-
-
[求助][求助]vb直接修改关键跳转会报错,又找不到注册码
-
发表于: 2015-8-27 20:14
-
弄了好久,就是找不到,我先由中文搜索引擎搜索注册错误(有两个,其中有一个断不下来),由此找到了je跳转,但是直接改jne,程序运行报错(下标越界),向上找又不知道注册码在哪?有哪位能教教小弟
0041A5D0 > \55 push ebp ; 判断程序入口
0041A5D1 . 8BEC mov ebp,esp
0041A5D3 . 83EC 0C sub esp,0xC
0041A5D6 . 68 861C4000 push <jmp.&MSVBVM60.__vbaExceptHandler> ; SE 处理程序安装
0041A5DB . 64:A1 0000000>mov eax,dword ptr fs:[0]
0041A5E1 . 50 push eax
0041A5E2 . 64:8925 00000>mov dword ptr fs:[0],esp
0041A5E9 . 83EC 18 sub esp,0x18
0041A5EC . 53 push ebx
0041A5ED . 56 push esi
0041A5EE . 57 push edi
0041A5EF . 8965 F4 mov dword ptr ss:[ebp-0xC],esp
0041A5F2 . C745 F8 E01A4>mov dword ptr ss:[ebp-0x8],SplitDoc.0040>
0041A5F9 . 8B7D 08 mov edi,dword ptr ss:[ebp+0x8]
0041A5FC . 8BC7 mov eax,edi
0041A5FE . 83E0 01 and eax,0x1
0041A601 . 8945 FC mov dword ptr ss:[ebp-0x4],eax
0041A604 . 83E7 FE and edi,0xFFFFFFFE
0041A607 . 57 push edi
0041A608 . 897D 08 mov dword ptr ss:[ebp+0x8],edi
0041A60B . 8B0F mov ecx,dword ptr ds:[edi]
0041A60D . FF51 04 call dword ptr ds:[ecx+0x4]
0041A610 . A1 A4E64100 mov eax,dword ptr ds:[0x41E6A4]
0041A615 . 33DB xor ebx,ebx
0041A617 . 3BC3 cmp eax,ebx
0041A619 . 895D E8 mov dword ptr ss:[ebp-0x18],ebx
0041A61C . 75 10 jnz XSplitDoc.0041A62E
0041A61E . 68 A4E64100 push SplitDoc.0041E6A4
0041A623 . 68 FC584000 push SplitDoc.004058FC
0041A628 . FF15 68114000 call dword ptr ds:[<&MSVBVM60.__vbaNew2>>; MSVBVM60.__vbaNew2
0041A62E > 8B35 A4E64100 mov esi,dword ptr ds:[0x41E6A4]
0041A634 . 8D45 E8 lea eax,dword ptr ss:[ebp-0x18]
0041A637 . 57 push edi
0041A638 . 50 push eax
0041A639 . 8B16 mov edx,dword ptr ds:[esi]
0041A63B . 8955 D4 mov dword ptr ss:[ebp-0x2C],edx
0041A63E . FF15 84104000 call dword ptr ds:[<&MSVBVM60.__vbaObjSe>; MSVBVM60.__vbaObjSetAddref
0041A644 . 8B4D D4 mov ecx,dword ptr ss:[ebp-0x2C]
0041A647 . 50 push eax
0041A648 . 56 push esi
0041A649 . FF51 10 call dword ptr ds:[ecx+0x10]
0041A64C . 3BC3 cmp eax,ebx
0041A64E . DBE2 fclex
0041A650 . 7D 0F jge XSplitDoc.0041A661
0041A652 . 6A 10 push 0x10
0041A654 . 68 EC584000 push SplitDoc.004058EC
0041A659 . 56 push esi
0041A65A . 50 push eax
0041A65B . FF15 5C104000 call dword ptr ds:[<&MSVBVM60.__vbaHresu>; MSVBVM60.__vbaHresultCheckObj
0041A661 > 8D4D E8 lea ecx,dword ptr ss:[ebp-0x18]
0041A664 . FF15 F8114000 call dword ptr ds:[<&MSVBVM60.__vbaFreeO>; MSVBVM60.__vbaFreeObj
0041A66A . 895D FC mov dword ptr ss:[ebp-0x4],ebx
0041A66D . 68 7FA64100 push SplitDoc.0041A67F
0041A672 . EB 0A jmp XSplitDoc.0041A67E
0041A674 . 8D4D E8 lea ecx,dword ptr ss:[ebp-0x18]
0041A677 . FF15 F8114000 call dword ptr ds:[<&MSVBVM60.__vbaFreeO>; MSVBVM60.__vbaFreeObj
0041A67D . C3 retn
0041A67E > C3 retn ; RET 用作跳转到 0041A67F
0041A67F > 8B45 08 mov eax,dword ptr ss:[ebp+0x8]
0041A682 . 50 push eax
0041A683 . 8B10 mov edx,dword ptr ds:[eax]
0041A685 . FF52 08 call dword ptr ds:[edx+0x8]
0041A688 . 8B45 FC mov eax,dword ptr ss:[ebp-0x4]
0041A68B . 8B4D EC mov ecx,dword ptr ss:[ebp-0x14]
0041A68E . 5F pop edi
0041A68F . 5E pop esi
0041A690 . 64:890D 00000>mov dword ptr fs:[0],ecx
0041A697 . 5B pop ebx
0041A698 . 8BE5 mov esp,ebp
0041A69A . 5D pop ebp
0041A69B . C2 0400 retn 0x4
0041A69E 90 nop
0041A69F 90 nop
0041A6A0 > 55 push ebp
0041A6A1 . 8BEC mov ebp,esp
0041A6A3 . 83EC 0C sub esp,0xC
0041A6A6 . 68 861C4000 push <jmp.&MSVBVM60.__vbaExceptHandler> ; SE 处理程序安装
0041A6AB . 64:A1 0000000>mov eax,dword ptr fs:[0]
0041A6B1 . 50 push eax
0041A6B2 . 64:8925 00000>mov dword ptr fs:[0],esp
0041A6B9 . 81EC B4000000 sub esp,0xB4
0041A6BF . 53 push ebx
0041A6C0 . 56 push esi
0041A6C1 . 57 push edi
0041A6C2 . 8965 F4 mov dword ptr ss:[ebp-0xC],esp
0041A6C5 . C745 F8 F01A4>mov dword ptr ss:[ebp-0x8],SplitDoc.0040>
0041A6CC . 8B75 08 mov esi,dword ptr ss:[ebp+0x8]
0041A6CF . 8BC6 mov eax,esi
0041A6D1 . 83E0 01 and eax,0x1
0041A6D4 . 8945 FC mov dword ptr ss:[ebp-0x4],eax
0041A6D7 . 83E6 FE and esi,0xFFFFFFFE
0041A6DA . 56 push esi
0041A6DB . 8975 08 mov dword ptr ss:[ebp+0x8],esi
0041A6DE . 8B0E mov ecx,dword ptr ds:[esi]
0041A6E0 . FF51 04 call dword ptr ds:[ecx+0x4]
0041A6E3 . 8B16 mov edx,dword ptr ds:[esi]
0041A6E5 . 33DB xor ebx,ebx ; zf= 1
0041A6E7 . 56 push esi
0041A6E8 . 895D E8 mov dword ptr ss:[ebp-0x18],ebx
0041A6EB . 895D E4 mov dword ptr ss:[ebp-0x1C],ebx
0041A6EE . 895D E0 mov dword ptr ss:[ebp-0x20],ebx
0041A6F1 . 895D DC mov dword ptr ss:[ebp-0x24],ebx
0041A6F4 . 895D D8 mov dword ptr ss:[ebp-0x28],ebx
0041A6F7 . 895D D4 mov dword ptr ss:[ebp-0x2C],ebx
0041A6FA . 895D C4 mov dword ptr ss:[ebp-0x3C],ebx
0041A6FD . 895D B4 mov dword ptr ss:[ebp-0x4C],ebx
0041A700 . 895D A4 mov dword ptr ss:[ebp-0x5C],ebx
0041A703 . 895D 94 mov dword ptr ss:[ebp-0x6C],ebx
0041A706 . 895D 84 mov dword ptr ss:[ebp-0x7C],ebx
0041A709 . FF92 08030000 call dword ptr ds:[edx+0x308]
0041A70F . 50 push eax ; zf = 0
0041A710 . 8D45 D8 lea eax,dword ptr ss:[ebp-0x28]
0041A713 . 50 push eax
0041A714 . FF15 74104000 call dword ptr ds:[<&MSVBVM60.__vbaObjSe>; MSVBVM60.__vbaObjSet
0041A71A . 8BF8 mov edi,eax ; zf = 1
0041A71C . 8D55 E8 lea edx,dword ptr ss:[ebp-0x18]
0041A71F . 52 push edx
0041A720 . 57 push edi
0041A721 . 8B0F mov ecx,dword ptr ds:[edi]
