能力值:
( LV2,RANK:10 )
|
-
-
2 楼
[0]
U:CreateWindow
U:CreateWindowExA
U:CreateWindowExW
[1]
K:CopyFileA
K:CopyFileW
K:CopyFileExA
[2]
A:RegCloseKey
A:RegEnumKeyExA
A:RegOpenKeyA
[7]
MSVBVM60:DllFunctionCall
MSVBVM60:EVENT_SINK_QueryInterface
MSVBVM60:EVENT_SINK_Release
前面的U:,K:,A:,分别代表什么?没找到这个插件的相关帮助。
希望热心前辈指点,我可尝试自行修改!
|
能力值:
( LV2,RANK:10 )
|
-
-
3 楼
[QUOTE=ebaqiang;1015025][0]
U:CreateWindow
U:CreateWindowExA
U:CreateWindowExW
[1]
K:CopyFileA
K:CopyFileW
K:CopyFileExA
[2]
A:RegCloseKey
A:RegEnumKeyExA
A:RegOpe...[/QUOTE]
user32 kernel32 advapi32 
|
能力值:
( LV2,RANK:10 )
|
-
-
4 楼
谢谢您 
|
能力值:
( LV12,RANK:210 )
|
-
-
5 楼
复制下面内容,保存为 APIBreak.ini 。放到 ..\Plugin 目录内。即可。
==================== 华丽的分割线 ====================
对话框|限制功能|文件处理|注册表|时间|进程函数|磁盘函数|VB5专用函数|VB6专用函数|拦截狗|字符比较|调试病毒|穿山甲专用|对付自校验|VC、MFC程序逆向|
[0]
U:DialogBox
U:EndDialog
U:SendMessageA
U:MessageBoxA
U:MessageBoxW
U:MessageBoxExA
U:MessageBoxExW
U:MessageBoxIndirectA
U:MessageBoxIndirectW
U:DialogBoxParamA
U:DialogBoxIndirect
U:DialogBoxIndirectParamA
U:DialogBoxIndirectParamW
U:CreateDialogIndirect
U:CreateDialogIndirectParamA
U:CreateDialogIndirectParamW
U:CreateWindow
U:CreateWindowExA
U:CreateWindowExW
U:ShowWindow
U:UpdateWindow
U:GetDlgItemInt
U:GetWindowTextA
U:GetWindowTextW
U:GetDlgItemTextA
U:GetDlgItemTextW
U:SetWindowTextA
U:SetWindowTextW
U:SetDlgItemTextA
U:SetDlgItemTextW
U:GetClipboardData
[1]
U:SetMenu
U:DestroyMenu
U:DeleteMenu(删除菜单项)
U:EnableWindow(允许窗口)
U:EnableMenuItem(菜单项)
[2]
K:CreateFileA
K:CreateFileW
K:OpenFile
K:ReadFile
k:WriteFile
k:GetFileSize
K:SetFilePointer
k:lcreat
k:lopen
k:lread
k:lwrite
k:hread
K:hwrite
K:OpenMutexA
K:OpenMutexW
K:LoadLibraryA
K:LoadLibraryW
K:LoadLibraryExA
K:LoadLibraryExW
K:OpenFileMappingA
K:OpenFileMappingW
K:CreateFileMappingA
K:CopyFileA
K:CopyFileW
K:CopyFileExA
K:CopyFileExW
K:MoveFileA
K:MoveFileW
K:MoveFileExA
K:MoveFileExW
K:DeleteFileA
K:DeleteFileW
K:LoadCursorFromFileA
K:GetPrivateProfileStringA
[3]
A:RegOpenKeyA
A:RegOpenKeyExA
A:RegCloseKey
A:RegQueryValueA
A:RegEnumKeyExA
A:RegSetValueA
A:RegSetValueW
A:RegSetValueExA
A:RegSetValueExW
[4]
K:GetSystemTime(取得系统时间)
K:SetSystemTime
K:GetLocalTime
K:SetLocalTime
K:GetFileTime
K:SetTimer
K:TimerProc
[5]
K:CreateToolhelp32Snapshot
K:Toolhelp32ReadProcessMemory
K:Process32First
K:Process32FirstW
K:Process32Next
K:Module32First
K:Module32Next
K:Module32NextW
K:Module32FirstW
K:Heap32ListFirst
K:Heap32ListNext
K:Heap32First
K:Heap32Next
K:CreateThread
K:CreateProcessA
K:CreateRemoteThread
K:OpenProcess
K:OpenProcessToken
K:OpenThreadToken
K:ExitProcess
K:ExitThread
K:TerminateProcess
K:PostQuitMessage
K:IsDebuggerPresent
K:ReadProcessMemory
K:WriteProcessMemory
N:ZwQueryInformationProcess
