标题: 灰鸽子[VIP 2006] 破解过程 [打印本页]

---

作者: ☆深蓝T透★    时间: 2006-4-26 04:42     标题: 灰鸽子[VIP 2006] 破解过程

鸽子的配置文件 需要 有用户名和密码才能拿到！ 拿到配置文件的下载地址 我们就好 Ko了！ 00566B80 . 8B95 98FBFFFF mov edx,dword ptr ss:[ebp-468] ; 显示相关配制 F6C1A2330FE47F9BA5".) 堆栈 ss:[0012F45C]=04760610, (ASCII "2540173610470785 20060310 http://down.huigezi.net/vip20060310.rar Vip 2006-0310 今天第(2)次配置 E2A802812FECCD8E0AD41B3A27053CDD449154561A4A0ADD2D67F6E04E654EC76A1681164E0AC2446C4E8AAB60949934487DF57C6D49AEE1CCE5C4F6C1A2330FE47F9BA5".) 23D8907C6072109D98".) 堆栈 ss:[0012F45C]=0474F050, (ASCII "4488606280173360 20060310 http://down.huigezi.net/vip20060310.rar Vip 2006-0310 今天第(3)次配置 39640DFE33A7E7DBA014A2B3B4919190AE51D97AB10597D01A9A68DB7EC3BE2FA8713106BB5A5A5AD77CC23EC6A8E80539E6D75CABF16FEA03AEAA23D8907C6072109D98".) 0A 33 39 36 34 30 44 46 45 33 33 41 37 45 37 44 42 41 30 31 34 41 32 42 33 42 34 39 31 39 31 39 30 41 45 35 31 44 39 37 41 42 31 30 35 39 37 44 30 31 41 39 41 36 38 44 42 37 45 43 33 42 45 32 46 41 38 37 31 33 31 30 36 42 42 35 41 35 41 35 41 44 37 37 43 43 32 33 45 43 36 41 38 45 38 30 35 33 39 45 36 44 37 35 43 41 42 46 31 36 46 45 41 30 33 41 45 41 41 32 33 44 38 39 30 37 43 36 30 37 32 30 30 39 44 39 38 00 00 80 5E 5C 00 00 00 00 00 B8 84 5E 5C 00 89 85 98 FB FF FF 8B 95 98 FB FF FF 8D 45 D8 E9 F9 0B FA FF 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 EDX= 04760610 32 35 34 30 31 37 33 36 31 30 34 37 30 37 38 35 2540173610470785 04760620 0D 0A 32 30 30 36 30 33 31 30 0D 0A 68 74 74 70 ..20060310..http 04760630 3A 2F 2F 64 6F 77 6E 2E 68 75 69 67 65 7A 69 2E ://down.huigezi. 04760640 6E 65 74 2F 76 69 70 32 30 30 36 30 33 31 30 2E net/vip20060310. 04760650 72 61 72 0D 0A 56 69 70 20 32 30 30 36 2D 30 33 rar..Vip 2006-03 04760660 31 30 20 20 BD F1 CC EC B5 DA 28 32 29 B4 CE C5 10 今天第(2)次
04760670 E4 D6 C3 0D 0A 45 32 41 38 30 32 38 31 32 46 45 渲?.E2A802812FE 04760680 43 43 44 38 45 30 41 44 34 31 42 33 41 32 37 30 CCD8E0AD41B3A270 04760690 35 33 43 44 44 34 34 39 31 35 34 35 36 31 41 34 53CDD449154561A4 047606A0 41 30 41 44 44 32 44 36 37 46 36 45 30 34 45 36 A0ADD2D67F6E04E6 047606B0 35 34 45 43 37 36 41 31 36 38 31 31 36 34 45 30 54EC76A1681164E0 047606C0 41 43 32 34 34 36 43 34 45 38 41 41 42 36 30 39 AC2446C4E8AAB609 047606D0 34 39 39 33 34 34 38 37 44 46 35 37 43 36 44 34 49934487DF57C6D4 047606E0 39 41 45 45 31 43 43 45 35 43 34 46 36 43 31 41 9AEE1CCE5C4F6C1A 047606F0 32 33 33 30 46 45 34 37 46 39 42 41 35 42 44 39 2330FE47F9BA5BD9 04760700 36 32 36 31 46 33 45 36 31 41 31 45 31 44 45 42 6261F3E61A1E1DEB 04760710 44 32 42 42 44 32 34 41 32 41 34 30 31 46 31 41 D2BBD24A2A401F1A 04760720 36 35 46 33 33 31 31 38 38 34 31 32 38 39 31 42 65F331188412891B 04760730 41 35 36 46 38 33 46 33 34 30 34 36 43 43 35 43 A56F83F34046CC5C 04760740 32 39 36 39 38 33 42 35 37 41 38 45 34 38 44 30 296983B57A8E48D0 04760750 33 41 44 30 46 32 42 45 36 45 33 31 44 41 45 33 3AD0F2BE6E31DAE3 04760760 38 34 39 34 43 44 41 31 44 33 35 42 31 41 31 43 8494CDA1D35B1A1C 04760770 38 38 33 38 46 44 38 45 32 33 43 46 33 45 41 34 8838FD8E23CF3EA4 04760780 43 44 43 46 33 39 36 33 36 45 42 42 34 45 30 37 CDCF39636EBB4E07 04760790 39 43 44 38 35 30 46 46 38 35 33 43 34 41 41 42 9CD850FF853C4AAB 047607A0 41 32 45 42 46 46 45 45 39 39 36 41 39 36 45 34 A2EBFFEE996A96E4 047607B0 33 33 44 43 45 32 35 46 44 39 34 38 37 34 42 45 33DCE25FD94874BE 047607C0 34 46 41 42 37 39 42 34 31 30 36 39 36 42 45 44 4FAB79B410696BED 047607D0 32 38 39 39 42 34 44 36 35 33 34 35 45 46 30 45 2899B4D65345EF0E 047607E0 46 43 34 46 33 30 36 36 37 38 45 41 36 38 46 31 FC4F306678EA68F1 047607F0 41 39 32 32 39 33 34 36 33 46 33 43 45 38 33 38 A92293463F3CE838 04760800 46 45 46 31 44 00 FEF1D. 转给 EAX 005665F3 . 51 push ecx 005665F4 . 53 push ebx 005665F5 . 56 push esi 005665F6 . 57 push edi 005665F7 . 8BF0 mov esi,eax 005665F9 . 33C0 xor eax,eax 005665FB . 55 push ebp 005665FC . 68 E2785600 push dumped_.005678E2 00566601 . 64:FF30 push dword ptr fs:[eax] 00566604 . 64:8920 mov dword ptr fs:[eax],esp 00566607 . 33C0 xor eax,eax 00566609 . 55 push ebp 0056660A . 68 EB775600 push dumped_.005677EB 0056660F . 64:FF30 push dword ptr fs:[eax] 00566612 . 64:8920 mov dword ptr fs:[eax],esp 00566615 . E8 C2DFFDFF call dumped_.005445DC 0056661A . 33C9 xor ecx,ecx 0056661C . B2 01 mov dl,1 0056661E . A1 30885500 mov eax,dword ptr ds:[558830] 00566623 . E8 C825FFFF call dumped_.00558BF0 00566628 . 8945 E8 mov dword ptr ss:[ebp-18],eax 0056662B . 8B45 E8 mov eax,dword ptr ss:[ebp-18] 0056662E . C780 9C000000 9>mov dword ptr ds:[eax+9C],3A98 00566638 . 8D8D D4FBFFFF lea ecx,dword ptr ss:[ebp-42C] 0056663E . BA FC785600 mov edx,dumped_.005678FC ; 20050101 00566643 . B8 10795600 mov eax,dumped_.00567910 ; 7e430a9979299ca0d333274fc55992652847d96a1fe83f04 00566648 . E8 1FF1FDFF call dumped_.0054576C 0056664D . 8B95 D4FBFFFF mov edx,dword ptr ss:[ebp-42C] 00566653 . 