0041A723 . FF91 A0000000 call dword ptr ds:[ecx+0xA0]
0041A729 . 3BC3 cmp eax,ebx
0041A72B . DBE2 fclex
0041A72D . 7D 12 jge XSplitDoc.0041A741
0041A72F . 68 A0000000 push 0xA0
0041A734 . 68 A0594000 push SplitDoc.004059A0
0041A739 . 57 push edi
0041A73A . 50 push eax
0041A73B . FF15 5C104000 call dword ptr ds:[<&MSVBVM60.__vbaHresu>; MSVBVM60.__vbaHresultCheckObj
0041A741 > 8B45 E8 mov eax,dword ptr ss:[ebp-0x18]
0041A744 . 53 push ebx
0041A745 . 6A FF push -0x1
0041A747 . 6A 01 push 0x1
0041A749 . 68 2C584000 push SplitDoc.0040582C
0041A74E . 68 4C694000 push SplitDoc.0040694C ; \r
0041A753 . 50 push eax
0041A754 . FF15 18114000 call dword ptr ds:[<&MSVBVM60.#712>] ; MSVBVM60.rtcReplace
0041A75A . 8B3D D0114000 mov edi,dword ptr ds:[<&MSVBVM60.__vbaSt>; MSVBVM60.__vbaStrMove
0041A760 . 8BD0 mov edx,eax
0041A762 . 8D4D DC lea ecx,dword ptr ss:[ebp-0x24]
0041A765 . FFD7 call edi ; <&MSVBVM60.__vbaStrMove>
0041A767 . 8B0E mov ecx,dword ptr ds:[esi]
0041A769 . 56 push esi
0041A76A . FF91 08030000 call dword ptr ds:[ecx+0x308]
0041A770 . 8D55 D4 lea edx,dword ptr ss:[ebp-0x2C] ; zf = 0
0041A773 . 50 push eax
0041A774 . 52 push edx
0041A775 . FF15 74104000 call dword ptr ds:[<&MSVBVM60.__vbaObjSe>; MSVBVM60.__vbaObjSet
0041A77B . 8B55 DC mov edx,dword ptr ss:[ebp-0x24] ; zf = 1
0041A77E . 53 push ebx
0041A77F . 6A FF push -0x1
0041A781 . 6A 01 push 0x1
0041A783 . 68 2C584000 push SplitDoc.0040582C
0041A788 . 68 54694000 push SplitDoc.00406954 ; \n
0041A78D . 8D4D E4 lea ecx,dword ptr ss:[ebp-0x1C]
0041A790 . 8985 58FFFFFF mov dword ptr ss:[ebp-0xA8],eax
0041A796 . 895D DC mov dword ptr ss:[ebp-0x24],ebx
0041A799 . FFD7 call edi
0041A79B . 50 push eax
0041A79C . FF15 18114000 call dword ptr ds:[<&MSVBVM60.#712>] ; MSVBVM60.rtcReplace
0041A7A2 . 8945 CC mov dword ptr ss:[ebp-0x34],eax
0041A7A5 . 8D45 C4 lea eax,dword ptr ss:[ebp-0x3C]
0041A7A8 . 8D4D B4 lea ecx,dword ptr ss:[ebp-0x4C]
0041A7AB . 50 push eax
0041A7AC . 51 push ecx
0041A7AD . C745 C4 08000>mov dword ptr ss:[ebp-0x3C],0x8
0041A7B4 . FF15 90104000 call dword ptr ds:[<&MSVBVM60.#520>] ; MSVBVM60.rtcTrimVar
0041A7BA . 8B95 58FFFFFF mov edx,dword ptr ss:[ebp-0xA8] ; zf = 0 SF!=OF重要嫌疑,后解除,为清除字符串空白的函数
0041A7C0 . 8D45 B4 lea eax,dword ptr ss:[ebp-0x4C]
0041A7C3 . 8D4D E0 lea ecx,dword ptr ss:[ebp-0x20]
0041A7C6 . 50 push eax ; /String8
0041A7C7 . 8B1A mov ebx,dword ptr ds:[edx] ; |
0041A7C9 . 51 push ecx ; |ARG2
0041A7CA . FF15 44114000 call dword ptr ds:[<&MSVBVM60.__vbaStrVa>; \__vbaStrVarVal
0041A7D0 . 8BD3 mov edx,ebx ; zf = 1 SF=OF
0041A7D2 . 8B9D 58FFFFFF mov ebx,dword ptr ss:[ebp-0xA8]
0041A7D8 . 50 push eax
0041A7D9 . 53 push ebx
0041A7DA . FF92 A4000000 call dword ptr ds:[edx+0xA4]
0041A7E0 . 85C0 test eax,eax
0041A7E2 . DBE2 fclex
0041A7E4 . 7D 12 jge XSplitDoc.0041A7F8
0041A7E6 . 68 A4000000 push 0xA4
0041A7EB . 68 A0594000 push SplitDoc.004059A0
0041A7F0 . 53 push ebx
0041A7F1 . 50 push eax
0041A7F2 . FF15 5C104000 call dword ptr ds:[<&MSVBVM60.__vbaHresu>; MSVBVM60.__vbaHresultCheckObj
0041A7F8 > 8D45 DC lea eax,dword ptr ss:[ebp-0x24]
0041A7FB . 8D4D E0 lea ecx,dword ptr ss:[ebp-0x20]
0041A7FE . 50 push eax
0041A7FF . 8D55 E4 lea edx,dword ptr ss:[ebp-0x1C]
0041A802 . 51 push ecx
0041A803 . 8D45 E8 lea eax,dword ptr ss:[ebp-0x18]
0041A806 . 52 push edx
0041A807 . 50 push eax
0041A808 . 6A 04 push 0x4
0041A80A . FF15 84114000 call dword ptr ds:[<&MSVBVM60.__vbaFreeS>; MSVBVM60.__vbaFreeStrList
0041A810 . 8D4D D4 lea ecx,dword ptr ss:[ebp-0x2C]
0041A813 . 8D55 D8 lea edx,dword ptr ss:[ebp-0x28]
0041A816 . 51 push ecx
0041A817 . 52 push edx
0041A818 . 6A 02 push 0x2
0041A81A . FF15 34104000 call dword ptr ds:[<&MSVBVM60.__vbaFreeO>; MSVBVM60.__vbaFreeObjList
0041A820 . 8D45 B4 lea eax,dword ptr ss:[ebp-0x4C]
0041A823 . 8D4D C4 lea ecx,dword ptr ss:[ebp-0x3C]
0041A826 . 50 push eax
0041A827 . 51 push ecx
0041A828 . 6A 02 push 0x2
0041A82A . FF15 2C104000 call dword ptr ds:[<&MSVBVM60.__vbaFreeV>; MSVBVM60.__vbaFreeVarList
0041A830 . 8B16 mov edx,dword ptr ds:[esi] ; xxxxxxx
0041A832 . 83C4 2C add esp,0x2C ; zf = 0 XXXX
0041A835 . 56 push esi
0041A836 . FF92 08030000 call dword ptr ds:[edx+0x308]
0041A83C . 8B1D 74104000 mov ebx,dword ptr ds:[<&MSVBVM60.__vbaOb>; MSVBVM60.__vbaObjSet
0041A842 . 50 push eax
0041A843 . 8D45 D8 lea eax,dword ptr ss:[ebp-0x28]
0041A846 . 50 push eax
0041A847 . FFD3 call ebx ; <&MSVBVM60.__vbaObjSet>
0041A849 . 8B08 mov ecx,dword ptr ds:[eax] ; zf = 1
0041A84B . 8D55 E8 lea edx,dword ptr ss:[ebp-0x18]
0041A84E . 52 push edx
0041A84F . 50 push eax
0041A850 . 8985 60FFFFFF mov dword ptr ss:[ebp-0xA0],eax
0041A856 . FF91 A0000000 call dword ptr ds:[ecx+0xA0] ; 经过这里eax变为0嫌疑
0041A85C . 85C0 test eax,eax
0041A85E . DBE2 fclex
0041A860 . 7D 18 jge XSplitDoc.0041A87A
0041A862 . 8B8D 60FFFFFF mov ecx,dword ptr ss:[ebp-0xA0]
0041A868 . 68 A0000000 push 0xA0
0041A86D . 68 A0594000 push SplitDoc.004059A0
0041A872 . 51 push ecx
0041A873 . 50 push eax
0041A874 . FF15 5C104000 call dword ptr ds:[<&MSVBVM60.__vbaHresu>; MSVBVM60.__vbaHresultCheckObj
0041A87A > 8B55 E8 mov edx,dword ptr ss:[ebp-0x18]
0041A87D . 52 push edx ; /String
0041A87E . FF15 24104000 call dword ptr ds:[<&MSVBVM60.__vbaLenBs>; \是这个?
