecx ; /pMsg 0046B422 \|. 8B55 D0 \|mov edx, dword ptr [ebp-30] ; \| 0046B425 \|. 52 \|push edx ; \|hClient 0046B426 \|. FF15 94F34A00 \|call dword ptr [<&USER32.TranslateMD>; \TranslateMDISysAccel 0046B42C \|. 85C0 \|test eax, eax 0046B42E \|. 75 2A \|jnz short 0046B45A 0046B430 \|. 8D45 D8 \|lea eax, dword ptr [ebp-28] 0046B433 \|. 50 \|push eax ; /pMsg 0046B434 \|. 8B4D FC \|mov ecx, dword ptr [ebp-4] ; \| 0046B437 \|. 51 \|push ecx ; \|hAccel 0046B438 \|. 8B55 F4 \|mov edx, dword ptr [ebp-C] ; \| 0046B43B \|. 52 \|push edx ; \|hWnd 0046B43C \|. FF15 90F34A00 \|call dword ptr [<&USER32.TranslateAc>; \TranslateAcceleratorA 0046B442 \|. 85C0 \|test eax, eax 0046B444 \|. 75 14 \|jnz short 0046B45A 0046B446 \|. 8D45 D8 \|lea eax, dword ptr [ebp-28] 0046B449 \|. 50 \|push eax ; /pMsg 0046B44A \|. FF15 8CF34A00 \|call dword ptr [<&USER32.TranslateMe>; \TranslateMessage 0046B450 \|. 8D4D D8 \|lea ecx, dword ptr [ebp-28] 0046B453 \|. 51 \|push ecx ; /pMsg 0046B454 \|. FF15 88F34A00 \|call dword ptr [<&USER32.DispatchMes>; \DispatchMessageA 0046B45A \|> 837D D4 00 \|cmp dword ptr [ebp-2C], 0 0046B45E ^ 0F85 58FFFFFF \jnz 0046B3BC 0046B464 \|. 837D FC 00 cmp dword ptr [ebp-4], 0 0046B468 \|. 74 0A je short 0046B474 0046B46A \|. 8B55 FC mov edx, dword ptr [ebp-4] 0046B46D \|. 52 push edx ; /hAccel 0046B46E \|. FF15 84F34A00 call dword ptr [<&USER32.DestroyAccel>; \DestroyAcceleratorTable 0046B474 \|> 6A 01 push 1 0046B476 \|. FF15 64F44A00 call dword ptr [<&WINMM.timeEndPeriod>; WINMM.timeEndPeriod 0046B47C \|. 8BE5 mov esp, ebp 0046B47E \|. 5D pop ebp 0046B47F \. C3 retn 2011-2-25 08:13 0
陀螺雪币： 172 活跃值： (10) 能力值： ( LV2，RANK：10 ) 在线值：发帖 1 回帖 12 粉丝 0 关注私信	陀螺 8 楼 http://u.115.com/file/t29f32f3a9 原文件在这，恳请帮忙看看 2011-2-25 08:30 0
arttk 雪币： 200 活跃值： (51) 能力值： ( LV2，RANK：10 ) 在线值：发帖 10 回帖 43 粉丝 0 关注私信	arttk 9 楼确实很难看呀，呵呵 2011-2-25 09:32 0
arttk 雪币： 200 活跃值： (51) 能力值： ( LV2，RANK：10 ) 在线值：发帖 10 回帖 43 粉丝 0 关注私信	arttk 10 楼我是来学习的啊 2011-2-25 09:32 0
freefinder 雪币： 5 活跃值： (10) 能力值： ( LV2，RANK：10 ) 在线值：发帖 0 回帖 7 粉丝 0 关注私信	freefinder 11 楼小弟是来学习的,汇编才刚起步.可惜就毕业了.哎…… 2011-3-7 17:21 0
firfor 雪币： 122 活跃值： (46) 能力值： ( LV5，RANK：60 ) 在线值：发帖 13 回帖 73 粉丝 0 关注私信	firfor 1 12 楼你是故意做些代码反汇编来看吗。lz还真有心。 2011-3-7 23:59 0
	游客登录 \| 注册方可回帖回帖表情雪币赚取及消费高级回复