8B45 E8 mov eax,dword ptr ss:[ebp-18] 00566656 . 8B08 mov ecx,dword ptr ds:[eax] 00566658 . FF91 88000000 call dword ptr ds:[ecx+88] 0056665E . BA BB010000 mov edx,1BB 00566663 . 8B45 E8 mov eax,dword ptr ss:[ebp-18] 00566666 . 8B08 mov ecx,dword ptr ds:[eax] 00566668 . FF91 8C000000 call dword ptr ds:[ecx+8C] 0056666E . 8D8D D0FBFFFF lea ecx,dword ptr ss:[ebp-430] 00566674 . BA FC785600 mov edx,dumped_.005678FC ; 20050101 00566679 . B8 4C795600 mov eax,dumped_.0056794C ; 3aaaa1c089cd3ed3c37ee3aacbc58c44b4c9a121e01fcd95 0056667E . E8 E9F0FDFF call dumped_.0054576C 00566683 . 8B95 D0FBFFFF mov edx,dword ptr ss:[ebp-430] 00566689 . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 0056668E . 8B80 94030000 mov eax,dword ptr ds:[eax+394] 00566694 . E8 8759FAFF call dumped_.0050C020 00566699 . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 0056669E . 8B80 94030000 mov eax,dword ptr ds:[eax+394] 005666A4 . 33D2 xor edx,edx 005666A6 . E8 0D65FAFF call dumped_.0050CBB8 005666AB . BA 983A0000 mov edx,3A98 005666B0 . 8B45 E8 mov eax,dword ptr ss:[ebp-18] 005666B3 . 8B08 mov ecx,dword ptr ds:[eax] 005666B5 . FF91 94000000 call dword ptr ds:[ecx+94] 005666BB . 8B45 E8 mov eax,dword ptr ss:[ebp-18] 005666BE . 8B10 mov edx,dword ptr ds:[eax] 005666C0 . FF52 54 call dword ptr ds:[edx+54] 005666C3 . 84C0 test al,al 005666C5 0F84 D9100000 je dumped_.005677A4 ; 跳就显示 “连接服务超时” 005666CB . 8D8D CCFBFFFF lea ecx,dword ptr ss:[ebp-434] 005666D1 . BA FC785600 mov edx,dumped_.005678FC ; 20050101 005666D6 . B8 88795600 mov eax,dumped_.00567988 ; 80c7cb1befdca880d018f04ffddaf72bae475b6dd8a5c42f 005666DB . E8 8CF0FDFF call dumped_.0054576C 005666E0 . 8B95 CCFBFFFF mov edx,dword ptr ss:[ebp-434] 005666E6 . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 005666EB . 8B80 94030000 mov eax,dword ptr ds:[eax+394] 005666F1 . E8 2A59FAFF call dumped_.0050C020 005666F6 . 33C0 xor eax,eax 005666F8 . 55 push ebp 005666F9 . 68 2B6A5600 push dumped_.00566A2B 005666FE . 64:FF30 push dword ptr fs:[eax] 00566701 . 64:8920 mov dword ptr fs:[eax],esp 00566704 . B8 C4795600 mov eax,dumped_.005679C4 ; mini 00566709 . E8 FEE7E9FF call dumped_.00404F0C 0056670E . 8D95 D8FBFFFF lea edx,dword ptr ss:[ebp-428] 00566714 . B9 04000000 mov ecx,4 00566719 . E8 A6C3E9FF call dumped_.00402AC4 0056671E . C685 DCFBFFFF 1>mov byte ptr ss:[ebp-424],13 00566725 . 8D55 E4 lea edx,dword ptr ss:[ebp-1C] 00566728 . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 0056672D . 8B80 50030000 mov eax,dword ptr ds:[eax+350] 00566733 . E8 C8F3F5FF call dumped_.004C5B00 00566738 . 8D55 E0 lea edx,dword ptr ss:[ebp-20] 0056673B . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 00566740 . 8B80 58030000 mov eax,dword ptr ds:[eax+358] 00566746 . E8 1D4FF9FF call dumped_.004FB668 0056674B . B2 01 mov dl,1 0056674D . A1 90475600 mov eax,dword ptr ds:[564790] 00566752 . E8 75D4E9FF call dumped_.00403BCC 00566757 . 8BD8 mov ebx,eax 00566759 . 8D85 C8FBFFFF lea eax,dword ptr ss:[ebp-438] 0056675F . 50 push eax 00566760 . B1 01 mov cl,1 00566762 . 8B55 E0 mov edx,dword ptr ss:[ebp-20] ; 密码 >> EDX 00566765 . 8BC3 mov eax,ebx 00566767 . E8 A0E2FFFF call dumped_.00564A0C 0056676C . 8B95 C8FBFFFF mov edx,dword ptr ss:[ebp-438] 00566772 . 8D45 E0 lea eax,dword ptr ss:[ebp-20] 00566775 . E8 6AE3E9FF call dumped_.00404AE4 0056677A . 8BC3 mov eax,ebx 0056677C . E8 7BD4E9FF call dumped_.00403BFC 00566781 . 8D85 C4FBFFFF lea eax,dword ptr ss:[ebp-43C] 00566787 . E8 F4FDFFFF call dumped_.00566580 0056678C . 8B95 C4FBFFFF mov edx,dword ptr ss:[ebp-43C] 00566792 . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 00566797 . 05 4C040000 add eax,44C 0056679C . E8 FFE2E9FF call dumped_.00404AA0 005667A1 . 8D95 BCFBFFFF lea edx,dword ptr ss:[ebp-444] 005667A7 . 33C0 xor eax,eax 005667A9 . E8 42C4E9FF call dumped_.00402BF0 005667AE . 8B85 BCFBFFFF mov eax,dword ptr ss:[ebp-444] 005667B4 . 8D95 C0FBFFFF lea edx,dword ptr ss:[ebp-440] 005667BA . E8 B539EAFF call dumped_.0040A174 005667BF . 8B95 C0FBFFFF mov edx,dword ptr ss:[ebp-440] 005667C5 . 8D45 EC lea eax,dword ptr ss:[ebp-14] 005667C8 . B9 D4795600 mov ecx,dumped_.005679D4 ; dat\ 005667CD . E8 86E5E9FF call dumped_.00404D58 005667D2 . 8D45 F0 lea eax,dword ptr ss:[ebp-10] 005667D5 . BA E4795600 mov edx,dumped_.005679E4 ; [filenames]\n\n 005667DA . E8 05E3E9FF call dumped_.00404AE4 005667DF . FF75 F0 push dword ptr ss:[ebp-10] 005667E2 . 68 FC795600 push dumped_.005679FC ; exe= 005667E7 . 8D95 B8FBFFFF lea edx,dword ptr ss:[ebp-448] 005667ED . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 005667F2 . 8B80 48030000 mov eax,dword ptr ds:[eax+348] 005667F8 . E8 03F3F5FF call dumped_.004C5B00 005667FD . FFB5 B8FBFFFF push dword ptr ss:[ebp-448] 00566803 . 68 0C7A5600 push dumped_.00567A0C ; \n\n 00566808 . 8D45 F0 lea eax,dword ptr ss:[ebp-10] 0056680B . BA 04000000 mov edx,4 00566810 . E8 B7E5E9FF call dumped_.00404DCC 00566815 . FF75 F0 push dword ptr ss:[ebp-10] 00566818 . 