0041A884 . 33C9 xor ecx,ecx
0041A886 . 83F8 0E cmp eax,0xE ; zf = 0 SF!=OF
0041A889 . 0F9CC1 setl cl ; sf!=of置cl = 1
0041A88C . F7D9 neg ecx ; 改变ecx
0041A88E . 66:898D 58FFF>mov word ptr ss:[ebp-0xA8],cx
0041A895 . 8D4D E8 lea ecx,dword ptr ss:[ebp-0x18]
0041A898 . FF15 FC114000 call dword ptr ds:[<&MSVBVM60.__vbaFreeS>; MSVBVM60.__vbaFreeStr
0041A89E . 8D4D D8 lea ecx,dword ptr ss:[ebp-0x28] ; zf = 1
0041A8A1 . FF15 F8114000 call dword ptr ds:[<&MSVBVM60.__vbaFreeO>; MSVBVM60.__vbaFreeObj
0041A8A7 . 66:83BD 58FFF>cmp word ptr ss:[ebp-0xA8],0x0 ; zf = 0
0041A8AF 0F84 99010000 je SplitDoc.0041AA4E ; 关键跳转
0041A8B5 . B9 04000280 mov ecx,0x80020004
0041A8BA . B8 0A000000 mov eax,0xA
0041A8BF . 894D 9C mov dword ptr ss:[ebp-0x64],ecx
0041A8C2 . 894D AC mov dword ptr ss:[ebp-0x54],ecx
0041A8C5 . 8D55 84 lea edx,dword ptr ss:[ebp-0x7C]
0041A8C8 . 8D4D B4 lea ecx,dword ptr ss:[ebp-0x4C]
0041A8CB . 8945 94 mov dword ptr ss:[ebp-0x6C],eax
0041A8CE . 8945 A4 mov dword ptr ss:[ebp-0x5C],eax
0041A8D1 . C745 8C AC694>mov dword ptr ss:[ebp-0x74],SplitDoc.004>; 注册失败
0041A8D8 . C745 84 08000>mov dword ptr ss:[ebp-0x7C],0x8
0041A8DF . FF15 AC114000 call dword ptr ds:[<&MSVBVM60.__vbaVarDu>; MSVBVM60.__vbaVarDup
0041A8E5 . 68 5C694000 push SplitDoc.0040695C ; 注册失败!
0041A8EA . 68 6C694000 push SplitDoc.0040696C ; /\r\n
0041A8EF . FF15 4C104000 call dword ptr ds:[<&MSVBVM60.__vbaStrCa>; \__vbaStrCat
0041A8F5 . 8BD0 mov edx,eax
0041A8F7 . 8D4D E8 lea ecx,dword ptr ss:[ebp-0x18]
0041A8FA . FFD7 call edi
0041A8FC . 50 push eax
0041A8FD . 68 6C694000 push SplitDoc.0040696C ; /\r\n
0041A902 . FF15 4C104000 call dword ptr ds:[<&MSVBVM60.__vbaStrCa>; \__vbaStrCat
0041A908 . 8BD0 mov edx,eax
0041A90A . 8D4D E4 lea ecx,dword ptr ss:[ebp-0x1C]
0041A90D . FFD7 call edi
0041A90F . 50 push eax
0041A910 . 68 78694000 push SplitDoc.00406978 ; /感谢您使用并注册本软件。请检查输入是否正确。
0041A915 . FF15 4C104000 call dword ptr ds:[<&MSVBVM60.__vbaStrCa>; \__vbaStrCat
0041A91B . 8945 CC mov dword ptr ss:[ebp-0x34],eax
0041A91E . 8D55 94 lea edx,dword ptr ss:[ebp-0x6C]
0041A921 . 8D45 A4 lea eax,dword ptr ss:[ebp-0x5C]
0041A924 . 52 push edx
0041A925 . 8D4D B4 lea ecx,dword ptr ss:[ebp-0x4C]
0041A928 . 50 push eax
0041A929 . 51 push ecx
0041A92A . 8D55 C4 lea edx,dword ptr ss:[ebp-0x3C]
0041A92D . 6A 10 push 0x10
0041A92F . 52 push edx
0041A930 . C745 C4 08000>mov dword ptr ss:[ebp-0x3C],0x8
0041A937 . FF15 7C104000 call dword ptr ds:[<&MSVBVM60.#595>] ; MSVBVM60.rtcMsgBox
0041A93D . 8D45 E4 lea eax,dword ptr ss:[ebp-0x1C]
0041A940 . 8D4D E8 lea ecx,dword ptr ss:[ebp-0x18]
0041A943 . 50 push eax
0041A944 . 51 push ecx
0041A945 . 6A 02 push 0x2
0041A947 . FF15 84114000 call dword ptr ds:[<&MSVBVM60.__vbaFreeS>; MSVBVM60.__vbaFreeStrList
0041A94D . 8D55 94 lea edx,dword ptr ss:[ebp-0x6C]
0041A950 . 8D45 A4 lea eax,dword ptr ss:[ebp-0x5C]
0041A953 . 52 push edx
0041A954 . 8D4D B4 lea ecx,dword ptr ss:[ebp-0x4C]
0041A957 . 50 push eax
0041A958 . 8D55 C4 lea edx,dword ptr ss:[ebp-0x3C]
0041A95B . 51 push ecx
0041A95C . 52 push edx
0041A95D . 6A 04 push 0x4
0041A95F . FF15 2C104000 call dword ptr ds:[<&MSVBVM60.__vbaFreeV>; MSVBVM60.__vbaFreeVarList
0041A965 . 8B06 mov eax,dword ptr ds:[esi]
0041A967 . 83C4 20 add esp,0x20
0041A96A . 56 push esi
0041A96B . FF90 08030000 call dword ptr ds:[eax+0x308]
0041A971 . 8D4D D8 lea ecx,dword ptr ss:[ebp-0x28]
0041A974 . 50 push eax
0041A975 . 51 push ecx
0041A976 . FFD3 call ebx
0041A978 . 8BF8 mov edi,eax
0041A97A . 57 push edi
0041A97B . 8B17 mov edx,dword ptr ds:[edi]
0041A97D . FF92 04020000 call dword ptr ds:[edx+0x204]
0041A983 . 85C0 test eax,eax
0041A985 . DBE2 fclex
0041A987 . 7D 12 jge XSplitDoc.0041A99B
0041A989 . 68 04020000 push 0x204
0041A98E . 68 A0594000 push SplitDoc.004059A0
0041A993 . 57 push edi
0041A994 . 50 push eax
0041A995 . FF15 5C104000 call dword ptr ds:[<&MSVBVM60.__vbaHresu>; MSVBVM60.__vbaHresultCheckObj
0041A99B > 8D4D D8 lea ecx,dword ptr ss:[ebp-0x28]
0041A99E . FF15 F8114000 call dword ptr ds:[<&MSVBVM60.__vbaFreeO>; MSVBVM60.__vbaFreeObj
0041A9A4 . 8B06 mov eax,dword ptr ds:[esi]
0041A9A6 . 56 push esi
0041A9A7 . FF90 08030000 call dword ptr ds:[eax+0x308]
0041A9AD . 8D4D D8 lea ecx,dword ptr ss:[ebp-0x28]
0041A9B0 . 50 push eax
0041A9B1 . 51 push ecx
0041A9B2 . FFD3 call ebx
0041A9B4 . 8BF8 mov edi,eax
0041A9B6 . 6A 00 push 0x0
0041A9B8 . 57 push edi
0041A9B9 . 8B17 mov edx,dword ptr ds:[edi]
0041A9BB . FF92 14010000 call dword ptr ds:[edx+0x114]
0041A9C1 . 85C0 test eax,eax
0041A9C3 . DBE2 fclex
0041A9C5 . 7D 12 jge XSplitDoc.0041A9D9
0041A9C7 . 68 14010000 push 0x114
0041A9CC . 68 A0594000 push SplitDoc.004059A0
0041A9D1 . 57 push edi
0041A9D2 . 50 push eax
0041A9D3 . FF15 5C104000 call dword ptr ds:[<&MSVBVM60.__vbaHresu>; MSVBVM60.__vbaHresultCheckObj
0041A9D9 > 8D4D D8 lea ecx,dword ptr ss:[ebp-0x28]
0041A9DC . FF15 F8114000 call dword ptr ds:[<&MSVBVM60.__vbaFreeO>; MSVBVM60.__vbaFreeObj
0041A9E2 . 8B06 mov eax,dword ptr ds:[esi]
0041A9E4 . 56 push esi
