爆破就差一步啊!
0066699E 00 DB 000066699F 00 DB 00
006669A0 .6800 7400 740>UNICODE "http://w"
006669B0 .7700 7700 2E0>UNICODE "ww.kingc"
006669C0 .6F00 6E00 630>UNICODE "onch.net"
006669D0 .2F00 7000 6F0>UNICODE "/popo/ne"
006669E0 .7700 4900 6E0>UNICODE "wInfoDes"
006669F0 .6300 2E00 610>UNICODE "c.asp",0
006669FC .A1 742A6700 MOV EAX,DWORD PTR DS:
00666A01 .8B00 MOV EAX,DWORD PTR DS:
00666A03 .80B8 89030000>CMP BYTE PTR DS:,0
00666A0A .75 26 JNZ SHORT popoNetT.00666A32〈〈=======不管改成JMP还是改成JE ,播放4-5分钟就会出现 非常抱歉,此次试用评估时间已到!\n请退出[]后重新启
00666A0C .6A 01 PUSH 1
00666A0E .6A 00 PUSH 0
00666A10 .6A 00 PUSH 0
00666A12 .A1 742A6700 MOV EAX,DWORD PTR DS:
00666A17 .8B00 MOV EAX,DWORD PTR DS:
00666A19 .8B80 68030000 MOV EAX,DWORD PTR DS:
00666A1F .E8 6CE7D9FF CALL popoNetT.00405190
00666A24 .50 PUSH EAX ; |FileName
00666A25 .68 446A6600 PUSH popoNetT.00666A44 ; |open
00666A2A .6A 00 PUSH 0 ; |hWnd = NULL
00666A2C .E8 E71FDDFF CALL <JMP.&shell32.ShellExecuteA> ; \ShellExecuteA
00666A31 .C3 RETN
00666A32 >A1 6C286700 MOV EAX,DWORD PTR DS:
00666A37 .8B00 MOV EAX,DWORD PTR DS:
00666A39 .8B10 MOV EDX,DWORD PTR DS:
00666A3B .FF92 EC000000 CALL DWORD PTR DS:
00666A41 .C3 RETN
00666A42 00 DB 00
00666A43 00 DB 00
00666A44 .6F 70 65 6E 0>ASCII "open",0
00666A49 00 DB 00
00666A4A 00 DB 00
00666A4B 00 DB 00
00666A4C/$55 PUSH EBP
00666A4D|.8BEC MOV EBP,ESP
00666A4F|.6A 00 PUSH 0
00666A51|.53 PUSH EBX
00666A52|.8BD8 MOV EBX,EAX
00666A54|.33C0 XOR EAX,EAX
00666A56|.55 PUSH EBP
00666A57|.68 036B6600 PUSH popoNetT.00666B03
00666A5C|.64:FF30 PUSH DWORD PTR FS:
00666A5F|.64:8920 MOV DWORD PTR FS:,ESP
00666A62|.66:A1 106B660>MOV AX,WORD PTR DS:
00666A68|.50 PUSH EAX
00666A69|.6A 00 PUSH 0
00666A6B|.68 1C6B6600 PUSH popoNetT.00666B1C ;非常抱歉,此次试用评估时间已到!\n请退出[
00666A70|.A1 742A6700 MOV EAX,DWORD PTR DS:
00666A75|.8B00 MOV EAX,DWORD PTR DS:
00666A77|.FFB0 80030000 PUSH DWORD PTR DS:
00666A7D|.68 506B6600 PUSH popoNetT.00666B50 ;]后重新启动进行试用!
00666A82|.68 706B6600 PUSH popoNetT.00666B70 ;\n
00666A87|.68 706B6600 PUSH popoNetT.00666B70 ;\n
00666A8C|.68 7C6B6600 PUSH popoNetT.00666B7C ;如感觉本软件不错,请注册支持我们。注册后将为您开启会员
00666A91|.68 706B6600 PUSH popoNetT.00666B70 ;\n
00666A96|.68 BC6B6600 PUSH popoNetT.00666BBC ;专用通道,大大加快连接的速度,您将能够流畅收看所有在线影视。
00666A9B|.68 706B6600 PUSH popoNetT.00666B70 ;\n
00666AA0|.68 706B6600 PUSH popoNetT.00666B70 ;\n
00666AA5|.68 046C6600 PUSH popoNetT.00666C04 ;并且,我们承诺一次注册,永久有效,终身免费在线升级!
