Título: una ayudita ? Publicado por: rembolso en 22 Julio 2009, 01:28 am hola la otra ves estaba explotando bug en el explorador de windowd y me imprimio esto . ba una vanda me imprimio en un .txt pero le pngo un poquito . como yo no c este lenguague lo posteo para q me digan q hace . gracias
Citar 7636F1EC cmp edx,eax 7636F1EE mov dword ptr [ebp-18h],edx 7636F1F1 jg 7636F1F6 7636F1F3 mov dword ptr [ebp-18h],eax 7636F1F6 mov eax,dword ptr [ebp-24h] 7636F1F9 add edi,ecx 7636F1FB cmp eax,edi 7636F1FD mov dword ptr [ebp-1Ch],eax 7636F200 jl 7636F205 7636F202 mov dword ptr [ebp-1Ch],edi 7636F205 mov esi,dword ptr ds:[763610C4h] 7636F20B mov edi,dword ptr ds:[763610C0h] 7636F211 movsx eax,bx 7636F214 cmp dword ptr [ebp-28h],eax 7636F217 mov ebx,dword ptr [ebp+8] 7636F21A mov dword ptr [ebp-10h],eax 7636F21D jge 7636F27A 7636F21F dec ecx 7636F220 cmp ecx,dword ptr [ebp-2Ch] 7636F223 mov dword ptr [ebp+8],ecx 7636F226 jl 7636F23A 7636F228 push 0 7636F22A push eax 7636F22B push ecx 7636F22C push ebx 7636F22D call esi 7636F22F movsx eax,word ptr [ebp+14h] 7636F233 push eax 7636F234 push dword ptr [ebp+8] 7636F237 push ebx 7636F238 call edi 7636F23A movsx eax,word ptr [ebp+0Ch] 7636F23E cmp eax,dword ptr [ebp-24h] 7636F241 jge 7636F259 7636F243 push 0 7636F245 push dword ptr [ebp-10h] 7636F248 push eax 7636F249 push ebx 7636F24A call esi 7636F24C movsx eax,word ptr [ebp+14h] 7636F250 push eax 7636F251 movsx eax,word ptr [ebp+0Ch] 7636F255 push eax 7636F256 push ebx 7636F257 call edi 7636F259 movsx eax,word ptr [ebp+0Ch] 7636F25D inc eax 7636F25E cmp eax,dword ptr [ebp-24h] 7636F261 mov dword ptr [ebp+8],eax 7636F264 jge 7636F27A 7636F266 push 0 7636F268 push dword ptr [ebp-10h] 7636F26B push eax 7636F26C push ebx 7636F26D call esi 7636F26F movsx eax,word ptr [ebp+14h] 7636F273 push eax 7636F274 push dword ptr [ebp+8] 7636F277 push ebx 7636F278 call edi 7636F27A movsx ecx,word ptr [ebp-14h] 7636F27E cmp dword ptr [ebp-20h],ecx 7636F281 mov dword ptr [ebp+14h],ecx 7636F284 jle 7636F2E5 7636F286 movsx eax,word ptr [ebp+0Ch] 7636F28A dec eax 7636F28B cmp eax,dword ptr [ebp-2Ch] 7636F28E mov dword ptr [ebp+8],eax 7636F291 jl 7636F2A5 7636F293 push 0 7636F295 push ecx 7636F296 push eax 7636F297 push ebx 7636F298 call esi 7636F29A movsx eax,word ptr [ebp-4] 7636F29E push eax 7636F29F push dword ptr [ebp+8] 7636F2A2 push ebx 7636F2A3 call edi 7636F2A5 movsx eax,word ptr [ebp+0Ch] 7636F2A9 cmp eax,dword ptr [ebp-24h] 7636F2AC jge 7636F2C4 7636F2AE push 0 7636F2B0 push dword ptr [ebp+14h] 7636F2B3 push eax 7636F2B4 push ebx 7636F2B5 call esi 7636F2B7 movsx eax,word ptr [ebp-4] 7636F2BB push eax 7636F2BC movsx eax,word ptr [ebp+0Ch] 7636F2C0 push eax 7636F2C1 push ebx 7636F2C2 call edi 7636F2C4 movsx eax,word ptr [ebp+0Ch] 7636F2C8 inc eax 7636F2C9 cmp eax,dword ptr [ebp-24h] 7636F2CC mov dword ptr [ebp+8],eax 7636F2CF jge 7636F2E5 7636F2D1 push 0 7636F2D3 push dword ptr [ebp+14h] 7636F2D6 push eax 7636F2D7 push ebx 7636F2D8 call esi 7636F2DA movsx eax,word ptr [ebp-4] 7636F2DE push eax 7636F2DF push dword ptr [ebp+8] 7636F2E2 push ebx 7636F2E3 call edi 7636F2E5 movsx ecx,word ptr [ebp-18h] 7636F2E9 cmp dword ptr [ebp-2Ch],ecx 7636F2EC mov dword ptr [ebp+14h],ecx 7636F2EF jge 7636F350 7636F2F1 movsx eax,word ptr [ebp+10h] 7636F2F5 dec eax 7636F2F6 cmp eax,dword ptr [ebp-28h] 7636F2F9 mov dword ptr [ebp+0Ch],eax 7636F2FC jl 7636F310 7636F2FE push 0 7636F300 push eax 7636F301 push ecx 7636F302 push ebx 7636F303 call esi 7636F305 push dword ptr [ebp+0Ch] 7636F308 movsx eax,word ptr [ebp-8] 7636F30C push eax 7636F30D push