陀螺

发帖

回帖

RANK

关注

私信

他的文章

肯请高手帮忙看下这段代码 4631

关于我们

联系我们

企业服务

看雪公众号

最新回复 (11)
stormxp 雪币： 107 活跃值： (25) 能力值： ( LV4，RANK：50 ) 在线值：发帖 8 回帖 69 粉丝 2 关注私信	stormxp 1 2 楼看了下，稍微加了下注释，许多子函数功能不知道，所以具体功能也无从得知，希望对你有所帮助 004946E0 /$ 55 push ebp 004946E1 \|. 8BEC mov ebp, esp //应该是VC或Dephi的开始标志 004946E3 \|. B8 0C100000 mov eax, 100C 004946E8 \|. E8 F3D70000 call 004A1EE0 //调用一个函数，功能是什么不知道 004946ED \|. A1 00A64B00 mov eax, dword ptr [4BA600] 004946F2 \|. 8945 F8 mov dword ptr [ebp-8], eax //上两句把一个全局变量放在一个局部变量里 004946F5 \|. 837D 10 00 cmp dword ptr [ebp+10], 0 //函数第四个参数与0进行比较 004946F9 \|. 75 1B jnz short 00494716 //不相等跳转，与下面结合就相当于一个if else语句 //如果不等于0调用下面一个LoadStringA，等于0调用上面一个 004946FB \|. 68 00080000 push 800 ; /Count = 800 (2048.) 00494700 \|. 8D85 F8F7FFFF lea eax, dword ptr [ebp-808] ; \| 00494706 \|. 50 push eax ; \|Buffer 00494707 \|. 68 C6000000 push 0C6 ; \|RsrcID = STRING "%s" 0049470C \|. 6A 00 push 0 ; \|hInst = NULL 0049470E \|. FF15 18F44A00 call dword ptr [<&USER32.LoadStringA>>; \LoadStringA 00494714 \|. EB 18 jmp short 0049472E 00494716 \|> 68 00080000 push 800 ; /Count = 800 (2048.) 0049471B \|. 8D8D F8F7FFFF lea ecx, dword ptr [ebp-808] ; \| 00494721 \|. 51 push ecx ; \|Buffer 00494722 \|. 8B55 10 mov edx, dword ptr [ebp+10] ; \| 00494725 \|. 52 push edx ; \|RsrcID 00494726 \|. 6A 00 push 0 ; \|hInst = NULL 00494728 \|. FF15 18F44A00 call dword ptr [<&USER32.LoadStringA>>; \LoadStringA 0049472E \|> 8D45 14 lea eax, dword ptr [ebp+14] 00494731 \|. 8945 FC mov dword ptr [ebp-4], eax //函数第五个参数放在第一个局部变量里 00494734 \|. 8B4D FC mov ecx, dword ptr [ebp-4] 00494737 \|. 51 push ecx 00494738 \|. 8D95 F8F7FFFF lea edx, dword ptr [ebp-808] 0049473E \|. 52 push edx 0049473F \|. 8D85 F8EFFFFF lea eax, dword ptr [ebp-1008] 00494745 \|. 50 push eax 00494746 \|. E8 50E50000 call 004A2C9B //调用函数，参数有三：本函数第五个参数，ebp-808，ebp-1008 0049474B \|. 83C4 0C add esp, 0C //恢复堆栈 0049474E \|. C745 FC 00000>mov dword ptr [ebp-4], 0 //第一个局部变量清0 00494755 \|. 8B4D 0C mov ecx, dword ptr [ebp+C] //函数第三个参数放在ecx中 00494758 \|. 81C9 00200400 or ecx, 42000 //与42000进行或操作 0049475E \|. 894D 0C mov dword ptr [ebp+C], ecx //再放回去 00494761 \|. C745 08 00000>mov dword ptr [ebp+8], 0 //本函数第二个参数清0 00494768 \|. E8 A3FEFFFF call 00494610 //调用两个子函数 0049476D \|. E8 1E11F7FF call 00405890 00494772 \|. 8B55 0C mov edx, dword ptr [ebp+C] 00494775 \|. 52 push edx ; /Style 00494776 \|. 