0041A9E5 . FF90 08030000 call dword ptr ds:[eax+0x308]
0041A9EB . 8D4D D4 lea ecx,dword ptr ss:[ebp-0x2C]
0041A9EE . 50 push eax
0041A9EF . 51 push ecx
0041A9F0 . FFD3 call ebx
0041A9F2 . 8B16 mov edx,dword ptr ds:[esi]
0041A9F4 . 56 push esi
0041A9F5 . 8BF8 mov edi,eax
0041A9F7 . FF92 08030000 call dword ptr ds:[edx+0x308]
0041A9FD . 50 push eax
0041A9FE . 8D45 D8 lea eax,dword ptr ss:[ebp-0x28]
0041AA01 . 50 push eax
0041AA02 . FFD3 call ebx
0041AA04 . 8BF0 mov esi,eax
0041AA06 . 8D55 E8 lea edx,dword ptr ss:[ebp-0x18]
0041AA09 . 52 push edx
0041AA0A . 56 push esi
0041AA0B . 8B0E mov ecx,dword ptr ds:[esi]
0041AA0D . FF91 A0000000 call dword ptr ds:[ecx+0xA0]
0041AA13 . 85C0 test eax,eax
0041AA15 . DBE2 fclex
0041AA17 . 7D 12 jge XSplitDoc.0041AA2B
0041AA19 . 68 A0000000 push 0xA0
0041AA1E . 68 A0594000 push SplitDoc.004059A0
0041AA23 . 56 push esi
0041AA24 . 50 push eax
0041AA25 . FF15 5C104000 call dword ptr ds:[<&MSVBVM60.__vbaHresu>; MSVBVM60.__vbaHresultCheckObj
0041AA2B > 8B45 E8 mov eax,dword ptr ss:[ebp-0x18]
0041AA2E . 8B37 mov esi,dword ptr ds:[edi]
0041AA30 . 50 push eax ; /String
0041AA31 . FF15 24104000 call dword ptr ds:[<&MSVBVM60.__vbaLenBs>; \__vbaLenBstr
0041AA37 . 50 push eax
0041AA38 . 57 push edi
0041AA39 . FF96 1C010000 call dword ptr ds:[esi+0x11C]
0041AA3F . 85C0 test eax,eax
0041AA41 . DBE2 fclex
0041AA43 . 0F8D E2030000 jge SplitDoc.0041AE2B
0041AA49 . E9 CB030000 jmp SplitDoc.0041AE19
0041AA4E > 8B06 mov eax,dword ptr ds:[esi]
0041AA50 . 56 push esi
0041AA51 . FF90 08030000 call dword ptr ds:[eax+0x308]
0041AA57 . 8D4D D8 lea ecx,dword ptr ss:[ebp-0x28]
0041AA5A . 50 push eax
0041AA5B . 51 push ecx
0041AA5C . FFD3 call ebx
0041AA5E . 8B10 mov edx,dword ptr ds:[eax]
0041AA60 . 8D4D E8 lea ecx,dword ptr ss:[ebp-0x18]
0041AA63 . 51 push ecx
0041AA64 . 50 push eax
0041AA65 . 8985 60FFFFFF mov dword ptr ss:[ebp-0xA0],eax
0041AA6B . FF92 A0000000 call dword ptr ds:[edx+0xA0]
0041AA71 . 85C0 test eax,eax
0041AA73 . DBE2 fclex
0041AA75 . 7D 18 jge XSplitDoc.0041AA8F
0041AA77 . 8B95 60FFFFFF mov edx,dword ptr ss:[ebp-0xA0]
0041AA7D . 68 A0000000 push 0xA0
0041AA82 . 68 A0594000 push SplitDoc.004059A0
0041AA87 . 52 push edx
0041AA88 . 50 push eax
0041AA89 . FF15 5C104000 call dword ptr ds:[<&MSVBVM60.__vbaHresu>; MSVBVM60.__vbaHresultCheckObj
0041AA8F > 8B55 E8 mov edx,dword ptr ss:[ebp-0x18]
0041AA92 . 8D4D E4 lea ecx,dword ptr ss:[ebp-0x1C]
0041AA95 . C745 E8 00000>mov dword ptr ss:[ebp-0x18],0x0
0041AA9C . FFD7 call edi
0041AA9E . 8D45 E4 lea eax,dword ptr ss:[ebp-0x1C]
0041AAA1 . 50 push eax
0041AAA2 . E8 C9E1FFFF call SplitDoc.00418C70
0041AAA7 . 8D4D E4 lea ecx,dword ptr ss:[ebp-0x1C]
0041AAAA . 66:8985 58FFF>mov word ptr ss:[ebp-0xA8],ax
0041AAB1 . FF15 FC114000 call dword ptr ds:[<&MSVBVM60.__vbaFreeS>; MSVBVM60.__vbaFreeStr
0041AAB7 . 8D4D D8 lea ecx,dword ptr ss:[ebp-0x28]
0041AABA . FF15 F8114000 call dword ptr ds:[<&MSVBVM60.__vbaFreeO>; MSVBVM60.__vbaFreeObj
0041AAC0 . 66:83BD 58FFF>cmp word ptr ss:[ebp-0xA8],0x0
0041AAC8 0F84 BB010000 je SplitDoc.0041AC89
0041AACE . 66:C705 40E04>mov word ptr ds:[0x41E040],0xFFFF
0041AAD7 . 8B0E mov ecx,dword ptr ds:[esi]
0041AAD9 . 56 push esi
0041AADA . FF91 08030000 call dword ptr ds:[ecx+0x308]
0041AAE0 . 8D55 D8 lea edx,dword ptr ss:[ebp-0x28]
0041AAE3 . 50 push eax
0041AAE4 . 52 push edx
0041AAE5 . FFD3 call ebx
0041AAE7 . 8B08 mov ecx,dword ptr ds:[eax]
0041AAE9 . 8D55 E8 lea edx,dword ptr ss:[ebp-0x18]
0041AAEC . 52 push edx
0041AAED . 50 push eax
0041AAEE . 8985 60FFFFFF mov dword ptr ss:[ebp-0xA0],eax
0041AAF4 . FF91 A0000000 call dword ptr ds:[ecx+0xA0]
0041AAFA . 85C0 test eax,eax
0041AAFC . DBE2 fclex
0041AAFE . 7D 18 jge XSplitDoc.0041AB18
0041AB00 . 8B8D 60FFFFFF mov ecx,dword ptr ss:[ebp-0xA0]
0041AB06 . 68 A0000000 push 0xA0
0041AB0B . 68 A0594000 push SplitDoc.004059A0
0041AB10 . 51 push ecx
0041AB11 . 50 push eax
0041AB12 . FF15 5C104000 call dword ptr ds:[<&MSVBVM60.__vbaHresu>; MSVBVM60.__vbaHresultCheckObj
0041AB18 > 8B55 E8 mov edx,dword ptr ss:[ebp-0x18]
0041AB1B . B9 38E04100 mov ecx,SplitDoc.0041E038
0041AB20 . C745 E8 00000>mov dword ptr ss:[ebp-0x18],0x0
0041AB27 . FFD7 call edi
0041AB29 . 8D4D D8 lea ecx,dword ptr ss:[ebp-0x28]
0041AB2C . FF15 F8114000 call dword ptr ds:[<&MSVBVM60.__vbaFreeO>; MSVBVM60.__vbaFreeObj
0041AB32 . B9 04000280 mov ecx,0x80020004
0041AB37 . B8 0A000000 mov eax,0xA
0041AB3C . 894D 9C mov dword ptr ss:[ebp-0x64],ecx
0041AB3F . 894D AC mov dword ptr ss:[ebp-0x54],ecx
0041AB42 . 8D55 84 lea edx,dword ptr ss:[ebp-0x7C]
0041AB45 . 8D4D B4 lea ecx,dword ptr ss:[ebp-0x4C]
0041AB48 . 8945 94 mov dword ptr ss:[ebp-0x6C],eax
0041AB4B . 8945 A4 mov dword ptr ss:[ebp-0x5C],eax
0041AB4E . C745 8C F0694>mov dword ptr ss:[ebp-0x74],SplitDoc.004>; 用户注册成功
0041AB55 . C745 84 08000>mov dword ptr ss:[ebp-0x7C],0x8
0041AB5C . FF15 AC114000 call dword ptr ds:[<&MSVBVM60.__vbaVarDu>; MSVBVM60.__vbaVarDup
0041AB62 . 68 BC694000 push SplitDoc.004069BC ; 注册成功!