68 187A5600 push dumped_.00567A18 ; saveas= 0056681D . 8D95 B4FBFFFF lea edx,dword ptr ss:[ebp-44C] 00566823 . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 00566828 . 8B80 48030000 mov eax,dword ptr ds:[eax+348] 0056682E . E8 CDF2F5FF call dumped_.004C5B00 00566833 . FFB5 B4FBFFFF push dword ptr ss:[ebp-44C] 00566839 . 68 0C7A5600 push dumped_.00567A0C ; \n\n 0056683E . 8D45 F0 lea eax,dword ptr ss:[ebp-10] 00566841 . BA 04000000 mov edx,4 00566846 . E8 81E5E9FF call dumped_.00404DCC 0056684B . FF75 F0 push dword ptr ss:[ebp-10] 0056684E . 68 287A5600 push dumped_.00567A28 ; log= 00566853 . FF75 EC push dword ptr ss:[ebp-14] 00566856 . 68 387A5600 push dumped_.00567A38 ; reshack.log 0056685B . 68 0C7A5600 push dumped_.00567A0C ; \n\n 00566860 . 8D45 F0 lea eax,dword ptr ss:[ebp-10] 00566863 . BA 05000000 mov edx,5 00566868 . E8 5FE5E9FF call dumped_.00404DCC 0056686D . FF75 F0 push dword ptr ss:[ebp-10] 00566870 . 68 4C7A5600 push dumped_.00567A4C ; [commands] 00566875 . 68 0C7A5600 push dumped_.00567A0C ; \n\n 0056687A . 8D45 F0 lea eax,dword ptr ss:[ebp-10] 0056687D . BA 03000000 mov edx,3 00566882 . E8 45E5E9FF call dumped_.00404DCC 00566887 . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 0056688C . 8B80 E4030000 mov eax,dword ptr ds:[eax+3E4] 00566892 . 8B80 68010000 mov eax,dword ptr ds:[eax+168] 00566898 . E8 1742ECFF call dumped_.0042AAB4 0056689D . 50 push eax 0056689E . 8D85 B0FBFFFF lea eax,dword ptr ss:[ebp-450] 005668A4 . B9 607A5600 mov ecx,dumped_.00567A60 ; mainicon.ico 005668A9 . 8B55 EC mov edx,dword ptr ss:[ebp-14] 005668AC . E8 A7E4E9FF call dumped_.00404D58 005668B1 . 8B95 B0FBFFFF mov edx,dword ptr ss:[ebp-450] 005668B7 . 58 pop eax 005668B8 . 8B08 mov ecx,dword ptr ds:[eax] 005668BA . FF51 50 call dword ptr ds:[ecx+50] 005668BD . FF75 F0 push dword ptr ss:[ebp-10] 005668C0 . 68 787A5600 push dumped_.00567A78 ; -addoverwrite " 005668C5 . FF75 EC push dword ptr ss:[ebp-14] 005668C8 . 68 907A5600 push dumped_.00567A90 ; mainicon.ico", icongroup,mainicon,2052 005668CD . 68 0C7A5600 push dumped_.00567A0C ; \n\n 005668D2 . 8D45 F0 lea eax,dword ptr ss:[ebp-10] 005668D5 . BA 05000000 mov edx,5 005668DA . E8 EDE4E9FF call dumped_.00404DCC 005668DF . FF75 F0 push dword ptr ss:[ebp-10] 005668E2 . 68 C07A5600 push dumped_.00567AC0 ; -add " 005668E7 . FF75 EC push dword ptr ss:[ebp-14] 005668EA . 68 D07A5600 push dumped_.00567AD0 ; config.ini 005668EF . 68 E47A5600 push dumped_.00567AE4 ; ", rcdata,sevinfo,0 005668F4 . 68 0C7A5600 push dumped_.00567A0C ; \n\n 005668F9 . 8D45 F0 lea eax,dword ptr ss:[ebp-10] 005668FC . BA 06000000 mov edx,6 00566901 . E8 C6E4E9FF call dumped_.00404DCC 00566906 . 8D55 F4 lea edx,dword ptr ss:[ebp-C] 00566909 . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 0056690E . E8 05F8FFFF call dumped_.00566118 00566913 . FF75 E4 push dword ptr ss:[ebp-1C] 00566916 . 68 0C7A5600 push dumped_.00567A0C ; \n\n 0056691B . FF75 E0 push dword ptr ss:[ebp-20] 0056691E . 68 0C7A5600 push dumped_.00567A0C ; \n\n 00566923 . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 00566928 . FFB0 4C040000 push dword ptr ds:[eax+44C] 0056692E . 68 0C7A5600 push dumped_.00567A0C ; \n\n 00566933 . FF75 F4 push dword ptr ss:[ebp-C] 00566936 . 8D85 A8FBFFFF lea eax,dword ptr ss:[ebp-458] 0056693C . BA 07000000 mov edx,7 00566941 . E8 86E4E9FF call dumped_.00404DCC 00566946 . 8B85 A8FBFFFF mov eax,dword ptr ss:[ebp-458] ; 配制文件的格式 0056694C . 8D8D ACFBFFFF lea ecx,dword ptr ss:[ebp-454] 00566952 . BA FC785600 mov edx,dumped_.005678FC ; 20050101 00566957 . E8 60ECFDFF call dumped_.005455BC 0056695C . 8B95 ACFBFFFF mov edx,dword ptr ss:[ebp-454] ; 相关信息 00566962 . 8D45 DC lea eax,dword ptr ss:[ebp-24] 00566965 . B9 0C7A5600 mov ecx,dumped_.00567A0C ; \n\n 0056696A . E8 E9E3E9FF call dumped_.00404D58 0056696F . 8B45 DC mov eax,dword ptr ss:[ebp-24] 00566972 . E8 95E3E9FF call dumped_.00404D0C 00566977 . 8BD8 mov ebx,eax 00566979 . 8D45 DC lea eax,dword ptr ss:[ebp-24] 0056697C . E8 E3E5E9FF call dumped_.00404F64 00566981 . 8D95 DDFBFFFF lea edx,dword ptr ss:[ebp-423] 00566987 . 8BCB mov ecx,ebx 00566989 . E8 36C1E9FF call dumped_.00402AC4 0056698E . 8D45 DC lea eax,dword ptr ss:[ebp-24] 00566991 . 33D2 xor edx,edx 00566993 . E8 00E7E9FF call dumped_.00405098 00566998 . 81FB F9030000 cmp ebx,3F9 0056699E . 7E 6E jle short dumped_.00566A0E ; 不跳就现实 信息超长 005669A0 . 8D8D A4FBFFFF lea ecx,dword ptr ss:[ebp-45C] 005669A6 . BA FC785600 mov edx,dumped_.005678FC ; 20050101 005669AB . B8 007B5600 mov eax,dumped_.00567B00 ; ae200fd721da4b277b081417cdad73e544741580a5705db64e5aa17c383359e8 005669B0 . E8 B7EDFDFF call dumped_.0054576C 005669B5 . 8B95 A4FBFFFF mov edx,dword ptr ss:[ebp-45C] 005669BB . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 005669C0 . 