68 3C054B00 push 004B053C ; \|Title = "StoryBoard Quick" 0049477B \|. 8D85 F8EFFFFF lea eax, dword ptr [ebp-1008] ; \| 00494781 \|. 50 push eax ; \|Text 00494782 \|. 8B4D 08 mov ecx, dword ptr [ebp+8] ; \| 00494785 \|. 51 push ecx ; \|hOwner 00494786 \|. FF15 D0F24A00 call dword ptr [<&USER32.MessageBoxA>>; \MessageBoxA //以上为传参数，调用MessageBox 0049478C \|. 8985 F4EFFFFF mov dword ptr [ebp-100C], eax //返回值放在[ebp-100C]中 00494792 \|. E8 5911F7FF call 004058F0 //调用子函数 00494797 \|. 8B85 F4EFFFFF mov eax, dword ptr [ebp-100C] 0049479D \|. 8B4D F8 mov ecx, dword ptr [ebp-8] 004947A0 \|. E8 29BB0000 call 004A02CE //寄存器传参，调用子函数 004947A5 \|. 8BE5 mov esp, ebp 004947A7 \|. 5D pop ebp 004947A8 \. C3 retn 2011-2-22 12:14 0
陀螺雪币： 172 活跃值： (10) 能力值： ( LV2，RANK：10 ) 在线值：发帖 1 回帖 12 粉丝 0 关注私信	陀螺 3 楼谢谢，剩下的代码在这，能再帮忙看看哪里可以跳过对话框 004A1EE0 /$ 3D 00100000 cmp eax, 1000 004A1EE5 \|. 73 0E jnb short 004A1EF5 004A1EE7 \|. F7D8 neg eax 004A1EE9 \|. 03C4 add eax, esp 004A1EEB \|. 83C0 04 add eax, 4 004A1EEE \|. 8500 test dword ptr [eax], eax 004A1EF0 \|. 94 xchg eax, esp 004A1EF1 \|. 8B00 mov eax, dword ptr [eax] 004A1EF3 \|. 50 push eax 004A1EF4 \|. C3 retn 004A1EF5 \|> 51 push ecx 004A1EF6 \|. 8D4C24 08 lea ecx, dword ptr [esp+8] 004A1EFA \|> 81E9 00100000 sub ecx, 1000 004A1F00 \|. 2D 00100000 sub eax, 1000 004A1F05 \|. 8501 test dword ptr [ecx], eax 004A1F07 \|. 3D 00100000 cmp eax, 1000 004A1F0C \|.^ 73 EC jnb short 004A1EFA 004A1F0E \|. 2BC8 sub ecx, eax 004A1F10 \|. 8BC4 mov eax, esp 004A1F12 \|. 8501 test dword ptr [ecx], eax 004A1F14 \|. 8BE1 mov esp, ecx 004A1F16 \|. 8B08 mov ecx, dword ptr [eax] 004A1F18 \|. 8B40 04 mov eax, dword ptr [eax+4] 004A1F1B \|. 50 push eax 004A1F1C \. C3 retn 77D2C908 > 8BFF mov edi, edi 77D2C90A 55 push ebp 77D2C90B 8BEC mov ebp, esp 77D2C90D 53 push ebx 77D2C90E 57 push edi 77D2C90F 33DB xor ebx, ebx 77D2C911 53 push ebx 77D2C912 53 push ebx 77D2C913 8D45 0C lea eax, dword ptr [ebp+C] 77D2C916 50 push eax 77D2C917 FF75 0C push dword ptr [ebp+C] 77D2C91A 33FF xor edi, edi 77D2C91C FF75 08 push dword ptr [ebp+8] 77D2C91F E8 69D4FEFF call 77D19D8D 77D2C924 3BC3 cmp eax, ebx 77D2C926 74 20 je short 77D2C948 77D2C928 56 push esi 77D2C929 8B75 14 mov esi, dword ptr [ebp+14] 77D2C92C 53 push ebx 77D2C92D 4E dec esi 77D2C92E 56 push esi 77D2C92F 8D4D 10 lea ecx, dword ptr [ebp+10] 77D2C932 51 push