0041AB67 . 68 6C694000 push SplitDoc.0040696C ; /\r\n
0041AB6C . FF15 4C104000 call dword ptr ds:[<&MSVBVM60.__vbaStrCa>; \__vbaStrCat
0041AB72 . 8BD0 mov edx,eax
0041AB74 . 8D4D E8 lea ecx,dword ptr ss:[ebp-0x18]
0041AB77 . FFD7 call edi
0041AB79 . 50 push eax
0041AB7A . 68 CC694000 push SplitDoc.004069CC ; /再次感谢您使用并注册本软件。
0041AB7F . FF15 4C104000 call dword ptr ds:[<&MSVBVM60.__vbaStrCa>; \__vbaStrCat
0041AB85 . 8945 CC mov dword ptr ss:[ebp-0x34],eax
0041AB88 . 8D55 94 lea edx,dword ptr ss:[ebp-0x6C]
0041AB8B . 8D45 A4 lea eax,dword ptr ss:[ebp-0x5C]
0041AB8E . 52 push edx
0041AB8F . 8D4D B4 lea ecx,dword ptr ss:[ebp-0x4C]
0041AB92 . 50 push eax
我写的注释不要看啊。。。。纯小白一个,希望各位能教教我这个怎么搞
软件下载地址
SplitDoc101.zip
0041A5D0 > \55 push ebp ; 判断程序入口
0041A5D1 . 8BEC mov ebp,esp
0041A5D3 . 83EC 0C sub esp,0xC
0041A5D6 . 68 861C4000 push <jmp.&MSVBVM60.__vbaExceptHandler> ; SE 处理程序安装
0041A5DB . 64:A1 0000000>mov eax,dword ptr fs:[0]
0041A5E1 . 50 push eax
0041A5E2 . 64:8925 00000>mov dword ptr fs:[0],esp
0041A5E9 . 83EC 18 sub esp,0x18
0041A5EC . 53 push ebx
0041A5ED . 56 push esi
0041A5EE . 57 push edi
0041A5EF . 8965 F4 mov dword ptr ss:[ebp-0xC],esp
0041A5F2 . C745 F8 E01A4>mov dword ptr ss:[ebp-0x8],SplitDoc.0040>
0041A5F9 . 8B7D 08 mov edi,dword ptr ss:[ebp+0x8]
0041A5FC . 8BC7 mov eax,edi
0041A5FE . 83E0 01 and eax,0x1
0041A601 . 8945 FC mov dword ptr ss:[ebp-0x4],eax
0041A604 . 83E7 FE and edi,0xFFFFFFFE
0041A607 . 57 push edi
0041A608 . 897D 08 mov dword ptr ss:[ebp+0x8],edi
0041A60B . 8B0F mov ecx,dword ptr ds:[edi]
0041A60D . FF51 04 call dword ptr ds:[ecx+0x4]
0041A610 . A1 A4E64100 mov eax,dword ptr ds:[0x41E6A4]
0041A615 . 33DB xor ebx,ebx
0041A617 . 3BC3 cmp eax,ebx
0041A619 . 895D E8 mov dword ptr ss:[ebp-0x18],ebx
0041A61C . 75 10 jnz XSplitDoc.0041A62E
0041A61E . 68 A4E64100 push SplitDoc.0041E6A4
0041A623 . 68 FC584000 push SplitDoc.004058FC
0041A628 . FF15 68114000 call dword ptr ds:[<&MSVBVM60.__vbaNew2>>; MSVBVM60.__vbaNew2
0041A62E > 8B35 A4E64100 mov esi,dword ptr ds:[0x41E6A4]
0041A634 . 8D45 E8 lea eax,dword ptr ss:[ebp-0x18]
0041A637 . 57 push edi
0041A638 . 50 push eax
0041A639 . 8B16 mov edx,dword ptr ds:[esi]
0041A63B . 8955 D4 mov dword ptr ss:[ebp-0x2C],edx
0041A63E . FF15 84104000 call dword ptr ds:[<&MSVBVM60.__vbaObjSe>; MSVBVM60.__vbaObjSetAddref
0041A644 . 8B4D D4 mov ecx,dword ptr ss:[ebp-0x2C]
0041A647 . 50 push eax
0041A648 . 56 push esi
0041A649 . FF51 10 call dword ptr ds:[ecx+0x10]
0041A64C . 3BC3 cmp eax,ebx
0041A64E . DBE2 fclex
0041A650 . 7D 0F jge XSplitDoc.0041A661
0041A652 . 6A 10 push 0x10
0041A654 . 68 EC584000 push SplitDoc.004058EC
0041A659 . 56 push esi
0041A65A . 50 push eax
0041A65B . FF15 5C104000 call dword ptr ds:[<&MSVBVM60.__vbaHresu>; MSVBVM60.__vbaHresultCheckObj
0041A661 > 8D4D E8 lea ecx,dword ptr ss:[ebp-0x18]
0041A664 . FF15 F8114000 call dword ptr ds:[<&MSVBVM60.__vbaFreeO>; MSVBVM60.__vbaFreeObj
0041A66A . 895D FC mov dword ptr ss:[ebp-0x4],ebx
0041A66D . 68 7FA64100 push SplitDoc.0041A67F
0041A672 . EB 0A jmp XSplitDoc.0041A67E
0041A674 . 8D4D E8 lea ecx,dword ptr ss:[ebp-0x18]
0041A677 . FF15 F8114000 call dword ptr ds:[<&MSVBVM60.__vbaFreeO>; MSVBVM60.__vbaFreeObj
0041A67D . C3 retn
0041A67E > C3 retn ; RET 用作跳转到 0041A67F
0041A67F > 8B45 08 mov eax,dword ptr ss:[ebp+0x8]
0041A682 . 50 push eax
0041A683 . 8B10 mov edx,dword ptr ds:[eax]
0041A685 . FF52 08 call dword ptr ds:[edx+0x8]
0041A688 . 8B45 FC mov eax,dword ptr ss:[ebp-0x4]
0041A68B . 8B4D EC mov ecx,dword ptr ss:[ebp-0x14]
0041A68E . 5F pop edi
0041A68F . 5E pop esi
0041A690 . 64:890D 00000>mov dword ptr fs:[0],ecx
0041A697 . 5B pop ebx
0041A698 . 8BE5 mov esp,ebp
0041A69A . 5D pop ebp
0041A69B . C2 0400 retn 0x4
0041A69E 90 nop
0041A69F 90 nop
0041A6A0 > 55 push ebp
0041A6A1 . 8BEC mov ebp,esp
0041A6A3 . 83EC 0C sub esp,0xC
0041A6A6 . 68 861C4000 push <jmp.&MSVBVM60.__vbaExceptHandler> ; SE 处理程序安装
0041A6AB . 64:A1 0000000>mov eax,dword ptr fs:[0]
0041A6B1 . 50 push eax
0041A6B2 . 64:8925 00000>mov dword ptr fs:[0],esp
0041A6B9 . 81EC B4000000 sub esp,0xB4
0041A6BF . 53 push ebx
0041A6C0 . 56 push esi
0041A6C1 . 57 push edi
0041A6C2 . 8965 F4 mov dword ptr ss:[ebp-0xC],esp
0041A6C5 . C745 F8 F01A4>mov dword ptr ss:[ebp-0x8],SplitDoc.0040>
0041A6CC . 8B75 08 mov esi,dword ptr ss:[ebp+0x8]
0041A6CF . 8BC6 mov eax,esi
0041A6D1 . 83E0 01 and eax,0x1
0041A6D4 . 8945 FC mov dword ptr ss:[ebp-0x4],eax
0041A6D7 . 83E6 FE and esi,0xFFFFFFFE
0041A6DA . 56 push esi
0041A6DB . 8975 08 mov dword ptr ss:[ebp+0x8],esi
0041A6DE . 8B0E mov ecx,dword ptr ds:[esi]
0041A6E0 . FF51 04 call dword ptr ds:[ecx+0x4]
0041A6E3 . 8B16 mov edx,dword ptr ds:[esi]
0041A6E5 . 33DB xor ebx,ebx ; zf= 1
0041A6E7 . 56 push esi
0041A6E8 . 895D E8 mov dword ptr ss:[ebp-0x18],ebx
0041A6EB . 895D E4 mov dword ptr ss:[ebp-0x1C],ebx
0041A6EE . 895D E0 mov dword ptr ss:[ebp-0x20],ebx
0041A6F1 . 895D DC mov dword ptr ss:[ebp-0x24],ebx
0041A6F4 . 895D D8 mov dword ptr ss:[ebp-0x28],ebx
0041A6F7 . 895D D4 mov dword ptr ss:[ebp-0x2C],ebx
0041A6FA . 895D C4 mov dword ptr ss:[ebp-0x3C],ebx
0041A6FD . 895D B4 mov dword ptr ss:[ebp-0x4C],ebx
0041A700 . 895D A4 mov dword ptr ss:[ebp-0x5C],ebx
0041A703 . 895D 94 mov dword ptr ss:[ebp-0x6C],ebx
0041A706 . 895D 84 mov dword ptr ss:[ebp-0x7C],ebx
0041A709 . FF92 08030000 call dword ptr ds:[edx+0x308]
0041A70F . 50 push eax ; zf = 0
0041A710 . 8D45 D8 lea eax,dword ptr ss:[ebp-0x28]
0041A713 . 50 push eax