8B80 94030000 mov eax,dword ptr ds:[eax+394] 005669C6 . E8 5556FAFF call dumped_.0050C020 005669CB . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 005669D0 . 8B80 4C030000 mov eax,dword ptr ds:[eax+34C] 005669D6 . B2 01 mov dl,1 005669D8 . 8B08 mov ecx,dword ptr ds:[eax] 005669DA . FF51 64 call dword ptr ds:[ecx+64] 005669DD . 8B45 E8 mov eax,dword ptr ss:[ebp-18] 005669E0 . 8B10 mov edx,dword ptr ds:[eax] 005669E2 . FF52 54 call dword ptr ds:[edx+54] 005669E5 . 84C0 test al,al 005669E7 . 74 08 je short dumped_.005669F1 005669E9 . 8B45 E8 mov eax,dword ptr ss:[ebp-18] 005669EC . 8B10 mov edx,dword ptr ds:[eax] 005669EE . FF52 58 call dword ptr ds:[edx+58] 005669F1 > 8B45 E8 mov eax,dword ptr ss:[ebp-18] 005669F4 . E8 03D2E9FF call dumped_.00403BFC 005669F9 . 33C0 xor eax,eax 005669FB . 5A pop edx 005669FC . 59 pop ecx 005669FD . 59 pop ecx 005669FE . 64:8910 mov dword ptr fs:[eax],edx 00566A01 . 33C0 xor eax,eax 00566A03 . 5A pop edx 00566A04 . 59 pop ecx 00566A05 . 59 pop ecx 00566A06 . 64:8910 mov dword ptr fs:[eax],edx 00566A09 . E9 2B0E0000 jmp dumped_.00567839 00566A0E > 6A 00 push 0 00566A10 . 8D4B 06 lea ecx,dword ptr ds:[ebx+6] 00566A13 . 8D95 D8FBFFFF lea edx,dword ptr ss:[ebp-428] 00566A19 . 8B45 E8 mov eax,dword ptr ss:[ebp-18] 00566A1C . E8 3BE6FEFF call dumped_.0055505C 00566A21 . 33C0 xor eax,eax 00566A23 . 5A pop edx 00566A24 . 59 pop ecx 00566A25 . 59 pop ecx 00566A26 . 64:8910 mov dword ptr fs:[eax],edx 00566A29 . EB 75 jmp short dumped_.00566AA0 00566A2B .^ E9 ACD6E9FF jmp dumped_.004040DC 00566A30 . 8D8D A0FBFFFF lea ecx,dword ptr ss:[ebp-460] 00566A36 . BA FC785600 mov edx,dumped_.005678FC ; 20050101 00566A3B . B8 4C7B5600 mov eax,dumped_.00567B4C ; bb00e1e355e79ca01386d7a0873fe17a299b92f0f92947ac 00566A40 . E8 27EDFDFF call dumped_.0054576C 00566A45 . 8B95 A0FBFFFF mov edx,dword ptr ss:[ebp-460] 00566A4B . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 00566A50 . 8B80 94030000 mov eax,dword ptr ds:[eax+394] 00566A56 . E8 C555FAFF call dumped_.0050C020 00566A5B . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 00566A60 . 8B80 4C030000 mov eax,dword ptr ds:[eax+34C] 00566A66 . B2 01 mov dl,1 00566A68 . 8B08 mov ecx,dword ptr ds:[eax] 00566A6A . FF51 64 call dword ptr ds:[ecx+64] 00566A6D . 8B45 E8 mov eax,dword ptr ss:[ebp-18] 00566A70 . 8B10 mov edx,dword ptr ds:[eax] 00566A72 . FF52 54 call dword ptr ds:[edx+54] 00566A75 . 84C0 test al,al 00566A77 . 74 08 je short dumped_.00566A81 00566A79 . 8B45 E8 mov eax,dword ptr ss:[ebp-18] 00566A7C . 8B10 mov edx,dword ptr ds:[eax] 00566A7E . FF52 58 call dword ptr ds:[edx+58] 00566A81 > 8B45 E8 mov eax,dword ptr ss:[ebp-18] 00566A84 . E8 73D1E9FF call dumped_.00403BFC 00566A89 . E8 B6D9E9FF call dumped_.00404444 00566A8E . 33C0 xor eax,eax 00566A90 . 5A pop edx 00566A91 . 59 pop ecx 00566A92 . 59 pop ecx 00566A93 . 64:8910 mov dword ptr fs:[eax],edx 00566A96 . E9 9E0D0000 jmp dumped_.00567839 00566A9B . E8 A4D9E9FF call dumped_.00404444 00566AA0 > 33C0 xor eax,eax 00566AA2 . 55 push ebp 00566AA3 . 68 CE6A5600 push dumped_.00566ACE 00566AA8 . 64:FF30 push dword ptr fs:[eax] 00566AAB . 64:8920 mov dword ptr fs:[eax],esp 00566AAE . 6A FF push -1 00566AB0 . 8D45 D8 lea eax,dword ptr ss:[ebp-28] 00566AB3 . 50 push eax 00566AB4 . 83C9 FF or ecx,FFFFFFFF 00566AB7 . BA 887B5600 mov edx,dumped_.00567B88 ; \n\n\n\n 00566ABC . 8B45 E8 mov eax,dword ptr ss:[ebp-18] 00566ABF . 8B18 mov ebx,dword ptr ds:[eax] 00566AC1 . FF53 70 call dword ptr ds:[ebx+70] 00566AC4 . 33C0 xor eax,eax 00566AC6 . 5A pop edx 00566AC7 . 59 pop ecx 00566AC8 . 59 pop ecx 00566AC9 . 64:8910 mov dword ptr fs:[eax],edx 00566ACC . EB 75 jmp short dumped_.00566B43 00566ACE .^ E9 09D6E9FF jmp dumped_.004040DC 00566AD3 . 8D8D 9CFBFFFF lea ecx,dword ptr ss:[ebp-464] 00566AD9 . BA FC785600 mov edx,dumped_.005678FC ; 20050101 00566ADE . B8 987B5600 mov eax,dumped_.00567B98 ; 8cbebbfda599fc841fbe789b04569eb2088abf7c5a5f87cd 00566AE3 . E8 84ECFDFF call dumped_.0054576C 00566AE8 . 8B95 9CFBFFFF mov edx,dword ptr ss:[ebp-464] 00566AEE . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 00566AF3 . 8B80 94030000 mov eax,dword ptr ds:[eax+394] 00566AF9 . E8 2255FAFF call dumped_.0050C020 00566AFE . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 00566B03 . 8B80 4C030000 mov eax,dword ptr ds:[eax+34C] 00566B09 . B2 01 mov dl,1 00566B0B . 8B08 mov ecx,dword ptr ds:[eax] 00566B0D . FF51 64 call dword ptr ds:[ecx+64] 00566B10 . 8B45 E8 mov eax,dword ptr ss:[ebp-18] 00566B13 . 8B10 mov edx,dword ptr ds:[eax] 00566B15 . FF52 54 call dword ptr ds:[edx+54] 00566B18 . 84C0 test al,al 00566B1A . 74 08 je short dumped_.00566B24 00566B1C . 8B45 E8 mov eax,dword ptr ss:[ebp-18] 00566B1F . 8B10 mov edx,dword ptr ds:[eax] 00566B21 . FF52 58 call dword ptr ds:[edx+58] 00566B24 > 8B45 E8 mov eax,dword ptr ss:[ebp-18] 00566B27 . E8 D0D0E9FF call dumped_.00403BFC 00566B2C . E8 13D9E9FF call dumped_.00404444 00566B31 . 