00666AAA|.8D45 FC LEA EAX,DWORD PTR SS:
00666AAD|.BA 0B000000 MOV EDX,0B
======================================================================
小虾请问大侠,
那里改错了。 以前改过,现在已记不得了怎么改了. * Referenced by a (U)nconditional or (C)onditional Jump at Address:
|:006669F6(C)
|
:006669F8 7000 jo 006669FA
* Referenced by a (U)nconditional or (C)onditional Jump at Address:
|:006669F8(C)
|
:006669FA 0000 add byte ptr , al
:006669FC A1742A6700 mov eax, dword ptr
:00666A01 8B00 mov eax, dword ptr
:00666A03 80B88903000000 cmp byte ptr , 00
:00666A0A 7526 jne 00666A32
:00666A0C 6A01 push 00000001
:00666A0E 6A00 push 00000000
:00666A10 6A00 push 00000000
:00666A12 A1742A6700 mov eax, dword ptr
:00666A17 8B00 mov eax, dword ptr
:00666A19 8B8068030000 mov eax, dword ptr
:00666A1F E86CE7D9FF call 00405190
:00666A24 50 push eax
* Possible StringData Ref from Code Obj ->"open"
|
:00666A25 68446A6600 push 00666A44
:00666A2A 6A00 push 00000000
* Reference To: shell32.ShellExecuteA, Ord:0000h
|
:00666A2C E8E71FDDFF Call 00438A18
:00666A31 C3 ret
* Referenced by a (U)nconditional or (C)onditional Jump at Address:
|:00666A0A(C)
|
:00666A32 A16C286700 mov eax, dword ptr
:00666A37 8B00 mov eax, dword ptr
:00666A39 8B10 mov edx, dword ptr
:00666A3B FF92EC000000 call dword ptr
:00666A41 C3 ret
:00666A42 0000 BYTE 2 DUP(0)
:00666A44 6F outsd
:00666A45 7065 jo 00666AAC
:00666A47 6E outsb
:00666A48 00000000 BYTE4 DUP(0)
* Referenced by a CALL at Addresses:
|:00662FE3 , :00666175
|
:00666A4C 55 push ebp
:00666A4D 8BEC mov ebp, esp
:00666A4F 6A00 push 00000000
:00666A51 53 push ebx
:00666A52 8BD8 mov ebx, eax
:00666A54 33C0 xor eax, eax
:00666A56 55 push ebp
:00666A57 68036B6600 push 00666B03
:00666A5C 64FF30 push dword ptr fs:
:00666A5F 648920 mov dword ptr fs:, esp
:00666A62 66A1106B6600 mov ax, word ptr
:00666A68 50 push eax
:00666A69 6A00 push 00000000
* Possible StringData Ref from Code Obj ->"非常抱歉,此次试用评估时间已到!〈〈======只是W32asm
请退出["
|
:00666A6B 681C6B6600 push 00666B1C
:00666A70 A1742A6700 mov eax, dword ptr
:00666A75 8B00 mov eax, dword ptr
:00666A77 FFB080030000 push dword ptr
* Possible StringData Ref from Code Obj ->"]后重新启动进行试用!"〈〈===============只是W32asm
|
:00666A7D 68506B6600 push 00666B50
:00666A82 68706B6600 push 00666B70
:00666A87 68706B6600 push 00666B70
* Possible StringData Ref from Code Obj ->"如感觉本软件不错,请注册支持我们。注册后将为您"
->"开启会员"
|
:00666A8C 687C6B6600 push 00666B7C
:00666A91 68706B6600 push 00666B70
* Possible StringData Ref from Code Obj ->"专用通道,大大加快连接的速度,您将能够流畅收看" 我花了几天时间,头都大了,终于摆平了,现在想起会有那么简单,作者简直就是在开玩笑。 没看懂楼主的意思
看那个程序的句秉 看都是哪个CALL调用那了 去看那些CALL 有什么跳转可以跳过的 应该的电视软件
PS:下次发布 提问问题 要看好版块 请勿发到这里 谢谢合作~ 咱也不明白楼主的问题。。。 看明白了~~~
楼主改错地方了呗~
后来用asm找对地方改了 所以搞定了~! ;P 晕,
看完更糊涂了 我也是!!
页:
[1]