0041A714 . FF15 74104000 call dword ptr ds:[<&MSVBVM60.__vbaObjSe>; MSVBVM60.__vbaObjSet
0041A71A . 8BF8 mov edi,eax ; zf = 1
0041A71C . 8D55 E8 lea edx,dword ptr ss:[ebp-0x18]
0041A71F . 52 push edx
0041A720 . 57 push edi
0041A721 . 8B0F mov ecx,dword ptr ds:[edi]
0041A723 . FF91 A0000000 call dword ptr ds:[ecx+0xA0]
0041A729 . 3BC3 cmp eax,ebx
0041A72B . DBE2 fclex
0041A72D . 7D 12 jge XSplitDoc.0041A741
0041A72F . 68 A0000000 push 0xA0
0041A734 . 68 A0594000 push SplitDoc.004059A0
0041A739 . 57 push edi
0041A73A . 50 push eax
0041A73B . FF15 5C104000 call dword ptr ds:[<&MSVBVM60.__vbaHresu>; MSVBVM60.__vbaHresultCheckObj
0041A741 > 8B45 E8 mov eax,dword ptr ss:[ebp-0x18]
0041A744 . 53 push ebx
0041A745 . 6A FF push -0x1
0041A747 . 6A 01 push 0x1
0041A749 . 68 2C584000 push SplitDoc.0040582C
0041A74E . 68 4C694000 push SplitDoc.0040694C ; \r
0041A753 . 50 push eax
0041A754 . FF15 18114000 call dword ptr ds:[<&MSVBVM60.#712>] ; MSVBVM60.rtcReplace
0041A75A . 8B3D D0114000 mov edi,dword ptr ds:[<&MSVBVM60.__vbaSt>; MSVBVM60.__vbaStrMove
0041A760 . 8BD0 mov edx,eax
0041A762 . 8D4D DC lea ecx,dword ptr ss:[ebp-0x24]
0041A765 . FFD7 call edi ; <&MSVBVM60.__vbaStrMove>
0041A767 . 8B0E mov ecx,dword ptr ds:[esi]
0041A769 . 56 push esi
0041A76A . FF91 08030000 call dword ptr ds:[ecx+0x308]
0041A770 . 8D55 D4 lea edx,dword ptr ss:[ebp-0x2C] ; zf = 0
0041A773 . 50 push eax
0041A774 . 52 push edx
0041A775 . FF15 74104000 call dword ptr ds:[<&MSVBVM60.__vbaObjSe>; MSVBVM60.__vbaObjSet
0041A77B . 8B55 DC mov edx,dword ptr ss:[ebp-0x24] ; zf = 1
0041A77E . 53 push ebx
0041A77F . 6A FF push -0x1
0041A781 . 6A 01 push 0x1
0041A783 . 68 2C584000 push SplitDoc.0040582C
0041A788 . 68 54694000 push SplitDoc.00406954 ; \n
0041A78D . 8D4D E4 lea ecx,dword ptr ss:[ebp-0x1C]
0041A790 . 8985 58FFFFFF mov dword ptr ss:[ebp-0xA8],eax
0041A796 . 895D DC mov dword ptr ss:[ebp-0x24],ebx
0041A799 . FFD7 call edi
0041A79B . 50 push eax
0041A79C . FF15 18114000 call dword ptr ds:[<&MSVBVM60.#712>] ; MSVBVM60.rtcReplace
0041A7A2 . 8945 CC mov dword ptr ss:[ebp-0x34],eax
0041A7A5 . 8D45 C4 lea eax,dword ptr ss:[ebp-0x3C]
0041A7A8 . 8D4D B4 lea ecx,dword ptr ss:[ebp-0x4C]
0041A7AB . 50 push eax
0041A7AC . 51 push ecx
0041A7AD . C745 C4 08000>mov dword ptr ss:[ebp-0x3C],0x8
0041A7B4 . FF15 90104000 call dword ptr ds:[<&MSVBVM60.#520>] ; MSVBVM60.rtcTrimVar
0041A7BA . 8B95 58FFFFFF mov edx,dword ptr ss:[ebp-0xA8] ; zf = 0 SF!=OF重要嫌疑,后解除,为清除字符串空白的函数
0041A7C0 . 8D45 B4 lea eax,dword ptr ss:[ebp-0x4C]
0041A7C3 . 8D4D E0 lea ecx,dword ptr ss:[ebp-0x20]
0041A7C6 . 50 push eax ; /String8
0041A7C7 . 8B1A mov ebx,dword ptr ds:[edx] ; |
0041A7C9 . 51 push ecx ; |ARG2
0041A7CA . FF15 44114000 call dword ptr ds:[<&MSVBVM60.__vbaStrVa>; \__vbaStrVarVal
0041A7D0 . 8BD3 mov edx,ebx ; zf = 1 SF=OF
0041A7D2 . 8B9D 58FFFFFF mov ebx,dword ptr ss:[ebp-0xA8]
0041A7D8 . 50 push eax
0041A7D9 . 53 push ebx
0041A7DA . FF92 A4000000 call dword ptr ds:[edx+0xA4]
0041A7E0 . 85C0 test eax,eax
0041A7E2 . DBE2 fclex
0041A7E4 . 7D 12 jge XSplitDoc.0041A7F8
0041A7E6 . 68 A4000000 push 0xA4
0041A7EB . 68 A0594000 push SplitDoc.004059A0
0041A7F0 . 53 push ebx
0041A7F1 . 50 push eax
0041A7F2 . FF15 5C104000 call dword ptr ds:[<&MSVBVM60.__vbaHresu>; MSVBVM60.__vbaHresultCheckObj
0041A7F8 > 8D45 DC lea eax,dword ptr ss:[ebp-0x24]
0041A7FB . 8D4D E0 lea ecx,dword ptr ss:[ebp-0x20]
0041A7FE . 50 push eax
0041A7FF . 8D55 E4 lea edx,dword ptr ss:[ebp-0x1C]
0041A802 . 51 push ecx
0041A803 . 8D45 E8 lea eax,dword ptr ss:[ebp-0x18]
0041A806 . 52 push edx
0041A807 . 50 push eax
0041A808 . 6A 04 push 0x4
0041A80A . FF15 84114000 call dword ptr ds:[<&MSVBVM60.__vbaFreeS>; MSVBVM60.__vbaFreeStrList
0041A810 . 8D4D D4 lea ecx,dword ptr ss:[ebp-0x2C]
0041A813 . 8D55 D8 lea edx,dword ptr ss:[ebp-0x28]
0041A816 . 51 push ecx
0041A817 . 52 push edx
0041A818 . 6A 02 push 0x2
0041A81A . FF15 34104000 call dword ptr ds:[<&MSVBVM60.__vbaFreeO>; MSVBVM60.__vbaFreeObjList
0041A820 . 8D45 B4 lea eax,dword ptr ss:[ebp-0x4C]
0041A823 . 8D4D C4 lea ecx,dword ptr ss:[ebp-0x3C]
0041A826 . 50 push eax
0041A827 . 51 push ecx
0041A828 . 6A 02 push 0x2
0041A82A . FF15 2C104000 call dword ptr ds:[<&MSVBVM60.__vbaFreeV>; MSVBVM60.__vbaFreeVarList
0041A830 . 8B16 mov edx,dword ptr ds:[esi] ; xxxxxxx
0041A832 . 83C4 2C add esp,0x2C ; zf = 0 XXXX
0041A835 . 56 push esi
0041A836 . FF92 08030000 call dword ptr ds:[edx+0x308]
0041A83C . 8B1D 74104000 mov ebx,dword ptr ds:[<&MSVBVM60.__vbaOb>; MSVBVM60.__vbaObjSet
0041A842 . 50 push eax
0041A843 . 8D45 D8 lea eax,dword ptr ss:[ebp-0x28]
0041A846 . 50 push eax
0041A847 . FFD3 call ebx ; <&MSVBVM60.__vbaObjSet>
0041A849 . 8B08 mov ecx,dword ptr ds:[eax] ; zf = 1
0041A84B . 8D55 E8 lea edx,dword ptr ss:[ebp-0x18]
0041A84E . 52 push edx
0041A84F . 50 push eax
0041A850 . 8985 60FFFFFF mov dword ptr ss:[ebp-0xA0],eax
0041A856 . FF91 A0000000 call dword ptr ds:[ecx+0xA0] ; 经过这里eax变为0嫌疑
0041A85C . 85C0 test eax,eax
0041A85E . DBE2 fclex
0041A860 . 7D 18 jge XSplitDoc.0041A87A
0041A862 . 8B8D 60FFFFFF mov ecx,dword ptr ss:[ebp-0xA0]
0041A868 . 68 A0000000 push 0xA0
0041A86D . 68 A0594000 push SplitDoc.004059A0
0041A872 . 51 push ecx
0041A873 . 50 push eax
0041A874 . FF15 5C104000 call dword ptr ds:[<&MSVBVM60.__vbaHresu>; MSVBVM60.__vbaHresultCheckObj
0041A87A > 8B55 E8 mov edx,dword ptr ss:[ebp-0x18]
0041A87D . 52 push edx ; /String
0041A87E . FF15 24104000 call dword ptr ds:[<&MSVBVM60.__vbaLenBs>; \是这个?
