mov dword ptr [eax], 如何下断点-经典问答-看雪-安全社区|安全招聘|kanxue.com

最新回复 (2)
kanxue 雪币： 50161 活跃值： (20610) 能力值： (RANK：350 ) 在线值：发帖 2375 回帖 17046 粉丝 549 关注私信	kanxue 8 2 楼没太明白你所描述问题你可以用OD跟到这行，在数据窗口下命令：d eax 2007-1-3 19:01 0
skylee 雪币： 183 活跃值： (35) 能力值： ( LV2，RANK：10 ) 在线值：发帖 17 回帖 39 粉丝 0 关注私信	skylee 3 楼原文件代码，自效验部分 :004036C8 8D857CFFFFFF lea eax, dword ptr [ebp+FFFFFF7C] :004036CE 50 push eax :004036CF E89EC20300 call 0043F972 :004036D4 3BF3 cmp esi, ebx :004036D6 59 pop ecx :004036D7 7E1A jle 004036F3 :004036D9 8BFE mov edi, esi * Referenced by a (U)nconditional or (C)onditional Jump at Address: \|:004036F1(C) \| :004036DB 8D45D8 lea eax, dword ptr [ebp-28] :004036DE 6A10 push 00000010 :004036E0 50 push eax :004036E1 8D857CFFFFFF lea eax, dword ptr [ebp+FFFFFF7C] :004036E7 50 push eax :004036E8 E8C3C20300 call 0043F9B0 :004036ED 83C40C add esp, 0000000C :004036F0 4F dec edi :004036F1 75E8 jne 004036DB * Referenced by a (U)nconditional or (C)onditional Jump at Address: \|:004036D7(C) \| :004036F3 8D857CFFFFFF lea eax, dword ptr [ebp+FFFFFF7C] :004036F9 50 push eax :004036FA 8D45D8 lea eax, dword ptr [ebp-28] :004036FD 50 push eax :004036FE E801CE0300 call 00440504 :00403703 46 inc esi :00403704 59 pop ecx :00403705 83FE0C cmp esi, 0000000C :00403708 59 pop ecx :00403709 7CBD jl 004036C8 :0040370B FF7508 push [ebp+08] * Reference To: KERNEL32.GetFileAttributesA, Ord:010Dh 破解后 * Referenced by a (U)nconditional or (C)onditional Jump at Address: \|:00403709(C) \| :004036C8 8D45D8 lea eax, dword ptr [ebp-28] :004036CB C70007A53840 mov dword ptr [eax], 4038A507 :004036D1 C740048C25C849 mov [eax+04], 49C8258C :004036D8 C740081621A0C4 mov [eax+08], C4A02116 :004036DF C7400CAB2E59C3 mov [eax+0C], C3592EAB :004036E6 C7401058BA5500 mov [eax+10], 0055BA58 :004036ED EB1C jmp 0040370B :004036EF 90 nop :004036F0 4F dec edi :004036F1 75E8 jne 004036DB :004036F3 8D857CFFFFFF lea eax, dword ptr [ebp+FFFFFF7C] :004036F9 50 push eax :004036FA 8D45D8 lea eax, dword ptr [ebp-28] :004036FD 50 push eax :004036FE E801CE0300 call 00440504 :00403703 46 inc esi :00403704 59 pop ecx :00403705 83FE0C cmp esi, 0000000C :00403708 59 pop ecx :00403709 7CBD jl 004036C8 * Referenced by a (U)nconditional or (C)onditional Jump at Address: \|:004036ED(U) \| :0040370B FF7508 push [ebp+08] * Reference To: KERNEL32.GetFileAttributesA, Ord:010Dh 2007-1-4 18:23 0
	游客登录 \| 注册方可回帖回帖表情雪币赚取及消费高级回复

最新回复 (2)
kanxue 雪币： 50161 活跃值： (20610) 能力值： (RANK：350 ) 在线值：发帖 2375 回帖 17046 粉丝 549 关注私信	kanxue 8 2 楼没太明白你所描述问题你可以用OD跟到这行，在数据窗口下命令：d eax 2007-1-3 19:01 0
skylee 雪币： 183 活跃值： (35) 能力值： ( LV2，RANK：10 ) 在线值：发帖 17 回帖 39 粉丝 0 关注私信	skylee 3 楼原文件代码，自效验部分 :004036C8 8D857CFFFFFF lea eax, dword ptr [ebp+FFFFFF7C] :004036CE 50 push eax :004036CF E89EC20300 call 0043F972 :004036D4 3BF3 cmp esi, ebx :004036D6 59 pop ecx :004036D7 7E1A jle 004036F3 :004036D9 8BFE mov edi, esi * Referenced by a (U)nconditional or (C)onditional Jump at Address: \|:004036F1(C) \| :004036DB 8D45D8 lea eax, dword ptr [ebp-28] :004036DE 6A10 push 00000010 :004036E0 50 push eax :004036E1 8D857CFFFFFF lea eax, dword ptr [ebp+FFFFFF7C] :004036E7 50 push eax :004036E8 E8C3C20300 call 0043F9B0 :004036ED 83C40C add esp, 0000000C :004036F0 4F dec edi :004036F1 75E8 jne 004036DB * Referenced by a (U)nconditional or (C)onditional Jump at Address: \|:004036D7(C) \| :004036F3 8D857CFFFFFF lea eax, dword ptr [ebp+FFFFFF7C] :004036F9 50 push eax :004036FA 8D45D8 lea eax, dword ptr [ebp-28] :004036FD 50 push eax :004036FE E801CE0300 call 00440504 :00403703 46 inc esi :00403704 59 pop ecx :00403705 83FE0C cmp esi, 0000000C :00403708 59 pop ecx :00403709 7CBD jl 004036C8 :0040370B FF7508 push [ebp+08] * Reference To: KERNEL32.GetFileAttributesA, Ord:010Dh 破解后 * Referenced by a (U)nconditional or (C)onditional Jump at Address: \|:00403709(C) \| :004036C8 8D45D8 lea eax, dword ptr [ebp-28] :004036CB C70007A53840 mov dword ptr [eax], 4038A507 :004036D1 C740048C25C849 mov [eax+04], 49C8258C :004036D8 C740081621A0C4 mov [eax+08], C4A02116 :004036DF C7400CAB2E59C3 mov [eax+0C], C3592EAB :004036E6 C7401058BA5500 mov [eax+10], 0055BA58 :004036ED EB1C jmp 0040370B :004036EF 90 nop :004036F0 4F dec edi :004036F1 75E8 jne 004036DB :004036F3 8D857CFFFFFF lea eax, dword ptr [ebp+FFFFFF7C] :004036F9 50 push eax :004036FA 8D45D8 lea eax, dword ptr [ebp-28] :004036FD 50 push eax :004036FE E801CE0300 call 00440504 :00403703 46 inc esi :00403704 59 pop ecx :00403705 83FE0C cmp esi, 0000000C :00403708 59 pop ecx :00403709 7CBD jl 004036C8 * Referenced by a (U)nconditional or (C)onditional Jump at Address: \|:004036ED(U) \| :0040370B FF7508 push [ebp+08] * Reference To: KERNEL32.GetFileAttributesA, Ord:010Dh 2007-1-4 18:23 0
	游客登录 \| 注册方可回帖回帖表情雪币赚取及消费高级回复