ecx 77D2C933 50 push eax 77D2C934 FF75 0C push dword ptr [ebp+C] 77D2C937 53 push ebx 77D2C938 E8 090B0000 call WCSToMBEx 77D2C93D 8BF8 mov edi, eax 77D2C93F 3BFE cmp edi, esi 77D2C941 0F8D BD6D0100 jge 77D43704 77D2C947 5E pop esi 77D2C948 8B45 10 mov eax, dword ptr [ebp+10] 77D2C94B 881C07 mov byte ptr [edi+eax], bl 77D2C94E 8BC7 mov eax, edi 77D2C950 5F pop edi 77D2C951 5B pop ebx 77D2C952 5D pop ebp 77D2C953 C2 1000 retn 10 004A2C9B /$ 55 push ebp 004A2C9C \|. 8BEC mov ebp, esp 004A2C9E \|. 83EC 20 sub esp, 20 004A2CA1 \|. 56 push esi 004A2CA2 \|. 8B75 08 mov esi, dword ptr [ebp+8] 004A2CA5 \|. 57 push edi 004A2CA6 \|. FF75 10 push dword ptr [ebp+10] 004A2CA9 \|. 8D45 E0 lea eax, dword ptr [ebp-20] 004A2CAC \|. FF75 0C push dword ptr [ebp+C] 004A2CAF \|. C745 E4 FFFFF>mov dword ptr [ebp-1C], 7FFFFFFF 004A2CB6 \|. 50 push eax 004A2CB7 \|. C745 EC 42000>mov dword ptr [ebp-14], 42 004A2CBE \|. 8975 E8 mov dword ptr [ebp-18], esi 004A2CC1 \|. 8975 E0 mov dword ptr [ebp-20], esi 004A2CC4 \|. E8 611B0000 call 004A482A 004A2CC9 \|. 83C4 0C add esp, 0C 004A2CCC \|. 85F6 test esi, esi 004A2CCE \|. 8BF8 mov edi, eax 004A2CD0 \|. 74 1A je short 004A2CEC 004A2CD2 \|. FF4D E4 dec dword ptr [ebp-1C] 004A2CD5 \|. 78 08 js short 004A2CDF 004A2CD7 \|. 8B45 E0 mov eax, dword ptr [ebp-20] 004A2CDA \|. C600 00 mov byte ptr [eax], 0 004A2CDD \|. EB 0D jmp short 004A2CEC 004A2CDF \|> 8D45 E0 lea eax, dword ptr [ebp-20] 004A2CE2 \|. 50 push eax 004A2CE3 \|. 6A 00 push 0 004A2CE5 \|. E8 99190000 call 004A4683 004A2CEA \|. 59 pop ecx 004A2CEB \|. 59 pop ecx 004A2CEC \|> 8BC7 mov eax, edi 004A2CEE \|. 5F pop edi 004A2CEF \|. 5E pop esi 004A2CF0 \|. C9 leave 004A2CF1 \. C3 retn 00494610 /$ 55 push ebp 00494611 \|. 8BEC mov ebp, esp 00494613 \|. 51 push ecx 00494614 \|. 6A 00 push 0 00494616 \|. 6A 00 push 0 00494618 \|. E8 03350000 call 00497B20 0049461D \|. 83C4 08 add esp, 8 00494620 \|. 8945 FC mov dword ptr [ebp-4], eax 00494623 \|. 837D FC 00 cmp dword ptr [ebp-4], 0 00494627 \|. 74 21 je short 0049464A 00494629 \|. 8B45 FC mov eax, dword ptr [ebp-4] 0049462C \|. 50 push eax ; /hWnd 0049462D \|. FF15 C0F24A00 call dword ptr [<&USER32.IsWindow>] ; \IsWindow 00494633 \|. 85C0 test eax, eax 00494635 \|. 74 13 je short 0049464A 00494637 \|. 6A 00 push 0 ; /lParam = 0 00494639 \|. 6A 00 push 0 ; \|wParam = 0 0049463B \|. 