东西总是用到了才会考虑到底有木有用的问题,最近开始频繁折腾Wince(得益于那个导航一体机,真TMD蛋疼啊,老古董! (N) )
这个东西显示的东西很详细,但是有个蛋疼的地方,就是不能结束进程。于是在主要工作差不多完成了之后就找时间搞了一下,其实网上有篇文章提到这个东西了,原文猛击此处!
破解也比较简单:关键代码如下:
.text:00011FA4 ; =============== S U B R O U T I N E =======================================
.text:00011FA4
.text:00011FA4
.text:00011FA4 sub_11FA4 ; DATA XREF: .pdata:00035090o
.text:00011FA4
.text:00011FA4 var_C = -0xC
.text:00011FA4
.text:00011FA4 STMFD SP!, {R4,LR}
.text:00011FA8 SUB SP, SP, #4
.text:00011FAC MOV R4, R0
.text:00011FB0 BL _AfxGetMainWnd__YAPAVCWnd__XZ ; AfxGetMainWnd(void)
.text:00011FB4 LDR R3, [R0,#0x160]
.text:00011FB8 LDR R3, [R3,#-8]
.text:00011FBC CMP R3, #0
.text:00011FC0 BNE loc_11FDC ; Jmp here
.text:00011FC0 ; Hex:05 00 00 1a
.text:00011FC0 ; Change 1a to 0a
.text:00011FC0 ; :) done!
.text:00011FC4 MOV R0, #0x8000
.text:00011FC8 MOV R2, 0xFFFFFFFF ; unsigned int
.text:00011FCC MOV R1, #0 ; unsigned int
.text:00011FD0 ORR R0, R0, #0x13 ; unsigned int
.text:00011FD4 BL _AfxMessageBox__YAHIII_Z ; AfxMessageBox(uint,uint,uint)
.text:00011FD8 B loc_12038
.text:00011FDC ; ---------------------------------------------------------------------------
.text:00011FDC
.text:00011FDC loc_11FDC ; CODE XREF: sub_11FA4+1Cj
.text:00011FDC ADD R4, R4, #0x120
.text:00011FE0 MOV R0, R4
.text:00011FE4 BL sub_12518
.text:00011FE8 MOVS R3, R0
.text:00011FEC STR R3, [SP,#0xC+var_C]
.text:00011FF0 BEQ loc_12010
.text:00011FF4 ADD R1, SP, #0xC+var_C
.text:00011FF8 MOV R0, R4
.text:00011FFC BL sub_1253C
.text:00012000 MOV R1, R0
.text:00012004 MOV R0, R4
.text:00012008 BL sub_1A434
.text:0001200C B loc_12014
.text:00012010 ; ---------------------------------------------------------------------------
.text:00012010
.text:00012010 loc_12010 ; CODE XREF: sub_11FA4+4Cj
.text:00012010 MOV R0, #0 ; hWnd
.text:00012014
.text:00012014 loc_12014 ; CODE XREF: sub_11FA4+68j
.text:00012014 CMP R0, #0
.text:00012018 BEQ loc_12038
.text:0001201C MOV R1, #0 ; lpdwProcessId
.text:00012020 BL GetWindowThreadProcessId
.text:00012024 CMP R0, #0
.text:00012028 MOVNE R3, #0 ; lParam
.text:0001202C MOVNE R2, #0 ; wParam
.text:00012030 MOVNE R1, #0x12 ; Msg
.text:00012034 BLNE PostThreadMessageW
.text:00012038
.text:00012038 loc_12038 ; CODE XREF: sub_11FA4+34j
.text:00012038 ; sub_11FA4+74j
.text:00012038 ADD SP, SP, #4
.text:0001203C LDMFD SP!, {R4,PC}
.text:0001203C ; End of function sub_11FA4
.text:0001203C
现在就能结束进程了:
可能很多人不知道怎么玩,这个东西也是老古董了,就发个破解版吧!猛击此处下载!