NTDLL.DLL:ZwSetInformationThread
[6]
K:GetDiskFreeSpaceA
K:GetDriveTypeA
K:GetFullPathNameA
K:GetLogicalDrives
K:GetSystemDirectoryA
K:GetWindowsDirectoryA
K:GetLogicalDriveStringsA
[7]
MSVBVM50:rtcMsgBox
MSVBVM50:rtcFileLen
MSVBVM50:GetMemStr
MSVBVM50:PutMemStr
MSVBVM50:rtcFileCopy
MSVBVM50:rtcEndOfFile
MSVBVM50:__vbaNew
MSVBVM50:__vbaNew2
MSVBVM50:__vbaEnd
MSVBVM50:__vbaStrCmp
MSVBVM50:__vbaStrComp
MSVBVM50:__vbaStrCompVar
MSVBVM50:__vbaStrCopy
MSVBVM50:__vbaStrMove
MSVBVM50:__vbaStrTextCmp
MSVBVM50:__vbaFreeStr
MSVBVM50:__vbaInputFile
MSVBVM50:__vbaWriteFile
MSVBVM50:__vbaInputFile
MSVBVM50:__vbaFileOpen
MSVBVM50:__vbaFileClose
MSVBVM50:__vbaVarTstEq
[8]
MSVBVM60:rtcMsgBox
MSVBVM60:rtcFileLen
MSVBVM60:GetMemStr
MSVBVM60:PutMemStr
MSVBVM60:rtcFileCopy
MSVBVM60:rtcEndOfFile
MSVBVM60:__vbaNew
MSVBVM60:__vbaNew2
MSVBVM60:__vbaEnd
MSVBVM60:__vbaStrCmp
MSVBVM60:__vbaStrComp
MSVBVM60:__vbaStrCompVar
MSVBVM60:__vbaStrTextCmp
MSVBVM60:__vbaStrCopy
MSVBVM60:__vbaStrMove
MSVBVM60:__vbaFreeStr
MSVBVM60:__vbaInputFile
MSVBVM60:__vbaWriteFile
MSVBVM60:__vbaFileOpen
MSVBVM60:__vbaFileClose
MSVBVM60:__vbaInputFile
MSVBVM60:__vbaVarTstEq
[9]
A:LoadLibraryA
A:LoadLibraryW
A:LoadLibraryExA
A:LoadLibraryExW
A:CreateFileA(读狗驱动)
A:RefreshDeviceList(深思3)
A:DeviceIOControl
A:Prestochangoselector
A:FreeEnvironmentStringsA
[10]
A:_mbscmp
A:_mbsicmp
A:_mbscoll
A:Compare
A:CompareNoCase
A:Collate
A:wcscmp
A:_wcsicmp
A:wcscoll
A:lstrcmp
[11]
K:CreateFileA
K:LoadLibraryA
K:LoadLibraryW
K:LoadLibraryExA
K:LoadLibraryExW
K:FreeLibray
K:CreateThread
K:CreateProcessA
K:CreateRemoteThread
K:WriteProcessMemory
K:GetCurrentProcessId
K:OpenMutexA
K:OpenMutexW
K:CreateToolhelp32Snapshot
K:Heap32ListFirst
K:Heap32ListNext
K:Heap32First
K:Heap32Next
K:Module32First
K:Module32Next
K:Module32FirstW
K:Module32NextW
K:Process32First
K:Process32Next
K:Process32FirstA
K:Process32FirstW
K:PostQuitMessage
K:Toolhelp32ReadProcessMemory
K:ZwQueryInformationProcess
K:SetTimer
K:GetTempPathA
K:ReadFile
K:WriteFile
K:ShellExecuteA
K:WinExec
K:CopyFileA
K:DeleteFileA
K:URLDownloadToFileA
[12]
K:CreateThread(寻找OEP)
K:GetModuleHandleA(魔幻跳转)
K:OpenMutexA(双进程转单进程)
K:GetModuleHandleA(魔幻跳转)
K:GetSystemTime(补丁KEY)
K:VirtualProtect(辅助)
K:CreateFileMappingA(辅助)
[13]
K:CreateFileA
K:CreateFileW
K:OpenFile
K:ReadFile
K:WriteFile
K:GetFileSize
K:FindFirstFileA
MSVBVM60:rtcFileLen
K:ExitThread
K:ExitWindowsEx
K:PostQuitMessage
[14]
K:DefWindowProcA
K:DefWindowProcW
K:RegisterClassA
K:RegisterClassW
K:RegisterClassExA
K:RegisterClassExW
K:FindResourceA
K:FindResourceW
K:LoadResource
K:SetHandleCount
K:IsWindowEnabled
|
能力值:
( LV2,RANK:10 )
|
-
-
6 楼
谢谢您,感激万分。
|
能力值:
( LV2,RANK:10 )
|
-
-
7 楼
牛 
|
|
|