0041A884 . 33C9 xor ecx,ecx
0041A886 . 83F8 0E cmp eax,0xE ; zf = 0 SF!=OF
0041A889 . 0F9CC1 setl cl ; sf!=of置cl = 1
0041A88C . F7D9 neg ecx ; 改变ecx
0041A88E . 66:898D 58FFF>mov word ptr ss:[ebp-0xA8],cx
0041A895 . 8D4D E8 lea ecx,dword ptr ss:[ebp-0x18]
0041A898 . FF15 FC114000 call dword ptr ds:[<&MSVBVM60.__vbaFreeS>; MSVBVM60.__vbaFreeStr
0041A89E . 8D4D D8 lea ecx,dword ptr ss:[ebp-0x28] ; zf = 1
0041A8A1 . FF15 F8114000 call dword ptr ds:[<&MSVBVM60.__vbaFreeO>; MSVBVM60.__vbaFreeObj
0041A8A7 . 66:83BD 58FFF>cmp word ptr ss:[ebp-0xA8],0x0 ; zf = 0
0041A8AF 0F84 99010000 je SplitDoc.0041AA4E ; 关键跳转
0041A8B5 . B9 04000280 mov ecx,0x80020004
0041A8BA . B8 0A000000 mov eax,0xA
0041A8BF . 894D 9C mov dword ptr ss:[ebp-0x64],ecx
0041A8C2 . 894D AC mov dword ptr ss:[ebp-0x54],ecx
0041A8C5 . 8D55 84 lea edx,dword ptr ss:[ebp-0x7C]
0041A8C8 . 8D4D B4 lea ecx,dword ptr ss:[ebp-0x4C]
0041A8CB . 8945 94 mov dword ptr ss:[ebp-0x6C],eax
0041A8CE . 8945 A4 mov dword ptr ss:[ebp-0x5C],eax
0041A8D1 . C745 8C AC694>mov dword ptr ss:[ebp-0x74],SplitDoc.004>; 注册失败
0041A8D8 . C745 84 08000>mov dword ptr ss:[ebp-0x7C],0x8
0041A8DF . FF15 AC114000 call dword ptr ds:[<&MSVBVM60.__vbaVarDu>; MSVBVM60.__vbaVarDup
0041A8E5 . 68 5C694000 push SplitDoc.0040695C ; 注册失败!
0041A8EA . 68 6C694000 push SplitDoc.0040696C ; /\r\n
0041A8EF . FF15 4C104000 call dword ptr ds:[<&MSVBVM60.__vbaStrCa>; \__vbaStrCat
0041A8F5 . 8BD0 mov edx,eax
0041A8F7 . 8D4D E8 lea ecx,dword ptr ss:[ebp-0x18]
0041A8FA . FFD7 call edi
0041A8FC . 50 push eax
0041A8FD . 68 6C694000 push SplitDoc.0040696C ; /\r\n
0041A902 . FF15 4C104000 call dword ptr ds:[<&MSVBVM60.__vbaStrCa>; \__vbaStrCat
0041A908 . 8BD0 mov edx,eax
0041A90A . 8D4D E4 lea ecx,dword ptr ss:[ebp-0x1C]
0041A90D . FFD7 call edi
0041A90F . 50 push eax
0041A910 . 68 78694000 push SplitDoc.00406978 ; /感谢您使用并注册本软件。请检查输入是否正确。
0041A915 . FF15 4C104000 call dword ptr ds:[<&MSVBVM60.__vbaStrCa>; \__vbaStrCat
0041A91B . 8945 CC mov dword ptr ss:[ebp-0x34],eax
0041A91E . 8D55 94 lea edx,dword ptr ss:[ebp-0x6C]
0041A921 . 8D45 A4 lea eax,dword ptr ss:[ebp-0x5C]
0041A924 . 52 push edx
0041A925 . 8D4D B4 lea ecx,dword ptr ss:[ebp-0x4C]
0041A928 . 50 push eax
0041A929 . 51 push ecx
0041A92A . 8D55 C4 lea edx,dword ptr ss:[ebp-0x3C]
0041A92D . 6A 10 push 0x10
0041A92F . 52 push edx
0041A930 . C745 C4 08000>mov dword ptr ss:[ebp-0x3C],0x8
0041A937 . FF15 7C104000 call dword ptr ds:[<&MSVBVM60.#595>] ; MSVBVM60.rtcMsgBox
0041A93D . 8D45 E4 lea eax,dword ptr ss:[ebp-0x1C]
0041A940 . 8D4D E8 lea ecx,dword ptr ss:[ebp-0x18]
0041A943 . 50 push eax
0041A944 . 51 push ecx
0041A945 . 6A 02 push 0x2
0041A947 . FF15 84114000 call dword ptr ds:[<&MSVBVM60.__vbaFreeS>; MSVBVM60.__vbaFreeStrList
0041A94D . 8D55 94 lea edx,dword ptr ss:[ebp-0x6C]
0041A950 . 8D45 A4 lea eax,dword ptr ss:[ebp-0x5C]
0041A953 . 52 push edx
0041A954 . 8D4D B4 lea ecx,dword ptr ss:[ebp-0x4C]
0041A957 . 50 push eax
0041A958 . 8D55 C4 lea edx,dword ptr ss:[ebp-0x3C]
0041A95B . 51 push ecx
0041A95C . 52 push edx
0041A95D . 6A 04 push 0x4
0041A95F . FF15 2C104000 call dword ptr ds:[<&MSVBVM60.__vbaFreeV>; MSVBVM60.__vbaFreeVarList
0041A965 . 8B06 mov eax,dword ptr ds:[esi]
0041A967 . 83C4 20 add esp,0x20
0041A96A . 56 push esi
0041A96B . FF90 08030000 call dword ptr ds:[eax+0x308]
0041A971 . 8D4D D8 lea ecx,dword ptr ss:[ebp-0x28]
0041A974 . 50 push eax
0041A975 . 51 push ecx
0041A976 . FFD3 call ebx
0041A978 . 8BF8 mov edi,eax
0041A97A . 57 push edi
0041A97B . 8B17 mov edx,dword ptr ds:[edi]
0041A97D . FF92 04020000 call dword ptr ds:[edx+0x204]
0041A983 . 85C0 test eax,eax
0041A985 . DBE2 fclex
0041A987 . 7D 12 jge XSplitDoc.0041A99B
0041A989 . 68 04020000 push 0x204
0041A98E . 68 A0594000 push SplitDoc.004059A0
0041A993 . 57 push edi
0041A994 . 50 push eax
0041A995 . FF15 5C104000 call dword ptr ds:[<&MSVBVM60.__vbaHresu>; MSVBVM60.__vbaHresultCheckObj
0041A99B > 8D4D D8 lea ecx,dword ptr ss:[ebp-0x28]
0041A99E . FF15 F8114000 call dword ptr ds:[<&MSVBVM60.__vbaFreeO>; MSVBVM60.__vbaFreeObj
0041A9A4 . 8B06 mov eax,dword ptr ds:[esi]
0041A9A6 . 56 push esi
0041A9A7 . FF90 08030000 call dword ptr ds:[eax+0x308]
0041A9AD . 8D4D D8 lea ecx,dword ptr ss:[ebp-0x28]
0041A9B0 . 50 push eax
0041A9B1 . 51 push ecx
0041A9B2 . FFD3 call ebx
0041A9B4 . 8BF8 mov edi,eax
0041A9B6 . 6A 00 push 0x0
0041A9B8 . 57 push edi
0041A9B9 . 8B17 mov edx,dword ptr ds:[edi]
0041A9BB . FF92 14010000 call dword ptr ds:[edx+0x114]
0041A9C1 . 85C0 test eax,eax
0041A9C3 . DBE2 fclex
0041A9C5 . 7D 12 jge XSplitDoc.0041A9D9
0041A9C7 . 68 14010000 push 0x114
0041A9CC . 68 A0594000 push SplitDoc.004059A0
0041A9D1 . 57 push edi
0041A9D2 . 50 push eax
0041A9D3 . FF15 5C104000 call dword ptr ds:[<&MSVBVM60.__vbaHresu>; MSVBVM60.__vbaHresultCheckObj
0041A9D9 > 8D4D D8 lea ecx,dword ptr ss:[ebp-0x28]
0041A9DC . FF15 F8114000 call dword ptr ds:[<&MSVBVM60.__vbaFreeO>; MSVBVM60.__vbaFreeObj
0041A9E2 . 8B06 mov eax,dword ptr ds:[esi]
0041A9E4 . 56 push esi
0041A9E5 . FF90 08030000 call dword ptr ds:[eax+0x308]
0041A9EB . 8D4D D4 lea ecx,dword ptr ss:[ebp-0x2C]
0041A9EE . 50 push eax
0041A9EF . 51 push ecx
0041A9F0 . FFD3 call ebx
0041A9F2 . 8B16 mov edx,dword ptr ds:[esi]
0041A9F4 . 56 push esi
0041A9F5 . 8BF8 mov edi,eax
0041A9F7 . FF92 08030000 call dword ptr ds:[edx+0x308]
0041A9FD . 50 push eax
0041A9FE . 8D45 D8 lea eax,dword ptr ss:[ebp-0x28]