33C0 xor eax,eax 00566B33 . 5A pop edx 00566B34 . 59 pop ecx 00566B35 . 59 pop ecx 00566B36 . 64:8910 mov dword ptr fs:[eax],edx 00566B39 . E9 FB0C0000 jmp dumped_.00567839 00566B3E . E8 01D9E9FF call dumped_.00404444 00566B43 > 8B45 E8 mov eax,dword ptr ss:[ebp-18] 00566B46 . 8B10 mov edx,dword ptr ds:[eax] 00566B48 . FF52 54 call dword ptr ds:[edx+54] 00566B4B . 84C0 test al,al 00566B4D . 74 08 je short dumped_.00566B57 00566B4F . 8B45 E8 mov eax,dword ptr ss:[ebp-18] 00566B52 . 8B10 mov edx,dword ptr ds:[eax] 00566B54 . FF52 58 call dword ptr ds:[edx+58] 00566B57 > 8B45 E8 mov eax,dword ptr ss:[ebp-18] 00566B5A . E8 9DD0E9FF call dumped_.00403BFC 00566B5F . 8D45 DC lea eax,dword ptr ss:[ebp-24] 00566B62 . E8 E5DEE9FF call dumped_.00404A4C 00566B67 . 8D8D 98FBFFFF lea ecx,dword ptr ss:[ebp-468] 00566B6D . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 00566B72 . 8B90 4C040000 mov edx,dword ptr ds:[eax+44C] 00566B78 . 8B45 D8 mov eax,dword ptr ss:[ebp-28] 00566B7B . E8 ECEBFDFF call dumped_.0054576C 00566B80 . 8B95 98FBFFFF mov edx,dword ptr ss:[ebp-468] 00566B86 . 8D45 D8 lea eax,dword ptr ss:[ebp-28] 00566B89 . E8 56DFE9FF call dumped_.00404AE4 00566B8E . 8B45 D8 mov eax,dword ptr ss:[ebp-28] 00566B91 . BA D47B5600 mov edx,dumped_.00567BD4 ; pswerror 00566B96 . E8 BDE2E9FF call dumped_.00404E58 00566B9B . 75 4A jnz short dumped_.00566BE7 ; 不跳就现实 用户名或密码错 00566B9D . 8D8D 94FBFFFF lea ecx,dword ptr ss:[ebp-46C] 00566BA3 . BA FC785600 mov edx,dumped_.005678FC ; 20050101 00566BA8 . B8 E87B5600 mov eax,dumped_.00567BE8 ; a755332a1f64e4ed80fb2318698d5d2097ec778f549b6a921aa8ead565490052299b92f0f92947ac 00566BAD . E8 BAEBFDFF call dumped_.0054576C 00566BB2 . 8B95 94FBFFFF mov edx,dword ptr ss:[ebp-46C] 00566BB8 . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 00566BBD . 8B80 94030000 mov eax,dword ptr ds:[eax+394] 00566BC3 . E8 5854FAFF call dumped_.0050C020 00566BC8 . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 00566BCD . 8B80 4C030000 mov eax,dword ptr ds:[eax+34C] 00566BD3 . B2 01 mov dl,1 00566BD5 . 8B08 mov ecx,dword ptr ds:[eax] 00566BD7 . FF51 64 call dword ptr ds:[ecx+64] 00566BDA . 33C0 xor eax,eax 00566BDC . 5A pop edx 00566BDD . 59 pop ecx 00566BDE . 59 pop ecx 00566BDF . 64:8910 mov dword ptr fs:[eax],edx 00566BE2 . E9 520C0000 jmp dumped_.00567839 00566BE7 > 8B45 D8 mov eax,dword ptr ss:[ebp-28] 00566BEA . BA 447C5600 mov edx,dumped_.00567C44 ; counterror 00566BEF . E8 64E2E9FF call dumped_.00404E58 00566BF4 . 75 4A jnz short dumped_.00566C40 ; 不跳就显示 "你的用户名已经限制！请与管理员联系！" 00566BF6 . 8D8D 90FBFFFF lea ecx,dword ptr ss:[ebp-470] 00566BFC . BA FC785600 mov edx,dumped_.005678FC ; 20050101 00566C01 . B8 587C5600 mov eax,dumped_.00567C58 ; 447d20fe6542c2ea4b51e28da92f1ec89159e4874ae5ac9a90e0c93ba07612badd9b980c035451db 00566C06 . E8 61EBFDFF call dumped_.0054576C 00566C0B . 8B95 90FBFFFF mov edx,dword ptr ss:[ebp-470] 00566C11 . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 00566C16 . 8B80 94030000 mov eax,dword ptr ds:[eax+394] 00566C1C . E8 FF53FAFF call dumped_.0050C020 00566C21 . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 00566C26 . 8B80 4C030000 mov eax,dword ptr ds:[eax+34C] 00566C2C . B2 01 mov dl,1 00566C2E . 8B08 mov ecx,dword ptr ds:[eax] 00566C30 . FF51 64 call dword ptr ds:[ecx+64] 00566C33 . 33C0 xor eax,eax 00566C35 . 5A pop edx 00566C36 . 59 pop ecx 00566C37 . 59 pop ecx 00566C38 . 64:8910 mov dword ptr fs:[eax],edx 00566C3B . E9 F90B0000 jmp dumped_.00567839 00566C40 > 8B45 D8 mov eax,dword ptr ss:[ebp-28] 00566C43 . BA B47C5600 mov edx,dumped_.00567CB4 ; maxdownerror 00566C48 . E8 0BE2E9FF call dumped_.00404E58 00566C4D . 75 4A jnz short dumped_.00566C99 ; 不跳 就现实 今天配制次数过多 00566C4F . 8D8D 8CFBFFFF lea ecx,dword ptr ss:[ebp-474] 00566C55 . BA FC785600 mov edx,dumped_.005678FC ; 20050101 00566C5A . B8 CC7C5600 mov eax,dumped_.00567CCC ; 4657dcf34fd02604ca70ff8dd028b3da6944c1a825c4ecdcbde01ac27dc93cb1f140e92de04487114e5aa17c383359e8 00566C5F . E8 08EBFDFF call dumped_.0054576C 00566C64 . 8B95 8CFBFFFF mov edx,dword ptr ss:[ebp-474] 00566C6A . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 00566C6F . 8B80 94030000 mov eax,dword ptr ds:[eax+394] 00566C75 . E8 A653FAFF call dumped_.0050C020 00566C7A . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 00566C7F . 8B80 4C030000 mov eax,dword ptr ds:[eax+34C] 00566C85 . B2 01 mov dl,1 00566C87 . 8B08 mov ecx,dword ptr ds:[eax] 00566C89 . FF51 64 call dword ptr ds:[ecx+64] 00566C8C . 33C0 xor eax,eax 00566C8E . 5A pop edx 00566C8F . 59 pop ecx 00566C90 . 59 pop ecx 00566C91 . 64:8910 mov dword ptr fs:[eax],edx 00566C94 . E9 A00B0000 jmp dumped_.00567839 00566C99 > 8B45 D8 mov eax,dword ptr ss:[ebp-28] 00566C9C . BA 387D5600 mov edx,dumped_.00567D38 ; dongjie 00566CA1 . E8 B2E1E9FF call dumped_.00404E58 00566CA6 . 75 4A jnz short dumped_.00566CF2 ; 不跳 现实 "你的用户名已经冻结！