本帖最后由 hl8882 于 2011-5-6 09:15 编辑
1.298
00445896 |. EB 38 JMP SHORT 004458D0 // jump to code cave
00445898 | 90 NOP
00445899 | 90 NOP
0044589A | 90 NOP
004458D0 |> 80BE 55800000 >CMP BYTE PTR DS:[ESI+8055],1 // code cave starts check if m_State == STATE_CONNECTED
004458D7 |. 74 0B JE SHORT 004458E4 // if its equal go to normal code.
004458D9 |. 80BE 55800000 >CMP BYTE PTR DS:[ESI+8055],3 // if m_State == STATE_GAMESTART
004458E0 |. 74 02 JE SHORT 004458E4 // if its equal go to normal code.
004458E2 |.^EB B9 JMP SHORT 0044589D // jump to close_routine
004458E4 |> 66:837E 08 02 CMP WORD PTR DS:[ESI+8],2 // if m_nSocketErr == 2
004458E9 \.^EB B0 JMP SHORT 0044589B // jmp to code cave
1.310/1.351
00437C25 E9 D1AF0C00 JMP 00502BFB
00502BFB 80BE 55800000 >CMP BYTE PTR DS:[ESI+8055],1
00502C02 74 0E JE SHORT 00502C12
00502C04 80BE 55800000 >CMP BYTE PTR DS:[ESI+8055],3
00502C0B 74 05 JE SHORT 00502C12
00502C0D ^E9 1A50F3FF JMP 00437C2C
00502C12 66:837E 08 02 CMP WORD PTR DS:[ESI+8],2
00502C17 ^E9 0E50F3FF JMP 00437C2A |