0041AA01 . 50 push eax
0041AA02 . FFD3 call ebx
0041AA04 . 8BF0 mov esi,eax
0041AA06 . 8D55 E8 lea edx,dword ptr ss:[ebp-0x18]
0041AA09 . 52 push edx
0041AA0A . 56 push esi
0041AA0B . 8B0E mov ecx,dword ptr ds:[esi]
0041AA0D . FF91 A0000000 call dword ptr ds:[ecx+0xA0]
0041AA13 . 85C0 test eax,eax
0041AA15 . DBE2 fclex
0041AA17 . 7D 12 jge XSplitDoc.0041AA2B
0041AA19 . 68 A0000000 push 0xA0
0041AA1E . 68 A0594000 push SplitDoc.004059A0
0041AA23 . 56 push esi
0041AA24 . 50 push eax
0041AA25 . FF15 5C104000 call dword ptr ds:[<&MSVBVM60.__vbaHresu>; MSVBVM60.__vbaHresultCheckObj
0041AA2B > 8B45 E8 mov eax,dword ptr ss:[ebp-0x18]
0041AA2E . 8B37 mov esi,dword ptr ds:[edi]
0041AA30 . 50 push eax ; /String
0041AA31 . FF15 24104000 call dword ptr ds:[<&MSVBVM60.__vbaLenBs>; \__vbaLenBstr
0041AA37 . 50 push eax
0041AA38 . 57 push edi
0041AA39 . FF96 1C010000 call dword ptr ds:[esi+0x11C]
0041AA3F . 85C0 test eax,eax
0041AA41 . DBE2 fclex
0041AA43 . 0F8D E2030000 jge SplitDoc.0041AE2B
0041AA49 . E9 CB030000 jmp SplitDoc.0041AE19
0041AA4E > 8B06 mov eax,dword ptr ds:[esi]
0041AA50 . 56 push esi
0041AA51 . FF90 08030000 call dword ptr ds:[eax+0x308]
0041AA57 . 8D4D D8 lea ecx,dword ptr ss:[ebp-0x28]
0041AA5A . 50 push eax
0041AA5B . 51 push ecx
0041AA5C . FFD3 call ebx
0041AA5E . 8B10 mov edx,dword ptr ds:[eax]
0041AA60 . 8D4D E8 lea ecx,dword ptr ss:[ebp-0x18]
0041AA63 . 51 push ecx
0041AA64 . 50 push eax
0041AA65 . 8985 60FFFFFF mov dword ptr ss:[ebp-0xA0],eax
0041AA6B . FF92 A0000000 call dword ptr ds:[edx+0xA0]
0041AA71 . 85C0 test eax,eax
0041AA73 . DBE2 fclex
0041AA75 . 7D 18 jge XSplitDoc.0041AA8F
0041AA77 . 8B95 60FFFFFF mov edx,dword ptr ss:[ebp-0xA0]
0041AA7D . 68 A0000000 push 0xA0
0041AA82 . 68 A0594000 push SplitDoc.004059A0
0041AA87 . 52 push edx
0041AA88 . 50 push eax
0041AA89 . FF15 5C104000 call dword ptr ds:[<&MSVBVM60.__vbaHresu>; MSVBVM60.__vbaHresultCheckObj
0041AA8F > 8B55 E8 mov edx,dword ptr ss:[ebp-0x18]
0041AA92 . 8D4D E4 lea ecx,dword ptr ss:[ebp-0x1C]
0041AA95 . C745 E8 00000>mov dword ptr ss:[ebp-0x18],0x0
0041AA9C . FFD7 call edi
0041AA9E . 8D45 E4 lea eax,dword ptr ss:[ebp-0x1C]
0041AAA1 . 50 push eax
0041AAA2 . E8 C9E1FFFF call SplitDoc.00418C70
0041AAA7 . 8D4D E4 lea ecx,dword ptr ss:[ebp-0x1C]
0041AAAA . 66:8985 58FFF>mov word ptr ss:[ebp-0xA8],ax
0041AAB1 . FF15 FC114000 call dword ptr ds:[<&MSVBVM60.__vbaFreeS>; MSVBVM60.__vbaFreeStr
0041AAB7 . 8D4D D8 lea ecx,dword ptr ss:[ebp-0x28]
0041AABA . FF15 F8114000 call dword ptr ds:[<&MSVBVM60.__vbaFreeO>; MSVBVM60.__vbaFreeObj
0041AAC0 . 66:83BD 58FFF>cmp word ptr ss:[ebp-0xA8],0x0
0041AAC8 0F84 BB010000 je SplitDoc.0041AC89
0041AACE . 66:C705 40E04>mov word ptr ds:[0x41E040],0xFFFF
0041AAD7 . 8B0E mov ecx,dword ptr ds:[esi]
0041AAD9 . 56 push esi
0041AADA . FF91 08030000 call dword ptr ds:[ecx+0x308]
0041AAE0 . 8D55 D8 lea edx,dword ptr ss:[ebp-0x28]
0041AAE3 . 50 push eax
0041AAE4 . 52 push edx
0041AAE5 . FFD3 call ebx
0041AAE7 . 8B08 mov ecx,dword ptr ds:[eax]
0041AAE9 . 8D55 E8 lea edx,dword ptr ss:[ebp-0x18]
0041AAEC . 52 push edx
0041AAED . 50 push eax
0041AAEE . 8985 60FFFFFF mov dword ptr ss:[ebp-0xA0],eax
0041AAF4 . FF91 A0000000 call dword ptr ds:[ecx+0xA0]
0041AAFA . 85C0 test eax,eax
0041AAFC . DBE2 fclex
0041AAFE . 7D 18 jge XSplitDoc.0041AB18
0041AB00 . 8B8D 60FFFFFF mov ecx,dword ptr ss:[ebp-0xA0]
0041AB06 . 68 A0000000 push 0xA0
0041AB0B . 68 A0594000 push SplitDoc.004059A0
0041AB10 . 51 push ecx
0041AB11 . 50 push eax
0041AB12 . FF15 5C104000 call dword ptr ds:[<&MSVBVM60.__vbaHresu>; MSVBVM60.__vbaHresultCheckObj
0041AB18 > 8B55 E8 mov edx,dword ptr ss:[ebp-0x18]
0041AB1B . B9 38E04100 mov ecx,SplitDoc.0041E038
0041AB20 . C745 E8 00000>mov dword ptr ss:[ebp-0x18],0x0
0041AB27 . FFD7 call edi
0041AB29 . 8D4D D8 lea ecx,dword ptr ss:[ebp-0x28]
0041AB2C . FF15 F8114000 call dword ptr ds:[<&MSVBVM60.__vbaFreeO>; MSVBVM60.__vbaFreeObj
0041AB32 . B9 04000280 mov ecx,0x80020004
0041AB37 . B8 0A000000 mov eax,0xA
0041AB3C . 894D 9C mov dword ptr ss:[ebp-0x64],ecx
0041AB3F . 894D AC mov dword ptr ss:[ebp-0x54],ecx
0041AB42 . 8D55 84 lea edx,dword ptr ss:[ebp-0x7C]
0041AB45 . 8D4D B4 lea ecx,dword ptr ss:[ebp-0x4C]
0041AB48 . 8945 94 mov dword ptr ss:[ebp-0x6C],eax
0041AB4B . 8945 A4 mov dword ptr ss:[ebp-0x5C],eax
0041AB4E . C745 8C F0694>mov dword ptr ss:[ebp-0x74],SplitDoc.004>; 用户注册成功
0041AB55 . C745 84 08000>mov dword ptr ss:[ebp-0x7C],0x8
0041AB5C . FF15 AC114000 call dword ptr ds:[<&MSVBVM60.__vbaVarDu>; MSVBVM60.__vbaVarDup
0041AB62 . 68 BC694000 push SplitDoc.004069BC ; 注册成功!
0041AB67 . 68 6C694000 push SplitDoc.0040696C ; /\r\n
0041AB6C . FF15 4C104000 call dword ptr ds:[<&MSVBVM60.__vbaStrCa>; \__vbaStrCat
0041AB72 . 8BD0 mov edx,eax
0041AB74 . 8D4D E8 lea ecx,dword ptr ss:[ebp-0x18]
0041AB77 . FFD7 call edi
0041AB79 . 50 push eax
0041AB7A . 68 CC694000 push SplitDoc.004069CC ; /再次感谢您使用并注册本软件。
0041AB7F . FF15 4C104000 call dword ptr ds:[<&MSVBVM60.__vbaStrCa>; \__vbaStrCat
0041AB85 . 8945 CC mov dword ptr ss:[ebp-0x34],eax
0041AB88 . 8D55 94 lea edx,dword ptr ss:[ebp-0x6C]
0041AB8B . 8D45 A4 lea eax,dword ptr ss:[ebp-0x5C]
0041AB8E . 52 push edx
0041AB8F . 8D4D B4 lea ecx,dword ptr ss:[ebp-0x4C]
0041AB92 . 50 push eax
我写的注释不要看啊。。。。纯小白一个,希望各位能教教我这个怎么搞
软件下载地址
SplitDoc101.zip
[峰会]看雪.第八届安全开发者峰会10月23日上海龙之梦大酒店举办!
|
|
|---|---|
|
|
|
|
|
|
|
|
|