68 05800000 push 8005 ; \|Message = MSG(8005) 00494640 \|. 8B4D FC mov ecx, dword ptr [ebp-4] ; \| 00494643 \|. 51 push ecx ; \|hWnd 00494644 \|. FF15 10F44A00 call dword ptr [<&USER32.SendMessageA>; \SendMessageA 0049464A \|> 8BE5 mov esp, ebp 0049464C \|. 5D pop ebp 0049464D \. C3 retn 00405890 /$ 55 push ebp 00405891 \|. 8BEC mov ebp, esp 00405893 \|. 6A 10 push 10 00405895 \|. 6A FF push -1 00405897 \|. 68 05800000 push 8005 0040589C \|. 6A 00 push 0 0040589E \|. E8 CDB40100 call 00420D70 004058A3 \|. 83C4 10 add esp, 10 004058A6 \|. 5D pop ebp 004058A7 \. C3 retn 77D507EA > 8BFF mov edi, edi 77D507EC 55 push ebp 77D507ED 8BEC mov ebp, esp 77D507EF 833D BC14D777 0>cmp dword ptr [77D714BC], 0 77D507F6 74 24 je short 77D5081C 77D507F8 64:A1 18000000 mov eax, dword ptr fs:[18] 77D507FE 6A 00 push 0 77D50800 FF70 24 push dword ptr [eax+24] 77D50803 68 241BD777 push 77D71B24 77D50808 FF15 C412D177 call dword ptr [<&KERNEL32.Interlocke>; kernel32.InterlockedCompareExchange 77D5080E 85C0 test eax, eax 77D50810 75 0A jnz short 77D5081C 77D50812 C705 201BD777 0>mov dword ptr [77D71B20], 1 77D5081C 6A 00 push 0 77D5081E FF75 14 push dword ptr [ebp+14] 77D50821 FF75 10 push dword ptr [ebp+10] 77D50824 FF75 0C push dword ptr [ebp+C] 77D50827 FF75 08 push dword ptr [ebp+8] 77D5082A E8 2D000000 call MessageBoxExA ///调用对话框Please enter your registration code. 77D5082F 5D pop ebp 77D50830 C2 1000 retn 10 004058F0 /$ 55 push ebp 004058F1 \|. 8BEC mov ebp, esp 004058F3 \|. 6A 20 push 20 004058F5 \|. 6A FF push -1 004058F7 \|. 68 05800000 push 8005 004058FC \|. 6A 00 push 0 004058FE \|. E8 6DB40100 call 00420D70 00405903 \|. 83C4 10 add esp, 10 00405906 \|. 5D pop ebp 00405907 \. C3 retn 004A02CE $ 3B0D 00A64B00 cmp ecx, dword ptr [4BA600] 004A02D4 . 75 01 jnz short 004A02D7 004A02D6 . C3 retn 2011-2-23 22:06 0
stormxp 雪币： 107 活跃值： (25) 能力值： ( LV4，RANK：50 ) 在线值：发帖 8 回帖 69 粉丝 2 关注私信	stormxp 1 4 楼我晕了，把源文件给我吧，有源文件就好分析了，这样没法看 2011-2-24 13:24 0
广海混沌雪币： 220 活跃值： (15) 能力值： ( LV2，RANK：10 ) 在线值：发帖 7 回帖 272 粉丝 1 关注私信	广海混沌 5 楼哈哈，确实让人有些无奈。 2011-2-24 13:40 0
陀螺雪币： 172 活跃值： (10) 能力值： ( LV2，RANK：10 ) 在线值：发帖 1 回帖 12 粉丝 0 关注私信	陀螺 6 楼行，但是怎样才能发给你呢 2011-2-25 06:40 0
