将
0040A2B3 . 74 0A JE SHORT INSTALL.0040A2BF
修改为
0040A2B3 . 75 0A JNE SHORT INSTALL.0040A2BF
程序会死掉
以知0040A2B0 . 74 14 JE SHORT INSTALL.0040A2C6 是调用软盘写保护处理子程序,0040A2B3 . 74 0A JE SHORT INSTALL.0040A2BF 是调用安装次数上限处理子程序
0040A258 > 8BC6 MOV EAX,ESI
0040A25A . 5E POP ESI
0040A25B . C2 0400 RETN 4
0040A25E 90 NOP
0040A25F 90 NOP
0040A260 . 56 PUSH ESI
0040A261 . 8BF1 MOV ESI,ECX
0040A263 . 57 PUSH EDI
0040A264 . 8B7C24 0C MOV EDI,DWORD PTR SS:[ESP+C]
0040A268 . 8D46 5C LEA EAX,DWORD PTR DS:[ESI+5C]
0040A26B . 50 PUSH EAX
0040A26C . 68 EC030000 PUSH 3EC
0040A271 . 57 PUSH EDI
0040A272 . E8 F26D0200 CALL INSTALL.00431069
0040A277 . 81C6 98000000 ADD ESI,98
0040A27D . 56 PUSH ESI ; /Arg3
0040A27E . 68 EC030000 PUSH 3EC ; |Arg2 = 000003EC
0040A283 . 57 PUSH EDI ; |Arg1
0040A284 . E8 8E6D0200 CALL INSTALL.00431017 ; \INSTALL.00431017
0040A289 . 5F POP EDI
0040A28A . 5E POP ESI
0040A28B . C2 0400 RETN 4
0040A28E 90 NOP
0040A28F 90 NOP
0040A290 . B8 A8AE4300 MOV EAX,INSTALL.0043AEA8
0040A295 . C3 RETN
0040A296 90 NOP
0040A297 90 NOP
0040A298 90 NOP
0040A299 90 NOP
0040A29A 90 NOP
0040A29B 90 NOP
0040A29C 90 NOP
0040A29D 90 NOP
0040A29E 90 NOP
0040A29F 90 NOP
0040A2A0 . 56 PUSH ESI
0040A2A1 . 8BF1 MOV ESI,ECX
0040A2A3 . E8 FCF40100 CALL INSTALL.004297A4
0040A2A8 . A1 90D54400 MOV EAX,DWORD PTR DS:[44D590]
0040A2AD . 83E8 00 SUB EAX,0 ; Switch (cases 0..2)
0040A2B0 . 74 14 JE SHORT INSTALL.0040A2C6
0040A2B2 . 48 DEC EAX
0040A2B3 . 74 0A JE SHORT INSTALL.0040A2BF
0040A2B5 . 48 DEC EAX
0040A2B6 . 75 1E JNZ SHORT INSTALL.0040A2D6
0040A2B8 . 68 D8070000 PUSH 7D8 ; Case 2 of switch 0040A2AD
0040A2BD . EB 0C JMP SHORT INSTALL.0040A2CB
0040A2BF > 68 D9070000 PUSH 7D9 ; Case 1 of switch 0040A2AD
0040A2C4 . EB 05 JMP SHORT INSTALL.0040A2CB
0040A2C6 > 68 D6070000 PUSH 7D6 ; Case 0 of switch 0040A2AD
0040A2CB > 8D8E 98000000 LEA ECX,DWORD PTR DS:[ESI+98] ; |
0040A2D1 . E8 41430200 CALL INSTALL.0042E617 ; \INSTALL.0042E617
0040A2D6 > 6A 00 PUSH 0 ; Default case of switch 0040A2AD
0040A2D8 . 8BCE MOV ECX,ESI
0040A2DA . E8 791A0200 CALL INSTALL.0042BD58
0040A2DF . B8 01000000 MOV EAX,1
0040A2E4 . 5E POP ESI
0040A2E5 . C3 RETN
0040A2E6 90 NOP
0040A2E7 90 NOP
[/list] [CODE][code]
[招生]科锐逆向工程师培训(2024年11月15日实地,远程教学同时开班, 第51期)