请与管理员联系！" 00566CA8 . 8D8D 88FBFFFF lea ecx,dword ptr ss:[ebp-478] 00566CAE . BA FC785600 mov edx,dumped_.005678FC ; 20050101 00566CB3 . B8 487D5600 mov eax,dumped_.00567D48 ; 447d20fe6542c2ea4086f5bf24f523d29a2ca151eb5f296090e0c93ba07612badd9b980c035451db 00566CB8 . E8 AFEAFDFF call dumped_.0054576C 00566CBD . 8B95 88FBFFFF mov edx,dword ptr ss:[ebp-478] 00566CC3 . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 00566CC8 . 8B80 94030000 mov eax,dword ptr ds:[eax+394] 00566CCE . E8 4D53FAFF call dumped_.0050C020 00566CD3 . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 00566CD8 . 8B80 4C030000 mov eax,dword ptr ds:[eax+34C] 00566CDE . B2 01 mov dl,1 00566CE0 . 8B08 mov ecx,dword ptr ds:[eax] 00566CE2 . FF51 64 call dword ptr ds:[ecx+64] 00566CE5 . 33C0 xor eax,eax 00566CE7 . 5A pop edx 00566CE8 . 59 pop ecx 00566CE9 . 59 pop ecx 00566CEA . 64:8910 mov dword ptr fs:[eax],edx 00566CED . E9 470B0000 jmp dumped_.00567839 00566CF2 > 8B45 D8 mov eax,dword ptr ss:[ebp-28] 00566CF5 . BA A47D5600 mov edx,dumped_.00567DA4 ; nomoney 00566CFA . E8 59E1E9FF call dumped_.00404E58 00566CFF . 75 4A jnz short dumped_.00566D4B ; 不跳 显示 "你的用户名已经欠费到期！请尽快续费！" 00566D01 . 8D8D 84FBFFFF lea ecx,dword ptr ss:[ebp-47C] 00566D07 . BA FC785600 mov edx,dumped_.005678FC ; 20050101 00566D0C . B8 B47D5600 mov eax,dumped_.00567DB4 ; 447d20fe6542c2eadd8cd412ebf534c26b97d8424960f3dfd68759b55a5e52f76eb8ddcf81df6625 00566D11 . E8 56EAFDFF call dumped_.0054576C 00566D16 . 8B95 84FBFFFF mov edx,dword ptr ss:[ebp-47C] 00566D1C . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 00566D21 . 8B80 94030000 mov eax,dword ptr ds:[eax+394] 00566D27 . E8 F452FAFF call dumped_.0050C020 00566D2C . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 00566D31 . 8B80 4C030000 mov eax,dword ptr ds:[eax+34C] 00566D37 . B2 01 mov dl,1 00566D39 . 8B08 mov ecx,dword ptr ds:[eax] 00566D3B . FF51 64 call dword ptr ds:[ecx+64] 00566D3E . 33C0 xor eax,eax 00566D40 . 5A pop edx 00566D41 . 59 pop ecx 00566D42 . 59 pop ecx 00566D43 . 64:8910 mov dword ptr fs:[eax],edx 00566D46 . E9 EE0A0000 jmp dumped_.00567839 00566D4B > 33C0 xor eax,eax 00566D4D . 55 push ebp 00566D4E . 68 49775600 push dumped_.00567749 00566D53 . 64:FF30 push dword ptr fs:[eax] 00566D56 . 64:8920 mov dword ptr fs:[eax],esp 00566D59 . B2 01 mov dl,1 00566D5B . A1 B48C4100 mov eax,dword ptr ds:[418CB4] 00566D60 . E8 67CEE9FF call dumped_.00403BCC 00566D65 . 8BD8 mov ebx,eax 00566D67 . 8B55 D8 mov edx,dword ptr ss:[ebp-28] 00566D6A . 8BC3 mov eax,ebx 00566D6C . 8B08 mov ecx,dword ptr ds:[eax] 00566D6E . FF51 2C call dword ptr ds:[ecx+2C] 00566D71 . 8D8D 80FBFFFF lea ecx,dword ptr ss:[ebp-480] 00566D77 . 33D2 xor edx,edx 00566D79 . 8BC3 mov eax,ebx 00566D7B . 8B38 mov edi,dword ptr ds:[eax] 00566D7D . FF57 0C call dword ptr ds:[edi+C] 00566D80 . 8B85 80FBFFFF mov eax,dword ptr ss:[ebp-480] 00566D86 . 8B15 E81D5D00 mov edx,dword ptr ds:[5D1DE8] 00566D8C . 8B92 4C040000 mov edx,dword ptr ds:[edx+44C] 00566D92 . E8 C1E0E9FF call dumped_.00404E58 00566D97 . 74 5C je short dumped_.00566DF5 ; 不跳就现实 "签名验证失败！" 00566D99 . 8D8D 7CFBFFFF lea ecx,dword ptr ss:[ebp-484] 00566D9F . BA FC785600 mov edx,dumped_.005678FC ; 20050101 00566DA4 . B8 107E5600 mov eax,dumped_.00567E10 ; ae6c843b1906f159b99915b35b861a3b 00566DA9 . E8 BEE9FDFF call dumped_.0054576C 00566DAE . 8B95 7CFBFFFF mov edx,dword ptr ss:[ebp-484] 00566DB4 . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 00566DB9 . 8B80 94030000 mov eax,dword ptr ds:[eax+394] 00566DBF . E8 5C52FAFF call dumped_.0050C020 00566DC4 . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 00566DC9 . 8B80 4C030000 mov eax,dword ptr ds:[eax+34C] 00566DCF . B2 01 mov dl,1 00566DD1 . 8B08 mov ecx,dword ptr ds:[eax] 00566DD3 . FF51 64 call dword ptr ds:[ecx+64] 00566DD6 . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 00566DDB . E8 A4DEF1FF call dumped_.00484C84 00566DE0 . 33C0 xor eax,eax 00566DE2 . 5A pop edx 00566DE3 . 59 pop ecx 00566DE4 . 59 pop ecx 00566DE5 . 64:8910 mov dword ptr fs:[eax],edx 00566DE8 . 33C0 xor eax,eax 00566DEA . 5A pop edx 00566DEB . 59 pop ecx 00566DEC . 59 pop ecx 00566DED . 64:8910 mov dword ptr fs:[eax],edx 00566DF0 . E9 440A0000 jmp dumped_.00567839 00566DF5 > 8D8D 78FBFFFF lea ecx,dword ptr ss:[ebp-488] 00566DFB . BA 01000000 mov edx,1 00566E00 . 8BC3 mov eax,ebx 00566E02 . 8B38 mov edi,dword ptr ds:[eax] 00566E04 . FF57 0C call dword ptr ds:[edi+C] 00566E07 . 83BD 78FBFFFF 0>cmp dword ptr ss:[ebp-488],0 00566E0E . 0F84 D6080000 je dumped_.005676EA 00566E14 . 8D8D 74FBFFFF lea ecx,dword ptr ss:[ebp-48C] 00566E1A . BA 02000000 mov edx,2 00566E1F . 8BC3 mov eax,ebx 00566E21 . 8B38 mov edi,dword ptr ds:[eax] 00566E23 . FF57 0C call dword ptr ds:[edi+C] 00566E26 . 83BD 74FBFFFF 0>cmp dword ptr ss:[ebp-48C],0 ; 比较 下载地质是否为0 00566E2D . 0F84 B7080000 je dumped_.005676EA 00566E33 . 