ebx 7636F30E call edi 7636F310 movsx eax,word ptr [ebp+10h] 7636F314 cmp eax,dword ptr [ebp-20h] 7636F317 jge 7636F32F 7636F319 push 0 7636F31B push eax 7636F31C push dword ptr [ebp+14h] 7636F31F push ebx 7636F320 call esi 7636F322 movsx eax,word ptr [ebp+10h] 7636F326 push eax 7636F327 movsx eax,word ptr [ebp-8] 7636F32B push eax 7636F32C push ebx 7636F32D call edi 7636F32F movsx eax,word ptr [ebp+10h] 7636F333 inc eax 7636F334 cmp eax,dword ptr [ebp-20h] 7636F337 mov dword ptr [ebp+0Ch],eax 7636F33A jge 7636F350 7636F33C push 0 7636F33E push eax 7636F33F push dword ptr [ebp+14h] 7636F342 push ebx 7636F343 call esi 7636F345 push dword ptr [ebp+0Ch] 7636F348 movsx eax,word ptr [ebp-8] 7636F34C push eax 7636F34D push ebx 7636F34E call edi 7636F350 movsx ecx,word ptr [ebp-1Ch] 7636F354 cmp dword ptr [ebp-24h],ecx 7636F357 mov dword ptr [ebp+14h],ecx 7636F35A jle 7636F3BB 7636F35C movsx eax,word ptr [ebp+10h] 7636F360 dec eax 7636F361 cmp eax,dword ptr [ebp-28h] 7636F364 mov dword ptr [ebp+0Ch],eax 7636F367 jl 7636F37B 7636F369 push 0 7636F36B push eax 7636F36C push ecx 7636F36D push ebx 7636F36E call esi 7636F370 push dword ptr [ebp+0Ch] 7636F373 movsx eax,word ptr [ebp-0Ch] 7636F377 push eax 7636F378 push ebx 7636F379 call edi 7636F37B movsx eax,word ptr [ebp+10h] 7636F37F cmp eax,dword ptr [ebp-20h] 7636F382 jge 7636F39A 7636F384 push 0 7636F386 push eax 7636F387 push dword ptr [ebp+14h] 7636F38A push ebx 7636F38B call esi 7636F38D movsx eax,word ptr [ebp+10h] 7636F391 push eax 7636F392 movsx eax,word ptr [ebp-0Ch] 7636F396 push eax 7636F397 push ebx 7636F398 call edi 7636F39A movsx eax,word ptr [ebp+10h] 7636F39E inc eax 7636F39F cmp eax,dword ptr [ebp-20h] 7636F3A2 mov dword ptr [ebp+0Ch],eax 7636F3A5 jge 7636F3BB 7636F3A7 push 0 7636F3A9 push eax 7636F3AA push dword ptr [ebp+14h] 7636F3AD push ebx 7636F3AE call esi 7636F3B0 push dword ptr [ebp+0Ch] 7636F3B3 movsx eax,word ptr [ebp-0Ch] 7636F3B7 push eax 7636F3B8 push ebx 7636F3B9 call edi 7636F3BB pop edi 7636F3BC pop esi 7636F3BD pop ebx 7636F3BE leave 7636F3BF ret 10h 7636F3C2 nop 7636F3C3 nop 7636F3C4 nop 7636F3C5 nop 7636F3C6 nop 7636F3C7 mov edi,edi 7636F3C9 push ebp 7636F3CA mov ebp,esp 7636F3CC movsx eax,word ptr [ebp+8] 7636F3D0 sub eax,2BFh 7636F3D5 mov ecx,dword ptr [ebp+0Ch] 7636F3D8 push esi 7636F3D9 je 7636F482 7636F3DF dec eax 7636F3E0 je 7636F460 7636F3E2 dec eax 7636F3E3 je 7636F43E 7636F3E5 movzx eax,word ptr [ecx+2Ah] 7636F3E9 sub eax,dword ptr [ecx+40h] 7636F3EC movzx esi,word ptr [ecx+1Eh] 7636F3F0 imul eax,eax,0EFh 7636F3F6 cdq 7636F3F7 idiv eax,esi 7636F3F9 movzx edx,word ptr [ecx+2Ch] 7636F3FD movzx esi,word ptr [ecx+20h] 7636F401 push edi 7636F402 movzx edi,word ptr [ecx+22h] 7636F406 mov word ptr [ecx+18h],ax 7636F40A mov eax,dword ptr [ecx+44h] 7636F40D sub eax,edx 7636F40F imul eax,eax,0F0h 7636F415 cdq 7636F416 idiv eax,esi 7636F418 movzx edx,word ptr [ecx+2Eh] 7636F41C mov esi,0F0h 7636F421 add eax,esi 7636F423 mov word ptr [ecx+1Ah],ax 7636F427 mov eax,dword ptr [ecx+64h] 7636F42A sub eax,edx 7636F42C imul eax,eax,0F0h 7636F432 cdq 7636F433 idiv eax,edi 7636F435 pop edi Título: Re: una ayudita ? Publicado por: YST en 22 Julio 2009, 01:46 am Es muy dificil decirte tal cual lo que hace ya que nose sabe que es cada posición :/ .
Título: Re: una ayudita ? Publicado por: Eternal Idol en 22 Julio 2009, 09:08 am Necesitas los simbolos para entender que hace realmente; igual mejor deja claro que queres hacer, supongamos que eso es una parte de Kernel32.dll ... ¿Que obtenes desensamblandolo? ... ¿No estara parcheado ya, no?
|