陀螺雪币： 172 活跃值： (10) 能力值： ( LV2，RANK：10 ) 在线值：发帖 1 回帖 12 粉丝 0 关注私信	陀螺 7 楼这次我把断点放在注册框出来的前面了， 0046B370 /$ 55 push ebp 0046B371 \|. 8BEC mov ebp, esp 0046B373 \|. 83EC 30 sub esp, 30 0046B376 \|. C745 D0 00000>mov dword ptr [ebp-30], 0 0046B37D \|. C745 F4 00000>mov dword ptr [ebp-C], 0 0046B384 \|. C745 FC 00000>mov dword ptr [ebp-4], 0 0046B38B \|. C745 F8 00000>mov dword ptr [ebp-8], 0 0046B392 \|. 6A 01 push 1 0046B394 \|. FF15 68F44A00 call dword ptr [<&WINMM.timeBeginPeri>; WINMM.timeBeginPeriod 0046B39A \|. 68 93000000 push 93 ; /TableName = 93 0046B39F \|. 8B45 08 mov eax, dword ptr [ebp+8] ; \| 0046B3A2 \|. 50 push eax ; \|hInst 0046B3A3 \|. FF15 9CF34A00 call dword ptr [<&USER32.LoadAccelera>; \LoadAcceleratorsA 0046B3A9 \|. 8945 FC mov dword ptr [ebp-4], eax 0046B3AC \|. E8 6F0B0000 call 0046BF20 0046B3B1 \|. 8945 F4 mov dword ptr [ebp-C], eax 0046B3B4 \|. E8 770B0000 call 0046BF30 0046B3B9 \|. 8945 D0 mov dword ptr [ebp-30], eax 0046B3BC \|> 6A 00 /push 0 ; /MsgFilterMax = 0 0046B3BE \|. 6A 00 \|push 0 ; \|MsgFilterMin = 0 0046B3C0 \|. 6A 00 \|push 0 ; \|hWnd = NULL 0046B3C2 \|. 8D4D D8 \|lea ecx, dword ptr [ebp-28] ; \| 0046B3C5 \|. 51 \|push ecx ; \|pMsg 0046B3C6 \|. FF15 98F34A00 \|call dword ptr [<&USER32.GetMessageA>; \GetMessageA 0046B3CC \|. 8945 D4 \|mov dword ptr [ebp-2C], eax 0046B3CF \|. 837D D4 FF \|cmp dword ptr [ebp-2C], -1 0046B3D3 75 43 \|jnz short 0046B418 ; 跳了 0046B3D5 \|. 6A 00 \|push 0 ; /Arguments = NULL 0046B3D7 \|. 6A 00 \|push 0 ; \|BufSize = 0 0046B3D9 \|. 8D55 F8 \|lea edx, dword ptr [ebp-8] ; \| 0046B3DC \|. 52 \|push edx ; \|Buffer 0046B3DD \|. 68 00040000 \|push 400 ; \|LanguageId = 400 (LANG_NEUTRAL) 0046B3E2 \|. FF15 58F14A00 \|call dword ptr [<&KERNEL32.GetLastEr>; \|[GetLastError 0046B3E8 \|. 50 \|push eax ; \|MessageId 0046B3E9 \|. 6A 00 \|push 0 ; \|pSource = NULL 0046B3EB \|. 68 00130000 \|push 1300 ; \|Flags = ALLOCATE_BUFFER\|IGNORE_INSERTS\|FROM_SYSTEM\|0 0046B3F0 \|. FF15 80F14A00 \|call dword ptr [<&KERNEL32.FormatMes>; \FormatMessageA 0046B3F6 \|. 8945 D4 \|mov dword ptr [ebp-2C], eax 0046B3F9 \|. 837D D4 00 \|cmp dword ptr [ebp-2C], 0 0046B3FD \|. 74 17 \|je short 0046B416 0046B3FF \|. 837D F8 00 \|cmp dword ptr [ebp-8], 0 0046B403 \|. 74 11 \|je short 0046B416 0046B405 \|. 8B45 F8 \|mov eax, dword ptr [ebp-8] 0046B408 \|. 50 \|push eax ; /hMemory 0046B409 \|. FF15 C8F14A00 \|call dword ptr [<&KERNEL32.LocalFree>; \LocalFree 0046B40F \|. C745 F8 00000>\|mov dword ptr [ebp-8], 0 0046B416 \|> EB 42 \|jmp short 0046B45A 0046B418 \|> 837D D4 00 \|cmp dword ptr [ebp-2C], 0 0046B41C \|. 