8D8D 70FBFFFF lea ecx,dword ptr ss:[ebp-490] 00566E39 . BA 03000000 mov edx,3 00566E3E . 8BC3 mov eax,ebx 00566E40 . 8B38 mov edi,dword ptr ds:[eax] 00566E42 . FF57 0C call dword ptr ds:[edi+C] 00566E45 . 83BD 70FBFFFF 0>cmp dword ptr ss:[ebp-490],0 00566E4C . 0F84 98080000 je dumped_.005676EA 00566E52 . 8D8D 6CFBFFFF lea ecx,dword ptr ss:[ebp-494] 00566E58 . BA 04000000 mov edx,4 00566E5D . 8BC3 mov eax,ebx 00566E5F . 8B38 mov edi,dword ptr ds:[eax] 00566E61 . FF57 0C call dword ptr ds:[edi+C] 00566E64 . 83BD 6CFBFFFF 0>cmp dword ptr ss:[ebp-494],0 00566E6B . 0F84 79080000 je dumped_.005676EA 00566E71 . 8D8D 68FBFFFF lea ecx,dword ptr ss:[ebp-498] 00566E77 . BA FC785600 mov edx,dumped_.005678FC ; 20050101 00566E7C . B8 3C7E5600 mov eax,dumped_.00567E3C ; a5aaa19a1933ecf4868a223f279c557db1fe9350c2b88cf7be173fe9cb452c7b 00566E81 . E8 E6E8FDFF call dumped_.0054576C 00566E86 . 8B95 68FBFFFF mov edx,dword ptr ss:[ebp-498] 00566E8C . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 00566E91 . 8B80 94030000 mov eax,dword ptr ds:[eax+394] 00566E97 . E8 8451FAFF call dumped_.0050C020 00566E9C . 68 E8030000 push 3E8 ; /Timeout = 1000. ms 00566EA1 . E8 6281EAFF call ; \Sleep 00566EA6 . 8D8D 64FBFFFF lea ecx,dword ptr ss:[ebp-49C] 00566EAC . BA 03000000 mov edx,3 00566EB1 . 8BC3 mov eax,ebx 00566EB3 . 8B38 mov edi,dword ptr ds:[eax] 00566EB5 . FF57 0C call dword ptr ds:[edi+C] 00566EB8 . 8B95 64FBFFFF mov edx,dword ptr ss:[ebp-49C] 00566EBE . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 00566EC3 . 8B80 94030000 mov eax,dword ptr ds:[eax+394] 00566EC9 . E8 5251FAFF call dumped_.0050C020 00566ECE . 68 B80B0000 push 0BB8 ; /Timeout = 3000. ms 00566ED3 . E8 3081EAFF call ; \Sleep 00566ED8 . B2 01 mov dl,1 00566EDA . A1 C88F4100 mov eax,dword ptr ds:[418FC8] 00566EDF . E8 E8CCE9FF call dumped_.00403BCC 00566EE4 . 8945 FC mov dword ptr ss:[ebp-4],eax 00566EE7 . B2 01 mov dl,1 00566EE9 . A1 C88F4100 mov eax,dword ptr ds:[418FC8] 00566EEE . E8 D9CCE9FF call dumped_.00403BCC 00566EF3 . 8945 F8 mov dword ptr ss:[ebp-8],eax 00566EF6 . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 00566EFB . 8B80 B0030000 mov eax,dword ptr ds:[eax+3B0] 00566F01 . 8B10 mov edx,dword ptr ds:[eax] 00566F03 . FF52 58 call dword ptr ds:[edx+58] 00566F06 . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 00566F0B . 8B80 B0030000 mov eax,dword ptr ds:[eax+3B0] 00566F11 . BA 50000000 mov edx,50 00566F16 . 8B08 mov ecx,dword ptr ds:[eax] 00566F18 . FF91 8C000000 call dword ptr ds:[ecx+8C] 00566F1E . 33C0 xor eax,eax 00566F20 . 55 push ebp 00566F21 . 68 646F5600 push dumped_.00566F64 00566F26 . 64:FF30 push dword ptr fs:[eax] 00566F29 . 64:8920 mov dword ptr fs:[eax],esp 00566F2C . 8D8D 60FBFFFF lea ecx,dword ptr ss:[ebp-4A0] 00566F32 . BA 02000000 mov edx,2 00566F37 . 8BC3 mov eax,ebx 00566F39 . 8B38 mov edi,dword ptr ds:[eax] 00566F3B . FF57 0C call dword ptr ds:[edi+C] 00566F3E . 8B95 60FBFFFF mov edx,dword ptr ss:[ebp-4A0] ; 文件地质 00566F44 . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 00566F49 . 8B80 B0030000 mov eax,dword ptr ds:[eax+3B0] 00566F4F . 8B4D FC mov ecx,dword ptr ss:[ebp-4] 00566F52 . E8 AD4AFFFF call dumped_.0055BA04 00566F57 . 33C0 xor eax,eax 00566F59 . 5A pop edx 00566F5A . 59 pop ecx 00566F5B . 59 pop ecx 00566F5C . 64:8910 mov dword ptr fs:[eax],edx 00566F5F . E9 81000000 jmp dumped_.00566FE5 00566F64 .^ E9 73D1E9FF jmp dumped_.004040DC 00566F69 . 8B45 FC mov eax,dword ptr ss:[ebp-4] 00566F6C . E8 8BCCE9FF call dumped_.00403BFC 00566F71 . 8B45 F8 mov eax,dword ptr ss:[ebp-8] 00566F74 . E8 83CCE9FF call dumped_.00403BFC 00566F79 . 8D8D 5CFBFFFF lea ecx,dword ptr ss:[ebp-4A4] 00566F7F . BA FC785600 mov edx,dumped_.005678FC ; 20050101 00566F84 . B8 887E5600 mov eax,dumped_.00567E88 ; 6f792d0eedcc0535197cc225f296292cfcf2f69b5b0a1178 00566F89 . E8 DEE7FDFF call dumped_.0054576C 00566F8E . 8B95 5CFBFFFF mov edx,dword ptr ss:[ebp-4A4] 00566F94 . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 00566F99 . 8B80 94030000 mov eax,dword ptr ds:[eax+394] 00566F9F . E8 7C50FAFF call dumped_.0050C020 00566FA4 . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 00566FA9 . 8B80 B0030000 mov eax,dword ptr ds:[eax+3B0] 00566FAF . 8B10 mov edx,dword ptr ds:[eax] 00566FB1 . FF52 58 call dword ptr ds:[edx+58] 00566FB4 . A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 00566FB9 . 8B80 4C030000 mov eax,dword ptr ds:[eax+34C] 00566FBF . B2 01 mov dl,1 00566FC1 . 8B08 mov ecx,dword ptr ds:[eax] 00566FC3 . FF51 64 call dword ptr ds:[ecx+64] 00566FC6 . E8 79D4E9FF call dumped_.00404444 00566FCB . 33C0 xor eax,eax 00566FCD . 5A pop edx 00566FCE . 59 pop ecx 00566FCF . 59 pop ecx 00566FD0 . 64:8910 mov dword ptr fs:[eax],edx 00566FD3 . 33C0 xor eax,eax 00566FD5 . 5A pop edx 00566FD6 . 59 pop ecx 00566FD7 . 59 pop ecx 00566FD8 . 64:8910 mov dword ptr fs:[eax],edx 00566FDB . E9 59080000 jmp dumped_.00567839 00566FE0 . E8 5FD4E9FF call dumped_.00404444 00566FE5 > A1 E81D5D00 mov eax,dword ptr ds:[5D1DE8] 00566FEA . 8B80 B0030000 mov eax,dword ptr ds:[eax+3B0] 00566FF0 . 8B10 mov edx,dword ptr ds:[eax] 00566FF2 . FF52 58 call dword ptr ds:[edx+58] 00566FF5 . 6A 00 push 0 ; /Arg2 = 00000000 00566FF7 . 6A 00 push 0 ; |Arg1 = 00000000 00566FF9 . 8B45 FC mov eax,dword ptr ss:[ebp-4] ; | 00566FFC . E8 7F6CEBFF call dumped_.0041DC80 ; \dumped_.0041DC80 第二部分 不过最新嗅到的内容是 GET /down/vip20060405.rar HTTP/1.1 Content-Type: text/html Host: it.huigezi.net Accept: text/html, */* User-Agent: Mozilla/3.0 (compatible; Indy Library) 文件下载地址为 http://it.huigezi.net/down/vip20060405.rar 00566B80 以及 00566B9B 为关键点 打补丁 即给出正确的 下载地址以及加密内容 补丁 00566B7B . E8 ECEBFDFF call 灰鸽子[V.0054576C 00566B80 . 90 nop 00566B81 . E9 F1F30500 jmp 灰鸽子[V.005C5F77 005C5E80 805E5C00 dd 灰鸽子[V.005C5E80 005C5E84 . 36 db 36 ; CHAR ';6'; 005C5E85 . 30 36 32 38 30 >ascii "06280173360 200" 005C5E95 . 36 30 33 31 30 >ascii "60310 " 005C5E9C 68 7474703A push 3A707474 005C5EA1 2F das 005C5EA2 2F das 005C5EA3 69742E 68 75696>imul esi,dword ptr ds:[esi+ebp+68],65676975 005C5EAB 7A 69 jpe short 灰鸽子[V.005C5F16 005C5EAD 2E:6E outs dx,byte ptr es:[edi] 005C5EAF 65:74 2F je short 灰鸽子[V.005C5EE1 005C5EB2 64:6F outs dx,dword ptr es:[edi] 005C5EB4 77 6E ja short 灰鸽子[V.005C5F24 005C5EB6 2F das 005C5EB7 76 69 jbe short 灰鸽子[V.005C5F22 005C5EB9 70 32 jo short 灰鸽子[V.005C5EED 005C5EBB 3030 xor byte ptr ds:[eax],dh 005C5EBD 36:303430 xor byte ptr ss:[eax+esi],dh 005C5EC1 35 2E726172 xor eax,7261722E 005C5EC6 0D 0ABBD2B8 or eax,B8D2BB0A 005C5ECB ^ EB D7 jmp short 灰鸽子[V.005C5EA4 005C5ECD D320 shl dword ptr ds:[eax],cl 005C5ECF 5B pop ebx 005C5ED0 56 push esi 005C5ED1 49 dec ecx 005C5ED2 50 push eax 005C5ED3 2032 and byte ptr ds:[edx],dh 005C5ED5 3030 xor byte ptr ds:[eax],dh 005C5ED7 36:5D pop ebp 005C5ED9 2043 72 and byte ptr ds:[ebx+72],al 005C5EDC 61 popad 005C5EDD 636B 65 arpl word ptr ds:[ebx+65],bp 005C5EE0 64:2042 79 and byte ptr fs:[edx+79],al 005C5EE4 2043 61 and byte ptr ds:[ebx+61],al 005C5EE7 74 65 je short 灰鸽子[V.005C5F4E 005C5EE9 72 20 jb short 灰鸽子[V.005C5F0B 005C5EEB 5B pop ebx 005C5EEC 3230 xor dh,byte ptr ds:[eax] 005C5EEE 3036 xor byte ptr ds:[esi],dh 005C5EF0 2E:3033 xor byte ptr cs:[ebx],dh 005C5EF3 2E:3132 xor dword ptr cs:[edx],esi 005C5EF6 5D pop ebp 005C5EF7 0D 0A413242 or eax,4232410A 005C5EFC ? 3342 34 xor eax,dword ptr ds:[edx+34] 005C5EFF ? 3931 cmp dword ptr ds:[ecx],esi 005C5F01 ? 3931 cmp dword ptr ds:[ecx],esi 005C5F03 ? 3930 cmp dword ptr ds:[eax],esi 005C5F05 ? 41 inc ecx 005C5F06 ? 45 inc ebp 005C5F07 ? 35 31443937 xor eax,37394431 005C5F0C ? 41 inc ecx 005C5F0D ? 42 inc edx 005C5F0E ? 3130 xor dword ptr ds:[eax],esi 005C5F10 ? 35 39374430 xor eax,30443739 005C5F15 ? 3141 39 xor dword ptr ds:[ecx+39],eax 005C5F18 ? 41 inc ecx 005C5F19 ? 36:384442 37 cmp byte ptr ss:[edx+eax*2+37],al 005C5F1E ? 45 inc ebp 005C5F1F ? 43 inc ebx 005C5F20 ? 3342 45 xor eax,dword ptr ds:[edx+45] 005C5F23 ? 3246 41 xor al,byte ptr ds:[esi+41] 005C5F26 ? 3837 cmp byte ptr ds:[edi],dh 005C5F28 ? 3133 xor dword ptr ds:[ebx],esi 005C5F2A ? 3130 xor dword ptr ds:[eax],esi 005C5F2C ? 36:42 inc edx 005C5F2E ? 42 inc edx 005C5F2F ? 35 41354135 xor eax,35413541 005C5F34 ? 41 inc ecx 005C5F35 ? 44 inc esp 005C5F36 ? 37 aaa 005C5F37 ? 37 aaa 005C5F38 ? 43 inc ebx 005C5F39 ? 43 inc ebx 005C5F3A ? 3233 xor dh,byte ptr ds:[ebx] 005C5F3C ? 45 inc ebp 005C5F3D ? 43 inc ebx 005C5F3E ? 36:41 inc ecx 005C5F40 ? 3845 38 cmp byte ptr ss:[ebp+38],al 005C5F43 ? 3035 33394536 xor byte ptr ds:[36453933],dh 005C5F49 ? 44 inc esp 005C5F4A ? 37 aaa 005C5F4B . 35 43 41 42 46 >ascii "5CABF16FEA03AEAA" 005C5F5B . 32 33 44 38 39 >ascii "23D8907C6072009D" 005C5F6B . 39 38 00 ascii "98",0 005C5F6E 00 db 00 005C5F6F 805E5C00 dd 灰鸽子[V.005C5E80 005C5F73 00 db 00 005C5F74 00 db 00 005C5F75 00 db 00 005C5F76 00 db 00 005C5F77 > B8 845E5C00 mov eax,灰鸽子[V.005C5E84 ; ASCII "606280173360 20060310 http://it.huigezi.net/down/vip20060405.rar 灰鸽子 [VIP 2006] Cracked By Cater [2006.03.12] A2B3B4919190AE51D97AB10597D01A9A68DB7EC3BE2FA8713106BB5A5A5AD77CC23EC6A8E80539E6D75CABF16FEA03AEAA23D8907C6072009D98" 005C5F7C . 8985 98FBFFFF mov dword ptr ss:[ebp-468],eax 005C5F82 . 8B95 98FBFFFF mov edx,dword ptr ss:[ebp-468] 005C5F88 . 8D45 D8 lea eax,dword ptr ss:[ebp-28] 005C5F8B .^ E9 F90BFAFF jmp 灰鸽子[V.00566B89 005C5F90 00 db 00 005C5F91 00 db 00 005C5F92 00 db 00 至于前面说的那些 关键 跳 就自己看样子办吧！ 到这里生成客户端文件算是 Ko了！

---

作者: 懒惰王子    时间: 2006-4-26 17:19     标题: 灰鸽子[VIP 2006] 破解过程

.............有关汇编的 我看懂!郁闷!

---

作者: sandi8520    时间: 2006-5-4 04:39     标题: 灰鸽子[VIP 2006] 破解过程

看不懂.不过帮你顶一下.

---

作者: 阿琥    时间: 2006-5-7 12:54     标题: 灰鸽子[VIP 2006] 破解过程

看不懂!!!!!!!是用来干嘛的?

---

作者: 皮蛋瘦肉    时间: 2006-5-9 07:57     标题: 灰鸽子[VIP 2006] 破解过程

嘿嘿~
知道了不错

---

欢迎光临 黑色海岸线论坛 (http://bbs.thysea.com/)

Powered by Discuz! 7.2