74 3C \|je short 0046B45A 0046B41E \|. 8D4D D8 \|lea ecx, dword ptr [ebp-28] 0046B421 \|. 51 \|push ecx ; /pMsg 0046B422 \|. 8B55 D0 \|mov edx, dword ptr [ebp-30] ; \| 0046B425 \|. 52 \|push edx ; \|hClient 0046B426 \|. FF15 94F34A00 \|call dword ptr [<&USER32.TranslateMD>; \TranslateMDISysAccel 0046B42C \|. 85C0 \|test eax, eax 0046B42E \|. 75 2A \|jnz short 0046B45A 0046B430 \|. 8D45 D8 \|lea eax, dword ptr [ebp-28] 0046B433 \|. 50 \|push eax ; /pMsg 0046B434 \|. 8B4D FC \|mov ecx, dword ptr [ebp-4] ; \| 0046B437 \|. 51 \|push ecx ; \|hAccel 0046B438 \|. 8B55 F4 \|mov edx, dword ptr [ebp-C] ; \| 0046B43B \|. 52 \|push edx ; \|hWnd 0046B43C \|. FF15 90F34A00 \|call dword ptr [<&USER32.TranslateAc>; \TranslateAcceleratorA 0046B442 \|. 85C0 \|test eax, eax 0046B444 \|. 75 14 \|jnz short 0046B45A 0046B446 \|. 8D45 D8 \|lea eax, dword ptr [ebp-28] 0046B449 \|. 50 \|push eax ; /pMsg 0046B44A \|. FF15 8CF34A00 \|call dword ptr [<&USER32.TranslateMe>; \TranslateMessage 0046B450 \|. 8D4D D8 \|lea ecx, dword ptr [ebp-28] 0046B453 \|. 51 \|push ecx ; /pMsg 0046B454 \|. FF15 88F34A00 \|call dword ptr [<&USER32.DispatchMes>; \DispatchMessageA 0046B45A \|> 837D D4 00 \|cmp dword ptr [ebp-2C], 0 0046B45E ^ 0F85 58FFFFFF \jnz 0046B3BC 0046B464 \|. 837D FC 00 cmp dword ptr [ebp-4], 0 0046B468 \|. 74 0A je short 0046B474 0046B46A \|. 8B55 FC mov edx, dword ptr [ebp-4] 0046B46D \|. 52 push edx ; /hAccel 0046B46E \|. FF15 84F34A00 call dword ptr [<&USER32.DestroyAccel>; \DestroyAcceleratorTable 0046B474 \|> 6A 01 push 1 0046B476 \|. FF15 64F44A00 call dword ptr [<&WINMM.timeEndPeriod>; WINMM.timeEndPeriod 0046B47C \|. 8BE5 mov esp, ebp 0046B47E \|. 5D pop ebp 0046B47F \. C3 retn 2011-2-25 08:13 0
陀螺雪币： 172 活跃值： (10) 能力值： ( LV2，RANK：10 ) 在线值：发帖 1 回帖 12 粉丝 0 关注私信	陀螺 8 楼 http://u.115.com/file/t29f32f3a9 原文件在这，恳请帮忙看看 2011-2-25 08:30 0
arttk 雪币： 200 活跃值： (51) 能力值： ( LV2，RANK：10 ) 在线值：发帖 10 回帖 43 粉丝 0 关注私信	arttk 9 楼确实很难看呀，呵呵 2011-2-25 09:32 0
arttk 雪币： 200 活跃值： (51) 能力值： ( LV2，RANK：10 ) 在线值：发帖 10 回帖 43 粉丝 0 关注私信	arttk 10 楼我是来学习的啊 2011-2-25 09:32 0
freefinder 雪币： 5 活跃值： (10) 能力值： ( LV2，RANK：10 ) 在线值：发帖 0 回帖 7 粉丝 0 关注私信	freefinder 11 楼小弟是来学习的,汇编才刚起步.可惜就毕业了.哎…… 2011-3-7 17:21 0
firfor 雪币： 122 活跃值： (46) 能力值： ( LV5，RANK：60 ) 在线值：发帖 13 回帖 73 粉丝 0 关注私信	firfor 1 12 楼你是故意做些代码反汇编来看吗。lz还真有心。 2011-3-7 23:59 0
	游客登录 \| 注册方可回帖回帖表情雪币赚取及消费高级回复